Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Powolne działanie komputera + reklamy

rzezniczak 11 Wrz 2016 13:15 537 4
  • #1 11 Wrz 2016 13:15
    rzezniczak
    Poziom 5  

    Witam, od pewnego czasu wyskakuje mi bardzo dużo reklam + komputer jest bardzo powolny. Wydaje mi się, że to wirusy. Czytałem coś na temat programu FRST. Mogę prosić o pomoc co mogę zrobić?

    0 4
  • CControls
  • #2 11 Wrz 2016 13:43
    marqqv
    Poziom 31  

    Adw clener , ccleaner ,zemana antimalware . Może pomogą .

    0
  • CControls
  • #5 11 Wrz 2016 15:19
    Kolobos
    Spec od komputerów

    Usunales to co znalazl Adwc?

    Odinstaluj AVG PC TuneUp 2014

    Obok frst.exe utworz plik Fixlist.txt z zawartoscia:
    Task: {071E3AD9-7192-4733-9B5D-83C33B696C17} - System32\Tasks\{FDAD9D34-18D2-17E2-7A6D-A9AA4FCFC944} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\7862835d\5d235f96.dll" <==== UWAGA
    Task: {A245422E-298E-4A7E-A221-07FB7FCBC749} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-03-22] (AVG)
    Task: {E7B06D03-EE1C-43B3-8170-30ECD8D38E7C} - System32\Tasks\Opera scheduled Autoupdate 1432136754 => C:\Program Files (x86)\Opera\launcher.exe [2016-06-13] (Opera Software)
    Task: {EA4C4160-F270-4C2D-AC5B-9722B0632716} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA
    Task: {EBDCE3FA-0B60-4C34-8F26-5168662FFCF7} - \Program aktualizacji online firmy InstallShield Software. -> Brak pliku <==== UWAGA
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Dariusz\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {05200769-32d8-11e5-bebf-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {0520081f-32d8-11e5-bebf-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {0cf2bbac-3430-11e5-bec0-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {5c452bf8-0a16-11e6-bed8-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {786f6df4-eb48-11e5-bed7-0c84dcf02c64} - "F:\h3_setup.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {786f739d-eb48-11e5-bed7-0c84dcf02c64} - "G:\setup.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {96f7612e-ed05-11e4-beaf-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {e85b7fb0-374d-11e5-bec3-0c84dcf02c64} - "E:\AutoRun.exe"
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\MountPoints2: {e85b801b-374d-11e5-bec3-0c84dcf02c64} - "E:\AutoRun.exe"
    IFEO\sfaupdater.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    Tcpip\Parameters: [NameServer] 82.163.143.171 82.163.142.173
    Tcpip\..\Interfaces\{069835F3-70E8-43A2-A792-CD41B401C5BF}: [NameServer] 82.163.143.171 82.163.142.173
    Tcpip\..\Interfaces\{39B654F4-0FAF-4B78-B8BA-A711B9CE5993}: [NameServer] 82.163.143.171 82.163.142.173
    Tcpip\..\Interfaces\{39B654F4-0FAF-4B78-B8BA-A711B9CE5993}: [DhcpNameServer] 82.163.143.171
    Tcpip\..\Interfaces\{42FD72D2-1510-442F-B864-E121C34DA5C0}: [NameServer] 82.163.143.171 82.163.142.173
    Tcpip\..\Interfaces\{42FD72D2-1510-442F-B864-E121C34DA5C0}: [DhcpNameServer] 82.163.143.171




    Tcpip\..\Interfaces\{BB7288C1-7684-4000-91AF-651EB5BD2FAC}: [NameServer] 82.163.143.171 82.163.142.173
    Tcpip\..\Interfaces\{BB7288C1-7684-4000-91AF-651EB5BD2FAC}: [DhcpNameServer] 82.163.143.171
    Tcpip\..\Interfaces\{C6F39776-E1DD-4FAB-ACD2-C62F0EFDDE67}: [NameServer] 89.108.195.21 89.108.202.21
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1432...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...xtab&uid=85971F44335D403fA2F912653AC5A07B
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...xtab&uid=85971F44335D403fA2F912653AC5A07B
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1432...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.aartemis.com/web/?type=ds&ts=1...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910...amp;GUID=1D7D1C2E-3D79-4CC6-8552-ED479EDEAE19
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...xtab&uid=85971F44335D403fA2F912653AC5A07B
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
    HKU\S-1-5-21-376391934-111849332-4211962027-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.aartemis.com/web/?type=ds&ts=1...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1432...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
    SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1432...XHTS545050A7E380_130701TM8514TF16A3EPX&q={searchTerms}
    SearchScopes: HKLM-x32 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {2FCFB699-F2C5-4A75-8F99-D8B19511DE9D} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-376391934-111849332-4211962027-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&ut...G6A&ts=1420373293&type=default&q={searchTerms}
    FF NewTab: chrome://quick_start/content/index.html
    FF DefaultSearchEngine: V9
    FF SearchEngineOrder.3: Bing
    FF SelectedSearchEngine: V9
    FF Homepage: hxxp://do-search.com/?type=hp&ts=14326613...id=HGSTXHTS545050A7E380_130701TM8514TF16A3EPX
    FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
    FF SearchPlugin: C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\searchplugins\v9-.xml [2016-07-02]
    FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\quick_start@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\faststartff@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\shortcutff@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [detgdp@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\detgdp@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [quick_searchff@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\quick_searchff@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\sweetsearch@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\searchffv2@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\arthurj8283@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [default_newtabff@gmail.com] - C:\Users\Dariusz\AppData\Roaming\Mozilla\Firefox\Profiles\hv9widik.default\extensions\default_newtabff@gmail.com => nie znaleziono
    FF HKU\S-1-5-21-376391934-111849332-4211962027-1002\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => nie znaleziono
    CHR HomePage: Default -> hxxp://www.delta-homes.com/?type=hp&ts=14...id=HGSTXHTS545050A7E380_130701TM8514TF16A3EPX
    CHR StartupUrls: Default -> "hxxp://www.delta-homes.com/?type=hp&ts=1437501933&z=fae9764bfd12735d41dc9a2g3z8c7m4w6e5g4tfc6z&from=wpm07163&uid=HGSTXHTS545050A7E380_130701TM8514TF16A3EPX"
    CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
    R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-02-10] (TuneUp Software)
    S1 ahcmtywi; \??\C:\WINDOWS\system32\drivers\ahcmtywi.sys [X]
    S3 ewusbnet; \SystemRoot\system32\DRIVERS\ewusbnet.sys [X]
    2016-09-11 14:55 - 2016-09-11 14:59 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:

    W FRST wybierz Napraw.

    Usun katalog C:\FRST.

    Zrob pelny skan przy pomocy Mbam i usun to co wykryje:
    http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

    0