Skocz do zawartości


tablety.pl
Zdjęcie

12 procesow svchost :/




  • Zamknięty Temat jest zamknięty
3 odpowiedzi w tym temacie

#1 Mamos

Mamos

    First Rank

  • Użytkownicy
  • 2 postów

Napisano 12 11 2012 - 16:19

Prosze o pomoc, mój komputer nie wyrabia. Czy jest jakis ratunek oprocz formatu?
Log z combofix-a
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.48.1045.18.4091.2346 [GMT 1:00]
Uruchomiony z: c:\users\Michal\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Pliki utworzone od 2012-10-12 do 2012-11-12 )))))))))))))))))))))))))))))))
.
.
2012-11-12 14:58 . 2012-11-12 14:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-12 14:51 . 2012-11-12 14:51 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6F1227EE-6313-4097-A90A-6A54AD3CC589}\offreg.dll
2012-11-11 16:28 . 2012-11-11 18:47 282296 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-11-11 16:27 . 2012-11-11 16:27 -------- d-----w- c:\users\Michal\AppData\Local\PunkBuster
2012-11-11 16:27 . 2012-11-11 16:27 -------- d--h--r- c:\users\Michal\AppData\Roaming\SecuROM
2012-11-11 16:09 . 2012-11-11 18:47 282296 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-11-11 16:09 . 2012-11-11 18:48 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-11-11 16:09 . 2012-11-11 16:09 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2012-11-11 10:55 . 2012-11-11 10:55 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-11-11 10:55 . 2012-11-11 11:04 -------- d-----w- c:\program files (x86)\Steam
2012-11-11 09:31 . 2012-11-12 14:34 -------- d-----w- c:\program files (x86)\Origin Games
2012-11-11 09:31 . 2012-11-11 09:33 -------- d-----w- c:\users\Michal\AppData\Roaming\Origin
2012-11-11 09:31 . 2012-11-11 11:20 -------- d-----w- c:\users\Michal\AppData\Local\Origin
2012-11-11 09:28 . 2012-11-11 11:18 -------- d-----w- c:\programdata\Origin
2012-11-11 09:28 . 2012-11-11 09:28 -------- d-----w- c:\programdata\Electronic Arts
2012-11-11 09:28 . 2012-11-11 09:31 -------- d-----w- c:\program files (x86)\Origin
2012-11-09 18:02 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6F1227EE-6313-4097-A90A-6A54AD3CC589}\mpengine.dll
2012-11-07 18:57 . 2009-09-04 16:44 517960 ----a-w- c:\windows\system32\XAudio2_5.dll
2012-11-07 18:56 . 2007-03-12 15:42 4494184 ----a-w- c:\windows\system32\d3dx9_33.dll
2012-11-07 18:45 . 2012-11-07 18:54 -------- d-----w- C:\Fifa 13
2012-11-07 18:38 . 2012-11-07 18:38 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-11-07 18:38 . 2012-11-07 18:44 -------- d-----w- c:\users\Michal\AppData\Roaming\DAEMON Tools Lite
2012-11-07 18:38 . 2012-11-07 18:38 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2012-11-07 18:37 . 2012-11-11 08:42 -------- d-----w- c:\users\Michal\Tracing
2012-11-07 18:36 . 2012-11-07 18:44 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-11-07 18:36 . 2012-11-07 18:37 -------- d-----w- c:\programdata\SweetIM
2012-11-07 18:36 . 2012-11-07 18:37 -------- d-----w- c:\program files (x86)\SweetIM
2012-11-06 20:24 . 2012-11-06 20:25 -------- d-----w- c:\users\Michal\AppData\Roaming\NapiProjekt
2012-11-06 20:24 . 2012-11-06 20:24 -------- d-----w- c:\program files (x86)\NapiProjekt
2012-11-06 16:51 . 2012-11-06 16:51 -------- d-----w- c:\windows\Sun
2012-11-05 22:07 . 2012-11-05 22:30 -------- d-----w- c:\program files (x86)\JDownloader
2012-11-04 17:18 . 2012-11-04 17:18 -------- d-----w- c:\program files (x86)\Microsoft ActiveSync
2012-11-04 17:18 . 2012-11-04 17:18 -------- d-----w- c:\program files (x86)\Microsoft.NET
2012-11-04 17:07 . 2012-11-04 17:07 -------- d-----r- C:\MSOCache
2012-11-03 18:30 . 2012-11-04 22:15 -------- d-----w- c:\users\Michal\AppData\Roaming\TS3Client
2012-11-03 18:30 . 2012-11-03 18:30 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-11-01 10:00 . 2012-11-01 10:05 -------- d-----w- C:\Nowy folder
2012-10-31 15:20 . 2012-10-31 15:20 163056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10142.bin
2012-10-28 20:58 . 2012-11-10 13:43 -------- d-----w- c:\users\Michal\AppData\Roaming\vlc
2012-10-28 20:58 . 2012-10-28 20:58 -------- d-----w- c:\program files (x86)\VideoLAN
2012-10-28 16:57 . 2012-10-28 17:03 -------- d-----w- c:\programdata\boost_interprocess
2012-10-23 19:15 . 2012-10-23 19:15 -------- d-----w- c:\users\Michal\AppData\Roaming\Liteon
2012-10-19 12:12 . 2012-10-19 12:12 -------- d-----w- c:\program files (x86)\Cheat Engine 6.2
2012-10-14 14:17 . 2012-10-14 14:17 -------- d-----w- c:\users\Michal\AppData\Roaming\IVONA ControlCenter
2012-10-14 14:16 . 2012-10-14 17:09 -------- d-----w- c:\users\Michal\AppData\Roaming\IVONA Reader
2012-10-14 14:14 . 2012-10-14 14:17 -------- d-----w- c:\program files (x86)\IVONA
2012-10-14 13:16 . 2012-10-14 13:16 -------- d-----w- c:\users\Michal\AppData\Local\IVONA_INST
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-30 12:41 . 2012-09-30 12:41 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-09-30 12:41 . 2012-09-30 12:41 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-09-30 12:41 . 2012-09-30 12:41 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-09-30 12:41 . 2012-09-30 12:41 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2012-09-30 12:41 . 2012-09-30 12:41 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-09-30 12:41 . 2012-09-30 12:41 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-09-30 12:41 . 2012-09-30 12:41 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-09-30 12:41 . 2012-09-30 12:41 82432 ----a-w- c:\windows\system32\icardie.dll
2012-09-30 12:41 . 2012-09-30 12:41 816640 ----a-w- c:\windows\system32\jscript.dll
2012-09-30 12:41 . 2012-09-30 12:41 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-09-30 12:41 . 2012-09-30 12:41 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-09-30 12:41 . 2012-09-30 12:41 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-09-30 12:41 . 2012-09-30 12:41 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-09-30 12:41 . 2012-09-30 12:41 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-09-30 12:41 . 2012-09-30 12:41 65024 ----a-w- c:\windows\system32\pngfilt.dll
2012-09-30 12:41 . 2012-09-30 12:41 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-09-30 12:41 . 2012-09-30 12:41 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-09-30 12:41 . 2012-09-30 12:41 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2012-09-30 12:41 . 2012-09-30 12:41 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2012-09-30 12:41 . 2012-09-30 12:41 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-09-30 12:41 . 2012-09-30 12:41 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-09-30 12:41 . 2012-09-30 12:41 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-09-30 12:41 . 2012-09-30 12:41 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2012-09-30 12:41 . 2012-09-30 12:41 448512 ----a-w- c:\windows\system32\html.iec
2012-09-30 12:41 . 2012-09-30 12:41 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-09-30 12:41 . 2012-09-30 12:41 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2012-09-30 12:41 . 2012-09-30 12:41 39936 ----a-w- c:\windows\system32\iernonce.dll
2012-09-30 12:41 . 2012-09-30 12:41 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2012-09-30 12:41 . 2012-09-30 12:41 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-09-30 12:41 . 2012-09-30 12:41 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-09-30 12:41 . 2012-09-30 12:41 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-09-30 12:41 . 2012-09-30 12:41 282112 ----a-w- c:\windows\system32\dxtrans.dll
2012-09-30 12:41 . 2012-09-30 12:41 267776 ----a-w- c:\windows\system32\ieaksie.dll
2012-09-30 12:41 . 2012-09-30 12:41 249344 ----a-w- c:\windows\system32\webcheck.dll
2012-09-30 12:41 . 2012-09-30 12:41 248320 ----a-w- c:\windows\system32\ieui.dll
2012-09-30 12:41 . 2012-09-30 12:41 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-09-30 12:41 . 2012-09-30 12:41 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-09-30 12:41 . 2012-09-30 12:41 237056 ----a-w- c:\windows\system32\url.dll
2012-09-30 12:41 . 2012-09-30 12:41 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-09-30 12:41 . 2012-09-30 12:41 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-09-30 12:41 . 2012-09-30 12:41 222208 ----a-w- c:\windows\system32\msls31.dll
2012-09-30 12:41 . 2012-09-30 12:41 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-09-30 12:41 . 2012-09-30 12:41 197120 ----a-w- c:\windows\system32\msrating.dll
2012-09-30 12:41 . 2012-09-30 12:41 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-09-30 12:41 . 2012-09-30 12:41 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-09-30 12:41 . 2012-09-30 12:41 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-09-30 12:41 . 2012-09-30 12:41 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-09-30 12:41 . 2012-09-30 12:41 163840 ----a-w- c:\windows\system32\ieakui.dll
2012-09-30 12:41 . 2012-09-30 12:41 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-09-30 12:41 . 2012-09-30 12:41 160256 ----a-w- c:\windows\system32\wextract.exe
2012-09-30 12:41 . 2012-09-30 12:41 160256 ----a-w- c:\windows\system32\ieakeng.dll
2012-09-30 12:41 . 2012-09-30 12:41 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-09-30 12:41 . 2012-09-30 12:41 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-09-30 12:41 . 2012-09-30 12:41 149504 ----a-w- c:\windows\system32\occache.dll
2012-09-30 12:41 . 2012-09-30 12:41 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-09-30 12:41 . 2012-09-30 12:41 145920 ----a-w- c:\windows\system32\iepeers.dll
2012-09-30 12:41 . 2012-09-30 12:41 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-09-30 12:41 . 2012-09-30 12:41 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-09-30 12:41 . 2012-09-30 12:41 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-09-30 12:41 . 2012-09-30 12:41 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-09-30 12:41 . 2012-09-30 12:41 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-09-30 12:41 . 2012-09-30 12:41 12288 ----a-w- c:\windows\system32\mshta.exe
2012-09-30 12:41 . 2012-09-30 12:41 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-09-30 12:41 . 2012-09-30 12:41 114176 ----a-w- c:\windows\system32\admparse.dll
2012-09-30 12:41 . 2012-09-30 12:41 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-09-30 12:41 . 2012-09-30 12:41 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-09-30 12:41 . 2012-09-30 12:41 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-09-30 12:41 . 2012-09-30 12:41 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-09-30 12:41 . 2012-09-30 12:41 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2012-09-30 12:41 . 2012-09-30 12:41 103936 ----a-w- c:\windows\system32\inseng.dll
2012-09-30 12:41 . 2012-09-30 12:41 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-09-16 18:05 . 2012-09-16 18:06 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-16 18:05 . 2012-09-16 18:06 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-16 18:05 . 2012-09-16 18:06 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-16 17:06 . 2012-09-16 17:06 2560 ----a-w- c:\windows\SysWow64\drivers\pl-PL\qwavedrv.sys.mui
2012-09-16 17:06 . 2012-09-16 17:06 2560 ----a-w- c:\windows\SysWow64\drivers\pl-PL\scfilter.sys.mui
2012-09-16 17:06 . 2012-09-16 17:06 6144 ----a-w- c:\windows\SysWow64\drivers\pl-PL\ndiscap.sys.mui
2012-09-16 17:06 . 2012-09-16 17:06 50688 ----a-w- c:\windows\SysWow64\drivers\pl-PL\tcpip.sys.mui
2012-09-16 17:06 . 2012-09-16 17:06 35840 ----a-w- c:\windows\SysWow64\drivers\pl-PL\bfe.dll.mui
2012-09-16 17:06 . 2012-09-16 17:06 16384 ----a-w- c:\windows\SysWow64\drivers\pl-PL\pacer.sys.mui
2012-09-16 07:20 . 2012-09-16 07:20 3 ----a-w- c:\windows\system32\PLD_Framework.cmd
2012-08-30 22:43 . 2012-09-30 12:29 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-08-21 11:01 . 2012-09-19 11:21 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-08-21 11:01 . 2012-08-21 11:01 125872 ----a-w- c:\windows\system32\GEARAspi64.dll
2012-08-21 11:01 . 2012-08-21 11:01 106928 ----a-w- c:\windows\SysWow64\GEARAspi.dll
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
2010-07-15 01:30 433648 ----a-w- c:\programdata\Partner\Partner.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2012-07-04 14:03 1310040 ----a-r- c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-07-04 1310040]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Michal\AppData\Local\Akamai\netsession_win.exe" [2012-10-09 4441920]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-15 39408]
"IVONA ControlCenter"="c:\program files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe" [2012-08-30 2168768]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-11-11 1353080]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-06-22 968272]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 1155928]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-21 98304]
"OOTag"="c:\program files (x86)\eMachines\OOBEOffer\OOTag.exe" [2010-02-23 13856]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]
"SweetIM"="c:\program files (x86)\SweetIM\Messenger\SweetIM.exe" [2012-10-04 115032]
"Sweetpacks Communicator"="c:\program files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe" [2012-08-15 231768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe [2010-07-15 332272]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2012-07-24 10568]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-07 283200]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-20 202752]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-06-22 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\eMachines\eMachines Power Management\ePowerSvc.exe [2010-06-11 868896]
S2 GREGService;GREGService;c:\program files (x86)\eMachines\Registration\GREGsvc.exe [2010-01-08 23584]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 Updater Service;Updater Service;c:\program files\eMachines\eMachines Updater\UpdaterService.exe [2010-01-28 243232]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-05-14 384040]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2012-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-16 08:38]
.
2012-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-16 08:38]
.
2012-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-539016275-2844898717-3338169874-1000Core.job
- c:\users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-16 08:36]
.
2012-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-539016275-2844898717-3338169874-1000UA.job
- c:\users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-16 08:36]
.
..
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
2010-07-15 01:30 750064 ----a-w- c:\programdata\Partner\Partner64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"Acer ePower Management"="c:\program files\eMachines\eMachines Power Management\ePowerTray.exe" [2010-06-11 861216]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local;<local>
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-IVONA Reader - c:\program files (x86)\IVONA\IVONA Reader\IVONA Reader.exe.exe
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Minecraft Cracked - c:\users\Michal\AppData\Roaming\.minecraft\Uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"

#2 wirusolog

wirusolog

    Expert

  • Moderatorzy
  • 5777 postów
  • Płeć:Mężczyzna

Napisano 12 11 2012 - 16:41

Liczba procesów "svchost" może wynosić nawet 17 - to zależy od ilości usług Systemowych, jakie w danej chwili są uruchomione.

W logu nie widzę żadnej infekcji.
Usuniemy tylko sponsorskie niepotrzebne śmieci.
Użyj >Adw-cleaner. Kliknij w nim Delete
Pokaż raport z niego C:\AdwCleaner[S1].txt

.

#3 Mamos

Mamos

    First Rank

  • Użytkownicy
  • 2 postów

Napisano 12 11 2012 - 16:51

# AdwCleaner v2.003 - Logfile created 11/12/2012 at 16:46:25
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Michal - MICHAL-KOMPUTER
# Boot Mode : Normal
# Running from : C:\Users\Michal\Downloads\adwcleaner-25.IX.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Michal\Desktop\Search The Web.url
File Deleted : C:\Users\Michal\Desktop\sweetpcfix.url
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\SweetIM

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\SweetIm
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4f73-BBBA-9B2B222FB7D6}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Deleted : HKLM\Software\SweetIm
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Google Chrome v23.0.1271.64

File : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [5584 octets] - [12/11/2012 16:46:25]

########## EOF - C:\AdwCleaner[S2].txt - [5644 octets] ##########
.....

tyle ze kiedys mialem moze 5% uzycia procesora a teraz ok 30% :/

#4 XanTyp

XanTyp

    Expert Rank

  • Admins
  • 3887 postów
  • Płeć:Mężczyzna
  • Lokalizacja:Headquarter

Napisano 12 11 2012 - 17:06

Widzę, że czytanie przyklejonych przychodzi ci z wielkim trudem. Może, kiedy będziesz chciał odświeżyć temat, nauczysz się czytać zasady subforum.

KOSZ.

I suplement z regulaminu:

[8] Każdy post przed wysłaniem należy przeczytać ponownie i sprawdzić (opcja "Podgląd wiadomości"). Należy przykładać dużą wagę do poprawności gramatycznej i ortograficznej postu. W przypadku napisania niepoprawnej wiadomości, zawsze można ja edytować i zmienić jej treść (edytować można tylko swoje wiadomości). Wszelkie logi należy zamieszczać na hostach, dodając w postach jedynie linki do nich.


Nawet, jeśli nie będę mógł pomóc, to może coś podpowiem:

1. Najpierw sięgnij do źródła, potem dopiero dzwoń po hydraulika.

2. Precyzja odpowiedzi zależy przed wszystkim od precyzji zadanego pytania.
3. Nie czytam w myślach, ale mogę powróżyć na specjalne życzenie (:





Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych