Zavirovaný PC, Autorun,inf
Napsal: 09 úno 2013 18:21
Hezký večer,
chtěl bych Vás požádat o pomoc. Mám tu počítač od známého,který si s viry už nevěděl rady. Zjistil jsem ale, že na to ani já sám nestačím a tak se obracím na místní odborníky. V pc byl původně nahraný Nod32, kterému už skončila licence. Provedl jsem odinstalování a nahrál aktualizovaný Avast. Nechal jsem spustit po restartu a vymazat infikované soubory. PC je ale stále silně infikované, pořád je problém s inf soubory na usb disku. PC se chová neobvykle. Děkuji za Vaši pomoc a přikládám log jak smazaných souborů Avastu, tak RSIT.
---------
Avast
=================================================
09.02.2013 14:36
Testují se všechny lokální disky
Soubor C:\Documents and Settings\All Users\Local Settings\Temp\msiezy.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\46357865364647353\winsvc.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\6438640620394286720310355\winsvc.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\1db44b5.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\click.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\jan24.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\nMNtfaARw2l97e30p5ev.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\nMNtffsdf5ev.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\init.exe je infikován virem Win32:Rootkit-gen [Rtk], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0071041861.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0084723116.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0158349174.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0241957657.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0421534352.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0468037619.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0498587030.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0512501120.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0522756636.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0591804236.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0596880773.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0686952267.exe je infikován virem Win32:VBInject-M [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\086421.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1004847439.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1131846596.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1165888206.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1206651313.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1227745031.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1251269652.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1331023282.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1378820853.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1478705837.exe je infikován virem Win32:Kryptik-LCC [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1490602080.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\14FD.tmp je infikován virem Win32:Zbot-QKD [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1548357174.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1594167085.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1644475486.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1982489836.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2120576185.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2214905548.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2324314906.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2339565542.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2347797242.exe je infikován virem Win32:Kryptik-LBQ [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2427.tmp je infikován virem Win32:Downloader-SJX [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2483526733.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2551760315.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2555440521.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2686509092.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2750910687.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2F6.tmp je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3283717800.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3360221002.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3644374422.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3729866461.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3752459131.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3845530256.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3884989220.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4057883284.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4088796294.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4154722828.exe je infikován virem Win32:Agent-AQUG [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4250582659.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4291974104.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4359104386.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4435018490.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4457656944.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4635095519.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\467.tmp je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4909906648.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5037947973.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5046036719.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5111716764.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5151987779.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5310628719.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5380127402.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5444508804.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5543084160.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5601420894.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5718244636.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5718526026.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5864640597.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5873798784.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5938432910.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6162307634.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6217775203.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6243949842.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6345840959.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6419558177.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6550531377.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6602060890.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6610671768.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7068318894.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7208977374.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7235480513.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7441185420.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7526952156.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8055391005.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8083845426.exe je infikován virem Win32:Kryptik-LCC [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8097670524.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8416193949.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8552084297.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8616229691.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8805680335.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8917454879.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9009003797.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9437788138.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9451312497.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9534337564.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9556931872.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9632208022.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9682578620.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9773154924.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9857273690.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9874211315.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9965444921.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9989092991.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\ftnqcbpop.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\java.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\jusched.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\toaster.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\wisptis.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\CB9R6URL\__utmj[1].htm je infikován virem HTML:Iframe-inf, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\CHIVG1QR\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\MVQT2HK5\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\OD2VGTA7\g[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\OJ3R6GD5\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\U9K72NCR\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\YHPURIL0\4[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\YXGNGNWH\fr[1].exe je infikován virem Win32:VBInject-M [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\wwfeqcpr.exe je infikován virem Win32:Trojan-gen, Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\alg.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\launch.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\mcshield.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\update.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre1.6.0_01\bin\extract.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\agent.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\file.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\iexplore.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\upgrade.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\dwm.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\htpatch.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\webscanx.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Samsung\Samsung New PC Studio\convert.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Samsung\Samsung New PC Studio\navapsvc.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\n je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\00000004.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\00000008.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\000000cb.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\80000000.@ je infikován virem Win64:Sirefef-A [Trj], Smazán
Soubor C:\RECYCLER\S-1-5-21-1960408961-796845957-839522115-1003\$41a0fa9e07d6e0ed441b8ec7661e0a22\n je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227874.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227875.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227876.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227945.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227946.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227947.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227963.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227964.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227965.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP604\A0230570.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231653.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231686.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231715.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0231739.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232739.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232778.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232806.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232823.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0233823.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0234115.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0240745.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241744.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241764.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241786.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0243091.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249702.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249713.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249730.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249754.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249772.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249791.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249804.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249836.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249855.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249868.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249886.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249900.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP608\A0250052.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250066.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250067.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250068.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250069.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250070.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250071.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250072.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250073.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250074.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250075.exe je infikován virem Win32:Rootkit-gen [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250076.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250077.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250078.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250079.exe je infikován virem Win32:Trojan-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250080.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250081.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250082.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250083.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250084.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250085.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250086.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250087.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250088.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250089.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250090.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250091.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250092.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250093.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Windows\assembly\GAC\Desktop.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\Windows\msascui.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Windows\system32\winjjq32.dll je infikován virem Win32:Zlob-CWR [Trj], Smazán
Soubor C:\Windows\system32\winowl32.dll je infikován virem Win32:Zlob-CWR [Trj], Smazán
Soubor C:\Windows\view.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Počet prohledaných složek: 13953
Počet testovaných souborů: 461218
Počet infikovaných souborů: 223
----------------
RSIT
===============================================================
Logfile of random's system information tool 1.06 (written by random/random)
Run by win-xp at 2013-02-09 18:10:18
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 47 GB (31%) free of 153 GB
Total RAM: 2046 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:11:18, on 9.2.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\totalcmd\TOTALCMD.EXE
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\win-xp.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://techalpunto.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search-results.com/sr?src=ie ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\msupdt.exe,C:\WINDOWS\system32\msupdt.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LaunchList] D:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [cdoosoft] C:\DOCUME~1\win-xp\LOCALS~1\Temp\herss.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [Microsoft Windows Service] C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe
O4 - HKCU\..\Run: [HotKeysCmds] C:\DOCUME~1\win-xp\LOCALS~1\Temp\4B7.EXE
O4 - HKCU\..\Run: [MSConfig] "C:\Documents and Settings\win-xp\wwfeqcpr.exe"
O4 - HKCU\..\Run: [pdoubrhgfjkxeiqndts] C:\Documents and Settings\win-xp\Data aplikacˇ\pdoubrhgfjkxeiqndts.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Microsoft Windows Manager] C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe
O4 - HKCU\..\Policies\Explorer\Run: [Classes] C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Rychlé spuštění aplikace HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\docume~1\alluse~1\dataap~1\browse~1\261123~1.78\{16cdf~1\browse~1.dll c:\docume~1\alluse~1\dataap~1\wincert\win32c~1.dll
O20 - Winlogon Notify: winopn32 - winopn32.dll (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Browser Manager - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8814 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-796845957-839522115-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-796845957-839522115-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-10-09 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-10-09 157672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
10
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-11-07 8523776]
"nwiz"=nwiz.exe /install []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-05-10 16342528]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-11-07 81920]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-02-12 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2004-05-12 241664]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-07 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"NPSStartup"= []
"DATAMNGR"=C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE [2012-12-10 1683008]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"LaunchList"=D:\Program Files\Pinnacle\Studio 11\LaunchList2.exe [2007-03-21 145496]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-08-17 1667584]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-11-05 68856]
"cdoosoft"=C:\DOCUME~1\win-xp\LOCALS~1\Temp\herss.exe []
"Google Update"=C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-11-11 136176]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
"Microsoft Windows Service"=C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe []
"HotKeysCmds"=C:\DOCUME~1\win-xp\LOCALS~1\Temp\4B7.EXE []
"MSConfig"=C:\Documents and Settings\win-xp\wwfeqcpr.exe []
"pdoubrhgfjkxeiqndts"=C:\Documents and Settings\win-xp\Data aplikacˇ\pdoubrhgfjkxeiqndts.exe []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
"Microsoft Windows Manager"=C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Classes"=C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - D:\Program Files\Microsoft Office\Office\OSA9.EXE
Rychlé spuštění aplikace HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="c:\docume~1\alluse~1\dataap~1\browse~1\261123~1.78\{16cdf~1\browse~1.dll c:\docume~1\alluse~1\dataap~1\wincert\win32c~1.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winopn32]
winopn32.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe"="C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe:*:Enabled:Microsoft Windows Manager"
"C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe"="C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe:*:Enabled:Microsoft Windows Manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\setup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{041e2a6c-3782-11e1-a0bb-001d7dd494ce}]
shell\AutoRun\command - F:\Menu.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{23315a1c-d675-11dd-9624-806d6172696f}]
shell\AutoRun\command - E:\setup.exe
======List of files/folders created in the last 1 months======
2013-02-09 18:10:18 ----D---- C:\rsit
2013-02-09 18:10:18 ----D---- C:\Program Files\trend micro
2013-02-09 14:27:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-02-09 14:26:58 ----D---- C:\Program Files\AVAST Software
2013-02-09 14:26:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-02-09 13:52:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-09 12:33:47 ----D---- C:\lan
2013-02-09 12:09:21 ----D---- C:\Program Files\Defraggler
2013-02-09 12:06:29 ----D---- C:\Program Files\HWiNFO32
2013-02-09 11:36:51 ----A---- C:\WINDOWS\system32\hidserv.dll
2013-02-07 20:33:08 ----D---- C:\WINDOWS\system32\CatRoot_bak
2013-02-07 17:49:44 ----D---- C:\WINDOWS\Performance
2013-02-07 17:49:14 ----D---- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
2013-02-06 19:22:22 ----D---- C:\$WINDOWS.~BT
2013-02-06 18:32:48 ----D---- C:\Documents and Settings\win-xp\Data aplikací\DAEMON Tools Lite
2013-02-06 18:32:44 ----D---- C:\Program Files\DAEMON Tools Lite
2013-02-06 18:31:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2013-02-05 16:20:17 ----D---- C:\Documents and Settings\win-xp\Data aplikací\searchresultstb
2013-02-04 14:25:39 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\535gege44f.txt
2013-02-02 14:56:39 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\88r8rrjejeue.txt
2013-02-01 18:52:29 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\87g8gg8g8g8g7g.txt
2013-01-26 22:20:43 ----A---- C:\WINDOWS\system32\wpcap.dll
2013-01-26 22:20:43 ----A---- C:\WINDOWS\system32\Packet.dll
2013-01-22 17:22:03 ----D---- C:\Program Files\1C
2013-01-19 17:02:05 ----D---- C:\Program Files\Tetris
======List of files/folders modified in the last 1 months======
2013-02-09 18:10:23 ----D---- C:\WINDOWS\Prefetch
2013-02-09 18:10:18 ----RD---- C:\Program Files
2013-02-09 18:08:48 ----AD---- C:\WINDOWS\Temp
2013-02-09 18:07:22 ----A---- C:\WINDOWS\wincmd.ini
2013-02-09 16:59:42 ----D---- C:\WINDOWS\system32
2013-02-09 16:59:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-02-09 16:55:48 ----D---- C:\Windows
2013-02-09 14:45:17 ----SHD---- C:\Documents and Settings\win-xp\Data aplikací\4F5C7D
2013-02-09 14:35:27 ----D---- C:\WINDOWS\system32\CatRoot2
2013-02-09 14:27:30 ----D---- C:\WINDOWS\system32\drivers
2013-02-09 14:27:27 ----SD---- C:\WINDOWS\Tasks
2013-02-09 14:27:23 ----SHD---- C:\WINDOWS\Installer
2013-02-09 14:27:23 ----HD---- C:\Config.Msi
2013-02-09 14:27:23 ----D---- C:\WINDOWS\WinSxS
2013-02-09 14:27:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-02-09 14:00:32 ----A---- C:\WINDOWS\NeroDigital.ini
2013-02-09 13:31:27 ----D---- C:\WINDOWS\SoftwareDistribution
2013-02-09 13:31:27 ----D---- C:\WINDOWS\Minidump
2013-02-09 13:31:27 ----D---- C:\WINDOWS\Debug
2013-02-09 13:31:19 ----SHD---- C:\RECYCLER
2013-02-09 12:08:42 ----D---- C:\Program Files\CCleaner
2013-02-09 11:36:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-02-07 21:15:21 ----HD---- C:\WINDOWS\inf
2013-02-07 21:09:18 ----D---- C:\WINDOWS\system32\CatRoot
2013-02-07 19:33:47 ----D---- C:\install
2013-02-07 18:30:08 ----D---- C:\Program Files\Java
2013-02-07 18:30:08 ----D---- C:\Program Files\Internet Explorer
2013-02-07 18:30:08 ----D---- C:\Program Files\HP
2013-02-07 18:30:08 ----D---- C:\Program Files\Hewlett-Packard
2013-02-07 18:30:07 ----D---- C:\Program Files\Google
2013-02-07 18:30:07 ----D---- C:\Program Files\ESET
2013-02-07 18:30:07 ----D---- C:\Program Files\DIFX
2013-02-07 18:30:07 ----D---- C:\Program Files\CyberLink
2013-02-07 18:30:07 ----D---- C:\Program Files\ComPlus Applications
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\System
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Symantec Shared
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\SpeechEngines
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Skype
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Services
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\ODBC
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Nero
2013-02-07 18:30:06 ----D---- C:\Program Files\Realtek
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\MSSoap
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\Java
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\InstallShield
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\HP
2013-02-07 18:30:05 ----D---- C:\Program Files\proDAD
2013-02-07 18:30:05 ----D---- C:\Program Files\Pinnacle
2013-02-07 18:30:05 ----D---- C:\Program Files\PC Connectivity Solution
2013-02-07 18:30:05 ----D---- C:\Program Files\Outlook Express
2013-02-07 18:30:05 ----D---- C:\Program Files\Online Services
2013-02-07 18:30:05 ----D---- C:\Program Files\NOS
2013-02-07 18:30:05 ----D---- C:\Program Files\Norton Security Scan
2013-02-07 18:30:05 ----D---- C:\Program Files\NetMeeting
2013-02-07 18:30:05 ----D---- C:\Program Files\MSN Gaming Zone
2013-02-07 18:30:05 ----D---- C:\Program Files\Movie Maker
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Designer
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Ahead
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Adobe AIR
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Adobe
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files
2013-02-07 18:30:05 ----D---- C:\Program Files\CDex_150
2013-02-07 18:30:05 ----D---- C:\Program Files\BIAS
2013-02-07 18:30:05 ----D---- C:\Program Files\Ahead
2013-02-07 18:30:04 ----D---- C:\Program Files\microsoft frontpage
2013-02-07 18:30:04 ----D---- C:\Program Files\Messenger
2013-02-07 18:30:04 ----D---- C:\Program Files\MarkAny
2013-02-07 18:30:04 ----D---- C:\Program Files\Adobe
2013-02-07 18:30:03 ----D---- C:\Program Files\Yahoo!
2013-02-07 18:30:03 ----D---- C:\Program Files\xerox
2013-02-07 18:30:03 ----D---- C:\Program Files\Windows NT
2013-02-07 18:30:03 ----D---- C:\Program Files\Windows Media Player
2013-02-07 18:30:02 ----RD---- C:\Program Files\Skype
2013-02-07 18:30:02 ----D---- C:\Program Files\Video Converter Fox
2013-02-07 18:30:02 ----D---- C:\Program Files\Search Results Toolbar
2013-02-07 18:30:02 ----D---- C:\Program Files\Samsung
2013-02-07 17:58:46 ----RSD---- C:\WINDOWS\assembly
2013-02-07 17:47:33 ----D---- C:\WINDOWS\pchealth
2013-02-06 19:37:03 ----D---- C:\WINDOWS\Microsoft.NET
2013-02-05 16:20:21 ----D---- C:\Documents and Settings\win-xp\Data aplikací\ilividtoolbarguid
2013-02-05 16:06:06 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-02-01 19:05:38 ----A---- C:\WINDOWS\win.ini
2013-02-01 18:05:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Browser Manager
2013-01-27 20:46:24 ----D---- C:\Documents and Settings\win-xp\Data aplikací\Skype
2013-01-26 09:52:34 ----HD---- C:\Program Files\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-02-07 242240]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-10 4419584]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-11-07 7429088]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S2 3259;3259; \??\C:\DOCUME~1\win-xp\LOCALS~1\Temp\3259.sys []
S3 akjz8m0v;akjz8m0v; C:\WINDOWS\system32\drivers\akjz8m0v.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 NPF;WinPcap Packet Driver (NPF); C:\WINDOWS\system32\drivers\NPF.sys [2013-01-26 50704]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-11 18944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 Browser Manager;Browser Manager; C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [2013-01-31 2561488]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-10-09 161768]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-11-07 155716]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-17 116648]
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-17 116648]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
-----------------EOF-----------------
chtěl bych Vás požádat o pomoc. Mám tu počítač od známého,který si s viry už nevěděl rady. Zjistil jsem ale, že na to ani já sám nestačím a tak se obracím na místní odborníky. V pc byl původně nahraný Nod32, kterému už skončila licence. Provedl jsem odinstalování a nahrál aktualizovaný Avast. Nechal jsem spustit po restartu a vymazat infikované soubory. PC je ale stále silně infikované, pořád je problém s inf soubory na usb disku. PC se chová neobvykle. Děkuji za Vaši pomoc a přikládám log jak smazaných souborů Avastu, tak RSIT.
---------
Avast
=================================================
09.02.2013 14:36
Testují se všechny lokální disky
Soubor C:\Documents and Settings\All Users\Local Settings\Temp\msiezy.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\46357865364647353\winsvc.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\6438640620394286720310355\winsvc.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\1db44b5.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\click.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\jan24.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\nMNtfaARw2l97e30p5ev.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Data aplikací\nMNtffsdf5ev.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\init.exe je infikován virem Win32:Rootkit-gen [Rtk], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0071041861.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0084723116.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0158349174.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0241957657.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0421534352.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0468037619.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0498587030.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0512501120.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0522756636.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0591804236.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0596880773.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\0686952267.exe je infikován virem Win32:VBInject-M [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\086421.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1004847439.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1131846596.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1165888206.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1206651313.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1227745031.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1251269652.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1331023282.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1378820853.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1478705837.exe je infikován virem Win32:Kryptik-LCC [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1490602080.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\14FD.tmp je infikován virem Win32:Zbot-QKD [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1548357174.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1594167085.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1644475486.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\1982489836.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2120576185.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2214905548.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2324314906.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2339565542.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2347797242.exe je infikován virem Win32:Kryptik-LBQ [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2427.tmp je infikován virem Win32:Downloader-SJX [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2483526733.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2551760315.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2555440521.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2686509092.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2750910687.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\2F6.tmp je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3283717800.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3360221002.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3644374422.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3729866461.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3752459131.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3845530256.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\3884989220.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4057883284.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4088796294.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4154722828.exe je infikován virem Win32:Agent-AQUG [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4250582659.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4291974104.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4359104386.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4435018490.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4457656944.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4635095519.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\467.tmp je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\4909906648.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5037947973.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5046036719.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5111716764.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5151987779.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5310628719.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5380127402.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5444508804.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5543084160.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5601420894.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5718244636.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5718526026.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5864640597.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5873798784.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\5938432910.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6162307634.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6217775203.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6243949842.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6345840959.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6419558177.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6550531377.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6602060890.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\6610671768.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7068318894.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7208977374.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7235480513.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7441185420.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\7526952156.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8055391005.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8083845426.exe je infikován virem Win32:Kryptik-LCC [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8097670524.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8416193949.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8552084297.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8616229691.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8805680335.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\8917454879.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9009003797.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9437788138.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9451312497.exe je infikován virem Win32:VBInject-L [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9534337564.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9556931872.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9632208022.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9682578620.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9773154924.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9857273690.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9874211315.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9965444921.exe je infikován virem Win32:Dropper-gen [Drp], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\9989092991.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\ftnqcbpop.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\java.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\jusched.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\toaster.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temp\wisptis.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\CB9R6URL\__utmj[1].htm je infikován virem HTML:Iframe-inf, Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\CHIVG1QR\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\MVQT2HK5\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\OD2VGTA7\g[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\OJ3R6GD5\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\U9K72NCR\lol[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\YHPURIL0\4[1].exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\Local Settings\Temporary Internet Files\Content.IE5\YXGNGNWH\fr[1].exe je infikován virem Win32:VBInject-M [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\Documents and Settings\win-xp\wwfeqcpr.exe je infikován virem Win32:Trojan-gen, Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\alg.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\launch.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\mcshield.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\HP\Digital Imaging\bin\update.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre1.6.0_01\bin\extract.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\agent.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\file.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\iexplore.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre6\bin\upgrade.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\dwm.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\htpatch.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Java\jre7\bin\webscanx.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Samsung\Samsung New PC Studio\convert.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Program Files\Samsung\Samsung New PC Studio\navapsvc.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\n je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\00000004.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\00000008.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\000000cb.@ je infikován virem Win32:Malware-gen, Smazán
Soubor C:\RECYCLER\S-1-5-18\$41a0fa9e07d6e0ed441b8ec7661e0a22\U\80000000.@ je infikován virem Win64:Sirefef-A [Trj], Smazán
Soubor C:\RECYCLER\S-1-5-21-1960408961-796845957-839522115-1003\$41a0fa9e07d6e0ed441b8ec7661e0a22\n je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227874.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227875.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP592\A0227876.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227945.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227946.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227947.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227963.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227964.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP594\A0227965.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP604\A0230570.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231653.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231686.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP605\A0231715.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0231739.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232739.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232778.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232806.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0232823.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0233823.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP606\A0234115.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0240745.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241744.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241764.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0241786.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0243091.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249702.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249713.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249730.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249754.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249772.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249791.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249804.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249836.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249855.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249868.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249886.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP607\A0249900.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP608\A0250052.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250066.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250067.exe je infikován virem Win32:IRCBot-FAK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250068.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250069.exe je infikován virem Win32:Atraps-PY [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250070.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250071.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250072.exe je infikován virem Win32:Dofoil-BA [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250073.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250074.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250075.exe je infikován virem Win32:Rootkit-gen [Rtk], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250076.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250077.exe je infikován virem Win32:Malware-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250078.exe je infikován virem Win32:Fareit-BF [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250079.exe je infikován virem Win32:Trojan-gen, Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250080.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250081.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250082.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250083.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250084.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250085.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250086.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250087.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250088.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250089.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250090.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250091.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250092.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\System Volume Information\_restore{25B55A66-C5FC-41F3-82A9-64351EF718B2}\RP609\A0250093.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Windows\assembly\GAC\Desktop.ini je infikován virem Win32:Sirefef-PL [Rtk], Smazán
Soubor C:\Windows\msascui.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Soubor C:\Windows\system32\winjjq32.dll je infikován virem Win32:Zlob-CWR [Trj], Smazán
Soubor C:\Windows\system32\winowl32.dll je infikován virem Win32:Zlob-CWR [Trj], Smazán
Soubor C:\Windows\view.exe je infikován virem Win32:Kryptik-LBK [Trj], Smazán
Počet prohledaných složek: 13953
Počet testovaných souborů: 461218
Počet infikovaných souborů: 223
----------------
RSIT
===============================================================
Logfile of random's system information tool 1.06 (written by random/random)
Run by win-xp at 2013-02-09 18:10:18
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 47 GB (31%) free of 153 GB
Total RAM: 2046 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:11:18, on 9.2.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\totalcmd\TOTALCMD.EXE
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\win-xp\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\win-xp.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://techalpunto.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search-results.com/sr?src=ie ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\msupdt.exe,C:\WINDOWS\system32\msupdt.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LaunchList] D:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [cdoosoft] C:\DOCUME~1\win-xp\LOCALS~1\Temp\herss.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [Microsoft Windows Service] C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe
O4 - HKCU\..\Run: [HotKeysCmds] C:\DOCUME~1\win-xp\LOCALS~1\Temp\4B7.EXE
O4 - HKCU\..\Run: [MSConfig] "C:\Documents and Settings\win-xp\wwfeqcpr.exe"
O4 - HKCU\..\Run: [pdoubrhgfjkxeiqndts] C:\Documents and Settings\win-xp\Data aplikacˇ\pdoubrhgfjkxeiqndts.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Microsoft Windows Manager] C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe
O4 - HKCU\..\Policies\Explorer\Run: [Classes] C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Rychlé spuštění aplikace HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\docume~1\alluse~1\dataap~1\browse~1\261123~1.78\{16cdf~1\browse~1.dll c:\docume~1\alluse~1\dataap~1\wincert\win32c~1.dll
O20 - Winlogon Notify: winopn32 - winopn32.dll (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Browser Manager - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8814 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-796845957-839522115-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-796845957-839522115-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-10-09 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-10-09 157672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
10
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-11-07 8523776]
"nwiz"=nwiz.exe /install []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-05-10 16342528]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-11-07 81920]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-02-12 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2004-05-12 241664]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-07 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"NPSStartup"= []
"DATAMNGR"=C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE [2012-12-10 1683008]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"LaunchList"=D:\Program Files\Pinnacle\Studio 11\LaunchList2.exe [2007-03-21 145496]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-08-17 1667584]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-11-05 68856]
"cdoosoft"=C:\DOCUME~1\win-xp\LOCALS~1\Temp\herss.exe []
"Google Update"=C:\Documents and Settings\win-xp\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-11-11 136176]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
"Microsoft Windows Service"=C:\Documents and Settings\win-xp\M-15-0935-5960-5932\winsvc.exe []
"HotKeysCmds"=C:\DOCUME~1\win-xp\LOCALS~1\Temp\4B7.EXE []
"MSConfig"=C:\Documents and Settings\win-xp\wwfeqcpr.exe []
"pdoubrhgfjkxeiqndts"=C:\Documents and Settings\win-xp\Data aplikacˇ\pdoubrhgfjkxeiqndts.exe []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
"Microsoft Windows Manager"=C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Classes"=C:\Documents and Settings\win-xp\Data aplikací\4F5C7D\4F5C7D.exe []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - D:\Program Files\Microsoft Office\Office\OSA9.EXE
Rychlé spuštění aplikace HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="c:\docume~1\alluse~1\dataap~1\browse~1\261123~1.78\{16cdf~1\browse~1.dll c:\docume~1\alluse~1\dataap~1\wincert\win32c~1.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winopn32]
winopn32.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe"="C:\Documents and Settings\win-xp\M-15-4675-3789-4574\winmgr.exe:*:Enabled:Microsoft Windows Manager"
"C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe"="C:\Documents and Settings\win-xp\M-15-2553-5903-2352\winmgr.exe:*:Enabled:Microsoft Windows Manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\setup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{041e2a6c-3782-11e1-a0bb-001d7dd494ce}]
shell\AutoRun\command - F:\Menu.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{23315a1c-d675-11dd-9624-806d6172696f}]
shell\AutoRun\command - E:\setup.exe
======List of files/folders created in the last 1 months======
2013-02-09 18:10:18 ----D---- C:\rsit
2013-02-09 18:10:18 ----D---- C:\Program Files\trend micro
2013-02-09 14:27:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-02-09 14:26:58 ----D---- C:\Program Files\AVAST Software
2013-02-09 14:26:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-02-09 13:52:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-09 12:33:47 ----D---- C:\lan
2013-02-09 12:09:21 ----D---- C:\Program Files\Defraggler
2013-02-09 12:06:29 ----D---- C:\Program Files\HWiNFO32
2013-02-09 11:36:51 ----A---- C:\WINDOWS\system32\hidserv.dll
2013-02-07 20:33:08 ----D---- C:\WINDOWS\system32\CatRoot_bak
2013-02-07 17:49:44 ----D---- C:\WINDOWS\Performance
2013-02-07 17:49:14 ----D---- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
2013-02-06 19:22:22 ----D---- C:\$WINDOWS.~BT
2013-02-06 18:32:48 ----D---- C:\Documents and Settings\win-xp\Data aplikací\DAEMON Tools Lite
2013-02-06 18:32:44 ----D---- C:\Program Files\DAEMON Tools Lite
2013-02-06 18:31:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2013-02-05 16:20:17 ----D---- C:\Documents and Settings\win-xp\Data aplikací\searchresultstb
2013-02-04 14:25:39 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\535gege44f.txt
2013-02-02 14:56:39 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\88r8rrjejeue.txt
2013-02-01 18:52:29 ----AH---- C:\Documents and Settings\win-xp\Data aplikací\87g8gg8g8g8g7g.txt
2013-01-26 22:20:43 ----A---- C:\WINDOWS\system32\wpcap.dll
2013-01-26 22:20:43 ----A---- C:\WINDOWS\system32\Packet.dll
2013-01-22 17:22:03 ----D---- C:\Program Files\1C
2013-01-19 17:02:05 ----D---- C:\Program Files\Tetris
======List of files/folders modified in the last 1 months======
2013-02-09 18:10:23 ----D---- C:\WINDOWS\Prefetch
2013-02-09 18:10:18 ----RD---- C:\Program Files
2013-02-09 18:08:48 ----AD---- C:\WINDOWS\Temp
2013-02-09 18:07:22 ----A---- C:\WINDOWS\wincmd.ini
2013-02-09 16:59:42 ----D---- C:\WINDOWS\system32
2013-02-09 16:59:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-02-09 16:55:48 ----D---- C:\Windows
2013-02-09 14:45:17 ----SHD---- C:\Documents and Settings\win-xp\Data aplikací\4F5C7D
2013-02-09 14:35:27 ----D---- C:\WINDOWS\system32\CatRoot2
2013-02-09 14:27:30 ----D---- C:\WINDOWS\system32\drivers
2013-02-09 14:27:27 ----SD---- C:\WINDOWS\Tasks
2013-02-09 14:27:23 ----SHD---- C:\WINDOWS\Installer
2013-02-09 14:27:23 ----HD---- C:\Config.Msi
2013-02-09 14:27:23 ----D---- C:\WINDOWS\WinSxS
2013-02-09 14:27:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-02-09 14:00:32 ----A---- C:\WINDOWS\NeroDigital.ini
2013-02-09 13:31:27 ----D---- C:\WINDOWS\SoftwareDistribution
2013-02-09 13:31:27 ----D---- C:\WINDOWS\Minidump
2013-02-09 13:31:27 ----D---- C:\WINDOWS\Debug
2013-02-09 13:31:19 ----SHD---- C:\RECYCLER
2013-02-09 12:08:42 ----D---- C:\Program Files\CCleaner
2013-02-09 11:36:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-02-07 21:15:21 ----HD---- C:\WINDOWS\inf
2013-02-07 21:09:18 ----D---- C:\WINDOWS\system32\CatRoot
2013-02-07 19:33:47 ----D---- C:\install
2013-02-07 18:30:08 ----D---- C:\Program Files\Java
2013-02-07 18:30:08 ----D---- C:\Program Files\Internet Explorer
2013-02-07 18:30:08 ----D---- C:\Program Files\HP
2013-02-07 18:30:08 ----D---- C:\Program Files\Hewlett-Packard
2013-02-07 18:30:07 ----D---- C:\Program Files\Google
2013-02-07 18:30:07 ----D---- C:\Program Files\ESET
2013-02-07 18:30:07 ----D---- C:\Program Files\DIFX
2013-02-07 18:30:07 ----D---- C:\Program Files\CyberLink
2013-02-07 18:30:07 ----D---- C:\Program Files\ComPlus Applications
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\System
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Symantec Shared
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\SpeechEngines
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Skype
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Services
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\ODBC
2013-02-07 18:30:07 ----D---- C:\Program Files\Common Files\Nero
2013-02-07 18:30:06 ----D---- C:\Program Files\Realtek
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\MSSoap
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\Java
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\InstallShield
2013-02-07 18:30:06 ----D---- C:\Program Files\Common Files\HP
2013-02-07 18:30:05 ----D---- C:\Program Files\proDAD
2013-02-07 18:30:05 ----D---- C:\Program Files\Pinnacle
2013-02-07 18:30:05 ----D---- C:\Program Files\PC Connectivity Solution
2013-02-07 18:30:05 ----D---- C:\Program Files\Outlook Express
2013-02-07 18:30:05 ----D---- C:\Program Files\Online Services
2013-02-07 18:30:05 ----D---- C:\Program Files\NOS
2013-02-07 18:30:05 ----D---- C:\Program Files\Norton Security Scan
2013-02-07 18:30:05 ----D---- C:\Program Files\NetMeeting
2013-02-07 18:30:05 ----D---- C:\Program Files\MSN Gaming Zone
2013-02-07 18:30:05 ----D---- C:\Program Files\Movie Maker
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Designer
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Ahead
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Adobe AIR
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files\Adobe
2013-02-07 18:30:05 ----D---- C:\Program Files\Common Files
2013-02-07 18:30:05 ----D---- C:\Program Files\CDex_150
2013-02-07 18:30:05 ----D---- C:\Program Files\BIAS
2013-02-07 18:30:05 ----D---- C:\Program Files\Ahead
2013-02-07 18:30:04 ----D---- C:\Program Files\microsoft frontpage
2013-02-07 18:30:04 ----D---- C:\Program Files\Messenger
2013-02-07 18:30:04 ----D---- C:\Program Files\MarkAny
2013-02-07 18:30:04 ----D---- C:\Program Files\Adobe
2013-02-07 18:30:03 ----D---- C:\Program Files\Yahoo!
2013-02-07 18:30:03 ----D---- C:\Program Files\xerox
2013-02-07 18:30:03 ----D---- C:\Program Files\Windows NT
2013-02-07 18:30:03 ----D---- C:\Program Files\Windows Media Player
2013-02-07 18:30:02 ----RD---- C:\Program Files\Skype
2013-02-07 18:30:02 ----D---- C:\Program Files\Video Converter Fox
2013-02-07 18:30:02 ----D---- C:\Program Files\Search Results Toolbar
2013-02-07 18:30:02 ----D---- C:\Program Files\Samsung
2013-02-07 17:58:46 ----RSD---- C:\WINDOWS\assembly
2013-02-07 17:47:33 ----D---- C:\WINDOWS\pchealth
2013-02-06 19:37:03 ----D---- C:\WINDOWS\Microsoft.NET
2013-02-05 16:20:21 ----D---- C:\Documents and Settings\win-xp\Data aplikací\ilividtoolbarguid
2013-02-05 16:06:06 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-02-01 19:05:38 ----A---- C:\WINDOWS\win.ini
2013-02-01 18:05:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Browser Manager
2013-01-27 20:46:24 ----D---- C:\Documents and Settings\win-xp\Data aplikací\Skype
2013-01-26 09:52:34 ----HD---- C:\Program Files\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-02-07 242240]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-10 4419584]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-11-07 7429088]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S2 3259;3259; \??\C:\DOCUME~1\win-xp\LOCALS~1\Temp\3259.sys []
S3 akjz8m0v;akjz8m0v; C:\WINDOWS\system32\drivers\akjz8m0v.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 NPF;WinPcap Packet Driver (NPF); C:\WINDOWS\system32\drivers\NPF.sys [2013-01-26 50704]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-11 18944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 Browser Manager;Browser Manager; C:\Documents and Settings\All Users\Data aplikací\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [2013-01-31 2561488]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-10-09 161768]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-11-07 155716]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-17 116648]
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-17 116648]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
-----------------EOF-----------------
