VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Výpadky netu

https://forum.viry.cz:443/viewtopic.php?t=106257

Stránka 1 z 2

Výpadky netu

Napsal: 04 lis 2010 16:45
od Trepifajkslak
Ahoj, mám problém, kolikrát mi vypadává net a naskočí jen když vytáhnu ethernet kabel z pc, tak prosím o kontrolu logu:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Fofr at 2010-11-04 16:43:05
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (7%) free of 76 GB
Total RAM: 1789 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:43:19, on 4.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Pidgin\pidgin.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Buchy\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Buchy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O11 - Options group: [java_sun] Java (Sun)
O15 - Trusted Zone: http://*.webzdarma.cz
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (bonjour service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service (flexnet licensing service) - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (idrivert) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

--
End of file - 6060 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dbc80044-a445-435b-bc74-9c25c1c588a9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-06 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7e6f031-17ce-4c07-bc86-eabfe594f69c}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-06 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=255
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=0
"NoDriveAutoRun"=255
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\SmartFTP Client\SmartFTP.exe"="C:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 4.0"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-10-26 18:21:14 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2010-10-26 18:21:11 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2010-10-26 18:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys
2010-10-26 18:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2010-10-26 18:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys
2010-10-26 18:21:10 ----D---- C:\Program Files\Avira
2010-10-26 18:21:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2010-10-24 08:52:37 ----D---- C:\Program Files\CCleaner
2010-10-24 07:10:58 ----D---- C:\Documents and Settings\Buchy\Data aplikací\gtk-2.0
2010-10-24 07:07:55 ----D---- C:\Documents and Settings\Buchy\Data aplikací\.purple
2010-10-24 07:06:57 ----D---- C:\Program Files\Pidgin
2010-10-23 21:19:58 ----D---- C:\Documents and Settings\Buchy\Data aplikací\FileZilla
2010-10-23 21:19:45 ----D---- C:\Program Files\FileZilla FTP Client
2010-10-23 20:42:54 ----D---- C:\Program Files\Audacity
2010-10-21 17:23:49 ----D---- C:\Program Files\Counter-Strike eXtreme V3
2010-10-21 15:02:12 ----D---- C:\Documents and Settings\Buchy\Data aplikací\URSoft
2010-10-21 15:02:07 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-10-21 15:01:59 ----D---- C:\Program Files\Your Uninstaller 2010
2010-10-21 14:33:29 ----D---- C:\WINDOWS\Internet Logs
2010-10-21 14:26:54 ----D---- C:\Documents and Settings\Buchy\Data aplikací\SmartFTP
2010-10-21 14:26:39 ----D---- C:\Program Files\SmartFTP Client
2010-10-21 14:26:25 ----D---- C:\Program Files\SmartFTP Client 4.0 Setup Files
2010-10-16 08:24:45 ----A---- C:\WINDOWS\War3Unin.pif
2010-10-16 08:24:45 ----A---- C:\WINDOWS\War3Unin.exe
2010-10-16 08:23:01 ----D---- C:\Program Files\Warcraft III
2010-10-16 06:56:06 ----D---- C:\Program Files\Team17
2010-10-15 17:43:02 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-10-15 17:42:58 ----D---- C:\Program Files\DAEMON Tools Lite
2010-10-15 17:42:36 ----D---- C:\Documents and Settings\Buchy\Data aplikací\DAEMON Tools Lite
2010-10-15 17:42:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-10-15 13:31:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-15 13:31:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-15 13:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-15 13:30:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-15 13:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-15 13:30:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-15 13:30:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-15 13:24:43 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-15 13:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$

======List of files/folders modified in the last 1 months======

2010-11-04 16:43:12 ----D---- C:\WINDOWS\Prefetch
2010-11-04 16:43:12 ----D---- C:\Program Files\trend micro
2010-11-04 16:14:48 ----SHD---- C:\WINDOWS\Installer
2010-11-04 15:52:24 ----D---- C:\WINDOWS\temp
2010-11-04 15:52:16 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-03 19:49:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-03 19:49:45 ----D---- C:\WINDOWS
2010-11-02 18:01:34 ----D---- C:\Config.Msi
2010-11-01 15:54:53 ----D---- C:\WINDOWS\system32
2010-11-01 15:54:53 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-28 09:52:45 ----AC---- C:\WINDOWS\NeroDigital.ini
2010-10-26 18:21:14 ----D---- C:\WINDOWS\system32\drivers
2010-10-26 18:21:10 ----RD---- C:\Program Files
2010-10-24 08:54:56 ----D---- C:\WINDOWS\Minidump
2010-10-24 08:54:56 ----D---- C:\WINDOWS\Debug
2010-10-23 20:16:58 ----D---- C:\Program Files\GIMPshop
2010-10-23 20:16:05 ----RD---- C:\Program Files\Skype
2010-10-23 20:16:05 ----D---- C:\Program Files\Common Files
2010-10-23 20:16:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-10-23 20:15:48 ----D---- C:\Program Files\Any Flv Player
2010-10-23 20:13:43 ----D---- C:\Program Files\Opera
2010-10-23 20:11:45 ----D---- C:\Program Files\STARWARS_TheBattleOfEndor_v21
2010-10-23 18:35:18 ----D---- C:\Program Files\Softonic-Eng7
2010-10-23 18:34:24 ----D---- C:\Program Files\Sony
2010-10-23 18:33:36 ----D---- C:\Program Files\Microsoft Silverlight
2010-10-23 18:32:43 ----D---- C:\Program Files\Common Files\Macromedia
2010-10-23 18:32:18 ----D---- C:\Program Files\ConTEXT
2010-10-23 18:31:29 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Desktopicon
2010-10-23 18:30:52 ----D---- C:\Program Files\ICQ6Toolbar
2010-10-23 18:27:00 ----D---- C:\Program Files\Plato Media Player
2010-10-23 18:25:40 ----D---- C:\Program Files\Extra Photo SlideShow Free
2010-10-23 16:56:25 ----D---- C:\Documents and Settings\Buchy\Data aplikací\ICQ
2010-10-21 18:07:02 ----D---- C:\Program Files\Game_Maker7
2010-10-21 17:36:37 ----D---- C:\WINDOWS\security
2010-10-21 17:21:19 ----HD---- C:\WINDOWS\inf
2010-10-21 17:03:07 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-21 17:03:07 ----D---- C:\Program Files\Sony Ericsson
2010-10-21 17:03:07 ----D---- C:\Program Files\FSC
2010-10-21 16:12:56 ----D---- C:\Program Files\Combined Community Codec Pack
2010-10-21 16:03:48 ----D---- C:\Program Files\PC Connectivity Solution
2010-10-21 16:03:46 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-10-21 15:56:57 ----D---- C:\Program Files\Mozilla Firefox
2010-10-21 15:46:08 ----D---- C:\WINDOWS\WinSxS
2010-10-21 15:45:17 ----D---- C:\Program Files\Common Files\Adobe
2010-10-21 15:38:16 ----D---- C:\Program Files\Adobe
2010-10-21 15:38:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-10-21 15:22:11 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-10-21 14:44:45 ----SD---- C:\WINDOWS\Tasks
2010-10-21 14:39:04 ----D---- C:\Program Files\Nokia
2010-10-21 14:27:46 ----SD---- C:\Documents and Settings\Buchy\Data aplikací\Microsoft
2010-10-19 17:37:38 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Skype
2010-10-19 15:07:46 ----D---- C:\Documents and Settings\Buchy\Data aplikací\skypePM
2010-10-15 13:31:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-15 13:31:15 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-15 13:29:42 ----D---- C:\Program Files\Internet Explorer
2010-10-15 13:29:25 ----D---- C:\WINDOWS\ie8updates
2010-10-15 13:24:56 ----AC---- C:\WINDOWS\system32\MRT.exe
2010-10-14 18:17:41 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Adobe
2010-10-11 14:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-05-04 64160]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-10-15 691696]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 filedisk;filedisk; C:\WINDOWS\system32\drivers\filedisk.sys [2004-06-09 10556]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2007-08-03 18688]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-03-02 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-03-02 55936]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-06-21 547072]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-10 4603904]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2007-08-03 321536]
R3 SiSGbeXP;SiS191/SiS190 Ethernet Device NDIS 5.1 Driver; C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys [2007-05-16 42368]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-05-10 208576]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys []
S2 zntport;NTPort Library Driver; \??\C:\WINDOWS\system32\drivers\zntport.sys []
S3 azcnvvel;azcnvvel; C:\WINDOWS\system32\drivers\azcnvvel.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-06-29 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-06-29 25512]
S3 netrcacm;RCA USB Digital Cable Modem Driver; C:\WINDOWS\system32\DRIVERS\netrcacm.sys [2003-01-20 20648]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys []
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys []
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vsbus;Virtual Serial Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vsb.sys [2008-07-23 15264]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\WINDOWS\System32\DRIVERS\vserial.sys [2008-07-23 47744]
S3 wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 bonjour service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-19 348344]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 flexnet licensing service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-21 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idrivert;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-03-07 1029456]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 gupdate1c98693303ccbd8;Google Update Service (gupdate1c98693303ccbd8); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-04 133104]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-06 152984]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Výpadky netu

Napsal: 04 lis 2010 17:22
od riffman
zdravim

nejprve odinstalujte kjeden antivirus, abychom vyloucili moznost kolize jejich webovych stitu

restart a hlaseni stavu sem :)

Re: Výpadky netu

Napsal: 04 lis 2010 17:24
od Trepifajkslak
to bude problém, avast nemám ani v přidat a odebrat programy, ani v start a ani v nějakém externím odinstalíči.

Re: Výpadky netu

Napsal: 04 lis 2010 17:28
od riffman
nebude :)

jedte podle tohoto postupu: http://www.avast.com/cs-cz/uninstall-utility

Re: Výpadky netu

Napsal: 04 lis 2010 18:12
od Trepifajkslak
nevím, poslední výpadek byl když jsem pouštěl nouzový režím, ale oni jsou několikrát za 10 min a pak třeba dlouho nic... dám nový log. EDIT: Tak zase výpadek, odpojím kabel restartuju modem a jede to... bohužel problém tedy přetrvává

Logfile of random's system information tool 1.08 (written by random/random)
Run by Fira at 2010-04-11 19:11:01
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (7%) free of 76 GB
Total RAM: 1789 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:11:07, on 11.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Buchy\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Buchy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O11 - Options group: [java_sun] Java (Sun)
O15 - Trusted Zone: http://*.webzdarma.cz
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (bonjour service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service (flexnet licensing service) - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (idrivert) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

--
End of file - 5346 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dbc80044-a445-435b-bc74-9c25c1c588a9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-06 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7e6f031-17ce-4c07-bc86-eabfe594f69c}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-06 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=255
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=0
"NoDriveAutoRun"=255
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\SmartFTP Client\SmartFTP.exe"="C:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 4.0"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-10-26 19:21:14 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2010-10-26 19:21:11 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2010-10-26 19:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys
2010-10-26 19:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2010-10-26 19:21:11 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys
2010-10-26 19:21:10 ----D---- C:\Program Files\Avira
2010-10-26 19:21:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2010-10-24 09:52:37 ----D---- C:\Program Files\CCleaner
2010-10-24 08:10:58 ----D---- C:\Documents and Settings\Buchy\Data aplikací\gtk-2.0
2010-10-24 08:07:55 ----D---- C:\Documents and Settings\Buchy\Data aplikací\.purple
2010-10-24 08:06:57 ----D---- C:\Program Files\Pidgin
2010-10-23 22:19:58 ----D---- C:\Documents and Settings\Buchy\Data aplikací\FileZilla
2010-10-23 22:19:45 ----D---- C:\Program Files\FileZilla FTP Client
2010-10-23 21:42:54 ----D---- C:\Program Files\Audacity
2010-10-21 18:23:49 ----D---- C:\Program Files\Counter-Strike eXtreme V3
2010-10-21 16:02:12 ----D---- C:\Documents and Settings\Buchy\Data aplikací\URSoft
2010-10-21 16:02:07 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-10-21 16:01:59 ----D---- C:\Program Files\Your Uninstaller 2010
2010-10-21 15:33:29 ----D---- C:\WINDOWS\Internet Logs
2010-10-21 15:26:54 ----D---- C:\Documents and Settings\Buchy\Data aplikací\SmartFTP
2010-10-21 15:26:39 ----D---- C:\Program Files\SmartFTP Client
2010-10-21 15:26:25 ----D---- C:\Program Files\SmartFTP Client 4.0 Setup Files
2010-10-16 09:24:45 ----A---- C:\WINDOWS\War3Unin.pif
2010-10-16 09:24:45 ----A---- C:\WINDOWS\War3Unin.exe
2010-10-16 09:23:01 ----D---- C:\Program Files\Warcraft III
2010-10-16 07:56:06 ----D---- C:\Program Files\Team17
2010-10-15 18:43:02 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-10-15 18:42:58 ----D---- C:\Program Files\DAEMON Tools Lite
2010-10-15 18:42:36 ----D---- C:\Documents and Settings\Buchy\Data aplikací\DAEMON Tools Lite
2010-10-15 18:42:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-10-15 14:31:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-15 14:31:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-15 14:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-15 14:30:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-15 14:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-15 14:30:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-15 14:30:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-15 14:24:43 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-15 14:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-09-29 19:44:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
2010-09-29 18:17:41 ----D---- C:\Documents and Settings\Buchy\Data aplikací\BSplayer
2010-09-29 17:11:29 ----D---- C:\Documents and Settings\Buchy\Data aplikací\PSpad
2010-09-27 17:19:45 ----D---- C:\Documents and Settings\Buchy\Data aplikací\ICQ
2010-09-16 15:00:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-09-16 15:00:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-09-16 14:59:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-09-16 14:59:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-09-16 14:59:33 ----HDC---- C:\WINDOWS\$NtUninstallKB982802$
2010-09-16 14:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-09-16 14:54:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-08-27 13:56:41 ----D---- C:\rsit
2010-08-27 12:44:08 ----D---- C:\WINDOWS\system32\NtmsData
2010-08-27 07:55:52 ----D---- C:\WINDOWS\ie8updates
2010-08-27 07:52:39 ----HDC---- C:\WINDOWS\ie8
2010-08-26 19:10:19 ----D---- C:\Program Files\Softonic-Eng7
2010-08-26 19:10:10 ----D---- C:\Program Files\GameSpy Arcade
2010-08-26 18:10:18 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Malwarebytes
2010-08-26 18:10:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-08-26 16:12:53 ----D---- C:\Program Files\Metin2_TESTER
2010-08-26 14:56:26 ----D---- C:\Program Files\Cenega Czech
2010-08-26 13:50:42 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-26 13:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-26 13:50:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-26 13:50:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-26 13:42:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-26 13:42:19 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-26 13:41:54 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-26 13:41:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-03 17:23:05 ----D---- C:\Documents and Settings\Buchy\Data aplikací\com.bigfatsimulations.airportmadness3.3A85083A650345D1ADAB4572C5816AD2DC9802A3.1
2010-08-03 17:21:08 ----D---- C:\games
2010-08-03 15:14:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2010-08-03 13:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-08-01 13:01:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-06-20 17:38:55 ----A---- C:\testlog.txt
2010-06-20 17:29:17 ----D---- C:\Program Files\ODEON
2010-06-10 13:10:54 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-10 13:10:48 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-10 13:10:31 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-10 13:10:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-10 13:10:04 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-10 13:09:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-07 10:47:08 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Sun
2010-05-31 16:33:17 ----D---- C:\Program Files\SignSIS-GUI
2010-05-28 18:12:09 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Opera
2010-05-28 18:11:52 ----D---- C:\Program Files\Opera
2010-05-28 13:00:35 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-05-26 15:28:45 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2010-05-26 15:14:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nokia
2010-05-26 15:11:14 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2010-05-26 15:11:07 ----D---- C:\Program Files\PC Connectivity Solution
2010-05-26 15:04:09 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2010-05-26 14:49:29 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Nokia
2010-05-26 14:49:27 ----D---- C:\Documents and Settings\Buchy\Data aplikací\PC Suite
2010-05-26 14:49:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2010-05-26 14:48:31 ----D---- C:\Program Files\DIFX
2010-05-26 14:47:59 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2010-05-26 14:47:58 ----D---- C:\Program Files\Nokia
2010-05-26 14:46:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2010-05-18 14:30:05 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Google
2010-05-13 14:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-05-08 15:50:10 ----D---- C:\Documents and Settings\Buchy\Data aplikací\uTorrent
2010-05-05 18:45:49 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Desktopicon
2010-05-05 18:45:38 ----D---- C:\Program Files\Ask.com
2010-05-04 16:03:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\PSPVC
2010-05-04 16:03:06 ----D---- C:\Program Files\Combined Community Codec Pack
2010-05-01 16:13:05 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Winnydows
2010-04-24 17:45:14 ----D---- C:\Documents and Settings\Buchy\Data aplikací\skypePM
2010-04-24 17:43:39 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Skype
2010-04-19 15:43:39 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-04-18 12:23:20 ----D---- C:\Documents and Settings\Buchy\Data aplikací\WinRAR
2010-04-18 09:30:11 ----D---- C:\e5d363cce58c556defa051056105
2010-04-18 08:56:06 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-04-18 08:55:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-04-17 09:43:27 ----D---- C:\Documents and Settings\Buchy\Data aplikací\DivX
2010-04-16 23:04:16 ----D---- C:\Documents and Settings\Buchy\Data aplikací\BSplayer Pro
2010-04-16 22:59:16 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-04-16 21:05:51 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-04-16 20:04:31 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-04-16 20:04:23 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-04-16 20:04:16 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-04-16 20:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-16 20:03:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-04-16 20:03:46 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-16 20:03:38 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-04-16 20:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-04-16 20:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-04-16 20:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-04-16 20:03:08 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-04-16 20:03:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-04-16 20:02:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-04-16 20:02:49 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-04-16 20:02:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-16 20:02:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-04-16 20:02:30 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-04-16 20:02:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-04-16 20:02:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-04-16 20:02:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-04-16 20:02:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-04-16 20:01:52 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-04-16 20:01:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-04-16 20:01:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-04-16 20:01:31 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-04-16 20:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-04-16 20:01:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-04-16 20:01:06 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-16 20:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-04-16 20:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-16 20:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-04-16 20:00:28 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-04-16 20:00:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-04-16 20:00:10 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-04-16 20:00:03 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-04-16 19:59:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-04-16 19:59:42 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-16 19:59:36 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-04-16 19:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-04-16 19:59:13 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-04-16 19:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-04-16 19:58:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-04-16 19:58:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-04-16 19:58:33 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-04-16 19:42:51 ----D---- C:\Documents and Settings\Buchy\Data aplikací\CheckPoint
2010-04-16 19:42:33 ----D---- C:\Program Files\CheckPoint
2010-04-16 19:37:34 ----D---- C:\Program Files\VS Revo Group
2010-04-16 19:12:27 ----D---- C:\autorun.inf
2010-04-16 18:58:51 ----D---- C:\UsbFix
2010-04-16 18:48:14 ----D---- C:\Program Files\trend micro
2010-04-16 18:28:39 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Adobe
2010-04-16 18:27:28 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Mozilla
2010-04-16 17:57:54 ----SHD---- C:\RECYCLER
2010-04-16 17:41:25 ----D---- C:\WINDOWS\temp
2010-04-16 17:20:27 ----A---- C:\Boot.bak
2010-04-16 17:20:22 ----RASHD---- C:\cmdcons
2010-04-16 14:59:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\MSN6
2010-04-16 14:59:19 ----D---- C:\Documents and Settings\Buchy\Data aplikací\MSN6
2010-04-15 16:53:35 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Identities
2010-04-15 16:53:18 ----ASH---- C:\Documents and Settings\Buchy\Data aplikací\desktop.ini
2010-04-15 16:53:17 ----SD---- C:\Documents and Settings\Buchy\Data aplikací\Microsoft
2010-04-15 16:53:17 ----D---- C:\Documents and Settings\Buchy\Data aplikací\Macromedia
2010-04-15 16:16:28 ----D---- C:\WINDOWS.0
2010-04-15 15:11:43 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-04-15 15:06:11 ----ASH---- C:\pagefile.sys
2010-04-15 14:29:01 ----D---- C:\Program Files\MSN
2010-04-11 18:59:50 ----A---- C:\WINDOWS\ntbtlog.txt
2010-04-10 19:47:33 ----D---- C:\Program Files\MSECache
2010-03-31 00:16:34 ----A---- C:\WINDOWS\system32\PresentationHostProxy.dll
2010-03-31 00:10:40 ----A---- C:\WINDOWS\system32\PresentationHost.exe

======List of files/folders modified in the last 1 months======

2010-11-04 18:46:50 ----D---- C:\WINDOWS\Prefetch
2010-11-04 17:14:48 ----SHD---- C:\WINDOWS\Installer
2010-11-03 20:49:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-02 19:01:34 ----D---- C:\Config.Msi
2010-10-28 10:52:45 ----AC---- C:\WINDOWS\NeroDigital.ini
2010-10-26 19:21:14 ----D---- C:\WINDOWS\system32\drivers
2010-10-26 19:21:10 ----RD---- C:\Program Files
2010-10-24 09:54:56 ----D---- C:\WINDOWS\Minidump
2010-10-24 09:54:56 ----D---- C:\WINDOWS\Debug
2010-10-23 21:16:58 ----D---- C:\Program Files\GIMPshop
2010-10-23 21:16:05 ----RD---- C:\Program Files\Skype
2010-10-23 21:16:05 ----D---- C:\Program Files\Common Files
2010-10-23 21:16:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-10-23 21:15:48 ----D---- C:\Program Files\Any Flv Player
2010-10-23 21:11:45 ----D---- C:\Program Files\STARWARS_TheBattleOfEndor_v21
2010-10-23 19:34:24 ----D---- C:\Program Files\Sony
2010-10-23 19:33:36 ----D---- C:\Program Files\Microsoft Silverlight
2010-10-23 19:32:43 ----D---- C:\Program Files\Common Files\Macromedia
2010-10-23 19:32:18 ----D---- C:\Program Files\ConTEXT
2010-10-23 19:30:52 ----D---- C:\Program Files\ICQ6Toolbar
2010-10-23 19:27:00 ----D---- C:\Program Files\Plato Media Player
2010-10-23 19:25:40 ----D---- C:\Program Files\Extra Photo SlideShow Free
2010-10-21 19:07:02 ----D---- C:\Program Files\Game_Maker7
2010-10-21 18:36:37 ----D---- C:\WINDOWS\security
2010-10-21 18:21:19 ----HD---- C:\WINDOWS\inf
2010-10-21 18:03:07 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-21 18:03:07 ----D---- C:\Program Files\Sony Ericsson
2010-10-21 18:03:07 ----D---- C:\Program Files\FSC
2010-10-21 17:03:46 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-10-21 16:56:57 ----D---- C:\Program Files\Mozilla Firefox
2010-10-21 16:46:08 ----D---- C:\WINDOWS\WinSxS
2010-10-21 16:45:17 ----D---- C:\Program Files\Common Files\Adobe
2010-10-21 16:38:16 ----D---- C:\Program Files\Adobe
2010-10-21 16:38:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-10-21 16:22:11 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-10-21 15:44:45 ----SD---- C:\WINDOWS\Tasks
2010-10-15 14:31:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-15 14:31:15 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-15 14:29:42 ----D---- C:\Program Files\Internet Explorer
2010-10-15 14:24:56 ----AC---- C:\WINDOWS\system32\MRT.exe
2010-10-11 15:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2010-10-02 18:26:47 ----D---- C:\WINDOWS\Microsoft.NET
2010-10-02 18:26:45 ----RSD---- C:\WINDOWS\assembly
2010-09-29 16:44:50 ----D---- C:\Program Files\PSPad editor
2010-09-28 13:49:37 ----D---- C:\Documents and Settings
2010-09-27 16:25:46 ----RSD---- C:\WINDOWS\Fonts
2010-09-27 11:41:49 ----D---- C:\Program Files\AviSynth 2.5
2010-09-18 12:23:38 ----A---- C:\WINDOWS\system32\mfc42u.dll
2010-09-18 08:53:37 ----A---- C:\WINDOWS\system32\mfc42.dll
2010-09-18 08:53:37 ----A---- C:\WINDOWS\system32\mfc40u.dll
2010-09-18 08:53:37 ----A---- C:\WINDOWS\system32\mfc40.dll
2010-09-10 07:52:35 ----A---- C:\WINDOWS\system32\wininet.dll
2010-09-10 07:52:35 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-09-10 07:52:34 ----N---- C:\WINDOWS\system32\occache.dll
2010-09-10 07:52:34 ----N---- C:\WINDOWS\system32\mstime.dll
2010-09-10 07:52:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-09-10 07:52:33 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-09-10 07:52:31 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-09-10 07:52:31 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-09-10 07:52:31 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-09-10 07:52:31 ----A---- C:\WINDOWS\system32\licmgr10.dll
2010-09-10 07:52:31 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-09-10 07:52:30 ----N---- C:\WINDOWS\system32\iepeers.dll
2010-09-10 07:52:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-09-10 07:52:26 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-09-01 13:52:28 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-08-27 12:44:07 ----D---- C:\WINDOWS\repair
2010-08-27 12:44:05 ----D---- C:\WINDOWS\Registration
2010-08-27 10:03:42 ----A---- C:\WINDOWS\system32\t2embed.dll
2010-08-27 08:18:52 ----SHD---- C:\System Volume Information
2010-08-27 08:18:52 ----D---- C:\WINDOWS\system32\Restore
2010-08-27 08:02:05 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-27 08:02:04 ----D---- C:\WINDOWS\Media
2010-08-27 08:02:04 ----D---- C:\WINDOWS\Help
2010-08-27 07:54:10 ----A---- C:\WINDOWS\system32\srvsvc.dll
2010-08-27 07:47:12 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-27 03:43:50 ----A---- C:\WINDOWS\system32\xpsp4res.dll
2010-08-26 18:35:25 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2010-08-26 17:56:31 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-26 14:22:32 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2010-08-26 13:41:59 ----D---- C:\Program Files\Movie Maker
2010-08-25 23:36:02 ----A---- C:\WINDOWS\system32\wmp.dll
2010-08-23 18:12:35 ----A---- C:\WINDOWS\system32\comctl32.dll
2010-08-17 15:17:06 ----A---- C:\WINDOWS\system32\spoolsv.exe
2010-08-16 10:45:05 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-16 14:00:53 ----A---- C:\WINDOWS\system32\ole32.dll
2010-06-30 14:33:04 ----A---- C:\WINDOWS\system32\schannel.dll
2010-06-21 16:46:15 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-06-18 19:47:41 ----A---- C:\WINDOWS\system32\winsrv.dll
2010-06-17 16:03:52 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-06-14 09:43:17 ----A---- C:\WINDOWS\system32\msxml3.dll
2010-06-09 09:45:13 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-06-05 12:23:01 ----D---- C:\Program Files\FormatFactory
2010-05-26 15:24:55 ----D---- C:\Program Files\Google
2010-05-26 15:04:06 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-05-26 15:04:06 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-05-13 14:56:58 ----D---- C:\Program Files\Outlook Express
2010-05-04 16:04:03 ----D---- C:\WINDOWS\system32\DirectX
2010-04-28 20:15:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-04-28 07:45:38 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-04-18 09:31:15 ----D---- C:\WINDOWS\system32\XPSViewer
2010-04-18 09:31:11 ----D---- C:\WINDOWS\system32\en-us
2010-04-18 09:20:11 ----D---- C:\Downloads
2010-04-16 22:58:49 ----D---- C:\Program Files\Windows Media Player
2010-04-16 21:02:51 ----D---- C:\WINDOWS\AppPatch
2010-04-16 17:38:42 ----A---- C:\WINDOWS\system32\usp10.dll
2010-04-16 17:36:15 ----A---- C:\WINDOWS\system.ini
2010-04-16 17:34:44 ----D---- C:\WINDOWS\system32\config
2010-04-16 17:20:27 ----RASH---- C:\boot.ini
2010-04-15 14:31:24 ----D---- C:\Program Files\NetMeeting
2010-04-15 14:31:22 ----D---- C:\Program Files\Common Files\System
2010-04-15 14:29:23 ----D---- C:\Program Files\Windows NT
2010-04-11 19:08:10 ----D---- C:\WINDOWS\system32
2010-04-11 19:08:10 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-11 19:06:49 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-11 19:02:39 ----D---- C:\Program Files\Alwil Software
2010-04-11 18:59:50 ----D---- C:\WINDOWS
2010-04-10 19:47:47 ----D---- C:\Program Files\Microsoft Office
2010-04-10 19:47:46 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-06 04:52:46 ----A---- C:\WINDOWS\system32\WMVCore.dll
2010-03-30 12:24:40 ----N---- C:\WINDOWS\system32\mp4sdecd.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-05-04 64160]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-10-15 691696]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 filedisk;filedisk; C:\WINDOWS\system32\drivers\filedisk.sys [2004-06-09 10556]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2007-08-03 18688]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-03-02 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-03-02 55936]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-06-21 547072]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-10 4603904]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2007-08-03 321536]
R3 SiSGbeXP;SiS191/SiS190 Ethernet Device NDIS 5.1 Driver; C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys [2007-05-16 42368]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-05-10 208576]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys []
S2 zntport;NTPort Library Driver; \??\C:\WINDOWS\system32\drivers\zntport.sys []
S3 ajcen3d6;ajcen3d6; C:\WINDOWS\system32\drivers\ajcen3d6.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-06-29 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-06-29 25512]
S3 netrcacm;RCA USB Digital Cable Modem Driver; C:\WINDOWS\system32\DRIVERS\netrcacm.sys [2003-01-20 20648]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys []
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys []
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys []
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vsbus;Virtual Serial Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vsb.sys [2008-07-24 15264]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\WINDOWS\System32\DRIVERS\vserial.sys [2008-07-24 47744]
S3 wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 bonjour service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 flexnet licensing service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-21 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idrivert;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-03-07 1029456]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 gupdate1c98693303ccbd8;Google Update Service (gupdate1c98693303ccbd8); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-04 133104]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-06 152984]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Výpadky netu

Napsal: 04 lis 2010 18:28
od riffman
http://www.esagelab.com/files/bootkit_remover.rar

stahnout, rozbalit na plochu, spustit

po spusteni klik pravym mysidlem do okna, zvolit moznost Vybrat vse, CTRL+C a sem do odpovedi CTRL+V (tim mi sem plesknete log)

Re: Výpadky netu

Napsal: 04 lis 2010 18:43
od Trepifajkslak
Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com

Program version: 1.2.0.0
OS Version: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`00007e00
Boot sector MD5 is: ee7fe9f24bc949ea3a78cf7064fbe50b

Size Device Name MBR Status
--------------------------------------------
74 GB \\.\PhysicalDrive0 Unknown boot code

Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>


Done;
Press any key to quit...

Re: Výpadky netu

Napsal: 04 lis 2010 18:45
od riffman
no vida :)

pouzivate nejaky bootovaci multiloader, jako napriklad GRUB?

Re: Výpadky netu

Napsal: 04 lis 2010 18:52
od Trepifajkslak
když nevím co to je, tak asi ne :)

Re: Výpadky netu

Napsal: 04 lis 2010 18:58
od riffman
to je takova vec, co vam pri startu pocitace dava na vyber, jestli chcete spustit ruzne operacni systemy :)

Re: Výpadky netu

Napsal: 04 lis 2010 18:59
od Trepifajkslak
tak ta tam je a chci se ji zbavit

Re: Výpadky netu

Napsal: 04 lis 2010 19:04
od riffman
dobre, pokusime se prepat MBR, ale upozornuju vas, ze uz nejspis nespustite nic jineho nez Windows :)

Re: Výpadky netu

Napsal: 04 lis 2010 19:05
od Trepifajkslak
tak to mi je docela jedno

Re: Výpadky netu

Napsal: 04 lis 2010 19:07
od riffman
OK, zkusme tedy prvni cestu

Start/Spustit a do chlivku zkopirujte nasledujici text:
"c:\documents and settings\jmeno_uzivatele - doplnte dle jmena uzivatele, pod kterym jste prave prihlasen\Plocha\remover.exe" fix \\.\PhysicalDrive0
potvrdit, restart a novy sken jako v predchozim pripade bootkit removerem, log sem ;)

+ hlaseni o tom, zdali je GRUB pryc

Re: Výpadky netu

Napsal: 04 lis 2010 19:29
od Trepifajkslak
když tam nechám Documents and Settings hodí to error, že t nemůže najít c:/documents, jako že to nebere celý název složky, ale jen to první slovo. A když mezery smažu, tak zas to píše, že soubor se tam již nenachází nebo co a přitom jsem to rozbalil na plochu
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz