Nastavení zabezpečení internetu zabránilo otevření souboru

[Edhel]

Ahoj, prosím o pomoc.
Myslím, že jsem omylem stáhl nějakou havěť, která způsobila, že nemůžu spouštět některé aplikace (například CCleaner nebo miniaplikace na plochu, hledání automatických aktualizací Asusu). Zároveň s tím začal zlobit i internet - hned po spuštění prohlížeč (IE 8) spadl a pokusil se obnovit, ale zkoušel to do nekonečna. To se spravilo, když jsem v nouzovém režimu projel počítač CCleanerem a Spyware Terminatorem. Potíže se spouštěním aplikací ale přetrvávají. Důkladný sken aktualizovaným avastem nic nenašel. Hned při naběhnutí windowsů vyskočí bublina Zabezpečení systému Windows:

Nastavení zabezpečení internetu zabránilo v otevření jednoho nebo více souborů.
C:\Windows\system32\GfxUI.exe
(hádám, že to by mohly být ty miniaplikace, obdobně to vypadá při spouštění CCleaneru)

Vkládám log z RSITu, ale při jeho spuštění taky vyskočila hláška, že nastavení zabránilo spuštění (C:\Program Files\trend micro\Edhel.exe - Edhel je samozřejmě jméno uživatele.)

Dopředu díky.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Edhel at 2010-10-26 18:46:51
Microsoft Windows 7 Home Premium
System drive C: has 53 GB (45%) free of 119 GB
Total RAM: 3886 MB (57% free)


======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Sygate\SPF\smc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" MySyncFolder
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\DAODB\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sBWDATOOLSET
"C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe"
taskeng.exe {7AA941AD-D9CB-4769-93FF-B2A20ABF8138}
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
WLIDSvcM.exe 3268
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4220 CREDAT:71937
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10k_ActiveX.exe -Embedding
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4220 CREDAT:6414
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE"
C:\Windows\splwow64.exe 1
"C:\Program Files (x86)\Microsoft\Office Live\OfficeLiveSignIn.exe" Object -Embedding
taskeng.exe {08E2AE11-06E8-45E0-A831-BFC34934881E}
"C:\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-03-10 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-03-10 318960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-23 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-10 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-03-10 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-03-10 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-03-10 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-03-10 256112]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EeeStorageBackup"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2009-11-26 1732608]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2010-01-15 17398376]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 161304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 415256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"U36VRSFLG6"=C:\Users\Edhel\AppData\Local\Temp\Dzh.exe [2010-10-26 262144]
"SpywareTerminatorUpdate"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-10-26 3037696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-03-10 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-03 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7.2\ICQ.exe [2010-08-22 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-08-10 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-10 9643552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"MDS_Menu"=C:\Program Files (x86)\Cyberlink\MediaShowEspresso\MUITransfer\MUIStartMenu.exe [2009-02-26 218408]
"RemoteControl9"=C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [2009-07-07 87336]
"PDVD9LanguageShortcut"=C:\Program Files (x86)\Cyberlink\PowerDVD9\Language\Language.exe [2009-04-28 50472]
"UpdatePSTShortCut"=C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [2009-11-13 210216]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-01-13 7109248]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-01-05 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"NUSB3MON"=C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-10-21 106496]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"SmcService"=C:\PROGRA~2\Sygate\SPF\smc.exe [2004-10-15 2577632]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"Boingo Wi-Fi"=C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-07-29 2429]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-08-10 421888]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2010-09-01 1164584]
"SpywareTerminator"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2010-10-26 2615808]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
FancyStart daemon.lnk - C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 271360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-10-26 18:46:51 ----D---- C:\rsit
2010-10-26 18:46:51 ----D---- C:\Program Files\trend micro
2010-10-26 18:46:36 ----A---- C:\RSITx64.exe
2010-10-26 11:46:45 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-10-26 09:39:20 ----D---- C:\Users\Edhel\AppData\Roaming\Spyware Terminator
2010-10-26 09:39:19 ----D---- C:\ProgramData\Spyware Terminator
2010-10-26 09:39:19 ----D---- C:\Program Files (x86)\Spyware Terminator
2010-10-25 21:58:13 ----D---- C:\Windows\11AE680750D24F5982B32C3E695E94C2.TMP
2010-10-25 21:50:52 ----D---- C:\Program Files (x86)\LucasArts
2010-10-21 07:47:13 ----A---- C:\Windows\system32\mfps.dll
2010-10-21 07:47:12 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2010-10-21 07:47:12 ----A---- C:\Windows\system32\mfreadwrite.dll
2010-10-21 07:47:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2010-10-21 07:47:11 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-10-21 07:47:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2010-10-21 07:47:10 ----A---- C:\Windows\system32\mf.dll
2010-10-18 22:49:49 ----D---- C:\ProgramData\Poser Pro
2010-10-18 22:49:14 ----D---- C:\Users\Edhel\AppData\Roaming\Poser Pro
2010-10-14 23:53:53 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-10-14 23:53:53 ----A---- C:\Windows\system32\t2embed.dll
2010-10-14 23:53:52 ----A---- C:\Windows\SYSWOW64\ole32.dll
2010-10-14 23:53:52 ----A---- C:\Windows\system32\ole32.dll
2010-10-14 23:53:51 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2010-10-14 23:53:51 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-10-14 23:53:50 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-10-14 23:53:50 ----A---- C:\Windows\system32\schannel.dll
2010-10-14 23:53:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2010-10-14 23:53:48 ----A---- C:\Windows\system32\comctl32.dll
2010-10-14 23:53:47 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2010-10-14 23:53:47 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-14 23:53:46 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2010-10-14 23:53:46 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2010-10-14 23:53:45 ----A---- C:\Windows\system32\mshtml.dll
2010-10-14 23:53:44 ----A---- C:\Windows\system32\ieframe.dll
2010-10-14 23:53:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-10-14 23:53:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-10-14 23:53:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-10-14 23:53:43 ----A---- C:\Windows\system32\iertutil.dll
2010-10-14 23:53:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-10-14 23:53:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-10-14 23:53:42 ----A---- C:\Windows\system32\urlmon.dll
2010-10-14 23:53:42 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-14 23:53:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-10-14 23:53:41 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-10-14 23:53:41 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-10-14 23:53:41 ----A---- C:\Windows\system32\wininet.dll
2010-10-14 23:53:41 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-14 23:53:41 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-14 23:53:41 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-10-14 23:53:40 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-10-14 23:53:40 ----A---- C:\Windows\system32\mstime.dll
2010-10-14 23:53:40 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-14 23:53:40 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-14 23:53:40 ----A---- C:\Windows\system32\ieui.dll
2010-10-14 23:53:40 ----A---- C:\Windows\system32\iepeers.dll
2010-10-14 23:53:39 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-10-14 23:53:39 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-14 23:53:35 ----A---- C:\Windows\system32\wmp.dll
2010-10-14 23:53:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-10-14 23:53:32 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-10-14 23:53:32 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-14 23:53:28 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-14 23:53:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-14 23:53:28 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-14 23:53:27 ----A---- C:\Windows\SYSWOW64\sscore.dll
2010-10-14 23:53:27 ----A---- C:\Windows\system32\win32k.sys
2010-10-14 23:53:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-08 10:24:38 ----D---- C:\Program Files (x86)\Ubisoft
2010-10-02 18:00:15 ----A---- C:\Windows\system32\drivers\lirsgt.sys
2010-10-02 18:00:15 ----A---- C:\Windows\system32\drivers\atksgt.sys
2010-09-30 00:54:17 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2010-09-30 00:54:16 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-29 19:20:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-09-29 19:20:26 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 months======

2010-10-26 18:46:58 ----D---- C:\Windows\Temp
2010-10-26 18:46:51 ----RD---- C:\Program Files
2010-10-26 18:46:19 ----D---- C:\Users\Edhel\AppData\Roaming\uTorrent
2010-10-26 18:42:51 ----D---- C:\Windows\System32
2010-10-26 18:42:51 ----D---- C:\Windows\inf
2010-10-26 18:42:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-10-26 18:42:32 ----SHD---- C:\System Volume Information
2010-10-26 18:38:17 ----D---- C:\Windows\system32\Tasks
2010-10-26 18:38:11 ----D---- C:\Windows\system32\config
2010-10-26 18:38:03 ----A---- C:\Windows\SYSWOW64\log.txt
2010-10-26 14:59:57 ----A---- C:\Windows\system32\AutoRunFilter.ini
2010-10-26 14:59:44 ----D---- C:\Windows\Tasks
2010-10-26 14:59:44 ----D---- C:\Windows\SYSWOW64\NV
2010-10-26 14:59:43 ----D---- C:\Windows\system32\NV
2010-10-26 14:59:37 ----D---- C:\Windows
2010-10-26 14:59:35 ----D---- C:\Windows\winsxs
2010-10-26 14:58:48 ----D---- C:\Windows\SysWOW64
2010-10-26 14:58:13 ----D---- C:\Windows\system32\DriverStore
2010-10-26 14:58:13 ----D---- C:\Windows\system32\drivers
2010-10-26 14:51:13 ----D---- C:\Users\Edhel\AppData\Roaming\ICQ
2010-10-26 11:49:04 ----D---- C:\Windows\system32\catroot
2010-10-26 11:41:55 ----D---- C:\Users\Edhel\AppData\Roaming\Audacity
2010-10-26 11:27:42 ----RSD---- C:\Windows\assembly
2010-10-26 11:27:42 ----D---- C:\Windows\Microsoft.NET
2010-10-26 10:08:07 ----A---- C:\Windows\system32\ServiceFilter.ini
2010-10-26 09:39:19 ----RD---- C:\Program Files (x86)
2010-10-26 09:39:19 ----HD---- C:\ProgramData
2010-10-26 09:33:30 ----D---- C:\Windows\debug
2010-10-26 09:32:25 ----D---- C:\Program Files (x86)\CCleaner
2010-10-26 08:58:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-10-26 08:57:30 ----SHD---- C:\Windows\Installer
2010-10-26 01:54:27 ----D---- C:\Windows\Prefetch
2010-10-26 01:54:08 ----D---- C:\Windows\SYSWOW64\en-US
2010-10-26 01:54:08 ----D---- C:\Windows\system32\en-US
2010-10-26 01:54:05 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-10-23 07:59:55 ----D---- C:\Windows\system32\catroot2
2010-10-19 11:41:44 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-18 22:48:25 ----D---- C:\Users\Edhel\AppData\Roaming\Adobe
2010-10-18 22:48:17 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-10-15 07:47:06 ----D---- C:\Windows\SYSWOW64\migration
2010-10-15 07:47:06 ----D---- C:\Program Files\Internet Explorer
2010-10-15 07:47:06 ----D---- C:\Program Files (x86)\Internet Explorer
2010-10-15 07:47:05 ----D---- C:\Windows\system32\migration
2010-10-15 07:47:04 ----D---- C:\Program Files\Windows Media Player
2010-10-15 07:47:04 ----D---- C:\Program Files (x86)\Windows Media Player
2010-10-15 01:27:27 ----D---- C:\ProgramData\Microsoft Help
2010-10-15 01:23:25 ----A---- C:\Windows\system32\MRT.exe
2010-10-12 20:59:44 ----D---- C:\Windows\system32\NDF
2010-10-12 12:06:40 ----SD---- C:\Users\Edhel\AppData\Roaming\Microsoft
2010-10-05 22:12:12 ----D---- C:\Users\Edhel\AppData\Roaming\dvdcss
2010-10-03 18:28:26 ----D---- C:\Windows\SYSWOW64\directx
2010-10-01 14:00:45 ----D---- C:\Windows\rescache
2010-09-30 08:18:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-09-30 08:18:16 ----D---- C:\Windows\system32\cs-CZ
2010-09-30 08:17:35 ----D---- C:\Program Files (x86)\Microsoft Silverlight

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-07-20 834544]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 28752]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 121936]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 51280]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 20048]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-10-07 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-10-07 43680]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2010-07-07 50696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-08-25 10611552]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-10 2222624]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2009-10-30 244736]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-21 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-09-04 62464]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-10-27 75264]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-10-27 176640]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-20 1800192]
S0 wpsdrvnt;wpsdrvnt; C:\Windows\system32\drivers\wpsdrvnt.sys []
S1 Teefer;Teefer for NT; C:\Windows\SYSTEM32\Drivers\Teefer.sys []
S2 wg3n;SyGate for NT, wg3n; C:\Windows\SYSTEM32\Drivers\wg3n.sys []
S2 wg4n;SyGate for NT, wg4n; C:\Windows\SYSTEM32\Drivers\wg4n.sys []
S2 wg5n;SyGate for NT, wg5n; C:\Windows\SYSTEM32\Drivers\wg5n.sys []
S2 wg6n;SyGate for NT, wg6n; C:\Windows\SYSTEM32\Drivers\wg6n.sys []
S3 a2fhabwf;a2fhabwf; C:\Windows\system32\drivers\a2fhabwf.sys []
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-08-21 44032]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S4 vsdatant;vsdatant; C:\Windows\system32\drivers\vsdatant.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-09-17 359552]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-02 864032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MSSQL$BWDATOOLSET;SQL Server (BWDATOOLSET); C:\Program Files (x86)\DAODB\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-01-15 393320]
R2 OberonGameConsoleService;Oberon Media Game Console service; C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2009-09-15 44312]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 SmcService;Sygate Personal Firewall; C:\Program Files (x86)\Sygate\SPF\smc.exe [2004-10-15 2577632]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [2010-10-26 1033255]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-05-27 244904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-10 135664]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-07-21 654848]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-03-10 182768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-21 1255736]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-25 45408]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-25 239968]

-----------------EOF-----------------

[Rudy]

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[Edhel]

Sken proveden, log přikládám, jenom se mi zdá nějak krátký.

alwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4953

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

26.10.2010 20:08:41
mbam-log-2010-10-26 (20-08-41).txt

Typ skenu: Úplný sken (C:\|D:\|)
Skenované objekty: 338414
Uplynulý čas: 46 minuta(y), 26 sekunda(y)

Infikované procesy v paměti: 2
Infikované moduly v paměti: 0
Infikované klíče registru: 2
Infikované hodnoty registru: 1
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 6

Infikované procesy v paměti:
C:\Users\Edhel\AppData\Local\Temp\Dzg.exe (Rootkit.TDSS) -> No action taken.
C:\Users\Edhel\AppData\Local\Temp\Dzh.exe (Rootkit.TDSS) -> No action taken.

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.

Infikované hodnoty registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\u36vrsflg6 (Rootkit.TDSS) -> No action taken.

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Users\Edhel\AppData\Local\Temp\Dzg.exe (Rootkit.TDSS) -> No action taken.
C:\Users\Edhel\AppData\Local\Temp\Dzh.exe (Rootkit.TDSS) -> No action taken.
C:\Users\Edhel\AppData\Local\Temp\Dzf.exe (Rootkit.TDSS) -> No action taken.
D:\Hry\Lara Croft and the Guardian of Light\LcgolLauncher.exe (Trojan.FakeAlert) -> No action taken.
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job (Trojan.Downloader) -> No action taken.
C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> No action taken.

[Rudy]

Vše, co MBAM nalezl, smažte.

[Edhel]

Tak, všechno jsem nechal smazat, počítač se restartoval, ale problém je tu pořád:(

[Rudy]

Zkuste ještě sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Dejte log.

[Edhel]

Je to zvláštní, ale nic nenašel. Tu je log:

Automatická kontrola: dokončeno před 3 min. (události: 2, objekty: 401347, čas: 01:40:31)
26.10.2010 21:12:27 Úloha byla spuštěna
26.10.2010 22:52:58 Úloha byla dokončena

[Rudy]

OK. Ještě zkusíme toto: Ovládací panely->Možnosti internetu->záložka "Upřesnit"->Obnovit->záložka "Zabezpečení"->Obnovit výchozí úroveň všech zón .

[Edhel]

To jsem zkoušel už dříve, ale nijak to nepomohlo. (Zkusil jsem to teď pro jistotu znovu plus další restart počítače, ale pořád nic.)

[Rudy]

Zkuste obnovu systému k datu, kdy korketně fungoval.

[Edhel]

Hurá, tohle zabralo, děkuju moc:) (Ještě štěstí, že si ty body obnovy vytváří ten počítač automaticky.)
Ještě bych se chtěl zeptat, stačí Avast (domácí licence) na vychytávání a likvidaci spywarů a malwarů, nebo je lepší mít k tomu ještě nějaký další program? (Aby si vzájemně nepřekáželi...)

[Rudy]

Avast Home na domácím PC plně postačuje. Dobré je ale mít ještě firewall: http://www.viry.cz/forum/viewtopic.php?f=41&t=6523 a antispy: http://www.viry.cz/forum/viewtopic.php?f=29&t=6152 . Nepoužívejte ale více sw jednoho typu: 2 a více AV, 2 a více FW a 2 a více AS. Rez. štíty způsobují sw kolize.