Prosim o kontrolu logu - problem s grafickou kartou Vyřešeno

[jaro3]

Ještě další script v Combofixu, postup stejný.

Kód: Vybrat vše

FCOPY::
d:\windows\system32\dllcache\wininet.dll | c:\windows\system32\wininet.dll

RootRepeal--to je celý log?


Budeš muset učinit toto

S DODATKEM:

Zkusíme obnovit zaváděcí sektory.

Restartuj do Konzoly pro zotavení. Až v ní budeš, zadej příkaz:

Kód: Vybrat vše

Fixboot

a stiskni Enter. Konzola se zeptá, zda chceš skutečně zapsat nový spouštěcí sektor do disku C. Napiš písmeno a jako ANO a stiskni klávesu Enter.

Pak zadej příkaz:

Kód: Vybrat vše

fixmbr

Enter, a potvrď.

Pak zkus restartovat do normálního režimu.

[Reklama]

[rival]

uff, tak na toto sa uz necitim dnes, nerozumel som polovici veci co som dnes vdaka tebe urobil , ale evidentne mam nejaky problem. ak ti to nebude vadit, tak by som to poriesil az zajtra aj ked ta recovery sa mi nezda ze to poriesim tip top :) takze diky za ochotu a pokial sa da tak pokracujeme zajtra he :) kubo

[jaro3]

Ok , ale zítra je můj poslední den tady, odjíždím a vrátím se až za 3 týdny.

ten MBR je asi skutečně napadený , měl by se přepsat..

[rival]

tak este posielam ten log z combofixu a chem sa opytat este dve veci, kedy ta zajtra zastihnem urcite a co mam vlastne za problem?:)

ComboFix 09-11-28.04 - Rival 29.11.2009 19:22.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.3582.3183 [GMT 1:00]
Running from: d:\documents and settings\Rival\Desktop\ComboFix.exe
Command switches used :: d:\documents and settings\Rival\Desktop\CFScript.txt
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
--------------- FCopy ---------------

d:\windows\system32\dllcache\wininet.dll --> c:\windows\system32\wininet.dll
.
((((((((((((((((((((((((( Files Created from 2009-10-28 to 2009-11-29 )))))))))))))))))))))))))))))))
.

2009-11-29 17:27 . 2009-11-29 17:28 -------- d-----w- D:\RootRepeal
2009-11-29 17:27 . 2009-11-29 17:27 464491 ----a-w- D:\RootRepeal.zip
2009-11-29 13:54 . 2009-11-29 13:54 -------- d-----w- d:\documents and settings\Rival\DoctorWeb
2009-11-29 10:10 . 2009-11-29 10:10 691696 ----a-w- d:\windows\system32\drivers\sptd.sys
2009-11-29 10:10 . 2009-11-29 10:11 -------- d-----w- d:\program files\DAEMON Tools Lite
2009-11-29 10:09 . 2009-11-29 10:15 -------- d-----w- d:\documents and settings\Rival\Application Data\DAEMON Tools Lite
2009-11-29 10:09 . 2009-11-29 10:09 -------- d-----w- d:\documents and settings\All Users\Application Data\DAEMON Tools Lite
2009-11-29 09:30 . 2009-11-29 09:30 -------- d-----w- d:\documents and settings\Rival\Application Data\Malwarebytes
2009-11-29 09:30 . 2009-09-10 13:54 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2009-11-29 09:30 . 2009-11-29 09:30 -------- d-----w- d:\documents and settings\All Users\Application Data\Malwarebytes
2009-11-29 09:30 . 2009-09-10 13:53 19160 ----a-w- d:\windows\system32\drivers\mbam.sys
2009-11-29 09:30 . 2009-11-29 09:30 -------- d-----w- d:\program files\Malwarebytes' Anti-Malware
2009-11-28 21:40 . 2009-11-28 21:40 -------- d---a-w- d:\windows\VDLL.DLL
2009-11-28 21:40 . 2009-11-28 21:40 -------- d---a-w- d:\windows\RUNDL132.EXE
2009-11-28 21:40 . 2009-11-28 21:40 -------- d---a-w- d:\windows\logo_1.exe
2009-11-28 21:38 . 2009-11-28 21:38 554240 ----a-w- d:\windows\system32\msvcp80.dll
2009-11-28 21:38 . 2009-04-30 11:04 626688 ----a-r- d:\windows\system32\msvcr80.dll
2009-11-28 21:38 . 2009-11-28 21:38 34048 ----a-w- d:\windows\system32\eEmpty.exe
2009-11-28 21:38 . 2008-04-14 04:42 135680 ----a-w- d:\windows\system32\T.COM
2009-11-28 21:38 . 2008-04-14 04:42 146432 ----a-w- d:\windows\R.COM
2009-11-28 21:37 . 2009-11-28 21:37 -------- d-----w- d:\program files\Common Files\MicroWorld
2009-11-28 21:37 . 2009-11-28 21:37 -------- d-----w- d:\documents and settings\All Users\Application Data\MicroWorld
2009-11-27 15:25 . 2009-11-27 15:25 -------- d-----w- d:\program files\oZone3D
2009-11-27 12:03 . 2009-11-27 12:03 -------- d-----w- d:\program files\QIP
2009-11-24 17:33 . 2009-11-24 17:33 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Rockstar Games
2009-11-24 17:27 . 2009-11-24 17:27 -------- d-----w- d:\program files\Rockstar Games
2009-11-23 12:53 . 2009-11-28 13:01 -------- d-----w- d:\documents and settings\Rival\Application Data\BitTorrent
2009-11-20 16:17 . 2009-11-20 16:17 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\images
2009-11-20 16:11 . 2009-07-08 11:05 73728 ----a-w- d:\windows\system32\RtNicProp32.dll
2009-11-20 16:11 . 2009-05-26 18:30 73728 ----a-w- d:\windows\system32\RTNUninst32.dll
2009-11-19 21:14 . 2009-11-19 21:14 -------- d-----w- d:\program files\SystemRequirementsLab
2009-11-19 20:45 . 2009-11-19 20:45 -------- d-----w- d:\program files\Trend Micro
2009-11-19 19:41 . 2009-11-19 19:41 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Updater2
2009-11-19 19:36 . 2009-11-19 19:36 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\AntikVirtualSTB
2009-11-19 19:35 . 2009-11-23 18:06 -------- d-----w- d:\program files\AntikVirtualSTB
2009-11-18 14:02 . 2009-11-18 14:02 -------- d-----w- d:\windows\Downloaded Installations
2009-11-17 15:55 . 2009-11-18 15:26 -------- d-----w- d:\windows\PixArt
2009-11-17 15:55 . 2006-10-12 10:57 14336 ----a-w- d:\windows\system32\P207USD.dll
2009-11-17 15:38 . 2009-10-08 13:24 352256 ----a-w- d:\windows\vncutil.exe
2009-11-17 15:38 . 2009-10-23 17:53 41984 ----a-w- d:\windows\system32\RtkCoInstXP.dll
2009-11-17 15:38 . 2009-03-17 13:07 122880 ----a-w- d:\windows\RtkAudioService.exe
2009-11-17 15:38 . 2006-01-04 14:41 1389056 ----a-w- d:\windows\system32\drivers\Monfilt.sys
2009-11-17 15:38 . 2008-08-05 19:10 1684736 ----a-w- d:\windows\system32\drivers\Ambfilt.sys
2009-11-17 14:20 . 2009-11-17 14:20 -------- d-----w- D:\NVIDIA
2009-11-17 14:05 . 2009-11-17 14:05 -------- d-----w- d:\documents and settings\All Users\Application Data\InstallShield
2009-11-17 14:02 . 2009-11-17 14:02 -------- d-----w- d:\documents and settings\Rival\Application Data\AdobeUM
2009-11-17 12:45 . 2009-11-18 13:19 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\eSupport.com
2009-11-17 12:45 . 2009-11-17 12:45 23600 ----a-w- d:\windows\system32\drivers\TVICHW32.SYS
2009-11-17 12:43 . 2009-11-17 12:43 -------- d-----w- d:\windows\Sun
2009-11-15 22:16 . 2009-11-10 18:40 15688 ----a-w- d:\windows\system32\lsdelete.exe
2009-11-15 22:10 . 2009-11-15 22:10 -------- d-----w- d:\program files\ICQ6Toolbar
2009-11-15 22:10 . 2009-11-15 22:10 -------- d-----w- d:\documents and settings\All Users\Application Data\ICQ
2009-11-15 22:09 . 2009-11-20 11:09 -------- d-----w- d:\documents and settings\Rival\Application Data\ICQ
2009-11-15 22:09 . 2009-11-15 22:11 -------- d-----w- d:\program files\ICQ6.5
2009-11-13 10:08 . 2009-11-13 10:08 -------- d-----w- d:\documents and settings\LocalService\Local Settings\Application Data\NVIDIA Corporation
2009-11-13 10:08 . 2009-11-13 10:08 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\NVIDIA Corporation
2009-11-13 10:07 . 2009-11-13 10:08 -------- d-----w- d:\program files\NVIDIA nTune Performance Application
2009-11-12 08:43 . 2009-11-12 08:43 -------- d-----w- d:\documents and settings\Rival\Incomplete
2009-11-12 08:42 . 2009-11-27 09:07 -------- d-----w- d:\documents and settings\Rival\.limewire
2009-11-11 19:05 . 2009-11-11 19:06 -------- d-----w- d:\windows\NV7202332.TMP
2009-11-11 16:43 . 2009-11-11 16:43 -------- d-----w- D:\rivatuner
2009-11-10 20:02 . 2009-11-10 20:02 618 ----a-w- d:\windows\eReg.dat
2009-11-10 19:56 . 2009-11-10 19:56 -------- d-----w- D:\strongdc230
2009-11-10 19:48 . 2009-11-10 19:48 -------- d-----w- d:\documents and settings\All Users\Application Data\HP
2009-11-10 19:48 . 2009-11-10 19:48 -------- d-----w- d:\program files\Common Files\HP
2009-11-10 19:47 . 2009-11-10 19:47 -------- d-----w- d:\program files\Hewlett-Packard
2009-11-10 19:47 . 2009-11-10 19:47 -------- d-----w- d:\program files\Common Files\Hewlett-Packard
2009-11-10 19:46 . 2005-03-08 04:43 16496 ----a-r- d:\windows\system32\drivers\HPZipr12.sys
2009-11-10 19:46 . 2005-03-08 04:43 51120 ----a-r- d:\windows\system32\drivers\HPZid412.sys
2009-11-10 19:46 . 2005-03-08 04:43 21744 ----a-r- d:\windows\system32\drivers\HPZius12.sys
2009-11-10 19:46 . 2008-04-13 23:15 15104 -c--a-w- d:\windows\system32\dllcache\usbscan.sys
2009-11-10 19:46 . 2008-04-13 23:15 15104 ----a-w- d:\windows\system32\drivers\usbscan.sys
2009-11-10 19:45 . 2004-09-29 11:15 204800 ----a-w- d:\windows\system32\HPZipr12.dll
2009-11-10 19:45 . 2004-09-29 11:14 69632 ----a-w- d:\windows\system32\HPZipm12.exe
2009-11-10 19:45 . 2004-09-29 11:12 278584 ----a-w- d:\windows\system32\HPZidr12.dll
2009-11-10 19:45 . 2004-09-29 11:09 57344 ----a-w- d:\windows\system32\HPZisn12.dll
2009-11-10 19:45 . 2004-09-29 11:09 94208 ----a-w- d:\windows\system32\HPZipt12.dll
2009-11-10 19:45 . 2004-09-29 11:08 61440 ----a-w- d:\windows\system32\HPZinw12.exe
2009-11-10 19:44 . 2009-11-10 19:48 -------- d-----w- d:\program files\HP
2009-11-10 19:44 . 2008-04-13 23:15 26368 -c--a-w- d:\windows\system32\dllcache\usbstor.sys
2009-11-10 19:44 . 2008-04-13 23:17 25856 -c--a-w- d:\windows\system32\dllcache\usbprint.sys
2009-11-10 19:44 . 2008-04-13 23:17 25856 ----a-w- d:\windows\system32\drivers\usbprint.sys
2009-11-10 19:43 . 2009-11-10 19:49 112876 ----a-w- d:\windows\hpoins07.dat
2009-11-10 19:43 . 2005-05-24 02:48 21124 ------w- d:\windows\hpomdl07.dat
2009-11-10 19:42 . 2009-11-10 19:42 -------- d-----w- d:\documents and settings\Rival\Application Data\HP
2009-11-10 19:41 . 2009-11-10 20:44 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Eraser
2009-11-10 19:39 . 2009-06-10 13:22 83344 ----a-w- d:\windows\system32\Erasext.dll
2009-11-10 19:39 . 2009-06-10 13:22 307088 ----a-w- d:\windows\system32\Eraser.dll
2009-11-10 19:39 . 2009-06-10 13:22 73104 ----a-w- d:\windows\system32\Eraserl.exe
2009-11-10 19:39 . 2009-11-10 19:39 -------- d-----w- d:\program files\Eraser
2009-11-10 19:28 . 2006-11-20 08:04 6656 ----a-w- d:\windows\system32\CoInst_070301.dll
2009-11-10 19:26 . 2008-11-10 10:41 32656 ----a-w- d:\windows\system32\msonpmon.dll
2009-11-10 19:25 . 2009-11-10 19:27 -------- d-----w- d:\program files\Microsoft Works
2009-11-10 19:25 . 2009-11-10 19:25 -------- d-----w- d:\program files\MSBuild
2009-11-10 19:23 . 2009-11-10 19:23 -------- d-----w- d:\windows\SHELLNEW
2009-11-10 19:23 . 2009-11-10 19:23 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Microsoft Help
2009-11-10 19:23 . 2009-11-10 19:29 -------- d-----w- d:\documents and settings\All Users\Application Data\Microsoft Help
2009-11-10 19:23 . 2009-11-10 19:23 -------- d-----r- D:\MSOCache
2009-11-10 19:22 . 2009-11-10 19:22 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\ESET
2009-11-10 19:20 . 2009-11-14 16:33 -------- d-----w- d:\program files\ELIS
2009-11-10 19:20 . 2009-11-10 19:20 -------- d-----w- d:\documents and settings\Rival\WINDOWS
2009-11-10 19:20 . 1998-10-29 15:45 306688 ----a-w- d:\windows\IsUninst.exe
2009-11-10 19:18 . 2009-11-10 19:18 -------- d-----w- d:\program files\CCleaner
2009-11-10 19:14 . 2009-11-10 19:14 -------- d-----w- d:\program files\BitTorrent
2009-11-10 19:13 . 2009-11-10 19:31 -------- d-----w- d:\program files\Java
2009-11-10 19:13 . 2009-11-10 19:13 -------- d-----w- d:\program files\Common Files\Java
2009-11-10 19:13 . 2009-11-10 19:13 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150010}
2009-11-10 19:11 . 2009-11-12 08:43 -------- d-----w- d:\program files\LimeWire
2009-11-10 19:10 . 2009-11-24 19:26 -------- d-----w- d:\documents and settings\Rival\Application Data\vlc
2009-11-10 19:10 . 2009-11-10 19:10 -------- d-----w- d:\program files\VideoLAN
2009-11-10 19:09 . 2009-11-17 16:00 -------- d-----w- d:\documents and settings\Rival\Application Data\skypePM
2009-11-10 19:08 . 2009-11-18 14:03 -------- d-----w- d:\documents and settings\Rival\Application Data\Skype
2009-11-10 19:08 . 2009-11-10 19:08 -------- d-----w- d:\program files\Common Files\Skype
2009-11-10 19:08 . 2009-11-10 19:33 -------- d-----r- d:\program files\Skype
2009-11-10 19:08 . 2009-11-10 19:08 -------- d-----w- d:\documents and settings\All Users\Application Data\Skype
2009-11-10 19:02 . 2009-11-10 19:02 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Identities
2009-11-10 19:02 . 2009-11-11 16:06 -------- d-----w- d:\documents and settings\Rival\Local Settings\Application Data\Ahead
2009-11-10 19:01 . 2009-11-11 16:07 -------- d-----w- d:\documents and settings\Rival\Application Data\Ahead
2009-11-10 19:01 . 2009-11-10 19:01 -------- d-----w- d:\documents and settings\All Users\Application Data\Ahead
2009-11-10 19:00 . 2009-11-10 19:01 -------- d-----w- d:\program files\Common Files\Ahead
2009-11-10 19:00 . 2009-11-10 19:00 -------- d-----w- d:\documents and settings\All Users\Application Data\Nero
2009-11-10 19:00 . 2009-11-10 19:00 -------- d-----w- d:\program files\Nero

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-29 18:21 . 2009-11-10 18:12 16608 ----a-w- d:\windows\gdrv.sys
2009-11-26 09:49 . 2009-11-10 18:40 3695616 ----a-w- d:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AutoLaunch.exe
2009-11-25 20:38 . 2009-11-10 18:13 -------- d--h--w- d:\program files\InstallShield Installation Information
2009-11-18 13:08 . 2009-11-10 19:19 -------- d-----w- d:\program files\Winamp
2009-11-17 14:05 . 2009-11-10 18:13 -------- d-----w- d:\program files\GIGABYTE
2009-11-17 14:05 . 2009-11-10 18:13 -------- d-----w- d:\program files\Common Files\InstallShield
2009-11-13 10:08 . 2009-11-10 18:29 -------- d-----w- d:\program files\NVIDIA Corporation
2009-11-11 10:50 . 2009-11-10 18:52 -------- d-----w- d:\documents and settings\Rival\Application Data\BSplayer PRO
2009-11-10 19:36 . 2009-11-10 17:59 70088 ----a-w- d:\documents and settings\Rival\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-11-10 19:31 . 2009-11-10 19:31 411368 ----a-w- d:\windows\system32\deploytk.dll
2009-11-10 19:31 . 2009-11-10 19:31 152576 ----a-w- d:\documents and settings\Rival\Application Data\Sun\Java\jre1.6.0_17\lzma.dll
2009-11-10 19:31 . 2009-11-10 19:31 79488 ----a-w- d:\documents and settings\Rival\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-11-10 18:55 . 2009-11-10 18:55 223128 ----a-w- d:\windows\system32\drivers\dtscsi.sys.15645381
2009-11-10 18:54 . 2009-11-10 18:54 642560 ----a-w- d:\windows\system32\drivers\sptd.sys.14179210
2009-11-10 18:53 . 2009-11-10 18:53 -------- d-----w- d:\documents and settings\Rival\Application Data\CyberLink
2009-11-10 18:53 . 2009-11-10 18:53 -------- d-----w- d:\documents and settings\All Users\Application Data\CyberLink
2009-11-10 18:53 . 2009-11-10 18:53 -------- d-----w- d:\program files\CyberLink
2009-11-10 18:52 . 2009-11-10 18:52 -------- d-----w- d:\program files\Webteh
2009-11-10 18:51 . 2009-11-10 18:51 -------- d-----w- d:\program files\Codec Pack - All In 1
2009-11-10 18:50 . 2009-11-10 18:51 737280 ----a-w- d:\windows\iun6002.exe
2009-11-10 18:47 . 2009-11-10 18:47 -------- d-----w- d:\documents and settings\All Users\Application Data\FLEXnet
2009-11-10 18:47 . 2009-11-10 18:44 -------- d-----w- d:\program files\Common Files\Adobe
2009-11-10 18:47 . 2009-11-10 18:47 -------- d-----w- d:\program files\Common Files\Macrovision Shared
2009-11-10 18:39 . 2009-11-10 18:39 -------- dc-h--w- d:\documents and settings\All Users\Application Data\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-11-10 18:39 . 2009-11-10 18:39 -------- d-----w- d:\program files\Lavasoft
2009-11-10 18:37 . 2009-11-10 18:37 -------- d-----w- d:\documents and settings\Rival\Application Data\ESET
2009-11-10 18:36 . 2009-11-10 18:36 -------- d-----w- d:\program files\ESET
2009-11-10 18:36 . 2009-11-10 18:36 -------- d-----w- d:\documents and settings\All Users\Application Data\ESET
2009-11-10 18:29 . 2009-11-10 18:29 -------- d-----w- d:\program files\AGEIA Technologies
2009-11-10 18:29 . 2009-11-10 18:29 -------- d-----w- d:\program files\Common Files\Wise Installation Wizard
2009-11-10 18:29 . 2009-11-10 18:29 -------- d-----w- d:\documents and settings\All Users\Application Data\NVIDIA Corporation
2009-11-10 18:18 . 2009-11-10 18:16 -------- d-----w- d:\program files\Realtek
2009-11-10 18:18 . 2009-11-10 18:18 -------- d-----w- d:\documents and settings\Rival\Application Data\InstallShield
2009-11-10 18:14 . 2009-11-10 18:14 -------- d-----w- d:\program files\Intel
2009-11-10 18:10 . 2009-11-10 17:53 5938 ----a-w- d:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2009-11-10 18:10 . 2009-11-10 17:53 166455 ----a-w- d:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-11-10 18:06 . 2009-11-10 17:53 8972 ----a-w- d:\windows\pchealth\helpctr\Config\Cntstore.bin
2009-11-10 17:54 . 2009-11-10 17:54 -------- d-----w- d:\program files\microsoft frontpage
2009-11-10 17:51 . 2009-11-10 17:51 21640 ----a-w- d:\windows\system32\emptyregdb.dat
2009-11-10 17:51 . 2009-11-10 17:51 -------- d-----w- d:\program files\Windows Media Connect 2
2009-10-30 18:49 . 2009-11-10 18:18 176768 ----a-w- d:\windows\system32\drivers\Rtenicxp.sys
2009-10-28 10:35 . 2009-11-10 18:16 5937152 ----a-w- d:\windows\system32\drivers\RtkHDAud.sys
2009-10-16 12:59 . 2009-11-10 18:16 18782720 ----a-w- d:\windows\RTHDCPL.EXE
2009-09-27 17:19 . 2009-09-27 17:19 3674112 ----a-w- d:\windows\system32\nvwssr.dll
2009-09-27 15:12 . 2009-11-10 18:06 5900416 ----a-w- d:\windows\system32\nv4_disp.dll
2009-09-27 15:12 . 2009-11-10 18:04 7655872 ----a-w- d:\windows\system32\drivers\nv4_mini.sys
2009-09-27 15:12 . 2009-09-27 15:12 888832 ----a-w- d:\windows\system32\nvapi.dll
2009-09-27 15:12 . 2009-09-27 15:12 2194024 ----a-w- d:\windows\system32\nvcuvid.dll
2009-09-27 15:12 . 2009-09-27 15:12 1714792 ----a-w- d:\windows\system32\nvcuvenc.dll
2009-09-27 15:12 . 2009-09-27 15:12 170600 ----a-w- d:\windows\system32\nvcodins.dll
2009-09-27 15:12 . 2009-09-27 15:12 170600 ----a-w- d:\windows\system32\nvcod.dll
2009-09-27 15:12 . 2009-09-27 15:12 1604482 ----a-w- d:\windows\system32\nvdata.bin
2009-09-27 15:12 . 2009-09-27 15:12 10756096 ----a-w- d:\windows\system32\nvoglnt.dll
2009-09-27 15:12 . 2007-12-04 17:41 2007040 ----a-w- d:\windows\system32\nvcuda.dll
2009-09-04 17:01 . 2009-09-04 17:01 525656 ----a-w- D:\DXSETUP.exe
2009-09-04 17:01 . 2009-09-04 17:01 94024 ----a-w- D:\DSETUP.dll
2009-09-04 17:01 . 2009-09-04 17:01 1691464 ----a-w- D:\dsetup32.dll
2009-09-04 16:44 . 2009-11-11 19:21 515416 ----a-w- d:\windows\system32\XAudio2_5.dll
2009-09-04 16:44 . 2009-11-11 19:21 238936 ----a-w- d:\windows\system32\xactengine3_5.dll
2009-09-04 16:44 . 2009-11-11 19:21 69464 ----a-w- d:\windows\system32\XAPOFX1_3.dll
2009-09-04 16:29 . 2009-11-11 19:21 453456 ----a-w- d:\windows\system32\d3dx10_42.dll
2009-09-04 16:29 . 2009-11-11 19:21 235344 ----a-w- d:\windows\system32\d3dx11_42.dll
2009-09-04 16:29 . 2009-11-11 19:21 5501792 ----a-w- d:\windows\system32\d3dcsx_42.dll
2009-09-04 16:29 . 2009-11-11 19:21 1974616 ----a-w- d:\windows\system32\D3DCompiler_42.dll
2009-09-04 16:29 . 2009-11-11 19:21 1892184 ----a-w- d:\windows\system32\D3DX9_42.dll
.

------- Sigcheck -------

[7] 2008-04-14 . A706E122B398FE1AB85CB9B75D044223 . 3066880 . . [6.00.2900.5512] . . d:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2007-05-21 . DA297A862E5F093A07D37C05F608C686 . 3582976 . . [7.00.6000.20544] . . d:\windows\system32\mshtml.dll
[-] 2007-05-21 . DA297A862E5F093A07D37C05F608C686 . 3582976 . . [7.00.6000.20544] . . d:\windows\system32\dllcache\mshtml.dll

[7] 2008-04-14 . 7A4F775ABB2F1C97DEF3E73AFA2FAEDD . 666112 . . [6.00.2900.5512] . . d:\windows\ServicePackFiles\i386\wininet.dll
[-] 2007-05-21 . B8F4DB39CA7353752F245379D285C80E . 823296 . . [7.00.6000.20544] . . d:\windows\system32\wininet.dll
[-] 2007-05-21 . B8F4DB39CA7353752F245379D285C80E . 823296 . . [7.00.6000.20544] . . d:\windows\system32\dllcache\wininet.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-11-29_11.41.26 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-11-29 18:21 . 2009-11-29 18:21 16384 d:\windows\temp\Perflib_Perfdata_7a0.dat
+ 2009-11-29 18:21 . 2009-11-29 18:21 16384 d:\windows\temp\Perflib_Perfdata_748.dat
+ 2009-11-29 18:21 . 2009-11-29 18:21 16384 d:\windows\temp\Perflib_Perfdata_708.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVIDIA nTune"="d:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe clear" [X]
"ICQ"="d:\progra~1\ICQ6.5\ICQ.exe silent" [X]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="d:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-05-16 153136]
"MSMSGS"="d:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="d:\program files\ESET\ESET Smart Security\egui.exe" [2007-12-21 1443072]
"Ad-Watch"="d:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-11-10 520024]
"GrooveMonitor"="d:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"nwiz"="d:\program files\NVIDIA Corporation\nView\nwiz.exe" [2009-09-23 1657448]
"NvCplDaemon"="d:\windows\system32\NvCpl.dll" [2009-09-27 13918208]
"NvMediaCenter"="d:\windows\system32\NvMcTray.dll" [2009-09-27 86016]
"Acrobat Assistant 8.0"="d:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-11 624248]
"Malwarebytes Anti-Malware (reboot)"="d:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"RTHDCPL"="RTHDCPL.EXE" - d:\windows\RTHDCPL.EXE [2009-10-16 18782720]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

d:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - d:\windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe [2009-11-10 295606]
Adobe Acrobat Synchronizer.lnk - d:\program files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe [2009-11-23 738968]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKLM\~\startupfolder\D:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=d:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=d:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"d:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Hry\\Call of Juarez - Bound in Blood\\CoJBiBGame_x86.exe"=
"d:\\Program Files\\ICQ6.5\\ICQ.exe"=
"d:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\BitTorrent\\bittorrent.exe"=

R0 Lbd;Lbd;d:\windows\system32\drivers\Lbd.sys [10.11.2009 19:40 64160]
R2 ekrn;Eset Service;d:\program files\ESET\ESET Smart Security\ekrn.exe [21.12.2007 8:21 468224]
R2 GEST Service;GEST Service for program management.;d:\program files\GIGABYTE\EnergySaver\GSvr.exe [10.11.2009 19:13 80392]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;d:\program files\Lavasoft\Ad-Aware\AAWService.exe [18.1.2009 22:34 1028432]
S0 sptd;sptd;d:\windows\system32\drivers\sptd.sys [29.11.2009 11:10 691696]
S3 Ambfilt;Ambfilt;d:\windows\system32\drivers\Ambfilt.sys [17.11.2009 16:38 1684736]
S3 PAC207;Look 110;d:\windows\system32\DRIVERS\PFC027.SYS --> d:\windows\system32\DRIVERS\PFC027.SYS [?]
S3 TVICHW32;TVICHW32;d:\windows\system32\drivers\TVICHW32.SYS [17.11.2009 13:45 23600]
.
Contents of the 'Scheduled Tasks' folder

2009-11-24 d:\windows\Tasks\Ad-Aware Update (Weekly).job
- d:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 18:40]
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - d:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Previesť cieľ odkazu do Adobe PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Previesť cieľ odkazu do existujúceho PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Previesť do Adobe PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Previesť vybraté odkazy do Adobe PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Previesť vybraté odkazy do existujúceho PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Previesť výber do Adobe PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Previesť výber do existujúceho PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Pridať do existujúceho súboru PDF - d:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDow ... ab_nvd.cab
FF - ProfilePath - d:\documents and settings\Rival\Application Data\Mozilla\Firefox\Profiles\a08aqzya.default\
FF - prefs.js: browser.startup.homepage - hxxp://sk.start3.mozilla.com/firefox?cl ... k:official

---- FIREFOX POLICIES ----
d:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
d:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-29 19:24
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}]
"ImagePath"="\??\d:\program files\CyberLink\PowerDVD\000.fcl"
.
Completion time: 2009-11-29 19:25
ComboFix-quarantined-files.txt 2009-11-29 18:25
ComboFix2.txt 2009-11-29 17:42
ComboFix3.txt 2009-11-29 13:48
ComboFix4.txt 2009-11-29 11:42

Pre-Run: 32 615 604 224 bytes free
Post-Run: 14 adresárov, 32 584 544 256 voľných bajtov

- - End Of File - - CA93BF48063522292BBF47A9A2072596

[jaro3]

Podle tohto logu už tam nákaza v Mbr(Oprava boot sectoru ) není.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix[mezera]/u

Popř.:
Najdi a smaž:
C:\327882R2FWJFW
C:\ComboFix
C:\qoobox

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware, následně T-Cleaner smaž a zapni si zase antivir i antispyware.


Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit, smazat, přesunout nebo přejmenovat

Jinak by to mělo být bez nákazy...

[rival]

zdravim, tak som teda tu recovery nerobil, urobil som len to ze som prebebol ccleanerom a tcleanerom ako si radil, avsak ten problem s grafikou pretrvava, stale to seka. neviem ci mi vies este nejako poradit, ale ak nie nevadi, aj tak si urobil dost , za co ti dakujem :) ps uz ani neviem kedy ale raz sa mi stalo ze mi pri davani noveho win prehodilo D a C, cize moje C sa chova ako D...

[rival]

a vlastne som teraz spravil aj to recovery MBR :)

[jaro3]

Nákazy tam již nejsou , pokračuj spíš v sekci problémy s HW atd.
Tady můžeš dát zelenou fajfku.