VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

domácí síť-log RSIT

https://forum.viry.cz:443/viewtopic.php?t=108893

Stránka 1 z 2

domácí síť-log RSIT

Napsal: 28 led 2011 15:58
od tramin
Prosím o kontrolu logů.Uvádím raději oba PC
PC 1

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin Heller at 2011-01-28 15:53:05
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (14%) free of 15 GB
Total RAM: 1023 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:14, on 28.1.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Analog Devices\SoundMAX\smax4.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MICROS~2\wcescomm.exe
C:\Program Files\gSyncit\gsyncit.exe
C:\Program Files\PopTray\PopTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\MICROS~2\rapimgr.exe
C:\totalcmd\TOTALCMD.EXE
D:\stahování\RSIT(2).exe
C:\Program Files\trend micro\Martin Heller.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray
O4 - HKCU\..\Run: [WeatherWatcher] C:\Program Files\Weather Watcher\ww.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MICROS~2\wcescomm.exe"
O4 - HKCU\..\Run: [gSyncit] C:\Program Files\gSyncit\gsyncit.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: PopTray.lnk = C:\Program Files\PopTray\PopTray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí BitSpiritu - C:\Program Files\BitSpirit\bsurl.htm
O8 - Extra context menu item: Stáhnout Star Downloaderem - C:\Program Files\Star Downloader\sdie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 8133 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1454471165-484763869-725345543-1003.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-10-09 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-10-09 520192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-12-05 8523776]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2006-04-29 94208]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"nwiz"=nwiz.exe /install []
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"SoundMax"=C:\Program Files\Analog Devices\SoundMAX\smax4.exe [2003-05-30 585728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WeatherWatcher"=C:\Program Files\Weather Watcher\ww.exe []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\PROGRA~1\MICROS~2\wcescomm.exe [2006-11-13 1289000]
"gSyncit"=C:\Program Files\gSyncit\gsyncit.exe [2010-05-11 19456]

C:\Documents and Settings\Martin\Nabídka Start\Programy\Po spuštění
PopTray.lnk - C:\Program Files\PopTray\PopTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-04-10 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\My Mobile\MyMobiler\MyMobiler.exe"="C:\Program Files\My Mobile\MyMobiler\MyMobiler.exe:*:Enabled:My Mobile - My Mobiler"
"C:\Program Files\My Mobile\MyMobiler\MExplorer.exe"="C:\Program Files\My Mobile\MyMobiler\MExplorer.exe:*:Enabled:Explorer Module"
"D:\linksys firmware\upg-spa2102-5-2-5.exe"="D:\linksys firmware\upg-spa2102-5-2-5.exe:*:Enabled:upg-spa2102-5-2-5"
"C:\Program Files\SJLabs\SJphone\SJphone.exe"="C:\Program Files\SJLabs\SJphone\SJphone.exe:*:Enabled:SJphone"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"D:\RegTool.exe"="D:\RegTool.exe:*:Enabled:RegTool.exe"
"D:\Sibelius.exe"="D:\Sibelius.exe:*:Enabled:Sibelius.exe"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"D:\ZOO TYCOON2\zt.exe"="D:\ZOO TYCOON2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\ActionVoip.com\ActionVoip\ActionVoip.exe"="C:\Program Files\ActionVoip.com\ActionVoip\ActionVoip.exe:*:Enabled:ActionVoip"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======List of files/folders created in the last 1 months======

2011-01-28 15:53:05 ----D---- C:\rsit
2011-01-28 13:11:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Innovative Solutions
2011-01-28 13:11:44 ----D---- C:\Program Files\Innovative Solutions
2011-01-28 13:00:20 ----A---- C:\WINDOWS\system32\yk51x86.dll
2011-01-28 13:00:20 ----A---- C:\WINDOWS\system32\drivers\yk51x86.sys
2011-01-28 12:57:40 ----D---- C:\Program Files\SlimDrivers
2011-01-28 12:34:54 ----A---- C:\WINDOWS\gdrv.sys
2011-01-25 16:06:43 ----A---- C:\WINDOWS\system32\drivers\SBREDrv.sys
2011-01-25 15:45:23 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2011-01-25 15:45:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2011-01-25 15:26:06 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{ECC164E0-3133-4C70-A831-F08DB2940F70}
2011-01-25 15:25:23 ----D---- C:\Program Files\Lavasoft
2011-01-25 13:28:02 ----D---- C:\Program Files\Ashampoo
2011-01-25 13:26:59 ----A---- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
2011-01-25 12:36:54 ----D---- C:\Documents and Settings\Martin\Data aplikací\ActionVoip
2011-01-25 12:36:48 ----D---- C:\Program Files\ActionVoip.com
2011-01-24 12:07:21 ----D---- C:\Documents and Settings\Martin\Data aplikací\Canneverbe Limited
2011-01-24 12:07:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
2011-01-12 14:47:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-01-01 18:31:50 ----D---- C:\Program Files\JDownloader
2010-12-30 10:49:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2010-12-30 10:49:04 ----D---- C:\Program Files\DVD Shrink

======List of files/folders modified in the last 1 months======

2011-01-28 15:53:14 ----D---- C:\WINDOWS\Prefetch
2011-01-28 15:53:14 ----D---- C:\Program Files\Trend Micro
2011-01-28 15:52:27 ----A---- C:\WINDOWS\wincmd.ini
2011-01-28 15:52:07 ----D---- C:\WINDOWS\Temp
2011-01-28 14:41:31 ----AD---- C:\WINDOWS
2011-01-28 13:47:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-28 13:47:26 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-28 13:20:29 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-01-28 13:11:44 ----RD---- C:\Program Files
2011-01-28 13:09:57 ----SHD---- C:\WINDOWS\Installer
2011-01-28 13:09:57 ----HD---- C:\Config.Msi
2011-01-28 13:06:55 ----D---- C:\WINDOWS\system32
2011-01-28 13:06:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-28 13:04:51 ----D---- C:\WINDOWS\system32\drivers
2011-01-28 13:00:36 ----HD---- C:\WINDOWS\inf
2011-01-28 13:00:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-28 13:00:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-01-27 14:11:12 ----D---- C:\Documents and Settings\Martin\Data aplikací\gSyncit
2011-01-25 16:06:48 ----SD---- C:\WINDOWS\Tasks
2011-01-25 15:25:18 ----D---- C:\WINDOWS\WinSxS
2011-01-25 15:22:30 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-01-24 11:50:49 ----D---- C:\Documents and Settings\Martin\Data aplikací\Ashampoo
2011-01-20 16:07:53 ----D---- C:\Documents and Settings\Martin\Data aplikací\Skype
2011-01-20 16:01:06 ----D---- C:\Documents and Settings\Martin\Data aplikací\skypePM
2011-01-17 13:11:33 ----D---- C:\Program Files\Mozilla Firefox
2011-01-16 21:03:47 ----D---- C:\Documents and Settings\Martin\Data aplikací\SolSuite
2011-01-13 09:47:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-01-12 14:47:16 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-12 14:45:35 ----HD---- C:\WINDOWS\$hf_mig$
2011-01-07 09:08:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
2011-01-07 09:07:31 ----D---- C:\Program Files\MSI Afterburner
2011-01-05 15:54:48 ----D---- C:\Program Files\Microsoft ActiveSync

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-15 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SpyMng;SpyMng; \??\C:\WINDOWS\system32\Drivers\SpyMng.sys []
R1 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2008-05-30 25344]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-12-05 7435392]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2008-05-01 10368]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-06-02 578304]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2010-09-23 298784]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 SOFTLOK;SOFTLOK; C:\WINDOWS\system32\drivers\SOFTLOK.sys []
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 genmcmnUSB;USB Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gflmouhid.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 IrCOMM2k;Virtual IR COM Port; C:\WINDOWS\system32\DRIVERS\ircomm2k.sys []
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2007-11-29 63120]
S3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys []
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys [2002-09-20 235100]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys [2008-04-13 22016]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-12-15 47360]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2002-10-30 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys []
S3 STIrUsb;SigmaTel USB-IrDA Dongle; C:\WINDOWS\system32\DRIVERS\irstusb.sys [2001-08-17 26624]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-12-05 155716]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-30 136176]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 HP Port Resolver;HP Port Resolver; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE [2005-05-20 81920]
S3 HP Status Server;HP Status Server; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE [2004-10-16 73728]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
S4 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

PC 2

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin Heller at 2011-01-28 15:34:56
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 5 GB (17%) free of 27 GB
Total RAM: 2046 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:34:59, on 28.1.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18999)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\Silvercrest MTS2118 driver\StartAutorun.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\PopTray\PopTray.exe
C:\Program Files\Silvercrest MTS2118 driver\KMConfig.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Silvercrest MTS2118 driver\KMProcess.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
D:\programy\RSIT(2).exe
C:\Program Files\trend micro\Martin Heller.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = ww.seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [KMCONFIG] C:\Program Files\Silvercrest MTS2118 driver\StartAutorun.exe KMConfig.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: PopTray.lnk = C:\Program Files\PopTray\PopTray.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - C:\Program Files\Silvercrest MTS2118 driver\KMWDSrv.exe

--
End of file - 4366 bytes

======Scheduled tasks folder======

C:\Windows\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-15 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-03 178712]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2006-04-29 94208]
"KMCONFIG"=C:\Program Files\Silvercrest MTS2118 driver\StartAutorun.exe [2007-03-06 212992]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-04-17 6111232]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-09-07 98304]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]

C:\Users\Martin Heller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
PopTray.lnk - C:\Program Files\PopTray\PopTray.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Daum\PotPlayer\PotPlayer.exe"="C:\Program Files\Daum\PotPlayer\PotPlayer.exe:*:Enabled:?? ?????"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:?? ?????"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Daum\PotPlayer\PotPlayer.exe"="C:\Program Files\Daum\PotPlayer\PotPlayer.exe:*:Enabled:?? ?????"
"C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe"="C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe:*:Enabled:?? ?????"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-01-28 15:34:56 ----D---- C:\rsit
2011-01-28 13:35:29 ----A---- C:\Windows\system32\RTNUninst32.dll
2011-01-28 13:35:29 ----A---- C:\Windows\system32\RtNicProp32.dll
2011-01-28 13:35:29 ----A---- C:\Windows\system32\drivers\Rtlh86.sys
2011-01-28 13:26:27 ----D---- C:\ProgramData\Innovative Solutions
2011-01-26 13:26:07 ----D---- C:\Program Files\RadarSync
2011-01-24 16:49:59 ----D---- C:\Windows\system32\oodag
2011-01-24 16:14:33 ----D---- C:\Program Files\OO Software
2011-01-24 16:13:49 ----D---- C:\Program Files\AC3Filter
2011-01-13 14:07:34 ----A---- C:\Windows\system32\usp10.dll
2011-01-13 14:07:33 ----A---- C:\Windows\system32\spoolsv.exe
2011-01-13 14:07:30 ----A---- C:\Windows\system32\gameux.dll
2011-01-13 14:07:29 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2011-01-13 14:07:29 ----A---- C:\Windows\system32\Apphlpdm.dll
2011-01-13 14:07:25 ----A---- C:\Windows\system32\odbc32.dll
2011-01-13 14:07:23 ----A---- C:\Windows\system32\inetcomm.dll
2011-01-13 14:07:18 ----A---- C:\Windows\system32\msfeedssync.exe
2011-01-13 14:07:17 ----A---- C:\Windows\system32\ie4uinit.exe
2011-01-13 14:07:14 ----A---- C:\Windows\system32\wininet.dll
2011-01-13 14:07:14 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-01-13 14:07:14 ----A---- C:\Windows\system32\msfeeds.dll
2011-01-13 14:07:14 ----A---- C:\Windows\system32\iedkcs32.dll
2011-01-13 14:07:13 ----A---- C:\Windows\system32\urlmon.dll
2011-01-13 14:07:13 ----A---- C:\Windows\system32\iesetup.dll
2011-01-13 14:07:13 ----A---- C:\Windows\system32\iernonce.dll
2011-01-13 14:07:12 ----A---- C:\Windows\system32\iertutil.dll
2011-01-13 14:07:12 ----A---- C:\Windows\system32\ieframe.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\mstime.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\mshtmled.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\licmgr10.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\jsproxy.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\ieui.dll
2011-01-13 14:07:11 ----A---- C:\Windows\system32\iepeers.dll
2011-01-13 14:07:10 ----A---- C:\Windows\system32\mshtml.dll
2011-01-13 14:07:09 ----A---- C:\Windows\system32\occache.dll
2011-01-13 14:07:09 ----A---- C:\Windows\system32\ieUnatt.exe
2011-01-13 14:07:09 ----A---- C:\Windows\system32\iesysprep.dll
2011-01-13 14:07:04 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-01-13 14:07:04 ----A---- C:\Windows\system32\taskschd.dll
2011-01-13 14:07:04 ----A---- C:\Windows\system32\taskeng.exe
2011-01-13 14:07:04 ----A---- C:\Windows\system32\schedsvc.dll
2011-01-13 14:07:03 ----A---- C:\Windows\system32\taskcomp.dll
2011-01-13 14:07:01 ----A---- C:\Windows\system32\srvsvc.dll
2011-01-13 14:07:01 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-01-13 14:07:01 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-01-13 14:07:01 ----A---- C:\Windows\system32\drivers\srv.sys
2011-01-13 14:07:00 ----A---- C:\Windows\system32\netevent.dll
2011-01-13 14:06:47 ----A---- C:\Windows\system32\wmp.dll
2011-01-13 14:06:45 ----A---- C:\Windows\system32\wmploc.DLL
2011-01-13 14:06:24 ----A---- C:\Windows\system32\tzres.dll
2011-01-13 14:05:59 ----A---- C:\Windows\system32\ole32.dll
2011-01-13 14:05:58 ----A---- C:\Windows\system32\mfc40u.dll
2011-01-13 14:05:58 ----A---- C:\Windows\system32\mfc40.dll
2011-01-13 14:05:57 ----A---- C:\Windows\system32\schannel.dll
2011-01-13 14:05:56 ----A---- C:\Windows\system32\fontsub.dll
2011-01-13 14:05:56 ----A---- C:\Windows\system32\atmlib.dll
2011-01-13 14:05:56 ----A---- C:\Windows\system32\atmfd.dll
2011-01-13 14:05:53 ----A---- C:\Windows\system32\win32k.sys
2011-01-13 14:05:52 ----A---- C:\Windows\system32\t2embed.dll
2011-01-13 14:05:51 ----A---- C:\Windows\system32\wmpmde.dll
2011-01-13 14:05:50 ----A---- C:\Windows\system32\sdclt.exe
2011-01-13 14:05:49 ----A---- C:\Windows\system32\MP4SDECD.DLL
2011-01-13 14:05:48 ----A---- C:\Windows\system32\consent.exe
2011-01-13 14:03:19 ----A---- C:\Windows\system32\comctl32.dll
2011-01-13 14:02:12 ----A---- C:\Windows\system32\msshsq.dll
2011-01-02 12:02:40 ----D---- C:\ProgramData\DVD Shrink
2011-01-02 11:56:29 ----D---- C:\Program Files\DVD Shrink

======List of files/folders modified in the last 1 months======

2011-01-28 15:35:00 ----D---- C:\Windows\Prefetch
2011-01-28 15:34:59 ----D---- C:\Program Files\Trend Micro
2011-01-28 15:32:26 ----D---- C:\Windows
2011-01-28 15:31:50 ----A---- C:\Windows\ntbtlog.txt
2011-01-28 15:31:40 ----D---- C:\Windows\Temp
2011-01-28 13:42:00 ----RD---- C:\Program Files
2011-01-28 13:41:53 ----SHD---- C:\System Volume Information
2011-01-28 13:41:44 ----AD---- C:\ProgramData\TEMP
2011-01-28 13:38:55 ----D---- C:\Windows\System32
2011-01-28 13:38:54 ----D---- C:\Windows\system32\drivers
2011-01-28 13:36:35 ----D---- C:\Windows\system32\catroot
2011-01-28 13:36:34 ----D---- C:\Windows\inf
2011-01-28 13:26:27 ----HD---- C:\ProgramData
2011-01-25 13:04:30 ----SHD---- C:\Windows\Installer
2011-01-25 13:04:30 ----SHD---- C:\Config.Msi
2011-01-23 17:39:09 ----D---- C:\Program Files\totalcmd
2011-01-17 14:50:03 ----D---- C:\Program Files\ATI
2011-01-17 14:23:42 ----D---- C:\Windows\system32\catroot2
2011-01-15 16:00:44 ----D---- C:\Windows\Microsoft.NET
2011-01-15 16:00:34 ----RSD---- C:\Windows\assembly
2011-01-15 15:49:48 ----D---- C:\Windows\rescache
2011-01-13 14:13:37 ----D---- C:\Windows\system32\cs-CZ
2011-01-13 14:13:37 ----D---- C:\Program Files\Windows Media Player
2011-01-13 14:13:37 ----D---- C:\Program Files\Windows Mail
2011-01-13 14:13:36 ----D---- C:\Windows\system32\migration
2011-01-13 14:13:36 ----D---- C:\Windows\AppPatch
2011-01-13 14:13:36 ----D---- C:\Program Files\Internet Explorer
2011-01-13 14:12:49 ----D---- C:\Windows\winsxs
2011-01-13 11:23:26 ----D---- C:\Program Files\JDownloader
2011-01-13 09:47:32 ----A---- C:\Windows\system32\aswBoot.exe
2011-01-03 19:51:28 ----D---- C:\Program Files\Common Files\ACD Systems
2011-01-02 09:13:55 ----A---- C:\Windows\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-09-29 308248]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-04-27 716272]
R0 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2006-04-22 24320]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-01-13 47440]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
R2 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2006-04-22 8064]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-09-08 6381056]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-09-08 221696]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdLH3.sys [2010-08-16 100368]
R3 ElbyDelay;ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-04-17 2098904]
R3 KMWDFilter;KMWDFilter; \??\C:\Windows\System32\Drivers\KMWDFilter.SYS [2007-06-13 17280]
R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [2008-05-02 10368]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-11-11 305256]
S1 archlp;archlp; C:\Windows\system32\drivers\archlp.sys []
S1 ATITool;ATITool Overclocking Utility; C:\Windows\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S2 HDUSB;HDUSB.Sys HDUSB Bulk IO test driver; C:\Windows\System32\Drivers\HDUSB.sys [2004-03-23 24151]
S2 HWiNFO32;HWiNFO32 Kernel Driver; \??\D:\stahování\HWiNFO32.SYS []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-09-08 6381056]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-02-18 16608]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-10 236544]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Ad-Aware 2007 Service; C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe [2007-07-20 557056]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-09-08 176128]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-03 358936]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:\Program Files\Silvercrest MTS2118 driver\KMWDSrv.exe [2007-06-16 208896]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]

-----------------EOF-----------------
Děkuji

Re: domácí síť-log RSIT

Napsal: 28 led 2011 19:39
od Rudy
Oba logy vypadají čisté. Nějaký problém?

Re: domácí síť-log RSIT

Napsal: 29 led 2011 10:30
od tramin
Vznikl zvláštní problém.Mám malou domácí síť,v patře počítač č.1 (win xp,sp 3)internet přes modem a wifi router do počítače,dole počítač č.2(win vista),připojeno UTP kabelem dole opět přes wifi router,fungující jako AP.Dřív vše fungovalo bez problému,až nejednou nejde ze spodního počítače přesunout data do horního.V TC se to sice rozjede,ale po různě dlouhé době zastaví a konec.Z horního počítače jde vše OK,dokonce funguje přesouvání dat ze spodu nahoru(přes TC).Stejně tak funguje i přesun souboru na spodním PC shora dolů.Ping velké pakety oběma směry OK.Nainstalovány nejnovější ovladače síťovek,test RAM v pořádku,projeto Avastem,Ad-Aware.Vůbec nechápu,co se děje,takže došlo i k podezření na infekci

Re: domácí síť-log RSIT

Napsal: 29 led 2011 12:16
od Rudy
Udělejte u obou PC kompletní skeny MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte. Uvidíme, zda je tam nějaký šmejd, osobně ale nevěřím, že způsobuje vámi popsaný problém.

Re: domácí síť-log RSIT

Napsal: 29 led 2011 15:25
od tramin
takže přikládám logy,vypadá to "pěkně"zanesené...

PC 1:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5634

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

29.1.2011 15:15:35
mbam-log-2011-01-29 (15-15-29).txt

Typ kontroly: Úplný test (C:\|D:\|E:\|F:\|G:\|)
Testované objekty: 228226
Uplynulý čas: 1 hodin, 26 minut, 29 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 3
Infikované složky: 0
Infikované soubory: 13

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\program files\SolSuite\solsuite.2007.universal.patch.exe (RiskWare.Tool.CK) -> No action taken.
c:\program files\SolSuite\SolSuite.exe (Spyware.Agent) -> No action taken.
d:\hry+encyklopedie\solsuite 8.0\solsuite.2007.universal.patch.exe (RiskWare.Tool.CK) -> No action taken.
d:\programy\ashampoo_burning_studio_2009_v8.0.3+10.0.7\klicek_full\ashampoo burning2010klicek funkcni .exe (RiskWare.Tool.CK) -> No action taken.
d:\programy\bsplayerpro.v2.24.954.full\keygen.exe (Trojan.Dropper.PGen) -> No action taken.
d:\programy\bsplayerpro.v2.24.954.full\bs.player.pro.v2.32.975_sk_cz\keygen.exe (Trojan.Dropper.PGen) -> No action taken.
d:\programy\coreavc\coreavc professional edition v1.6.5.0 (keygen included)\keygen.exe (Malware.Packer.Krunchy) -> No action taken.
d:\programy\windows 7\removewat 2.2.6 - igalerie.cz\removewat.exe (HackTool.Wpakill) -> No action taken.
d:\programy\windows 7\removewat-aktivace win7\windows.7.activation.for.all.versions\removewat.exe (HackTool.Wpakill) -> No action taken.
d:\programy\your uninstaller 2008 pro v6.1.1246\Keygen.exe (Trojan.Dropper.PGen) -> No action taken.
d:\stahování\screenshots.exe (Trojan.Agent) -> No action taken.
d:\system volume information\_restore{ae25b209-8d92-4efc-a223-00d198d3718b}\RP979\A0121847.exe (HackTool.Wpakill) -> No action taken.
c:\documents and settings\Martin\data aplikací\wiaserva.log (Malware.Trace) -> No action taken.

PC 2
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5634

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18999

29.1.2011 15:02:37
mbam-log-2011-01-29 (14-54-47).txt

Typ kontroly: Úplný test (C:\|D:\|E:\|F:\|G:\|)
Testované objekty: 220937
Uplynulý čas: 20 minut, 25 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
d:\programy\screenshots.exe (Trojan.Agent) -> No action taken.

Re: domácí síť-log RSIT

Napsal: 29 led 2011 17:21
od Rudy
Vše, co MBAM nalezl, smažte.

Re: domácí síť-log RSIT

Napsal: 29 led 2011 19:30
od tramin
Takže vše smazáno,bohužel,můj problém se tím nevyřešil.I tak děkuji za ochotu pomoci.

Re: domácí síť-log RSIT

Napsal: 29 led 2011 20:30
od Rudy
Zkuste reinstalovat ovladače síť. karty. Může se také jednat o vadu karty.

Re: domácí síť-log RSIT

Napsal: 30 led 2011 06:22
od tramin
To byla jedna z prvních věcí,které jsem udělal.Píšu to i v popisu mého problému.

Re: domácí síť-log RSIT

Napsal: 30 led 2011 11:18
od Rudy
Ještě zkuste WinsockFix: http://www.spyware.cz/go.php?p=spyware&t=aplikace&id=22 . Utilita reinstaluje protokol TCP/IP. Máte-li parametry sítě nastaveny ručně, budete je muset po restartu PC znovu nastavit. Pokud tohle nepomůže, vypůjčte si někde jinou síť kartu do PCI slotu, osaďte, nechte načíst, příp. nainstalujte ovladač a vyzkoušejte. Je rovněž možné, že se jedná o chybu systému.

Re: domácí síť-log RSIT

Napsal: 31 led 2011 16:27
od tramin
Jak výše uvádím,sítím absolutně nerozumím,takže mám dotaz.Mám to provést na obou PC? S těmi parametry sítě taky nevím,ale mám kabelové připojení od UPC(dynamická IP),čili modem-WAN konektor router,z toho pak LAN do PC 1,PC 2 a VOIP routeru.V PC 1 mám nastaveno získávání DHCP automaticky,dík za trpělivost.

Re: domácí síť-log RSIT

Napsal: 31 led 2011 19:37
od Rudy
Proveďte především na postiženém PC. Pokud máte DHCP automaticky, poznámka o ruční konfiguraci se vás netýká.

Re: domácí síť-log RSIT

Napsal: 02 úno 2011 18:17
od tramin
tak nepomohlo ani to...

Re: domácí síť-log RSIT

Napsal: 02 úno 2011 18:37
od Rudy
Vypadá to na chybu systému. Zkuste obnovu systému k datu, kdy korektně fungoval.

Re: domácí síť-log RSIT

Napsal: 04 úno 2011 09:43
od tramin
tak bohužel obnovu systému mám vypnutou,myslíte,že bych měl zkusit dát opravit systém instalačním CD?Mám visty.
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz