Zpomalený PC a občasné záseky Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 27 kvě 2013 17:09

Dík, tady je ta zpráva

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Honza [Práva správce]
Mód : Odebrat -- Datum : 05/27/2013 17:07:08
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 3 ¤¤¤
[DLL] explorer.exe -- C:\Windows\explorer.exe : C:\Users\Dana\AppData\Roaming\Seznam.cz\bin\3012libfoxloader-x64.dll [x] -> ODEBRÁNO
[SUSP PATH] szndesktop.exe -- C:\Users\Dana\AppData\Roaming\Seznam.cz\bin\szndesktop.exe [7] -> SMAZÁNO [TermProc]
[SUSP PATH] listicka-x64.exe -- C:\Users\Dana\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe [7] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[RUN][SUSP PATH] HKUS\S-1-5-21-2507882274-238259549-3319927043-1002[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Dana\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q) [7] -> VYMAZÁNO
[RUN][SUSP PATH] HKUS\S-1-5-21-2507882274-238259549-3319927043-1002[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Dana\AppData\Roaming\Seznam.cz\szninstall.exe" -c) [7] -> VYMAZÁNO
[TASK][SUSP PATH] iMeshNAG.job : C:\Users\Honza\AppData\Local\Temp\iMesh_setup.exe NAGMETHOD=Schedule [x] -> VYMAZÁNO
[TASK][SUSP PATH] EPUpdater : C:\Users\Honza\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [x] -> VYMAZÁNO
[TASK][SUSP PATH] iMeshNAG : C:\Users\Honza\AppData\Local\Temp\iMesh_setup.exe NAGMETHOD=Schedule [x] -> ERROR
[TASK][SUSP PATH] {C8219B1B-2242-4543-8A11-07D1E9EB0577} : C:\Users\Honza\Desktop\registrybooster.exe [x] -> VYMAZÁNO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKS-60Z1A0 ATA Device +++++
--- User ---
[MBR] 51791105613a0af144d934acdc7e63c8
[BSP] 6202ba66a14d23a89f5ca7dec0a18575 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 476838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3]_D_05272013_02d1707.txt >>
RKreport[1]_S_05262013_02d1353.txt ; RKreport[2]_S_05272013_02d1706.txt ; RKreport[3]_D_05272013_02d1707.txt
Nahoru
Reklama
Top
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod memphisto » 27 kvě 2013 20:43

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 04 čer 2013 18:35

ComboFix 13-05-29.01 - Honza 29.05.2013 20:00:25.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4055.2302 [GMT 2:00]
Spuštěný z: c:\users\Honza\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\program files\IMPI\ExTEnsion32.dll
c:\programdata\B3EBD89200.sys
c:\windows\Installer\{33CFCB69-2FA5-43E8-B8A8-FAA155F870B5}\NewShortcut1_46FEF19C05F1475DAA14D9007DC15270_2.exe
c:\windows\iun6002.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-28 do 2013-05-29 )))))))))))))))))))))))))))))))
.
.
2013-05-29 18:08 . 2013-05-29 18:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-29 18:08 . 2013-05-29 18:08 -------- d-----w- c:\users\admin\AppData\Local\temp
2013-05-29 16:22 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8F66E6D7-5728-4E45-9C08-DF673E955112}\mpengine.dll
2013-05-28 14:15 . 2013-05-28 14:15 -------- d-----w- c:\users\Dana\AppData\Roaming\Malwarebytes
2013-05-28 07:13 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-25 20:02 . 2013-05-25 20:02 97 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{80323550-FC74-313B-1E56-918F00C2AAB6}-DeleteOnReboot.bat
2013-05-25 18:50 . 2013-05-25 18:50 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-05-25 17:03 . 2013-05-25 17:03 -------- d-----w- c:\program files (x86)\Infogrames
2013-05-25 17:03 . 2001-09-05 02:18 225280 ----a-w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2013-05-25 17:03 . 2001-09-05 01:14 176128 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2013-05-25 17:02 . 2001-09-05 02:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2013-05-25 17:02 . 2001-09-05 01:13 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2013-05-24 21:00 . 2013-05-24 21:00 -------- d-----w- c:\program files (x86)\2K Games
2013-05-24 16:52 . 2013-05-24 16:52 -------- d-----w- c:\program files (x86)\TeamViewer
2013-05-24 14:43 . 2002-07-26 00:07 614532 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2013-05-24 12:55 . 2013-05-25 20:40 -------- d-----w- c:\users\Dana\AppData\Roaming\Seznam.cz
2013-05-23 15:57 . 2013-05-23 15:57 -------- d-----w- c:\program files (x86)\Seznam.cz
2013-05-23 15:57 . 2013-05-24 15:51 -------- d-----w- c:\users\Honza\AppData\Roaming\Seznam.cz
2013-05-22 05:12 . 2013-05-22 05:12 964552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8F9CF22D-9767-4E2B-9484-58E41F8919DD}\gapaengine.dll
2013-05-21 14:17 . 2013-05-21 14:17 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-05-21 14:17 . 2013-05-21 14:17 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-05-21 14:17 . 2013-05-21 14:17 -------- d-----w- c:\program files (x86)\Java
2013-05-18 11:25 . 2013-05-18 11:25 262552 ----a-w- c:\program files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2013-05-16 22:41 . 2013-05-16 22:41 -------- d-----w- c:\users\Honza\AppData\Local\4A Games
2013-05-12 13:43 . 2013-05-12 13:43 566048 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-05-10 07:57 . 2013-05-10 07:57 187456 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2013-05-09 16:32 . 2013-05-09 16:32 -------- d-----w- c:\users\Honza\AppData\Roaming\HD Tune Pro
2013-05-09 16:32 . 2013-05-09 16:32 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-05-09 15:52 . 2013-05-09 15:52 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2013-05-09 15:49 . 2013-03-15 05:53 1807136 ----a-w- c:\windows\system32\nvdispco6431422.dll
2013-05-09 15:49 . 2013-03-15 05:53 1510176 ----a-w- c:\windows\system32\nvdispgenco6431422.dll
2013-05-09 15:48 . 2013-05-09 15:48 -------- d-----w- C:\NVIDIA
2013-05-03 22:09 . 2013-05-09 15:43 -------- d-----w- c:\users\Honza\AppData\Roaming\Pomaah
2013-05-03 22:09 . 2013-05-08 09:30 -------- d-----w- c:\users\Honza\AppData\Roaming\Oshim
2013-05-03 22:09 . 2013-05-03 22:09 -------- d-----w- c:\users\Honza\AppData\Roaming\Uriswu
2013-05-03 22:03 . 2013-05-09 15:43 -------- d-----w- c:\users\Honza\AppData\Roaming\Liyp
2013-05-03 22:03 . 2013-05-09 07:44 -------- d-----w- c:\users\Honza\AppData\Roaming\Qiolor
2013-05-03 22:03 . 2013-05-03 22:03 -------- d-----w- c:\users\Honza\AppData\Roaming\Akol
2013-05-03 17:25 . 2013-05-07 17:38 -------- d-----w- c:\program files (x86)\Deluge
2013-05-02 18:55 . 2013-05-02 18:55 -------- d-----w- c:\users\Honza\AppData\Roaming\Wargaming.net
2013-05-02 17:09 . 2013-05-22 15:10 -------- d--h--w- c:\windows\msdownld.tmp
2013-05-02 17:09 . 2013-05-02 17:09 -------- d-----w- C:\Games
2013-05-02 16:51 . 2013-05-04 13:17 -------- d-----w- c:\users\Honza\AppData\Roaming\NVIDIA
2013-05-02 16:51 . 2013-05-02 16:51 -------- d-----w- c:\program files (x86)\GPU-Z
2013-05-02 16:50 . 2013-05-02 16:50 -------- d-----w- c:\program files\CPUID
2013-05-02 16:22 . 2013-05-02 16:22 -------- d-----w- c:\windows\SysWow64\searchplugins
2013-05-02 16:22 . 2013-05-02 16:22 -------- d-----w- c:\windows\SysWow64\Extensions
2013-05-02 16:18 . 2013-05-12 21:42 13403168 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-05-02 16:18 . 2013-05-12 21:42 15910736 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-05-02 16:18 . 2013-05-12 21:42 1059560 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-05-02 16:18 . 2013-05-12 21:42 2935696 ----a-w- c:\windows\system32\nvapi64.dll
2013-05-02 16:18 . 2013-05-12 21:42 2597344 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-05-02 16:17 . 2013-05-07 16:03 -------- d-----w- c:\users\UpdatusUser
2013-05-02 16:16 . 2013-05-08 14:13 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-02 16:16 . 2013-05-02 16:16 -------- d-----w- c:\programdata\NVIDIA Corporation
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-21 14:17 . 2012-07-14 13:11 866720 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-05-21 14:17 . 2010-11-05 09:29 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-05-17 22:41 . 2011-03-23 13:43 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 05:59 . 2012-04-04 15:53 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 05:59 . 2011-05-21 06:33 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 21:42 . 2013-02-25 22:32 12426216 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-05-12 20:34 . 2010-03-24 21:44 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-12 20:34 . 2010-03-24 21:44 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-12 20:34 . 2010-03-24 21:44 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-12 20:34 . 2010-03-24 21:44 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-12 20:34 . 2010-03-24 21:44 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-05-12 20:34 . 2010-03-24 21:44 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-02 15:29 . 2010-11-04 10:44 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-24 13:30 . 2011-03-26 05:55 905296 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-04-13 05:49 . 2013-05-15 06:14 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 06:14 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 06:14 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 06:14 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 06:14 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 06:14 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 11:02 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-04 12:50 . 2013-03-20 16:59 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-19 06:04 . 2013-04-10 06:26 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 06:26 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 06:26 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 06:26 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 06:26 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 06:26 112640 ----a-w- c:\windows\system32\smss.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2013-05-03 1635752]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2013-04-17 802136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
.
c:\users\Honza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AVerQuick.lnk - c:\program files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe [2011-6-30 769536]
SnugTV Quick Start.lnk - c:\windows\Installer\{33CFCB69-2FA5-43E8-B8A8-FAA155F870B5}\NewShortcut1_46FEF19C05F1475DAA14D9007DC15270_2.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-26 834544]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 IMPI Updater;IMPI Updater;c:\program files\IMPI\ExtensionUpdaterService.exe [2013-02-05 185856]
R3 ATICDSDr;ATICDSDr;c:\users\Honza\AppData\Local\Temp\ATICDSDr.sys [x]
R3 AVerNetworkTunerx64;AVerMedia Analog CIR Network Tuner;c:\windows\system32\drivers\AVerNetworkTuneramd64.sys [2011-08-23 297984]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-07-24 14448]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2012-09-25 36928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-23 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-28 283200]
S2 AVerMceDevice;AVerMceDevice;c:\program files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceDevice.exe [2011-05-09 137216]
S2 AVerMceService;AVerMceService;c:\program files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceService.exe [2011-08-24 324096]
S2 AVerNetDevice;AVerNetDevice;c:\program files (x86)\Common Files\AVerMedia\Service\AVerNetDevice.exe [2011-05-03 139776]
S2 AVerRemote;AVerRemote;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2009-10-30 348160]
S2 AVerScheduleService;AVerScheduleService;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-06 397312]
S2 AVerUpdateServer;AVerUpdateServer;c:\program files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-01-06 168448]
S2 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2012-10-26 87368]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 47632]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-10-08 166912]
S2 SnugTV Service;SnugTV Service;c:\program files (x86)\SnugTV\SnugTV Station\AMAServer.exe [2011-04-06 571904]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 AVerAF35;AVerMedia A867 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys [2010-05-31 717952]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
S3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-24 11:19 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 05:59]
.
2013-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-08 12:17]
.
2013-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-08 12:17]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearchAssistant = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Honza\AppData\Roaming\Mozilla\Firefox\Profiles\5rlfvybr.default-1363802495973\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{17E113E6-CD0E-4045-B154-65F0E57959EF} - c:\program files\IMPI\Extension32.dll
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
HKLM-Run-SpywareTerminatorShield - c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM-Run-SpywareTerminatorUpdater - c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-HP OrderReminder - c:\program files (x86)\Hewlett-Packard\OrderReminder\uninstall\hpuninstaller.exe
AddRemove-XPv3.8.252 - c:\windows\Radeon Omega Drivers v3.8.252
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-05-29 20:11:32
ComboFix-quarantined-files.txt 2013-05-29 18:11
.
Před spuštěním: Volných bajtů: 151 598 735 360
Po spuštění: Volných bajtů: 154 899 611 648
.
- - End Of File - - 7E20BBDE276F24BB5D96BF2CA8AD33F5
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod jaro3 » 04 čer 2013 19:28

c:\users\Honza\AppData\Roaming\Pomaah
c:\users\Honza\AppData\Roaming\Oshim
c:\users\Honza\AppData\Roaming\Uriswu
c:\users\Honza\AppData\Roaming\Liyp
c:\users\Honza\AppData\Roaming\Qiolor
c:\users\Honza\AppData\Roaming\Akol
c:\program files (x86)\Deluge
c:\windows\SysWow64\searchplugins
c:\windows\SysWow64\Extensions

znáš ty programy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 04 čer 2013 21:32

Zvláštní, ani jeden z programů neznám. Pc sice není moje, ale znám ho již dlouho.
Dík
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod jaro3 » 04 čer 2013 22:48

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\users\Honza\AppData\Roaming\Pomaah
c:\users\Honza\AppData\Roaming\Oshim
c:\users\Honza\AppData\Roaming\Uriswu
c:\users\Honza\AppData\Roaming\Liyp
c:\users\Honza\AppData\Roaming\Qiolor
c:\users\Honza\AppData\Roaming\Akol
c:\program files (x86)\Deluge
c:\windows\msdownld.tmp
c:\program files (x86)\Google\Update

DirLook::
c:\windows\SysWow64\searchplugins
c:\windows\SysWow64\Extensions

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"=-

Firefox::
FF - ProfilePath - c:\users\Honza\AppData\Roaming\Mozilla\Firefox\Profiles\5rlfvybr.default-1363802495973\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
milanek00
nováček
Příspěvky: 1
Registrován: červen 13
Pohlaví: Žena
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod milanek00 » 09 čer 2013 10:31

Dobrý den,
mám podobný problém, ale nejsem až tak dobrá v tomhle a potřebovala bych poradit, měla jsem trojana(policie cr), radili my obnovit do nějakého dne, kdy fungoval správně, poté vyčistit pc vším možným, malware,eset scanner, tak měl by být doufám v poho už... Ale něco se muselo zvrtnout, protože mi to hlásí hned při zapnutí pc, že mám přeinstalovat nebo opravit extender player, co jsem pátrala, patřilo to k nějakým hrám, které jsem musela odinstalovat, teď mi nejde nic odinstalovat, pořád pc běží, ikdyž nic nědelám, nejde mi skype, tak jsem zkoušela hijackthis a zkopnu co to našlo, pochopila jsem něco s javou, asi stará verzě, ale teď to nemůžu, jak nainstalovat, to nejde taky. Nechci formátovat celý windows... :(

A fatal error has been detected by the Java Runtime Environment:
#
# EXCEPTION_ACCESS_VIOLATION (0xc0000005) at pc=0x02bde720, pid=2676, tid=4228
#
# JRE version: 7.0_11-b21
# Java VM: Java HotSpot(TM) Client VM (23.6-b04 mixed mode, sharing windows-x86 )
# Problematic frame:
# J tet.getAddress(Ljava/lang/Object;)J
#
# Failed to write core dump. Minidumps are not enabled by default on client versions of Windows
#
# If you would like to submit a bug report, please visit:
# http://bugreport.sun.com/bugreport/crash.jsp
#

--------------- T H R E A D ---------------

Current thread (0x052cac00): JavaThread "thread applet-hw-1" [_thread_in_Java, id=4228, stack(0x07a20000,0x07a70000)]

siginfo: ExceptionCode=0xc0000005, reading address 0x34e00000

Registers:
EAX=0x2ca01318, EBX=0x001e8480, ECX=0x29a4ffc0, EDX=0x2ca01350
ESP=0x07a6f150, EBP=0x07a6f1f8, ESI=0x020ffb37, EDI=0x7fffffff
EIP=0x02bde720, EFLAGS=0x00010293

Top of Stack: (sp=0x07a6f150)
0x07a6f150: 083aa0f8 3462ef9d 07a6f18c 34635810
0x07a6f160: 0000926b 2ca01350 29a4ffc0 2ca01350
0x07a6f170: 020ffb36 02bddb54 00000000 00000000
0x07a6f180: 00000000 0000926b 07a6f1f8 02bddb54
0x07a6f190: 08242078 02aae58f 052cac00 02aae566
0x07a6f1a0: 07a6f1a0 3462f19a 00000006 00000c33
0x07a6f1b0: 29a4ffc0 29a4ffc0 00000000 07a6f1d4
0x07a6f1c0: 07a6f1f8 02aa32c7 07a6f1f8 02aa32c7

Instructions: (pc=0x02bde720)
0x02bde700: 8b 79 20 8b 7f 08 85 05 00 01 0e 00 3b f7 0f 8d
0x02bde710: 7f 01 00 00 8b 41 20 3b 70 08 0f 83 21 02 00 00
0x02bde720: 8b 44 b0 0c 81 f8 fe ca ad de 0f 84 0d 00 00 00
0x02bde730: 89 74 24 20 89 54 24 1c e9 e1 00 00 00 b8 00 00


Register to memory mapping:

EAX=
[error occurred during error reporting (printing register info), id 0xc0000005]

Stack: [0x07a20000,0x07a70000], sp=0x07a6f150, free space=316k
Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
J tet.getAddress(Ljava/lang/Object;)J
j hw.init()V+7
j com.sun.deploy.uitoolkit.impl.awt.AWTAppletAdapter.init()V+9
j sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run()V+1046
j java.lang.Thread.run()V+11
v ~StubRoutines::call_stub
V [jvm.dll+0x12a3ba]
V [jvm.dll+0x1d97de]
V [jvm.dll+0x12a5a3]
V [jvm.dll+0x12a607]
V [jvm.dll+0xd315f]
V [jvm.dll+0x14a6b7]
V [jvm.dll+0x14a820]
V [jvm.dll+0x17f009]
C [msvcr100.dll+0x5c6de] endthreadex+0x3a
C [msvcr100.dll+0x5c788] endthreadex+0xe4
C [kernel32.dll+0x133aa] BaseThreadInitThunk+0x12
C [ntdll.dll+0x39ef2] RtlInitializeExceptionChain+0x63
C [ntdll.dll+0x39ec5] RtlInitializeExceptionChain+0x36


--------------- P R O C E S S ---------------

Java Threads: ( => current thread )
0x052cc800 JavaThread "ProgressReporter" daemon [_thread_blocked, id=1532, stack(0x07b80000,0x07bd0000)]
0x052cb800 JavaThread "TimerQueue" daemon [_thread_blocked, id=1512, stack(0x07ee0000,0x07f30000)]
=>0x052cac00 JavaThread "thread applet-hw-1" [_thread_in_Java, id=4228, stack(0x07a20000,0x07a70000)]
0x052ca800 JavaThread "AWT-EventQueue-1" [_thread_blocked, id=2428, stack(0x080a0000,0x080f0000)]
0x052c9c00 JavaThread "JVM[id=1]-Heartbeat" daemon [_thread_blocked, id=4232, stack(0x07be0000,0x07c30000)]
0x052ca000 JavaThread "AWT-EventQueue-2" [_thread_blocked, id=4548, stack(0x06b20000,0x06b70000)]
0x052c9400 JavaThread "Applet 1 LiveConnect Worker Thread" [_thread_blocked, id=2220, stack(0x07a80000,0x07ad0000)]
0x052c8c00 JavaThread "AWT-EventQueue-0" [_thread_blocked, id=2824, stack(0x079b0000,0x07a00000)]
0x052c8800 JavaThread "AWT-Shutdown" [_thread_blocked, id=5104, stack(0x077c0000,0x07810000)]
0x052c7400 JavaThread "Browser Side Object Cleanup Thread" [_thread_blocked, id=4784, stack(0x078e0000,0x07930000)]
0x052c8000 JavaThread "CacheCleanUpThread" daemon [_thread_blocked, id=2504, stack(0x076b0000,0x07700000)]
0x052c7c00 JavaThread "CacheMemoryCleanUpThread" daemon [_thread_blocked, id=4212, stack(0x06de0000,0x06e30000)]
0x052c3000 JavaThread "SysExecutionTheadCreator" daemon [_thread_blocked, id=2240, stack(0x07520000,0x07570000)]
0x05297000 JavaThread "AWT-Windows" daemon [_thread_in_native, id=3748, stack(0x022c0000,0x023c0000)]
0x05296400 JavaThread "Java2D Disposer" daemon [_thread_blocked, id=3692, stack(0x06450000,0x064a0000)]
0x05289800 JavaThread "Java Plug-In Pipe Worker Thread (Client-Side)" daemon [_thread_in_native, id=2548, stack(0x06e70000,0x06ec0000)]
0x0523a000 JavaThread "Timer-0" [_thread_blocked, id=2452, stack(0x06bd0000,0x06c20000)]
0x051d6400 JavaThread "traceMsgQueueThread" daemon [_thread_blocked, id=1876, stack(0x069c0000,0x06a10000)]
0x006c2c00 JavaThread "Service Thread" daemon [_thread_blocked, id=5088, stack(0x05000000,0x05050000)]
0x006c1000 JavaThread "C1 CompilerThread0" daemon [_thread_blocked, id=4816, stack(0x04c30000,0x04c80000)]
0x006bd000 JavaThread "Attach Listener" daemon [_thread_blocked, id=2944, stack(0x04e00000,0x04e50000)]
0x006ba400 JavaThread "Signal Dispatcher" daemon [_thread_blocked, id=4840, stack(0x04bb0000,0x04c00000)]
0x0069d000 JavaThread "Finalizer" daemon [_thread_blocked, id=3292, stack(0x04d20000,0x04d70000)]
0x00699400 JavaThread "Reference Handler" daemon [_thread_blocked, id=1052, stack(0x028e0000,0x02930000)]
0x00bfcc00 JavaThread "main" [_thread_blocked, id=3228, stack(0x00a90000,0x00ae0000)]

Other Threads:
0x00697c00 VMThread [stack: 0x02980000,0x029d0000] [id=360]
0x006e0800 WatcherThread [stack: 0x05160000,0x051b0000] [id=4476]

VM state:not at safepoint (normal execution)

VM Mutex/Monitor currently owned by a thread: None

Heap
def new generation total 78656K, used 66287K [0x24200000, 0x29750000, 0x29750000)
eden space 69952K, 94% used [0x24200000, 0x282bbf70, 0x28650000)
from space 8704K, 0% used [0x28650000, 0x28650000, 0x28ed0000)
to space 8704K, 0% used [0x28ed0000, 0x28ed0000, 0x29750000)
tenured generation total 174784K, used 174783K [0x29750000, 0x34200000, 0x34200000)
the space 174784K, 99% used [0x29750000, 0x341ffff8, 0x34200000, 0x34200000)
compacting perm gen total 12288K, used 4362K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x34642868, 0x34642a00, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)

Card table byte_map: [0x024c0000,0x02570000] byte_map_base: 0x0239f000

Polling page: 0x000e0000

Code Cache [0x02aa0000, 0x02be0000, 0x04aa0000)
total_blobs=648 nmethods=395 adapters=188 free_code_cache=31491Kb largest_free_block=32247680

Compilation events (10 events):
Event: 43.573 Thread 0x006c1000 2 % ! tet::spray @ 46 (120 bytes)
Event: 43.574 Thread 0x006c1000 nmethod 2% 0x02bdb7c8 code [0x02bdb940, 0x02bdbeb4]
Event: 44.272 Thread 0x006c1000 390 tet$Leak::<init> (15 bytes)
Event: 44.272 Thread 0x006c1000 nmethod 390 0x02bdc788 code [0x02bdc880, 0x02bdc920]
Event: 44.933 Thread 0x006c1000 3 % tet::getBA @ 10 (226 bytes)
Event: 44.935 Thread 0x006c1000 nmethod 3% 0x02bdc988 code [0x02bdcb10, 0x02bdcf6c]
Event: 45.319 Thread 0x006c1000 4 % tet::getMB @ 10 (250 bytes)
Event: 45.320 Thread 0x006c1000 nmethod 4% 0x02bdd808 code [0x02bdd990, 0x02bdddf4]
Event: 45.485 Thread 0x006c1000 5 % tet::getAddress @ 5 (188 bytes)
Event: 45.486 Thread 0x006c1000 nmethod 5% 0x02bde588 code [0x02bde6e0, 0x02bdea3c]

GC Heap History (10 events):
Event: 43.610 GC heap before
{Heap before GC invocations=8 (full 4):
def new generation total 8576K, used 8576K [0x24200000, 0x24b40000, 0x29750000)
eden space 7680K, 100% used [0x24200000, 0x24980000, 0x24980000)
from space 896K, 100% used [0x24a60000, 0x24b40000, 0x24b40000)
to space 896K, 0% used [0x24980000, 0x24980000, 0x24a60000)
tenured generation total 29732K, used 29068K [0x29750000, 0x2b459000, 0x34200000)
the space 29732K, 97% used [0x29750000, 0x2b3b3180, 0x2b3b3200, 0x2b459000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
Event: 43.697 GC heap after
Heap after GC invocations=9 (full 5):
def new generation total 27648K, used 869K [0x24200000, 0x26000000, 0x29750000)
eden space 24576K, 3% used [0x24200000, 0x242d9738, 0x25a00000)
from space 3072K, 0% used [0x25a00000, 0x25a00000, 0x25d00000)
to space 3072K, 0% used [0x25d00000, 0x25d00000, 0x26000000)
tenured generation total 61288K, used 36771K [0x29750000, 0x2d32a000, 0x34200000)
the space 61288K, 59% used [0x29750000, 0x2bb38ff0, 0x2bb39000, 0x2d32a000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
}
Event: 43.731 GC heap before
{Heap before GC invocations=9 (full 5):
def new generation total 27648K, used 24576K [0x24200000, 0x26000000, 0x29750000)
eden space 24576K, 100% used [0x24200000, 0x25a00000, 0x25a00000)
from space 3072K, 0% used [0x25a00000, 0x25a00000, 0x25d00000)
to space 3072K, 0% used [0x25d00000, 0x25d00000, 0x26000000)
tenured generation total 61288K, used 36771K [0x29750000, 0x2d32a000, 0x34200000)
the space 61288K, 59% used [0x29750000, 0x2bb38ff0, 0x2bb39000, 0x2d32a000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
Event: 43.793 GC heap after
Heap after GC invocations=10 (full 5):
def new generation total 27648K, used 3071K [0x24200000, 0x26000000, 0x29750000)
eden space 24576K, 0% used [0x24200000, 0x24200000, 0x25a00000)
from space 3072K, 99% used [0x25d00000, 0x25ffffd8, 0x26000000)
to space 3072K, 0% used [0x25a00000, 0x25a00000, 0x25d00000)
tenured generation total 61288K, used 58272K [0x29750000, 0x2d32a000, 0x34200000)
the space 61288K, 95% used [0x29750000, 0x2d038228, 0x2d038400, 0x2d32a000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
}
Event: 43.825 GC heap before
{Heap before GC invocations=10 (full 5):
def new generation total 27648K, used 27647K [0x24200000, 0x26000000, 0x29750000)
eden space 24576K, 100% used [0x24200000, 0x25a00000, 0x25a00000)
from space 3072K, 99% used [0x25d00000, 0x25ffffd8, 0x26000000)
to space 3072K, 0% used [0x25a00000, 0x25a00000, 0x25d00000)
tenured generation total 61288K, used 58272K [0x29750000, 0x2d32a000, 0x34200000)
the space 61288K, 95% used [0x29750000, 0x2d038228, 0x2d038400, 0x2d32a000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
Event: 44.010 GC heap after
Heap after GC invocations=11 (full 6):
def new generation total 62208K, used 3056K [0x24200000, 0x28570000, 0x29750000)
eden space 55360K, 5% used [0x24200000, 0x244fc180, 0x27810000)
from space 6848K, 0% used [0x27810000, 0x27810000, 0x27ec0000)
to space 6848K, 0% used [0x27ec0000, 0x27ec0000, 0x28570000)
tenured generation total 137988K, used 82791K [0x29750000, 0x31e11000, 0x34200000)
the space 137988K, 59% used [0x29750000, 0x2e829fe8, 0x2e82a000, 0x31e11000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
}
Event: 44.086 GC heap before
{Heap before GC invocations=11 (full 6):
def new generation total 62208K, used 55360K [0x24200000, 0x28570000, 0x29750000)
eden space 55360K, 100% used [0x24200000, 0x27810000, 0x27810000)
from space 6848K, 0% used [0x27810000, 0x27810000, 0x27ec0000)
to space 6848K, 0% used [0x27ec0000, 0x27ec0000, 0x28570000)
tenured generation total 137988K, used 82791K [0x29750000, 0x31e11000, 0x34200000)
the space 137988K, 59% used [0x29750000, 0x2e829fe8, 0x2e82a000, 0x31e11000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
Event: 44.220 GC heap after
Heap after GC invocations=12 (full 6):
def new generation total 62208K, used 6848K [0x24200000, 0x28570000, 0x29750000)
eden space 55360K, 0% used [0x24200000, 0x24200000, 0x27810000)
from space 6848K, 100% used [0x27ec0000, 0x28570000, 0x28570000)
to space 6848K, 0% used [0x27810000, 0x27810000, 0x27ec0000)
tenured generation total 137988K, used 130509K [0x29750000, 0x31e11000, 0x34200000)
the space 137988K, 94% used [0x29750000, 0x316c3520, 0x316c3600, 0x31e11000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e428, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
}
Event: 44.287 GC heap before
{Heap before GC invocations=12 (full 6):
def new generation total 62208K, used 62208K [0x24200000, 0x28570000, 0x29750000)
eden space 55360K, 100% used [0x24200000, 0x27810000, 0x27810000)
from space 6848K, 100% used [0x27ec0000, 0x28570000, 0x28570000)
to space 6848K, 0% used [0x27810000, 0x27810000, 0x27ec0000)
tenured generation total 137988K, used 130509K [0x29750000, 0x31e11000, 0x34200000)
the space 137988K, 94% used [0x29750000, 0x316c3520, 0x316c3600, 0x31e11000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e468, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
Event: 44.803 GC heap after
Heap after GC invocations=13 (full 7):
def new generation total 78656K, used 17931K [0x24200000, 0x29750000, 0x29750000)
eden space 69952K, 25% used [0x24200000, 0x25382c18, 0x28650000)
from space 8704K, 0% used [0x28650000, 0x28650000, 0x28ed0000)
to space 8704K, 0% used [0x28ed0000, 0x28ed0000, 0x29750000)
tenured generation total 174784K, used 174783K [0x29750000, 0x34200000, 0x34200000)
the space 174784K, 99% used [0x29750000, 0x341ffff8, 0x34200000, 0x34200000)
compacting perm gen total 12288K, used 4345K [0x34200000, 0x34e00000, 0x38200000)
the space 12288K, 35% used [0x34200000, 0x3463e468, 0x3463e600, 0x34e00000)
ro space 10240K, 42% used [0x38200000, 0x38640ce0, 0x38640e00, 0x38c00000)
rw space 12288K, 54% used [0x38c00000, 0x39280e30, 0x39281000, 0x39800000)
}

Deoptimization events (0 events):
No events

Internal exceptions (10 events):
Event: 43.115 Thread 0x052cac00 Threw 0x2447a340 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.142 Thread 0x052cac00 Threw 0x24482968 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.142 Thread 0x052cac00 Threw 0x24482be8 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.143 Thread 0x052cac00 Threw 0x24483ff0 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.164 Thread 0x052cac00 Threw 0x2448a660 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.164 Thread 0x052cac00 Threw 0x2448a8d8 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.164 Thread 0x052cac00 Threw 0x2448bc78 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.468 Thread 0x052cac00 Threw 0x242001e0 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.468 Thread 0x052cac00 Threw 0x24200460 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166
Event: 43.469 Thread 0x052cac00 Threw 0x24201878 at C:\jdk7u1_32P\jdk7u11\hotspot\src\share\vm\prims\jvm.cpp:1166

Events (10 events):
Event: 44.287 Executing VM operation: GenCollectForAllocation
Event: 44.803 Executing VM operation: GenCollectForAllocation done
Event: 44.845 loading class 0x398883e0
Event: 44.846 loading class 0x398883e0 done
Event: 44.846 loading class 0x082b87f0
Event: 44.913 loading class 0x082b87f0 done
Event: 44.930 loading class 0x082b85f8
Event: 44.930 loading class 0x082b85f8 done
Event: 44.931 loading class 0x3988ad78
Event: 44.931 loading class 0x3988ad78 done


Dynamic libraries:
0x00d60000 - 0x00d8f000 C:\Program Files (x86)\Java\jre7\bin\java.exe
0x77440000 - 0x775c0000 C:\Windows\SysWOW64\ntdll.dll
0x759b0000 - 0x75ac0000 C:\Windows\syswow64\kernel32.dll
0x75ac0000 - 0x75b07000 C:\Windows\syswow64\KERNELBASE.dll
0x75090000 - 0x75130000 C:\Windows\syswow64\ADVAPI32.dll
0x75b10000 - 0x75bbc000 C:\Windows\syswow64\msvcrt.dll
0x75610000 - 0x75629000 C:\Windows\SysWOW64\sechost.dll
0x75440000 - 0x75530000 C:\Windows\syswow64\RPCRT4.dll
0x74ea0000 - 0x74f00000 C:\Windows\syswow64\SspiCli.dll
0x74e90000 - 0x74e9c000 C:\Windows\syswow64\CRYPTBASE.dll
0x75d00000 - 0x75e00000 C:\Windows\syswow64\USER32.dll
0x75570000 - 0x75600000 C:\Windows\syswow64\GDI32.dll
0x75220000 - 0x7522a000 C:\Windows\syswow64\LPK.dll
0x753a0000 - 0x7543d000 C:\Windows\syswow64\USP10.dll
0x74540000 - 0x746de000 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\COMCTL32.dll
0x75950000 - 0x759a7000 C:\Windows\syswow64\SHLWAPI.dll
0x744f0000 - 0x7453c000 C:\Windows\system32\apphelp.dll
0x68620000 - 0x686ad000 C:\Windows\AppPatch\AcLayers.DLL
0x76130000 - 0x76d7a000 C:\Windows\syswow64\SHELL32.dll
0x75240000 - 0x7539c000 C:\Windows\syswow64\ole32.dll
0x75000000 - 0x7508f000 C:\Windows\syswow64\OLEAUT32.dll
0x74cf0000 - 0x74d07000 C:\Windows\system32\USERENV.dll
0x74ce0000 - 0x74ceb000 C:\Windows\system32\profapi.dll
0x72440000 - 0x72491000 C:\Windows\system32\WINSPOOL.DRV
0x74230000 - 0x74242000 C:\Windows\system32\MPR.dll
0x75130000 - 0x75190000 C:\Windows\system32\IMM32.DLL
0x75880000 - 0x7594c000 C:\Windows\syswow64\MSCTF.dll
0x68560000 - 0x6861e000 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
0x6b650000 - 0x6b99c000 C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll
0x72b60000 - 0x72b67000 C:\Windows\system32\WSOCK32.dll
0x76fb0000 - 0x76fe5000 C:\Windows\syswow64\WS2_32.dll
0x77000000 - 0x77006000 C:\Windows\syswow64\NSI.dll
0x74ca0000 - 0x74cd2000 C:\Windows\system32\WINMM.dll
0x77410000 - 0x77415000 C:\Windows\syswow64\PSAPI.DLL
0x6e830000 - 0x6e83c000 C:\Program Files (x86)\Java\jre7\bin\verify.dll
0x6d550000 - 0x6d570000 C:\Program Files (x86)\Java\jre7\bin\java.dll
0x68410000 - 0x68552000 C:\Program Files (x86)\Java\jre7\bin\awt.dll
0x72360000 - 0x723e0000 C:\Windows\system32\uxtheme.dll
0x6d2b0000 - 0x6d473000 C:\Windows\system32\d3d9.dll
0x748c0000 - 0x748c9000 C:\Windows\system32\VERSION.dll
0x70ac0000 - 0x70ac6000 C:\Windows\system32\d3d8thk.dll
0x72340000 - 0x72353000 C:\Windows\system32\dwmapi.dll
0x6efa0000 - 0x6f021000 C:\Windows\system32\aticfx32.dll
0x6e8e0000 - 0x6e8e9000 C:\Windows\system32\atiu9pag.dll
0x67260000 - 0x67606000 C:\Windows\system32\atiumdag.dll
0x66f60000 - 0x67259000 C:\Windows\system32\atiumdva.dll
0x6d530000 - 0x6d543000 C:\Program Files (x86)\Java\jre7\bin\zip.dll
0x6b4d0000 - 0x6b4d6000 C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2native.dll
0x686d0000 - 0x68718000 C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\deploy.dll
0x75630000 - 0x757e7000 C:\Windows\syswow64\WININET.dll
0x74f00000 - 0x74f04000 C:\Windows\syswow64\api-ms-win-downlevel-user32-l1-1-0.dll
0x75530000 - 0x75535000 C:\Windows\syswow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
0x75210000 - 0x75214000 C:\Windows\syswow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
0x76ff0000 - 0x76ff4000 C:\Windows\syswow64\api-ms-win-downlevel-version-l1-1-0.dll
0x75f80000 - 0x75f83000 C:\Windows\syswow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
0x75600000 - 0x75603000 C:\Windows\syswow64\normaliz.DLL
0x76d80000 - 0x76f78000 C:\Windows\syswow64\iertutil.dll
0x75e00000 - 0x75f1f000 C:\Windows\syswow64\urlmon.dll
0x75230000 - 0x75234000 C:\Windows\syswow64\api-ms-win-downlevel-ole32-l1-1-0.dll
0x6e960000 - 0x6ea1e000 C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll
0x686b0000 - 0x686c4000 C:\Program Files (x86)\Java\jre7\bin\net.dll
0x74440000 - 0x7447c000 C:\Windows\system32\mswsock.dll
0x74410000 - 0x74416000 C:\Windows\System32\wship6.dll
0x6b4b0000 - 0x6b4bf000 C:\Program Files (x86)\Java\jre7\bin\nio.dll
0x74b60000 - 0x74b68000 C:\Windows\system32\Secur32.dll
0x746e0000 - 0x746e4000 C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
0x74760000 - 0x7477c000 C:\Windows\system32\IPHLPAPI.DLL
0x74750000 - 0x74757000 C:\Windows\system32\WINNSI.DLL
0x683e0000 - 0x6840a000 C:\Program Files (x86)\Java\jre7\bin\fontmanager.dll
0x74420000 - 0x74425000 C:\Windows\System32\wshtcpip.dll
0x74700000 - 0x74744000 C:\Windows\system32\DNSAPI.dll
0x74350000 - 0x74377000 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
0x742d0000 - 0x742d6000 C:\Windows\system32\rasadhlp.dll
0x74310000 - 0x74348000 C:\Windows\System32\fwpuclnt.dll
0x744d0000 - 0x744e6000 C:\Windows\system32\CRYPTSP.dll
0x74490000 - 0x744cb000 C:\Windows\system32\rsaenh.dll
0x74400000 - 0x74410000 C:\Windows\system32\NLAapi.dll
0x743d0000 - 0x743e0000 C:\Windows\system32\napinsp.dll
0x74390000 - 0x743a2000 C:\Windows\system32\pnrpnsp.dll
0x74380000 - 0x74388000 C:\Windows\System32\winrnr.dll
0x75bc0000 - 0x75cde000 C:\Windows\syswow64\CRYPT32.dll
0x74fa0000 - 0x74fac000 C:\Windows\syswow64\MSASN1.dll
0x68250000 - 0x68270000 C:\Program Files (x86)\Java\jre7\bin\sunec.dll
0x68e90000 - 0x68e99000 C:\Program Files (x86)\Java\jre7\bin\sunmscapi.dll
0x66f20000 - 0x66f51000 C:\Program Files (x86)\Java\jre7\bin\t2k.dll
0x74f10000 - 0x74f93000 C:\Windows\syswow64\CLBCatQ.DLL
0x72e80000 - 0x72fb0000 C:\Windows\system32\WindowsCodecs.dll
0x66ea0000 - 0x66ed1000 C:\Windows\system32\EhStorShell.dll
0x75f90000 - 0x7612d000 C:\Windows\syswow64\SETUPAPI.dll
0x76f80000 - 0x76fa7000 C:\Windows\syswow64\CFGMGR32.dll
0x75ce0000 - 0x75cf2000 C:\Windows\syswow64\DEVOBJ.dll
0x73dc0000 - 0x73eb5000 C:\Windows\system32\PROPSYS.dll
0x66dc0000 - 0x66e30000 C:\Windows\system32\ntshrui.dll
0x74a90000 - 0x74aa9000 C:\Windows\system32\srvcli.dll
0x68240000 - 0x6824b000 C:\Windows\system32\cscapi.dll
0x74180000 - 0x7418a000 C:\Windows\system32\slc.dll
0x66ef0000 - 0x66f14000 C:\Program Files (x86)\Java\jre7\bin\dcpr.dll
0x66e70000 - 0x66e9d000 C:\Program Files (x86)\Java\jre7\bin\kcms.dll
0x66cd0000 - 0x66dbb000 C:\Windows\system32\dbghelp.dll

VM Arguments:
jvm_args: -D__jvm_launched=282359759 -D__applet_launched=282057699 -Xbootclasspath/a:C:\\PROGRA~2\\Oracle\\JAVAFX~1.1RU\\lib\\deploy.jar;C:\\PROGRA~2\\Oracle\\JAVAFX~1.1RU\\lib\\javaws.jar;C:\\PROGRA~2\\Oracle\\JAVAFX~1.1RU\\lib\\plugin.jar -Dsun.awt.warmup=true
java_command: sun.plugin2.main.client.PluginMain write_pipe_name=jpi2_pid4860_pipe3,read_pipe_name=jpi2_pid4860_pipe2
Launcher Type: SUN_STANDARD

Environment Variables:
PATH=C:\Program Files\Internet Explorer;;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
USERNAME=ja
OS=Windows_NT
PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 37 Stepping 5, GenuineIntel



--------------- S Y S T E M ---------------

OS: Windows 7 , 64 bit Build 7601 Service Pack 1

CPU:total 2 (2 cores per cpu, 1 threads per core) family 6 model 37 stepping 5, cmov, cx8, fxsr, mmx, sse, sse2, sse3, ssse3, popcnt, tsc, tscinvbit

Memory: 4k page, physical 4053824k(1881552k free), swap 8105788k(5739300k free)

vm_info: Java HotSpot(TM) Client VM (23.6-b04) for windows-x86 JRE (1.7.0_11-b21), built on Jan 12 2013 02:19:22 by "java_re" with unknown MS VC++:1600

time: Sat Apr 13 02:38:25 2013
elapsed time: 45 seconds




Prosím poraďte..
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod jaro3 » 09 čer 2013 11:22

milanek00 :
Vítej na fóru PC-Help!


Založ si prosím vlastrní nové téma..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 10 čer 2013 19:19

Combo Fix

ComboFix 13-05-29.01 - Honza 10.06.2013 18:52:31.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4055.2625 [GMT 2:00]
Spuštěný z: c:\users\Honza\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Honza\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files (x86)\Seznam.cz\distribution\szninstall.exe"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Deluge
c:\program files (x86)\Deluge\gql.exe
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.145\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.21.145\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.145\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.145\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.145\psuser.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.145\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\27.0.1453.110\27.0.1453.110_27.0.1453.94_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.3.8542.exe
c:\program files (x86)\Google\Update\Download\{F8A6A057-D747-41CA-9EAC-7217FCFAA429}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\users\Honza\AppData\Roaming\Akol
c:\users\Honza\AppData\Roaming\Akol\oqso.ylu
c:\users\Honza\AppData\Roaming\Liyp
c:\users\Honza\AppData\Roaming\Oshim
c:\users\Honza\AppData\Roaming\Pomaah
c:\users\Honza\AppData\Roaming\Qiolor
c:\users\Honza\AppData\Roaming\Uriswu
c:\users\Honza\AppData\Roaming\Uriswu\usam.ely
c:\windows\msdownld.tmp
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-10 do 2013-06-10 )))))))))))))))))))))))))))))))
.
.
2013-06-10 17:01 . 2013-06-10 17:01 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-06-10 17:01 . 2013-06-10 17:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-10 17:01 . 2013-06-10 17:01 -------- d-----w- c:\users\Dana\AppData\Local\temp
2013-06-10 17:01 . 2013-06-10 17:01 -------- d-----w- c:\users\admin\AppData\Local\temp
2013-06-09 13:03 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{78630BC8-6130-4E0F-A9A8-502E2455C7CE}\mpengine.dll
2013-06-09 00:04 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-06-01 10:37 . 2013-06-01 11:06 -------- d-----w- c:\programdata\Call of Duty Black Ops 2
2013-05-28 14:15 . 2013-05-28 14:15 -------- d-----w- c:\users\Dana\AppData\Roaming\Malwarebytes
2013-05-25 20:02 . 2013-05-25 20:02 97 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\LocalCopy\{80323550-FC74-313B-1E56-918F00C2AAB6}-DeleteOnReboot.bat
2013-05-25 18:50 . 2013-05-25 18:50 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-05-25 17:03 . 2013-05-25 17:03 -------- d-----w- c:\program files (x86)\Infogrames
2013-05-25 17:03 . 2001-09-05 02:18 225280 ----a-w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2013-05-25 17:03 . 2001-09-05 01:14 176128 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2013-05-25 17:02 . 2001-09-05 02:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2013-05-25 17:02 . 2001-09-05 01:13 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2013-05-24 21:00 . 2013-05-24 21:00 -------- d-----w- c:\program files (x86)\2K Games
2013-05-24 16:52 . 2013-05-24 16:52 -------- d-----w- c:\program files (x86)\TeamViewer
2013-05-24 14:43 . 2002-07-26 00:07 614532 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2013-05-24 12:55 . 2013-05-25 20:40 -------- d-----w- c:\users\Dana\AppData\Roaming\Seznam.cz
2013-05-23 15:57 . 2013-05-23 15:57 -------- d-----w- c:\program files (x86)\Seznam.cz
2013-05-23 15:57 . 2013-05-24 15:51 -------- d-----w- c:\users\Honza\AppData\Roaming\Seznam.cz
2013-05-22 05:12 . 2013-05-22 05:12 964552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8F9CF22D-9767-4E2B-9484-58E41F8919DD}\gapaengine.dll
2013-05-21 14:17 . 2013-05-21 14:17 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-05-21 14:17 . 2013-05-21 14:17 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-05-21 14:17 . 2013-05-21 14:17 -------- d-----w- c:\program files (x86)\Java
2013-05-18 11:25 . 2013-05-18 11:25 262552 ----a-w- c:\program files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2013-05-16 22:41 . 2013-05-16 22:41 -------- d-----w- c:\users\Honza\AppData\Local\4A Games
2013-05-12 13:43 . 2013-05-12 13:43 566048 ----a-w- c:\windows\SysWow64\nvStreaming.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-21 14:17 . 2012-07-14 13:11 866720 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-05-21 14:17 . 2010-11-05 09:29 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-05-17 22:41 . 2011-03-23 13:43 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 05:59 . 2012-04-04 15:53 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 05:59 . 2011-05-21 06:33 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 21:42 . 2013-05-02 16:18 13403168 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-05-12 21:42 . 2013-05-02 16:18 15910736 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-05-12 21:42 . 2013-05-02 16:18 1059560 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-05-12 21:42 . 2013-05-02 16:18 2935696 ----a-w- c:\windows\system32\nvapi64.dll
2013-05-12 21:42 . 2013-05-02 16:18 2597344 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-05-12 21:42 . 2013-02-25 22:32 12426216 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-05-12 20:34 . 2010-03-24 21:44 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-12 20:34 . 2010-03-24 21:44 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-12 20:34 . 2010-03-24 21:44 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-12 20:34 . 2010-03-24 21:44 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-12 20:34 . 2010-03-24 21:44 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-05-12 20:34 . 2010-03-24 21:44 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-08 14:13 . 2013-05-02 16:16 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-02 15:29 . 2010-11-04 10:44 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-24 13:30 . 2011-03-26 05:55 905296 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-04-13 05:49 . 2013-05-15 06:14 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 06:14 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 06:14 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 06:14 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 06:14 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 06:14 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 11:02 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-04 12:50 . 2013-03-20 16:59 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-19 06:04 . 2013-04-10 06:26 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 06:26 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 06:26 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 06:26 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 06:26 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 06:26 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-15 05:53 . 2013-05-09 15:49 1807136 ----a-w- c:\windows\system32\nvdispco6431422.dll
2013-03-15 05:53 . 2013-05-09 15:49 1510176 ----a-w- c:\windows\system32\nvdispgenco6431422.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\windows\SysWow64\Extensions ----
.
.
---- Directory of c:\windows\SysWow64\searchplugins ----
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{17E113E6-CD0E-4045-B154-65F0E57959EF}]
c:\program files\IMPI\Extension32.dll [BU]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2013-06-05 1641896]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2013-04-17 802136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\Honza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AVerQuick.lnk - c:\program files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe [2011-6-30 769536]
SnugTV Quick Start.lnk - c:\windows\Installer\{33CFCB69-2FA5-43E8-B8A8-FAA155F870B5}\NewShortcut1_46FEF19C05F1475DAA14D9007DC15270_2.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-26 834544]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 ATICDSDr;ATICDSDr;c:\users\Honza\AppData\Local\Temp\ATICDSDr.sys [x]
R3 AVerNetworkTunerx64;AVerMedia Analog CIR Network Tuner;c:\windows\system32\drivers\AVerNetworkTuneramd64.sys [2011-08-23 297984]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-07-24 14448]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2012-09-25 36928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-23 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-28 283200]
S2 AVerMceDevice;AVerMceDevice;c:\program files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceDevice.exe [2011-05-09 137216]
S2 AVerMceService;AVerMceService;c:\program files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceService.exe [2011-08-24 324096]
S2 AVerNetDevice;AVerNetDevice;c:\program files (x86)\Common Files\AVerMedia\Service\AVerNetDevice.exe [2011-05-03 139776]
S2 AVerRemote;AVerRemote;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2009-10-30 348160]
S2 AVerScheduleService;AVerScheduleService;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-06 397312]
S2 AVerUpdateServer;AVerUpdateServer;c:\program files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-01-06 168448]
S2 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2012-10-26 87368]
S2 IMPI Updater;IMPI Updater;c:\program files\IMPI\ExtensionUpdaterService.exe [2013-02-05 185856]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 47632]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-10-08 166912]
S2 SnugTV Service;SnugTV Service;c:\program files (x86)\SnugTV\SnugTV Station\AMAServer.exe [2011-04-06 571904]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 AVerAF35;AVerMedia A867 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys [2010-05-31 717952]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-06 04:36 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 05:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [BU]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [BU]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearchAssistant = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Honza\AppData\Roaming\Mozilla\Firefox\Profiles\5rlfvybr.default-1363802495973\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-HP OrderReminder - c:\program files (x86)\Hewlett-Packard\OrderReminder\uninstall\hpuninstaller.exe
AddRemove-XPv3.8.252 - c:\windows\Radeon Omega Drivers v3.8.252
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
.
**************************************************************************
.
Celkový čas: 2013-06-10 19:08:25 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-06-10 17:08
ComboFix2.txt 2013-05-29 18:11
.
Před spuštěním: Volných bajtů: 103 820 566 528
Po spuštění: Volných bajtů: 103 553 589 248
.
- - End Of File - - C392BC61D769460295906545BCC391A8
Nahoru
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 10 čer 2013 19:20

aswMBR

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-06-10 19:15:42
-----------------------------
19:15:42.724 OS Version: Windows x64 6.1.7601 Service Pack 1
19:15:42.724 Number of processors: 4 586 0x1E05
19:15:42.724 ComputerName: HONZA_HP UserName: Honza
19:15:43.610 Initialize success
19:15:49.363 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:15:49.366 Disk 0 Vendor: WDC_WD5000AAKS-60Z1A0 06.01D06 Size: 476940MB BusType: 11
19:15:49.608 Disk 0 MBR read successfully
19:15:49.612 Disk 0 MBR scan
19:15:49.617 Disk 0 Windows 7 default MBR code
19:15:49.655 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
19:15:49.666 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
19:15:49.685 Disk 0 scanning C:\Windows\system32\drivers
19:16:01.257 Service scanning
19:16:21.852 Modules scanning
19:16:21.865 Disk 0 trace - called modules:
19:16:21.915 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
19:16:21.923 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049bd060]
19:16:21.931 3 CLASSPNP.SYS[fffff88001a0743f] -> nt!IofCallDriver -> [0xfffffa80046f8520]
19:16:21.940 5 ACPI.sys[fffff88000f197a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80046cf680]
19:16:21.948 Scan finished successfully
19:16:48.996 Disk 0 MBR has been saved successfully to "C:\Users\Honza\Desktop\MBR.dat"
19:16:49.004 The log file has been saved successfully to "C:\Users\Honza\Desktop\aswMBR.txt"
Nahoru
Uživatelský avatar
mircony97
Level 3
Level 3
Příspěvky: 491
Registrován: leden 11
Bydliště: Středočeský Kraj
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod mircony97 » 10 čer 2013 19:21

HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:17:24, on 10.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files (x86)\SnugTV\SnugTV Station\QuickStart.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe
C:\Users\Honza\Downloads\hijackthis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: IMPI Helper - {17E113E6-CD0E-4045-B154-65F0E57959EF} - C:\Program Files\IMPI\Extension32.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: AVerQuick.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O4 - Global Startup: SnugTV Quick Start.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVerMceDevice - AVerMedia Technologies, Inc. - C:\Program Files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceDevice.exe
O23 - Service: AVerMceService - AVerMedia Technologies, Inc. - C:\Program Files (x86)\AVerMedia\AVerMedia HomeFree MCE Driver\AVerMceService.exe
O23 - Service: AVerNetDevice - AVerMedia Technologies, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerNetDevice.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: IMPI Updater - Unknown owner - C:\Program Files\IMPI\ExtensionUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SnugTV Service - AVerMedia Technologies, Inc. - C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9494 bytes
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zpomalený PC a občasné záseky

Příspěvekod jaro3 » 10 čer 2013 19:33

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab


ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si Registry Defrag


na svojí plochu a spusť ho. Program se nainstaluje a potom se spustí.
Zavři si nejprve všechny ostatní programy a prohlížeče a deaktivuj antivir.

Klikni na „Next“.
Program proskenuje registry a vytvoří nový bod obnovy. Poté restartuje PC. Po restartu program můžeš zavřít.

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 117 hostů