VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

zpomaleny pc

https://forum.viry.cz:443/viewtopic.php?t=121405

Stránka 1 z 1

zpomaleny pc

Napsal: 02 kvě 2012 19:05
od messi111
Dobry den, prosim o kontrolu logu...
Pc se zasekava a pri startu pc to trva strasnou dobu..
Driv se to zasekavalo na 10-15 min na nacitani windows.. to uz nedela ale ted se me nepodari prihlasit na aktuali profil a hodi to tam nakej vytvorenej... + nejde vymazat eset, vzdy se smaze cela historie.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vlada at 2012-05-02 20:02:27
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 130 GB (43%) free of 305 GB
Total RAM: 3582 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:02:34, on 2.5.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcLog.exe
C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Gameforge4D\4Story_INTL\PrePatch.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\TEMP\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Vlada.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [4StoryPrePatch] C:\Program Files\Gameforge4D\4Story_INTL\PrePatch.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: HP Chytrý výběr - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - Unknown owner - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 8407 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\TEMP\Data aplikací\Mozilla\Firefox\Profiles\dzi3wucy.default

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
wikipedia-cz.xml

C:\Documents and Settings\TEMP\Data aplikací\Mozilla\Firefox\Profiles\dzi3wucy.default\extensions\
centrumpomocnik@centrum.cz
{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2008-03-28 322880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-07 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-07 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-03-07 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-03-28 501056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-12-18 868352]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"4StoryPrePatch"=C:\Program Files\Gameforge4D\4Story_INTL\PrePatch.exe [2012-03-28 327680]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-03-25 49152]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-03-13 81920]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2012-02-10 15494464]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2012-02-10 1634112]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-03-07 4241512]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-22 3080264]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe"="C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe"="C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 3 months======

2012-05-02 20:02:28 ----D---- C:\Program Files\trend micro
2012-05-02 20:00:54 ----D---- C:\Documents and Settings\TEMP\Data aplikací\Macromedia
2012-05-02 20:00:47 ----D---- C:\Documents and Settings\TEMP\Data aplikací\Mozilla
2012-05-02 20:00:11 ----D---- C:\Program Files\ESET
2012-05-02 19:58:53 ----D---- C:\Documents and Settings\TEMP\Data aplikací\Adobe
2012-05-02 19:58:52 ----D---- C:\Documents and Settings\TEMP\Data aplikací\ESET
2012-05-02 19:58:16 ----D---- C:\Documents and Settings\TEMP\Data aplikací\Identities
2012-05-02 19:56:20 ----ASH---- C:\Documents and Settings\TEMP\Data aplikací\desktop.ini
2012-05-02 19:56:18 ----SD---- C:\Documents and Settings\TEMP\Data aplikací\Microsoft
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-05-02 19:54:30 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-05-02 19:54:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-05-02 19:54:18 ----A---- C:\WINDOWS\avastSS.scr
2012-05-02 19:54:09 ----D---- C:\Program Files\AVAST Software
2012-05-02 19:54:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\AVAST Software
2012-05-02 19:51:28 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2012-05-02 19:51:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2012-05-02 19:45:39 ----A---- C:\WINDOWS\OEWABLog.txt
2012-05-02 19:32:25 ----SHD---- C:\RECYCLER
2012-05-02 19:31:53 ----D---- C:\Program Files\CCleaner
2012-05-02 15:59:13 ----A---- C:\WINDOWS\system32\wmpns.dll
2012-04-28 18:47:45 ----D---- C:\Program Files\Samsung
2012-04-28 11:32:21 ----D---- C:\Program Files\Counter-Strike 1.6 Standalone
2012-04-28 11:19:12 ----D---- C:\Program Files\Valve
2012-04-13 17:05:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2012-04-11 17:00:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2012-04-05 11:25:27 ----D---- C:\Program Files\EA GAMES
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\psisdecd.dll
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\msdv.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\mpe.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2012-04-05 11:18:22 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys
2012-04-05 11:18:20 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2012-03-30 14:10:35 ----D---- C:\Program Files\Aspyr
2012-03-30 14:07:29 ----D---- C:\Program Files\Google
2012-03-30 14:07:28 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2012-03-30 14:07:22 ----D---- C:\Program Files\DAEMON Tools Lite
2012-03-14 18:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2641653$
2012-03-14 18:00:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2621440$
2012-03-14 18:00:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2647518$
2012-03-07 17:00:43 ----A---- C:\WINDOWS\system32\javaws.exe
2012-03-07 17:00:43 ----A---- C:\WINDOWS\system32\javaw.exe
2012-03-07 17:00:43 ----A---- C:\WINDOWS\system32\java.exe
2012-03-07 16:59:02 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Sun
2012-03-07 16:58:56 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-03-07 16:44:08 ----A---- C:\WINDOWS\system32\nvgenco32.dll
2012-03-07 16:44:07 ----A---- C:\WINDOWS\system32\nvdispco32.dll
2012-03-07 16:44:05 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2012-03-07 16:44:05 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2012-03-07 16:44:05 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2012-03-07 16:44:05 ----A---- C:\WINDOWS\system32\nvcuda.dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi.dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi(6).dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi(5).dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi(4).dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi(3).dll
2012-03-07 16:44:04 ----A---- C:\WINDOWS\system32\nvapi(2).dll
2012-03-07 16:44:03 ----A---- C:\WINDOWS\system32\OpenCL.dll
2012-03-07 16:44:03 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2012-03-07 16:44:03 ----A---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2012-03-07 16:11:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NVIDIA Corporation
2012-03-07 16:07:38 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NVIDIA Corporation(2)
2012-03-07 15:23:11 ----A---- C:\WINDOWS\system32\SET1F2.tmp
2012-03-07 15:23:11 ----A---- C:\WINDOWS\system32\SET1F0.tmp
2012-03-07 15:23:10 ----A---- C:\WINDOWS\system32\SET1E1.tmp
2012-03-07 15:23:10 ----A---- C:\WINDOWS\system32\SET1DF.tmp
2012-03-07 15:20:41 ----A---- C:\WINDOWS\system32\SET17F.tmp
2012-03-07 15:20:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2012-03-07 15:19:52 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2012-03-07 15:17:46 ----A---- C:\WINDOWS\system32\RegistryDefragBootTime.exe
2012-03-07 15:13:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2012-02-23 21:43:27 ----D---- C:\Program Files\Common Files\Skype
2012-02-20 18:00:26 ----D---- C:\cd5f8b40f935aa8baa0f2e0e2880
2012-02-15 18:03:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-02-15 18:00:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-02-15 16:11:18 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-02-14 08:09:02 ----D---- C:\Program Files\OpenOffice.org 3
2012-02-03 21:58:50 ----RA---- C:\WINDOWS\system32\OLD4B.tmp

======List of files/folders modified in the last 3 months======

2012-05-02 20:02:28 ----RD---- C:\Program Files
2012-05-02 20:00:20 ----D---- C:\WINDOWS\temp
2012-05-02 20:00:19 ----D---- C:\Config.Msi
2012-05-02 19:59:53 ----SHD---- C:\WINDOWS\Installer
2012-05-02 19:56:41 ----D---- C:\Documents and Settings
2012-05-02 19:55:33 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-05-02 19:54:30 ----D---- C:\WINDOWS\system32\drivers
2012-05-02 19:54:18 ----D---- C:\WINDOWS\system32
2012-05-02 19:54:18 ----D---- C:\WINDOWS
2012-05-02 19:39:03 ----HD---- C:\WINDOWS\inf
2012-05-02 19:39:00 ----D---- C:\WINDOWS\system32\CatRoot2
2012-05-02 19:32:25 ----D---- C:\WINDOWS\Logs
2012-05-02 19:21:34 ----D---- C:\WINDOWS\system32\config
2012-05-02 19:10:41 ----D---- C:\WINDOWS\Microsoft.NET
2012-05-02 19:10:37 ----RSD---- C:\WINDOWS\assembly
2012-05-02 18:58:19 ----D---- C:\WINDOWS\AppPatch
2012-05-02 18:57:19 ----D---- C:\WINDOWS\WinSxS
2012-05-02 18:56:38 ----D---- C:\WINDOWS\Prefetch
2012-05-01 21:48:27 ----D---- C:\WINDOWS\system32\wbem
2012-05-01 21:48:27 ----D---- C:\WINDOWS\Registration
2012-05-01 19:17:20 ----SD---- C:\WINDOWS\Tasks
2012-05-01 08:10:55 ----D---- C:\WINDOWS\Minidump
2012-04-28 11:32:21 ----D---- C:\Program Files\Common Files
2012-04-28 11:19:12 ----HD---- C:\Program Files\InstallShield Installation Information
2012-04-24 14:21:20 ----D---- C:\Program Files\Mozilla Firefox
2012-04-23 15:59:36 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-04-17 17:00:30 ----D---- C:\WINDOWS\system32\CatRoot
2012-04-17 16:09:09 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-04-17 16:08:47 ----D---- C:\Program Files\Internet Explorer
2012-04-13 17:00:32 ----A---- C:\WINDOWS\system32\MRT.exe
2012-04-11 17:05:37 ----HD---- C:\WINDOWS\$hf_mig$
2012-04-11 17:00:31 ----D---- C:\WINDOWS\Debug
2012-04-06 12:02:20 ----D---- C:\Program Files\Gameforge4D
2012-04-05 11:25:22 ----D---- C:\WINDOWS\system32\DirectX
2012-04-02 20:09:35 ----RSD---- C:\WINDOWS\Fonts
2012-03-30 14:07:26 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-03-09 13:59:22 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NVIDIA
2012-03-07 17:07:22 ----D---- C:\Program Files\NVIDIA Corporation
2012-03-07 16:56:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-03-07 16:07:38 ----D---- C:\WINDOWS\Help
2012-03-07 15:25:18 ----D---- C:\WINDOWS\security
2012-03-07 15:24:43 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2012-03-07 15:19:59 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2012-03-07 15:19:29 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2012-03-02 05:59:58 ----A---- C:\WINDOWS\system32\ieframe.dll
2012-03-02 05:59:58 ----A---- C:\WINDOWS\system32\ieframe(2).dll
2012-03-02 05:59:58 ----A---- C:\WINDOWS\system32\ieframe(2)(2).dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\occache.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\mstime.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\mshtmled.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\licmgr10.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\jsproxy.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\iepeers.dll
2012-03-01 12:59:57 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\wininet.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\wininet(2).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\wininet(2)(3).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\urlmon.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\urlmon(2).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\urlmon(2)(3).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\url.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\url(2).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\url(2)(3).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\iertutil.dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\iertutil(2).dll
2012-03-01 12:59:57 ----A---- C:\WINDOWS\system32\iertutil(2)(2).dll
2012-02-29 16:10:19 ----A---- C:\WINDOWS\system32\wintrust.dll
2012-02-29 16:10:19 ----A---- C:\WINDOWS\system32\wintrust(2).dll
2012-02-29 16:10:19 ----A---- C:\WINDOWS\system32\wintrust(2)(3).dll
2012-02-29 16:10:19 ----A---- C:\WINDOWS\system32\imagehlp.dll
2012-02-29 16:10:19 ----A---- C:\WINDOWS\system32\imagehlp(2)(2).dll
2012-02-29 14:17:40 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2012-02-23 21:43:27 ----RD---- C:\Program Files\Skype
2012-02-23 21:43:21 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2012-02-20 14:12:43 ----D---- C:\WINDOWS\system
2012-02-10 05:17:58 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2012-02-10 05:17:58 ----A---- C:\WINDOWS\system32\nvrsde.dll
2012-02-10 05:17:57 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2012-02-10 05:17:57 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2012-02-10 05:17:57 ----A---- C:\WINDOWS\system32\nvrsda.dll
2012-02-10 05:17:56 ----A---- C:\WINDOWS\system32\nvrspl.dll
2012-02-10 05:17:56 ----A---- C:\WINDOWS\system32\nvrsko.dll
2012-02-10 05:17:56 ----A---- C:\WINDOWS\system32\nvrseng.dll
2012-02-10 05:17:55 ----A---- C:\WINDOWS\system32\nvrspt.dll
2012-02-10 05:17:54 ----A---- C:\WINDOWS\system32\nvrszht.dll
2012-02-10 05:17:54 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2012-02-10 05:17:54 ----A---- C:\WINDOWS\system32\nvrshe.dll
2012-02-10 05:17:54 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2012-02-10 05:17:53 ----A---- C:\WINDOWS\system32\nvrsno.dll
2012-02-10 05:17:53 ----A---- C:\WINDOWS\system32\nvrshu.dll
2012-02-10 05:17:52 ----A---- C:\WINDOWS\system32\nvrsth.dll
2012-02-10 05:17:52 ----A---- C:\WINDOWS\system32\nvrssv.dll
2012-02-10 05:17:52 ----A---- C:\WINDOWS\system32\nvrsja.dll
2012-02-10 05:17:52 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2012-02-10 05:17:52 ----A---- C:\WINDOWS\system32\nvrsar.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrstr.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrssl.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrsru.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrsit.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrses.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrsel.dll
2012-02-10 05:17:51 ----A---- C:\WINDOWS\system32\nvrscs.dll
2012-02-10 05:17:50 ----A---- C:\WINDOWS\system32\nvrssk.dll
2012-02-10 05:04:29 ----A---- C:\WINDOWS\system32\nvwddi.dll
2012-02-10 05:04:21 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2012-02-10 05:04:21 ----A---- C:\WINDOWS\system32\nvcolor.exe
2012-02-10 05:04:20 ----A---- C:\WINDOWS\system32\nvcpl.dll
2012-02-10 05:04:19 ----A---- C:\WINDOWS\system32\nvmctray.dll
2012-02-06 19:05:58 ----A---- C:\WINDOWS\DUMP4565.tmp
2012-02-03 22:30:37 ----D---- C:\Program Files\Analog Devices

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-21 105344]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-03-07 24920]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 43008]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-03-07 35672]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-03-30 242240]
R1 NVTCP;NVIDIA TCP/IP Protocol Driver; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [2006-09-11 110592]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-03-07 95704]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-01-16 293888]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-02-10 13415040]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-11 19968]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-01-24 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-01-24 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-01-24 21568]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-09-11 172032]
R2 ForcewareWebInterface;Forceware Web Interface; C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-13 20543]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2012-03-07 153376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 nSvcIp;ForceWare IP service; C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcIp.exe [2006-09-11 135227]
R2 nSvcLog;ForceWare user log service; C:\PROGRA~1\NVIDIA~1\NetworkAccessManager\bin\nSvcLog.exe [2006-09-11 65599]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2012-02-10 164160]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-30 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-15 158856]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-30 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2012-01-05 4553768]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: zpomaleny pc

Napsal: 02 kvě 2012 19:46
od Rudy
Zdravím!
Poprosím o log ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Re: zpomaleny pc

Napsal: 02 kvě 2012 20:43
od messi111
ComboFix 12-05-02.03 - Vlada 02.05.2012 21:35:13.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3582.3116 [GMT 2:00]
Spuštěný z: c:\documents and settings\TEMP\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\_000007_.tmp.dll
c:\windows\system32\Cache
c:\windows\system32\OLD4B.tmp
c:\windows\system32\SET17F.tmp
c:\windows\system32\SET1DF.tmp
c:\windows\system32\SET1E1.tmp
c:\windows\system32\SET1F0.tmp
c:\windows\system32\SET1F2.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-04-02 do 2012-05-02 )))))))))))))))))))))))))))))))
.
.
2012-05-02 19:23 . 2012-05-02 19:23 -------- d-----w- c:\documents and settings\TEMP
2012-05-02 18:02 . 2012-05-02 18:02 -------- d-----w- c:\program files\trend micro
2012-05-02 18:00 . 2012-05-02 18:00 -------- d-----w- c:\program files\ESET
2012-05-02 17:54 . 2012-03-06 23:03 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-05-02 17:54 . 2012-03-06 23:03 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-05-02 17:54 . 2012-03-06 23:02 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-05-02 17:54 . 2012-03-06 23:01 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-05-02 17:54 . 2012-03-06 23:01 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-05-02 17:54 . 2012-03-06 23:01 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-05-02 17:54 . 2012-03-06 23:01 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-05-02 17:54 . 2012-03-06 22:58 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-05-02 17:54 . 2012-03-06 23:15 41184 ----a-w- c:\windows\avastSS.scr
2012-05-02 17:54 . 2012-03-06 23:15 201352 ----a-w- c:\windows\system32\aswBoot.exe
2012-05-02 17:54 . 2012-05-02 17:54 -------- d-----w- c:\program files\AVAST Software
2012-05-02 17:54 . 2012-05-02 17:54 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\AVAST Software
2012-05-02 17:51 . 2012-05-02 17:51 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-05-02 17:51 . 2012-05-02 17:51 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2012-05-02 17:31 . 2012-05-02 17:31 -------- d-----w- c:\program files\CCleaner
2012-05-02 13:59 . 2008-04-14 12:00 221184 ----a-w- c:\windows\system32\wmpns.dll
2012-05-01 19:48 . 2012-05-01 19:48 -------- d-----w- c:\windows\system32\wbem\Repository
2012-04-28 16:47 . 2012-04-28 16:47 -------- d-----w- c:\program files\Samsung
2012-04-28 09:32 . 2012-05-01 19:45 -------- d-----w- c:\program files\Counter-Strike 1.6 Standalone
2012-04-28 09:19 . 2012-05-01 19:48 -------- d-----w- c:\program files\Valve
2012-04-13 15:05 . 2012-05-02 16:57 6444 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2012-04-05 09:25 . 2012-04-05 09:25 -------- d-----w- c:\program files\EA GAMES
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-30 12:07 . 2012-03-30 12:07 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-03-07 15:00 . 2012-03-07 15:00 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-03-07 15:00 . 2012-03-07 14:58 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-03-02 03:59 . 2009-03-08 03:39 11082752 ----a-w- c:\windows\system32\ieframe(2).dll
2012-03-02 03:59 . 2009-03-08 03:39 11082752 ----a-w- c:\windows\system32\ieframe(2)(2).dll
2012-03-01 10:59 . 2009-03-08 03:32 2000384 ----a-w- c:\windows\system32\iertutil(2).dll
2012-03-01 10:59 . 2009-03-08 03:32 2000384 ----a-w- c:\windows\system32\iertutil(2)(2).dll
2012-03-01 10:59 . 2008-04-14 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-03-01 10:59 . 2008-04-14 12:00 916992 ----a-w- c:\windows\system32\wininet(2).dll
2012-03-01 10:59 . 2008-04-14 12:00 916992 ----a-w- c:\windows\system32\wininet(2)(3).dll
2012-03-01 10:59 . 2008-04-14 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-03-01 10:59 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-03-01 10:59 . 2008-04-14 12:00 1212416 ----a-w- c:\windows\system32\urlmon(2).dll
2012-03-01 10:59 . 2008-04-14 12:00 1212416 ----a-w- c:\windows\system32\urlmon(2)(3).dll
2012-03-01 10:59 . 2008-04-14 12:00 105984 ----a-w- c:\windows\system32\url(2).dll
2012-03-01 10:59 . 2008-04-14 12:00 105984 ----a-w- c:\windows\system32\url(2)(3).dll
2012-02-29 14:10 . 2008-04-14 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10 . 2008-04-14 12:00 177664 ----a-w- c:\windows\system32\wintrust(2).dll
2012-02-29 14:10 . 2008-04-14 12:00 177664 ----a-w- c:\windows\system32\wintrust(2)(3).dll
2012-02-29 14:10 . 2008-04-14 12:00 148480 ----a-w- c:\windows\system32\imagehlp.dll
2012-02-29 14:10 . 2008-04-14 12:00 148480 ----a-w- c:\windows\system32\imagehlp(2)(2).dll
2012-02-29 12:17 . 2008-04-14 12:00 385024 ------w- c:\windows\system32\html.iec
2012-02-10 04:10 . 2012-03-07 14:44 5918720 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:10 . 2012-03-07 14:44 2522944 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:10 . 2012-03-07 14:44 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:10 . 2012-03-07 14:44 18620416 ----a-w- c:\windows\system32\nvoglnt.dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi(6).dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi(5).dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi(4).dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi(3).dll
2012-02-10 04:10 . 2012-03-07 14:44 2292224 ----a-w- c:\windows\system32\nvapi(2).dll
2012-02-10 04:10 . 2012-03-07 14:44 17534976 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:10 . 2012-03-07 14:44 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:10 . 2012-03-07 14:44 4309760 ----a-w- c:\windows\system32\nv4_disp.dll
2012-02-10 04:10 . 2012-03-07 14:44 13415040 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-02-10 03:17 . 2012-01-19 17:12 278528 ----a-w- c:\windows\system32\nvrsde.dll
2012-02-10 03:17 . 2012-01-19 17:12 249856 ----a-w- c:\windows\system32\nvrsfi.dll
2012-02-10 03:17 . 2012-01-19 17:12 274432 ----a-w- c:\windows\system32\nvrsnl.dll
2012-02-10 03:17 . 2012-01-19 17:12 253952 ----a-w- c:\windows\system32\nvrsda.dll
2012-02-10 03:17 . 2012-01-19 17:12 229376 ----a-w- c:\windows\system32\nvrszhc.dll
2012-02-10 03:17 . 2012-01-19 17:12 266240 ----a-w- c:\windows\system32\nvrsko.dll
2012-02-10 03:17 . 2012-01-19 17:12 258048 ----a-w- c:\windows\system32\nvrspl.dll
2012-02-10 03:17 . 2012-01-19 17:12 249856 ----a-w- c:\windows\system32\nvrseng.dll
2012-02-10 03:17 . 2012-01-19 17:12 274432 ----a-w- c:\windows\system32\nvrspt.dll
2012-02-10 03:17 . 2012-01-19 17:12 335872 ----a-w- c:\windows\system32\nvrshe.dll
2012-02-10 03:17 . 2012-01-19 17:12 286720 ----a-w- c:\windows\system32\nvrsfr.dll
2012-02-10 03:17 . 2012-01-19 17:12 270336 ----a-w- c:\windows\system32\nvrsptb.dll
2012-02-10 03:17 . 2012-01-19 17:12 126976 ----a-w- c:\windows\system32\nvrszht.dll
2012-02-10 03:17 . 2012-01-19 17:12 262144 ----a-w- c:\windows\system32\nvrshu.dll
2012-02-10 03:17 . 2012-01-19 17:12 253952 ----a-w- c:\windows\system32\nvrsno.dll
2012-02-10 03:17 . 2012-01-19 17:12 335872 ----a-w- c:\windows\system32\nvrsar.dll
2012-02-10 03:17 . 2012-01-19 17:12 274432 ----a-w- c:\windows\system32\nvrsja.dll
2012-02-10 03:17 . 2012-01-19 17:12 274432 ----a-w- c:\windows\system32\nvrsesm.dll
2012-02-10 03:17 . 2012-01-19 17:12 253952 ----a-w- c:\windows\system32\nvrsth.dll
2012-02-10 03:17 . 2012-01-19 17:12 253952 ----a-w- c:\windows\system32\nvrssv.dll
2012-02-10 03:17 . 2012-01-19 17:12 282624 ----a-w- c:\windows\system32\nvrsit.dll
2012-02-10 03:17 . 2012-01-19 17:12 282624 ----a-w- c:\windows\system32\nvrses.dll
2012-02-10 03:17 . 2012-01-19 17:12 282624 ----a-w- c:\windows\system32\nvrsel.dll
2012-02-10 03:17 . 2012-01-19 17:12 270336 ----a-w- c:\windows\system32\nvrsru.dll
2012-02-10 03:17 . 2012-01-19 17:12 258048 ----a-w- c:\windows\system32\nvrstr.dll
2012-02-10 03:17 . 2012-01-19 17:12 258048 ----a-w- c:\windows\system32\nvrssl.dll
2012-02-10 03:17 . 2012-01-19 17:12 249856 ----a-w- c:\windows\system32\nvrscs.dll
2012-02-10 03:17 . 2012-01-19 17:12 258048 ----a-w- c:\windows\system32\nvrssk.dll
2012-02-10 03:04 . 2012-01-19 17:12 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-02-10 03:04 . 2012-01-19 17:12 164160 ----a-w- c:\windows\system32\nvsvc32.exe
2012-02-10 03:04 . 2012-01-19 17:12 143680 ----a-w- c:\windows\system32\nvcolor.exe
2012-02-10 03:04 . 2012-01-19 17:12 15494464 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:04 . 2012-01-19 17:12 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-06 17:05 . 2012-01-19 16:47 90112 ----a-w- c:\windows\DUMP4565.tmp
2012-02-03 09:57 . 2008-04-14 12:00 1860096 ----a-w- c:\windows\system32\win32k.sys
2011-12-21 07:39 . 2012-01-20 17:42 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-06 23:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 868352]
"4StoryPrePatch"="c:\program files\Gameforge4D\4Story_INTL\PrePatch.exe" [2012-03-28 327680]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-03-25 49152]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-02-10 15494464]
"NvMediaCenter"="NvMCTray.dll" [2012-02-10 108352]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2012-02-10 1634112]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-06 4241512]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2.5.2012 19:54 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2.5.2012 19:54 337880]
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [19.1.2012 18:16 13696]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [30.3.2012 14:07 242240]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2.5.2012 19:54 20696]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 14:16 130384]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 13:03 974944]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [30.3.2012 14:07 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [7.3.2012 15:24 2348352]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [15.2.2012 14:30 158856]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\EagleXNt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [30.3.2012 14:07 136176]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [14.4.2008 14:00 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 14:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2012-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-30 12:07]
.
2012-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-30 12:07]
.
.
------- Doplňkový sken -------
.
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
TCP: DhcpNameServer = 10.0.0.138 10.0.0.138
FF - ProfilePath - c:\documents and settings\TEMP\Data aplikací\Mozilla\Firefox\Profiles\yr48t5m3.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver - c:\program files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL
AddRemove-{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView - c:\program files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL
AddRemove-{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX - c:\program files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL
AddRemove-{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update - c:\program files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-02 21:40
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet003\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(872)
c:\windows\system32\nvappfilter.dll
.
Celkový čas: 2012-05-02 21:42:03
ComboFix-quarantined-files.txt 2012-05-02 19:42
ComboFix2.txt 2011-11-01 20:10
ComboFix3.txt 2011-11-01 20:03
ComboFix4.txt 2011-11-01 19:34
.
Před spuštěním: Volných bajtů: 136 725 352 448
Po spuštění: Volných bajtů: 136 827 375 616
.
- - End Of File - - 3566EC8831B6874684243C0DE2695FDB

Re: zpomaleny pc

Napsal: 02 kvě 2012 21:08
od Rudy
Několik položek CF smazal, zbytek logu vypadá čistý. Nastala nějaká změna?

Re: zpomaleny pc

Napsal: 02 kvě 2012 21:11
od messi111
Prave ze ne pripada me ze je to jeste vic zasekane :(

Re: zpomaleny pc

Napsal: 02 kvě 2012 21:12
od Rudy
Co jste instaloval těsně před tím, než se problém objevil?

Re: zpomaleny pc

Napsal: 02 kvě 2012 21:16
od messi111
Ono se to nak vezlo od ty doby co jsem mel v pc FB vir cca od řina, ale nekdy to slo nekdy ne ale ted to uz nejde cca 1 mesic z5.

Re: zpomaleny pc

Napsal: 02 kvě 2012 21:23
od Rudy
Ovl. panely>hardware>správce zařízení>řadiče IDE/ATA. Rozklikněte a u jednotlivých kanálů zkontrolujte, zda je zapnutý režim DMA. Pokud ne, zapněte, uložte nastavení a restartujte PC.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz