prosím o kontrolu log z RSIT

[Interpol]

Dobrý den prosím o kontrolu LOg od moji známe , má neustále problémy s připojením na net,ale WIFI zařízení je v pořádku zda to není něco co brání v připojení. Děkuji


Logfile of random's system information tool 1.08 (written by random/random)
Run by Boxer I at 2011-03-07 18:05:52
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 351 GB (75%) free of 469 GB
Total RAM: 3070 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:06:09, on 7.3.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Users\BOXERI~1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer.exe
C:\Windows\system32\Taskmgr.exe
C:\Program Files\Opera\opera.exe
C:\Users\Boxer I\AppData\Local\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Boxer I.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=5g.wia.cz:80;http=5g.wia.cz:80;https=5g.wia.cz:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {90b49673-5506-483e-b92b-ca0265bd9ca8} - (no file)
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll (file missing)
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll (file missing)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~1\bandoo\bndhook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)

--
End of file - 7612 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{7A502894-D9A8-4AA7-B584-2E637A653780}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - C:\Program Files\ICQToolbar\toolbaru.dll [2006-12-25 701952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-11-17 382720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
Searchqu Toolbar - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-07 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}]
BandooIEPlugin Class - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll [2011-03-03 2048400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]
{99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-03-30 7289376]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-17 61440]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-12-03 14944136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR]
C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-08-23 455968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-09-22 4240760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2009-11-09 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-03-30 1833504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files\real\realplayer\Update\realsched.exe [2010-11-17 274608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsWelcomeCenter]
oobefldr.dll,ShowWelcomeCenter []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WPCUMI]
C:\Windows\system32\WpcUmi.exe [2006-11-02 176128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" c:\progra~1\bandoo\bndhook.dll "

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2011-03-07 18:05:53 ----D---- C:\Program Files\trend micro
2011-03-07 18:05:52 ----D---- C:\rsit
2011-03-06 14:52:11 ----D---- C:\32788R22FWJFW
2011-03-04 20:56:07 ----D---- C:\Users\Boxer I\AppData\Roaming\Vivox
2011-03-04 20:46:42 ----D---- C:\Users\Boxer I\AppData\Roaming\IMVU
2011-03-04 20:45:55 ----D---- C:\Users\Boxer I\AppData\Roaming\IMVUClient
2011-03-03 22:23:30 ----A---- C:\Windows\system32\bandoolmx.dll
2011-03-01 19:43:05 ----SHD---- C:\Config.Msi
2011-03-01 16:47:28 ----D---- C:\Program Files\Lavalys
2011-03-01 16:38:09 ----D---- C:\Users\Boxer I\AppData\Roaming\TeamViewer
2011-02-21 09:18:02 ----D---- C:\Program Files\FunWebProducts
2011-02-21 09:18:01 ----D---- C:\Program Files\MyWebSearch
2011-02-18 05:05:33 ----D---- C:\Users\Boxer I\AppData\Roaming\Windows Live Writer
2011-02-17 21:59:42 ----A---- C:\Windows\system32\shsvcs.dll
2011-02-09 21:50:55 ----A---- C:\Windows\system32\win32k.sys
2011-02-09 21:50:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-09 21:50:52 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-02-09 21:50:52 ----A---- C:\Windows\system32\ntdll.dll
2011-02-09 21:50:46 ----A---- C:\Windows\system32\FntCache.dll
2011-02-09 21:50:46 ----A---- C:\Windows\system32\DWrite.dll
2011-02-09 21:50:46 ----A---- C:\Windows\system32\d3d10warp.dll
2011-02-09 21:50:45 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-02-09 21:50:45 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-09 21:50:45 ----A---- C:\Windows\system32\MFH264Dec.dll
2011-02-09 21:50:45 ----A---- C:\Windows\system32\d2d1.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\xpsservices.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\mfmp4src.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\MFHEAACdec.dll
2011-02-09 21:50:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-02-09 21:50:43 ----A---- C:\Windows\system32\shdocvw.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2011-02-09 21:50:43 ----A---- C:\Windows\system32\OpcServices.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\mf.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\dxgi.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\d3d10_1.dll
2011-02-09 21:50:43 ----A---- C:\Windows\system32\d3d10.dll
2011-02-09 21:50:42 ----A---- C:\Windows\system32\stobject.dll
2011-02-09 21:50:42 ----A---- C:\Windows\system32\mfplat.dll
2011-02-09 21:50:42 ----A---- C:\Windows\system32\d3d10level9.dll
2011-02-09 21:50:42 ----A---- C:\Windows\system32\d3d10core.dll
2011-02-09 21:50:41 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2011-02-09 21:50:41 ----A---- C:\Windows\system32\mfps.dll
2011-02-09 21:50:41 ----A---- C:\Windows\system32\cdd.dll
2011-02-09 21:50:29 ----A---- C:\Windows\system32\mshtml.dll
2011-02-09 21:50:28 ----A---- C:\Windows\system32\ieframe.dll
2011-02-09 21:50:25 ----A---- C:\Windows\system32\wininet.dll
2011-02-09 21:50:25 ----A---- C:\Windows\system32\urlmon.dll
2011-02-09 21:50:25 ----A---- C:\Windows\system32\mstime.dll
2011-02-09 21:50:25 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-09 21:50:25 ----A---- C:\Windows\system32\iertutil.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\occache.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\jsproxy.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\ieUnatt.exe
2011-02-09 21:50:24 ----A---- C:\Windows\system32\ieui.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\iesysprep.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\iesetup.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\iernonce.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\iepeers.dll
2011-02-09 21:50:24 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-09 21:50:21 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-09 21:50:21 ----A---- C:\Windows\system32\ie4uinit.exe
2011-02-09 21:50:18 ----A---- C:\Windows\system32\shell32.dll
2011-02-09 21:50:17 ----A---- C:\Windows\system32\shlwapi.dll
2011-02-09 21:50:15 ----A---- C:\Windows\system32\atmlib.dll
2011-02-09 21:50:15 ----A---- C:\Windows\system32\atmfd.dll
2011-02-07 11:38:26 ----D---- C:\ProgramData\Sun
2011-02-07 11:38:25 ----D---- C:\Program Files\Common Files\Java
2011-02-07 11:37:40 ----A---- C:\Windows\system32\javaws.exe
2011-02-07 11:37:40 ----A---- C:\Windows\system32\javaw.exe
2011-02-07 11:37:40 ----A---- C:\Windows\system32\java.exe
2011-02-07 11:37:40 ----A---- C:\Windows\system32\deployJava1.dll
2011-02-07 11:37:15 ----D---- C:\Program Files\Java
2011-02-05 18:13:59 ----D---- C:\Users\Boxer I\AppData\Roaming\Zoner
2011-02-05 18:13:26 ----D---- C:\Program Files\Zoner
2011-01-31 22:04:30 ----D---- C:\Program Files\QuickTime
2011-01-31 22:04:29 ----D---- C:\ProgramData\Apple Computer
2011-01-12 09:40:59 ----A---- C:\Windows\system32\odbc32.dll
2011-01-12 09:40:57 ----A---- C:\Windows\system32\sdclt.exe
2010-12-16 05:39:47 ----A---- C:\Windows\system32\taskschd.dll
2010-12-16 05:39:47 ----A---- C:\Windows\system32\schedsvc.dll
2010-12-16 05:39:46 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-12-16 05:39:46 ----A---- C:\Windows\system32\taskeng.exe
2010-12-16 05:39:46 ----A---- C:\Windows\system32\taskcomp.dll
2010-12-16 05:39:44 ----A---- C:\Windows\system32\consent.exe
2010-12-16 05:39:43 ----A---- C:\Windows\system32\fontsub.dll
2010-12-16 05:39:23 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 3 months======

2011-03-07 18:06:04 ----D---- C:\Windows\Prefetch
2011-03-07 18:05:53 ----RD---- C:\Program Files
2011-03-07 18:05:45 ----D---- C:\Windows\Temp
2011-03-07 18:04:15 ----D---- C:\Users\Boxer I\AppData\Roaming\Skype
2011-03-07 16:37:44 ----SHD---- C:\System Volume Information
2011-03-07 16:06:12 ----D---- C:\Users\Boxer I\AppData\Roaming\skypePM
2011-03-04 20:46:58 ----D---- C:\Windows\System32
2011-03-03 23:29:34 ----D---- C:\Program Files\Bandoo
2011-03-03 08:48:38 ----D---- C:\Windows\system32\WDI
2011-03-02 05:28:32 ----SD---- C:\Users\Boxer I\AppData\Roaming\Microsoft
2011-03-02 05:28:32 ----D---- C:\Users\Boxer I\AppData\Roaming\Adobe
2011-03-01 19:44:07 ----SHD---- C:\Windows\Installer
2011-03-01 19:43:45 ----D---- C:\Program Files\Common Files\Adobe
2011-03-01 19:43:42 ----D---- C:\ProgramData\Adobe
2011-03-01 19:43:40 ----D---- C:\Program Files\Adobe
2011-03-01 18:58:30 ----D---- C:\Windows\system32\catroot2
2011-02-23 08:16:16 ----D---- C:\Windows\rescache
2011-02-23 08:12:23 ----D---- C:\Windows\winsxs
2011-02-23 08:09:11 ----D---- C:\Windows\Microsoft.NET
2011-02-23 08:06:01 ----D---- C:\Windows\system32\catroot
2011-02-21 08:13:49 ----D---- C:\Windows
2011-02-21 00:43:19 ----D---- C:\Users\Boxer I\AppData\Roaming\Mozilla
2011-02-17 22:04:11 ----D---- C:\Program Files\Microsoft Silverlight
2011-02-16 22:17:57 ----D---- C:\Windows\system32\drivers
2011-02-16 21:54:38 ----D---- C:\Windows\tracing
2011-02-12 17:54:48 ----D---- C:\ProgramData\CyberLink
2011-02-10 18:25:56 ----D---- C:\Program Files\PokerStars
2011-02-10 11:59:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-10 11:59:35 ----D---- C:\Windows\inf
2011-02-10 11:50:14 ----D---- C:\Program Files\Windows Mail
2011-02-10 11:50:11 ----D---- C:\Windows\system32\migration
2011-02-10 11:50:11 ----D---- C:\Program Files\Internet Explorer
2011-02-10 09:35:39 ----D---- C:\Windows\Debug
2011-02-10 09:35:37 ----A---- C:\Windows\system32\mrt.exe
2011-02-10 09:35:09 ----D---- C:\ProgramData\Microsoft Help
2011-02-07 11:38:26 ----HD---- C:\ProgramData
2011-02-07 11:38:25 ----D---- C:\Program Files\Common Files
2011-02-03 14:01:09 ----D---- C:\Program Files\Opera
2011-02-02 17:11:20 ----N---- C:\Windows\system32\MpSigStub.exe
2011-01-29 18:58:49 ----D---- C:\Users\Boxer I\AppData\Roaming\Opera
2011-01-15 03:31:03 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-01-13 09:47:32 ----A---- C:\Windows\system32\aswBoot.exe
2011-01-05 01:09:38 ----D---- C:\Program Files\Trillian
2011-01-05 00:54:50 ----D---- C:\Users\Boxer I\AppData\Roaming\ICQ
2011-01-02 20:05:08 ----D---- C:\Program Files\ICQ6Toolbar
2011-01-02 20:04:59 ----D---- C:\ProgramData\ICQ
2010-12-23 23:10:37 ----D---- C:\Users\Boxer I\AppData\Roaming\Real
2010-12-22 21:07:13 ----D---- C:\Windows\system32\Tasks
2010-12-20 14:16:02 ----D---- C:\Windows\system32\drivers\etc
2010-12-20 10:53:55 ----D---- C:\Windows\system32\Msdtc
2010-12-20 10:53:52 ----D---- C:\Windows\system32\wbem
2010-12-20 10:53:08 ----D---- C:\Windows\system32\config
2010-12-20 10:52:58 ----D---- C:\Windows\Tasks
2010-12-20 10:52:58 ----D---- C:\Windows\system32\spool
2010-12-20 10:52:58 ----D---- C:\Windows\registration
2010-12-20 10:52:58 ----D---- C:\Users\Boxer I\AppData\Roaming\DAEMON Tools
2010-12-17 08:48:11 ----D---- C:\Windows\system32\cs-CZ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-04-22 717296]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-11-09 59388]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
R2 RMCAST;Ovladač protokolu RMCAST (Pgm); C:\Windows\system32\DRIVERS\RMCAST.sys [2009-04-11 113664]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-02-20 95760]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-03-16 4361216]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-03-30 2350624]
R3 PAC207;SoC PC-Camera; C:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-11-10 135680]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 a859n374;a859n374; C:\Windows\system32\drivers\a859n374.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 39272]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2005-05-26 21344]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2005-05-26 38144]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2005-06-24 39036]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-03-16 180224]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 Bandoo Coordinator;Bandoo Coordinator; C:\PROGRA~1\Bandoo\Bandoo.exe [2011-03-03 1617296]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-23 136176]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-08-23 79136]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2009-04-17 247152]
S4 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]

-----------------EOF-----------------

[Interpol]

prosím o kontrolu logu děkuji

[vyosek]

Zdravim a pekny vecer preji

Tohle proxy je umyslne ftp=5g.wia.cz:80;http=5g.wia.cz:80;https=5g.wia.cz:80

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

[Interpol]

zatím nic neposlala tak je to už asi bezpředmětné děkuji

[vyosek]

Ok, beru na vedomi...