VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

zpomalený PC a prohlížeč

https://forum.viry.cz:443/viewtopic.php?t=111484

Stránka 1 z 1

zpomalený PC a prohlížeč

Napsal: 01 kvě 2011 10:01
od davy
Všechno se mně zpomalilo. Otevírání souborů, načítání stránek v prohlížeči, stahování souborů apod. Teď, když jsem dělal log z "RSIT", tak se to taky nějak seklo , musel jsem proces ukončit ve správci úloh. Když jsem se ale podíval do průzkumníku, tak jsem tam ten log našel.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Agáta at 2011-05-01 10:40:07
Microsoft® Windows Vista™ Ultimate Service Pack 2
System drive C: has 23 GB (43%) free of 54 GB
Total RAM: 893 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:41:00, on 1.5.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\Agáta\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\Agáta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 3782 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2009-09-04 767312]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-04-18 3460784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-04-19 125952]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe [2010-04-29 3727411]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrowserBallot]
C:\Windows\system32\browserchoice.exe [2010-02-12 293376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-05-01 10:40:06 ----D---- C:\rsit
2011-04-29 15:49:01 ----A---- C:\Windows\system32\msls31.dll
2011-04-29 15:48:59 ----A---- C:\Windows\system32\wininet.dll
2011-04-29 15:48:59 ----A---- C:\Windows\system32\jsproxy.dll
2011-04-29 15:48:59 ----A---- C:\Windows\system32\iertutil.dll
2011-04-29 15:48:58 ----A---- C:\Windows\system32\urlmon.dll
2011-04-29 15:48:58 ----A---- C:\Windows\system32\msrating.dll
2011-04-29 15:48:57 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-04-29 15:48:57 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-04-29 15:48:57 ----A---- C:\Windows\system32\mshtmler.dll
2011-04-29 15:48:57 ----A---- C:\Windows\system32\ieui.dll
2011-04-29 15:48:57 ----A---- C:\Windows\system32\iesysprep.dll
2011-04-29 15:48:53 ----A---- C:\Windows\system32\ieframe.dll
2011-04-29 15:48:52 ----A---- C:\Windows\system32\dxtrans.dll
2011-04-29 15:48:52 ----A---- C:\Windows\system32\dxtmsft.dll
2011-04-29 15:48:48 ----A---- C:\Windows\system32\iernonce.dll
2011-04-29 15:48:48 ----A---- C:\Windows\system32\ieapfltr.dll
2011-04-29 15:48:48 ----A---- C:\Windows\system32\ie4uinit.exe
2011-04-29 15:48:48 ----A---- C:\Windows\system32\icardie.dll
2011-04-29 15:48:47 ----A---- C:\Windows\system32\url.dll
2011-04-29 15:48:47 ----A---- C:\Windows\system32\iesetup.dll
2011-04-29 15:48:47 ----A---- C:\Windows\system32\iedkcs32.dll
2011-04-29 15:48:46 ----A---- C:\Windows\system32\wextract.exe
2011-04-29 15:48:46 ----A---- C:\Windows\system32\webcheck.dll
2011-04-29 15:48:46 ----A---- C:\Windows\system32\mshtmled.dll
2011-04-29 15:48:46 ----A---- C:\Windows\system32\licmgr10.dll
2011-04-29 15:48:46 ----A---- C:\Windows\system32\inseng.dll
2011-04-29 15:48:45 ----A---- C:\Windows\system32\vbscript.dll
2011-04-29 15:48:45 ----A---- C:\Windows\system32\msfeeds.dll
2011-04-29 15:48:45 ----A---- C:\Windows\system32\iexpress.exe
2011-04-29 15:48:39 ----A---- C:\Windows\system32\mshtml.dll
2011-04-29 15:48:38 ----A---- C:\Windows\system32\pngfilt.dll
2011-04-29 15:48:38 ----A---- C:\Windows\system32\occache.dll
2011-04-29 15:48:38 ----A---- C:\Windows\system32\mshta.exe
2011-04-29 15:48:38 ----A---- C:\Windows\system32\ieUnatt.exe
2011-04-29 15:48:37 ----A---- C:\Windows\system32\jscript9.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\jscript.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\imgutil.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\iepeers.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\ieakui.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\ieaksie.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\advpack.dll
2011-04-29 15:48:37 ----A---- C:\Windows\system32\admparse.dll
2011-04-29 15:48:36 ----A---- C:\Windows\system32\msfeedssync.exe
2011-04-29 15:48:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-04-29 15:48:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-04-29 15:48:35 ----A---- C:\Windows\system32\ieakeng.dll
2011-04-29 15:42:35 ----A---- C:\Windows\system32\Apphlpdm.dll
2011-04-29 15:42:34 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2011-04-29 15:41:14 ----A---- C:\Windows\system32\XpsPrint.dll
2011-04-29 15:33:16 ----D---- C:\Downloads
2011-04-19 16:59:42 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-04-19 16:59:42 ----A---- C:\Windows\system32\drivers\srv.sys
2011-04-19 16:59:41 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-04-19 16:59:39 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-04-19 16:59:39 ----A---- C:\Windows\system32\dnsapi.dll
2011-04-19 16:59:38 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-04-19 16:59:09 ----A---- C:\Windows\system32\atmfd.dll
2011-04-19 16:59:08 ----A---- C:\Windows\system32\atmlib.dll
2011-04-19 16:58:33 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-04-19 16:58:33 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-04-19 16:58:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-04-19 16:58:32 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-04-19 16:57:57 ----A---- C:\Windows\system32\win32k.sys
2011-04-19 16:57:52 ----A---- C:\Windows\system32\mfc42u.dll
2011-04-19 16:57:50 ----A---- C:\Windows\system32\mfc42.dll
2011-04-19 16:57:44 ----A---- C:\Windows\system32\inetcomm.dll
2011-04-19 16:48:33 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-04-19 16:34:24 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-04-08 20:57:38 ----A---- C:\Windows\system32\DWrite.dll
2011-04-08 20:57:37 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-04-08 20:57:37 ----A---- C:\Windows\system32\FntCache.dll

======List of files/folders modified in the last 1 months======

2011-05-01 10:40:29 ----D---- C:\Users\Agáta\AppData\Roaming\Free Download Manager
2011-05-01 10:40:26 ----D---- C:\Windows\temp
2011-05-01 10:40:12 ----D---- C:\Program Files\trend micro
2011-05-01 10:35:46 ----D---- C:\Program Files\Mozilla Firefox
2011-05-01 10:32:40 ----D---- C:\Windows\rescache
2011-05-01 10:19:21 ----D---- C:\Windows\Prefetch
2011-05-01 10:19:02 ----SHD---- C:\System Volume Information
2011-04-29 16:03:15 ----D---- C:\Windows
2011-04-29 16:01:29 ----D---- C:\Windows\System32
2011-04-29 16:01:28 ----D---- C:\Windows\system32\cs-CZ
2011-04-29 16:01:28 ----D---- C:\Windows\AppPatch
2011-04-29 16:01:27 ----RD---- C:\Windows\Offline Web Pages
2011-04-29 16:01:27 ----D---- C:\Windows\system32\wbem
2011-04-29 16:01:27 ----D---- C:\Windows\system32\migration
2011-04-29 16:01:27 ----D---- C:\Windows\system32\en-US
2011-04-29 16:01:27 ----D---- C:\Windows\PolicyDefinitions
2011-04-29 16:01:27 ----D---- C:\Program Files\Internet Explorer
2011-04-29 16:01:25 ----SD---- C:\Windows\Downloaded Program Files
2011-04-29 15:58:26 ----D---- C:\Windows\winsxs
2011-04-29 15:54:23 ----D---- C:\Windows\Debug
2011-04-29 15:53:53 ----SHD---- C:\Windows\Installer
2011-04-29 15:51:33 ----D---- C:\Program Files\Common Files\microsoft shared
2011-04-29 15:50:41 ----D---- C:\Windows\system32\catroot
2011-04-29 15:48:27 ----D---- C:\Windows\system32\catroot2
2011-04-28 23:15:25 ----D---- C:\Windows\system32\Tasks
2011-04-28 23:11:45 ----D---- C:\Windows\Minidump
2011-04-28 23:10:46 ----D---- C:\Program Files\CCleaner
2011-04-28 23:00:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-28 23:00:02 ----D---- C:\Windows\inf
2011-04-28 22:47:17 ----D---- C:\Windows\system32\Msdtc
2011-04-28 22:46:30 ----D---- C:\Windows\system32\config
2011-04-28 22:45:39 ----D---- C:\Windows\Tasks
2011-04-28 22:45:39 ----D---- C:\Windows\system32\spool
2011-04-28 22:45:39 ----D---- C:\Windows\system32\drivers\etc
2011-04-28 22:45:39 ----D---- C:\Windows\system32\drivers
2011-04-28 22:45:39 ----D---- C:\Windows\system32\CodeIntegrity
2011-04-28 22:45:37 ----RD---- C:\Program Files
2011-04-28 22:45:37 ----D---- C:\Program Files\Secunia
2011-04-28 22:45:31 ----D---- C:\Program Files\Microsoft Silverlight
2011-04-28 22:45:31 ----D---- C:\Program Files\krásné dívky
2011-04-28 22:45:11 ----D---- C:\Windows\registration
2011-04-28 18:35:37 ----D---- C:\Windows\Logs
2011-04-24 10:38:02 ----D---- C:\Windows\Microsoft.NET
2011-04-24 10:37:58 ----RSD---- C:\Windows\assembly
2011-04-19 17:06:43 ----D---- C:\Program Files\Windows Mail
2011-04-18 19:25:10 ----A---- C:\Windows\system32\aswBoot.exe
2011-04-18 15:46:44 ----A---- C:\Windows\system32\mrt.exe
2011-04-09 21:06:40 ----D---- C:\Program Files\Mozilla Thunderbird

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fvevol;BitLocker Drive Encryption Filter Driver; C:\Windows\System32\DRIVERS\fvevol.sys [2009-04-11 143848]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-04-18 25432]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-04-18 441176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-04-18 307288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-04-18 49240]
R2 ASTRA32;ASTRA32 Kernel Driver 5.2.1.0; \??\C:\Program Files\ASTRA32\ASTRA32.sys [2007-02-22 30864]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-04-18 19544]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-04-18 53592]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-05 1183744]
R3 EMSCR;EMSCR; C:\Windows\system32\DRIVERS\EMS7SK.sys [2006-02-16 60928]
R3 ESMCR;ESMCR; C:\Windows\system32\DRIVERS\ESM7SK.sys [2006-02-16 74624]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2008-04-19 987648]
R3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-04-19 200704]
R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2010-05-28 14896]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-01-19 2314752]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-11-29 10064]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2008-04-19 654336]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-04-19 5632]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-04-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-04-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-04-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-04-19 6016]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-04-19 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-04-19 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-04-19 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-04-19 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-04-18 42184]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-04-19 21504]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-02-18 1517376]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-04-19 21504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]

-----------------EOF-----------------

Re: zpomalený PC a prohlížeč

Napsal: 01 kvě 2011 10:29
od Rudy
Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware
Vzhledem k velikosti RAM, která je pro OS WinVista více než podprůměrná, neočekávejte nějaké rapidní zrychlení.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz