Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
tmoravek
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 11 bře 2010 15:10

ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#1 Příspěvek od tmoravek »

Logfile of random's system information tool 1.06 (written by random/random)
Run by Tom at 2010-07-21 11:03:55
Systém Microsoft Windows XP Professional Service Pack 2
System drive I: has 14 GB (6%) free of 238 GB
Total RAM: 2046 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:05:02, on 21.7.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
I:\C\System32\smss.exe
I:\C\system32\winlogon.exe
I:\C\system32\services.exe
I:\C\system32\lsass.exe
I:\C\system32\Ati2evxx.exe
I:\C\system32\svchost.exe
I:\C\System32\svchost.exe
I:\C\system32\svchost.exe
I:\C\system32\Ati2evxx.exe
I:\C\Explorer.EXE
I:\Program Files\TO2SSM\McciTrayApp.exe
I:\Program Files\Common Files\Java\Java Update\jusched.exe
I:\Program Files\HP\HP Software Update\HPWuSchd2.exe
I:\C\vVX3000.exe
I:\C\RTHDCPL.EXE
I:\Program Files\DivX\DivX Update\DivXUpdate.exe
I:\Program Files\iTunes\iTunesHelper.exe
I:\Program Files\Microsoft ActiveSync\Wcescomm.exe
I:\Program Files\Messenger\msmsgs.exe
I:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
I:\PROGRA~1\MI3AA1~1\rapimgr.exe
I:\C\system32\spoolsv.exe
I:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
I:\Program Files\Bonjour\mDNSResponder.exe
I:\Program Files\Java\jre6\bin\jqs.exe
I:\Program Files\Common Files\Motive\McciCMService.exe
I:\Program Files\Microsoft LifeCam\MSCamS32.exe
I:\C\system32\PnkBstrA.exe
I:\C\system32\PnkBstrB.exe
I:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
I:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
I:\C\system32\svchost.exe
I:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
I:\Program Files\iPod\bin\iPodService.exe
I:\C\system32\wbem\wmiapsrv.exe
I:\C\system32\wscntfy.exe
I:\C\System32\svchost.exe
I:\C\System32\svchost.exe
I:\C\System32\svchost.exe
I:\C\System32\svchost.exe
I:\C\System32\svchost.exe
I:\Program Files\Mozilla Firefox\firefox.exe
I:\Program Files\iTunes\iTunes.exe
I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
I:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
I:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
I:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe
I:\Documents and Settings\Tom\Plocha\HRY TOMINO\RSIT.exe
I:\Program Files\trend micro\Tom.exe
I:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - I:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - I:\Program Files\AVG\AVG9\avgssie.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - I:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - I:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - I:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - I:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - I:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] I:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [combofix] "I:\ComboFix\CF170.cfxxe" /c "I:\ComboFix\C.bat"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "I:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] I:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [VX3000] I:\C\vVX3000.exe
O4 - HKLM\..\Run: [LifeCam] "I:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [DivXUpdate] "I:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [QuickTime Task] "I:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "I:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "I:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [NokiaOviSuite2] I:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [swg] I:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitComet] "I:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [H/PC Connection Agent] "I:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "I:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\C\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\C\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = I:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://I:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://I:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: i:\c\system32\nwprovau.dll
O12 - Plugin for .spop: I:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - I:\Program Files\AVG\AVG9\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - I:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - I:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Adobe LM Service - Adobe Systems - I:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - I:\C\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - I:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - I:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - I:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - I:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McciCMService - Motive Communications, Inc. - I:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Pml Driver HPZ12 - HP - I:\C\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - I:\C\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - I:\C\system32\PnkBstrB.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - I:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: ServiceLayer - Nokia - I:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - I:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - I:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

--
End of file - 8947 bytes

======Scheduled tasks folder======

I:\C\tasks\AppleSoftwareUpdate.job
I:\C\tasks\Driver Fetch.job
I:\C\tasks\GoogleUpdateTaskMachineCore.job
I:\C\tasks\GoogleUpdateTaskMachineUA.job
I:\C\tasks\Scheduled Update for Ask Toolbar.job
I:\C\tasks\SLOW-PCfighter-Tom-Startup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - I:\Program Files\AVG\AVG9\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - I:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-10 278192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - I:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-07-10 814648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - I:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - I:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-01 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-01 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - I:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - I:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-10 278192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TO2SSM_McciTrayApp"=I:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
"combofix"=I:\ComboFix\CF170.cfxxe /c I:\ComboFix\C.bat []
"SunJavaUpdateSched"=I:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"HP Software Update"=I:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152]
"VX3000"=I:\C\vVX3000.exe [2010-03-12 762736]
"LifeCam"=I:\Program Files\Microsoft LifeCam\LifeExp.exe [2010-03-12 119152]
"RTHDCPL"=I:\C\RTHDCPL.EXE [2010-03-26 19522592]
"DivXUpdate"=I:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"QuickTime Task"=I:\Program Files\QuickTime\QTTask.exe [2010-03-18 421888]
"iTunesHelper"=I:\Program Files\iTunes\iTunesHelper.exe [2010-07-16 141608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=I:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2008-11-23 203720]
"NokiaOviSuite2"=I:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray []
"swg"=I:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-01-05 39408]
"BitComet"=I:\Program Files\BitComet\BitComet.exe /tray []
"H/PC Connection Agent"=I:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"MSMSGS"=I:\Program Files\Messenger\msmsgs.exe [2004-08-17 1667584]

I:\Documents and Settings\All Users.C\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - I:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
I:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2009-09-04 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
I:\C\system32\Ati2evxx.dll [2009-11-25 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\C\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=I:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"I:\Program Files\Microsoft LifeCam\LifeExp.exe"="I:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"I:\C\system32\dpvsetup.exe"="I:\C\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"I:\Program Files\Skype\Plugin Manager\skypePM.exe"="I:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"I:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat"="I:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"I:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\patchget.dat"="I:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\patchget.dat:*:Enabled:patchgrabber"
"I:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="I:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"I:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="I:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"I:\Program Files\Nokia\Nokia PC Suite 7\VideoManager.exe"="I:\Program Files\Nokia\Nokia PC Suite 7\VideoManager.exe:*:Enabled:Nokia Video Manager"
"I:\Documents and Settings\Tom\Data aplikací\uTorrent\utorrent.exe"="I:\Documents and Settings\Tom\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"I:\C\system32\PnkBstrA.exe"="I:\C\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"I:\C\system32\PnkBstrB.exe"="I:\C\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"I:\Program Files\VideoLAN\VLC\vlc.exe"="I:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"I:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="I:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="I:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="I:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"I:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="I:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"I:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="I:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="I:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="I:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="I:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="I:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="I:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"I:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="I:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"I:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="I:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"I:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="I:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"I:\Program Files\Microsoft LifeCam\LifeCam.exe"="I:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"I:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="I:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"I:\Program Files\Microsoft LifeCam\LifeTray.exe"="I:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"I:\Program Files\TeamViewer\Version5\TeamViewer.exe"="I:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"I:\Program Files\Skype\Phone\Skype.exe"="I:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"I:\Documents and Settings\Emergency 4\Em4.exe"="I:\Documents and Settings\Emergency 4\Em4.exe:*:Enabled:Em4"
"I:\Documents and Settings\Tom\Plocha\HRY TOMINO\GOTCHA!\Gotcha.exe"="I:\Documents and Settings\Tom\Plocha\HRY TOMINO\GOTCHA!\Gotcha.exe:*:Enabled:Gotcha!"
"I:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe"="I:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"I:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe"="I:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"I:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe"="I:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"
"I:\Program Files\BitComet\BitComet.exe"="I:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"I:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="I:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"I:\Program Files\EA GAMES\Mirror's Edge\Binaries\MirrorsEdge.exe"="I:\Program Files\EA GAMES\Mirror's Edge\Binaries\MirrorsEdge.exe:*:Enabled:Mirror's Edge™"
"I:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="I:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"I:\Program Files\Microsoft ActiveSync\wcescomm.exe"="I:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"I:\Program Files\Microsoft ActiveSync\rapimgr.exe"="I:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"I:\Program Files\Ubisoft\The Settlers 7 - Paths to a Kingdom\Data\Base\_Dbg\Bin\Release\Settlers7R.exe"="I:\Program Files\Ubisoft\The Settlers 7 - Paths to a Kingdom\Data\Base\_Dbg\Bin\Release\Settlers7R.exe:*:Enabled:The Settlers 7 - Paths to a Kingdom"
"I:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="I:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"I:\Program Files\Bonjour\mDNSResponder.exe"="I:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"I:\Program Files\iTunes\iTunes.exe"="I:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"I:\Program Files\Microsoft ActiveSync\rapimgr.exe"="I:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"I:\Program Files\Microsoft ActiveSync\wcescomm.exe"="I:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"I:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="I:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======File associations======

.js - edit -
.js - open -

======List of files/folders created in the last 1 months======

2010-07-21 11:03:55 ----DC---- I:\rsit
2010-07-21 10:34:43 ----DC---- I:\C\LastGood
2010-07-21 10:00:44 ----D---- I:\Program Files\iPod
2010-07-21 10:00:30 ----D---- I:\Program Files\iTunes
2010-07-17 18:43:16 ----C---- I:\C\system32\spmsg.dll
2010-07-17 18:43:10 ----HDC---- I:\C\$NtUninstallKB894476$
2010-07-17 10:30:11 ----DC---- I:\Documents and Settings\Tom\Data aplikací\avidemux
2010-07-17 10:29:54 ----D---- I:\Program Files\Avidemux 2.5
2010-07-16 18:49:11 ----RHDC---- I:\Documents and Settings\Tom\Data aplikací\SecuROM
2010-07-16 18:49:10 ----AC---- I:\C\system32\CmdLineExt.dll
2010-07-16 18:41:59 ----D---- I:\Program Files\Sierra
2010-07-13 15:37:23 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Electronic Arts
2010-07-13 14:32:31 ----DC---- I:\C\system32\AGEIA
2010-07-13 08:28:16 ----DC---- I:\Documents
2010-07-13 08:11:51 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\avg9
2010-07-12 23:13:11 ----D---- I:\Program Files\The KMPlayer
2010-07-12 22:02:29 ----DC---- I:\Documents and Settings\Tom\Data aplikací\VitySoft
2010-07-12 22:00:46 ----D---- I:\Program Files\Raptor
2010-07-12 16:29:12 ----D---- I:\Program Files\RapidDown
2010-07-10 15:21:20 ----AC---- I:\C\ntbtlog.txt
2010-07-10 14:46:59 ----D---- I:\Program Files\SUPERAntiSpyware
2010-07-09 14:25:16 ----DC---- I:\Documents and Settings\Tom\Data aplikací\SUPERAntiSpyware.com
2010-07-09 14:20:13 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\SUPERAntiSpyware.com
2010-07-06 19:58:34 ----HDC---- I:\C\PIF
2010-07-05 15:55:59 ----DC---- I:\Documents and Settings\Tom\Data aplikací\BitComet
2010-07-05 15:55:27 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Google
2010-07-02 12:18:56 ----DC---- I:\Documents and Settings\Tom\Data aplikací\Ubisoft
2010-07-02 12:18:56 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Ubisoft
2010-06-30 15:59:47 ----D---- I:\Program Files\Common Files\Symantec Shared
2010-06-28 21:33:20 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Symantec
2010-06-28 21:33:20 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Norton
2010-06-28 21:33:18 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\NortonInstaller
2010-06-28 18:34:41 ----DC---- I:\Documents and Settings\Tom\Data aplikací\DivX
2010-06-28 18:28:36 ----D---- I:\Program Files\Common Files\DivX Shared
2010-06-28 18:27:33 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\DivX

======List of files/folders modified in the last 1 months======

2010-07-21 11:04:58 ----D---- I:\Program Files\trend micro
2010-07-21 11:03:48 ----DC---- I:\C\Prefetch
2010-07-21 10:34:49 ----DC---- I:\C\system32
2010-07-21 10:34:48 ----DC---- I:\C\system32\drivers
2010-07-21 10:34:43 ----DC---- I:\C\temp
2010-07-21 10:34:43 ----DC---- I:\C
2010-07-21 10:33:03 ----DC---- I:\C\system32\CatRoot2
2010-07-21 10:16:25 ----AC---- I:\C\SchedLgU.Txt
2010-07-21 10:07:27 ----HDC---- I:\C\inf
2010-07-21 10:07:18 ----DC---- I:\Config.Msi
2010-07-21 10:07:16 ----SHDC---- I:\C\Installer
2010-07-21 10:07:16 ----DC---- I:\C\WinSxS
2010-07-21 10:00:44 ----RD---- I:\Program Files
2010-07-21 10:00:36 ----D---- I:\Program Files\Common Files\Apple
2010-07-21 09:57:43 ----D---- I:\Program Files\QuickTime
2010-07-21 09:55:07 ----DC---- I:\C\system32\DRVSTORE
2010-07-21 09:54:58 ----DC---- I:\C\system32\ReinstallBackups
2010-07-21 09:54:25 ----D---- I:\Program Files\Bonjour
2010-07-20 20:27:15 ----DC---- I:\Documents and Settings\Tom\Data aplikací\vlc
2010-07-20 20:26:09 ----D---- I:\Program Files\Mozilla Firefox
2010-07-20 09:19:55 ----AC---- I:\C\NeroDigital.ini
2010-07-19 20:19:29 ----DC---- I:\C\pss
2010-07-19 20:19:28 ----RDC---- I:\C\Offline Web Pages
2010-07-18 20:30:24 ----SDC---- I:\C\Tasks
2010-07-18 20:30:23 ----HDC---- I:\C\$MSI31Uninstall_KB893803v2$
2010-07-18 19:49:51 ----DC---- I:\C\system32\DirectX
2010-07-18 19:49:21 ----RSDC---- I:\C\assembly
2010-07-18 19:48:07 ----D---- I:\Program Files\Ubisoft
2010-07-18 19:24:55 ----HD---- I:\Program Files\InstallShield Installation Information
2010-07-18 16:50:24 ----D---- I:\Program Files\TO2SSM
2010-07-18 16:50:24 ----D---- I:\Program Files\Spyware Doctor
2010-07-18 16:48:13 ----DC---- I:\Documents and Settings\Tom\Data aplikací\dvdcss
2010-07-18 13:40:53 ----AC---- I:\C\system32\PerfStringBackup.INI
2010-07-17 18:47:59 ----DC---- I:\C\system32\CatRoot
2010-07-17 18:47:32 ----D---- I:\Program Files\Microsoft ActiveSync
2010-07-17 18:47:29 ----DC---- I:\C\Help
2010-07-17 10:22:55 ----DC---- I:\Documents and Settings
2010-07-17 10:22:33 ----DC---- I:\Documents and Settings\Tom\Data aplikací\Skype
2010-07-17 10:20:46 ----DC---- I:\Documents and Settings\Tom\Data aplikací\skypePM
2010-07-17 08:34:01 ----DC---- I:\C\ServicePackFiles
2010-07-17 08:17:38 ----D---- I:\Program Files\Malwarebytes' Anti-Malware
2010-07-16 18:48:56 ----AC---- I:\C\ODBCINST.INI
2010-07-16 10:13:07 ----DC---- I:\C\system32\config
2010-07-16 10:12:08 ----DC---- I:\C\system32\wbem
2010-07-16 10:12:04 ----DC---- I:\C\Registration
2010-07-16 10:10:58 ----DC---- I:\Documents and Settings\Tom\Data aplikací\uTorrent
2010-07-13 14:38:44 ----D---- I:\Program Files\EA GAMES
2010-07-13 14:32:31 ----D---- I:\Program Files\AGEIA Technologies
2010-07-13 08:15:51 ----SDC---- I:\Documents and Settings\Tom\Data aplikací\Microsoft
2010-07-09 17:40:38 ----DC---- I:\Documents and Settings\Tom\Data aplikací\Nokia
2010-07-09 17:40:38 ----D---- I:\Program Files\Common Files\Nokia
2010-07-09 17:40:37 ----D---- I:\Program Files\Nokia
2010-07-09 17:40:35 ----D---- I:\Program Files\Common Files
2010-07-09 17:28:49 ----DC---- I:\Documents and Settings\All Users.C\Data aplikací\Alwil Software
2010-07-09 15:23:17 ----D---- I:\Program Files\Google
2010-07-05 16:02:52 ----D---- I:\Program Files\BitComet
2010-07-04 08:49:17 ----DC---- I:\C\Minidump
2010-07-03 15:31:06 ----DC---- I:\C\security
2010-07-03 13:37:19 ----DC---- I:\C\Debug
2010-07-03 07:16:20 ----D---- I:\Program Files\DivX
2010-07-02 17:12:46 ----SHDC---- I:\RECYCLER
2010-07-02 17:12:46 ----DC---- I:\C\system32\dllcache
2010-07-02 12:14:31 ----SDC---- I:\Documents and Settings\All Users.C\Data aplikací\Microsoft
2010-07-02 11:48:18 ----DC---- I:\C\system32\Restore
2010-06-24 22:47:04 ----DC---- I:\Documents and Settings\Tom\Data aplikací\Image Zone Express

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Řadič procesoru Intel; I:\C\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 kbdhid;Ovladač klávesnice standardu HID; I:\C\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R1 SASDIFSV;SASDIFSV; \??\I:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\I:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; I:\C\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; I:\C\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; I:\C\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R2 Prvflder;Prvflder; I:\C\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 ati2mtag;ati2mtag; I:\C\system32\DRIVERS\ati2mtag.sys [2009-11-25 4463104]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; I:\C\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; I:\C\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; I:\C\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); I:\C\system32\drivers\RtkHDAud.sys [2010-03-26 5883936]
R3 mouhid;Ovladač myši standardu HID; I:\C\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MRESP50;MRESP50 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
R3 ROOTMODEM;Microsoft Legacy Modem Driver; I:\C\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; I:\C\system32\DRIVERS\Rtenicxp.sys [2010-03-08 220112]
R3 USBAAPL;Apple Mobile USB Driver; I:\C\System32\Drivers\usbaapl.sys [2010-04-19 41984]
R3 usbaudio;Ovladač zvukové karty USB (WDM); I:\C\system32\drivers\usbaudio.sys [2004-08-03 59264]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; I:\C\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; I:\C\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; I:\C\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; I:\C\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; I:\C\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 VX3000;VX-3000; I:\C\system32\DRIVERS\VX3000.sys [2010-03-12 1961328]
S1 SABKUTIL;SABKUTIL; \??\I:\Program Files\SUPERAntiSpyware\SABKUTIL.sys []
S3 Ambfilt;Ambfilt; I:\C\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 aods7blm;aods7blm; I:\C\system32\drivers\aods7blm.sys []
S3 CCDECODE;Dekodér Closed Caption; I:\C\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 cpuz132;cpuz132; \??\I:\DOCUME~1\Tom\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\I:\Program Files\MediaCoder\SysInfo.sys []
S3 gdrv;gdrv; \??\I:\C\gdrv.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; I:\C\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; I:\C\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; I:\C\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\I:\C\system32\drivers\mbamswissarmy.sys []
S3 Monfilt;Monfilt; I:\C\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\I:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; I:\C\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; I:\C\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; I:\C\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 nmwcd;Nokia USB Phone Parent; I:\C\system32\drivers\ccdcmb.sys [2010-01-21 18048]
S3 nmwcdc;Nokia USB Generic; I:\C\system32\drivers\ccdcmbo.sys [2009-12-30 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; I:\C\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SLIP;BDA Slip De-Framer; I:\C\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; I:\C\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 tunmp;Microsoft Tun Miniport Adapter Driver; I:\C\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
S3 upperdev;upperdev; I:\C\system32\DRIVERS\usbser_lowerflt.sys [2009-12-30 7936]
S3 usb_rndisx;USB RNDIS Adapter; I:\C\system32\DRIVERS\usb8023x.sys [2005-10-21 12800]
S3 usbprint;Třída USB Printer; I:\C\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; I:\C\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 usbser;USB Modem Driver; I:\C\system32\drivers\usbser.sys [2004-08-04 25600]
S3 UsbserFilt;UsbserFilt; I:\C\system32\DRIVERS\usbser_lowerfltj.sys [2009-12-30 7936]
S3 Wdf01000;Kernel Mode Driver Frameworks service; I:\C\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; I:\C\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; I:\C\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S4 IntelIde;IntelIde; I:\C\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 Ati HotKey Poller;Ati HotKey Poller; I:\C\system32\Ati2evxx.exe [2009-11-25 602112]
R2 Bonjour Service;Bonjour Service; I:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 JavaQuickStarterService;Java Quick Starter; I:\Program Files\Java\jre6\bin\jqs.exe [2010-04-01 153376]
R2 McciCMService;McciCMService; I:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 MSCamSvc;MSCamSvc; I:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-03-12 139632]
R2 NwSapAgent;Agent SAP; I:\C\system32\svchost.exe [2009-08-21 14336]
R2 PnkBstrA;PnkBstrA; I:\C\system32\PnkBstrA.exe [2010-03-10 66872]
R2 PnkBstrB;PnkBstrB; I:\C\system32\PnkBstrB.exe [2010-03-10 103736]
R2 prfldsvc;Private Folder Service; I:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 StarWindServiceAE;StarWind AE Service; I:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TeamViewer5;TeamViewer 5; I:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; I:\C\system32\svchost.exe [2009-08-21 14336]
R3 iPod Service;iPod Service; I:\Program Files\iPod\bin\iPodService.exe [2010-07-16 540968]
S2 gupdate;Google Update Service (gupdate); I:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-05 133104]
S2 Pml Driver HPZ12;Pml Driver HPZ12; I:\C\system32\HPZipm12.exe [2007-08-09 73728]
S3 Adobe LM Service;Adobe LM Service; I:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-04-20 72704]
S3 aspnet_state;ASP.NET State Service; I:\C\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; I:\C\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; I:\C\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-05 182768]
S3 idsvc;Windows CardSpace; I:\C\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ServiceLayer;ServiceLayer; I:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S4 avast! Firewall;avast! Firewall; I:\Program Files\Alwil Software\Avast5\afwServ.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; I:\C\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
tmoravek
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 11 bře 2010 15:10

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#2 Příspěvek od tmoravek »

JO...Ikdyž je to proti pravidlům...moc prosím o pomoc..už jsem fakt v prd..PC je zavšiven od sklepa po půdu . Vlastní blbostí..ale to je na dlouho. Jednoduše ..POTŘEBUJU HELP
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#3 Příspěvek od riffman »

zdravim

kdyz uz tam je Combofix, nebyl by z nej log?

paklize byl aplikovan, jeho log se nachazi na C:\Combofix.txt
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
tmoravek
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 11 bře 2010 15:10

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#4 Příspěvek od tmoravek »

není..jak ho tam prosím aplikuju ??
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#5 Příspěvek od riffman »

tak jinak...

stahnete a ulozte na plochu ComboFix

pote spustte aplikaci pod uctem s administratorskym opravnenim (nikoli pod uctem s omezenym opravnenim)

v operacnich systemech Windows Vista a Windows 7 spoustejte aplikaci jako spravce (kliknutim pravym mysitkem na ikonu aplikace a volbou "Spustit jako spravce" :!:

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano:

Obrázek

dale muze dojit k varovani ohledne rezidentniho stitu vaseho antiviru a upozorneni na nenainstalovanou konzoli pro zotaveni; tu zatim neinstalujte.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, deaktivujte jeho rezidentni stit, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim Combofixu s rezidentem antispyware


po restartu aplikace vytvori log, ulozeny na C:/Combofix.txt (pri opakovanem pouziti jsou logy oznaceny Combofix2.txt atd.), jeho obsah vlozte sem
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
tmoravek
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 11 bře 2010 15:10

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#6 Příspěvek od tmoravek »

ComboFix 10-07-20.03 - Tom 21.07.2010 17:24:14.8.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1551 [GMT 2:00]
Spuštěný z: i:\documents and settings\Tom\Plocha\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-06-21 do 2010-07-21 )))))))))))))))))))))))))))))))
.

2010-07-21 09:03 . 2010-07-21 09:05 -------- dc----w- I:\rsit
2010-07-21 08:00 . 2010-07-21 08:00 -------- d-----w- i:\program files\iPod
2010-07-21 08:00 . 2010-07-21 08:01 -------- d-----w- i:\program files\iTunes
2010-07-17 08:29 . 2010-07-17 16:22 -------- d-----w- i:\program files\Avidemux 2.5
2010-07-17 06:17 . 2010-04-29 13:39 38224 -c--a-w- i:\c\system32\drivers\mbamswissarmy.sys
2010-07-17 06:17 . 2010-04-29 13:39 20952 -c--a-w- i:\c\system32\drivers\mbam.sys
2010-07-16 16:49 . 2010-07-16 16:49 98304 -c--a-w- i:\c\system32\CmdLineExt.dll
2010-07-16 16:41 . 2010-07-16 16:41 -------- d-----w- i:\program files\Sierra
2010-07-16 08:12 . 2010-07-16 08:12 -------- dc----w- i:\c\system32\wbem\Repository
2010-07-13 12:32 . 2010-07-13 12:32 -------- dc----w- i:\c\system32\AGEIA
2010-07-13 06:28 . 2010-07-13 06:33 -------- dc----w- I:\Documents
2010-07-12 21:13 . 2010-07-13 06:14 -------- d-----w- i:\program files\The KMPlayer
2010-07-12 20:00 . 2010-07-12 20:00 -------- d-----w- i:\program files\Raptor
2010-07-12 14:29 . 2010-07-12 14:29 -------- d-----w- i:\program files\RapidDown
2010-07-10 12:46 . 2010-07-10 12:47 -------- d-----w- i:\program files\SUPERAntiSpyware
2010-07-06 17:58 . 2010-07-06 17:58 -------- dc-h--w- i:\c\PIF
2010-06-30 13:59 . 2010-07-09 12:53 -------- d-----w- i:\program files\Common Files\Symantec Shared
2010-06-28 16:28 . 2010-06-28 16:28 -------- d-----w- i:\program files\Common Files\DivX Shared

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-21 09:04 . 2010-03-12 13:00 -------- d-----w- i:\program files\trend micro
2010-07-21 08:00 . 2008-11-05 18:07 -------- d-----w- i:\program files\Common Files\Apple
2010-07-21 07:57 . 2009-12-25 21:49 -------- d-----w- i:\program files\QuickTime
2010-07-21 07:54 . 2008-12-22 16:35 -------- d-----w- i:\program files\Bonjour
2010-07-18 17:48 . 2008-10-17 17:55 -------- d-----w- i:\program files\Ubisoft
2010-07-18 17:24 . 2008-10-10 22:13 -------- d--h--w- i:\program files\InstallShield Installation Information
2010-07-18 14:50 . 2010-03-11 14:26 -------- d-----w- i:\program files\Spyware Doctor
2010-07-18 14:50 . 2008-11-12 19:36 -------- d-----w- i:\program files\TO2SSM
2010-07-18 11:40 . 2001-10-25 14:00 78052 ----a-w- i:\c\system32\perfc005.dat
2010-07-18 11:40 . 2001-10-25 14:00 429024 ----a-w- i:\c\system32\perfh005.dat
2010-07-17 16:47 . 2010-03-23 12:48 -------- d-----w- i:\program files\Microsoft ActiveSync
2010-07-17 06:17 . 2010-03-11 18:26 -------- d-----w- i:\program files\Malwarebytes' Anti-Malware
2010-07-16 08:06 . 2010-07-16 08:08 209910 -c--a-w- i:\c\pchealth\helpctr\Config\Cache\Professional_32_1029.dat
2010-07-13 12:38 . 2010-01-13 19:36 -------- d-----w- i:\program files\EA GAMES
2010-07-13 12:32 . 2009-12-25 21:56 -------- d-----w- i:\program files\AGEIA Technologies
2010-07-09 15:40 . 2010-01-13 20:10 -------- d-----w- i:\program files\Common Files\Nokia
2010-07-09 15:40 . 2009-02-21 06:36 -------- d-----w- i:\program files\Nokia
2010-07-09 13:23 . 2009-12-25 21:52 -------- d-----w- i:\program files\Google
2010-07-05 14:02 . 2009-12-25 21:55 -------- d-----w- i:\program files\BitComet
2010-07-03 05:16 . 2009-12-25 21:52 -------- d-----w- i:\program files\DivX
2010-06-24 14:42 . 2010-01-13 18:10 1324 -c--a-w- i:\c\system32\d3d9caps.dat
2010-06-10 08:08 . 2010-06-10 08:08 -------- d-----w- i:\program files\Microsoft Private Folder 1.0
2010-05-22 17:54 . 2010-05-22 17:54 34068 -c-ha-w- i:\c\system32\mlfcache.dat
2010-05-19 18:34 . 2010-05-19 18:34 45 -c-h--w- i:\c\dzep9358.dat
2010-05-18 14:35 . 2010-05-18 14:35 91424 -c--a-w- i:\c\system32\dnssd.dll
2010-05-18 14:35 . 2010-05-18 14:35 107808 -c--a-w- i:\c\system32\dns-sd.exe
2010-04-25 07:55 . 2010-02-25 14:12 717296 -c--a-w- i:\c\system32\drivers\sptd.sys
2009-08-12 10:38 . 2000-09-26 14:12 1715 -c--a-w- i:\program files\RA2.INI
2009-08-06 12:53 . 2009-08-06 12:42 1112250 -c--a-w- i:\program files\autosave.sav
2008-10-18 20:53 . 2008-10-18 20:56 1851544 ----a-w- i:\program files\install_flash_player.exe
2000-10-01 18:31 . 2000-10-01 18:31 18768 -c--a-w- i:\program files\SECDRV.SYS
2000-09-28 12:02 . 2000-09-28 12:02 73728 -c--a-w- i:\program files\MPH.EXE
2000-07-27 14:22 . 2000-07-27 14:22 286208 ----a-w- i:\program files\BINKW32.DLL
2000-07-17 08:45 . 2000-07-17 08:45 171520 -c--a-w- i:\program files\PATCHW32.DLL
2000-06-27 17:00 . 2000-06-27 17:00 766 -c--a-w- i:\program files\NOTES.ICO
2000-03-10 12:20 . 2000-03-10 12:20 2348 -c--a-w- i:\program files\Blowfish.tlb
.

((((((((((((((((((((((((((((( SnapShot@2010-07-21_10.07.20 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-07-21 15:23 . 2010-07-21 15:23 16384 i:\c\temp\Perflib_Perfdata_594.dat
+ 2010-07-21 15:23 . 2010-07-21 15:23 16384 i:\c\temp\Perflib_Perfdata_4b0.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "i:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 14:50 1197448 ----a-w- i:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "i:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "i:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="i:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2008-11-23 203720]
"swg"="i:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-01-05 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TO2SSM_McciTrayApp"="i:\program files\TO2SSM\McciTrayApp.exe" [2008-08-15 1473536]
"SunJavaUpdateSched"="i:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"HP Software Update"="i:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 49152]
"VX3000"="i:\c\vVX3000.exe" [2010-03-12 762736]
"LifeCam"="i:\program files\Microsoft LifeCam\LifeExp.exe" [2010-03-12 119152]
"RTHDCPL"="RTHDCPL.EXE" [2010-03-26 19522592]
"DivXUpdate"="i:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-06-03 1144104]
"QuickTime Task"="i:\program files\QuickTime\qttask.exe" [2010-03-18 421888]
"iTunesHelper"="i:\program files\iTunes\iTunesHelper.exe" [2010-07-16 141608]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="i:\c\system32\CTFMON.EXE" [2004-08-17 15360]

i:\documents and settings\All Users.C\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - i:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "i:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- i:\program files\SUPERAntiSpyware\SASWINLO.DLL

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"i:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"=
"i:\\C\\system32\\dpvsetup.exe"=
"i:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"i:\\Documents and Settings\\Tom\\Data aplikací\\uTorrent\\utorrent.exe"=
"i:\\C\\system32\\PnkBstrA.exe"=
"i:\\C\\system32\\PnkBstrB.exe"=
"i:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"i:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"=
"i:\\Program Files\\Microsoft LifeCam\\LifeEnC2.exe"=
"i:\\Program Files\\Microsoft LifeCam\\LifeTray.exe"=
"i:\\Program Files\\TeamViewer\\Version5\\TeamViewer.exe"=
"i:\\Program Files\\Skype\\Phone\\Skype.exe"=
"i:\\Documents and Settings\\Tom\\Plocha\\HRY TOMINO\\GOTCHA!\\Gotcha.exe"=
"i:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"i:\\Program Files\\EA GAMES\\Mirror's Edge\\Binaries\\MirrorsEdge.exe"=
"i:\program files\Microsoft ActiveSync\WCESMgr.exe"= i:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"i:\program files\Microsoft ActiveSync\wcescomm.exe"= i:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"i:\program files\Microsoft ActiveSync\rapimgr.exe"= i:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"i:\\Program Files\\Ubisoft\\The Settlers 7 - Paths to a Kingdom\\Data\\Base\\_Dbg\\Bin\\Release\\Settlers7R.exe"=
"i:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"i:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"i:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"14589:TCP"= 14589:TCP:BitComet 14589 TCP
"14589:UDP"= 14589:UDP:BitComet 14589 UDP
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

R1 SASDIFSV;SASDIFSV;i:\program files\SUPERAntiSpyware\sasdifsv.sys [17.2.2010 20:25 12872]
R1 SASKUTIL;SASKUTIL;i:\program files\SUPERAntiSpyware\SASKUTIL.SYS [10.5.2010 20:41 67656]
R2 Prvflder;Prvflder;i:\c\system32\drivers\prvflder.sys [21.4.2006 8:22 70912]
R2 TeamViewer5;TeamViewer 5;i:\program files\TeamViewer\Version5\TeamViewer_Service.exe [16.4.2010 9:18 173352]
S1 SABKUTIL;SABKUTIL;\??\i:\program files\SUPERAntiSpyware\SABKUTIL.sys --> i:\program files\SUPERAntiSpyware\SABKUTIL.sys [?]
S2 gupdate;Google Update Service (gupdate);i:\program files\Google\Update\GoogleUpdate.exe [5.2.2009 0:03 133104]
S3 Ambfilt;Ambfilt;i:\c\system32\drivers\Ambfilt.sys [26.4.2010 15:03 1691480]
S3 MBAMSwissArmy;MBAMSwissArmy;i:\c\system32\drivers\mbamswissarmy.sys [17.7.2010 8:17 38224]
S4 sptd;sptd;i:\c\system32\drivers\sptd.sys [25.2.2010 16:12 717296]
.
Obsah adresáře 'Naplánované úlohy'

2010-07-17 i:\c\Tasks\AppleSoftwareUpdate.job
- i:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]

2010-07-21 i:\c\Tasks\GoogleUpdateTaskMachineCore.job
- i:\program files\Google\Update\GoogleUpdate.exe [2009-02-04 22:03]

2010-07-21 i:\c\Tasks\GoogleUpdateTaskMachineUA.job
- i:\program files\Google\Update\GoogleUpdate.exe [2009-02-04 22:03]

2010-07-21 i:\c\Tasks\Scheduled Update for Ask Toolbar.job
- i:\program files\Ask.com\UpdateTask.exe [2010-02-04 14:50]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Office Excel - i:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: WikiKomentáře Google... - i:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
FF - ProfilePath - i:\documents and settings\Tom\Data aplikací\Mozilla\Firefox\Profiles\ehwr9ox5.default\
FF - prefs.js: browser.startup.homepage - hxxp://mail.radiobeat.cz/webmail/login/|http://www.google.cz/|http://radiobeat.cz/cs/
FF - component: i:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: i:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: i:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: i:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: i:\program files\Mozilla Firefox\plugins\np-mswmp.dll

---- NASTAVENÍ FIREFOXU ----
i:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
i:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
i:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
i:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
i:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
i:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
i:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
i:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
i:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
i:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
i:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-21 17:30
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1409082233-1060284298-839522115-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:9b,bf,20,d5,b7,52,76,88,c1,54,f5,1d,ab,32,ff,89,b6,aa,f2,79,a2,9f,9a,
94,5b,34,36,2e,b0,ea,0d,fa,5f,41,c2,80,3b,17,d8,8f,ba,f2,09,93,d4,62,b2,fc,\
"??"=hex:e7,e7,01,91,b8,70,ad,fc,6a,be,d9,73,52,5e,32,02
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(736)
i:\program files\SUPERAntiSpyware\SASWINLO.DLL
i:\c\system32\Ati2evxx.dll
.
Celkový čas: 2010-07-21 17:31:40
ComboFix-quarantined-files.txt 2010-07-21 15:31
ComboFix2.txt 2010-07-21 10:11

Před spuštěním: Volných bajtů: 15 896 047 616
Po spuštění: Volných bajtů: 15 883 022 336

- - End Of File - - A4CC0BC322E289BC183B7088031D27C6
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#7 Příspěvek od riffman »

http://www.esagelab.com/files/bootkit_remover.rar

stahnout, rozbalit na plochu, spustit

po spusteni klik pravym mysidlem do okna, zvolit moznost Vybrat vse, CTRL+C a sem do odpovedi CTRL+V (tim mi sem plesknete log)
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
tmoravek
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 11 bře 2010 15:10

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#8 Příspěvek od tmoravek »

Bootkit Remover version 1.0.0.1
(c) 2009 eSage Lab
www.esagelab.com

\\.\I: -> \\.\PhysicalDrive0
MD5: ee7fe9f24bc949ea3a78cf7064fbe50b

Size Device Name MBR Status
--------------------------------------------
232 GB \\.\PhysicalDrive0 Unknown boot code

Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>


Press any key to quit...
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: ZPOMALENÝ PC, ODPOJOVÁNÍ INTERNETU atd

#9 Příspěvek od riffman »

je tam :)

Start/Spustit a do chlivku zkopiruj nasledujici text:
"I:\Documents and Settings\Tom\Plocha\remover.exe" fix \\.\PhysicalDrive0
potvrdit, restart a novy sken jako v predchozim pripade, log sem ;)
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“