Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Pojawiające się programy do przyśpieszenia komputera, usunięte wirusy

kingpc 07 Gru 2016 18:25 354 4
  • #2 07 Gru 2016 18:43
    Acorus 20
    Spec od komputerów

    Odinstaluj McAfee Security Scan Plus, Reimage Repair. Otwórz notatnik systemowy i wklej:

    Cytat:
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\UpdatusUser\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncApi.dll => Brak pliku
    Task: {0029AD13-F7A3-4740-86DD-678DDF8CD1E4} - System32\Tasks\Norton Security Scan for J-D => C:\Program Files\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-10-16] (Symantec Corporation)




    Task: {05875201-392B-4851-8591-A5C2C7E5E550} - \CCleanerSkipUAC -> Brak pliku <==== UWAGA
    Task: {1A0666BF-0E01-4E07-9241-15AC59B9EA1D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {1D9254D3-909A-4DEA-BFD3-5FC4F4F57958} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {2B312481-D28D-413D-A7C5-3F41BFFB892F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {2DECBFD9-E3C6-4BBF-BCF6-90725851EFA2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {6E0B578A-DCAE-47A5-A87F-979F95F61015} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {7023CB71-3359-49CD-9C51-2313CA7D86C4} - System32\Tasks\{75649DC5-0E48-468F-8583-2D2FA8601BDA} => Firefox.exe
    Task: {709F4C68-0984-4A19-B7A4-547D20F532C9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {8223CB4B-9C04-47D9-B784-FC4F71FE19AE} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2016-09-22] (Reimage ltd.) <==== UWAGA
    Task: {8D0D0D49-DE17-4FF3-8E7A-E62DB725A76E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {AC6775C3-1508-447B-BCB1-DE49DBD36AD4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {B6496F67-4D6B-44C5-9871-33751BD87D15} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {CF2362C2-1381-4C28-B3E8-A82EC8DB5928} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {DE0C83BE-1C40-437D-A2FA-6217153BF678} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: C:\WINDOWS\Tasks\Norton Security Scan for J-D.job => C:\PROGRA~1\NORTON~2\Engine\430~1.43\Nss.exe
    Hosts:
    HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [69632 2004-04-13] (InstallShield Software Corporation)
    HKU\S-1-5-21-3146983797-36069219-3389945028-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
    CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [272136 2016-10-13] (McAfee, Inc.)
    R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [6542704 2016-11-06] (Reimage®)
    U3 idsvc; Brak ImagePath
    U3 wpcsvc; Brak ImagePath
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.
    Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan(Skanuj) i później Cleaning(Oczyść).

    0
  • #3 07 Gru 2016 18:45
    Kolobos
    Spec od komputerów

    Odinstaluj:
    McAfee Security Scan Plus
    Reimage Repair
    Spybot - Search & Destroy

    Uzyj AdwCleaner, opcja Scan i Clean/Szukaj i Usun: http://www.bleepingcomputer.com/download/adwcleaner/

    Obok frst.exe utworz plik Fixlist.txt z zawartoscia:
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\UpdatusUser\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-3146983797-36069219-3389945028-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncApi.dll => Brak pliku
    Task: {0029AD13-F7A3-4740-86DD-678DDF8CD1E4} - System32\Tasks\Norton Security Scan for J-D => C:\Program Files\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-10-16] (Symantec Corporation)
    Task: {05875201-392B-4851-8591-A5C2C7E5E550} - \CCleanerSkipUAC -> Brak pliku <==== UWAGA
    Task: {1A0666BF-0E01-4E07-9241-15AC59B9EA1D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {1D9254D3-909A-4DEA-BFD3-5FC4F4F57958} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {2B312481-D28D-413D-A7C5-3F41BFFB892F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {2DECBFD9-E3C6-4BBF-BCF6-90725851EFA2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {4EF9350F-C953-43E3-9C8A-3A4034EFBC54} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Internet Security\Engine\22.5.4.24\WSCStub.exe
    Task: {548461A5-6CBC-46A9-A329-34FC46F2ACCD} - System32\Tasks\{726AD1C3-3208-4F3D-BD19-E341B2C62603} => pcalua.exe -a F:\SETUP.EXE -d F:\
    Task: {6E0B578A-DCAE-47A5-A87F-979F95F61015} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {7023CB71-3359-49CD-9C51-2313CA7D86C4} - System32\Tasks\{75649DC5-0E48-468F-8583-2D2FA8601BDA} => Firefox.exe
    Task: {709F4C68-0984-4A19-B7A4-547D20F532C9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {7BF26F8D-BEB8-414F-BB9A-F4E39C364B9F} - System32\Tasks\{6CDEEFFE-AD09-4908-AABE-E35C38669CF2} => C:\Program Files\Axesstel\AxessManager\AxessManager.exe [2009-03-30] (Axesstel Inc.)
    Task: {8223CB4B-9C04-47D9-B784-FC4F71FE19AE} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2016-09-22] (Reimage ltd.) <==== UWAGA
    Task: {8D0D0D49-DE17-4FF3-8E7A-E62DB725A76E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {98E9B59B-B458-49CB-B3A5-305B43047FF7} - System32\Tasks\{44FA2AB7-1FE2-4104-9508-AA421C42B160} => Firefox.exe
    Task: {AC6775C3-1508-447B-BCB1-DE49DBD36AD4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {B6496F67-4D6B-44C5-9871-33751BD87D15} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {B892E6EB-990E-47D3-9AA8-41105B0FF2FD} - System32\Tasks\{A9EDC683-3578-45B2-A66E-D9A92311BC33} => C:\Program Files\Axesstel\AxessManager\AxessManager.exe [2009-03-30] (Axesstel Inc.)
    Task: {CF2362C2-1381-4C28-B3E8-A82EC8DB5928} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {DE0C83BE-1C40-437D-A2FA-6217153BF678} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {EFDC5135-B29E-4D4B-B34B-42C8287E861A} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2016-11-06] (Reimage®) <==== UWAGA
    Task: C:\WINDOWS\Tasks\Norton Security Scan for J-D.job => C:\PROGRA~1\NORTON~2\Engine\430~1.43\Nss.exe
    (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
    (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
    (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-10-30]
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
    FF HKLM\...\Firefox\Extensions: [{40211632-250D-4B8C-B04E-DA45BAE6DF8C}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.0.0.100\coFFPlgn => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [{EBA722F5-038F-4CAF-9EE2-545A221628BC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFPlgn => nie znaleziono
    CHR Extension: (Norton Security Toolbar) - C:\Users\J-D\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-07-05]
    CHR Extension: (Avast Online Security) - C:\Users\J-D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-07-05]
    CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Internet Security\Engine\22.5.4.24\Exts\Chrome.crx <nie znaleziono>
    CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nie znaleziono>
    CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [6542704 2016-11-06] (Reimage®)
    2016-11-16 04:25 - 2016-11-16 04:25 - 00000000 _____ C:\4428.dummy.000
    C:\Program Files\Reimage\
    EmptyTemp:

    W FRST wybierz Napraw.

    Zrob pelny skan przy pomocy Mbam i usun to co wykryje:
    http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

    Po wykonaniu zamiesc nowe logi z FRST, ze skanowania.

    0
  • #5 07 Gru 2016 21:02
    Kolobos
    Spec od komputerów

    Wykonaj jeszcze Fixlist.txt, ktory podalem. Po wykonaniu usun katalog C:\FRST i to wszystko.

    0