Facebook vir
Napsal: 20 črc 2011 18:20
Dobrý den 
,
bratrovi se podařilo kliknout na špatný odkaz na Facebooku a teď mám v počítači asi to samé, jako spousta lidí, kteří sem píší. Pročítal jsem si pár takových témat a zjistil, že mám naprosto stejné problémy jako OMarek, který sem psal dnes ráno. Potřebuji tedy vědět, jestli se mám pokusit postupovat stejně, jako když jste radili jemu, nebo jestli je možné, že virus je v každém počítači individuální a je tedy třeba individuálního postupu pro jeho likvidaci. Příznaky jsou: nefunkční AvastFree, nemožnost nainstalovat AVG (během instalace se počítač sám restartuje a naběhne do nouzového režimu, to vydrží pár vteřin a dojde k opětovnému restartu, ale už do normálního režimu). Jinak se počítač tváří, že mu nic není.
Předem děkuji za odpověď a posílám log z RSITu
Logfile of random's system information tool 1.09 (written by random/random)
Run by xxx at 2011-07-20 19:08:56
Microsoft Windows 7 Home Premium
System drive C: has 49 GB (64%) free of 76 GB
Total RAM: 3071 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:35, on 20.7.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\sysdriver32.exe
C:\Windows\sysdriver32_.exe
C:\Windows\systemup.exe
C:\Windows\l1rezerv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\ProgramData\MFAData\pack\avgrunasx.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\ProgramData\MFAData\pack\avgmfapx.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\DOWNLOAD\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\xxx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [wxpdrv] C:\Windows\services32.exe
O4 - HKLM\..\Run: [tray_ico0] C:\Windows\update.tray-7-0\svchost.exe
O4 - HKLM\..\Run: [tray_ico1] C:\Windows\update.tray-12-0\svchost.exe
O4 - HKLM\..\Run: [8845533.exe] "C:\Users\xxx\AppData\Local\Temp\8845533.exe"
O4 - HKLM\..\Run: [sysdriver32.exe] "C:\Windows\sysdriver32.exe" rezerv
O4 - HKLM\..\Run: [sysdriver32_.exe] "C:\Windows\sysdriver32_.exe" rezerv
O4 - HKLM\..\Run: [2235867.exe] "C:\Windows\Temp\2235867.exe"
O4 - HKLM\..\Run: [5659726.exe] "C:\Windows\Temp\5659726.exe"
O4 - HKLM\..\Run: [964638.exe] "C:\Windows\Temp\964638.exe"
O4 - HKLM\..\Run: [systemup] "C:\Windows\systemup.exe" stand
O4 - HKLM\..\Run: [l1rezerv.exe] "C:\Windows\l1rezerv.exe"
O4 - HKLM\..\Run: [MFARestart] "C:\ProgramData\MFAData\pack\avgrunasx.exe" /usereg
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [HKCU] C:\Users\xxx\AppData\Roaming\explorer\svchost.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\BitTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Policies\Explorer\Run: [Policies] C:\Users\xxx\AppData\Roaming\explorer\svchost.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: srvbtcclient - Unknown owner - C:\Windows\update.5.0\svchost.exe
O23 - Service: srviecheck - Unknown owner - C:\Windows\update.2\svchost.exe
O23 - Service: srvsysdriver32 - Unknown owner - C:\Windows\sysdriver32.exe
O23 - Service: wxpdrivers - Unknown owner - C:\Windows\update.1\svchost.exe
--
End of file - 5732 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-12-25 8129056]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-10-01 98304]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui []
"wxpdrv"=C:\Windows\services32.exe [2011-07-20 1147392]
"tray_ico"= []
"tray_ico0"=C:\Windows\update.tray-7-0\svchost.exe [2011-07-20 1147392]
"tray_ico1"=C:\Windows\update.tray-12-0\svchost.exe [2011-07-20 1147392]
"tray_ico2"= []
"tray_ico3"= []
"tray_ico4"= []
"8845533.exe"=C:\Users\xxx\AppData\Local\Temp\8845533.exe [2011-07-20 232960]
"sysdriver32.exe"=C:\Windows\sysdriver32.exe [2011-07-20 232960]
"sysdriver32_.exe"=C:\Windows\sysdriver32_.exe [2011-07-20 232960]
"2235867.exe"=C:\Windows\Temp\2235867.exe [2011-07-20 232960]
"5659726.exe"=C:\Windows\Temp\5659726.exe [2011-07-20 232960]
"964638.exe"=C:\Windows\Temp\964638.exe [2011-07-20 483328]
"systemup"=C:\Windows\systemup.exe [2011-07-20 114176]
"l1rezerv.exe"=C:\Windows\l1rezerv.exe [2011-07-20 110592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"HKCU"=C:\Users\xxx\AppData\Roaming\explorer\svchost.exe []
"BitTorrent"=C:\Program Files\BitTorrent\BitTorrent.exe [2011-04-16 2931568]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Policies"=C:\Users\xxx\AppData\Roaming\explorer\svchost.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
C:\Program Files\BitTorrent\BitTorrent.exe [2011-04-16 2931568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-03-17 74752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^xxx^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
GoogleUpdateTaskMachineCore.job
GoogleUpdateTaskMachineUA.job
SA.DAT
SCHEDLGU.TXT
GoogleUpdateTaskMachineCore.job
GoogleUpdateTaskMachineUA.job
SA.DAT
SCHEDLGU.TXT
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableSecureUIAPaths"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-07-20 19:08:56 ----D---- C:\rsit
2011-07-20 19:08:56 ----D---- C:\Program Files\trend micro
2011-07-20 19:07:07 ----HD---- C:\Windows\update.tray-12-0
2011-07-20 17:36:24 ----HD---- C:\ProgramData\Common Files
2011-07-20 17:23:04 ----HD---- C:\Windows\update.tray-12-0-lnk
2011-07-20 17:18:36 ----D---- C:\ProgramData\MFAData
2011-07-20 17:07:03 ----D---- C:\Windows\ufa
2011-07-20 17:07:03 ----D---- C:\Windows\rpcminer
2011-07-20 17:07:03 ----D---- C:\Windows\phoenix
2011-07-20 17:02:16 ----A---- C:\Windows\ddh_iplist.txt
2011-07-20 17:01:55 ----A---- C:\Windows\l1rezerv.exe
2011-07-20 17:01:54 ----A---- C:\Windows\systemup.exe
2011-07-20 17:01:54 ----A---- C:\Windows\iecheck_iplist.txt
2011-07-20 17:01:45 ----A---- C:\Windows\unrar.exe
2011-07-20 17:01:18 ----A---- C:\Windows\btc_client_iplist.txt
2011-07-20 17:01:00 ----HD---- C:\Windows\update.2
2011-07-20 17:00:36 ----HD---- C:\Windows\update.5.0
2011-07-20 17:00:27 ----A---- C:\Windows\sysdriver32_.exe
2011-07-20 17:00:18 ----A---- C:\Windows\iplist.txt
2011-07-20 17:00:13 ----A---- C:\Windows\sysdriver32.exe
2011-07-20 16:59:55 ----A---- C:\Windows\front_ip_list.txt
2011-07-20 16:59:54 ----D---- C:\Windows\av_ico
2011-07-20 16:58:43 ----HD---- C:\Windows\update.1
2011-07-20 16:58:41 ----HD---- C:\Windows\update.tray-7-0-lnk
2011-07-20 16:58:41 ----HD---- C:\Windows\update.tray-7-0
2011-07-20 16:32:28 ----A---- C:\Windows\winlog-ids.txt
2011-07-20 16:32:28 ----A---- C:\Windows\winlog-dirs.txt
2011-07-20 16:32:25 ----A---- C:\Windows\services32.exe
2011-07-10 19:47:16 ----D---- C:\Program Files\Google
2011-07-06 21:36:12 ----D---- C:\Windows\system32\directx
======List of files/folders modified in the last 1 month======
2011-07-20 19:09:28 ----SHD---- C:\Windows\Installer
2011-07-20 19:08:56 ----RD---- C:\Program Files
2011-07-20 19:08:55 ----SHD---- C:\System Volume Information
2011-07-20 19:08:31 ----D---- C:\Windows\Temp
2011-07-20 19:08:18 ----D---- C:\Users\xxx\AppData\Roaming\BitTorrent
2011-07-20 19:07:08 ----HD---- C:\ProgramData
2011-07-20 19:07:07 ----AD---- C:\Windows
2011-07-20 19:05:37 ----D---- C:\Windows\system32\drivers
2011-07-20 19:02:40 ----D---- C:\Windows\System32
2011-07-20 19:02:40 ----D---- C:\Windows\inf
2011-07-20 19:02:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-07-20 19:00:06 ----D---- C:\Windows\Prefetch
2011-07-20 18:31:56 ----D---- C:\Windows\system32\config
2011-07-20 18:31:53 ----D---- C:\Windows\Tasks
2011-07-20 18:31:53 ----D---- C:\Windows\system32\wfp
2011-07-20 18:31:53 ----D---- C:\Windows\system32\DriverStore
2011-07-20 18:31:53 ----D---- C:\Windows\system32\drivers\etc
2011-07-20 18:31:53 ----D---- C:\Windows\system32\catroot2
2011-07-20 18:31:52 ----D---- C:\Windows\system32\wbem
2011-07-20 18:31:52 ----D---- C:\Windows\registration
2011-07-20 18:30:31 ----D---- C:\Windows\system32\LogFiles
2011-07-20 02:41:14 ----D---- C:\Users\xxx\AppData\Roaming\ICQ
2011-07-10 19:47:21 ----D---- C:\Windows\system32\Tasks
2011-07-01 22:03:44 ----D---- C:\Program Files\ICQ7.5
2011-06-25 18:38:10 ----D---- C:\Users\xxx\AppData\Roaming\Bioshock
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-03-01 34896]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-04-16 218688]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 104976]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-10-02 5166592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-12-25 2981024]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-08-20 189440]
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2011-01-07 248656]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 46976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 40320]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 52608]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-10-02 172032]
R2 srvbtcclient;srvbtcclient; C:\Windows\update.5.0\svchost.exe [2011-07-20 340480]
R2 srviecheck;srviecheck; C:\Windows\update.2\svchost.exe [2011-07-20 483328]
R2 srvsysdriver32;srvsysdriver32; C:\Windows\sysdriver32.exe [2011-07-20 232960]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 wxpdrivers;wxpdrivers; C:\Windows\update.1\svchost.exe [2011-07-20 1147392]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-10 136176]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2011-06-04 72704]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-10 136176]
-----------------EOF-----------------
,bratrovi se podařilo kliknout na špatný odkaz na Facebooku a teď mám v počítači asi to samé, jako spousta lidí, kteří sem píší. Pročítal jsem si pár takových témat a zjistil, že mám naprosto stejné problémy jako OMarek, který sem psal dnes ráno. Potřebuji tedy vědět, jestli se mám pokusit postupovat stejně, jako když jste radili jemu, nebo jestli je možné, že virus je v každém počítači individuální a je tedy třeba individuálního postupu pro jeho likvidaci. Příznaky jsou: nefunkční AvastFree, nemožnost nainstalovat AVG (během instalace se počítač sám restartuje a naběhne do nouzového režimu, to vydrží pár vteřin a dojde k opětovnému restartu, ale už do normálního režimu). Jinak se počítač tváří, že mu nic není.
Předem děkuji za odpověď a posílám log z RSITu
Logfile of random's system information tool 1.09 (written by random/random)
Run by xxx at 2011-07-20 19:08:56
Microsoft Windows 7 Home Premium
System drive C: has 49 GB (64%) free of 76 GB
Total RAM: 3071 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:35, on 20.7.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\sysdriver32.exe
C:\Windows\sysdriver32_.exe
C:\Windows\systemup.exe
C:\Windows\l1rezerv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\ProgramData\MFAData\pack\avgrunasx.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\ProgramData\MFAData\pack\avgmfapx.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\DOWNLOAD\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\xxx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [wxpdrv] C:\Windows\services32.exe
O4 - HKLM\..\Run: [tray_ico0] C:\Windows\update.tray-7-0\svchost.exe
O4 - HKLM\..\Run: [tray_ico1] C:\Windows\update.tray-12-0\svchost.exe
O4 - HKLM\..\Run: [8845533.exe] "C:\Users\xxx\AppData\Local\Temp\8845533.exe"
O4 - HKLM\..\Run: [sysdriver32.exe] "C:\Windows\sysdriver32.exe" rezerv
O4 - HKLM\..\Run: [sysdriver32_.exe] "C:\Windows\sysdriver32_.exe" rezerv
O4 - HKLM\..\Run: [2235867.exe] "C:\Windows\Temp\2235867.exe"
O4 - HKLM\..\Run: [5659726.exe] "C:\Windows\Temp\5659726.exe"
O4 - HKLM\..\Run: [964638.exe] "C:\Windows\Temp\964638.exe"
O4 - HKLM\..\Run: [systemup] "C:\Windows\systemup.exe" stand
O4 - HKLM\..\Run: [l1rezerv.exe] "C:\Windows\l1rezerv.exe"
O4 - HKLM\..\Run: [MFARestart] "C:\ProgramData\MFAData\pack\avgrunasx.exe" /usereg
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [HKCU] C:\Users\xxx\AppData\Roaming\explorer\svchost.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\BitTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Policies\Explorer\Run: [Policies] C:\Users\xxx\AppData\Roaming\explorer\svchost.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: srvbtcclient - Unknown owner - C:\Windows\update.5.0\svchost.exe
O23 - Service: srviecheck - Unknown owner - C:\Windows\update.2\svchost.exe
O23 - Service: srvsysdriver32 - Unknown owner - C:\Windows\sysdriver32.exe
O23 - Service: wxpdrivers - Unknown owner - C:\Windows\update.1\svchost.exe
--
End of file - 5732 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-12-25 8129056]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-10-01 98304]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui []
"wxpdrv"=C:\Windows\services32.exe [2011-07-20 1147392]
"tray_ico"= []
"tray_ico0"=C:\Windows\update.tray-7-0\svchost.exe [2011-07-20 1147392]
"tray_ico1"=C:\Windows\update.tray-12-0\svchost.exe [2011-07-20 1147392]
"tray_ico2"= []
"tray_ico3"= []
"tray_ico4"= []
"8845533.exe"=C:\Users\xxx\AppData\Local\Temp\8845533.exe [2011-07-20 232960]
"sysdriver32.exe"=C:\Windows\sysdriver32.exe [2011-07-20 232960]
"sysdriver32_.exe"=C:\Windows\sysdriver32_.exe [2011-07-20 232960]
"2235867.exe"=C:\Windows\Temp\2235867.exe [2011-07-20 232960]
"5659726.exe"=C:\Windows\Temp\5659726.exe [2011-07-20 232960]
"964638.exe"=C:\Windows\Temp\964638.exe [2011-07-20 483328]
"systemup"=C:\Windows\systemup.exe [2011-07-20 114176]
"l1rezerv.exe"=C:\Windows\l1rezerv.exe [2011-07-20 110592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"HKCU"=C:\Users\xxx\AppData\Roaming\explorer\svchost.exe []
"BitTorrent"=C:\Program Files\BitTorrent\BitTorrent.exe [2011-04-16 2931568]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Policies"=C:\Users\xxx\AppData\Roaming\explorer\svchost.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
C:\Program Files\BitTorrent\BitTorrent.exe [2011-04-16 2931568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-03-17 74752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^xxx^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
GoogleUpdateTaskMachineCore.job
GoogleUpdateTaskMachineUA.job
SA.DAT
SCHEDLGU.TXT
GoogleUpdateTaskMachineCore.job
GoogleUpdateTaskMachineUA.job
SA.DAT
SCHEDLGU.TXT
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableSecureUIAPaths"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-07-20 19:08:56 ----D---- C:\rsit
2011-07-20 19:08:56 ----D---- C:\Program Files\trend micro
2011-07-20 19:07:07 ----HD---- C:\Windows\update.tray-12-0
2011-07-20 17:36:24 ----HD---- C:\ProgramData\Common Files
2011-07-20 17:23:04 ----HD---- C:\Windows\update.tray-12-0-lnk
2011-07-20 17:18:36 ----D---- C:\ProgramData\MFAData
2011-07-20 17:07:03 ----D---- C:\Windows\ufa
2011-07-20 17:07:03 ----D---- C:\Windows\rpcminer
2011-07-20 17:07:03 ----D---- C:\Windows\phoenix
2011-07-20 17:02:16 ----A---- C:\Windows\ddh_iplist.txt
2011-07-20 17:01:55 ----A---- C:\Windows\l1rezerv.exe
2011-07-20 17:01:54 ----A---- C:\Windows\systemup.exe
2011-07-20 17:01:54 ----A---- C:\Windows\iecheck_iplist.txt
2011-07-20 17:01:45 ----A---- C:\Windows\unrar.exe
2011-07-20 17:01:18 ----A---- C:\Windows\btc_client_iplist.txt
2011-07-20 17:01:00 ----HD---- C:\Windows\update.2
2011-07-20 17:00:36 ----HD---- C:\Windows\update.5.0
2011-07-20 17:00:27 ----A---- C:\Windows\sysdriver32_.exe
2011-07-20 17:00:18 ----A---- C:\Windows\iplist.txt
2011-07-20 17:00:13 ----A---- C:\Windows\sysdriver32.exe
2011-07-20 16:59:55 ----A---- C:\Windows\front_ip_list.txt
2011-07-20 16:59:54 ----D---- C:\Windows\av_ico
2011-07-20 16:58:43 ----HD---- C:\Windows\update.1
2011-07-20 16:58:41 ----HD---- C:\Windows\update.tray-7-0-lnk
2011-07-20 16:58:41 ----HD---- C:\Windows\update.tray-7-0
2011-07-20 16:32:28 ----A---- C:\Windows\winlog-ids.txt
2011-07-20 16:32:28 ----A---- C:\Windows\winlog-dirs.txt
2011-07-20 16:32:25 ----A---- C:\Windows\services32.exe
2011-07-10 19:47:16 ----D---- C:\Program Files\Google
2011-07-06 21:36:12 ----D---- C:\Windows\system32\directx
======List of files/folders modified in the last 1 month======
2011-07-20 19:09:28 ----SHD---- C:\Windows\Installer
2011-07-20 19:08:56 ----RD---- C:\Program Files
2011-07-20 19:08:55 ----SHD---- C:\System Volume Information
2011-07-20 19:08:31 ----D---- C:\Windows\Temp
2011-07-20 19:08:18 ----D---- C:\Users\xxx\AppData\Roaming\BitTorrent
2011-07-20 19:07:08 ----HD---- C:\ProgramData
2011-07-20 19:07:07 ----AD---- C:\Windows
2011-07-20 19:05:37 ----D---- C:\Windows\system32\drivers
2011-07-20 19:02:40 ----D---- C:\Windows\System32
2011-07-20 19:02:40 ----D---- C:\Windows\inf
2011-07-20 19:02:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-07-20 19:00:06 ----D---- C:\Windows\Prefetch
2011-07-20 18:31:56 ----D---- C:\Windows\system32\config
2011-07-20 18:31:53 ----D---- C:\Windows\Tasks
2011-07-20 18:31:53 ----D---- C:\Windows\system32\wfp
2011-07-20 18:31:53 ----D---- C:\Windows\system32\DriverStore
2011-07-20 18:31:53 ----D---- C:\Windows\system32\drivers\etc
2011-07-20 18:31:53 ----D---- C:\Windows\system32\catroot2
2011-07-20 18:31:52 ----D---- C:\Windows\system32\wbem
2011-07-20 18:31:52 ----D---- C:\Windows\registration
2011-07-20 18:30:31 ----D---- C:\Windows\system32\LogFiles
2011-07-20 02:41:14 ----D---- C:\Users\xxx\AppData\Roaming\ICQ
2011-07-10 19:47:21 ----D---- C:\Windows\system32\Tasks
2011-07-01 22:03:44 ----D---- C:\Program Files\ICQ7.5
2011-06-25 18:38:10 ----D---- C:\Users\xxx\AppData\Roaming\Bioshock
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-03-01 34896]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-04-16 218688]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 104976]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-10-02 5166592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-12-25 2981024]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-08-20 189440]
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2011-01-07 248656]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 46976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 40320]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 52608]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-10-02 172032]
R2 srvbtcclient;srvbtcclient; C:\Windows\update.5.0\svchost.exe [2011-07-20 340480]
R2 srviecheck;srviecheck; C:\Windows\update.2\svchost.exe [2011-07-20 483328]
R2 srvsysdriver32;srvsysdriver32; C:\Windows\sysdriver32.exe [2011-07-20 232960]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 wxpdrivers;wxpdrivers; C:\Windows\update.1\svchost.exe [2011-07-20 1147392]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-10 136176]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2011-06-04 72704]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-10 136176]
-----------------EOF-----------------
, nevím, co bych bez vašeho fóra a bez Vás dělal