VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Vytížení PC na 100%

https://forum.viry.cz:443/viewtopic.php?t=120330

Stránka 1 z 1

Vytížení PC na 100%

Napsal: 12 bře 2012 10:08
od Erik Nighelt
Zdravím, poslední dobou mi netbook jede oproti dobám dřívějším strašně pomalu. Po restartu a načtení plochy využívá 90-100% fyzické paměti a stejně tak procesoru, i když není nic zapnuté.. jak zapnu google chrome tak se začne zasekávat.. dříve to nedělal - projel jsem ho postupně avastem, kasperskym virus removal tool, adawarem, superantispywarem opraveny byly jen asi 3 chyby v registrech, jinak nic.. proto se obracím na vás pro radu.. díky

LOG:


Logfile of random's system information tool 1.09 (written by random/random)
Run by Petr at 2012-03-12 10:00:11
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 27 GB (12%) free of 221 GB
Total RAM: 1013 MB (14% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:40, on 12.3.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Launch Manager\dsiwmis.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files\Acer\Registration\GREGsvc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Oceanis\SystemSetting\WallPaperAgent.exe
C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
C:\Windows\Explorer.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\EgisTec IPS\PmmUpdate.exe
C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\AutosetFrequency.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Acer\Android Manager\iSync.exe
C:\Program Files\Launch Manager\LMworker.exe
C:\Program Files\Acer\Updater\iUpdate.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Acer\Acer VCM\AcerVCM.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\svchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\igfxext.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Petr\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Petr\Downloads\RSIT.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Petr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AFQ] C:\Windows\AutosetFrequency.exe
O4 - HKLM\..\Run: [iSyncData] C:\Program Files\Acer\Android Manager\iSync.exe
O4 - HKLM\..\Run: [AndroidManager] C:\Program Files\Acer\Android Manager\AML.exe
O4 - HKLM\..\Run: [iPatchData] C:\Program Files\Acer\Updater\iUpdate.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I
O4 - HKCU\..\Run: [Google Update] "C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Acer VCM.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files\Acer\Registration\GREGsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

--
End of file - 11147 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\wdr78dt6.default

"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\wdr78dt6.default\extensions\
ffxtlbr@Facemoods.com
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2011-11-11 1378144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll [2010-10-26 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-02-27 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-02-27 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll [2010-10-26 217088]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-05-27 337264]
"EgisUpdate"=C:\Program Files\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
"EgisTecPMMUpdate"=C:\Program Files\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
"mwlDaemon"=C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe [2010-05-27 349552]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-04 37296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-11-19 9874024]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-06-16 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-06-16 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-06-16 150552]
"LManager"=C:\Program Files\Launch Manager\LManager.exe [2010-08-10 975952]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-02-05 1692968]
"AFQ"=C:\Windows\AutosetFrequency.exe [2010-12-15 59992]
"iSyncData"=C:\Program Files\Acer\Android Manager\iSync.exe [2011-02-09 407416]
"AndroidManager"=C:\Program Files\Acer\Android Manager\AML.exe [2011-02-09 508280]
"iPatchData"=C:\Program Files\Acer\Updater\iUpdate.exe [2011-02-09 489848]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-01-05 714120]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2012-01-24 2416480]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-03-15 180224]
"RemoteControl10"=C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-02 87336]
"BDRegion"=C:\Program Files\Cyberlink\Shared files\brs.exe [2010-03-13 75048]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"SafeQ Client"=C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe [2010-03-31 249856]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2011-12-23 2779824]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"facemoods"=C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe [2010-10-26 323584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-02 136176]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-03-07 3905920]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe

C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-04-19 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"VIDC.IV41"=IR41_32.AX

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-03-12 10:00:13 ----D---- C:\Program Files\trend micro
2012-03-12 10:00:11 ----D---- C:\rsit
2012-03-11 23:45:48 ----D---- C:\Users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2012-03-11 23:44:19 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-03-11 23:44:19 ----D---- C:\Program Files\SUPERAntiSpyware
2012-03-11 23:11:22 ----D---- C:\ProgramData\Kaspersky Lab
2012-03-11 23:06:29 ----A---- C:\Windows\system32\drivers\78927230.sys
2012-03-11 22:59:01 ----D---- C:\Users\Petr\AppData\Roaming\AVG
2012-03-10 21:38:31 ----D---- C:\Program Files\facemoods.com
2012-03-10 21:35:14 ----D---- C:\Program Files\JDownloader
2012-03-08 11:43:57 ----D---- C:\TEMP
2012-03-08 11:41:18 ----D---- C:\7-Zip
2012-03-07 08:41:14 ----A---- C:\Windows\system32\TrackID.DLL
2012-03-07 08:41:14 ----A---- C:\Windows\system32\TIFmtA.dll
2012-03-07 08:41:14 ----A---- C:\Windows\system32\TIBase64.dll
2012-03-07 08:41:11 ----A---- C:\Windows\system32\RICJC32.dll
2012-03-07 08:41:11 ----A---- C:\Windows\system32\RIC53DX.EXE
2012-03-07 08:41:11 ----A---- C:\Windows\system32\RIC53DPI.DLL
2012-03-07 08:41:11 ----A---- C:\Windows\system32\JCUI.exe
2012-03-06 21:52:01 ----A---- C:\Windows\ricdb.ini
2012-03-06 21:51:55 ----D---- C:\ProgramData\RICOH
2012-03-06 21:51:04 ----D---- C:\Program Files\Y Soft
2012-03-06 21:49:29 ----A---- C:\Windows\system32\ricA5Hlm.dll
2012-03-06 21:49:29 ----A---- C:\Windows\system32\MPC28dat.dll
2012-03-06 21:49:29 ----A---- C:\Windows\system32\mfricres.dll
2012-03-06 21:49:27 ----A---- C:\Windows\system32\ricdb32.dll
2012-03-04 15:03:18 ----D---- C:\Program Files\=Programy_instal
2012-03-02 12:46:47 ----HD---- C:\MyWinLockerData
2012-02-27 20:27:19 ----D---- C:\Program Files\Common Files\Java
2012-02-27 20:26:48 ----A---- C:\Windows\system32\javaws.exe
2012-02-27 20:26:47 ----A---- C:\Windows\system32\javaw.exe
2012-02-27 20:26:46 ----A---- C:\Windows\system32\java.exe
2012-02-27 20:26:20 ----D---- C:\Program Files\Java
2012-02-17 16:54:25 ----D---- C:\Program Files\Mozilla Firefox
2012-02-17 03:02:14 ----A---- C:\Windows\system32\mshtmled.dll
2012-02-17 03:02:12 ----A---- C:\Windows\system32\jscript.dll
2012-02-17 03:02:12 ----A---- C:\Windows\system32\iertutil.dll
2012-02-17 03:02:10 ----A---- C:\Windows\system32\jsproxy.dll
2012-02-17 03:02:10 ----A---- C:\Windows\system32\jscript9.dll
2012-02-17 03:02:08 ----A---- C:\Windows\system32\wininet.dll
2012-02-17 03:02:08 ----A---- C:\Windows\system32\url.dll
2012-02-17 03:02:08 ----A---- C:\Windows\system32\ieui.dll
2012-02-17 03:02:05 ----A---- C:\Windows\system32\mshtml.dll
2012-02-17 03:02:00 ----A---- C:\Windows\system32\urlmon.dll
2012-02-17 03:02:00 ----A---- C:\Windows\system32\ieframe.dll
2012-02-16 07:18:16 ----A---- C:\Windows\system32\msvcrt.dll
2012-02-16 07:18:06 ----A---- C:\Windows\system32\shell32.dll
2012-02-16 07:17:58 ----A---- C:\Windows\system32\ntshrui.dll
2012-02-16 07:13:59 ----A---- C:\Windows\system32\win32k.sys
2012-02-13 18:44:30 ----A---- C:\Windows\system32\CmdLineExt.dll
2012-02-13 13:21:07 ----A---- C:\aocinjectlog.txt

======List of files/folders modified in the last 1 month======

2012-03-12 10:00:30 ----D---- C:\Windows\Prefetch
2012-03-12 10:00:13 ----RD---- C:\Program Files
2012-03-12 09:51:20 ----D---- C:\Windows
2012-03-12 09:48:46 ----AD---- C:\ProgramData\TEMP
2012-03-12 09:20:59 ----D---- C:\ProgramData\MFAData
2012-03-12 03:55:15 ----D---- C:\Windows\system32\config
2012-03-12 03:42:52 ----SHD---- C:\System Volume Information
2012-03-12 03:42:34 ----D---- C:\Windows\Temp
2012-03-12 00:29:41 ----D---- C:\Windows\system32\drivers
2012-03-11 23:45:47 ----HD---- C:\ProgramData
2012-03-11 23:05:25 ----D---- C:\Windows\system32\drivers\AVG
2012-03-11 23:01:07 ----D---- C:\Windows\Downloaded Program Files
2012-03-11 22:57:33 ----D---- C:\Program Files\AVG
2012-03-11 22:45:52 ----A---- C:\Windows\AutoSetFrequency.ini
2012-03-11 22:18:58 ----D---- C:\Users\Petr\AppData\Roaming\BitLord
2012-03-11 13:02:58 ----D---- C:\Windows\System32
2012-03-11 13:02:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-11 13:02:57 ----D---- C:\Windows\inf
2012-03-10 22:58:53 ----D---- C:\Hry
2012-03-10 21:23:58 ----A---- C:\Users\Petr\AppData\Roaming\bitlord_log.txt
2012-03-07 09:06:05 ----D---- C:\Windows\tracing
2012-03-07 08:42:45 ----D---- C:\Windows\system32\DriverStore
2012-03-07 08:41:10 ----D---- C:\tiskSKM
2012-03-06 13:09:45 ----D---- C:\ProgramData\boost_interprocess
2012-03-03 00:09:53 ----D---- C:\Windows\debug
2012-03-02 12:46:45 ----D---- C:\Program Files\EgisTec MyWinLocker
2012-03-02 12:27:40 ----D---- C:\Ultima Online 2D
2012-03-01 14:21:21 ----D---- C:\Users\Petr\AppData\Roaming\GHISLER
2012-02-29 23:18:24 ----D---- C:\Users\Petr\AppData\Roaming\Skype
2012-02-27 20:27:29 ----SHD---- C:\Windows\Installer
2012-02-27 20:27:19 ----D---- C:\Program Files\Common Files
2012-02-27 20:26:25 ----A---- C:\Windows\system32\deployJava1.dll
2012-02-22 12:25:11 ----RSD---- C:\Windows\assembly
2012-02-22 12:25:11 ----D---- C:\Windows\Microsoft.NET
2012-02-22 09:17:07 ----D---- C:\Windows\system32\NDF
2012-02-17 16:55:07 ----D---- C:\Users\Petr\AppData\Roaming\Mozilla
2012-02-17 03:44:12 ----D---- C:\Windows\winsxs
2012-02-17 03:44:04 ----D---- C:\ProgramData\AVG2012
2012-02-17 03:42:57 ----D---- C:\Program Files\Microsoft Silverlight
2012-02-17 03:41:06 ----D---- C:\Windows\system32\migration
2012-02-17 03:41:03 ----D---- C:\Program Files\Internet Explorer
2012-02-17 03:17:10 ----A---- C:\Windows\system32\MRT.exe
2012-02-17 03:02:47 ----D---- C:\Windows\system32\catroot2
2012-02-17 03:02:47 ----D---- C:\Windows\system32\catroot
2012-02-13 17:58:46 ----HD---- C:\Program Files\InstallShield Installation Information
2012-02-13 13:13:44 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 78927230;78927230; C:\Windows\system32\DRIVERS\78927230.sys [2012-03-12 133208]
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-06-08 435736]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-08-08 40016]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 18992]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 16432]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60976]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/09/04 23:08:10]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 87536]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2010-07-15 1906024]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134736]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
R3 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-04-19 4806144]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-11-19 3248168]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-02-05 242992]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 EUCR;EUCR; C:\Windows\system32\DRIVERS\EUCR6SK.SYS [2010-06-17 82768]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-01-05 734592]
R2 GREGService;GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 MWLService;MyWinLocker Service; C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2011-12-23 482992]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Re: Vytížení PC na 100%

Napsal: 12 bře 2012 18:37
od Rudy
Také zdravím!
Poprosím o log ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Re: Vytížení PC na 100%

Napsal: 12 bře 2012 19:31
od Erik Nighelt
tu je:


ComboFix 12-03-12.03 - Petr 12.03.2012 18:54:20.1.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1013.360 [GMT 1:00]
Spuštěný z: c:\users\Petr\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-12 do 2012-03-12 )))))))))))))))))))))))))))))))
.
.
2012-03-12 18:21 . 2012-03-12 18:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-12 09:00 . 2012-03-12 09:00 -------- d-----w- c:\program files\trend micro
2012-03-12 09:00 . 2012-03-12 09:00 -------- d-----w- C:\rsit
2012-03-11 22:45 . 2012-03-11 22:45 -------- d-----w- c:\users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2012-03-11 22:44 . 2012-03-11 22:45 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-03-11 22:44 . 2012-03-11 22:44 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-03-11 22:11 . 2012-03-11 22:11 -------- d-----w- c:\programdata\Kaspersky Lab
2012-03-11 21:59 . 2012-03-11 21:59 -------- d-----w- c:\users\Petr\AppData\Roaming\AVG
2012-03-10 20:35 . 2012-03-10 20:52 -------- d-----w- c:\program files\JDownloader
2012-03-08 10:43 . 2012-03-08 19:35 -------- d-----w- C:\TEMP
2012-03-08 10:41 . 2012-03-08 10:41 -------- d-----w- C:\7-Zip
2012-03-07 07:41 . 2011-01-11 14:45 69632 ----a-w- c:\windows\system32\TIFmtA.dll
2012-03-07 07:41 . 2011-01-11 14:45 61440 ----a-w- c:\windows\system32\TrackID.DLL
2012-03-07 07:41 . 2011-01-11 14:45 49152 ----a-w- c:\windows\system32\TIBase64.dll
2012-03-07 07:41 . 2011-01-11 14:45 60928 ----a-w- c:\windows\system32\RIC53DX.EXE
2012-03-07 07:41 . 2011-01-11 14:45 221184 ----a-w- c:\windows\system32\RICJC32.dll
2012-03-07 07:41 . 2011-01-11 14:45 53248 ----a-w- c:\windows\system32\RIC53DPI.DLL
2012-03-07 07:41 . 2011-01-11 14:45 167936 ----a-w- c:\windows\system32\JCUI.exe
2012-03-06 20:51 . 2012-03-06 20:51 -------- d-----w- c:\programdata\RICOH
2012-03-06 20:51 . 2012-03-06 20:51 -------- d-----w- c:\program files\Y Soft
2012-03-06 20:49 . 2010-06-24 20:58 1679360 ----a-w- c:\windows\system32\MPC28dat.dll
2012-03-06 20:49 . 2009-09-10 03:26 73728 ----a-w- c:\windows\system32\mfricres.dll
2012-03-06 20:49 . 2007-05-11 02:36 32768 ----a-w- c:\windows\system32\ricA5Hlm.dll
2012-03-06 20:49 . 2006-08-22 06:18 57344 ----a-w- c:\windows\system32\ricdb32.dll
2012-03-06 06:45 . 2012-03-06 06:45 162664 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
2012-03-04 14:03 . 2012-03-04 14:05 -------- d-----w- c:\program files\=Programy_instal
2012-03-02 11:46 . 2012-03-02 11:46 -------- d-----w- C:\MyWinLockerData
2012-02-27 19:27 . 2012-02-27 19:27 -------- d-----w- c:\program files\Common Files\Java
2012-02-27 19:26 . 2012-02-27 19:26 -------- d-----w- c:\program files\Java
2012-02-18 00:03 . 2012-02-18 00:03 -------- d-----w- c:\users\Petr\dwhelper
2012-02-17 15:54 . 2012-02-17 15:54 -------- d-----w- c:\users\Petr\AppData\Local\Mozilla
2012-02-16 06:19 . 2011-12-30 05:27 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-02-16 06:18 . 2011-12-16 07:52 690688 ----a-w- c:\windows\system32\msvcrt.dll
2012-02-16 06:17 . 2012-01-04 08:58 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-02-16 06:13 . 2012-01-14 03:35 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-02-13 17:44 . 2012-02-13 17:44 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-02-13 12:41 . 2010-07-29 12:46 47616 ----a-w- c:\program files\Microsoft Games\Age of Empires II\age2_x1\w7ddpatcher.exe
2012-02-12 20:45 . 2004-10-22 01:18 749568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2012-02-12 20:45 . 2004-10-22 01:17 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2012-02-12 20:45 . 2004-10-22 01:17 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2012-02-12 20:45 . 2004-10-22 01:16 180224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2012-02-12 20:45 . 2004-10-22 01:16 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2012-02-12 20:45 . 2012-02-12 20:45 192644 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2012-02-12 20:45 . 2012-02-12 20:45 323716 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-27 19:26 . 2011-10-31 22:12 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-17 16:10 . 2011-12-25 08:59 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-09 14:48 . 2012-02-09 14:48 2938094 ----a-w- C:\dejepis.zip
2012-02-06 17:58 . 2011-09-04 08:47 172032 ----a-w- c:\windows\UOUninst.exe
2012-02-18 21:25 . 2012-02-17 15:54 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 03:40 120176 ----a-w- c:\program files\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-03-07 3905920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-05-27 337264]
"EgisUpdate"="c:\program files\EgisTec IPS\EgisUpdate.exe" [2010-03-11 201584]
"EgisTecPMMUpdate"="c:\program files\EgisTec IPS\PmmUpdate.exe" [2010-03-11 407920]
"mwlDaemon"="c:\program files\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-05-27 349552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-04 37296]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-19 9874024]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-06-16 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-06-16 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-06-16 150552]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2010-08-10 975952]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-05 1692968]
"AFQ"="c:\windows\AutosetFrequency.exe" [2010-12-14 59992]
"iSyncData"="c:\program files\Acer\Android Manager\iSync.exe" [2011-02-09 407416]
"AndroidManager"="c:\program files\Acer\Android Manager\AML.exe" [2011-02-09 508280]
"iPatchData"="c:\program files\Acer\Updater\iUpdate.exe" [2011-02-09 489848]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-01-05 714120]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-03-15 180224]
"RemoteControl10"="c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-02 87336]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2010-03-13 75048]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"SafeQ Client"="c:\program files\Y Soft\SafeQ Client\Client\SafeQ Client.exe" [2010-03-31 249856]
"SpywareTerminatorShield"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-12-23 2779824]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2011-1-11 704104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R3 EUCR;EUCR;c:\windows\system32\DRIVERS\EUCR6SK.SYS [2010-06-17 82768]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-10 23120]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-07-10 295248]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 18992]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 16432]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60976]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/09/04 23:08];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 10:58 87536]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2011-01-05 734592]
S2 GREGService;GREGService;c:\program files\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 MWLService;MyWinLocker Service;c:\program files\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\Spyware Terminator\st_rsser.exe [2011-12-23 482992]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-10 134736]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-10 24272]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - 78927230
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000Core.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-02 17:40]
.
2012-03-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000UA.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-02 17:40]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://acer.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://acer.msn.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 147.251.19.247 147.251.19.248 147.251.19.250
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\wdr78dt6.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(3852)
c:\program files\EgisTec MyWinLocker\x86\psdprotect.dll
c:\program files\EgisTec MyWinLocker\x86\sysenv.dll
c:\program files\Acer\Acer ePower Management\SysHook.dll
.
Celkový čas: 2012-03-12 19:27:04
ComboFix-quarantined-files.txt 2012-03-12 18:27
.
Před spuštěním: Volných bajtů: 27 947 245 568
Po spuštění: Volných bajtů: 27 846 074 368
.
- - End Of File - - 865A70D2BDBA33EC417935F750FA1C72

Re: Vytížení PC na 100%

Napsal: 12 bře 2012 20:22
od Rudy
Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
KillAll::

Folder::
c:\users\Petr\AppData\Local\Google\Update

Collect::
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000UA.job

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 09:22
od Erik Nighelt
pustil jsem to, ale žádná pozorovatelná změna na vytížení procesu ani paměti nenastala...


ComboFix 12-03-12.03 - Petr 13.03.2012 0:51.2.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1013.457 [GMT 1:00]
Spuštěný z: c:\users\Petr\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Petr\Desktop\CFScript.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
file zipped: c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000Core.job
file zipped: c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-820979201-3692934910-1770100111-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Petr\AppData\Local\Google\Update
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler.exe
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler64.exe
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleUpdate.exe
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateBroker.exe
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateHelper.msi
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateOnDemand.exe
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdate.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_am.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ar.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_bg.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_bn.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ca.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_cs.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_da.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_de.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_el.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_en-GB.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_en.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_es-419.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_es.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_et.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_fa.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_fi.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_fil.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_fr.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_gu.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_hi.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_hr.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_hu.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_id.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_is.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_it.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_iw.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ja.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_kn.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ko.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_lt.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_lv.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ml.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_mr.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ms.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_nl.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_no.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_pl.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_pt-BR.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_pt-PT.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ro.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ru.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_sk.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_sl.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_sr.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_sv.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_sw.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ta.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_te.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_th.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_tr.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_uk.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_ur.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_vi.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_zh-CN.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\goopdateres_zh-TW.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\psmachine.dll
c:\users\Petr\AppData\Local\Google\Update\1.3.21.99\psuser.dll
c:\users\Petr\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.99\GoogleUpdateSetup.exe
c:\users\Petr\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\17.0.963.79\chrome_updater.exe
c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-13 do 2012-03-13 )))))))))))))))))))))))))))))))
.
.
2012-03-13 00:06 . 2012-03-13 00:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-12 09:00 . 2012-03-12 09:00 -------- d-----w- c:\program files\trend micro
2012-03-12 09:00 . 2012-03-12 09:00 -------- d-----w- C:\rsit
2012-03-11 22:45 . 2012-03-11 22:45 -------- d-----w- c:\users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2012-03-11 22:44 . 2012-03-11 22:45 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-03-11 22:44 . 2012-03-11 22:44 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-03-11 22:11 . 2012-03-11 22:11 -------- d-----w- c:\programdata\Kaspersky Lab
2012-03-11 21:59 . 2012-03-11 21:59 -------- d-----w- c:\users\Petr\AppData\Roaming\AVG
2012-03-10 20:35 . 2012-03-10 20:52 -------- d-----w- c:\program files\JDownloader
2012-03-08 10:43 . 2012-03-08 19:35 -------- d-----w- C:\TEMP
2012-03-08 10:41 . 2012-03-08 10:41 -------- d-----w- C:\7-Zip
2012-03-07 07:41 . 2011-01-11 14:45 69632 ----a-w- c:\windows\system32\TIFmtA.dll
2012-03-07 07:41 . 2011-01-11 14:45 61440 ----a-w- c:\windows\system32\TrackID.DLL
2012-03-07 07:41 . 2011-01-11 14:45 49152 ----a-w- c:\windows\system32\TIBase64.dll
2012-03-07 07:41 . 2011-01-11 14:45 60928 ----a-w- c:\windows\system32\RIC53DX.EXE
2012-03-07 07:41 . 2011-01-11 14:45 221184 ----a-w- c:\windows\system32\RICJC32.dll
2012-03-07 07:41 . 2011-01-11 14:45 53248 ----a-w- c:\windows\system32\RIC53DPI.DLL
2012-03-07 07:41 . 2011-01-11 14:45 167936 ----a-w- c:\windows\system32\JCUI.exe
2012-03-06 20:51 . 2012-03-06 20:51 -------- d-----w- c:\programdata\RICOH
2012-03-06 20:51 . 2012-03-06 20:51 -------- d-----w- c:\program files\Y Soft
2012-03-06 20:49 . 2010-06-24 20:58 1679360 ----a-w- c:\windows\system32\MPC28dat.dll
2012-03-06 20:49 . 2009-09-10 03:26 73728 ----a-w- c:\windows\system32\mfricres.dll
2012-03-06 20:49 . 2007-05-11 02:36 32768 ----a-w- c:\windows\system32\ricA5Hlm.dll
2012-03-06 20:49 . 2006-08-22 06:18 57344 ----a-w- c:\windows\system32\ricdb32.dll
2012-03-06 06:45 . 2012-03-06 06:45 162664 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
2012-03-04 14:03 . 2012-03-04 14:05 -------- d-----w- c:\program files\=Programy_instal
2012-03-02 11:46 . 2012-03-02 11:46 -------- d-----w- C:\MyWinLockerData
2012-02-27 19:27 . 2012-02-27 19:27 -------- d-----w- c:\program files\Common Files\Java
2012-02-27 19:26 . 2012-02-27 19:26 -------- d-----w- c:\program files\Java
2012-02-18 00:03 . 2012-02-18 00:03 -------- d-----w- c:\users\Petr\dwhelper
2012-02-17 15:54 . 2012-02-17 15:54 -------- d-----w- c:\users\Petr\AppData\Local\Mozilla
2012-02-16 06:19 . 2011-12-30 05:27 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-02-16 06:18 . 2011-12-16 07:52 690688 ----a-w- c:\windows\system32\msvcrt.dll
2012-02-16 06:17 . 2012-01-04 08:58 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-02-16 06:13 . 2012-01-14 03:35 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-02-13 17:44 . 2012-02-13 17:44 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-02-13 12:41 . 2010-07-29 12:46 47616 ----a-w- c:\program files\Microsoft Games\Age of Empires II\age2_x1\w7ddpatcher.exe
2012-02-12 20:45 . 2004-10-22 01:18 749568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2012-02-12 20:45 . 2004-10-22 01:17 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2012-02-12 20:45 . 2004-10-22 01:17 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2012-02-12 20:45 . 2004-10-22 01:16 180224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2012-02-12 20:45 . 2004-10-22 01:16 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2012-02-12 20:45 . 2012-02-12 20:45 192644 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2012-02-12 20:45 . 2012-02-12 20:45 323716 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-27 19:26 . 2011-10-31 22:12 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-17 16:10 . 2011-12-25 08:59 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-09 14:48 . 2012-02-09 14:48 2938094 ----a-w- C:\dejepis.zip
2012-02-06 17:58 . 2011-09-04 08:47 172032 ----a-w- c:\windows\UOUninst.exe
2012-02-18 21:25 . 2012-02-17 15:54 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 03:40 120176 ----a-w- c:\program files\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-03-07 3905920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-05-27 337264]
"EgisUpdate"="c:\program files\EgisTec IPS\EgisUpdate.exe" [2010-03-11 201584]
"EgisTecPMMUpdate"="c:\program files\EgisTec IPS\PmmUpdate.exe" [2010-03-11 407920]
"mwlDaemon"="c:\program files\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-05-27 349552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-04 37296]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-19 9874024]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-06-16 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-06-16 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-06-16 150552]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2010-08-10 975952]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-05 1692968]
"AFQ"="c:\windows\AutosetFrequency.exe" [2010-12-14 59992]
"iSyncData"="c:\program files\Acer\Android Manager\iSync.exe" [2011-02-09 407416]
"AndroidManager"="c:\program files\Acer\Android Manager\AML.exe" [2011-02-09 508280]
"iPatchData"="c:\program files\Acer\Updater\iUpdate.exe" [2011-02-09 489848]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-01-05 714120]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-03-15 180224]
"RemoteControl10"="c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-02 87336]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2010-03-13 75048]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"SafeQ Client"="c:\program files\Y Soft\SafeQ Client\Client\SafeQ Client.exe" [2010-03-31 249856]
"SpywareTerminatorShield"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-12-23 2779824]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2011-1-11 704104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-10 134736]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-10 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
R3 CFcatchme;CFcatchme;c:\users\Petr\AppData\Local\Temp\CFcatchme.sys [x]
R3 EUCR;EUCR;c:\windows\system32\DRIVERS\EUCR6SK.SYS [2010-06-17 82768]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-10 23120]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-07-10 295248]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 18992]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 16432]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60976]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/09/04 23:08];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 10:58 87536]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2011-01-05 734592]
S2 GREGService;GREGService;c:\program files\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 MWLService;MyWinLocker Service;c:\program files\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\Spyware Terminator\st_rsser.exe [2011-12-23 482992]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://acer.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://acer.msn.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 147.251.205.1 147.251.197.2
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\wdr78dt6.default\
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(1804)
c:\program files\EgisTec MyWinLocker\x86\psdprotect.dll
c:\program files\EgisTec MyWinLocker\x86\sysenv.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Launch Manager\LMworker.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\igfxext.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-03-13 01:15:23 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-03-13 00:15
ComboFix2.txt 2012-03-12 18:27
.
Před spuštěním: Volných bajtů: 27 881 897 984
Po spuštění: Volných bajtů: 27 828 498 432
.
- - End Of File - - F41BA4B993B89E56A54DF9BCE044761E
Nahr nˇ probŘhlo ŁspŘçnŘ

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 18:07
od Rudy
Zjistěte v TaskManageru (Ctrl>Alt>Del), který proces nejvíce zatěžuje systém.

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 21:03
od Erik Nighelt
po vypnutí (dnes na pár hodin) to běží o poznání lépe, nejvíce vytěžuje prohlížeč chrome.exe něco okolo 50 000kb a ač mám zapnuté jen jedno okno, je tam asi 6 procesů, různých velikostí (druhý má cca 40 000, pak následuje explorer.exe a další 4 chromy které mají okolo 7000)

momentálně při vypnutém antiviru a zapnutém prohlížeči, co je jako jediný běžící program mám vytížení procesoru 18-30 procent, což už se mi líbí o poznání více.. ale fyzická paměť, má kolem 630Mb z celkové kapacity 1 Gb - to je tak dobře?

díky moc..

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 21:14
od Rudy
Pořád je toho dost. Zkuste GChr přeinstalovat. Dále můžete zkusit reinstalovat antivir a na zkoušku vypnout aut. aktualizace.

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 22:38
od Erik Nighelt
Google Chrome jsem přeinstaloval, odinstaloval jsem z disku všechny programy co už nepoužívám a využití paměti po restartu se ustálilo kolem 800Mb.. což je zase tam, kde jsem byl předtím, jen procesor jede na minimum.. vubec nic mi kromě antiviru který jsem taky reinstaloval neběží, když vypnu antivir tak to o něco spadne..

a ještě bych se chtěl zeptat - po užití programů na odstraňování všelijakých breberek, jak jsem psal v prním postu(nebo možná až po combofixu - to nevím), se mi na C objevila spousta nových složek s docela hodně daty.. jako jsou:
$AVG
Intel
MSOCache
MyWinLockerData - 2.1Gb
OEM - 2.7Gb
ProgramData - 1.8 Gb
Qoobox
Recovery
ale mají povětšinou rok staré datum vytvoření.. jsou to nějaké složky co se jen odkryli a mužu jim zase nastavit atribut skrytý ? nebo je to něco, s čím bych si měl začít dělat starosti?

k té využití paměti ještě zkouším defragmentovat, ale to je jen 4% fragmentovaných souborů, takže to asi uplně nepomuže..

Re: Vytížení PC na 100%

Napsal: 13 bře 2012 22:45
od Rudy
$AVG - Složka, která patří antiviru AVG
Intel - Ovladače chipsetu
MSOCache - systémová
MyWinLockerData - vaše zamčená data
Qoobox - záloha ComboFixu - možno smazat
Recovery - pravděpodobně nějaká oprava.

Re: Vytížení PC na 100%

Napsal: 14 bře 2012 10:45
od Erik Nighelt
tak jsem to nakonec "dočistil" přes Advanced SystemCare 5.. v klidovém stádiu, když mi nejedou žádné aplikace se to pohzbuje kolem 440Mb, to už není tak zlé, ne?

díky za váš čas a pomoc

Re: Vytížení PC na 100%

Napsal: 14 bře 2012 18:21
od Rudy
To ne. Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz