v posledních 14 dnech mi tak2x denně zamrzne počítač, a nejde nic,než ho natvrdo vypnout.
najde se dobrá duše, která mi zkontroluje PC? díky moc
Logfile of random's system information tool 1.10 (written by random/random)
Run by An at 2015-10-24 20:19:33
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 69 GB (14%) free of 477 GB
Total RAM: 3000 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:19:41, on 24.10.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINXP\system32\spoolsv.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINXP\System32\snmp.exe
C:\WINXP\system32\spupdsvc.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\system32\rundll32.exe
C:\WINXP\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\WINXP\system32\hkcmd.exe
C:\WINXP\system32\igfxpers.exe
C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe
C:\WINXP\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\WINXP\system32\wbem\unsecapp.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\WINXP\system32\wuauclt.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\programy\Altap Salamander 2.5\SALAMAND.exe
C:\Documents and Settings\An\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\An.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://remote.vagonka-drevo.cz/remote/logon.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
O4 - HKLM\..\Run: [IgfxTray] C:\WINXP\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINXP\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINXP\system32\igfxpers.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Svátky a výročí] C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 6369 bytes
======Scheduled tasks folder======
C:\WINXP\tasks\Adobe Flash Player Updater.job - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINXP\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\An\Data aplikací\Mozilla\Firefox\Profiles\oov9j4be.default-1393233160812
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINXP\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1545512]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"IntelZeroConfig"=C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe [2010-07-19 1400832]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-07-19 1206544]
"IgfxTray"=C:\WINXP\system32\igfxtray.exe [2011-08-23 136472]
"HotKeysCmds"=C:\WINXP\system32\hkcmd.exe [2011-08-23 170264]
"Persistence"=C:\WINXP\system32\igfxpers.exe [2011-08-23 145688]
"pdfFactory Pro Dispatcher v2"=C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe [2004-01-24 393216]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-12-11 1044480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-10-13 6134544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"=C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe [2004-12-12 960512]
"uTorrent"=C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe [2015-10-13 1822048]
"ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-28 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINXP\system32\igfxdev.dll [2011-04-22 214016]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe:*:Enabled:ASUS Device Discovery Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe:*:Enabled:ASUS Firmware Restoration Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe:*:Enabled:ASUS LiveUpdate Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe:*:Enabled:ASUS Router Setup Wizard Application"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe"="C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Users\An\Data aplikací\uTorrent\uTorrent.exe"="C:\Users\An\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINXP\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2015-10-24 20:19:33 ----D---- C:\rsit
2015-10-16 16:09:56 ----D---- C:\Program Files\Mozilla Firefox
2015-10-13 17:47:36 ----A---- C:\WINXP\system32\aswBoot.exe
2015-10-13 17:47:13 ----A---- C:\WINXP\avastSS.scr
2015-10-11 15:53:42 ----A---- C:\WINXP\system32\drivers\SET599.tmp
2015-10-11 15:52:56 ----A---- C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys
2015-10-11 15:52:55 ----D---- C:\Documents and Settings\An\Data aplikací\Apowersoft
======List of files/folders modified in the last 1 month======
2015-10-24 20:19:35 ----D---- C:\Program Files\trend micro
2015-10-24 20:19:30 ----D---- C:\WINXP\Prefetch
2015-10-24 20:18:15 ----D---- C:\Documents and Settings\An\Data aplikací\uTorrent
2015-10-24 20:14:05 ----D---- C:\Documents and Settings\An\Data aplikací\Skype
2015-10-24 20:04:06 ----D---- C:\WINXP\Temp
2015-10-24 19:53:07 ----A---- C:\Documents and Settings\All Users.WINXP\Data aplikací\HPWALog.txt
2015-10-24 19:52:17 ----RD---- C:\Users
2015-10-24 16:43:55 ----D---- C:\Program Files
2015-10-19 20:57:00 ----A---- C:\WINXP\SchedLgU.Txt
2015-10-19 17:00:25 ----SHD---- C:\WINXP\Installer
2015-10-19 16:59:17 ----D---- C:\Documents and Settings\All Users.WINXP\Data aplikací\Skype
2015-10-17 22:46:33 ----D---- C:\WINXP\system32
2015-10-17 20:19:32 ----D---- C:\WINXP\system32\CatRoot2
2015-10-17 20:18:07 ----HD---- C:\WINXP\inf
2015-10-17 19:57:39 ----A---- C:\WINXP\system32\FlashPlayerApp.exe
2015-10-17 19:57:07 ----A---- C:\WINXP\system32\FlashPlayerInstaller.exe
2015-10-14 16:11:26 ----D---- C:\WINXP
2015-10-14 16:11:18 ----D---- C:\WINXP\system32\drivers
2015-10-13 17:50:01 ----D---- C:\WINXP\system32\CatRoot
2015-10-13 17:47:55 ----SD---- C:\WINXP\Tasks
2015-10-11 15:53:52 ----RSHDC---- C:\WINXP\system32\dllcache
2015-09-28 21:33:56 ----A---- C:\WINXP\system32\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINXP\system32\drivers\aswRvrt.sys [2015-10-13 49776]
R0 aswVmm;avast! VM Monitor; C:\WINXP\system32\drivers\aswVmm.sys [2015-10-13 208664]
R0 hpdskflt;HP Disk Filter Driver; C:\WINXP\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINXP\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\WINXP\system32\drivers\sfaudio.sys [2008-03-28 24064]
R1 AswRdr;aswRdr; C:\WINXP\system32\drivers\aswRdr.sys [2015-10-13 55200]
R1 aswSnx;aswSnx; C:\WINXP\system32\drivers\aswSnx.sys [2015-10-13 789296]
R1 aswSP;aswSP; C:\WINXP\system32\drivers\aswSP.sys [2015-10-13 434184]
R1 intelppm;Řadič procesoru Intel; C:\WINXP\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINXP\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINXP\System32\drivers\ws2ifsl.sys [2004-10-02 12032]
R2 aswHwid;avast! HardwareID; C:\WINXP\system32\drivers\aswHwid.sys [2015-10-13 24016]
R2 aswMonFlt;aswMonFlt; C:\WINXP\system32\drivers\aswMonFlt.sys [2015-10-13 76000]
R2 rimmptsk;rimmptsk; C:\WINXP\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 s24trans;WLAN Transport; C:\WINXP\system32\DRIVERS\s24trans.sys [2010-05-19 13952]
R3 Accelerometer;HP Accelerometer; C:\WINXP\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINXP\system32\drivers\ADIHdAud.sys [2008-12-11 338944]
R3 AEAudio;AE Audio Service; C:\WINXP\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINXP\system32\drivers\aswStmXP.sys [2015-10-13 157888]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINXP\system32\DRIVERS\e1y5132.sys [2010-04-07 241880]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINXP\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINXP\system32\DRIVERS\igxpmp32.sys [2011-04-22 2016704]
R3 IFXTPM;IFXTPM; C:\WINXP\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINXP\system32\DRIVERS\NETwNx32.sys [2010-07-14 6650752]
R3 NIC1394;1394 Net Driver; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rismc32;RICOH Smart Card Reader; C:\WINXP\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\WINXP\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINXP\system32\DRIVERS\SynTP.sys [2009-07-29 213680]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINXP\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINXP\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032]
S3 aswTdi;aswTdi; C:\WINXP\system32\drivers\aswTdi.sys [2015-10-13 57888]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINXP\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NLNdisMP;NLNdisMP; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 PcaSp50;Rawether NDIS 5.X SPR Protocol Driver; C:\WINXP\system32\DRIVERS\PcaSp50.sys [2010-09-07 28160]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINXP\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINXP\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Ovladač skeneru USB; C:\WINXP\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-13 146600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-07-19 866576]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-07-19 477456]
R2 S24EventMonitor;Intel(R) PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2010-07-19 966656]
R2 SNMP;SNMP; C:\WINXP\System32\snmp.exe [2008-04-14 32768]
R2 spupdsvc;Windows Service Pack Installer update service; C:\WINXP\system32\spupdsvc.exe [2008-11-07 26144]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINXP\System32\snmptrap.exe [2008-04-14 8704]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zamrzá počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
díky # AdwCleaner v5.014 - Logfile created 24/10/2015 at 20:55:36
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : An - AN-5D7331296777
# Running from : C:\Documents and Settings\An\Plocha\adwcleaner_5.014.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\WINXP\system32\drivers\sp_rsdrv2.sys
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Plus-HD-7.6-bg.exe]
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{25D40F93-9CD4-4B41-A542-C2521961E529}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2ED066D0-4D6C-45BA-ABE7-E41136F4075D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{57255D88-1563-48F6-8F11-6CE4528AB662}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74CF76DF-FC33-464E-8E5F-7B924062EBC8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{7EE4E692-B4A5-49D6-A65B-FCA2A2442BCD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{7FFF5B88-DC6F-4873-9D2D-90EA05BFC03E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8E899D62-B42E-456B-87AD-ACC4039EEF5D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{97139AF8-9099-4897-B9EA-42E6B2B191E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A66F331B-51CB-42C8-B1B3-83CED369B007}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A7EC9F40-1B68-46F5-AFE7-97BCD8FF67C3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BBBE0E78-38F1-4F5D-AC78-D448C5B7906A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F6B1E180-389D-4C2F-9A68-5682DE3AAACB}
***** [ Web browsers ] *****
[-] [C:\Documents and Settings\An\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : trovi.search
*************************
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C6].txt - [2061 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
Logfile of random's system information tool 1.10 (written by random/random)
Run by An at 2015-10-24 23:08:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 69 GB (14%) free of 477 GB
Total RAM: 3000 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:08:09, on 24.10.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINXP\system32\spoolsv.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINXP\System32\snmp.exe
C:\WINXP\system32\spupdsvc.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\WINXP\system32\hkcmd.exe
C:\WINXP\system32\igfxpers.exe
C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
C:\WINXP\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINXP\system32\NOTEPAD.EXE
C:\WINXP\system32\wbem\unsecapp.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINXP\System32\svchost.exe
C:\WINXP\system32\wuauclt.exe
C:\WINXP\system32\rundll32.exe
C:\Documents and Settings\An\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\An.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://remote.vagonka-drevo.cz/remote/logon.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
O4 - HKLM\..\Run: [IgfxTray] C:\WINXP\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINXP\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINXP\system32\igfxpers.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Svátky a výročí] C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 6056 bytes
======Scheduled tasks folder======
C:\WINXP\tasks\Adobe Flash Player Updater.job - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINXP\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\An\Data aplikací\Mozilla\Firefox\Profiles\oov9j4be.default-1393233160812
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINXP\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1545512]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"IntelZeroConfig"=C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe [2010-07-19 1400832]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-07-19 1206544]
"IgfxTray"=C:\WINXP\system32\igfxtray.exe [2011-08-23 136472]
"HotKeysCmds"=C:\WINXP\system32\hkcmd.exe [2011-08-23 170264]
"Persistence"=C:\WINXP\system32\igfxpers.exe [2011-08-23 145688]
"pdfFactory Pro Dispatcher v2"=C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe [2004-01-24 393216]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-12-11 1044480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-10-13 6134544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"=C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe [2004-12-12 960512]
"uTorrent"=C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe [2015-10-13 1822048]
"ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-28 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINXP\system32\igfxdev.dll [2011-04-22 214016]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe:*:Enabled:ASUS Device Discovery Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe:*:Enabled:ASUS Firmware Restoration Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe:*:Enabled:ASUS LiveUpdate Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe:*:Enabled:ASUS Router Setup Wizard Application"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe"="C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Users\An\Data aplikací\uTorrent\uTorrent.exe"="C:\Users\An\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINXP\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2015-10-24 20:19:33 ----D---- C:\rsit
2015-10-16 16:09:56 ----D---- C:\Program Files\Mozilla Firefox
2015-10-13 17:47:36 ----A---- C:\WINXP\system32\aswBoot.exe
2015-10-13 17:47:13 ----A---- C:\WINXP\avastSS.scr
2015-10-11 15:53:42 ----A---- C:\WINXP\system32\drivers\SET599.tmp
2015-10-11 15:52:56 ----A---- C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys
2015-10-11 15:52:55 ----D---- C:\Documents and Settings\An\Data aplikací\Apowersoft
======List of files/folders modified in the last 1 month======
2015-10-24 23:08:06 ----D---- C:\Program Files\trend micro
2015-10-24 23:02:38 ----D---- C:\Documents and Settings\An\Data aplikací\Skype
2015-10-24 20:58:26 ----D---- C:\Documents and Settings\An\Data aplikací\uTorrent
2015-10-24 20:57:19 ----D---- C:\WINXP\Temp
2015-10-24 20:56:55 ----A---- C:\Documents and Settings\All Users.WINXP\Data aplikací\HPWALog.txt
2015-10-24 20:56:52 ----RD---- C:\Users
2015-10-24 20:55:50 ----A---- C:\WINXP\SchedLgU.Txt
2015-10-24 20:55:36 ----D---- C:\WINXP\system32\drivers
2015-10-24 20:55:36 ----D---- C:\AdwCleaner
2015-10-24 20:54:13 ----D---- C:\WINXP\Prefetch
2015-10-24 16:43:55 ----D---- C:\Program Files
2015-10-19 17:00:25 ----SHD---- C:\WINXP\Installer
2015-10-19 17:00:25 ----D---- C:\Documents and Settings\All Users.WINXP\Data aplikací\Skype
2015-10-17 22:46:33 ----D---- C:\WINXP\system32
2015-10-17 20:19:32 ----D---- C:\WINXP\system32\CatRoot2
2015-10-17 20:18:07 ----HD---- C:\WINXP\inf
2015-10-17 19:57:39 ----A---- C:\WINXP\system32\FlashPlayerApp.exe
2015-10-17 19:57:07 ----A---- C:\WINXP\system32\FlashPlayerInstaller.exe
2015-10-14 16:11:26 ----D---- C:\WINXP
2015-10-13 17:50:01 ----D---- C:\WINXP\system32\CatRoot
2015-10-13 17:47:55 ----SD---- C:\WINXP\Tasks
2015-10-11 15:53:52 ----RSHDC---- C:\WINXP\system32\dllcache
2015-09-28 21:33:56 ----A---- C:\WINXP\system32\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINXP\system32\drivers\aswRvrt.sys [2015-10-13 49776]
R0 aswVmm;avast! VM Monitor; C:\WINXP\system32\drivers\aswVmm.sys [2015-10-13 208664]
R0 hpdskflt;HP Disk Filter Driver; C:\WINXP\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINXP\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\WINXP\system32\drivers\sfaudio.sys [2008-03-28 24064]
R1 AswRdr;aswRdr; C:\WINXP\system32\drivers\aswRdr.sys [2015-10-13 55200]
R1 aswSnx;aswSnx; C:\WINXP\system32\drivers\aswSnx.sys [2015-10-13 789296]
R1 aswSP;aswSP; C:\WINXP\system32\drivers\aswSP.sys [2015-10-13 434184]
R1 intelppm;Řadič procesoru Intel; C:\WINXP\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINXP\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINXP\System32\drivers\ws2ifsl.sys [2004-10-02 12032]
R2 aswHwid;avast! HardwareID; C:\WINXP\system32\drivers\aswHwid.sys [2015-10-13 24016]
R2 aswMonFlt;aswMonFlt; C:\WINXP\system32\drivers\aswMonFlt.sys [2015-10-13 76000]
R2 rimmptsk;rimmptsk; C:\WINXP\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 s24trans;WLAN Transport; C:\WINXP\system32\DRIVERS\s24trans.sys [2010-05-19 13952]
R3 Accelerometer;HP Accelerometer; C:\WINXP\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINXP\system32\drivers\ADIHdAud.sys [2008-12-11 338944]
R3 AEAudio;AE Audio Service; C:\WINXP\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINXP\system32\drivers\aswStmXP.sys [2015-10-13 157888]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINXP\system32\DRIVERS\e1y5132.sys [2010-04-07 241880]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINXP\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINXP\system32\DRIVERS\igxpmp32.sys [2011-04-22 2016704]
R3 IFXTPM;IFXTPM; C:\WINXP\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINXP\system32\DRIVERS\NETwNx32.sys [2010-07-14 6650752]
R3 NIC1394;1394 Net Driver; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rismc32;RICOH Smart Card Reader; C:\WINXP\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\WINXP\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINXP\system32\DRIVERS\SynTP.sys [2009-07-29 213680]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINXP\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINXP\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032]
S3 aswTdi;aswTdi; C:\WINXP\system32\drivers\aswTdi.sys [2015-10-13 57888]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINXP\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NLNdisMP;NLNdisMP; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 PcaSp50;Rawether NDIS 5.X SPR Protocol Driver; C:\WINXP\system32\DRIVERS\PcaSp50.sys [2010-09-07 28160]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINXP\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINXP\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Ovladač skeneru USB; C:\WINXP\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-13 146600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-07-19 866576]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-07-19 477456]
R2 S24EventMonitor;Intel(R) PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2010-07-19 966656]
R2 SNMP;SNMP; C:\WINXP\System32\snmp.exe [2008-04-14 32768]
R2 spupdsvc;Windows Service Pack Installer update service; C:\WINXP\system32\spupdsvc.exe [2008-11-07 26144]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINXP\System32\snmptrap.exe [2008-04-14 8704]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by An at 2015-10-24 23:08:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 69 GB (14%) free of 477 GB
Total RAM: 3000 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:08:09, on 24.10.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINXP\system32\spoolsv.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINXP\System32\snmp.exe
C:\WINXP\system32\spupdsvc.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\WINXP\system32\hkcmd.exe
C:\WINXP\system32\igfxpers.exe
C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
C:\WINXP\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINXP\system32\NOTEPAD.EXE
C:\WINXP\system32\wbem\unsecapp.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINXP\System32\svchost.exe
C:\WINXP\system32\wuauclt.exe
C:\WINXP\system32\rundll32.exe
C:\Documents and Settings\An\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\An.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://remote.vagonka-drevo.cz/remote/logon.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
O4 - HKLM\..\Run: [IgfxTray] C:\WINXP\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINXP\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINXP\system32\igfxpers.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Svátky a výročí] C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 6056 bytes
======Scheduled tasks folder======
C:\WINXP\tasks\Adobe Flash Player Updater.job - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINXP\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\An\Data aplikací\Mozilla\Firefox\Profiles\oov9j4be.default-1393233160812
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINXP\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1545512]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"IntelZeroConfig"=C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe [2010-07-19 1400832]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-07-19 1206544]
"IgfxTray"=C:\WINXP\system32\igfxtray.exe [2011-08-23 136472]
"HotKeysCmds"=C:\WINXP\system32\hkcmd.exe [2011-08-23 170264]
"Persistence"=C:\WINXP\system32\igfxpers.exe [2011-08-23 145688]
"pdfFactory Pro Dispatcher v2"=C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe [2004-01-24 393216]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-12-11 1044480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-10-13 6134544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"=C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe [2004-12-12 960512]
"uTorrent"=C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe [2015-10-13 1822048]
"ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-28 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINXP\system32\igfxdev.dll [2011-04-22 214016]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe:*:Enabled:ASUS Device Discovery Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe:*:Enabled:ASUS Firmware Restoration Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe:*:Enabled:ASUS LiveUpdate Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe:*:Enabled:ASUS Router Setup Wizard Application"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe"="C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Users\An\Data aplikací\uTorrent\uTorrent.exe"="C:\Users\An\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINXP\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2015-10-24 20:19:33 ----D---- C:\rsit
2015-10-16 16:09:56 ----D---- C:\Program Files\Mozilla Firefox
2015-10-13 17:47:36 ----A---- C:\WINXP\system32\aswBoot.exe
2015-10-13 17:47:13 ----A---- C:\WINXP\avastSS.scr
2015-10-11 15:53:42 ----A---- C:\WINXP\system32\drivers\SET599.tmp
2015-10-11 15:52:56 ----A---- C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys
2015-10-11 15:52:55 ----D---- C:\Documents and Settings\An\Data aplikací\Apowersoft
======List of files/folders modified in the last 1 month======
2015-10-24 23:08:06 ----D---- C:\Program Files\trend micro
2015-10-24 23:02:38 ----D---- C:\Documents and Settings\An\Data aplikací\Skype
2015-10-24 20:58:26 ----D---- C:\Documents and Settings\An\Data aplikací\uTorrent
2015-10-24 20:57:19 ----D---- C:\WINXP\Temp
2015-10-24 20:56:55 ----A---- C:\Documents and Settings\All Users.WINXP\Data aplikací\HPWALog.txt
2015-10-24 20:56:52 ----RD---- C:\Users
2015-10-24 20:55:50 ----A---- C:\WINXP\SchedLgU.Txt
2015-10-24 20:55:36 ----D---- C:\WINXP\system32\drivers
2015-10-24 20:55:36 ----D---- C:\AdwCleaner
2015-10-24 20:54:13 ----D---- C:\WINXP\Prefetch
2015-10-24 16:43:55 ----D---- C:\Program Files
2015-10-19 17:00:25 ----SHD---- C:\WINXP\Installer
2015-10-19 17:00:25 ----D---- C:\Documents and Settings\All Users.WINXP\Data aplikací\Skype
2015-10-17 22:46:33 ----D---- C:\WINXP\system32
2015-10-17 20:19:32 ----D---- C:\WINXP\system32\CatRoot2
2015-10-17 20:18:07 ----HD---- C:\WINXP\inf
2015-10-17 19:57:39 ----A---- C:\WINXP\system32\FlashPlayerApp.exe
2015-10-17 19:57:07 ----A---- C:\WINXP\system32\FlashPlayerInstaller.exe
2015-10-14 16:11:26 ----D---- C:\WINXP
2015-10-13 17:50:01 ----D---- C:\WINXP\system32\CatRoot
2015-10-13 17:47:55 ----SD---- C:\WINXP\Tasks
2015-10-11 15:53:52 ----RSHDC---- C:\WINXP\system32\dllcache
2015-09-28 21:33:56 ----A---- C:\WINXP\system32\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINXP\system32\drivers\aswRvrt.sys [2015-10-13 49776]
R0 aswVmm;avast! VM Monitor; C:\WINXP\system32\drivers\aswVmm.sys [2015-10-13 208664]
R0 hpdskflt;HP Disk Filter Driver; C:\WINXP\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINXP\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\WINXP\system32\drivers\sfaudio.sys [2008-03-28 24064]
R1 AswRdr;aswRdr; C:\WINXP\system32\drivers\aswRdr.sys [2015-10-13 55200]
R1 aswSnx;aswSnx; C:\WINXP\system32\drivers\aswSnx.sys [2015-10-13 789296]
R1 aswSP;aswSP; C:\WINXP\system32\drivers\aswSP.sys [2015-10-13 434184]
R1 intelppm;Řadič procesoru Intel; C:\WINXP\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINXP\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINXP\System32\drivers\ws2ifsl.sys [2004-10-02 12032]
R2 aswHwid;avast! HardwareID; C:\WINXP\system32\drivers\aswHwid.sys [2015-10-13 24016]
R2 aswMonFlt;aswMonFlt; C:\WINXP\system32\drivers\aswMonFlt.sys [2015-10-13 76000]
R2 rimmptsk;rimmptsk; C:\WINXP\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 s24trans;WLAN Transport; C:\WINXP\system32\DRIVERS\s24trans.sys [2010-05-19 13952]
R3 Accelerometer;HP Accelerometer; C:\WINXP\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINXP\system32\drivers\ADIHdAud.sys [2008-12-11 338944]
R3 AEAudio;AE Audio Service; C:\WINXP\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINXP\system32\drivers\aswStmXP.sys [2015-10-13 157888]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINXP\system32\DRIVERS\e1y5132.sys [2010-04-07 241880]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINXP\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINXP\system32\DRIVERS\igxpmp32.sys [2011-04-22 2016704]
R3 IFXTPM;IFXTPM; C:\WINXP\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINXP\system32\DRIVERS\NETwNx32.sys [2010-07-14 6650752]
R3 NIC1394;1394 Net Driver; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rismc32;RICOH Smart Card Reader; C:\WINXP\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\WINXP\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINXP\system32\DRIVERS\SynTP.sys [2009-07-29 213680]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINXP\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINXP\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032]
S3 aswTdi;aswTdi; C:\WINXP\system32\drivers\aswTdi.sys [2015-10-13 57888]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINXP\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NLNdisMP;NLNdisMP; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 PcaSp50;Rawether NDIS 5.X SPR Protocol Driver; C:\WINXP\system32\DRIVERS\PcaSp50.sys [2010-09-07 28160]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINXP\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINXP\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Ovladač skeneru USB; C:\WINXP\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-13 146600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-07-19 866576]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-07-19 477456]
R2 S24EventMonitor;Intel(R) PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2010-07-19 966656]
R2 SNMP;SNMP; C:\WINXP\System32\snmp.exe [2008-04-14 32768]
R2 spupdsvc;Windows Service Pack Installer update service; C:\WINXP\system32\spupdsvc.exe [2008-11-07 26144]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINXP\System32\snmptrap.exe [2008-04-14 8704]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\WINXP\system32\drivers\SET599.tmp
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
All processes killed
========== FILES ==========
C:\WINXP\system32\drivers\SET599.tmp moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: All Users.WINXP
User: An
->Temp folder emptied: 1702597836 bytes
->Temporary Internet Files folder emptied: 28267754 bytes
->FireFox cache emptied: 361461113 bytes
->Google Chrome cache emptied: 87673942 bytes
->Flash cache emptied: 235 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User.WINXP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: k
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 40196757 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 32902 bytes
RecycleBin emptied: 948082279 bytes
Total Files Cleaned = 3 022,00 mb
[EMPTYFLASH]
User: All Users
User: All Users.WINXP
User: An
->Flash cache emptied: 0 bytes
User: Default
User: Default User
User: Default User.WINXP
User: k
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 10252015_111157
Files moved on Reboot...
File move failed. C:\WINXP\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
C:\WINXP\temp\Perflib_Perfdata_f8.dat moved successfully.
Registry entries deleted on Reboot...
========== FILES ==========
C:\WINXP\system32\drivers\SET599.tmp moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: All Users.WINXP
User: An
->Temp folder emptied: 1702597836 bytes
->Temporary Internet Files folder emptied: 28267754 bytes
->FireFox cache emptied: 361461113 bytes
->Google Chrome cache emptied: 87673942 bytes
->Flash cache emptied: 235 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User.WINXP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: k
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 40196757 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 32902 bytes
RecycleBin emptied: 948082279 bytes
Total Files Cleaned = 3 022,00 mb
[EMPTYFLASH]
User: All Users
User: All Users.WINXP
User: An
->Flash cache emptied: 0 bytes
User: Default
User: Default User
User: Default User.WINXP
User: k
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 10252015_111157
Files moved on Reboot...
File move failed. C:\WINXP\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
C:\WINXP\temp\Perflib_Perfdata_f8.dat moved successfully.
Registry entries deleted on Reboot...
Re: Zamrzá počítač
Logfile of random's system information tool 1.10 (written by random/random)
Run by An at 2015-10-25 11:29:57
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 64 GB (14%) free of 477 GB
Total RAM: 3000 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:30:18, on 25.10.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINXP\system32\spoolsv.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINXP\System32\snmp.exe
C:\WINXP\system32\spupdsvc.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\system32\rundll32.exe
C:\WINXP\Explorer.EXE
C:\WINXP\notepad.exe
C:\WINXP\system32\wuauclt.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\WINXP\system32\hkcmd.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINXP\system32\igfxpers.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe
C:\WINXP\system32\ctfmon.exe
C:\WINXP\system32\wbem\unsecapp.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\An\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\An.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://remote.vagonka-drevo.cz/remote/logon.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
O4 - HKLM\..\Run: [IgfxTray] C:\WINXP\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINXP\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINXP\system32\igfxpers.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Svátky a výročí] C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 6289 bytes
======Scheduled tasks folder======
C:\WINXP\tasks\Adobe Flash Player Updater.job - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINXP\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\An\Data aplikací\Mozilla\Firefox\Profiles\oov9j4be.default-1393233160812
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINXP\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1545512]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"IntelZeroConfig"=C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe [2010-07-19 1400832]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-07-19 1206544]
"IgfxTray"=C:\WINXP\system32\igfxtray.exe [2011-08-23 136472]
"HotKeysCmds"=C:\WINXP\system32\hkcmd.exe [2011-08-23 170264]
"Persistence"=C:\WINXP\system32\igfxpers.exe [2011-08-23 145688]
"pdfFactory Pro Dispatcher v2"=C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe [2004-01-24 393216]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-12-11 1044480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-10-13 6134544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"=C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe [2004-12-12 960512]
"uTorrent"=C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe [2015-10-13 1822048]
"ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-28 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINXP\system32\igfxdev.dll [2011-04-22 214016]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe:*:Enabled:ASUS Device Discovery Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe:*:Enabled:ASUS Firmware Restoration Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe:*:Enabled:ASUS LiveUpdate Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe:*:Enabled:ASUS Router Setup Wizard Application"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe"="C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Users\An\Data aplikací\uTorrent\uTorrent.exe"="C:\Users\An\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINXP\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2015-10-25 11:11:57 ----D---- C:\_OTM
2015-10-24 19:19:33 ----D---- C:\rsit
2015-10-16 15:09:56 ----D---- C:\Program Files\Mozilla Firefox
2015-10-13 16:47:36 ----A---- C:\WINXP\system32\aswBoot.exe
2015-10-13 16:47:13 ----A---- C:\WINXP\avastSS.scr
2015-10-11 14:52:56 ----A---- C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys
2015-10-11 14:52:55 ----D---- C:\Documents and Settings\An\Data aplikací\Apowersoft
======List of files/folders modified in the last 1 month======
2015-10-25 11:30:14 ----D---- C:\Program Files\trend micro
2015-10-25 11:29:33 ----D---- C:\Documents and Settings\An\Data aplikací\uTorrent
2015-10-25 11:29:11 ----D---- C:\Documents and Settings\An\Data aplikací\Skype
2015-10-25 11:24:28 ----D---- C:\WINXP\Temp
2015-10-25 11:24:26 ----D---- C:\WINXP\Prefetch
2015-10-25 11:24:20 ----A---- C:\Documents and Settings\All Users.WINXP\Data aplikací\HPWALog.txt
2015-10-25 11:23:38 ----D---- C:\WINXP\system32
2015-10-25 11:23:38 ----A---- C:\WINXP\system32\PerfStringBackup.INI
2015-10-25 11:19:31 ----RD---- C:\Users
2015-10-25 11:18:27 ----A---- C:\WINXP\SchedLgU.Txt
2015-10-25 11:12:00 ----D---- C:\WINXP\system32\drivers
2015-10-25 08:15:37 ----D---- C:\Program Files
2015-10-24 19:55:36 ----D---- C:\AdwCleaner
2015-10-19 16:00:25 ----SHD---- C:\WINXP\Installer
2015-10-19 16:00:25 ----D---- C:\Documents and Settings\All Users.WINXP\Data aplikací\Skype
2015-10-17 19:19:32 ----D---- C:\WINXP\system32\CatRoot2
2015-10-17 19:18:07 ----HD---- C:\WINXP\inf
2015-10-17 18:57:39 ----A---- C:\WINXP\system32\FlashPlayerApp.exe
2015-10-17 18:57:07 ----A---- C:\WINXP\system32\FlashPlayerInstaller.exe
2015-10-14 15:11:26 ----D---- C:\WINXP
2015-10-13 16:50:01 ----D---- C:\WINXP\system32\CatRoot
2015-10-13 16:47:55 ----SD---- C:\WINXP\Tasks
2015-10-11 14:53:52 ----RSHDC---- C:\WINXP\system32\dllcache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINXP\system32\drivers\aswRvrt.sys [2015-10-13 49776]
R0 aswVmm;avast! VM Monitor; C:\WINXP\system32\drivers\aswVmm.sys [2015-10-13 208664]
R0 hpdskflt;HP Disk Filter Driver; C:\WINXP\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINXP\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\WINXP\system32\drivers\sfaudio.sys [2008-03-28 24064]
R1 AswRdr;aswRdr; C:\WINXP\system32\drivers\aswRdr.sys [2015-10-13 55200]
R1 aswSnx;aswSnx; C:\WINXP\system32\drivers\aswSnx.sys [2015-10-13 789296]
R1 aswSP;aswSP; C:\WINXP\system32\drivers\aswSP.sys [2015-10-13 434184]
R1 intelppm;Řadič procesoru Intel; C:\WINXP\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINXP\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINXP\System32\drivers\ws2ifsl.sys [2004-10-02 12032]
R2 aswHwid;avast! HardwareID; C:\WINXP\system32\drivers\aswHwid.sys [2015-10-13 24016]
R2 aswMonFlt;aswMonFlt; C:\WINXP\system32\drivers\aswMonFlt.sys [2015-10-13 76000]
R2 rimmptsk;rimmptsk; C:\WINXP\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 s24trans;WLAN Transport; C:\WINXP\system32\DRIVERS\s24trans.sys [2010-05-19 13952]
R3 Accelerometer;HP Accelerometer; C:\WINXP\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINXP\system32\drivers\ADIHdAud.sys [2008-12-11 338944]
R3 AEAudio;AE Audio Service; C:\WINXP\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINXP\system32\drivers\aswStmXP.sys [2015-10-13 157888]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINXP\system32\DRIVERS\e1y5132.sys [2010-04-07 241880]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINXP\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINXP\system32\DRIVERS\igxpmp32.sys [2011-04-22 2016704]
R3 IFXTPM;IFXTPM; C:\WINXP\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINXP\system32\DRIVERS\NETwNx32.sys [2010-07-14 6650752]
R3 NIC1394;1394 Net Driver; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rismc32;RICOH Smart Card Reader; C:\WINXP\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\WINXP\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINXP\system32\DRIVERS\SynTP.sys [2009-07-29 213680]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINXP\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINXP\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032]
S3 aswTdi;aswTdi; C:\WINXP\system32\drivers\aswTdi.sys [2015-10-13 57888]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINXP\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NLNdisMP;NLNdisMP; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 PcaSp50;Rawether NDIS 5.X SPR Protocol Driver; C:\WINXP\system32\DRIVERS\PcaSp50.sys [2010-09-07 28160]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINXP\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINXP\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Ovladač skeneru USB; C:\WINXP\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-13 146600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-07-19 866576]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-07-19 477456]
R2 S24EventMonitor;Intel(R) PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2010-07-19 966656]
R2 SNMP;SNMP; C:\WINXP\System32\snmp.exe [2008-04-14 32768]
R2 spupdsvc;Windows Service Pack Installer update service; C:\WINXP\system32\spupdsvc.exe [2008-11-07 26144]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINXP\System32\snmptrap.exe [2008-04-14 8704]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by An at 2015-10-25 11:29:57
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 64 GB (14%) free of 477 GB
Total RAM: 3000 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:30:18, on 25.10.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINXP\system32\spoolsv.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINXP\System32\snmp.exe
C:\WINXP\system32\spupdsvc.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\system32\rundll32.exe
C:\WINXP\Explorer.EXE
C:\WINXP\notepad.exe
C:\WINXP\system32\wuauclt.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\WINXP\system32\hkcmd.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINXP\system32\igfxpers.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe
C:\WINXP\system32\ctfmon.exe
C:\WINXP\system32\wbem\unsecapp.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\An\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
C:\WINXP\System32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\An\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\An.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://remote.vagonka-drevo.cz/remote/logon.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
O4 - HKLM\..\Run: [IgfxTray] C:\WINXP\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINXP\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINXP\system32\igfxpers.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Svátky a výročí] C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINXP\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINXP\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 6289 bytes
======Scheduled tasks folder======
C:\WINXP\tasks\Adobe Flash Player Updater.job - C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINXP\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\An\Data aplikací\Mozilla\Firefox\Profiles\oov9j4be.default-1393233160812
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINXP\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1545512]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"IntelZeroConfig"=C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe [2010-07-19 1400832]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-07-19 1206544]
"IgfxTray"=C:\WINXP\system32\igfxtray.exe [2011-08-23 136472]
"HotKeysCmds"=C:\WINXP\system32\hkcmd.exe [2011-08-23 170264]
"Persistence"=C:\WINXP\system32\igfxpers.exe [2011-08-23 145688]
"pdfFactory Pro Dispatcher v2"=C:\WINXP\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe [2004-01-24 393216]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-12-11 1044480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-10-13 6134544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"=C:\Program Files\OKsoftware\Svátky a výročí\Vyroci.exe [2004-12-12 960512]
"uTorrent"=C:\Documents and Settings\An\Data aplikací\uTorrent\uTorrent.exe [2015-10-13 1822048]
"ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-28 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINXP\system32\igfxdev.dll [2011-04-22 214016]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Discovery.exe:*:Enabled:ASUS Device Discovery Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\Rescue.exe:*:Enabled:ASUS Firmware Restoration Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\LiveUpdate.exe:*:Enabled:ASUS LiveUpdate Application"
"C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe"="C:\Program Files\ASUS\RT-N10E Wireless Router Utilities\QISWizard.exe:*:Enabled:ASUS Router Setup Wizard Application"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe"="C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll"="C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll:*:Enabled:Video Download Capture"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Users\An\Data aplikací\uTorrent\uTorrent.exe"="C:\Users\An\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINXP\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
======List of files/folders created in the last 1 month======
2015-10-25 11:11:57 ----D---- C:\_OTM
2015-10-24 19:19:33 ----D---- C:\rsit
2015-10-16 15:09:56 ----D---- C:\Program Files\Mozilla Firefox
2015-10-13 16:47:36 ----A---- C:\WINXP\system32\aswBoot.exe
2015-10-13 16:47:13 ----A---- C:\WINXP\avastSS.scr
2015-10-11 14:52:56 ----A---- C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys
2015-10-11 14:52:55 ----D---- C:\Documents and Settings\An\Data aplikací\Apowersoft
======List of files/folders modified in the last 1 month======
2015-10-25 11:30:14 ----D---- C:\Program Files\trend micro
2015-10-25 11:29:33 ----D---- C:\Documents and Settings\An\Data aplikací\uTorrent
2015-10-25 11:29:11 ----D---- C:\Documents and Settings\An\Data aplikací\Skype
2015-10-25 11:24:28 ----D---- C:\WINXP\Temp
2015-10-25 11:24:26 ----D---- C:\WINXP\Prefetch
2015-10-25 11:24:20 ----A---- C:\Documents and Settings\All Users.WINXP\Data aplikací\HPWALog.txt
2015-10-25 11:23:38 ----D---- C:\WINXP\system32
2015-10-25 11:23:38 ----A---- C:\WINXP\system32\PerfStringBackup.INI
2015-10-25 11:19:31 ----RD---- C:\Users
2015-10-25 11:18:27 ----A---- C:\WINXP\SchedLgU.Txt
2015-10-25 11:12:00 ----D---- C:\WINXP\system32\drivers
2015-10-25 08:15:37 ----D---- C:\Program Files
2015-10-24 19:55:36 ----D---- C:\AdwCleaner
2015-10-19 16:00:25 ----SHD---- C:\WINXP\Installer
2015-10-19 16:00:25 ----D---- C:\Documents and Settings\All Users.WINXP\Data aplikací\Skype
2015-10-17 19:19:32 ----D---- C:\WINXP\system32\CatRoot2
2015-10-17 19:18:07 ----HD---- C:\WINXP\inf
2015-10-17 18:57:39 ----A---- C:\WINXP\system32\FlashPlayerApp.exe
2015-10-17 18:57:07 ----A---- C:\WINXP\system32\FlashPlayerInstaller.exe
2015-10-14 15:11:26 ----D---- C:\WINXP
2015-10-13 16:50:01 ----D---- C:\WINXP\system32\CatRoot
2015-10-13 16:47:55 ----SD---- C:\WINXP\Tasks
2015-10-11 14:53:52 ----RSHDC---- C:\WINXP\system32\dllcache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINXP\system32\drivers\aswRvrt.sys [2015-10-13 49776]
R0 aswVmm;avast! VM Monitor; C:\WINXP\system32\drivers\aswVmm.sys [2015-10-13 208664]
R0 hpdskflt;HP Disk Filter Driver; C:\WINXP\system32\DRIVERS\hpdskflt.sys [2008-05-23 24624]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINXP\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\WINXP\system32\drivers\sfaudio.sys [2008-03-28 24064]
R1 AswRdr;aswRdr; C:\WINXP\system32\drivers\aswRdr.sys [2015-10-13 55200]
R1 aswSnx;aswSnx; C:\WINXP\system32\drivers\aswSnx.sys [2015-10-13 789296]
R1 aswSP;aswSP; C:\WINXP\system32\drivers\aswSP.sys [2015-10-13 434184]
R1 intelppm;Řadič procesoru Intel; C:\WINXP\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINXP\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINXP\System32\drivers\ws2ifsl.sys [2004-10-02 12032]
R2 aswHwid;avast! HardwareID; C:\WINXP\system32\drivers\aswHwid.sys [2015-10-13 24016]
R2 aswMonFlt;aswMonFlt; C:\WINXP\system32\drivers\aswMonFlt.sys [2015-10-13 76000]
R2 rimmptsk;rimmptsk; C:\WINXP\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 s24trans;WLAN Transport; C:\WINXP\system32\DRIVERS\s24trans.sys [2010-05-19 13952]
R3 Accelerometer;HP Accelerometer; C:\WINXP\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINXP\system32\drivers\ADIHdAud.sys [2008-12-11 338944]
R3 AEAudio;AE Audio Service; C:\WINXP\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINXP\system32\drivers\aswStmXP.sys [2015-10-13 157888]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINXP\system32\DRIVERS\e1y5132.sys [2010-04-07 241880]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINXP\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINXP\system32\DRIVERS\igxpmp32.sys [2011-04-22 2016704]
R3 IFXTPM;IFXTPM; C:\WINXP\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINXP\system32\DRIVERS\NETwNx32.sys [2010-07-14 6650752]
R3 NIC1394;1394 Net Driver; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rismc32;RICOH Smart Card Reader; C:\WINXP\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
R3 sdbus;sdbus; C:\WINXP\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINXP\system32\DRIVERS\SynTP.sys [2009-07-29 213680]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINXP\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINXP\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\WINXP\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032]
S3 aswTdi;aswTdi; C:\WINXP\system32\drivers\aswTdi.sys [2015-10-13 57888]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINXP\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NLNdisMP;NLNdisMP; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\WINXP\system32\DRIVERS\nlndis.sys []
S3 PcaSp50;Rawether NDIS 5.X SPR Protocol Driver; C:\WINXP\system32\DRIVERS\PcaSp50.sys [2010-09-07 28160]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINXP\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINXP\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Ovladač skeneru USB; C:\WINXP\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-13 146600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-07-19 866576]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-07-19 477456]
R2 S24EventMonitor;Intel(R) PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2010-07-19 966656]
R2 SNMP;SNMP; C:\WINXP\System32\snmp.exe [2008-04-14 32768]
R2 spupdsvc;Windows Service Pack Installer update service; C:\WINXP\system32\spupdsvc.exe [2008-11-07 26144]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINXP\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINXP\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINXP\System32\snmptrap.exe [2008-04-14 8704]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
tak po dnešku to vypadá dobře. ještě bych to odzkoušela zítra, a napíšu, jak to dopadlo. Ale zatím nezamrzá Díky moc-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Zatím není zač a ozvěte se.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
počítač vypadá OK zatím ani jednou nezamrzl,tak to vypadá, že to pomohlo. Děkuji moc, a posílám zase nějakou tu korunku na provoz
Re: Zamrzá počítač
Murphyho zákon.. dopsala jsem, a za 10 minut zamrznul.. UFF 
tak co dál?
tak co dál?-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzá počítač
Udělejte kompletní sken MBAM: http://www.stahuj.centrum.cz/internet_a ... me-backup/ a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzá počítač
no jsem trochu mimo 
na tom odkazu je jakýsi zálohovač chrome..
jak mám teda udělat scan MBAM?
díky
na tom odkazu je jakýsi zálohovač chrome.. jak mám teda udělat scan MBAM?
díky
Přispějete na provoz fóra?