Dzień Dobry
Co może być przyczyną zwolnienia systemu i wykorzystania 100% procesora?
W menadzerze zadań zauważyeł że proces avpui.exe jest plikiem kasperskiego i to on zajmuje ponad 50 % procesora.
Do tego wyskakuje komunikat że plugin-conatainer.exe zostanie zamknięty a nadal jest w procesach.
I trzecia sprawa, nie mogę normalnie zamknąć systemu ponieważ oprócz komunikatu że system zostaje wyłączony to nic się nie dzieje. Muszę ręcznie wyłączać.
Poniżej logi z FRST
Otwórz notatnik systemowy i wklej:
Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job = C:\WINDOWS\TEMP\{30DB86F2-9B15-4011-BF07-86727A4D43B0}.exe ==== ATTENTION
HKLM\...\Run: [RTHDCPL] = C:\WINDOWS\RTHDCPL.EXE [17530368 2009-03-02] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] = C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] = C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] = C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] = C:\Program Files\QuickTime\qttask.exe [286720 2007-12-11] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] = C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] = C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-776561741-630328440-1417001333-1003\...\Run: [AdobeBridge] = [X]
HKU\S-1-5-21-776561741-630328440-1417001333-1004\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] = "C:\Program Files\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe" /PROMPT /CMPID=JUNE2013_TB
ShellIconOverlayIdentifiers: [00avast] - {472083B0-C522-11CF-8763-00608CC02F24} = No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://do-search.com/web/?type=dsts=1427377275from=coruid=SAMSUNGXHD252HJ_S17HJ9AZ500023q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://do-search.com/web/?type=dsts=1427377275from=coruid=SAMSUNGXHD252HJ_S17HJ9AZ500023q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.whitesmoke.com/home.php?isid=10021
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.whitesmoke.com/home.php?isid=10021
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.whitesmoke.com/home.php?isid=10021
HKU\S-1-5-21-776561741-630328440-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-776561741-630328440-1417001333-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.whitesmoke.com/home.php?isid=10021
URLSearchHook: [S-1-5-21-776561741-630328440-1417001333-1004] ATTENTION == Default URLSearchHook is missing.
SearchScopes: HKLM - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\.DEFAULT - DefaultScope {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\.DEFAULT - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-19 - DefaultScope {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-19 - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-20 - DefaultScope {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-20 - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1003 - DefaultScope {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1003 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1003 - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://search.yahoo.com/search?fr=vmntype=scenic2_0yachq={searchTerms}ei=UTF-8
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1003 - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1004 - DefaultScope {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
SearchScopes: HKU\S-1-5-21-776561741-630328440-1417001333-1004 - {9A7B0E32-A223-41CC-9506-BFCE41E7DEB1} URL = http://search.whitesmoke.com/home.php?isid=10021s=webq={searchTerms}
Toolbar: HKU\S-1-5-21-776561741-630328440-1417001333-1003 - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [lfjihbpblmdlbikfjbcnfmbmdklbodgg] - C:\Program Files\MediaWatchV1\MediaWatchV1home3960\ch\MediaWatchV1home3960.crx [Not Found]
S3 FXDrv32; \\F:\FXDrv32.sys [X]
S4 IntelIde; No ImagePath
S3 qcserxp; system32\DRIVERS\qcserxp.sys [X]
U1 WS2IFSL; No ImagePath
EmptyTemp:
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Zrobione według wskazówek.
Nowy log
Dodatkowo odinstalowałem Kasperskiego i zainstalowałem Avast. Troszę lepiej ale nadal nie zamyka się komuter.