VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Strašně pomalé PC

https://forum.viry.cz:443/viewtopic.php?t=109360

Stránka 1 z 1

Strašně pomalé PC

Napsal: 11 úno 2011 19:16
od lukasen
Dobrý den ,mám hrozně pomalé PC např. při spouštění internetu a i otvírání disku C nebo D trvá dlouho. Avastem sem odstranil viry a projel jsem ho i Ad-Awarem,ale ten nic nenašel.Pak jsem pročistil PC CCleanerem,ale moc to nepomohlo.Prosím o kontrolu logu,jestly někde není nějaká chyba ještě? Děkuji.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Jirka at 2011-02-11 19:10:44
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 172 GB (72%) free of 238 GB
Total RAM: 959 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:10:53, on 11.2.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Jirka\Plocha\RSIT.exe
C:\Program Files\trend micro\Jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ppcb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ppcb&s={searchTerms}&f=4
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: OLE (Part 1 of 5) - - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: GdfrDUEn - {A3CF7606-E683-4375-A372-96B75DA0AEF7} - C:\Program Files\Get Styles\enlbrdr.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Get Styles\ct.htm
O9 - Extra 'Tools' menuitem: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Get Styles\ct.htm
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/html - {574940E0-1B7A-4881-8FA3-1E809714B156} - C:\Documents and Settings\Jirka\AppData\LocalLow\Microńoft\redir.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 5629 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3CF7606-E683-4375-A372-96B75DA0AEF7}]
GdfrDUEn Class - C:\Program Files\Get Styles\enlbrdr.dll [2010-02-11 185856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-12-02 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-02-25 8491008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe [2008-12-04 665424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX110 Series]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFBE.EXE [2008-09-27 199680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe /md I []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2008-02-25 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2009-07-20 18670592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programy\ICQ6.5\ICQ.exe"="C:\Programy\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Epson Software\Event Manager\EEventManager.exe"="C:\Program Files\Epson Software\Event Manager\EEventManager.exe:*:Enabled:EEventManager Application"
"C:\Program Files\Counter-Strike Source\hl2.exe"="C:\Program Files\Counter-Strike Source\hl2.exe:*:Disabled:hl2"
"C:\Documents and Settings\All Users\Data aplikací\SweetIM\Messenger\update\sweetimsetup.exe"="C:\Documents and Settings\All Users\Data aplikací\SweetIM\Messenger\update\sweetimsetup.exe:*:Enabled:SweetIM Installer"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Stahované soubory\SweetImSetup.exe"="D:\Stahované soubory\SweetImSetup.exe:*:Enabled:SweetIM Installer"
"D:\Stahované soubory\image96523489.exe"="c:\windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"D:\Stahované soubory\facebook-img001915632.exe"="c:\windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Program Files\Metin2\metin2.bin"="C:\Program Files\Metin2\metin2.bin:*:Enabled:metin2"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\Non-Steam v42\hl.exe"="C:\Program Files\Non-Steam v42\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Documents and Settings\Jirka\Plocha\Jujky\Skype.exe"="C:\Documents and Settings\Jirka\Plocha\Jujky\Skype.exe:*:Enabled:Skype "
"D:\Stahované soubory\MovieBario_FM.exe"="D:\Stahované soubory\MovieBario_FM.exe:*:Enabled:Facemoods Installer"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-11 19:10:44 ----D---- C:\rsit
2011-02-11 19:10:44 ----D---- C:\Program Files\trend micro
2011-02-11 19:00:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-02-11 18:42:24 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-02-11 18:42:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-02-11 18:37:50 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Lavasoft
2011-02-11 17:07:30 ----D---- C:\WINDOWS\pss
2011-02-11 17:02:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2011-02-06 15:44:00 ----D---- C:\KLUBKO2
2011-02-05 14:06:33 ----D---- C:\Program Files\Superbike Challenge
2011-01-23 21:15:16 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-01-23 21:15:16 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll
2011-01-23 21:15:15 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-01-23 21:15:15 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-01-23 21:15:14 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-01-23 21:15:11 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-01-23 21:15:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-01-23 21:15:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-01-23 21:15:06 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-01-23 21:15:05 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-01-23 21:15:05 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-01-23 21:15:04 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-01-23 21:15:04 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-01-23 21:15:04 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-01-23 21:15:03 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-01-23 21:14:34 ----A---- C:\WINDOWS\game.ini
2011-01-22 14:16:26 ----D---- C:\Documents and Settings\Jirka\Data aplikací\facemoods.com
2011-01-14 16:12:54 ----D---- C:\Program Files\Non-Steam v42

======List of files/folders modified in the last 1 months======

2011-02-11 19:10:50 ----D---- C:\WINDOWS\Prefetch
2011-02-11 19:10:44 ----RD---- C:\Program Files
2011-02-11 19:08:54 ----D---- C:\WINDOWS\Temp
2011-02-11 19:07:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-11 19:05:54 ----D---- C:\WINDOWS\system32\drivers
2011-02-11 19:00:34 ----SHD---- C:\WINDOWS\Installer
2011-02-11 19:00:33 ----D---- C:\WINDOWS\WinSxS
2011-02-11 18:45:21 ----AD---- C:\WINDOWS
2011-02-11 18:37:41 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-02-11 18:37:20 ----D---- C:\WINDOWS\system32
2011-02-11 18:31:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-02-11 18:17:30 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-11 18:06:32 ----A---- C:\WINDOWS\disney.ini
2011-02-11 18:06:17 ----HD---- C:\Program Files\InstallShield Installation Information
2011-02-11 18:06:17 ----D---- C:\Program Files\CyberLink
2011-02-11 18:01:57 ----D---- C:\Program Files\Ford Racing Off Road
2011-02-11 17:53:34 ----A---- C:\WINDOWS\KA.ini
2011-02-11 17:53:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Vivendi Universal Games
2011-02-11 17:44:57 ----A---- C:\WINDOWS\NeroDigital.ini
2011-02-11 17:27:42 ----SH---- C:\boot.ini
2011-02-11 17:27:42 ----A---- C:\WINDOWS\win.ini
2011-02-11 17:27:42 ----A---- C:\WINDOWS\system.ini
2011-02-11 17:03:44 ----D---- C:\Program Files\Alwil Software
2011-02-11 17:02:50 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-11 16:57:30 ----HD---- C:\WINDOWS\inf
2011-02-10 21:01:49 ----D---- C:\Program Files\Mozilla Firefox
2011-02-06 15:44:01 ----A---- C:\WINDOWS\SILCOM_P.INI
2011-02-06 15:43:38 ----D---- C:\WINDOWS\system
2011-01-29 09:51:45 ----D---- C:\Program Files\Metin2
2011-01-29 09:51:10 ----D---- C:\Program Files\Common Files
2011-01-24 14:04:44 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-01-23 21:49:39 ----D---- C:\Documents and Settings\Jirka\Data aplikací\Skype
2011-01-23 21:15:18 ----D---- C:\WINDOWS\system32\DirectX
2011-01-23 16:29:21 ----D---- C:\Documents and Settings\Jirka\Data aplikací\skypePM
2011-01-13 09:47:32 ----A---- C:\WINDOWS\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-20 5795328]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-02-25 6867360]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-01-29 54016]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-01-29 22016]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-12-02 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-02-25 155716]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-20 136120]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

Re: Strašně pomalé PC

Napsal: 11 úno 2011 19:51
od Rudy
Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Re: Strašně pomalé PC

Napsal: 13 úno 2011 14:51
od lukasen
ComboFix 11-02-12.02 - Jirka 13.02.2011 14:45:14.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.959.628 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jirka\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
ADS - WINDOWS: deleted 24 bytes in 1 streams.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Jirka\Data aplikací\facemoods.com
c:\program files\Off-Road Arena.exe
c:\program files\Off-Road Arena.exe\config\config.cfg
c:\program files\Off-Road Arena.exe\config\config.def
c:\program files\Off-Road Arena.exe\config\control.cfg
c:\program files\Off-Road Arena.exe\config\dx.dat
c:\program files\Off-Road Arena.exe\config\menus.dat
c:\program files\Off-Road Arena.exe\config\motion.dat
c:\program files\Off-Road Arena.exe\config\off-road.cfg
c:\program files\Off-Road Arena.exe\config\off-road.ini
c:\program files\Off-Road Arena.exe\config\present.cfg
c:\program files\Off-Road Arena.exe\config\springs.cfg
c:\program files\Off-Road Arena.exe\config\visual.cfg
c:\program files\Off-Road Arena.exe\data\3d.dat
c:\program files\Off-Road Arena.exe\data\artwork.dat
c:\program files\Off-Road Arena.exe\data\installation.dat
c:\program files\Off-Road Arena.exe\data\menus.dat
c:\program files\Off-Road Arena.exe\data\multipla.dat
c:\program files\Off-Road Arena.exe\data\wave.dat
c:\program files\Off-Road Arena.exe\install.sss
c:\program files\Off-Road Arena.exe\music\game_1.wav
c:\program files\Off-Road Arena.exe\music\game_2.wav
c:\program files\Off-Road Arena.exe\music\game_3.wav
c:\program files\Off-Road Arena.exe\music\game_4.wav
c:\program files\Off-Road Arena.exe\music\menu.wav
c:\program files\Off-Road Arena.exe\Off-Road Arena.exe
c:\program files\Off-Road Arena.exe\Off Road Arena\tmp.txt
c:\program files\Off-Road Arena.exe\qmdx.dll
c:\program files\Off-Road Arena.exe\replay\katana.avi
c:\program files\Off-Road Arena.exe\replay\rolling\Palm Rock.rb
c:\program files\Off-Road Arena.exe\replay\rolling\replay-demo01.rb
c:\program files\Off-Road Arena.exe\replay\rolling\Rollerdrome.rb
c:\program files\Off-Road Arena.exe\replay\users\Palm Rock.rb
c:\program files\Off-Road Arena.exe\replay\users\Rollerdrome.rb
c:\program files\Off-Road Arena.exe\users\222.usr
c:\program files\Off-Road Arena.exe\users\222\Camp.r-b
c:\program files\Off-Road Arena.exe\users\222\records.dat
c:\program files\Off-Road Arena.exe\users\222\SAVE 01.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 02.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 03.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 04.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 05.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 06.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 07.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 08.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 09.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 10.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 11.rb
c:\program files\Off-Road Arena.exe\users\222\SAVE 12.rb
c:\program files\Off-Road Arena.exe\users\cpu records .usr
c:\program files\Off-Road Arena.exe\users\CPU Records\camp.r-b
c:\program files\Off-Road Arena.exe\users\CPU Records\records.dat
c:\program files\Off-Road Arena.exe\users\CPU Records\save 01.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 02.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 03.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 04.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 05.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 06.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 07.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 08.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 09.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 10.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 11.rb
c:\program files\Off-Road Arena.exe\users\CPU Records\save 12.rb
c:\program files\Off-Road Arena.exe\users\tomasen.usr
c:\program files\Off-Road Arena.exe\users\tomasen\Camp.r-b
c:\program files\Off-Road Arena.exe\users\tomasen\records.dat
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 01.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 02.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 03.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 04.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 05.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 06.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 07.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 08.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 09.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 10.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 11.rb
c:\program files\Off-Road Arena.exe\users\tomasen\SAVE 12.rb
c:\program files\Off-Road Arena.exe\VideoSetup.exe
c:\windows\system32\detoured.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2011-01-13 do 2011-02-13 )))))))))))))))))))))))))))))))
.

2011-02-12 12:14 . 2011-02-12 12:14 -------- d-----w- c:\program files\Common Files\Java
2011-02-12 12:13 . 2011-02-12 12:13 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-02-12 12:13 . 2011-02-12 12:13 -------- d-----w- c:\program files\Java
2011-02-11 18:31 . 2011-02-11 18:31 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\ICQ
2011-02-11 18:10 . 2011-02-11 18:10 -------- d-----w- c:\program files\trend micro
2011-02-11 18:00 . 2011-02-11 18:00 -------- d-----w- c:\documents and settings\All Users\Data aplikací\TEMP
2011-02-11 17:42 . 2011-02-11 17:59 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-02-11 17:42 . 2011-02-11 17:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-02-11 17:37 . 2011-02-11 17:41 -------- d-----w- c:\documents and settings\Jirka\Data aplikací\Lavasoft
2011-02-11 16:02 . 2011-01-13 08:47 38848 ----a-w- c:\windows\avastSS.scr
2011-02-11 16:02 . 2011-02-11 16:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alwil Software
2011-02-06 14:44 . 2011-02-06 14:44 -------- d-----w- C:\KLUBKO2
2011-02-05 13:06 . 2011-02-05 13:06 -------- d-----w- c:\program files\Superbike Challenge
2011-01-30 13:57 . 2011-01-30 13:57 103864 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
2011-01-30 13:57 . 2011-01-30 13:57 103864 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
2011-01-14 15:12 . 2011-02-11 14:11 -------- d-----w- c:\program files\Non-Steam v42

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-12 12:13 . 2010-12-02 06:43 411368 ----a-w- c:\windows\system32\deploytk.dll
2011-01-13 08:47 . 2009-12-04 15:44 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2009-12-04 15:45 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2009-12-04 15:45 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:40 . 2009-12-04 15:45 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-01-13 08:39 . 2009-12-04 15:45 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-01-13 08:37 . 2009-12-04 15:45 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2009-12-04 15:45 29392 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-01-13 08:37 . 2009-12-04 15:45 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-12-23 22:03 . 2010-12-23 22:02 458816 ----a-w- C:\FaceIM.exe
2010-12-02 06:34 . 2010-12-02 07:37 16258848 ----a-w- C:\jre-6u18-windows-i586.exe
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3CF7606-E683-4375-A372-96B75DA0AEF7}]
2010-02-11 07:58 185856 ----a-w- c:\program files\Get Styles\enlbrdr.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2011-01-13 3396624]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-02-25 8491008]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 22:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-01-31 08:44 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
2008-12-04 12:24 665424 ----a-w- c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX110 Series]
2008-09-26 23:00 199680 ----a-w- c:\windows\system32\spool\drivers\w32x86\3\E_FATIFBE.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2008-02-25 11:29 81920 ----a-w- c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2009-07-20 10:12 18670592 ----a-w- c:\windows\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2009-10-20 12:59 111928 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programy\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\SweetIM\\Messenger\\update\\sweetimsetup.exe"=
"c:\\Program Files\\Non-Steam v42\\hl.exe"=
"c:\\Documents and Settings\\Jirka\\Plocha\\Jujky\\Skype.exe"=

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [4.12.2009 16:45 294608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [4.12.2009 16:45 17744]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [30.11.2009 10:52 1684736]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.facemoods.com/?a=ppcb
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Jirka\Data aplikací\Mozilla\Firefox\Profiles\peiw7ld6.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://start.facemoods.com/?a=ppcb&s={searchTerms}&f=4&hl={language}&src=chrm
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
FF - Ext: Get Styles: {6236BA26-C117-4007-928C-DE0716C7FA80} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}
FF - Ext: Usage Stat: {6236BA26-C117-4007-928C-DE0716C7FA96} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA96}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-CTFMON - (no file)
MSConfigStartUp-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-02-13 14:48
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2011-02-13 14:50:23
ComboFix-quarantined-files.txt 2011-02-13 13:50

Před spuštěním: Volných bajtů: 189 588 144 128
Po spuštění: Volných bajtů: 189 605 625 856

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 56CA9FB530A57C2DC433CA4CBF2B11AC

Re: Strašně pomalé PC

Napsal: 13 úno 2011 16:56
od Rudy
Několik položek bylo smazáno, zbytek logu vypadá čistý. Nastala nějaká změna?

Re: Strašně pomalé PC

Napsal: 14 úno 2011 20:32
od lukasen
Pc se očividně trochu zrychlil,ale pořád to není ono,ale to bude asi už starým systémem tím myslím že je dlouho nepřeinstalovaný.Ještě skusím defragmentaci disku a uvidím jestly to pomůže víc.A děkuji za pomoc.

Re: Strašně pomalé PC

Napsal: 14 úno 2011 20:40
od Rudy
Ještě můžete vyčistit CCleanerem od balastu: http://www.viry.cz/forum/viewtopic.php?f=46&t=7478 . Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz