Komputer wolniej chodzi prosze o sprawdzenie logów


(Pinio150) #1

Prosze o sprawdzenie logów. Może mi sie wydaje ale komp troche wolno chodzi. Oto logi:

Logfile of Trend Micro HijackThis v2.0.0 (BETA)

Scan saved at 21:20, on 07-06-10

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

Boot mode: Normal


Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\devldr32.exe

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Opera\Opera.exe

C:\Documents and Settings\Szymon\Pulpit\Programy\HiJackThis_v2.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = L1cza

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [kis] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKCU\..\Run: [AQQ] C:\PROGRA~1\WapSter\AQQ\AQQ.exe

O4 - HKCU\..\RunServices: [_Safelock_] c:\docume~1\szymon\pulpit\safelock\safelock.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA LOKALNA')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA SIECIOWA')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O8 - Extra context menu item: Dodaj do Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\\ie_banner_deny.htm

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: Ochrona WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wpmsg - {2E0AC5A0-3597-11D6-B3ED-0001021DC1C3} - C:\Program Files\Spik\url_wpmsg.dll

O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

O22 - SharedTaskScheduler: Modu3 wstepnego 3adowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: Demon buforu kategorii sk3adników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll

O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe


--

End of file - 4094 bytes

Złączono Posta : 10.06.2007 (Nie) 21:28Jeszcze te logi:

Deckard's System Scanner v20070426.43

Run by Szymon on 2007-06-10 at 21:23:45

Computer is in Normal Mode.

--------------------------------------------------------------------------------




-- HijackThis (run as Szymon.exe) ----------------------------------------------


Logfile of HijackThis v1.99.1

Scan saved at 21:24, on 07-06-10

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)


Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\devldr32.exe

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Opera\Opera.exe

C:\Documents and Settings\Szymon\Pulpit\Programy\dss.exe

C:\PROGRA~1\HIJACK~1\Szymon.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = L1cza

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [kis] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKCU\..\Run: [AQQ] C:\PROGRA~1\WapSter\AQQ\AQQ.exe

O4 - HKCU\..\RunServices: [_Safelock_] c:\docume~1\szymon\pulpit\safelock\safelock.exe

O8 - Extra context menu item: Dodaj do Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\\ie_banner_deny.htm

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: Ochrona WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wpmsg - {2E0AC5A0-3597-11D6-B3ED-0001021DC1C3} - C:\Program Files\Spik\url_wpmsg.dll

O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe



-- Files created between 2007-05-10 and 2007-06-10 -----------------------------


2007-06-09 17:47:11 0 d-------- C:\Program Files\AV Vcs 5.5 DIAMOND

2007-06-02 12:21:39 65102 --a------ C:\WINDOWS\BricoPackUninst.cmd

2007-06-02 12:17:24 6116 --a------ C:\WINDOWS\BricoPackFoldersDelete.cmd

2007-06-02 12:16:52 0 d-------- C:\WINDOWS\BricoPacks

2007-05-27 14:56:00 286720 --a------ C:\WINDOWS\iun506.exe 

2007-05-27 14:55:55 0 d-------- C:\Program Files\Mp3 File Editor

2007-05-21 14:59:12 0 d-------- C:\Program Files\Last.fm

2007-05-10 19:23:22 0 d-------- C:\ELI2STD

2007-05-10 19:22:58 389632 --a------ C:\INSTCORE.EXE 



-- Find3M Report ---------------------------------------------------------------


2007-06-09 14:06:20 0 d-------- C:\Program Files\PowerArchiver

2007-06-02 15:18:12 0 d-------- C:\Program Files\Movie Maker

2007-06-02 12:21:38 219648 --a------ C:\WINDOWS\system32\uxtheme.dll 

2007-06-02 00:08:56 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\Hamachi

2007-05-27 15:05:11 0 d-------- C:\Program Files\Opera

2007-05-23 18:42:06 0 d-------- C:\Program Files\Yahoo!

2007-05-20 12:55:11 0 d-------- C:\Program Files\NVIDIA Display Driver

2007-05-20 12:55:10 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\LimeWire

2007-05-09 16:34:09 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\Skype

2007-05-03 14:33:01 664 --a------ C:\WINDOWS\system32\d3d9caps.dat

2007-05-03 12:59:57 1414 --a------ C:\WINDOWS\system32\tmp.reg

2007-05-03 10:12:17 467 --a------ C:\Program Files\Common Files\Skrót do Common Files.lnk

2007-05-02 23:19:39 23 --ahs---- C:\MSDOS.SYS

2007-05-02 23:18:40 46 --a------ C:\WINDOWS\SysWin32.dll

2007-04-29 11:35:34 0 d-------- C:\Program Files\Common Files\Art Plus Uninstall

2007-04-28 12:40:22 0 d-------- C:\Program Files\Art Plus

2007-04-24 20:18:50 0 d-------- C:\Program Files\WapSter

2007-04-23 15:31:21 0 d--h----- C:\Program Files\InstallShield Installation Information

2007-04-22 21:23:44 0 d-------- C:\Program Files\BitTorrent

2007-04-22 18:46:43 0 d-------- C:\Program Files\Total Commander

2007-04-22 13:31:02 0 d-------- C:\Program Files\Screamer Radio

2007-04-19 21:05:44 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\Spik

2007-04-19 21:05:32 0 d-------- C:\Program Files\Spik

2007-04-18 15:19:03 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\Gadu-Gadu

2007-04-17 21:19:33 0 d-------- C:\Program Files\Tlen.pl

2007-04-17 21:11:01 0 d-------- C:\Program Files\Gadu-Gadu

2007-04-17 20:36:15 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\Tlen.pl

2007-04-16 18:19:31 0 d-------- C:\Documents and Settings\Szymon\Dane aplikacji\BitTorrent

2007-04-14 17:45:12 0 d-------- C:\Program Files\Hamachi

2007-04-10 10:34:42 0 d-------- C:\Program Files\Flock

2007-03-25 08:52:12 436322 --a------ C:\WINDOWS\system32\perfh015.dat

2007-03-25 08:52:12 67298 --a------ C:\WINDOWS\system32\perfc015.dat



-- Registry Dump ---------------------------------------------------------------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]

{02478D38-C3F9-4EFB-9B51-7695ECA05670}	C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}	C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}	C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"kis"="\"C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 6.0\\avp.exe\""

"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"

"nwiz"="nwiz.exe /install"

"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"AQQ"="C:\\PROGRA~1\\WapSter\\AQQ\\AQQ.exe"


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runservices]

" _Safelock_ "="c:\\docume~1\\szymon\\pulpit\\safelock\\safelock.exe"


[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]

"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"appinit_dlls"="C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll"


HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa

   Authentication Packages	REG_MULTI_SZ msv1_0\0\0

   Security Packages	REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0

   Notification Packages	REG_MULTI_SZ scecli\0\0



[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Szymon^Menu Start^Programy^Autostart^Yahoo! Widget Engine.lnk]

"path"="C:\\Documents and Settings\\Szymon\\Menu Start\\Programy\\Autostart\\Yahoo! Widget Engine.lnk"

"backup"="C:\\WINDOWS\\pss\\Yahoo! Widget Engine.lnkStartup"

"location"="Startup"

"command"="C:\\PROGRA~1\\Yahoo!\\YAHOO!~1\\YAHOOW~1.EXE "

"item"="Yahoo! Widget Engine"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"=""

"hkey"="HKLM"

"command"=""

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AQQ]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AQQ"

"hkey"="HKCU"

"command"="C:\\PROGRA~1\\WapSter\\AQQ\\AQQ.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AudioHQ]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AHQTB"

"hkey"="HKLM"

"command"="C:\\Program Files\\Creative\\SBLive\\AudioHQ\\AHQTB.EXE"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="avgcc"

"hkey"="HKLM"

"command"="C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgcc.exe /STARTUP"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="bittorrent"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\BitTorrent\\bittorrent.exe\" --force_start_minimized"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Launcher]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="CTLauncher"

"hkey"="HKLM"

"command"="C:\\Program Files\\Creative\\Launcher\\CTLauncher.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="daemon"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\DAEMON Tools\\daemon.exe\" -lang 1033"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DaemonTools_WhenUSave_Installer]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DaemonTools_WhenUSave_Installer"

"hkey"="HKLM"

"command"="C:\\Program Files\\DaemonTools_WhenUSave_Installer\\DaemonTools_WhenUSave_Installer.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="gg"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Gadu-Gadu\\gg.exe\" /tray"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="msmsgs"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NeroCheck"

"hkey"="HKLM"

"command"="C:\\WINDOWS\\System32\\\\NeroCheck.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NeroCheck"

"hkey"="HKLM"

"command"="C:\\WINDOWS\\system32\\NeroCheck.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="nwiz"

"hkey"="HKLM"

"command"="nwiz.exe /install"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Odkurzacz-MCD]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="odk_mcd"

"hkey"="HKCU"

"command"="C:\\Program Files\\Odkurzacz\\odk_mcd.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="qttask"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Skype"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VVSN]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="VVSN"

"hkey"="HKLM"

"command"="C:\\Program Files\\VVSN\\VVSN.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="winampa"

"hkey"="HKLM"

"command"="C:\\Program Files\\Winamp\\winampa.exe"

"inimapping"="0"


[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]

LocalService	REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0

NetworkService	REG_MULTI_SZ DnsCache\0\0

rpcss	REG_MULTI_SZ RpcSs\0\0

imgsvc	REG_MULTI_SZ StiSvc\0\0

termsvcs	REG_MULTI_SZ TermService\0\0

HTTPFilter	REG_MULTI_SZ HTTPFilter\0\0

DcomLaunch	REG_MULTI_SZ DcomLaunch\0TermService\0\0




-- End of Deckard's System Scanner: finished at 2007-06-10 at 21:25:19 ---------

(Haspet) #2

Log wydaję się być czysty. Sprawdź czasem w menadżerze urządzeń czy bodajże proces svchost.exe nie zapiernicza ci ponad 70 % procka.


(Gutek) #3

Zastosuj się do tego Tematu i zmień tytuł tematu na konkretny inaczej KOSZ

Pozdrawiam Gutek2222


(Krzychuu) #4

pinio150

Możesz wrzucić jeszcze log z Silent Runners. :slight_smile:


(Gutek) #5

a wyżej to myślisz, że z czego jest log Deckard's System Scanner - nowa nazwa znanego nam narzędzia ComboScan

Proszę nie OT-ować w tym dziale, polecą ostrzeżenia :evil: