Zpomaleny ntb

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 12 zář 2013 20:03

ComboFix 13-09-12.01 - Fifler 12.09.2013 19:36:24.7.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4091.2487 [GMT 2:00]
Spuštěný z: c:\users\Fifler\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Fifler\AppData\Roaming\poclbm
c:\users\Fifler\AppData\Roaming\poclbm\poclbm.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-12 do 2013-09-12 )))))))))))))))))))))))))))))))
.
.
2013-09-12 17:55 . 2013-09-12 17:55 -------- d-----w- c:\users\Guest\AppData\Local\temp
2013-09-12 17:55 . 2013-09-12 17:55 -------- d-----w- c:\users\Fifler\AppData\Local\temp
2013-09-12 17:55 . 2013-09-12 17:55 -------- d-----w- c:\users\etgřt\AppData\Local\temp
2013-09-12 17:55 . 2013-09-12 17:55 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2013-09-12 17:55 . 2013-09-12 17:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-12 11:55 . 2013-08-10 03:59 817664 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-09-12 11:55 . 2013-08-10 03:58 108032 ----a-w- c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2013-09-12 11:55 . 2013-08-10 05:22 1084928 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-09-12 11:55 . 2013-08-10 05:21 53248 ----a-w- c:\windows\system32\jsproxy.dll
2013-09-12 11:55 . 2013-08-10 03:59 1767936 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-12 11:55 . 2013-08-10 05:22 2241024 ----a-w- c:\windows\system32\wininet.dll
2013-09-12 11:55 . 2013-08-10 05:20 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-09-12 11:55 . 2013-08-10 05:21 19246592 ----a-w- c:\windows\system32\mshtml.dll
2013-09-11 20:22 . 2013-09-11 20:22 -------- d-----w- c:\windows\ERUNT
2013-09-11 17:48 . 2013-09-11 20:15 -------- d-----w- C:\AdwCleaner
2013-09-11 12:42 . 2013-07-26 02:24 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-09-10 11:35 . 2013-09-10 11:35 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2013-09-09 19:38 . 2013-09-10 11:26 -------- d-----w- c:\program files (x86)\Origin Games
2013-09-09 19:37 . 2013-09-09 19:38 -------- d-----w- c:\users\Fifler\AppData\Roaming\Origin
2013-09-09 19:37 . 2013-09-09 19:38 -------- d-----w- c:\users\Fifler\AppData\Local\Origin
2013-09-09 19:32 . 2013-09-10 11:37 -------- d-----w- c:\programdata\Origin
2013-09-09 19:32 . 2013-09-09 19:32 -------- d-----w- c:\programdata\Electronic Arts
2013-09-09 19:31 . 2013-09-11 07:43 -------- d-----w- c:\program files (x86)\Origin
2013-09-09 11:05 . 2013-09-09 11:05 -------- d-----w- c:\users\Fifler\AppData\Roaming\GameRanger
2013-09-08 12:23 . 2013-09-08 12:23 -------- d-----w- C:\DRIVERS
2013-09-07 08:14 . 2013-09-07 08:14 -------- d-----w- c:\users\Fifler\AppData\Local\Microsoft Research
2013-09-07 08:12 . 2013-09-07 08:12 -------- d-----w- c:\program files (x86)\Microsoft Research
2013-09-04 16:25 . 2013-09-04 16:25 -------- d-----r- c:\users\etgřt\Podcasts
2013-09-03 18:54 . 2013-09-03 18:54 -------- d-----w- c:\users\Fifler\DocumentsSoubory ICQ365519675
2013-08-30 11:31 . 2013-08-30 11:31 -------- d--h--w- c:\users\Fifler\InstallAnywhere
2013-08-29 10:43 . 2013-08-29 10:43 -------- d-----w- c:\users\Fifler\AppData\Local\Rockstar Games
2013-08-29 10:40 . 2013-08-29 10:40 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2013-08-29 10:20 . 2013-09-09 10:27 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-08-28 14:56 . 2013-08-28 14:56 -------- d-----w- c:\program files (x86)\Microsoft WSE
2013-08-27 18:16 . 2013-08-27 18:16 -------- d-----w- c:\users\Fifler\AppData\Local\IsolatedStorage
2013-08-27 17:17 . 2013-08-27 17:17 -------- d-----w- c:\programdata\Western Digital
2013-08-27 17:14 . 2013-08-30 11:43 -------- d-----w- c:\program files (x86)\Western Digital
2013-08-27 17:13 . 2013-08-27 17:13 274432 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IScrCnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 192512 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\iGdiCnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 413696 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\ISRT.dll
2013-08-27 17:13 . 2013-08-27 17:13 32768 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\objpscnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 180224 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IUserCnv.dll
2013-08-27 17:13 . 2013-08-30 11:43 548964 ----a-w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\_ISRES1033.dll
2013-08-27 17:13 . 2013-08-27 17:13 774144 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriver.exe
2013-08-23 21:03 . 2013-08-23 21:05 -------- d-----w- c:\users\Fifler\AppData\Roaming\ICQ-Profile
2013-08-23 21:03 . 2013-08-23 21:04 -------- d-----w- c:\users\Fifler\AppData\Roaming\ICQM
2013-08-23 19:21 . 2010-05-31 23:44 676864 ----a-w- c:\windows\SysWow64\mxMonecSocket.dll
2013-08-23 18:59 . 2004-03-01 11:55 561179 ----a-w- c:\windows\SysWow64\dao360.dll
2013-08-23 18:11 . 2013-08-23 22:11 -------- d-----w- c:\program files (x86)\ICQ7.5
2013-08-23 15:06 . 2013-08-23 15:06 -------- d-----w- c:\programdata\Blizzard Entertainment
2013-08-23 11:41 . 2013-08-23 16:03 -------- d-----w- C:\World of Warcraft
2013-08-23 09:31 . 2013-08-23 10:37 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment
2013-08-23 09:31 . 2013-08-23 09:31 -------- d-----w- c:\programdata\Blizzard
2013-08-22 14:31 . 2013-08-22 14:31 -------- d-----w- c:\users\Fifler\AppData\Local\EMU
2013-08-22 14:29 . 2013-08-22 14:31 -------- d-----w- c:\users\Fifler\AppData\Local\PAYDAY 2
2013-08-20 20:20 . 2013-08-21 08:21 -------- d-----w- c:\users\Fifler\AppData\Roaming\Bitcoin
2013-08-20 16:21 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{77D1742F-9360-4125-A254-7D0EC9F13A6F}\mpengine.dll
2013-08-20 07:26 . 2013-08-20 07:26 -------- d-----w- c:\users\Fifler\AppData\Roaming\FUEL
2013-08-20 07:24 . 2013-08-20 07:24 -------- d--h--r- c:\users\Fifler\AppData\Roaming\SecuROM
2013-08-20 06:40 . 2013-08-20 06:40 -------- d-----w- c:\program files (x86)\Codemasters
2013-08-20 06:24 . 2013-09-12 11:54 -------- d-----w- c:\windows\system32\MRT
2013-08-19 19:13 . 2013-07-09 04:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-19 19:13 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-19 19:13 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-12 11:49 . 2012-06-27 11:20 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-30 07:48 . 2013-06-01 12:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-06-01 12:48 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-06-01 12:48 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-06-01 12:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-06-01 12:48 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-06-01 12:48 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-06-01 12:49 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-06-01 12:48 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-06-01 12:48 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2013-06-01 12:48 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-29 08:23 . 2013-07-26 11:20 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-08-09 18:35 . 2012-11-05 14:27 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-08-09 18:35 . 2013-08-09 18:36 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2013-08-08 20:34 . 2013-07-26 11:20 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-08-08 20:34 . 2012-07-24 16:01 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-08-08 08:59 . 2012-07-24 12:40 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-08-02 01:48 . 2013-09-11 12:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-06-26 17:21 . 2013-06-26 17:21 23208 ----a-w- c:\windows\system32\drivers\Sftvollh.sys
2013-06-26 17:21 . 2013-06-26 17:21 28840 ----a-w- c:\windows\system32\drivers\Sftredirlh.sys
2013-06-26 17:21 . 2013-06-26 17:21 273576 ----a-w- c:\windows\system32\drivers\Sftplaylh.sys
2013-06-26 17:21 . 2013-06-26 17:21 1777320 ----a-w- c:\windows\system32\sftldr.dll
2013-06-26 17:21 . 2013-06-26 17:21 1130664 ----a-w- c:\windows\SysWow64\sftldr_wow64.dll
2013-06-26 17:21 . 2013-06-26 17:21 767144 ----a-w- c:\windows\system32\drivers\Sftfslh.sys
2013-06-20 07:11 . 2013-06-20 07:11 59816 ----a-r- c:\users\Fifler\AppData\Roaming\Microsoft\Installer\{47C4D20F-1A75-44F4-BF51-479C3119BEEF}\ARPPRODUCTICON.exe
2013-06-20 07:11 . 2013-06-20 07:11 59816 ----a-r- c:\users\Fifler\AppData\Roaming\Microsoft\Installer\{1D2FF661-4402-4D75-AA40-B23FCAF81D32}\ARPPRODUCTICON.exe
2013-06-19 19:26 . 2013-06-19 19:26 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-06-19 19:26 . 2013-06-19 19:26 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-06-19 19:26 . 2013-06-19 19:26 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-06-19 19:26 . 2013-06-19 19:26 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-06-19 19:26 . 2013-06-19 19:26 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-06-19 19:26 . 2013-06-19 19:26 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-06-19 19:26 . 2013-06-19 19:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-06-19 19:26 . 2013-06-19 19:26 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-06-19 19:26 . 2013-06-19 19:26 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-06-19 19:26 . 2013-06-19 19:26 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-06-19 19:26 . 2013-06-19 19:26 81408 ----a-w- c:\windows\system32\icardie.dll
2013-06-19 19:26 . 2013-06-19 19:26 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-06-19 19:26 . 2013-06-19 19:26 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-06-19 19:26 . 2013-06-19 19:26 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-06-19 19:26 . 2013-06-19 19:26 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-06-19 19:26 . 2013-06-19 19:26 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-06-19 19:26 . 2013-06-19 19:26 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-06-19 19:26 . 2013-06-19 19:26 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-06-19 19:26 . 2013-06-19 19:26 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-06-19 19:26 . 2013-06-19 19:26 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-06-19 19:26 . 2013-06-19 19:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-06-19 19:26 . 2013-06-19 19:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-06-19 19:26 . 2013-06-19 19:26 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-06-19 19:26 . 2013-06-19 19:26 441856 ----a-w- c:\windows\system32\html.iec
2013-06-19 19:26 . 2013-06-19 19:26 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-06-19 19:26 . 2013-06-19 19:26 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-06-19 19:26 . 2013-06-19 19:26 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-06-19 19:26 . 2013-06-19 19:26 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-19 19:26 . 2013-06-19 19:26 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-06-19 19:26 . 2013-06-19 19:26 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-06-19 19:26 . 2013-06-19 19:26 235008 ----a-w- c:\windows\system32\url.dll
2013-06-19 19:26 . 2013-06-19 19:26 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-06-19 19:26 . 2013-06-19 19:26 216064 ----a-w- c:\windows\system32\msls31.dll
2013-06-19 19:26 . 2013-06-19 19:26 197120 ----a-w- c:\windows\system32\msrating.dll
2013-06-19 19:26 . 2013-06-19 19:26 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-06-19 19:26 . 2013-06-19 19:26 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-06-19 19:26 . 2013-06-19 19:26 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-06-19 19:26 . 2013-06-19 19:26 149504 ----a-w- c:\windows\system32\occache.dll
2013-06-19 19:26 . 2013-06-19 19:26 144896 ----a-w- c:\windows\system32\wextract.exe
2013-06-19 19:26 . 2013-06-19 19:26 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-06-19 19:26 . 2013-06-19 19:26 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-06-19 19:26 . 2013-06-19 19:26 13824 ----a-w- c:\windows\system32\mshta.exe
2013-06-19 19:26 . 2013-06-19 19:26 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-06-19 19:26 . 2013-06-19 19:26 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-06-19 19:26 . 2013-06-19 19:26 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-06-19 19:26 . 2013-06-19 19:26 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-06-19 19:26 . 2013-06-19 19:26 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-06-19 19:26 . 2013-06-19 19:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-06-19 19:26 . 2013-06-19 19:26 102912 ----a-w- c:\windows\system32\inseng.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000002"="c:\windows\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE" [2013-02-20 283232]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableStartupSound"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe;c:\program files\BitComet\tools\BitCometService.exe [x]
R3 Bridge0;Bridge0;c:\windows\system32\drivers\WDBridge.sys;c:\windows\SYSNATIVE\drivers\WDBridge.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys;c:\windows\SYSNATIVE\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 mdf16;mdf16;c:\program files (x86)\Clarus\Samsung Drive Manager\mdf16.sys;c:\program files (x86)\Clarus\Samsung Drive Manager\mdf16.sys [x]
R3 mvd23;mvd23;c:\program files (x86)\Clarus\Samsung Drive Manager\mvd23.sys;c:\program files (x86)\Clarus\Samsung Drive Manager\mvd23.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 64bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 SZDrvSvc;Samsung Drive Manager Service;c:\program files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe;c:\program files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
R4 IGRS;IGRS;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe [x]
R4 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc;c:\program files\Lenovo\ReadyComm\AppSvc.exe;c:\program files\Lenovo\ReadyComm\AppSvc.exe [x]
R4 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc;c:\program files\Lenovo\ReadyComm\ConnSvc.exe;c:\program files\Lenovo\ReadyComm\ConnSvc.exe [x]
R4 PS_MDP;ReadyComm Presentation Space Helper Service;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R4 ReadyComm.DirectRouter;ReadyComm.DirectRouter;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R4 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
R4 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 vm331avs;Digital Camera 1;c:\windows\system32\Drivers\vm331avs.sys;c:\windows\SYSNATIVE\Drivers\vm331avs.sys [x]
S3 wdmirror;wdmirror;c:\windows\system32\DRIVERS\WDMirror.sys;c:\windows\SYSNATIVE\DRIVERS\WDMirror.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
IgrsSvcs REG_MULTI_SZ ReadyComm.DirectRouter PS_MDP
<NO NAME> REG_SZ
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-27 16:29]
.
2013-08-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-31 18:50]
.
2013-09-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA1ce4f46b86608cb.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-31 18:50]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc]
@="{771C7324-DA80-49D3-8017-753B0AF60951}"
[HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}]
2010-08-27 20:07 1502720 ----a-w- c:\windows\System32\IcnOvrly.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\utility.exe" [2010-04-12 4462496]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SYSTEM32\blank.htm
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/cse?cx=partner-pu ... =Search&q=%s
mSearchAssistant = hxxp://google.inklineglobal.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout odkaz s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files (x86)\ICQ7.5\ICQ.exe
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.6.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2783363877-66151871-397091110-1000\Software\SecuROM\License information*]
"datasecu"=hex:30,98,bd,f3,6b,54,4e,a8,7e,9e,7a,0d,b2,f7,13,c9,39,0a,1e,40,c8,
fc,66,d0,c2,e6,a6,ff,e4,c1,54,9e,6e,da,5b,38,50,82,23,ca,f5,a3,29,fd,69,56,\
"rkeysecu"=hex:54,b7,3b,14,0a,96,db,bb,c1,b2,02,17,7a,59,d6,84
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
Celkový čas: 2013-09-12 20:02:59
ComboFix-quarantined-files.txt 2013-09-12 18:02
ComboFix2.txt 2013-08-05 10:26
.
Před spuštěním: Volných bajtů: 192 018 399 232
Po spuštění: Volných bajtů: 191 560 556 544
.
- - End Of File - - 4324A8F27EA71FB4A08B9085CD0E7274
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Reklama
Top
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod jaro3 » 12 zář 2013 22:12

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
KillAll::
File::
c:\windows\system32\drivers\avgtpx64.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA1ce4f46b86608cb.job

Folder::
c:\program files (x86)\Google\Update

Driver::
avgtp

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 13 zář 2013 14:26

ComboFix 13-09-12.01 - Fifler 13.09.2013 13:53:52.8.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4091.2385 [GMT 2:00]
Spuštěný z: c:\users\Fifler\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Fifler\Desktop\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\drivers\avgtpx64.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA1ce4f46b86608cb.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.153\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.21.153\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.153\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.153\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.153\psuser.dll
c:\program files (x86)\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\0.0.0.0\gsync.msi
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.153\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\7.1.1.1888\GoogleEarth-Win-Bundle-7.1.1.1888.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\windows\system32\drivers\avgtpx64.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA1ce4f46b86608cb.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_AVGTP
-------\Service_avgtp
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-13 do 2013-09-13 )))))))))))))))))))))))))))))))
.
.
2013-09-13 12:12 . 2013-09-13 12:12 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-09-13 12:12 . 2013-09-13 12:12 -------- d-----w- c:\users\Guest\AppData\Local\temp
2013-09-13 12:12 . 2013-09-13 12:12 -------- d-----w- c:\users\etgřt\AppData\Local\temp
2013-09-13 12:12 . 2013-09-13 12:12 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2013-09-13 12:12 . 2013-09-13 12:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-12 19:03 . 2013-09-12 19:03 -------- d-----w- c:\users\Fifler\AppData\Local\Adobe
2013-09-12 18:03 . 2013-09-13 12:16 -------- d-----w- c:\users\Fifler\AppData\Local\temp
2013-09-12 11:55 . 2013-08-10 03:59 817664 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-09-12 11:55 . 2013-08-10 03:58 108032 ----a-w- c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2013-09-12 11:55 . 2013-08-10 05:22 1084928 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-09-12 11:55 . 2013-08-10 05:21 53248 ----a-w- c:\windows\system32\jsproxy.dll
2013-09-12 11:55 . 2013-08-10 03:59 1767936 ----a-w- c:\windows\SysWow64\wininet.dll
2013-09-12 11:55 . 2013-08-10 05:22 2241024 ----a-w- c:\windows\system32\wininet.dll
2013-09-12 11:55 . 2013-08-10 05:20 15404544 ----a-w- c:\windows\system32\ieframe.dll
2013-09-12 11:55 . 2013-08-10 05:21 19246592 ----a-w- c:\windows\system32\mshtml.dll
2013-09-11 20:22 . 2013-09-11 20:22 -------- d-----w- c:\windows\ERUNT
2013-09-11 17:48 . 2013-09-11 20:15 -------- d-----w- C:\AdwCleaner
2013-09-11 12:42 . 2013-07-26 02:24 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-09-10 11:35 . 2013-09-10 11:35 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2013-09-09 19:38 . 2013-09-10 11:26 -------- d-----w- c:\program files (x86)\Origin Games
2013-09-09 19:37 . 2013-09-09 19:38 -------- d-----w- c:\users\Fifler\AppData\Roaming\Origin
2013-09-09 19:37 . 2013-09-09 19:38 -------- d-----w- c:\users\Fifler\AppData\Local\Origin
2013-09-09 19:32 . 2013-09-10 11:37 -------- d-----w- c:\programdata\Origin
2013-09-09 19:32 . 2013-09-09 19:32 -------- d-----w- c:\programdata\Electronic Arts
2013-09-09 19:31 . 2013-09-11 07:43 -------- d-----w- c:\program files (x86)\Origin
2013-09-09 11:05 . 2013-09-09 11:05 -------- d-----w- c:\users\Fifler\AppData\Roaming\GameRanger
2013-09-08 12:23 . 2013-09-08 12:23 -------- d-----w- C:\DRIVERS
2013-09-07 08:14 . 2013-09-07 08:14 -------- d-----w- c:\users\Fifler\AppData\Local\Microsoft Research
2013-09-07 08:12 . 2013-09-07 08:12 -------- d-----w- c:\program files (x86)\Microsoft Research
2013-09-04 16:25 . 2013-09-04 16:25 -------- d-----r- c:\users\etgřt\Podcasts
2013-09-03 18:54 . 2013-09-03 18:54 -------- d-----w- c:\users\Fifler\DocumentsSoubory ICQ365519675
2013-08-30 11:31 . 2013-08-30 11:31 -------- d--h--w- c:\users\Fifler\InstallAnywhere
2013-08-29 10:43 . 2013-08-29 10:43 -------- d-----w- c:\users\Fifler\AppData\Local\Rockstar Games
2013-08-29 10:40 . 2013-08-29 10:40 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2013-08-29 10:20 . 2013-09-09 10:27 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-08-28 14:56 . 2013-08-28 14:56 -------- d-----w- c:\program files (x86)\Microsoft WSE
2013-08-27 18:16 . 2013-08-27 18:16 -------- d-----w- c:\users\Fifler\AppData\Local\IsolatedStorage
2013-08-27 17:17 . 2013-08-27 17:17 -------- d-----w- c:\programdata\Western Digital
2013-08-27 17:14 . 2013-08-30 11:43 -------- d-----w- c:\program files (x86)\Western Digital
2013-08-27 17:13 . 2013-08-27 17:13 274432 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IScrCnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 192512 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\iGdiCnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 413696 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\ISRT.dll
2013-08-27 17:13 . 2013-08-27 17:13 32768 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\objpscnv.dll
2013-08-27 17:13 . 2013-08-27 17:13 180224 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IUserCnv.dll
2013-08-27 17:13 . 2013-08-30 11:43 548964 ----a-w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\_ISRES1033.dll
2013-08-27 17:13 . 2013-08-27 17:13 774144 ------w- c:\program files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriver.exe
2013-08-23 21:03 . 2013-08-23 21:05 -------- d-----w- c:\users\Fifler\AppData\Roaming\ICQ-Profile
2013-08-23 21:03 . 2013-08-23 21:04 -------- d-----w- c:\users\Fifler\AppData\Roaming\ICQM
2013-08-23 19:21 . 2010-05-31 23:44 676864 ----a-w- c:\windows\SysWow64\mxMonecSocket.dll
2013-08-23 18:59 . 2004-03-01 11:55 561179 ----a-w- c:\windows\SysWow64\dao360.dll
2013-08-23 18:11 . 2013-08-23 22:11 -------- d-----w- c:\program files (x86)\ICQ7.5
2013-08-23 15:06 . 2013-08-23 15:06 -------- d-----w- c:\programdata\Blizzard Entertainment
2013-08-23 11:41 . 2013-08-23 16:03 -------- d-----w- C:\World of Warcraft
2013-08-23 09:31 . 2013-08-23 10:37 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment
2013-08-23 09:31 . 2013-08-23 09:31 -------- d-----w- c:\programdata\Blizzard
2013-08-22 14:31 . 2013-08-22 14:31 -------- d-----w- c:\users\Fifler\AppData\Local\EMU
2013-08-22 14:29 . 2013-08-22 14:31 -------- d-----w- c:\users\Fifler\AppData\Local\PAYDAY 2
2013-08-20 20:20 . 2013-08-21 08:21 -------- d-----w- c:\users\Fifler\AppData\Roaming\Bitcoin
2013-08-20 16:21 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{77D1742F-9360-4125-A254-7D0EC9F13A6F}\mpengine.dll
2013-08-20 07:26 . 2013-08-20 07:26 -------- d-----w- c:\users\Fifler\AppData\Roaming\FUEL
2013-08-20 07:24 . 2013-08-20 07:24 -------- d--h--r- c:\users\Fifler\AppData\Roaming\SecuROM
2013-08-20 06:40 . 2013-08-20 06:40 -------- d-----w- c:\program files (x86)\Codemasters
2013-08-20 06:24 . 2013-09-12 11:54 -------- d-----w- c:\windows\system32\MRT
2013-08-19 19:13 . 2013-07-09 04:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-19 19:13 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-19 19:13 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-12 11:49 . 2012-06-27 11:20 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-30 07:48 . 2013-06-01 12:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-06-01 12:48 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-06-01 12:48 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-06-01 12:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-06-01 12:48 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-06-01 12:48 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-06-01 12:49 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-06-01 12:48 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-06-01 12:48 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2013-06-01 12:48 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-29 08:23 . 2013-07-26 11:20 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-08-09 18:35 . 2012-11-05 14:27 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-08-08 20:34 . 2013-07-26 11:20 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-08-08 20:34 . 2012-07-24 16:01 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-08-08 08:59 . 2012-07-24 12:40 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-08-02 01:48 . 2013-09-11 12:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-06-26 17:21 . 2013-06-26 17:21 23208 ----a-w- c:\windows\system32\drivers\Sftvollh.sys
2013-06-26 17:21 . 2013-06-26 17:21 28840 ----a-w- c:\windows\system32\drivers\Sftredirlh.sys
2013-06-26 17:21 . 2013-06-26 17:21 273576 ----a-w- c:\windows\system32\drivers\Sftplaylh.sys
2013-06-26 17:21 . 2013-06-26 17:21 1777320 ----a-w- c:\windows\system32\sftldr.dll
2013-06-26 17:21 . 2013-06-26 17:21 1130664 ----a-w- c:\windows\SysWow64\sftldr_wow64.dll
2013-06-26 17:21 . 2013-06-26 17:21 767144 ----a-w- c:\windows\system32\drivers\Sftfslh.sys
2013-06-20 07:11 . 2013-06-20 07:11 59816 ----a-r- c:\users\Fifler\AppData\Roaming\Microsoft\Installer\{47C4D20F-1A75-44F4-BF51-479C3119BEEF}\ARPPRODUCTICON.exe
2013-06-20 07:11 . 2013-06-20 07:11 59816 ----a-r- c:\users\Fifler\AppData\Roaming\Microsoft\Installer\{1D2FF661-4402-4D75-AA40-B23FCAF81D32}\ARPPRODUCTICON.exe
2013-06-19 19:26 . 2013-06-19 19:26 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-06-19 19:26 . 2013-06-19 19:26 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-06-19 19:26 . 2013-06-19 19:26 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-06-19 19:26 . 2013-06-19 19:26 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-06-19 19:26 . 2013-06-19 19:26 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-06-19 19:26 . 2013-06-19 19:26 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-06-19 19:26 . 2013-06-19 19:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-06-19 19:26 . 2013-06-19 19:26 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-06-19 19:26 . 2013-06-19 19:26 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-06-19 19:26 . 2013-06-19 19:26 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-06-19 19:26 . 2013-06-19 19:26 81408 ----a-w- c:\windows\system32\icardie.dll
2013-06-19 19:26 . 2013-06-19 19:26 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-06-19 19:26 . 2013-06-19 19:26 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-06-19 19:26 . 2013-06-19 19:26 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-06-19 19:26 . 2013-06-19 19:26 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-06-19 19:26 . 2013-06-19 19:26 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-06-19 19:26 . 2013-06-19 19:26 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-06-19 19:26 . 2013-06-19 19:26 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-06-19 19:26 . 2013-06-19 19:26 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-06-19 19:26 . 2013-06-19 19:26 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-06-19 19:26 . 2013-06-19 19:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-06-19 19:26 . 2013-06-19 19:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-06-19 19:26 . 2013-06-19 19:26 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-06-19 19:26 . 2013-06-19 19:26 441856 ----a-w- c:\windows\system32\html.iec
2013-06-19 19:26 . 2013-06-19 19:26 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-06-19 19:26 . 2013-06-19 19:26 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-06-19 19:26 . 2013-06-19 19:26 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-06-19 19:26 . 2013-06-19 19:26 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-19 19:26 . 2013-06-19 19:26 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-06-19 19:26 . 2013-06-19 19:26 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-06-19 19:26 . 2013-06-19 19:26 235008 ----a-w- c:\windows\system32\url.dll
2013-06-19 19:26 . 2013-06-19 19:26 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-06-19 19:26 . 2013-06-19 19:26 216064 ----a-w- c:\windows\system32\msls31.dll
2013-06-19 19:26 . 2013-06-19 19:26 197120 ----a-w- c:\windows\system32\msrating.dll
2013-06-19 19:26 . 2013-06-19 19:26 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-06-19 19:26 . 2013-06-19 19:26 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-06-19 19:26 . 2013-06-19 19:26 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-06-19 19:26 . 2013-06-19 19:26 149504 ----a-w- c:\windows\system32\occache.dll
2013-06-19 19:26 . 2013-06-19 19:26 144896 ----a-w- c:\windows\system32\wextract.exe
2013-06-19 19:26 . 2013-06-19 19:26 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-06-19 19:26 . 2013-06-19 19:26 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-06-19 19:26 . 2013-06-19 19:26 13824 ----a-w- c:\windows\system32\mshta.exe
2013-06-19 19:26 . 2013-06-19 19:26 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-06-19 19:26 . 2013-06-19 19:26 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-06-19 19:26 . 2013-06-19 19:26 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-06-19 19:26 . 2013-06-19 19:26 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-06-19 19:26 . 2013-06-19 19:26 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-06-19 19:26 . 2013-06-19 19:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-06-19 19:26 . 2013-06-19 19:26 102912 ----a-w- c:\windows\system32\inseng.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000002"="c:\windows\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE" [2013-02-20 283232]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableStartupSound"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe;c:\program files\BitComet\tools\BitCometService.exe [x]
R3 Bridge0;Bridge0;c:\windows\system32\drivers\WDBridge.sys;c:\windows\SYSNATIVE\drivers\WDBridge.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys;c:\windows\SYSNATIVE\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 mdf16;mdf16;c:\program files (x86)\Clarus\Samsung Drive Manager\mdf16.sys;c:\program files (x86)\Clarus\Samsung Drive Manager\mdf16.sys [x]
R3 mvd23;mvd23;c:\program files (x86)\Clarus\Samsung Drive Manager\mvd23.sys;c:\program files (x86)\Clarus\Samsung Drive Manager\mvd23.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 64bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 SZDrvSvc;Samsung Drive Manager Service;c:\program files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe;c:\program files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 IGRS;IGRS;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe;c:\program files (x86)\Lenovo\ReadyComm\common\IGRS.exe [x]
R4 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc;c:\program files\Lenovo\ReadyComm\AppSvc.exe;c:\program files\Lenovo\ReadyComm\AppSvc.exe [x]
R4 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc;c:\program files\Lenovo\ReadyComm\ConnSvc.exe;c:\program files\Lenovo\ReadyComm\ConnSvc.exe [x]
R4 PS_MDP;ReadyComm Presentation Space Helper Service;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R4 ReadyComm.DirectRouter;ReadyComm.DirectRouter;c:\windows\System32\IgrsSvcs.exe;c:\windows\SYSNATIVE\IgrsSvcs.exe [x]
R4 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
R4 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 vm331avs;Digital Camera 1;c:\windows\system32\Drivers\vm331avs.sys;c:\windows\SYSNATIVE\Drivers\vm331avs.sys [x]
S3 wdmirror;wdmirror;c:\windows\system32\DRIVERS\WDMirror.sys;c:\windows\SYSNATIVE\DRIVERS\WDMirror.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
IgrsSvcs REG_MULTI_SZ ReadyComm.DirectRouter PS_MDP
<NO NAME> REG_SZ
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-27 16:29]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc]
@="{771C7324-DA80-49D3-8017-753B0AF60951}"
[HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}]
2010-08-27 20:07 1502720 ----a-w- c:\windows\System32\IcnOvrly.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\utility.exe" [2010-04-12 4462496]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SYSTEM32\blank.htm
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/cse?cx=partner-pu ... =Search&q=%s
mSearchAssistant = hxxp://google.inklineglobal.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout odkaz s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files (x86)\ICQ7.5\ICQ.exe
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.6.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2783363877-66151871-397091110-1000\Software\SecuROM\License information*]
"datasecu"=hex:30,98,bd,f3,6b,54,4e,a8,7e,9e,7a,0d,b2,f7,13,c9,39,0a,1e,40,c8,
fc,66,d0,c2,e6,a6,ff,e4,c1,54,9e,6e,da,5b,38,50,82,23,ca,f5,a3,29,fd,69,56,\
"rkeysecu"=hex:54,b7,3b,14,0a,96,db,bb,c1,b2,02,17,7a,59,d6,84
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
.
**************************************************************************
.
Celkový čas: 2013-09-13 14:25:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-13 12:25
ComboFix2.txt 2013-09-12 18:03
ComboFix3.txt 2013-08-05 10:26
.
Před spuštěním: Volných bajtů: 191 381 684 224
Po spuštění: Volných bajtů: 191 497 072 640
.
- - End Of File - - 844280DEFD770EC5E57B5E044772E9DD
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 13 zář 2013 14:57

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-09-13 14:28:40
-----------------------------
14:28:40.610 OS Version: Windows x64 6.1.7601 Service Pack 1
14:28:40.610 Number of processors: 4 586 0x503
14:28:40.610 ComputerName: FIFLER UserName: Fifler
14:28:45.118 Initialize success
14:28:45.383 AVAST engine defs: 13091301
14:28:50.406 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
14:28:50.406 Disk 0 Vendor: WDC_WD5000BEVT-24A0RT0 01.01A02 Size: 476940MB BusType: 11
14:28:50.453 Disk 0 MBR read successfully
14:28:50.469 Disk 0 MBR scan
14:28:50.469 Disk 0 Windows 7 default MBR code
14:28:50.469 Disk 0 Partition 1 00 17 Hidd HPFS/NTFS NTFS 200 MB offset 2048
14:28:50.500 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 431938 MB offset 411648
14:28:50.531 Disk 0 Partition 3 80 (A) 12 Compaq diag NTFS 15109 MB offset 945829888
14:28:50.547 Disk 0 Partition - 00 0F Extended LBA 29691 MB offset 885022657
14:28:50.562 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 29691 MB offset 885022720
14:28:50.609 Disk 0 scanning C:\Windows\system32\drivers
14:29:02.153 Service scanning
14:29:34.445 Modules scanning
14:29:34.461 Disk 0 trace - called modules:
14:29:34.492 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80036a42c0]<<sptd.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
14:29:34.492 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004755790]
14:29:34.508 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80046a9680]
14:29:34.523 \Driver\atapi[0xfffffa800446c060] -> IRP_MJ_CREATE -> 0xfffffa80036a42c0
14:29:37.331 AVAST engine scan C:\Windows
14:29:49.822 AVAST engine scan C:\Windows\system32
14:33:33.981 AVAST engine scan C:\Windows\system32\drivers
14:33:55.943 AVAST engine scan C:\Users\Fifler
14:51:29.230 AVAST engine scan C:\ProgramData
14:53:34.417 Scan finished successfully
14:57:24.305 Disk 0 MBR has been saved successfully to "C:\Users\Fifler\Desktop\MBR.dat"
14:57:24.325 The log file has been saved successfully to "C:\Users\Fifler\Desktop\aswMBR.txt"
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod memphisto » 13 zář 2013 18:35

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

+ Nový log z HJT

Jak se chová PC?
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 13 zář 2013 21:46

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:39:25, on 13.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\Users\Fifler\Desktop\hijackthis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://google.inklineglobal.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EPLTarget\P0000000000000002] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE /EPT "EPLTarget\P0000000000000002" /M "Epson Stylus SX440"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Fifler\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Fifler\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - http://www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Epson Printer Status Agent4 (StatusAgent4) - SEIKO EPSON CORPORATION - C:\windows\SysWOW64\SAgent4.exe
O23 - Service: Samsung Drive Manager Service (SZDrvSvc) - Clarus, Inc. - C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 8788 bytes




NTB je o něco rychlejší
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod memphisto » 13 zář 2013 23:00

V logu fixni:
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://google.inklineglobal.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)

Pokud nejsou problémy, tak poprosím zelenou fajku
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 16 zář 2013 17:05

pocitac nefunguje porad tak jak ma porad je pomaly
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod memphisto » 16 zář 2013 17:14

Napiš konfiguraci

Dej sem log z programu CrystalDiskInfo
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 16 zář 2013 17:20

Notebook - AMD Phenom II Quad-Core N930, 15.6" LED 1366x768 lesklý, RAM 4GB, ATI Radeon HD5470 1GB, HDD 500GB 5400 otáček, DVD, WiFi, BlueTooth, Webkamera, HDMI, Windows 7 Home Premium 64-bit
seka se mi i NHL 09 hra ktera se mi nikdy nesekala, hraji jen obcas takze nevim presne od kdy se seka

----------------------------------------------------------------------------
CrystalDiskInfo 5.6.2 Shizuku Edition (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2013/09/16 17:20:01

-- Controller Map ----------------------------------------------------------
- ATA Channel 2 (2) [ATA]
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
+ ATA Channel 0 (0)
- WDC WD5000BEVT-24A0RT0 ATA Device
+ ATA Channel 1 (1)
- Optiarc DVD RW AD-7585H ATA Device
- ATA Channel 2 (2)
+ AJ9A74RI IDE Controller [SCSI]
- ZITC L63CTY7 SCSI CdRom Device
+ A5LIEQ8N IDE Controller [SCSI]
- GRM MRCP6NC16F SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000BEVT-24A0RT0 : 500,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000BEVT-24A0RT0
----------------------------------------------------------------------------
Model : WDC WD5000BEVT-24A0RT0
Firmware : 01.01A02
Serial Number : WD-WXM1E60HL582
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 5490 hod.
Power On Count : 5279 krát
Temparature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 187 183 _21 000000000661 Čas na roztočení ploten
04 _95 _95 __0 000000001538 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _93 _93 __0 000000001572 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _95 _95 __0 00000000149F Počet cyklů zapnutí zařízení
C0 200 200 __0 0000000000BD Počet vypnutí disku
C1 186 186 __0 00000000A6D6 Počet cyklů načítání/vymazání
C2 109 _85 __0 000000000026 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4D31 4536 3048 4C35 3832
020: 0000 4000 0032 3031 2E30 3141 3032 5744 4320 5744
030: 3530 3030 4245 5654 2D32 3441 3052 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0107 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 0040
080: 01FE 0000 746B 7F09 6163 7469 BC09 6163 007F 0041
090: 0041 0080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5001 4EE6
110: AB01 44B1 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16D3 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 02A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 BB B7 61 06 00 00 00 00 00 04 32 00 5F 5F 38
020: 15 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 5D 5D 72 15 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 5F 5F 9F 14 00 00 00 00 00 C0 32
070: 00 C8 C8 BD 00 00 00 00 00 00 C1 32 00 BA BA D6
080: A6 00 00 00 00 00 C2 22 00 6D 55 26 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 EC 31 01 7B
170: 03 00 01 00 02 95 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 10

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 64 64 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 33 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A7
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod memphisto » 16 zář 2013 17:32

Změř těploty pomocí HWMonitoru a dodej screen. Případně použij Orthos abys zatížil CPU a pak po 10 minutách v zátěži udělej screen z HWM
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Fifler
Level 2
Level 2
Příspěvky: 162
Registrován: květen 12
Pohlaví: Muž
Stav:
Offline

Re: Zpomaleny ntb

Příspěvekod Fifler » 16 zář 2013 17:39

tady je ten screen po 5 minutach v orthos
Přílohy
Bez názvu.jpg
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 70 hostů