Logfile of random's system information tool 1.10 (written by random/random)
Run by Lubomir Opatovsky at 2014-07-03 18:51:16
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 52 GB (46%) free of 114 GB
Total RAM: 1021 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:51:21, on 3.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\dmadmin.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Lubomir Opatovsky\Desktop\RSIT.exe
C:\Program Files\trend micro\Lubomir Opatovsky.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 2461316484
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 2712 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Lubomir Opatovsky\Application Data\Mozilla\Firefox\Profiles\bdoydsok.default-1404079496406
prefs.js - "browser.startup.homepage" - "http://www.zoznam.sk/"
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Documents and Settings\Lubomir Opatovsky\Application Data\Mozilla\Firefox\Profiles\bdoydsok.default-1404079496406\extensions\
donottrackplus@abine.com
{3d7eb24f-2740-49df-8937-200b1cc08f8a}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-27 457712]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-27 4086432]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite 4.49.1.0356]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2004-05-12 241664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-02-12 49152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2004-05-28 241664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~3\Office10\OSA.EXE [2001-02-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3
"NetTcpPortSharing"=2
"MozillaMaintenance"=3
"idsvc"=3
"Pml Driver HPZ12"=3
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-07-03 18:48:52 ----SHD---- C:\RECYCLER
2014-07-03 18:38:50 ----A---- C:\ComboFix.txt
2014-07-03 18:09:50 ----D---- C:\ComboFix
2014-07-03 17:55:16 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-07-02 22:57:44 ----D---- C:\TDSSKiller_Quarantine
2014-07-02 22:55:51 ----A---- C:\TDSSKiller.3.0.0.39_02.07.2014_22.55.51_log.txt
2014-07-02 22:43:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2014-07-02 22:37:24 ----A---- C:\plp.txt
2014-07-02 21:47:03 ----D---- C:\rsit
2014-07-02 21:41:41 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\TuneUp Software
2014-07-02 20:59:27 ----D---- C:\AdwCleaner
2014-07-02 18:32:03 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2014-07-02 18:32:00 ----D---- C:\Program Files\TuneUp Utilities 2009
2014-07-02 18:31:36 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2014-07-02 17:56:30 ----D---- C:\Program Files\Realtek AC97
2014-07-01 01:57:56 ----D---- C:\Program Files\Intel Corporation
2014-06-30 17:19:54 ----D---- C:\uninstall
2014-06-30 16:58:18 ----D---- C:\WINDOWS\erdnt
2014-06-30 01:22:03 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\BSplayer Pro
2014-06-30 01:22:03 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\BSplayer
2014-06-27 17:44:07 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\WiseUpdate
2014-06-27 15:37:01 ----D---- C:\WINDOWS\jumpshot.com
2014-06-27 15:34:29 ----A---- C:\WINDOWS\avastSS.scr
2014-06-25 00:26:48 ----A---- C:\WINDOWS\system32\drivers\fetnd5.sys
2014-06-13 22:32:32 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2014-06-12 20:48:26 ----D---- C:\WINDOWS\nview
2014-06-12 15:58:18 ----A---- C:\WINDOWS\system32\drivers\HWiNFO32.SYS
2014-06-12 15:58:00 ----D---- C:\Program Files\HWiNFO32
2014-06-10 16:28:54 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\MPC-HC
2014-06-10 00:04:42 ----A---- C:\WINDOWS\system32\wbhelp2.dll
2014-06-10 00:04:42 ----A---- C:\WINDOWS\system32\W95INF32.DLL
2014-06-10 00:04:42 ----A---- C:\WINDOWS\system32\W95INF16.DLL
2014-06-10 00:04:42 ----A---- C:\WINDOWS\system32\unicows.dll
2014-06-10 00:04:42 ----A---- C:\WINDOWS\system32\anim.dll
2014-06-09 19:23:51 ----A---- C:\WINDOWS\system32\drivers\VIAAGP1.SYS
2014-06-09 19:01:43 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-08 15:09:08 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\Wise Care 365
2014-06-06 21:56:34 ----A---- C:\BackupLoader.ini
======List of files/folders modified in the last 1 month======
2014-07-03 18:51:19 ----D---- C:\Program Files\Trend Micro
2014-07-03 18:48:54 ----D---- C:\WINDOWS\system32
2014-07-03 18:48:53 ----D---- C:\WINDOWS\Debug
2014-07-03 18:48:53 ----D---- C:\WINDOWS
2014-07-03 18:38:12 ----D---- C:\WINDOWS\Temp
2014-07-03 18:37:15 ----A---- C:\WINDOWS\system.ini
2014-07-03 18:34:16 ----D---- C:\WINDOWS\system32\drivers
2014-07-03 18:34:16 ----D---- C:\WINDOWS\AppPatch
2014-07-03 18:34:09 ----D---- C:\Program Files\Common Files
2014-07-03 18:29:51 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-03 18:09:55 ----D---- C:\WINDOWS\Prefetch
2014-07-03 17:56:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-07-02 21:51:01 ----D---- C:\WINDOWS\system32\NtmsData
2014-07-02 21:43:54 ----SHD---- C:\WINDOWS\Installer
2014-07-02 21:43:54 ----D---- C:\Config.Msi
2014-07-02 21:34:52 ----D---- C:\Program Files
2014-07-02 20:43:45 ----D---- C:\Documents and Settings\Lubomir Opatovsky\Application Data\Wise Registry Cleaner
2014-07-02 18:55:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-02 18:53:27 ----SD---- C:\WINDOWS\Tasks
2014-07-02 18:32:33 ----D---- C:\WINDOWS\system32\config
2014-07-02 17:56:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-07-02 17:56:43 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-07-02 17:05:57 ----D---- C:\Program Files\Full Tilt Poker
2014-07-02 05:45:24 ----D---- C:\Program Files\Mozilla Firefox
2014-07-01 11:12:25 ----D---- C:\WINDOWS\msagent
2014-07-01 01:54:23 ----SHD---- C:\System Volume Information
2014-07-01 01:54:23 ----D---- C:\WINDOWS\system32\Restore
2014-06-30 17:08:33 ----D---- C:\WINDOWS\system32\drivers\etc
2014-06-30 01:05:49 ----D---- C:\WINDOWS\Help
2014-06-30 01:00:49 ----RASH---- C:\boot.ini
2014-06-30 01:00:49 ----A---- C:\WINDOWS\win.ini
2014-06-30 00:52:00 ----D---- C:\Program Files\xerox
2014-06-29 19:56:19 ----HD---- C:\WINDOWS\inf
2014-06-29 19:51:41 ----D---- C:\WINDOWS\system32\CatRoot
2014-06-29 19:38:58 ----D---- C:\Program Files\CCleaner
2014-06-27 21:19:08 ----D---- C:\Program Files\Combined Community Codec Pack
2014-06-27 15:34:29 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-06-27 10:35:11 ----D---- C:\WINDOWS\twain_32
2014-06-14 02:46:39 ----D---- C:\WINDOWS\Registration
2014-06-13 19:40:51 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2014-06-13 03:16:29 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-13 03:16:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-12 18:30:18 ----D---- C:\Program Files\WinRAR
2014-06-12 16:18:01 ----D---- C:\WINDOWS\system32\LogFiles
2014-06-11 21:31:34 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-11 00:08:10 ----D---- C:\WINDOWS\pss
2014-06-10 22:00:42 ----D---- C:\WINDOWS\system32\MRT
2014-06-10 21:57:59 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-10 21:02:24 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-08 19:03:52 ----A---- C:\WINDOWS\system32\cscui.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-06-27 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-06-27 192352]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-03-15 320120]
R0 uagp35;Microsoft AGPv3.5 Filter; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2014-06-09 27904]
R0 ViBus;ViBus; C:\WINDOWS\system32\DRIVERS\ViBus.sys [2007-12-07 16896]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2014-06-09 13976]
R0 ViPrt;VIA SATA IDE Device Driver; C:\WINDOWS\system32\DRIVERS\ViPrt.sys [2007-12-07 52736]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\WINDOWS\system32\DRIVERS\xfilt.sys [2014-06-09 23192]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-06-27 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-06-27 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-06-27 414392]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-06-27 57800]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-02-28 12032]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-06-27 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-06-27 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 catchme;catchme; \??\C:\DOCUME~1\LUBOMI~1\LOCALS~1\Temp\catchme.sys []
R3 genmcmnUSB;USB Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gflmouhid.sys [2003-08-07 6528]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-02-28 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 ai67aklb;ai67aklb; C:\WINDOWS\system32\drivers\ai67aklb.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 mbr;mbr; \??\C:\undelete\mbr.sys []
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-27 50344]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-10 119408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-02-21 73728]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-01-30 913408]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Poprosim o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Poprosim o kontrolu logu
Zdravim 
No, vidim, ze jste si opet hral na doktora, tak co ja ted s tim? Po pouziti ComboFixu je RSIT vzdy cisty, az na par brzd a zbytecnosti. CF smaze veskere stopy pripadne nakazy a ja se tak nemam ceho chytit.
Muzete mi rict, proc jste ho spoustel? Umite s nim zachazet? Neni to totiz poprve!
Kdybyste si precetl pravidla fora http://forum.viry.cz/viewtopic.php?f=12&t=5601 , docetl byste se mimo jine toto
28.7. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975
No, vidim, ze jste si opet hral na doktora, tak co ja ted s tim? Po pouziti ComboFixu je RSIT vzdy cisty, az na par brzd a zbytecnosti. CF smaze veskere stopy pripadne nakazy a ja se tak nemam ceho chytit.
Muzete mi rict, proc jste ho spoustel? Umite s nim zachazet? Neni to totiz poprve!Kdybyste si precetl pravidla fora http://forum.viry.cz/viewtopic.php?f=12&t=5601 , docetl byste se mimo jine toto
2. Před položením dotazu použijte tlačítko Hledat. Možná již někdo problém podobným Vašemu řešil. Pokud ale ve vyřešeném tématu budou aplikovány různé utility\aplikace, nespouštějte je. Utility se používají až na pokyn rádce, jelikož mohou mazat stopy po havěti a v rukou ne-oborníka může mít jejich použití nedozírné následky.
3. Zvláště utilitu ComboFix nespouštějte i když Vám ji poradil kamarád\nějaký rádoby odborný web. Naše fórum je jediné z CZ-SK antivirových fór, která mají právo luštit logy z ComboFixu a mámě též plnou podporu autora této utility a přístup k nejaktuálnějším informacím a návodům.
28.7. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?