WmiPrvSE.exe - proces obciąża komputer


(Seba65310) #1

Witam, 


(Atis) #2

Odinstaluj VuuPC, You're Always a Click Away!

Pobierz i uruchom AdwCleaner Kliknij Szukaj i później Usuń.

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

HKLM-x32\...\Run: [] => [X] 
BootExecute: autocheck autochk * bootdelete 
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&appid=20&systemid=2&sr=0&q={searchTerms} 
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&appid=20&systemid=2&sr=0&q={searchTerms} 
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = 
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&appid=20&systemid=2&sr=0&q={searchTerms} 
SearchScopes: HKCU - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&appid=20&systemid=2&sr=0&q={searchTerms} 
SearchScopes: HKCU - {4F6633FF-92C6-47F1-B7D1-564F7EB41BE5} URL = http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=^BBE^OSJ000^YY^PL&gct=&itbv=12.15.5.30&apn_uid=282DAF08-9C86-4989-830C-05D8AE00A887&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=ie_9.0.8112.16457&doi=2014-08-19&trgb=IE&q={searchTerms}&psv=&pt=tb 
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&appid=20&systemid=2&sr=0&q={searchTerms} 
SearchScopes: HKCU - {9BCB081A-B6B9-499B-84C7-4DE70C395667} URL = 
Toolbar: HKLM-x32 - No Name - {707db484-2428-402d-afb5-d85b387544c7} - No File 
Toolbar: HKLM-x32 - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File 
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File 
FF Plugin HKCU: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File 
CHR HKLM-x32\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx [2014-08-20] 
C:\ProgramData\AskPartnerNetwork
R2 VuuPCConnectivity; C:\Program Files (x86)\VuuPC\Connectivity.exe [4747280 2014-05-08] (ClickMeIn Limited) 
S3 catchme; \??\C:\ComboFix\catchme.sys [X] 
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] 
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X] 
C:\Qoobox 
C:\Temp 
CustomCLSID: HKU\S-1-5-21-1421075127-1220510464-161288406-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Jowita\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File 
CustomCLSID: HKU\S-1-5-21-1421075127-1220510464-161288406-1000_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File 
CustomCLSID: HKU\S-1-5-21-1421075127-1220510464-161288406-1000_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File 
Task: {23A00758-3764-4EC1-AD2B-4785B1A328C4} - System32\Tasks\VuuPCUpdate => C:\Program Files (x86)\VuuPC\VuuPCUpdater.exe [2014-05-08] (VuuPC Limited) 
Task: {6DE25C7B-6DE9-4EBA-9450-926BA1AB6406} - System32\Tasks\VuuPCUpdateLogin => C:\Program Files (x86)\VuuPC\VuuPCUpdater.exe [2014-05-08] (VuuPC Limited) 
Task: {F5F409B5-0A3D-48F3-8D36-3C5165CF4B93} - System32\Tasks\{5BB0D95E-36AE-478F-ADB2-57746D1803BB} => Chrome.exe http://ui.skype.com/ui/0/6.6.0.106/pl/abandoninstall?page=tsProgressBar 
Task: {FF5580BE-96DB-44B5-BD81-2444B943B9A8} - System32\Tasks\DSite => C:\Users\Jowita\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION 
HKU\S-1-5-21-1421075127-1220510464-161288406-1000\Software\Classes\exefile: <===== ATTENTION!
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.


(Seba65310) #3

W czasie czynności system aktualizował się(ponad 100 łatek) i problem znikł.

 

Przesyłam jeszcze wynik z FRST: http://www.wklej.eu/index.php?id=be483cf7e1


(Atis) #4

Skasuj folder C:\FRST i C:\AdwCleaner

Odinstaluj:

Adobe Flash Player 11 ActiveX

Adobe Reader 9.4.0

Adobe Shockwave Player 11.6

Java 6 Update 20

Zainstaluj:

Adobe Reader XI 11.0.8

Flash Player 14.0.0.176 Internet Explorer.