VIRY.CZ

Dobrý den, prosím o kontrolu logu rsit. Najednou přestane fungovat zvuk a zpomalí se pc. Po vyčištění ccleanerem a restartu pc zvuk zase funguje. Takto se to opakuje již několik dní. Když je zvuk zrovna vypnutý, tak po kliknutí na směšovač to hlásí, že není připojeno žádné zvukové zařízení.
Použil jsem snad už všechny možné antiviry. Emsisoft nic nenašel, Combofix ani AVPTool také nic.
Kodeky jsou v pořádku a ovladače jsou aktuální (podle programu ze stránek HP).
už si vážně nevím rady. Za pomoc děkuji.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Abdul at 2012-03-18 19:12:25
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 117 GB (76%) free of 153 GB
Total RAM: 958 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:13:34, on 18.3.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\STK02N\STK02NM.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11g_ActiveX.exe
C:\Users\Abdul\Desktop\RSIT.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\trend micro\Abdul.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: STK02N 2.3 PNP Monitor.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 4780 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-03-10 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-07-11 3821568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-06-20 1316136]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-12-03 13556256]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-12-03 92704]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"=C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2012-01-10 1083264]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
STK02N 2.3 PNP Monitor.lnk - C:\Windows\STK02N\STK02NM.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDriveTypeAutoRun"=153
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-03-18 19:12:25 ----D---- C:\rsit
2012-03-18 19:12:25 ----D---- C:\Program Files\trend micro
2012-03-18 12:56:00 ----D---- C:\Users\Abdul\AppData\Roaming\Malwarebytes
2012-03-18 12:55:41 ----D---- C:\ProgramData\Malwarebytes
2012-03-18 12:36:55 ----D---- C:\ProgramData\Kaspersky Lab
2012-03-18 04:17:24 ----AD---- C:\Windows\rundll16.exe
2012-03-18 04:17:24 ----AD---- C:\Windows\logo1_.exe
2012-03-18 03:53:44 ----D---- C:\Windows\TEMP
2012-03-18 03:28:34 ----SHD---- C:\$RECYCLE.BIN
2012-03-15 12:41:14 ----D---- C:\Program Files\SMPlayer
2012-03-15 11:36:23 ----D---- C:\ProgramData\Uniblue
2012-03-15 11:28:45 ----ASH---- C:\hiberfil.sys
2012-03-14 18:48:29 ----D---- C:\Users\Abdul\AppData\Roaming\RealNetworks
2012-03-14 18:03:17 ----A---- C:\Windows\zip.exe
2012-03-14 18:03:17 ----A---- C:\Windows\SWSC.exe
2012-03-14 18:03:17 ----A---- C:\Windows\SWREG.exe
2012-03-14 18:03:17 ----A---- C:\Windows\sed.exe
2012-03-14 18:03:17 ----A---- C:\Windows\PEV.exe
2012-03-14 18:03:17 ----A---- C:\Windows\NIRCMD.exe
2012-03-14 18:03:17 ----A---- C:\Windows\MBR.exe
2012-03-14 18:03:17 ----A---- C:\Windows\grep.exe
2012-03-14 18:03:01 ----D---- C:\Windows\ERDNT
2012-03-14 18:02:59 ----D---- C:\ccyc
2012-03-14 18:02:53 ----D---- C:\Qoobox
2012-03-14 17:57:29 ----D---- C:\Users\Abdul\AppData\Roaming\Media Player Classic
2012-03-14 17:56:10 ----A---- C:\Windows\system32\unrar.dll
2012-03-14 17:56:04 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-03-14 17:56:04 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-03-14 17:56:02 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-03-14 17:56:02 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-03-14 17:56:02 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-03-14 17:56:02 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-03-14 17:56:01 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-03-14 17:56:00 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-03-14 17:55:59 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-03-14 17:55:59 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-03-14 17:55:58 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-03-14 17:55:58 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-03-14 17:55:56 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-03-14 17:55:56 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-03-14 17:55:54 ----A---- C:\Windows\system32\xvidcore.dll
2012-03-14 17:55:54 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-03-14 17:55:54 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-03-14 17:55:54 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-03-14 17:55:53 ----A---- C:\Windows\system32\xvidvfw.dll
2012-03-14 17:55:53 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-03-14 17:55:53 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-03-14 17:55:53 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-03-14 17:55:52 ----A---- C:\Windows\system32\ff_vfw.dll
2012-03-14 17:55:51 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-03-14 17:55:51 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-03-14 17:55:50 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-03-14 17:55:49 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-03-14 17:55:46 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-03-14 17:55:46 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-03-14 17:55:43 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-03-14 17:55:40 ----D---- C:\Program Files\K-Lite Codec Pack
2012-03-14 17:53:31 ----D---- C:\Windows\system32\directx
2012-03-14 17:15:58 ----D---- C:\Program Files\Microsoft Security Client
2012-03-14 17:14:37 ----A---- C:\Windows\system32\drivers\netio.sys
2012-03-14 16:58:49 ----D---- C:\ProgramData\Driver Tool
2012-03-14 15:16:50 ----AD---- C:\Windows\VDLL.DLL
2012-03-14 15:16:50 ----AD---- C:\Windows\system32\runouce.exe
2012-03-14 15:16:50 ----AD---- C:\Windows\RUNDL132.EXE
2012-03-14 15:16:50 ----AD---- C:\Windows\logo_1.exe
2012-03-14 15:05:38 ----A---- C:\Windows\system32\msvcr80.dll
2012-03-14 15:05:36 ----A---- C:\Windows\system32\msvcp80.dll
2012-03-14 15:05:35 ----A---- C:\Windows\system32\eEmpty.exe
2012-03-14 15:05:20 ----D---- C:\Program Files\Common Files\MicroWorld
2012-03-14 15:04:51 ----D---- C:\ProgramData\MicroWorld
2012-03-14 14:52:37 ----D---- C:\Users\Abdul\AppData\Roaming\WinRAR
2012-03-14 14:52:28 ----D---- C:\Program Files\WinRAR
2012-03-13 20:25:39 ----A---- C:\Windows\system32\rdpencom.dll
2012-03-13 20:25:39 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-03-13 20:25:35 ----A---- C:\Windows\system32\win32k.sys
2012-03-13 20:25:28 ----A---- C:\Windows\system32\DWrite.dll
2012-03-13 20:25:28 ----A---- C:\Windows\system32\d3d10warp.dll
2012-03-13 20:25:28 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-03-13 20:25:28 ----A---- C:\Windows\system32\d3d10_1.dll
2012-03-13 20:25:28 ----A---- C:\Windows\system32\d2d1.dll
2012-03-12 23:15:19 ----D---- C:\Users\Abdul\AppData\Roaming\TuneUp Software
2012-03-12 23:10:11 ----D---- C:\ProgramData\a
2012-03-12 23:08:28 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2012-03-12 22:23:33 ----D---- C:\Users\Abdul\AppData\Roaming\aignes
2012-03-10 23:06:49 ----D---- C:\Program Files\Common Files\WebM Project
2012-03-10 20:16:53 ----HD---- C:\Windows\msdownld.tmp
2012-03-08 16:55:45 ----D---- C:\Program Files\Webteh
2012-03-05 22:42:17 ----D---- C:\ProgramData\AVSoftware
2012-03-03 21:01:22 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2012-03-03 21:00:20 ----D---- C:\Program Files\PC Connectivity Solution
2012-02-27 20:58:08 ----HD---- C:\ProgramData\Common Files
2012-02-27 20:57:59 ----D---- C:\ProgramData\MFAData

======List of files/folders modified in the last 1 month======

2012-03-18 19:12:38 ----D---- C:\Windows\Prefetch
2012-03-18 19:12:25 ----RD---- C:\Program Files
2012-03-18 19:05:52 ----D---- C:\Windows\system32\drivers
2012-03-18 13:08:16 ----SHD---- C:\System Volume Information
2012-03-18 12:55:41 ----D---- C:\ProgramData
2012-03-18 12:29:25 ----D---- C:\Windows
2012-03-18 05:26:31 ----SHD---- C:\Windows\Installer
2012-03-18 05:05:10 ----D---- C:\Windows\System32
2012-03-18 05:05:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-18 05:05:08 ----D---- C:\Windows\inf
2012-03-18 03:26:25 ----A---- C:\Windows\system.ini
2012-03-18 03:22:07 ----D---- C:\Windows\AppPatch
2012-03-18 03:22:05 ----D---- C:\Program Files\Common Files
2012-03-18 02:22:02 ----D---- C:\Windows\system32\catroot2
2012-03-17 10:36:41 ----D---- C:\Windows\Minidump
2012-03-15 14:01:11 ----D---- C:\Windows\winsxs
2012-03-15 13:20:54 ----D---- C:\Users\Abdul\AppData\Roaming\Real
2012-03-15 13:20:40 ----D---- C:\Windows\system32\Tasks
2012-03-15 11:40:57 ----D---- C:\Windows\Tasks
2012-03-15 10:56:11 ----RSD---- C:\Windows\assembly
2012-03-15 10:17:24 ----SD---- C:\Windows\Downloaded Program Files
2012-03-14 18:20:44 ----D---- C:\Windows\system32\drivers\etc
2012-03-14 17:17:58 ----D---- C:\Windows\system32\catroot
2012-03-14 17:17:49 ----SD---- C:\ProgramData\Microsoft
2012-03-14 15:44:48 ----D---- C:\Program Files\Google
2012-03-14 14:46:29 ----D---- C:\ProgramData\Google
2012-03-14 14:44:46 ----D---- C:\Windows\Debug
2012-03-13 21:28:25 ----A---- C:\Windows\system32\mrt.exe
2012-03-13 21:23:43 ----D---- C:\Program Files\Windows Mail
2012-03-13 20:00:16 ----D---- C:\Windows\system32\wbem
2012-03-13 19:58:10 ----D---- C:\Windows\system32\spool
2012-03-13 19:58:09 ----D---- C:\Windows\system32\CodeIntegrity
2012-03-13 19:58:08 ----D---- C:\Windows\registration
2012-03-12 21:11:32 ----D---- C:\Windows\system32\config
2012-03-12 19:51:31 ----D---- C:\ProgramData\NokiaInstallerCache
2012-03-11 20:22:21 ----DC---- C:\Windows\system32\DRVSTORE
2012-03-11 20:22:15 ----D---- C:\Program Files\Nokia
2012-03-11 17:33:23 ----D---- C:\Windows\WindowsMobile
2012-03-11 17:33:19 ----D---- C:\Windows\STK02N
2012-03-11 17:33:13 ----D---- C:\Program Files\Windows Media Player
2012-03-11 14:55:59 ----D---- C:\Windows\Microsoft.NET
2012-03-10 20:16:54 ----D---- C:\Program Files\Internet Explorer
2012-03-08 19:40:09 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-03-03 21:56:56 ----D---- C:\Users\Abdul\AppData\Roaming\Nokia
2012-03-03 20:59:46 ----D---- C:\Windows\system32\drivers\UMDF
2012-02-27 19:50:03 ----D---- C:\Windows\system32\Msdtc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\Windows\system32\DRIVERS\PxHelp20.sys [2004-05-19 20016]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-07-09 8704]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2010-08-20 1331192]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-03 188416]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-06-19 984064]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-06-19 208896]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-03-07 1059112]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-12-03 7606688]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-02-16 12032]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-06-20 200112]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-06-19 660480]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2010-02-05 28048]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-08-28 3664384]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2009-04-11 27648]
S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-12-03 203296]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-07-09 386560]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-20 135664]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-20 135664]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------


Ještě přikládám log z Mbam-i když nic nenalezl.
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.1.1000
www.malwarebytes.org

Verze databáze: v2012.03.18.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Abdul :: ABDUL-PC [administrátor]

Ochrana: Povolena

18.3.2012 13:01:31
mbam-log-2012-03-18 (13-01-31).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 182576
Uplynulý čas: 38 minut,

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Ještě jsem chtěl napsat, že zlobí stahování aktualizací windows. Neustále jsou v liště připraveny ke stažení, ale při stahování zahlásí chybu. Ze startu na vypínání pc je vykřičník. Značí instalaci aktualizace a vypnutí pc ale také nic neaktualizuje.

Zdravím!
14.3. jste provedl sken ComboFix. Rád bych z něj viděl log. Najdete ho v c:\comobfix.txt.

V c:\comobfix.txt už ho nemam. Odmazal jsem to T-cleanerem. Combo fix dopočítal do padesáti položek a pak rovnou začal připravovat log. Přeskočil tu část ("mažu soubory"). Tak že potom ani nerestartoval pc. Mám ho stahnout a spustit znova?

Rád bych. Nejspíš tam něco k mazání bude.

ComboFix 12-03-17.01 - Abdul 19.03.2012 2:52.3.2 - x86
Spuštěný z: c:\users\Abdul\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-19 do 2012-03-19 )))))))))))))))))))))))))))))))
.
.
2012-03-19 02:02 . 2012-03-19 02:02 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2012-03-19 02:02 . 2012-03-19 02:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-18 20:49 . 2012-03-01 13:34 6552120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{17B12879-1E06-4570-A0DA-BBCCD959ABE1}\mpengine.dll
2012-03-18 20:44 . 2012-03-18 20:48 -------- d-----w- c:\windows\LastGood.Tmp
2012-03-18 20:38 . 2009-04-29 06:46 15872 ----a-w- c:\windows\system32\drivers\HpqKbFiltr.sys
2012-03-18 20:38 . 2006-11-02 05:09 1419232 ----a-w- c:\windows\system32\drivers\wdfcoinstaller01005.dll
2012-03-18 20:38 . 2008-09-08 12:31 1885488 ----a-r- c:\windows\system32\BttnCmn.dll
2012-03-18 20:38 . 2012-03-18 20:39 -------- d-----w- c:\program files\Hewlett-Packard
2012-03-18 20:38 . 2008-09-08 12:31 1885488 ----a-w- c:\windows\system32\BttnCmns.dll
2012-03-18 20:37 . 2012-03-18 20:38 -------- d-----w- c:\windows\QLB
2012-03-18 20:36 . 2012-03-18 20:36 -------- d-----w- c:\program files\Microsoft Silverlight
2012-03-18 11:56 . 2012-03-18 11:56 -------- d-----w- c:\users\Abdul\AppData\Roaming\Malwarebytes
2012-03-18 04:23 . 2012-03-18 04:23 -------- d-----w- c:\users\Abdul\DoctorWeb
2012-03-18 03:17 . 2012-03-18 03:17 -------- d---a-w- c:\windows\rundll16.exe
2012-03-18 03:17 . 2012-03-18 03:17 -------- d---a-w- c:\windows\logo1_.exe
2012-03-15 20:10 . 2012-03-01 13:34 6552120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-03-15 11:52 . 2012-03-15 11:52 -------- d-----w- c:\users\Abdul\AppData\Local\MPlayer
2012-03-15 11:42 . 2012-03-15 11:53 -------- d-----w- c:\users\Abdul\.smplayer
2012-03-15 11:41 . 2012-03-15 11:41 -------- d-----w- c:\program files\SMPlayer
2012-03-14 17:48 . 2012-03-14 17:48 -------- d-----w- c:\users\Abdul\AppData\Roaming\RealNetworks
2012-03-14 17:02 . 2012-03-14 17:25 -------- d-----w- C:\ccyc
2012-03-14 16:57 . 2012-03-17 09:36 -------- d-----w- c:\users\Abdul\AppData\Roaming\Media Player Classic
2012-03-14 16:56 . 2011-03-02 11:43 175616 ----a-w- c:\windows\system32\unrar.dll
2012-03-14 16:56 . 2010-06-02 03:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2012-03-14 16:56 . 2010-06-02 03:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2012-03-14 16:56 . 2010-06-02 03:55 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2012-03-14 16:56 . 2010-05-26 10:41 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2012-03-14 16:56 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2012-03-14 16:56 . 2010-05-26 10:41 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2012-03-14 16:56 . 2010-05-26 10:41 470880 ----a-w- c:\windows\system32\d3dx10_43.dll
2012-03-14 16:56 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll
2012-03-14 16:35 . 2012-03-14 16:34 713784 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-03-14 16:35 . 2012-02-09 12:17 713784 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{42B0E452-C03E-454C-A2BD-391AAF9DCAB8}\gapaengine.dll
2012-03-14 16:15 . 2012-03-14 16:18 -------- d-----w- c:\program files\Microsoft Security Client
2012-03-14 16:14 . 2010-04-05 20:00 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2012-03-14 15:58 . 2012-03-14 15:58 -------- d-----w- c:\programdata\Driver Tool
2012-03-14 14:16 . 2012-03-14 14:16 -------- d---a-w- c:\windows\VDLL.DLL
2012-03-14 14:16 . 2012-03-14 14:16 -------- d---a-w- c:\windows\system32\runouce.exe
2012-03-14 14:16 . 2012-03-14 14:16 -------- d---a-w- c:\windows\RUNDL132.EXE
2012-03-14 14:16 . 2012-03-14 14:16 -------- d---a-w- c:\windows\logo_1.exe
2012-03-14 14:05 . 2012-03-14 14:05 632064 ----a-w- c:\windows\system32\msvcr80.dll
2012-03-14 14:05 . 2012-03-14 14:05 554240 ----a-w- c:\windows\system32\msvcp80.dll
2012-03-14 14:05 . 2012-03-14 14:05 34048 ----a-w- c:\windows\system32\eEmpty.exe
2012-03-14 14:05 . 2012-03-14 14:05 -------- d-----w- c:\program files\Common Files\MicroWorld
2012-03-14 14:04 . 2012-03-14 14:05 -------- d-----w- c:\programdata\MicroWorld
2012-03-13 22:20 . 2012-03-13 22:20 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-13 19:25 . 2012-01-09 15:54 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-03-13 19:25 . 2012-01-09 13:58 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-13 19:25 . 2012-02-02 15:16 2044416 ----a-w- c:\windows\system32\win32k.sys
2012-03-13 19:25 . 2012-02-14 15:45 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-03-13 19:25 . 2012-02-14 15:45 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-03-13 19:25 . 2012-02-13 14:12 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-03-13 19:25 . 2012-02-13 13:47 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-03-13 19:25 . 2012-02-13 13:44 1068544 ----a-w- c:\windows\system32\DWrite.dll
2012-03-13 19:21 . 2012-01-31 10:59 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-03-12 22:15 . 2012-03-12 22:15 -------- d-----w- c:\users\Abdul\AppData\Roaming\TuneUp Software
2012-03-12 22:10 . 2012-03-15 11:22 -------- d-----w- c:\programdata\a
2012-03-12 22:08 . 2012-03-12 22:08 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2012-03-12 21:23 . 2012-03-12 21:23 -------- d-----w- c:\users\Abdul\AppData\Roaming\aignes
2012-03-11 21:25 . 2012-03-11 21:25 -------- d-----w- c:\users\Abdul\AppData\Local\Apps
2012-03-10 22:06 . 2012-03-10 22:06 -------- d-----w- c:\program files\Common Files\WebM Project
2012-03-10 19:16 . 2012-03-14 16:54 -------- d--h--w- c:\windows\msdownld.tmp
2012-03-08 15:55 . 2012-03-10 19:10 -------- d-----w- c:\program files\Webteh
2012-03-07 18:21 . 2012-03-14 17:19 -------- d-----w- c:\users\Abdul\AppData\Local\assembly
2012-03-06 18:58 . 2012-02-20 00:05 6552120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{08EFB1A4-747D-49E4-A8C1-F68DA683E584}\mpengine.dll
2012-03-03 20:01 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2012-03-03 20:00 . 2012-03-11 18:41 -------- d-----w- c:\program files\PC Connectivity Solution
2012-02-27 19:58 . 2012-02-27 19:58 -------- d--h--w- c:\programdata\Common Files
2012-02-27 19:57 . 2012-03-14 15:25 -------- d-----w- c:\programdata\MFAData
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-14 14:34 . 2012-03-14 14:29 15323022 ----a-w- c:\windows\REGBK00.ZIP
2012-01-31 12:44 . 2010-08-20 18:55 237072 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"="c:\program files\Nokia\Nokia Suite\NokiaSuite.exe" [2012-01-10 1083264]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-10-14 2299176]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-24 323640]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-24 13601312]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-06-24 92704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ArcSoft Connection Service"=c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files\Real\RealPlayer\Update\realsched.exe" -osboot
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
bthsvcs REG_MULTI_SZ BthServ
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-08-20 20:25]
.
2012-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-08-20 20:25]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.yahoo.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file)
Notify-!SASWinLogon - c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-19 03:02
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2012-03-19 03:05:16
ComboFix-quarantined-files.txt 2012-03-19 02:05
.
Před spuštěním: Volných bajtů: 126 889 697 280
Po spuštění: Volných bajtů: 127 248 199 680
.
- - End Of File - - CFA173D6493F06BA6204E607F37EE381

Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Collect::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
C:\ccyc
c:\program files\Google\Update

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

Uložte na plochu jako CFScript.txt.Pak jej myší přetáhněte nad ikonu ComboFix a pusťte CF se spustí a vykoná příkazy ze skriptu.

děkuji moc, už se pc chová jak má

Nemáte zač!