Dekuji za kontrolu logu. Laptop se mi nahle hodne zpomalil. Je pravda, ze jsem instalovala nekolik SW. Blanka
Logfile of random's system information tool 1.08 (written by random/random)
Run by Admin at 2010-11-23 09:05:16
Microsoft Windows 7 Ultimate
System drive C: has 48 GB (31%) free of 153 GB
Total RAM: 2038 MB (36% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:05:43, on 23/11/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Common Files\Lingea Shared\luc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Admin\Downloads\RSIT.exe
C:\Program Files\trend micro\Admin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bbc.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Lamp] C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - Startup: Lingea Update Center.lnk = C:\Program Files\Common Files\Lingea Shared\luc.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\acaptuser32.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: PEVSystemStart - Unknown owner - C:\ComboFix\PEV.cfxxe
--
End of file - 7289 bytes
======Scheduled tasks folder======
C:\Windows\tasks\AWC Startup.job
C:\Windows\tasks\AWC Update.job
C:\Windows\tasks\PCConfidential.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-08-12 2215064]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"HP Lamp"=C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe [1998-11-24 42496]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"NBAgent"=C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-10-28 328056]
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Lingea Update Center.lnk - C:\Program Files\Common Files\Lingea Shared\luc.exe
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\acaptuser32.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-11-23 09:05:17 ----D---- C:\Program Files\trend micro
2010-11-23 09:05:16 ----D---- C:\rsit
2010-11-23 01:02:32 ----D---- C:\Program Files\MSXML 4.0
2010-11-21 20:15:48 ----SHD---- C:\$RECYCLE.BIN
2010-11-21 20:15:16 ----D---- C:\Windows\Minidump
2010-11-21 20:06:14 ----A---- C:\Windows\zip.exe
2010-11-21 20:06:14 ----A---- C:\Windows\SWSC.exe
2010-11-21 20:06:14 ----A---- C:\Windows\SWREG.exe
2010-11-21 20:06:14 ----A---- C:\Windows\sed.exe
2010-11-21 20:06:14 ----A---- C:\Windows\PEV.exe
2010-11-21 20:06:14 ----A---- C:\Windows\NIRCMD.exe
2010-11-21 20:06:14 ----A---- C:\Windows\MBR.exe
2010-11-21 20:06:14 ----A---- C:\Windows\grep.exe
2010-11-21 20:06:05 ----D---- C:\Windows\ERDNT
2010-11-21 20:06:04 ----SD---- C:\ComboFix
2010-11-21 20:05:57 ----D---- C:\Qoobox
2010-11-21 20:05:40 ----A---- C:\Windows\SWXCACLS.exe
2010-11-21 20:05:36 ----D---- C:\32788R22FWJFW
2010-11-21 19:09:43 ----D---- C:\Program Files\Common Files\Skype
2010-11-21 19:09:39 ----RD---- C:\Program Files\Skype
2010-11-21 16:25:10 ----D---- C:\Users\Admin\AppData\Roaming\Nero
2010-11-21 16:13:49 ----D---- C:\ProgramData\Nero
2010-11-21 16:13:16 ----D---- C:\Program Files\Common Files\Nero
2010-11-21 16:13:07 ----D---- C:\Program Files\Nero
2010-11-21 16:07:54 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-11-21 16:07:38 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-11-21 16:07:21 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-11-21 16:07:04 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-11-21 16:06:48 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-11-21 14:04:31 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-11-21 14:04:14 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2010-11-21 10:13:17 ----D---- C:\ProgramData\Real
2010-11-21 10:13:17 ----D---- C:\Program Files\Real
2010-11-21 10:13:14 ----D---- C:\Users\Admin\AppData\Roaming\Real
2010-11-20 23:26:23 ----D---- C:\Program Files\FoxTabVideoConverter
2010-11-01 21:42:28 ----A---- C:\Windows\hpsjbmgr.ini
2010-11-01 21:38:41 ----D---- C:\Program Files\Google
2010-11-01 21:17:34 ----D---- C:\sj662
2010-11-01 20:21:18 ----D---- C:\Program Files\Common Files\Lingea Shared
2010-11-01 20:20:46 ----D---- C:\Program Files\Lexicon5
2010-11-01 19:49:34 ----D---- C:\ProgramData\FLEXnet
2010-10-30 23:19:11 ----D---- C:\Program Files\SubDownloader2
2010-10-30 20:17:04 ----A---- C:\Windows\system32\hpsjvset.dll
2010-10-30 20:17:04 ----A---- C:\Windows\system32\Hpsjusd.dll
2010-10-30 20:17:04 ----A---- C:\Windows\system32\hpsj1695.dll
2010-10-30 20:17:03 ----A---- C:\Windows\system32\reg32.dll
2010-10-30 20:17:03 ----A---- C:\Windows\system32\hpsmui.dll
2010-10-30 20:17:03 ----A---- C:\Windows\system32\hpsjrreg.exe
2010-10-30 20:17:03 ----A---- C:\Windows\system32\hpscaner.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\MSVCP50.DLL
2010-10-30 20:17:02 ----A---- C:\Windows\system32\ltkrn70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\ltfil70n.DLL
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lftif70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lfpng70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lfpcx70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\Lfkodak.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lfgif70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lffpx70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\Lffpx7.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lffax70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\LFCMP70n.DLL
2010-10-30 20:17:02 ----A---- C:\Windows\system32\lfbmp70n.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\ipeistor11.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\ipebase11.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\ipeapi11.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\hpsj32.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\hpscntst.dll
2010-10-30 20:17:02 ----A---- C:\Windows\system32\hpscnmgr.dll
2010-10-30 20:17:00 ----D---- C:\Windows\system32\Iosubsys
2010-10-30 20:17:00 ----D---- C:\Program Files\Hewlett-Packard
2010-10-30 20:16:48 ----A---- C:\Windows\IsUninst.exe
2010-10-30 20:16:42 ----RASH---- C:\MSDOS.SYS
2010-10-30 20:16:42 ----RASH---- C:\IO.SYS
2010-10-30 19:01:38 ----D---- C:\VueScan
2010-10-30 18:53:23 ----D---- C:\ProgramData\Adobe
2010-10-30 18:53:23 ----D---- C:\Program Files\Common Files\Adobe
2010-10-30 18:53:23 ----D---- C:\Program Files\Adobe
2010-10-29 14:57:31 ----A---- C:\Windows\system32\systemcpl.dll
2010-10-28 20:38:38 ----SHD---- C:\Config.Msi
2010-10-28 18:05:10 ----D---- C:\Program Files\Conduit
2010-10-28 16:11:02 ----D---- C:\Program Files\uTorrent
2010-10-28 16:10:10 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2010-10-28 16:08:10 ----D---- C:\Program Files\Tracker Software
2010-10-28 15:22:59 ----D---- C:\Users\Admin\AppData\Roaming\IObit
2010-10-28 15:22:59 ----D---- C:\Program Files\IObit
2010-10-28 14:22:48 ----D---- C:\Users\Admin\AppData\Roaming\skypePM
2010-10-28 14:21:37 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2010-10-28 14:21:33 ----D---- C:\ProgramData\Skype
2010-10-28 13:51:12 ----D---- C:\Users\Admin\AppData\Roaming\vlc
2010-10-28 13:44:31 ----D---- C:\Program Files\VideoLAN
2010-10-28 13:41:02 ----D---- C:\Users\Admin\AppData\Roaming\BSplayer Pro
2010-10-28 13:41:02 ----D---- C:\Users\Admin\AppData\Roaming\BSplayer
2010-10-28 13:41:01 ----D---- C:\Program Files\Webteh
2010-10-28 13:31:29 ----D---- C:\Windows\system32\appmgmt
2010-10-28 13:02:42 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-10-28 13:02:41 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-10-28 13:02:01 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-10-28 13:01:59 ----D---- C:\Program Files\Winamp
2010-10-28 11:58:20 ----D---- C:\Users\Admin\AppData\Roaming\Mozilla
2010-10-28 11:51:56 ----D---- C:\Windows\system32\Lang
2010-10-28 11:51:56 ----A---- C:\Windows\system32\TVWizudlg.exe
2010-10-28 11:51:56 ----A---- C:\Windows\system32\igfxtvcx.dll
2010-10-28 11:51:49 ----D---- C:\Program Files\Intel
2010-10-28 11:42:07 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-10-28 11:42:07 ----A---- C:\Windows\system32\PresentationHost.exe
2010-10-28 11:42:07 ----A---- C:\Windows\system32\netfxperf.dll
2010-10-28 11:42:07 ----A---- C:\Windows\system32\mscoree.dll
2010-10-28 11:42:07 ----A---- C:\Windows\system32\dfshim.dll
2010-10-28 11:39:36 ----A---- C:\Windows\system32\browserchoice.exe
2010-10-28 11:38:02 ----D---- C:\Windows\system32\x64
2010-10-28 11:38:02 ----A---- C:\Windows\system32\igxpun.exe
2010-10-28 11:36:36 ----A---- C:\Windows\system32\tzres.dll
2010-10-28 11:36:27 ----A---- C:\Windows\system32\shell32.dll
2010-10-28 11:36:18 ----A---- C:\Windows\system32\mshtml.dll
2010-10-28 11:36:15 ----A---- C:\Windows\system32\ieframe.dll
2010-10-28 11:36:14 ----A---- C:\Windows\system32\mstime.dll
2010-10-28 11:36:14 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-28 11:36:14 ----A---- C:\Windows\system32\iertutil.dll
2010-10-28 11:36:13 ----A---- C:\Windows\system32\urlmon.dll
2010-10-28 11:36:13 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-28 11:36:12 ----A---- C:\Windows\system32\wininet.dll
2010-10-28 11:36:12 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-28 11:36:12 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-28 11:36:12 ----A---- C:\Windows\system32\iepeers.dll
2010-10-28 11:36:11 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-28 11:36:11 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-28 11:36:11 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-28 11:36:11 ----A---- C:\Windows\system32\ieui.dll
2010-10-28 11:36:09 ----A---- C:\Windows\system32\mfc40u.dll
2010-10-28 11:36:09 ----A---- C:\Windows\system32\mfc40.dll
2010-10-28 11:36:00 ----A---- C:\Windows\system32\lsasrv.dll
2010-10-28 11:35:59 ----A---- C:\Windows\system32\vbscript.dll
2010-10-28 11:35:59 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-10-28 11:35:58 ----A---- C:\Windows\system32\kernel32.dll
2010-10-28 11:35:57 ----A---- C:\Windows\system32\apphelp.dll
2010-10-28 11:35:53 ----A---- C:\Windows\system32\wmp.dll
2010-10-28 11:35:52 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-28 11:35:49 ----A---- C:\Windows\system32\ole32.dll
2010-10-28 11:35:48 ----A---- C:\Windows\system32\spoolsv.exe
2010-10-28 11:35:47 ----A---- C:\Windows\system32\winlogon.exe
2010-10-28 11:35:47 ----A---- C:\Windows\explorer.exe
2010-10-28 11:35:45 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-10-28 11:35:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-10-28 11:35:42 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-10-28 11:35:41 ----A---- C:\Windows\system32\ir32_32.dll
2010-10-28 11:35:41 ----A---- C:\Windows\system32\iccvid.dll
2010-10-28 11:35:40 ----A---- C:\Windows\system32\schannel.dll
2010-10-28 11:35:39 ----A---- C:\Windows\system32\comctl32.dll
2010-10-28 11:35:37 ----A---- C:\Windows\system32\inetcomm.dll
2010-10-28 11:35:36 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-28 11:35:36 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-28 11:35:36 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-28 11:35:35 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-28 11:35:34 ----A---- C:\Windows\system32\tsbyuv.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\quartz.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\msyuv.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\msvidc32.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\msrle32.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\mciavi32.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\iyuv_32.dll
2010-10-28 11:35:34 ----A---- C:\Windows\system32\avifil32.dll
2010-10-28 11:35:33 ----A---- C:\Windows\system32\rtutils.dll
2010-10-28 11:35:31 ----A---- C:\Windows\system32\t2embed.dll
2010-10-28 11:35:30 ----A---- C:\Windows\system32\msxml3.dll
2010-10-28 11:35:29 ----A---- C:\Windows\system32\jscript.dll
2010-10-28 11:35:28 ----A---- C:\Windows\system32\asycfilt.dll
2010-10-28 11:35:27 ----A---- C:\Windows\system32\win32k.sys
2010-10-28 11:35:26 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-28 11:31:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-10-28 11:31:43 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-10-28 11:31:43 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-10-28 11:31:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-10-28 11:31:42 ----A---- C:\Windows\system32\fontsub.dll
2010-10-28 11:31:42 ----A---- C:\Windows\system32\atmfd.dll
2010-10-28 11:31:41 ----A---- C:\Windows\system32\atmlib.dll
2010-10-28 09:19:57 ----D---- C:\ProgramData\ESET
2010-10-28 09:19:57 ----D---- C:\Program Files\ESET
2010-10-28 09:08:42 ----A---- C:\Windows\system32\drivers\aswSP.sys
2010-10-28 09:08:42 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2010-10-28 09:08:40 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2010-10-28 09:08:39 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2010-10-28 09:08:36 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2010-10-28 09:07:54 ----A---- C:\Windows\system32\aswBoot.exe
2010-10-28 09:07:52 ----D---- C:\ProgramData\Alwil Software
2010-10-28 09:07:52 ----D---- C:\Program Files\Alwil Software
2010-10-28 08:57:29 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2010-10-28 08:56:26 ----D---- C:\Program Files\WinRAR
2010-10-28 08:48:56 ----D---- C:\Users\Admin\AppData\Roaming\FinalTorrent
2010-10-28 08:47:08 ----D---- C:\Program Files\Free Offers from Freeze.com
2010-10-28 08:46:55 ----D---- C:\Program Files\Mozilla Firefox
2010-10-28 08:26:41 ----D---- C:\Users\Admin\AppData\Roaming\Macromedia
2010-10-28 08:26:41 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2010-10-28 08:26:35 ----D---- C:\Windows\system32\Macromed
2010-10-27 16:12:11 ----A---- C:\Windows\system32\msonpmon.dll
2010-10-27 16:11:19 ----D---- C:\Program Files\Microsoft Works
2010-10-27 16:11:04 ----D---- C:\Program Files\Microsoft Visual Studio
2010-10-27 16:11:03 ----D---- C:\Program Files\Common Files\DESIGNER
2010-10-27 16:10:50 ----D---- C:\Windows\PCHEALTH
2010-10-27 16:10:49 ----D---- C:\Program Files\Microsoft.NET
2010-10-27 16:09:30 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-10-27 16:08:51 ----D---- C:\ProgramData\Microsoft Help
2010-10-27 16:08:51 ----D---- C:\Program Files\Microsoft Office
2010-10-27 16:08:47 ----SHD---- C:\Windows\Installer
2010-10-27 16:08:31 ----RHD---- C:\MSOCache
2010-10-27 16:02:18 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2010-10-27 16:02:18 ----A---- C:\Windows\system32\drivers\ks.sys
2010-10-27 16:02:08 ----D---- C:\Windows\system32\Wat
2010-10-27 15:59:30 ----A---- C:\Windows\system32\wintrust.dll
2010-10-27 15:59:22 ----A---- C:\Windows\system32\cabview.dll
2010-10-27 15:51:12 ----D---- C:\Users\Admin\AppData\Roaming\Identities
2010-10-27 15:50:47 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2010-10-27 15:50:47 ----D---- C:\Users\Admin\AppData\Roaming\Media Center Programs
2010-10-27 15:47:04 ----SHD---- C:\Recovery
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Templates
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Start Menu
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Favorites
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Documents
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Desktop
2010-10-27 15:47:04 ----SHD---- C:\ProgramData\Application Data
2010-10-27 15:47:04 ----SHD---- C:\Documents and Settings
2010-10-27 15:47:01 ----D---- C:\Windows\SoftwareDistribution
2010-10-27 15:40:06 ----SHD---- C:\System Volume Information
2010-10-27 15:40:02 ----D---- C:\Windows\CSC
2010-10-27 15:39:26 ----ASH---- C:\pagefile.sys
2010-10-27 15:39:22 ----ASH---- C:\hiberfil.sys
======List of files/folders modified in the last 1 months======
2010-11-23 09:05:29 ----D---- C:\Windows\Temp
2010-11-23 09:05:29 ----D---- C:\Windows\Prefetch
2010-11-23 09:05:17 ----RD---- C:\Program Files
2010-11-23 08:57:13 ----D---- C:\Windows\system32\config
2010-11-23 08:41:14 ----D---- C:\Windows\System32
2010-11-23 08:41:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-23 08:41:12 ----D---- C:\Windows\inf
2010-11-23 01:03:01 ----D---- C:\Windows\winsxs
2010-11-23 01:02:56 ----D---- C:\Windows
2010-11-22 23:38:40 ----D---- C:\Windows\system32\Tasks
2010-11-21 21:30:55 ----D---- C:\Windows\Tasks
2010-11-21 20:14:09 ----D---- C:\Windows\system32\drivers\etc
2010-11-21 20:11:09 ----D---- C:\Windows\system32\drivers
2010-11-21 20:11:09 ----D---- C:\Windows\AppPatch
2010-11-21 20:11:08 ----D---- C:\Program Files\Common Files
2010-11-21 16:13:49 ----HD---- C:\ProgramData
2010-11-21 16:12:17 ----D---- C:\Windows\system32\wdi
2010-11-21 16:08:17 ----RSD---- C:\Windows\assembly
2010-11-21 13:59:22 ----RSD---- C:\Windows\Fonts
2010-11-21 10:13:34 ----A---- C:\Windows\system32\msvcr71.dll
2010-11-21 10:13:34 ----A---- C:\Windows\system32\msvcp71.dll
2010-11-12 13:50:07 ----D---- C:\Windows\system32\catroot2
2010-11-12 08:26:08 ----A---- C:\Windows\win.ini
2010-11-10 23:12:20 ----A---- C:\Windows\system32\MRT.exe
2010-11-10 12:05:11 ----D---- C:\Windows\ShellNew
2010-11-01 22:01:12 ----D---- C:\Windows\twain_32
2010-10-30 19:12:30 ----D---- C:\Windows\system32\DriverStore
2010-10-30 19:05:12 ----D---- C:\Windows\system32\catroot
2010-10-29 15:01:34 ----D---- C:\Windows\system32\oobe
2010-10-29 14:58:03 ----D---- C:\Windows\rescache
2010-10-29 14:57:38 ----D---- C:\Windows\system32\en-US
2010-10-29 14:57:31 ----A---- C:\Windows\system32\slwga.dll
2010-10-29 14:36:20 ----RD---- C:\Users
2010-10-28 21:55:37 ----D---- C:\Program Files\Common Files\microsoft shared
2010-10-28 21:53:34 ----D---- C:\Program Files\Common Files\System
2010-10-28 21:02:05 ----D---- C:\Windows\Logs
2010-10-28 16:47:10 ----D---- C:\Windows\system32\LogFiles
2010-10-28 14:39:37 ----D---- C:\Windows\Microsoft.NET
2010-10-28 11:47:27 ----D---- C:\Windows\system32\migration
2010-10-28 11:47:27 ----D---- C:\Program Files\Internet Explorer
2010-10-28 11:47:26 ----D---- C:\Program Files\Windows Media Player
2010-10-28 11:47:26 ----D---- C:\Program Files\Windows Mail
2010-10-28 08:26:41 ----D---- C:\Windows\Downloaded Program Files
2010-10-28 08:19:51 ----SD---- C:\ProgramData\Microsoft
2010-10-27 16:11:11 ----D---- C:\Program Files\MSBuild
2010-10-27 16:01:48 ----D---- C:\Windows\system32\restore
2010-10-27 15:42:13 ----D---- C:\Windows\Panther
2010-10-27 15:41:18 ----D---- C:\Windows\system32\drivers\UMDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 96920]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S2 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 catchme;catchme; \??\C:\Users\Admin\AppData\Local\Temp\catchme.sys []
S3 E1G60;Intel(R) PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G60I32.sys [2009-07-13 118784]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-08-12 810144]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-03-25 490280]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 PEVSystemStart;PEVSystemStart; C:\ComboFix\PEV.cfxxe [2010-04-26 256512]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-08-12 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-11-21 651720]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-27 1343400]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
nahle zpomaleny laptop, cpu na 60 %
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
Zdravim a pekny den preji 
Ten ComboFix 21.11 jste delala na doporuceni nejakeho radce, pripadne jste si jej spustila sama = dolustila i nasledne log 
Probehl korektne, vytvoril log
Ten ComboFix 21.11 jste delala na doporuceni nejakeho radce, pripadne jste si jej spustila sama = dolustila i nasledne log Probehl korektne, vytvoril log "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
combofix jsem si spustila sama, nebot jsem pochopila, ze je to standarni postup, co se vetsinou dela, jak jsem si vsimla u svych predeslych for a jinych, log jsem samozrejme nevylustila, rada vam jen sem dam, jen mi reknete, jak je oznacen, at jej v tom mnozstvi souboru mohu najit, blanka
Re: nahle zpomaleny laptop, cpu na 60 %
ComboFix neni standartnim postupem, i kdyz nam radcum ulehcuje hodne praci. i v eho podminkach pro pouziti je psano, ze se ma pouzivat pouze na pokyn vyskolene osoby Nebezpeci CFka
- Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
- Maze stopy po haveti, takze v logu z RSIT neni nic videt
- Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolena
- CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
- CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal
Log by se mel jmenovat ComboFix.txt a mel by byt primo na disku c:, pokud tam neni, tak mi zabalte obsah slozky c:\qoobox a poslete na LP http://leteckaposta.cz/ - link pak sem"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
aaah, to jsem asi neco zvorala, combofix txt. jsem nenasla, poslu tedy ten goobox, prosim, dejte mi vasi email adresu, dekuji, bl.
Re: nahle zpomaleny laptop, cpu na 60 %
Mailovka je vyosek@forum.viry.cz
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
Mate tam dva antiviry. Ten NOD32 je legalni = zakoupena licence Tuhle stranku http://www.bbc.co.uk/ znate "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
mam avast a eset jsem mela trial verze, na doporuceni, ktere jsem nasla na netu, jsem se snazila eset prodlouzit na vice mesicu, bbc je znama britske zpavodajstvi, ktere ctu, ktera z tech polozek je spatne?
Re: nahle zpomaleny laptop, cpu na 60 %
Takze pokud nemate NOD zakoupeny oficialni cestou pres ESET - ne nejakym pochybnym ziskanim\prodlouzenim licence na webu, tak jej odinstalujte - jelikoz tam dochazi ke kolizi. Navic uprimne, Avast je na tom defakto stejne jako NOD a navic je zdarma. A nejvetsi kravina je mit cracknuty antivir NN, stranka neni spatna, jen se ptam jestli je tam umyslne, pokud ano, tak neni problem... Stahnete OTM (viz muj podpis)
- Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
- Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize
Kód: Vybrat vše
:reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"=- "Adobe ARM"=- "Adobe Acrobat Speed Launcher"=- "Acrobat Assistant 8.0"=- "NBAgent"=- :services PEVSystemStart :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp /s :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Kliknete na cervene tlacitko MoveIt!
- Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
nod jsem odstranila, restartovala laptop, stahla otm, spustila jako administrator, ale neobjevilo se mi tam Paste Instructions for Items to be Moved, co delam spatne?, dekuji, bl.
Re: nahle zpomaleny laptop, cpu na 60 %
OTM by melo vypadat nejak takto - skript se dava do toho leveho okna pod zlutou carou
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
tady je log, bylo to pred tim moje chyba, bl.
All processes killed
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NBAgent not found.
========== SERVICES/DRIVERS ==========
Service PEVSystemStart stopped successfully!
Service PEVSystemStart deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP85E1.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\19a9721e7760090794938cb2939e628d\$dpx$.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\19a9721e7760090794938cb2939e628d\BITE0A.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\1bf880f5357e2aa10124e2cfdab551e0\BIT9EDB.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\2590ffcdda8bb89cfc35e5a6f028b7ca\BITF45.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\616d04a46da9626731ca7ad2645f2e45\BIT8D94.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\7884dcf583309891c421035810324abf\$dpx$.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\7884dcf583309891c421035810324abf\BITCFD4.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\c427e19909db65513958758539084c06\BIT8688.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\dafae51f982468466836ddb2d14ab41b\BIT93B4.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\dc275b017aea7bc2d6faa3b7b62e0cab\BIT885F.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\f9a1ee30d68b73cda53ea8454fbbd1be\BIT7E71.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Admin
->Temp folder emptied: 302258 bytes
->Temporary Internet Files folder emptied: 1115629 bytes
->FireFox cache emptied: 71307743 bytes
->Flash cache emptied: 1743 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 527400 bytes
RecycleBin emptied: 21961344067 bytes
Total Files Cleaned = 21,014.00 mb
OTM by OldTimer - Version 3.1.17.2 log created on 11232010_122226
All processes killed
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NBAgent not found.
========== SERVICES/DRIVERS ==========
Service PEVSystemStart stopped successfully!
Service PEVSystemStart deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP85E1.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\19a9721e7760090794938cb2939e628d\$dpx$.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\19a9721e7760090794938cb2939e628d\BITE0A.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\1bf880f5357e2aa10124e2cfdab551e0\BIT9EDB.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\2590ffcdda8bb89cfc35e5a6f028b7ca\BITF45.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\616d04a46da9626731ca7ad2645f2e45\BIT8D94.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\7884dcf583309891c421035810324abf\$dpx$.tmp folder moved successfully.
C:\Windows\SoftwareDistribution\Download\7884dcf583309891c421035810324abf\BITCFD4.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\c427e19909db65513958758539084c06\BIT8688.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\dafae51f982468466836ddb2d14ab41b\BIT93B4.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\dc275b017aea7bc2d6faa3b7b62e0cab\BIT885F.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\f9a1ee30d68b73cda53ea8454fbbd1be\BIT7E71.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Admin
->Temp folder emptied: 302258 bytes
->Temporary Internet Files folder emptied: 1115629 bytes
->FireFox cache emptied: 71307743 bytes
->Flash cache emptied: 1743 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 527400 bytes
RecycleBin emptied: 21961344067 bytes
Total Files Cleaned = 21,014.00 mb
OTM by OldTimer - Version 3.1.17.2 log created on 11232010_122226
Re: nahle zpomaleny laptop, cpu na 60 %
Jdeme dale 
T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner (viz muj podpis)
Panel čistič
Doporucuji provest defragmentaci disku
Dejte novy log z RSIT a napiste jak se chova PC
T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner (viz muj podpis)Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Doporucuji provest defragmentaci disku
- Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
- Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
- Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace
Dejte novy log z RSIT a napiste jak se chova PC"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
Blanka yahoo
- Návštěvník
- Příspěvky: 346
- Registrován: 02 úno 2006 13:03
Re: nahle zpomaleny laptop, cpu na 60 %
T-Cleaner mi nejde shatnbout, jinak jsem zatim vse udelala
Přispějete na provoz fóra?