Při náběhu Win XP zčerná obrazovka

[sorcer]

Při náběhu Win zčerná obrazovka a monitor přejde do sleep modu. Systém vyčištěn driver cleanerem + nejnovější ovladače přeinstalovány v Nouzovém režimu. Problém stále přetrvává. Před hw testem GK se chci ujistit, jak je na tom pc. Prosím o kontrolu logu, děkuji.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-17 00:42:46
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 29 GB (18%) free of 157 GB
Total RAM: 1023 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:42:52, on 17.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17080)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://hosting.conduit.com/Uninstall?to ... n=5.5.0.10
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\MSI\Star Key Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) - Protection Technology (StarForce) - C:\WINDOWS\system32\sfrem01.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 7981 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{4D0591D6-5D53-4DF6-9616-0E09C5DC150D}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}]
IE7Pro BHO - C:\Program Files\IEPro\iepro.dll [2008-09-23 756840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-04 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"AlwaysReady Power Message APP"=C:\WINDOWS\ARPWRMSG.EXE [2008-11-05 77312]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-03-04 172032]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2010-03-01 524632]
"PCSuiteTrayApplication"=C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE [2006-06-15 229376]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-07-07 1753192]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-07-09 110696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"=regsvr32 /s /n /i:U shell32 []

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\MSI\Star Key Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-24 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-09-23 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Disabled:BitComet - a BitTorrent Client"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\FlatOut2\FlatOut2.exe"="C:\Program Files\FlatOut2\FlatOut2.exe:*:Disabled:FlatOut2"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Games\Paintball2\paintball2.exe"="C:\Games\Paintball2\paintball2.exe:*:Enabled:paintball2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 3 months======

2010-08-17 00:42:46 ----D---- C:\rsit
2010-08-17 00:42:46 ----D---- C:\Program Files\trend micro
2010-08-17 00:38:20 ----D---- C:\WINDOWS\temp
2010-08-17 00:38:18 ----A---- C:\ComboFix.txt
2010-08-17 00:31:26 ----A---- C:\Boot.bak
2010-08-17 00:31:21 ----RASHD---- C:\cmdcons
2010-08-17 00:29:43 ----A---- C:\WINDOWS\zip.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\SWSC.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\SWREG.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\sed.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\PEV.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\NIRCMD.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\MBR.exe
2010-08-17 00:29:43 ----A---- C:\WINDOWS\grep.exe
2010-08-17 00:29:36 ----D---- C:\WINDOWS\ERDNT
2010-08-17 00:29:36 ----D---- C:\ComboFix
2010-08-16 23:37:21 ----D---- C:\Qoobox
2010-08-16 23:33:33 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Macromedia
2010-08-16 23:33:32 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Adobe
2010-08-16 23:25:46 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2010-08-16 23:16:02 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-08-16 23:16:02 ----A---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-08-16 23:15:59 ----A---- C:\WINDOWS\system32\nvcuda.dll
2010-08-16 23:15:59 ----A---- C:\WINDOWS\system32\nvcodins.dll
2010-08-16 23:15:59 ----A---- C:\WINDOWS\system32\nvcod.dll
2010-08-16 23:15:59 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-08-16 23:15:59 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2010-08-16 23:15:49 ----D---- C:\NVIDIA
2010-08-16 23:10:16 ----D---- C:\Program Files\SystemRequirementsLab
2010-08-16 21:56:18 ----SHD---- C:\WINDOWS\CSC
2010-08-16 21:56:12 ----A---- C:\WINDOWS\ntbtlog.txt
2010-08-16 21:54:44 ----D---- C:\Program Files\Driver Cleaner
2010-08-16 21:54:16 ----D---- C:\Program Files\Phyxion.net
2010-08-16 20:54:52 ----D---- C:\197.45
2010-08-16 19:50:39 ----A---- C:\WINDOWS\system32\OpenCL.dll
2010-08-16 19:50:37 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2010-08-16 19:50:36 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2010-08-16 19:50:33 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2010-08-16 12:03:29 ----A---- C:\WINDOWS\iun6002.exe
2010-08-16 12:03:04 ----D---- C:\Program Files\GameFace Messenger
2010-08-15 02:26:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-08-15 02:25:51 ----A---- C:\WINDOWS\system32\javaws.exe
2010-08-15 02:25:51 ----A---- C:\WINDOWS\system32\javaw.exe
2010-08-15 02:25:51 ----A---- C:\WINDOWS\system32\java.exe
2010-08-15 02:25:51 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-08-15 00:20:58 ----D---- C:\Program Files\CCleaner
2010-08-14 23:33:20 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-08-14 23:32:01 ----A---- C:\WINDOWS\system32\vbuzip10.DLL
2010-08-14 23:31:59 ----A---- C:\WINDOWS\system32\ssubtmr6.dll
2010-08-14 23:31:58 ----A---- C:\WINDOWS\system32\wt_menu.dll
2010-08-14 23:31:50 ----D---- C:\Program Files\Smarty Uninstaller Pro
2010-08-14 11:41:12 ----ASH---- C:\Documents and Settings\Administrator\Data aplikací\desktop.ini
2010-08-14 11:41:10 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2010-08-10 11:42:01 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2010-08-10 11:42:01 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2010-08-10 11:42:00 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2010-08-10 11:41:59 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2010-08-10 11:41:59 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2010-08-10 11:41:59 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2010-08-10 11:41:58 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2010-08-10 11:41:58 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2010-08-10 11:41:58 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2010-08-10 11:41:57 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2010-08-10 11:41:56 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2010-08-10 11:41:56 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2010-08-10 11:41:56 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2010-08-10 11:41:55 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2010-08-10 11:07:04 ----D---- C:\WINDOWS\Minidump
2010-07-09 18:22:35 ----A---- C:\WINDOWS\system32\psfind.dll
2010-07-09 16:24:42 ----A---- C:\WINDOWS\system32\nvwddi.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrszht.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrstr.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsth.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrssv.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrssl.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrssk.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsru.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrspt.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrspl.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsno.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsko.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrshu.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrshe.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrses.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrseng.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsel.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsde.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsda.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrscs.dll
2010-07-09 16:24:36 ----A---- C:\WINDOWS\system32\nvrsar.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvrsja.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvrsit.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvmctray.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvmccs.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvcpl.dll
2010-07-09 16:24:34 ----A---- C:\WINDOWS\system32\nvcolor.exe
2010-06-30 10:40:29 ----D---- C:\Program Files\City Interactive
2010-06-29 13:21:20 ----D---- C:\Poker
2010-06-23 19:49:38 ----D---- C:\Program Files\Metin2
2010-06-17 16:50:31 ----D---- C:\Program Files\Valve
2010-06-04 18:35:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\TrackMania
2010-06-03 22:29:14 ----D---- C:\Program Files\TmNationsForever

======List of files/folders modified in the last 3 months======

2010-08-17 00:42:46 ----RD---- C:\Program Files
2010-08-17 00:38:20 ----D---- C:\WINDOWS
2010-08-17 00:37:44 ----SD---- C:\WINDOWS\Tasks
2010-08-17 00:36:34 ----A---- C:\WINDOWS\system.ini
2010-08-17 00:36:27 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-17 00:36:02 ----D---- C:\WINDOWS\system32
2010-08-17 00:34:49 ----D---- C:\WINDOWS\system32\drivers
2010-08-17 00:34:14 ----D---- C:\WINDOWS\AppPatch
2010-08-17 00:34:10 ----D---- C:\Program Files\Common Files
2010-08-17 00:32:29 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-17 00:31:26 ----RASH---- C:\boot.ini
2010-08-17 00:23:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
2010-08-17 00:06:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg8
2010-08-16 23:59:14 ----D---- C:\WINDOWS\Prefetch
2010-08-16 23:57:58 ----A---- C:\WINDOWS\WINCMD.INI
2010-08-16 23:49:35 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-16 23:48:15 ----D---- C:\WINDOWS\Registration
2010-08-16 23:19:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-16 23:19:03 ----D---- C:\Config.Msi
2010-08-16 23:18:24 ----D---- C:\WINDOWS\Help
2010-08-16 23:18:24 ----D---- C:\Program Files\NVIDIA Corporation
2010-08-16 23:18:22 ----SHD---- C:\WINDOWS\Installer
2010-08-16 23:17:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-16 23:16:53 ----HD---- C:\WINDOWS\inf
2010-08-16 23:16:53 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-16 23:07:17 ----D---- C:\Program Files\Mozilla Firefox
2010-08-16 22:14:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-16 21:49:36 ----D---- C:\Downloads
2010-08-16 20:34:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2010-08-16 20:16:54 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-16 20:13:18 ----D---- C:\Program Files\DivX
2010-08-15 22:08:30 ----D---- C:\WINDOWS\nview
2010-08-15 21:50:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-15 21:07:52 ----D---- C:\Program Files\Electronic Arts
2010-08-15 02:26:24 ----D---- C:\Program Files\Common Files\Java
2010-08-15 02:25:49 ----D---- C:\Program Files\Java
2010-08-15 02:01:03 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-15 01:50:44 ----D---- C:\WINDOWS\system32\Logfiles
2010-08-15 01:50:25 ----D---- C:\WINDOWS\Debug
2010-08-14 23:58:29 ----D---- C:\WINDOWS\Microsoft.NET
2010-08-14 23:58:10 ----RSD---- C:\WINDOWS\assembly
2010-08-14 23:46:16 ----D---- C:\Program Files\VistaExperience.org
2010-08-14 23:42:44 ----D---- C:\Program Files\Alky for Applications
2010-08-14 22:35:25 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-14 22:35:25 ----D---- C:\Program Files\Internet Explorer
2010-08-14 22:33:44 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-14 22:30:48 ----D---- C:\WINDOWS\WinSxS
2010-08-14 22:24:36 ----D---- C:\Program Files\Movie Maker
2010-08-14 12:10:45 ----D---- C:\Program Files\Google
2010-08-14 11:41:07 ----D---- C:\Documents and Settings
2010-08-13 17:25:17 ----A---- C:\WINDOWS\DUMP39fb.tmp
2010-08-10 21:08:32 ----A---- C:\WINDOWS\DUMP3e80.tmp
2010-08-10 15:37:15 ----A---- C:\WINDOWS\DUMP3e03.tmp
2010-08-10 13:02:42 ----A---- C:\WINDOWS\DUMP5cb6.tmp
2010-08-10 12:21:13 ----D---- C:\$AVG8.VAULT$
2010-08-10 11:42:05 ----D---- C:\WINDOWS\system32\DirectX
2010-08-03 20:09:31 ----A---- C:\WINDOWS\system32\MRT.exe
2010-07-30 23:47:08 ----A---- C:\WINDOWS\NeroDigital.ini
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-21 19:36:08 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-07-18 22:09:40 ----D---- C:\WINDOWS\Network Diagnostic
2010-07-08 15:02:33 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-07-05 11:42:43 ----D---- C:\Program Files\LucasArts
2010-07-05 11:09:40 ----D---- C:\Program Files\Graffiti Studio 2.0
2010-07-05 11:09:29 ----D---- C:\Program Files\EA SPORTS
2010-07-05 11:07:38 ----D---- C:\Program Files\Age of Wonders II
2010-06-30 16:01:53 ----D---- C:\Program Files\Ask.com
2010-06-30 14:24:54 ----A---- C:\WINDOWS\system32\schannel.dll
2010-06-27 13:27:07 ----D---- C:\Program Files\ICQ6.5
2010-06-26 19:17:54 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\wininet.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\url.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\occache.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\mstime.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\msrating.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-06-24 14:19:31 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\jsproxy.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\iernonce.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\ieaksie.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\ieakeng.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\icardie.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\extmgr.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-06-24 14:19:30 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-06-24 14:19:29 ----A---- C:\WINDOWS\system32\advpack.dll
2010-06-23 19:57:57 ----D---- C:\Program Files\Metin2_CZ
2010-06-23 14:06:51 ----A---- C:\WINDOWS\system32\ieudinit.exe
2010-06-23 14:06:51 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2010-06-22 17:45:21 ----D---- C:\Games
2010-06-17 17:11:25 ----A---- C:\WINDOWS\system32\ieakui.dll
2010-06-17 16:03:52 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-06-14 09:40:28 ----A---- C:\WINDOWS\system32\msxml3.dll
2010-06-10 22:16:35 ----D---- C:\Program Files\Counter-Strike 1.6
2010-06-04 14:16:33 ----D---- C:\Program Files\Microsoft Silverlight
2010-05-26 20:17:00 ----D---- C:\Program Files\Windows Media Player
2010-05-23 18:48:34 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2010-05-21 19:38:13 ----D---- C:\Program Files\EA GAMES
2010-05-21 14:14:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-07-13 64160]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-11-14 43528]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\system32\drivers\sfdrv01.sys [2006-05-10 51200]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\system32\drivers\sfhlp02.sys [2006-05-10 6656]
R0 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\system32\drivers\sfsync04.sys [2006-05-10 52224]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544]
R3 arhidfltr;MS Ar HID Filter Driver; C:\WINDOWS\system32\DRIVERS\arhidfltr.sys [2008-11-05 19200]
R3 arkbcfltr;Microsoft PS2 Keyboard Filter; C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys [2008-11-05 5376]
R3 armoucfltr;Microsoft PS2 Mouse Filter; C:\WINDOWS\system32\DRIVERS\armoucfltr.sys [2008-11-05 4992]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2006-07-28 34944]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2006-07-19 13568]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2006-11-08 21760]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb32.sys []
S1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2005-10-18 11008]
S1 CXAVSAUD;Conexant 2388x Audio Capture; C:\WINDOWS\system32\DRIVERS\cxavsaud.sys [2005-08-09 9856]
S1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
S1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
S1 wfcxacap;WinFast TV PCI Audio Capture Driver; C:\WINDOWS\system32\DRIVERS\wfcxacap.sys [2006-03-24 9856]
S2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
S2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys []
S2 CX23880;Conexant 23880 Video Capture; C:\WINDOWS\system32\drivers\cx88vid.sys [2005-07-11 166656]
S2 CX88XBAR;AVerMedia AVerTV MPEG Crossbar (Dual-Input); C:\WINDOWS\system32\drivers\A88BarBB.sys [2005-03-03 10752]
S2 CXTUNE;Conexant 2388x Tuner; C:\WINDOWS\system32\drivers\CX88TUNE.sys [2005-07-11 59904]
S2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
S2 wfcxatun;WinFast TV Analog Tuner Driver; C:\WINDOWS\system32\drivers\wfcxatun.sys [2006-01-26 31616]
S2 WFCXVCAP;WinFast TV Video Capture Driver; C:\WINDOWS\system32\drivers\wfcxvcap.sys [2006-03-24 167296]
S3 aracpi;aracpi; C:\WINDOWS\system32\DRIVERS\aracpi.sys [2008-11-05 22784]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 ARPolicy;ARPolicy; C:\WINDOWS\system32\DRIVERS\arpolicy.sys [2008-11-05 10112]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2005-05-31 401152]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2005-05-31 30363]
S3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2005-05-31 1341466]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2005-05-31 148040]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2005-05-31 56648]
S3 catchme;catchme; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dump_wmimmc;dump_wmimmc; \??\C:\Program Files\Games-Masters.com\CABAL Online (Europe)\GameGuard\dump_wmimmc.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-08-01 4356608]
S3 lredbooo;lredbooo; \??\C:\DOCUME~1\MM\LOCALS~1\Temp\lredbooo.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mbr.sys []
S3 MHNDRV;Ovladač platformy MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NPPTNT2;NPPTNT2; \??\C:\WINDOWS\system32\npptNT2.sys []
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-10 10604128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2006-03-29 9856]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys []
S3 wfcxdtun;WinFast DTV BDA Tuner/Demod Driver; C:\WINDOWS\system32\drivers\wfcxdtun.sys [2006-03-24 21248]
S3 wfcxtcap;WinFast DTV BDA Transport Stream Capture Driver; C:\WINDOWS\system32\drivers\wfcxtcap.sys [2006-03-24 15872]
S3 wfcxxbar;WinFast TV Crossbar Driver; C:\WINDOWS\system32\drivers\wfcxxbar.sys [2006-03-24 10368]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFDTV\WFIOCTL.SYS []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-09-23 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
S2 ARSVC;ARSVC; C:\WINDOWS\arservice.exe [2008-11-05 58880]
S2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2005-10-18 241152]
S2 btwdins;Bluetooth Service; C:\Program Files\MSI\Star Key Bluetooth Software\bin\btwdins.exe [2005-05-31 258103]
S2 ehRecvr;Služba přijímače aplikace Media Center; C:\WINDOWS\eHome\ehRecvr.exe [2008-10-10 238592]
S2 ehSched;Služba plánování aplikace Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-05 135664]
S2 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-07-17 153376]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-03-01 1029456]
S2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
S2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
S2 sfrem01;SF FrontLine Drivers Auto Removal (v1); C:\WINDOWS\system32\sfrem01.exe [2006-05-10 353912]
S2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
S2 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-03-18 3753224]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Pokud provedete sken ComboFix a po něm sken RSIT, můžete vzít jed na to, že bude čistý. Dejte log z ComboFix, je umístěn v C:\combofix.txt.

[sorcer]

Log z ComboFixu :

ComboFix 10-08-16.01 - Administrator 17.08.2010 0:32.1.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.779 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Dokumenty\Stažené soubory\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\MM\Dokumenty\cc_20100815_015643.reg
C:\install.exe
c:\windows\system32\Cache
c:\windows\system32\sleep.exe
c:\windows\system32\system.dll
c:\windows\Tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
c:\windows\Tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-07-16 do 2010-08-16 )))))))))))))))))))))))))))))))
.

2010-08-16 21:17 . 2010-08-16 21:17 232968 ----a-w- c:\windows\system32\nvdrsdb0.bin
2010-08-16 21:17 . 2010-08-16 21:17 1 ----a-w- c:\windows\system32\nvdrssel.bin
2010-08-16 21:17 . 2010-08-16 21:17 232968 ----a-w- c:\windows\system32\nvdrsdb1.bin
2010-08-16 21:16 . 2010-07-09 22:38 13549568 ----a-w- c:\windows\system32\nvoglnt.dll
2010-08-16 21:16 . 2010-07-09 22:38 10604128 -c--a-w- c:\windows\system32\dllcache\nv4_mini.sys
2010-08-16 21:16 . 2010-07-09 22:38 10604128 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-08-16 21:15 . 2010-07-09 22:38 6343040 -c--a-w- c:\windows\system32\dllcache\nv4_disp.dll
2010-08-16 21:15 . 2010-07-09 22:38 6343040 ----a-w- c:\windows\system32\nv4_disp.dll
2010-08-16 21:15 . 2010-07-09 22:38 4595712 ----a-w- c:\windows\system32\nvcuda.dll
2010-08-16 21:15 . 2010-07-09 22:38 236136 ----a-w- c:\windows\system32\nvcodins.dll
2010-08-16 21:15 . 2010-07-09 22:38 236136 ----a-w- c:\windows\system32\nvcod.dll
2010-08-16 21:15 . 2010-07-09 22:38 1388544 ----a-w- c:\windows\system32\nvapi.dll
2010-08-16 21:15 . 2010-08-16 21:15 -------- d-----w- C:\NVIDIA
2010-08-16 21:10 . 2010-08-16 21:10 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-08-16 21:10 . 2010-08-16 21:10 -------- d-----w- c:\program files\SystemRequirementsLab
2010-08-16 21:10 . 2010-08-16 21:10 -------- d-----w- c:\documents and settings\MM\SystemRequirementsLab
2010-08-16 19:54 . 2010-08-16 20:58 -------- d-----w- c:\program files\Driver Cleaner
2010-08-16 19:54 . 2010-08-16 19:54 -------- d-----w- c:\program files\Phyxion.net
2010-08-16 18:54 . 2010-08-16 18:54 -------- d-----w- C:\197.45
2010-08-16 17:50 . 2010-07-09 22:38 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-08-16 17:50 . 2010-07-09 22:38 2914408 ----a-w- c:\windows\system32\nvcuvid.dll
2010-08-16 17:50 . 2010-07-09 22:38 2195030 ----a-w- c:\windows\system32\nvdata.bin
2010-08-16 17:50 . 2010-07-09 22:38 2506344 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-08-16 17:50 . 2010-07-09 22:38 10260480 ----a-w- c:\windows\system32\nvcompiler.dll
2010-08-16 10:03 . 2010-08-16 10:02 737280 ----a-w- c:\windows\iun6002.exe
2010-08-16 10:03 . 2010-08-16 18:19 -------- d-----w- c:\program files\GameFace Messenger
2010-08-15 00:26 . 2010-08-16 21:10 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-08-15 00:25 . 2010-07-17 03:00 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-08-14 22:20 . 2010-08-14 22:21 -------- d-----w- c:\program files\CCleaner
2010-08-14 21:32 . 1999-02-09 19:40 188928 ----a-w- c:\windows\system32\vbuzip10.DLL
2010-08-14 21:31 . 2007-08-15 11:09 40960 ----a-w- c:\windows\system32\ssubtmr6.dll
2010-08-14 21:31 . 2007-08-15 11:09 159744 ----a-w- c:\windows\system32\wt_menu.dll
2010-08-14 21:31 . 2010-08-14 22:14 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2010-08-10 09:42 . 2009-03-09 13:27 453456 ----a-w- c:\windows\system32\d3dx10_41.dll
2010-08-10 09:42 . 2009-03-09 13:27 1846632 ----a-w- c:\windows\system32\D3DCompiler_41.dll
2010-08-10 09:42 . 2009-03-09 13:27 4178264 ----a-w- c:\windows\system32\D3DX9_41.dll
2010-08-10 09:41 . 2009-03-16 12:18 69448 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2010-08-10 09:41 . 2009-03-16 12:18 517448 ----a-w- c:\windows\system32\XAudio2_4.dll
2010-08-10 09:41 . 2009-03-16 12:18 235352 ----a-w- c:\windows\system32\xactengine3_4.dll
2010-08-10 09:41 . 2009-03-16 12:18 22360 ----a-w- c:\windows\system32\X3DAudio1_6.dll
2010-08-10 09:41 . 2008-10-15 04:22 452440 ----a-w- c:\windows\system32\d3dx10_40.dll
2010-08-10 09:41 . 2008-10-15 04:22 2036576 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2010-08-10 09:41 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2010-08-10 09:41 . 2008-10-15 05:03 70992 ----a-w- c:\windows\system32\XAPOFX1_2.dll
2010-08-10 09:41 . 2008-10-15 05:03 235856 ----a-w- c:\windows\system32\xactengine3_3.dll
2010-08-10 09:41 . 2008-10-15 05:03 514384 ----a-w- c:\windows\system32\XAudio2_3.dll
2010-08-10 09:41 . 2008-10-15 05:03 23376 ----a-w- c:\windows\system32\X3DAudio1_5.dll
2010-07-27 06:30 . 2010-07-27 06:30 8466432 -c----w- c:\windows\system32\dllcache\shell32.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-16 21:18 . 2009-01-29 20:49 -------- d-----w- c:\program files\NVIDIA Corporation
2010-08-16 20:14 . 2001-10-25 15:00 502194 ----a-w- c:\windows\system32\perfh005.dat
2010-08-16 20:14 . 2001-10-25 15:00 107534 ----a-w- c:\windows\system32\perfc005.dat
2010-08-16 18:16 . 2009-01-29 20:49 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-16 18:13 . 2009-12-30 19:05 -------- d-----w- c:\program files\DivX
2010-08-15 19:07 . 2009-06-24 10:09 -------- d-----w- c:\program files\Electronic Arts
2010-08-15 00:26 . 2009-01-29 20:44 -------- d-----w- c:\program files\Common Files\Java
2010-08-15 00:25 . 2009-01-29 20:44 -------- d-----w- c:\program files\Java
2010-08-14 21:46 . 2009-01-29 20:23 -------- d-----w- c:\program files\VistaExperience.org
2010-08-14 21:42 . 2009-01-29 20:34 -------- d-----w- c:\program files\Alky for Applications
2010-08-14 10:10 . 2009-01-29 20:48 -------- d-----w- c:\program files\Google
2010-08-13 15:25 . 2009-01-29 20:32 98304 ----a-w- c:\windows\DUMP39fb.tmp
2010-08-10 19:08 . 2009-01-29 20:32 98304 ----a-w- c:\windows\DUMP3e80.tmp
2010-08-10 13:37 . 2009-01-29 20:32 98304 ----a-w- c:\windows\DUMP3e03.tmp
2010-08-10 11:02 . 2009-01-29 20:32 98304 ----a-w- c:\windows\DUMP5cb6.tmp
2010-07-11 07:45 . 2010-06-23 17:49 -------- d-----w- c:\program files\Metin2
2010-07-08 13:02 . 2009-02-04 12:09 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-07-05 09:42 . 2009-03-12 18:41 -------- d-----w- c:\program files\LucasArts
2010-07-05 09:09 . 2010-01-14 21:03 -------- d-----w- c:\program files\Graffiti Studio 2.0
2010-07-05 09:09 . 2009-04-12 19:36 -------- d-----w- c:\program files\EA SPORTS
2010-07-05 09:07 . 2009-07-13 15:08 -------- d-----w- c:\program files\Age of Wonders II
2010-06-30 14:01 . 2010-04-15 17:20 -------- d-----w- c:\program files\Ask.com
2010-06-30 12:24 . 2008-04-14 07:51 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-30 08:40 . 2010-06-30 08:40 -------- d-----w- c:\program files\City Interactive
2010-06-27 11:27 . 2010-04-03 16:20 -------- d-----w- c:\program files\ICQ6.5
2010-06-24 21:30 . 2008-10-17 14:02 1861120 ----a-w- c:\windows\system32\win32k.sys
2010-06-24 12:19 . 2008-10-16 19:33 832512 ----a-w- c:\windows\system32\wininet.dll
2010-06-24 12:19 . 2008-09-22 15:46 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-06-23 17:57 . 2009-12-10 13:47 -------- d-----w- c:\program files\Metin2_CZ
2010-06-21 14:18 . 2008-10-17 14:18 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2008-04-14 07:51 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2009-01-29 20:27 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:40 . 2008-11-20 17:06 1172480 ----a-w- c:\windows\system32\msxml3.dll
2010-05-23 16:48 . 2009-03-07 16:29 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-05-21 12:14 . 2009-10-03 08:42 221568 ------w- c:\windows\system32\MpSigStub.exe
.

------- Sigcheck -------

[-] 2008-10-19 . 12A799AD9415AE9C8ABCC5F75E9CF034 . 557056 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe

[-] 2008-10-19 . 3AC5A6BB0491CADA4F424978ECCD9A29 . 678400 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2008-10-19 . CCB32D10C69A89822E9134C0C4894BE1 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

[-] 2008-10-19 . DD7E25E20AEBD672DAE7E1D911C2D824 . 1589760 . . [6.00.2900.5512] . . c:\windows\explorer.exe

[-] 2008-11-05 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2008-10-19 . 0AB43CE7EFFAD6B4914AE3C1B489AAA1 . 66560 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-05-26 13:23 1385864 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-26 1385864]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2008-11-05 77312]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2006-11-03 866584]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2004-03-04 172032]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2010-03-01 524632]
"nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2010-07-07 1753192]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-10-19 66560]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth.lnk - c:\program files\MSI\Star Key Bluetooth Software\BTTray.exe [2005-5-31 577597]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\IEPro\\MiniDM.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\FlatOut2\\FlatOut2.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Games\\Paintball2\\paintball2.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8871:TCP"= 8871:TCP:BitComet 8871 TCP
"8871:UDP"= 8871:UDP:BitComet 8871 UDP

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [9.7.2009 19:18 64160]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 16:49 13592]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Adapter;c:\windows\system32\drivers\atl01_xp.sys [29.1.2009 23:08 34944]
S1 CXAVSAUD;Conexant 2388x Audio Capture;c:\windows\system32\drivers\cxavsaud.sys [29.1.2009 22:49 9856]
S1 wfcxacap;WinFast TV PCI Audio Capture Driver;c:\windows\system32\drivers\wfcxacap.sys [29.1.2009 19:23 9856]
S2 CX88XBAR;AVerMedia AVerTV MPEG Crossbar (Dual-Input);c:\windows\system32\drivers\A88BarBB.sys [29.1.2009 22:49 10752]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [5.5.2010 22:16 135664]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [9.3.2009 21:06 1029456]
S2 wfcxatun;WinFast TV Analog Tuner Driver;c:\windows\system32\drivers\wfcxatun.sys [29.1.2009 19:23 31616]
S2 WFCXVCAP;WinFast TV Video Capture Driver;c:\windows\system32\drivers\wfcxvcap.sys [29.1.2009 19:23 167296]
S3 dump_wmimmc;dump_wmimmc;\??\c:\program files\Games-Masters.com\CABAL Online (Europe)\GameGuard\dump_wmimmc.sys --> c:\program files\Games-Masters.com\CABAL Online (Europe)\GameGuard\dump_wmimmc.sys [?]
S3 lredbooo;lredbooo;\??\c:\docume~1\MM\LOCALS~1\Temp\lredbooo.sys --> c:\docume~1\MM\LOCALS~1\Temp\lredbooo.sys [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 wfcxdtun;WinFast DTV BDA Tuner/Demod Driver;c:\windows\system32\drivers\wfcxdtun.sys [29.1.2009 19:23 21248]
S3 wfcxtcap;WinFast DTV BDA Transport Stream Capture Driver;c:\windows\system32\drivers\wfcxtcap.sys [29.1.2009 19:23 15872]
S3 wfcxxbar;WinFast TV Crossbar Driver;c:\windows\system32\drivers\wfcxxbar.sys [29.1.2009 15:56 10368]
S3 WFIOCTL;WFIOCTL;c:\program files\WinFast\WFDTV\WFIOCTL.sys [29.1.2009 16:00 9446]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]
2010-06-24 12:19 124928 ----a-w- c:\windows\system32\advpack.dll
.
Obsah adresáře 'Naplánované úlohy'

2010-08-14 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 18:20]

2010-08-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-05 20:16]

2010-08-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-05 20:16]

2010-08-16 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 14:50]

2010-08-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-05-26 13:23]

2010-08-16 c:\windows\Tasks\User_Feed_Synchronization-{4D0591D6-5D53-4DF6-9616-0E09C5DC150D}.job
- c:\windows\system32\msfeedssync.exe [2008-09-22 15:47]
.
.
------- Doplňkový sken -------
.
mStart Page = hxxp://home.sweetim.com
uInternet Connection Wizard,ShellNext = hxxp://hosting.conduit.com/Uninstall?toolbarid=CT1708250&version=5.5.0.10
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\x3t3jxi0.default\
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=39&tp=ab&q=
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Notify-avgrsstarter - avgrsstx.dll



**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(620)
c:\windows\system32\SETUPAPI.dll
c:\windows\system32\COMRes.dll
c:\windows\system32\cscui.dll

- - - - - - - > 'lsass.exe'(684)
c:\windows\system32\setupapi.dll
.
Celkový čas: 2010-08-17 00:38:18
ComboFix-quarantined-files.txt 2010-08-16 22:38

Před spuštěním: Volných bajtů: 29 900 292 096
Po spuštění: Volných bajtů: 30 015 844 352

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 18B0DF202E426173D6ABDC38AC7D2B79

[Rudy]

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Folder::
c:\program files\Ask.com

Collect::
c:\docume~1\MM\LOCALS~1\Temp\lredbooo.sys

Driver::
lredbooo

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

[sorcer]

Vyčištěno. Děkuji Vám.

[Rudy]

Nemáte zač! Problém pominul?

[sorcer]

Bohužel ne, dnes budu testovat jinou GK do PCI-expressu. Poprvé vyřešeno reinstalem driverů v nouzovém režimu - takto to fungovalo. Počítač bežel 1 den, s tím že syn dotyčného behěm toho dne "doinstalovával" nějaké další vlastní osvědčené ovladače pro jeho hry.... Večer když šel jeho otec na net tak prý po 10 minutách opět "sama od sebe" zčernala obrazovka. Předpokládal sem že půjde opět o stejný problém, ale nyní reinstal driverů nepomohl. Zkoušel sem i pročišťovat systém driver cleanerem, ccleanerem, odinstalovat vše možné haraburdí, ale nyní již Win nenaběhne. Bios a win logo ok ( i když obojí s drobnými artefakty - tyto tam ovšem byli i před prvním reinstalem a reinstal je odstranil!) Nyní nepomáhá. Najíždí pouze VGA režim a Nouzový režim.(obojí bez artefaktů) Konzultoval sem to s kolegou a ten tvrdí že odešla buď grafika nebo zakl. deska.

[Rudy]

Konzultoval sem to s kolegou a ten tvrdí že odešla buď grafika nebo zakl. deska.

Hardwarová chyba je možná.