VIRY.CZ

ComboFix 14-10-04.01 - Verunka 07.10.2014 19:49:12.1.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.749.286 [GMT 2:00]
Spuštěný z: c:\users\Verunka\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Disabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-07 do 2014-10-07 )))))))))))))))))))))))))))))))
.
.
2014-10-07 18:01 . 2014-10-07 18:01 -------- d-----w- c:\users\Verunka\AppData\Local\temp
2014-10-07 18:01 . 2014-10-07 18:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-10-07 17:44 . 2014-10-07 17:44 39464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\MpKsl7ca54556.sys
2014-10-07 16:18 . 2014-10-07 16:20 -------- d-----w- c:\program files\Google
2014-10-07 16:17 . 2014-10-07 16:18 -------- d-----w- c:\users\Verunka\AppData\Local\Deployment
2014-10-07 16:17 . 2014-10-07 16:17 -------- d-----w- c:\users\Verunka\AppData\Local\Apps
2014-10-07 16:15 . 2014-10-07 16:15 -------- d-----w- c:\users\Verunka\AppData\Roaming\Google Chrome Backup
2014-10-07 16:15 . 2014-10-07 16:15 -------- d-----w- c:\program files\Google Chrome Backup
2014-10-07 15:54 . 2014-10-07 15:54 -------- d-sh--w- c:\users\Verunka\AppData\Local\EmieUserList
2014-10-07 15:54 . 2014-10-07 15:54 -------- d-sh--w- c:\users\Verunka\AppData\Local\EmieSiteList
2014-10-06 17:14 . 2014-09-08 16:24 8806800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\mpengine.dll
2014-10-06 08:27 . 2014-10-06 08:32 -------- d-----w- C:\FRST
2014-10-06 08:12 . 2014-10-07 08:07 -------- d-----w- c:\program files\trend micro
2014-10-05 11:25 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-10-05 11:06 . 2014-10-07 16:54 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-10-05 10:58 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-10-05 10:58 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2014-10-05 10:57 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-10-05 10:57 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-10-05 10:55 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-10-05 10:55 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-10-05 10:55 . 2014-05-12 05:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-10-05 10:55 . 2014-10-05 10:56 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-10-05 10:55 . 2014-10-05 10:55 -------- d-----w- c:\programdata\Malwarebytes
2014-10-05 10:55 . 2014-10-05 10:55 -------- d-----w- c:\users\Verunka\AppData\Local\Programs
2014-10-05 10:14 . 2014-07-14 01:42 654336 ----a-w- c:\windows\system32\rpcrt4.dll
2014-10-05 10:14 . 2014-08-23 00:42 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-10-05 10:14 . 2014-08-23 01:46 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-10-05 10:14 . 2014-06-16 01:44 730048 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-10-05 10:14 . 2014-06-16 01:44 219072 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2014-10-05 10:14 . 2014-06-16 01:40 107520 ----a-w- c:\windows\system32\cdd.dll
2014-10-05 10:14 . 2014-07-07 01:40 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-10-05 10:14 . 2014-07-07 01:40 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-05 10:09 . 2014-09-25 01:40 519680 ----a-w- c:\windows\system32\qdvd.dll
2014-10-05 10:09 . 2014-06-18 01:52 399360 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-10-05 10:09 . 2014-06-18 01:51 646144 ----a-w- c:\windows\system32\osk.exe
2014-10-05 10:09 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2014-10-05 10:09 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll
2014-10-05 10:09 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
2014-10-05 10:09 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
2014-10-05 10:09 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
2014-10-05 10:07 . 2014-08-01 11:35 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-10-05 10:06 . 2014-09-05 01:52 445952 ----a-w- c:\windows\system32\aepdu.dll
2014-10-05 10:06 . 2014-09-05 01:47 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-10-05 10:05 . 2014-09-09 21:47 2048 ----a-w- c:\windows\system32\tzres.dll
2014-10-05 10:00 . 2014-10-05 09:32 908840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{51411A90-D512-4C95-8B3A-86363D3C6405}\gapaengine.dll
2014-10-05 09:32 . 2014-09-08 16:24 8806800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-10-05 09:20 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-05 09:12 . 2014-10-06 17:37 -------- d-----w- C:\AdwCleaner
2014-10-05 08:08 . 2014-05-14 16:23 45536 ----a-w- c:\windows\system32\wups2.dll
2014-10-05 08:08 . 2014-05-14 16:23 54240 ----a-w- c:\windows\system32\wuauclt.exe
2014-10-05 08:08 . 2014-05-14 16:17 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-10-05 08:08 . 2014-05-14 16:23 1973728 ----a-w- c:\windows\system32\wuaueng.dll
2014-10-05 08:06 . 2014-05-14 16:23 36320 ----a-w- c:\windows\system32\wups.dll
2014-10-05 08:06 . 2014-05-14 16:17 92672 ----a-w- c:\windows\system32\wudriver.dll
2014-10-05 08:06 . 2014-05-14 16:23 581600 ----a-w- c:\windows\system32\wuapi.dll
2014-10-05 08:05 . 2014-05-14 07:23 179656 ----a-w- c:\windows\system32\wuwebv.dll
2014-10-05 08:05 . 2014-05-14 07:17 33792 ----a-w- c:\windows\system32\wuapp.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-05 08:57 . 2010-06-24 18:33 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-10-05 08:11 . 2012-05-02 05:51 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-10-05 08:11 . 2011-12-01 19:41 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-22 06:41 . 2011-10-23 12:44 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-07-25 00:35 . 2014-07-25 00:35 875688 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-07-17 16:05 . 2014-07-17 16:05 231800 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-07-17 16:05 . 2014-03-11 07:52 95920 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 974432]
.
c:\users\Verunka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\reset]
regedit [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2013-05-08 21:20 41056 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
2011-05-20 02:21 2018032 ----a-w- c:\program files\Asus\APRP\aprp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CapsHook]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
2011-04-14 17:23 419504 ----a-w- c:\program files\Asus\Eee Docking\Eee Docking.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
2010-06-10 07:57 548744 ----a-w- c:\program files\Elantech\ETDCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 16:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2011-01-18 12:47 10025576 ----a-w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
2010-11-10 22:32 336384 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAWinAgent]
2011-01-13 14:09 191304 ----a-w- c:\expressgateutil\VAWinAgent.exe
.
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-08-18 108032]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-05-12 23256]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-05-12 51928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys [2010-11-04 64128]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys [2010-11-04 32384]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 MpKsl7ca54556;MpKsl7ca54556;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\MpKsl7ca54556.sys [2014-10-07 39464]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-10 176128]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2011-03-03 224680]
S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-01-12 91464]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-11-17 101392]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-07-21 102912]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL7CA54556
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-07 16:20 1096520 ----a-w- c:\program files\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-02 08:11]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-07 16:18]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-07 16:18]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-10-07 20:06:56
ComboFix-quarantined-files.txt 2014-10-07 18:06
.
Před spuštěním: Volných bajtů: 63 999 995 904
Po spuštění: Volných bajtů: 63 666 544 640
.
- - End Of File - - 9A42D7D8808A82CEF29D150FA75199A4
A36C5E4F47E84449FF07ED3517B43A31

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spsutí a vykoná příkazy ze skriptu.

ComboFix 14-10-04.01 - Verunka 07.10.2014 20:42:23.2.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.749.249 [GMT 2:00]
Spuštěný z: c:\users\Verunka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Verunka\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Disabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-07 do 2014-10-07 )))))))))))))))))))))))))))))))
.
.
2014-10-07 18:55 . 2014-10-07 18:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-10-07 18:07 . 2014-10-07 18:57 -------- d-----w- c:\users\Verunka\AppData\Local\temp
2014-10-07 17:44 . 2014-10-07 17:44 39464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\MpKsl7ca54556.sys
2014-10-07 16:18 . 2014-10-07 16:20 -------- d-----w- c:\program files\Google
2014-10-07 16:17 . 2014-10-07 16:18 -------- d-----w- c:\users\Verunka\AppData\Local\Deployment
2014-10-07 16:17 . 2014-10-07 16:17 -------- d-----w- c:\users\Verunka\AppData\Local\Apps
2014-10-07 16:15 . 2014-10-07 16:15 -------- d-----w- c:\users\Verunka\AppData\Roaming\Google Chrome Backup
2014-10-07 16:15 . 2014-10-07 16:15 -------- d-----w- c:\program files\Google Chrome Backup
2014-10-07 15:54 . 2014-10-07 15:54 -------- d-sh--w- c:\users\Verunka\AppData\Local\EmieUserList
2014-10-07 15:54 . 2014-10-07 15:54 -------- d-sh--w- c:\users\Verunka\AppData\Local\EmieSiteList
2014-10-06 17:14 . 2014-09-08 16:24 8806800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\mpengine.dll
2014-10-06 08:27 . 2014-10-06 08:32 -------- d-----w- C:\FRST
2014-10-06 08:12 . 2014-10-07 08:07 -------- d-----w- c:\program files\trend micro
2014-10-05 11:25 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-10-05 11:06 . 2014-10-07 16:54 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-10-05 10:58 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-10-05 10:58 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2014-10-05 10:57 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-10-05 10:57 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-10-05 10:55 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-10-05 10:55 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-10-05 10:55 . 2014-05-12 05:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-10-05 10:55 . 2014-10-05 10:56 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-10-05 10:55 . 2014-10-05 10:55 -------- d-----w- c:\programdata\Malwarebytes
2014-10-05 10:55 . 2014-10-05 10:55 -------- d-----w- c:\users\Verunka\AppData\Local\Programs
2014-10-05 10:14 . 2014-07-14 01:42 654336 ----a-w- c:\windows\system32\rpcrt4.dll
2014-10-05 10:14 . 2014-08-23 00:42 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-10-05 10:14 . 2014-08-23 01:46 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-10-05 10:14 . 2014-06-16 01:44 730048 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-10-05 10:14 . 2014-06-16 01:44 219072 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2014-10-05 10:14 . 2014-06-16 01:40 107520 ----a-w- c:\windows\system32\cdd.dll
2014-10-05 10:14 . 2014-07-07 01:40 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-10-05 10:14 . 2014-07-07 01:40 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-05 10:09 . 2014-09-25 01:40 519680 ----a-w- c:\windows\system32\qdvd.dll
2014-10-05 10:09 . 2014-06-18 01:52 399360 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-10-05 10:09 . 2014-06-18 01:51 646144 ----a-w- c:\windows\system32\osk.exe
2014-10-05 10:09 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2014-10-05 10:09 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll
2014-10-05 10:09 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
2014-10-05 10:09 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
2014-10-05 10:09 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
2014-10-05 10:07 . 2014-08-01 11:35 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-10-05 10:06 . 2014-09-05 01:52 445952 ----a-w- c:\windows\system32\aepdu.dll
2014-10-05 10:06 . 2014-09-05 01:47 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-10-05 10:05 . 2014-09-09 21:47 2048 ----a-w- c:\windows\system32\tzres.dll
2014-10-05 10:00 . 2014-10-05 09:32 908840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{51411A90-D512-4C95-8B3A-86363D3C6405}\gapaengine.dll
2014-10-05 09:32 . 2014-09-08 16:24 8806800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-10-05 09:20 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-05 09:12 . 2014-10-06 17:37 -------- d-----w- C:\AdwCleaner
2014-10-05 08:08 . 2014-05-14 16:23 45536 ----a-w- c:\windows\system32\wups2.dll
2014-10-05 08:08 . 2014-05-14 16:23 54240 ----a-w- c:\windows\system32\wuauclt.exe
2014-10-05 08:08 . 2014-05-14 16:17 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-10-05 08:08 . 2014-05-14 16:23 1973728 ----a-w- c:\windows\system32\wuaueng.dll
2014-10-05 08:06 . 2014-05-14 16:23 36320 ----a-w- c:\windows\system32\wups.dll
2014-10-05 08:06 . 2014-05-14 16:17 92672 ----a-w- c:\windows\system32\wudriver.dll
2014-10-05 08:06 . 2014-05-14 16:23 581600 ----a-w- c:\windows\system32\wuapi.dll
2014-10-05 08:05 . 2014-05-14 07:23 179656 ----a-w- c:\windows\system32\wuwebv.dll
2014-10-05 08:05 . 2014-05-14 07:17 33792 ----a-w- c:\windows\system32\wuapp.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-05 08:57 . 2010-06-24 18:33 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-10-05 08:11 . 2012-05-02 05:51 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-10-05 08:11 . 2011-12-01 19:41 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-22 06:41 . 2011-10-23 12:44 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-07-25 00:35 . 2014-07-25 00:35 875688 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-07-17 16:05 . 2014-07-17 16:05 231800 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-07-17 16:05 . 2014-03-11 07:52 95920 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 974432]
.
c:\users\Verunka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\reset]
regedit [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2013-05-08 21:20 41056 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
2011-05-20 02:21 2018032 ----a-w- c:\program files\Asus\APRP\aprp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CapsHook]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
2011-04-14 17:23 419504 ----a-w- c:\program files\Asus\Eee Docking\Eee Docking.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
2010-06-10 07:57 548744 ----a-w- c:\program files\Elantech\ETDCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 16:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2011-01-18 12:47 10025576 ----a-w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
2010-11-10 22:32 336384 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
2011-03-11 01:06 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAWinAgent]
2011-01-13 14:09 191304 ----a-w- c:\expressgateutil\VAWinAgent.exe
.
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-08-18 108032]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-05-12 51928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys [2010-11-04 64128]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys [2010-11-04 32384]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 MpKsl7ca54556;MpKsl7ca54556;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB58BC72-7F60-4426-AD91-10D6E30D4D1A}\MpKsl7ca54556.sys [2014-10-07 39464]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-10 176128]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2011-03-03 224680]
S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-01-12 91464]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-11-17 101392]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-07-21 102912]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-05-12 23256]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-07 16:20 1096520 ----a-w- c:\program files\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-02 08:11]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-07 16:18]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-07 16:18]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\InstantOn\InsOnWMI.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Microsoft Office\Office12\ONENOTEM.EXE
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2014-10-07 21:04:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-10-07 19:04
ComboFix2.txt 2014-10-07 18:06
.
Před spuštěním: Volných bajtů: 63 696 211 968
Po spuštění: Volných bajtů: 63 638 278 144
.
- - End Of File - - 721274347E7F8F45044EC9D89D26BA04
A36C5E4F47E84449FF07ED3517B43A31

furt jsme nad 80%

tak se moc omlouvam malinko jsem to přehledl a nejní to 80 % procesor ale využití RAM

Pro mne je podstatná informace, co tu paměť takto využívá. Jinak to nevyřešíme.

to je to co nevím nic zaplého nemám jen jedno okno s gogglem tod vše

Zjistíte to ve správci úloh.

pokud vím dobře tak správce uloh ukazuje využití sítě,procesoru ,a fyzickou pamět nikoliv vyrtualní

No, jinak to nezjistíme a budme střílet od boku. Neznám jiný způsob. Pokud to chcete podrobně, nainstalujte a spusťte ProcessExplorer: http://www.stahuj.centrum.cz/utility_a_ ... -explorer/ .

a co s tím ?


Process CPU Private Bytes Working Set PID Description Company Name
System Idle Process 38.57 0 K 24 K 0
System 4.73 56 K 3 900 K 4
Interrupts 1.92 0 K 0 K n/a Hardware Interrupts and DPCs
smss.exe 256 K 208 K 272 Windows Session Manager Microsoft Corporation
csrss.exe 1 916 K 1 300 K 388 Client Server Runtime Process Microsoft Corporation
wininit.exe 904 K 220 K 440 Windows Start-Up Application Microsoft Corporation
services.exe 4 324 K 2 988 K 508 Services and Controller app Microsoft Corporation
svchost.exe 2 984 K 2 668 K 676 Host Process for Windows Services Microsoft Corporation
dllhost.exe 1 124 K 4 060 K 3704 COM Surrogate Microsoft Corporation
svchost.exe 3 372 K 2 808 K 756 Host Process for Windows Services Microsoft Corporation
MsMpEng.exe < 0.01 64 328 K 10 512 K 808 Antimalware Service Executable Microsoft Corporation
atiesrxx.exe 864 K 532 K 932 AMD External Events Service Module AMD
atieclxx.exe 1 520 K 1 692 K 1204 AMD External Events Client Module AMD
svchost.exe 16 132 K 6 368 K 972 Host Process for Windows Services Microsoft Corporation
svchost.exe 33 552 K 25 132 K 1008 Host Process for Windows Services Microsoft Corporation
dwm.exe 0.12 1 000 K 732 K 1612 Správce oken plochy Microsoft Corporation
svchost.exe 0.01 7 612 K 5 424 K 1036 Host Process for Windows Services Microsoft Corporation
svchost.exe < 0.01 23 364 K 22 184 K 1068 Host Process for Windows Services Microsoft Corporation
taskeng.exe < 0.01 1 260 K 748 K 2660 Task Scheduler Engine Microsoft Corporation
InsOnWMI.exe 0.01 2 540 K 392 K 2708 InsOnWMI ASUS
svchost.exe 0.03 18 584 K 14 308 K 1248 Host Process for Windows Services Microsoft Corporation
spoolsv.exe 4 836 K 2 052 K 1492 Spooler SubSystem App Microsoft Corporation
svchost.exe 8 888 K 4 804 K 1540 Host Process for Windows Services Microsoft Corporation
taskhost.exe 0.01 10 548 K 2 000 K 1668 Host Process for Windows Tasks Microsoft Corporation
AsusService.exe 656 K 528 K 1880
svchost.exe < 0.01 1 616 K 480 K 2024 Host Process for Windows Services Microsoft Corporation
WLIDSVC.EXE 0.01 4 388 K 728 K 448 Microsoft® Windows Live ID Service Microsoft Corp.
WLIDSVCM.EXE 644 K 276 K 1416 Microsoft® Windows Live ID Service Monitor Microsoft Corp.
SearchIndexer.exe 20 784 K 7 656 K 2868 Microsoft Windows Search Indexer Microsoft Corporation
svchost.exe 1 812 K 480 K 2972 Host Process for Windows Services Microsoft Corporation
wmpnetwk.exe < 0.01 5 748 K 5 360 K 3248 Windows Media Player Network Sharing Service Microsoft Corporation
svchost.exe 4 488 K 1 968 K 3620 Host Process for Windows Services Microsoft Corporation
svchost.exe 980 K 832 K 2260 Host Process for Windows Services Microsoft Corporation
lsass.exe 3 164 K 3 720 K 516 Local Security Authority Process Microsoft Corporation
lsm.exe 1 440 K 1 148 K 524 Local Session Manager Service Microsoft Corporation
csrss.exe 0.99 6 816 K 3 672 K 456 Client Server Runtime Process Microsoft Corporation
winlogon.exe 1 744 K 388 K 552 Windows Logon Application Microsoft Corporation
explorer.exe 0.08 31 232 K 28 216 K 1644 Průzkumník Windows Microsoft Corporation
GrooveMonitor.exe 2 892 K 2 072 K 2016 GrooveMonitor Utility Microsoft Corporation
msseces.exe 4 656 K 4 708 K 1440 Microsoft Security Client User Interface Microsoft Corporation
procexp.exe 2.03 17 940 K 20 252 K 3500 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
chrome.exe 4.86 31 300 K 57 428 K 2356 Google Chrome Google Inc.
chrome.exe 17.36 63 092 K 59 580 K 1596 Google Chrome Google Inc.
chrome.exe 22.52 66 676 K 69 352 K 2672 Google Chrome Google Inc.
sidebar.exe 0.05 32 548 K 12 244 K 860 Windows Desktop Gadgets Microsoft Corporation

Ty procesy jsou všchny regulérní. Mne zajímá pouze ten, který žere oněch 80%. Když budu vědět, který to je, budu vědět, jak z toho ven. Není možné to jinak zjistit, než odečtením ze správce úloh, příp. z ProcessExploreru. Alternativou je postupné vypínání procesů a sledování změn zatížení.

tak netbok jsme přeinstaloval a je to ok

díky moc

Nemáte zač!