Odpojování od sítě

Zpráva

dandar · #1 Příspěvek od **dandar** » 09 dub 2011 18:17

Prosím o kontrolu logu, ntb se odpojuje samovolně od sítě. Tak zda za tím není nějaká "potvora".
Díky...

Logfile of random's system information tool 1.08 (written by random/random)
Run by Jarda at 2011-04-09 19:13:39
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 25 GB (32%) free of 79 GB
Total RAM: 1014 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:14:01, on 9.4.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Windows\explorer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
C:\Users\Jarda\Desktop\RSIT.exe
C:\Program Files\trend micro\Jarda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Badoo Desktop] "C:\ProgramData\Badoo\Badoo Desktop\1.2.22.828\Badoo.Desktop.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?CZ (file missing)
O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/red ... &site=home (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?CZ (file missing)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Plánovač automatické aktualizace LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

--
End of file - 6758 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-04-27 501384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-09-03 4702208]
"Skytel"=C:\Windows\Skytel.exe [2007-08-03 1826816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]
"Badoo Desktop"=C:\ProgramData\Badoo\Badoo Desktop\1.2.22.828\Badoo.Desktop.exe [2010-10-29 983552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00TCrdMain]
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-05-22 538744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
C:\Program Files\Apoint2K\Apoint.exe [2006-09-11 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Camera Assistant Software]
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
C:\Program Files\Common Files\Symantec Shared\ccApp.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop SMS]
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-18 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2007-09-20 154136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSON]
C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HWSetup]
\HWSetup.exe hwSetUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-02-12 174872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2007-09-20 141848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11 249856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KeNotify]
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileConnect]
C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe [2008-11-04 2087424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NDSTray.exe]
NDSTray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2007-09-20 129560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Windows\RtHDVCpl.exe [2007-09-03 4702208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
C:\Windows\Skytel.exe [2007-08-03 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmoothView]
C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-04-03 509496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVPWUTIL]
C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec PIF AlertEng]
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\topi]
C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [2007-07-10 581632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TOSCDSPD]
TOSCDSPD.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba Registration]
C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [2007-02-19 571024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPwrMain]
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Monitor.lnk]
C:\PROGRA~1\TOSHIBA\BLUETO~2\BtMon2.exe [2007-02-15 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^EA_RESTART_001.lnk]
C:\Users\Jarda\AppData\Local\Temp\AutoRun.exe -restart -productName NHL07 Demo -dir F:\ -langIndex 11 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jarda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [2006-10-26 98632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-09-13 204800]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-02 03:28:17 ----D---- C:\Program Files\Windows Portable Devices
2011-04-02 03:08:58 ----A---- C:\Windows\system32\UIAnimation.dll
2011-04-02 03:08:57 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-04-02 03:08:56 ----A---- C:\Windows\system32\UIRibbon.dll
2011-04-02 03:07:47 ----A---- C:\Windows\system32\WMPhoto.dll
2011-04-02 03:07:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2011-04-02 03:07:43 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-04-02 03:07:43 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2011-04-02 03:07:43 ----A---- C:\Windows\system32\dxdiagn.dll
2011-04-02 03:07:43 ----A---- C:\Windows\system32\dxdiag.exe
2011-04-02 03:07:41 ----A---- C:\Windows\system32\d3d11.dll
2011-04-02 03:06:54 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2011-04-02 03:06:53 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-04-02 03:06:53 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2011-04-02 03:06:49 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2011-04-02 03:06:46 ----A---- C:\Windows\system32\WpdMtpUS.dll
2011-04-02 03:06:46 ----A---- C:\Windows\system32\WpdConns.dll
2011-04-02 03:06:46 ----A---- C:\Windows\system32\drivers\WpdUsb.sys
2011-04-02 03:06:44 ----A---- C:\Windows\system32\wpdshext.dll
2011-04-02 03:06:44 ----A---- C:\Windows\system32\wpd_ci.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\WpdMtp.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2011-04-02 03:06:43 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-04-02 03:06:42 ----A---- C:\Windows\system32\WPDSp.dll
2011-04-02 03:04:50 ----A---- C:\Windows\system32\oleaccrc.dll
2011-04-02 03:04:50 ----A---- C:\Windows\system32\oleacc.dll
2011-04-02 03:04:49 ----A---- C:\Windows\system32\UIAutomationCore.dll
2011-04-01 14:35:21 ----A---- C:\Windows\system32\MFH264Dec.dll
2011-04-01 14:35:21 ----A---- C:\Windows\system32\dxgi.dll
2011-04-01 14:35:20 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-04-01 14:35:20 ----A---- C:\Windows\system32\XpsPrint.dll
2011-04-01 14:35:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-04-01 14:35:18 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-04-01 14:35:18 ----A---- C:\Windows\system32\mfmp4src.dll
2011-04-01 14:35:18 ----A---- C:\Windows\system32\MFHEAACdec.dll
2011-04-01 14:35:17 ----A---- C:\Windows\system32\mf.dll
2011-04-01 14:35:17 ----A---- C:\Windows\system32\cdd.dll
2011-04-01 14:35:16 ----A---- C:\Windows\system32\shdocvw.dll
2011-04-01 14:35:16 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2011-04-01 14:35:16 ----A---- C:\Windows\system32\mfplat.dll
2011-04-01 14:35:15 ----A---- C:\Windows\system32\stobject.dll
2011-04-01 14:35:12 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2011-04-01 14:35:12 ----A---- C:\Windows\system32\mfps.dll
2011-04-01 14:33:37 ----A---- C:\Windows\system32\d3d10warp.dll
2011-04-01 14:33:37 ----A---- C:\Windows\system32\d3d10_1.dll
2011-04-01 14:33:37 ----A---- C:\Windows\system32\d2d1.dll
2011-04-01 14:33:36 ----A---- C:\Windows\system32\FntCache.dll
2011-04-01 14:33:36 ----A---- C:\Windows\system32\DWrite.dll
2011-04-01 14:33:36 ----A---- C:\Windows\system32\d3d10.dll
2011-04-01 14:33:35 ----A---- C:\Windows\system32\d3d10level9.dll
2011-04-01 14:33:35 ----A---- C:\Windows\system32\d3d10core.dll
2011-04-01 14:33:35 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-04-01 14:33:34 ----A---- C:\Windows\system32\xpsservices.dll
2011-04-01 14:33:34 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-04-01 14:33:34 ----A---- C:\Windows\system32\OpcServices.dll
2011-04-01 14:31:02 ----A---- C:\Windows\system32\msshsq.dll
2011-04-01 09:07:35 ----D---- C:\Windows\system32\eu-ES
2011-04-01 09:07:35 ----D---- C:\Windows\system32\ca-ES
2011-04-01 09:07:32 ----D---- C:\Windows\system32\vi-VN
2011-04-01 08:18:31 ----D---- C:\Windows\system32\EventProviders

======List of files/folders modified in the last 1 months======

2011-04-09 19:13:53 ----D---- C:\Windows\Prefetch
2011-04-09 19:13:48 ----D---- C:\Windows\Temp
2011-04-09 19:13:44 ----D---- C:\Program Files\trend micro
2011-04-09 19:05:19 ----D---- C:\Users\Jarda\AppData\Roaming\Media Player Classic
2011-04-09 19:05:18 ----D---- C:\Windows\system32\LogFiles
2011-04-09 19:05:16 ----D---- C:\Windows\Debug
2011-04-09 19:05:16 ----D---- C:\Windows
2011-04-08 16:36:54 ----SHD---- C:\System Volume Information
2011-04-06 17:27:18 ----SHD---- C:\$Recycle.Bin
2011-04-02 10:22:54 ----D---- C:\Windows\System32
2011-04-02 10:22:54 ----D---- C:\Windows\inf
2011-04-02 10:22:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-02 08:54:51 ----D---- C:\Windows\system32\Tasks
2011-04-02 03:52:49 ----D---- C:\Windows\winsxs
2011-04-02 03:51:01 ----D---- C:\Windows\Microsoft.NET
2011-04-02 03:50:34 ----D---- C:\Windows\rescache
2011-04-02 03:50:31 ----RSD---- C:\Windows\assembly
2011-04-02 03:32:26 ----D---- C:\Windows\system32\catroot
2011-04-02 03:28:18 ----D---- C:\Windows\system32\drivers
2011-04-02 03:28:18 ----D---- C:\Windows\system32\cs-CZ
2011-04-02 03:28:17 ----RD---- C:\Program Files
2011-04-02 03:28:17 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-04-02 03:28:16 ----D---- C:\Windows\system32\wbem
2011-04-02 03:28:14 ----D---- C:\Windows\system32\zh-TW
2011-04-02 03:28:14 ----D---- C:\Windows\system32\zh-HK
2011-04-02 03:28:14 ----D---- C:\Windows\system32\zh-CN
2011-04-02 03:28:14 ----D---- C:\Windows\system32\uk-UA
2011-04-02 03:28:14 ----D---- C:\Windows\system32\tr-TR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\th-TH
2011-04-02 03:28:14 ----D---- C:\Windows\system32\sv-SE
2011-04-02 03:28:14 ----D---- C:\Windows\system32\sr-Latn-CS
2011-04-02 03:28:14 ----D---- C:\Windows\system32\sl-SI
2011-04-02 03:28:14 ----D---- C:\Windows\system32\sk-SK
2011-04-02 03:28:14 ----D---- C:\Windows\system32\ru-RU
2011-04-02 03:28:14 ----D---- C:\Windows\system32\ro-RO
2011-04-02 03:28:14 ----D---- C:\Windows\system32\pt-PT
2011-04-02 03:28:14 ----D---- C:\Windows\system32\pt-BR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\pl-PL
2011-04-02 03:28:14 ----D---- C:\Windows\system32\nl-NL
2011-04-02 03:28:14 ----D---- C:\Windows\system32\nb-NO
2011-04-02 03:28:14 ----D---- C:\Windows\system32\lv-LV
2011-04-02 03:28:14 ----D---- C:\Windows\system32\lt-LT
2011-04-02 03:28:14 ----D---- C:\Windows\system32\ko-KR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\ja-JP
2011-04-02 03:28:14 ----D---- C:\Windows\system32\it-IT
2011-04-02 03:28:14 ----D---- C:\Windows\system32\hu-HU
2011-04-02 03:28:14 ----D---- C:\Windows\system32\hr-HR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\he-IL
2011-04-02 03:28:14 ----D---- C:\Windows\system32\fr-FR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\fi-FI
2011-04-02 03:28:14 ----D---- C:\Windows\system32\et-EE
2011-04-02 03:28:14 ----D---- C:\Windows\system32\es-ES
2011-04-02 03:28:14 ----D---- C:\Windows\system32\en-US
2011-04-02 03:28:14 ----D---- C:\Windows\system32\el-GR
2011-04-02 03:28:14 ----D---- C:\Windows\system32\de-DE
2011-04-02 03:28:14 ----D---- C:\Windows\system32\da-DK
2011-04-02 03:28:14 ----D---- C:\Windows\system32\bg-BG
2011-04-02 03:28:14 ----D---- C:\Windows\system32\ar-SA
2011-04-02 03:27:58 ----D---- C:\Windows\system32\drivers\UMDF
2011-04-02 03:08:39 ----D---- C:\Windows\system32\catroot2
2011-04-01 09:30:38 ----SHD---- C:\Boot
2011-04-01 09:09:11 ----D---- C:\Program Files\Windows Calendar
2011-04-01 09:09:10 ----D---- C:\Program Files\Windows Mail
2011-04-01 09:09:10 ----D---- C:\Program Files\Movie Maker
2011-04-01 09:09:09 ----D---- C:\Program Files\Windows Sidebar
2011-04-01 09:09:09 ----D---- C:\Program Files\Windows Photo Gallery
2011-04-01 09:09:09 ----D---- C:\Program Files\Windows Media Player
2011-04-01 09:09:09 ----D---- C:\Program Files\Windows Journal
2011-04-01 09:09:09 ----D---- C:\Program Files\Windows Collaboration
2011-04-01 09:09:09 ----D---- C:\Program Files\Internet Explorer
2011-04-01 09:09:06 ----D---- C:\Program Files\Common Files\System
2011-04-01 09:09:04 ----D---- C:\Windows\servicing
2011-04-01 09:09:04 ----D---- C:\Windows\ehome
2011-04-01 09:09:04 ----D---- C:\Program Files\Windows Defender
2011-04-01 09:08:48 ----D---- C:\Windows\system32\XPSViewer
2011-04-01 09:08:48 ----D---- C:\Windows\IME
2011-04-01 09:08:46 ----D---- C:\Windows\system32\oobe
2011-04-01 09:08:46 ----D---- C:\Windows\system32\migration
2011-04-01 09:08:44 ----D---- C:\Windows\system32\setup
2011-04-01 09:08:44 ----D---- C:\Windows\system32\cs
2011-04-01 09:08:44 ----D---- C:\Windows\system32\AdvancedInstallers
2011-04-01 09:08:37 ----D---- C:\Windows\system32\SLUI
2011-04-01 09:08:36 ----D---- C:\Windows\system32\manifeststore
2011-04-01 09:08:31 ----D---- C:\Windows\system32\migwiz
2011-04-01 09:07:47 ----RSD---- C:\Windows\Fonts
2011-04-01 09:07:47 ----D---- C:\Windows\AppPatch
2011-04-01 09:07:32 ----D---- C:\Windows\system32\Boot
2011-04-01 09:04:56 ----D---- C:\Windows\system32\RTCOM
2011-04-01 08:51:00 ----A---- C:\Windows\fonts\GlobalUserInterface.CompositeFont
2011-03-10 04:03:27 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2006-07-28 19456]
R0 tos_sps32;TOSHIBA tos_sps32 Service; C:\Windows\system32\DRIVERS\tos_sps32.sys [2007-07-26 285184]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2006-10-05 16768]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2006-08-30 140800]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-06-18 737280]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-18 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
R3 ElbyDelay;ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-09-05 1953944]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2008-08-02 47360]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-04-30 81408]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-01-24 290304]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 usbvideo;Chicony USB 2.0 Camera; C:\Windows\System32\Drivers\usbvideo.sys [2008-01-18 134016]
R3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-04-16 11776]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 massfilter;ZTE Mass Storage Filter Driver; C:\Windows\system32\DRIVERS\massfilter.sys [2008-12-08 7680]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 TpChoice;Touch Pad Detection Filter driver; C:\Windows\system32\DRIVERS\TpChoice.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys [2008-12-08 104960]
S3 ZTEusbnet;ZTE USB-NDIS miniport; C:\Windows\system32\DRIVERS\ZTEusbnet.sys [2008-12-08 110080]
S3 ZTEusbnmea;ZTE NMEA Port; C:\Windows\system32\DRIVERS\ZTEusbnmea.sys [2008-12-08 105344]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\Windows\system32\DRIVERS\ZTEusbser6k.sys [2008-12-08 104960]
S4 CplIR;Embedded IR Driver; C:\Windows\system32\DRIVERS\CplIR.SYS [2007-03-06 14848]
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-02-12 355096]
R2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Plánovač automatické aktualizace LiveUpdate;Plánovač automatické aktualizace LiveUpdate; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-09-26 554352]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-09-19 77824]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2007-03-29 427576]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2008-11-04 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-06 135664]
S2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-26 2999664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 09 dub 2011 20:08

Nevidím nic nebezpečného. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

dandar · #3 Příspěvek od **dandar** » 15 dub 2011 20:38

Děkuji za odpověď, avšak ntb je dcery a ta jej má na škole. Proto zašlu jakmile budu moci.

#4 Příspěvek od **Rudy** » 15 dub 2011 20:58

VIRY.CZ

Odpojování od sítě

Odpojování od sítě

Re: Odpojování od sítě

Re: Odpojování od sítě

Re: Odpojování od sítě