logo elektroda
logo elektroda
X
logo elektroda
Szukanie Zaawansowane
logo elektroda
REKLAMA
REKLAMA
Adblock/uBlockOrigin/AdGuard mogą powodować znikanie niektórych postów z powodu nowej reguły.

[Rozwiązano] Analiza FRST - komputer wolno działa, długie zamykanie

majk636363 10 Maj 2019 19:59 405 3
REKLAMA
Zgłoś naruszenie prawa
| Nowy temat
  • #1 17954144
    majk636363
    Poziom 3  
    Posty: 92
    Ocena: 24
    Prośba o sprawdzenie FRST, komputer ostatnio znacznie spowolnił przy długotrwałej pracy, długo się załącza i ma problem z reakcją podczas klikania, czasem potrafi się zamykać ze 20min i finalnie nie zamknąć. przeskanowany przez malvarebytes, jrt, ccleaner.
    Załączniki:
    • FRST.txt (43.52 KB) Musisz być zalogowany, aby pobrać ten załącznik.
    • Addition.txt (34.1 KB) Musisz być zalogowany, aby pobrać ten załącznik.
  • REKLAMA
  • Pomocny post
    #2 17954229
    krzychupar
    Poziom 43  
    Posty: 6807
    Pomógł: 1490
    Ocena: 633
    Otwórz notatnik systemowy i wklej:

    CloseProcesses:
    Hosts:
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: E - E:\LaunchU3.exe -a
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {0fefdbef-39cc-11e9-b0b1-acfdce9c4b0e} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {0fefdc43-39cc-11e9-b0b1-acfdce9c4b0e} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {335f7d81-68b7-11e8-af35-acfdce9c4b12} - E:\LaunchU3.exe -a
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {394394e4-58d8-11e7-b469-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc34971-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc3498e-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc34990-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {7f3fd050-5bef-11e8-a49f-806e6f6e6963} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {7f3fd0c5-5bef-11e8-a49f-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {a06f93e2-82f7-11e8-a9c1-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {b6e47b72-0525-11e8-a01c-acfdce9c4b12} - F:\LaunchU3.exe -a
    BootExecute:
    FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
    Task: {094E036F-A657-4139-A95A-47E12319F1D1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-17] (AVAST Software s.r.o. -> AVAST Software)
    Task: {A818B808-243F-4C38-B688-4E441F220CBC} - System32\Tasks\{954F34EB-75B8-4278-A48A-979876663538} => C:\Windows\system32\pcalua.exe -a C:\Users\Maria\AppData\Roaming\yoursearching\UninstallManager.exe -c -ptid=cor
    Hosts: 0.0.0.1 mssplus.mcafee.com
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nav-pl.com/
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> DefaultScope {8C1A7B8C-6290-4319-A877-DF01BFE7498E} URL = hxxp://www.nav-pl.com/search?q={searchTerms}
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> OldSearch URL = hxxp://www.bing.com/search?q={searchTerms}
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> {8C1A7B8C-6290-4319-A877-DF01BFE7498E} URL = hxxp://www.nav-pl.com/search?q={searchTerms}
    Toolbar: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku
    StartMenuInternet: IEXPLORE.EXE - iexplore.exe
    CHR HomePage: Profile 1 -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn49PYmQ6e1krQXBFZY3cpclbAdH6sYtK_q927KJ5E2_E8FOPadSpu4PTm8gygfPY-THRehzw1skBRXOc0kI0kYePHNI3oDeHdi9ZcfndOlLRAqYlM_I18N8Wt67cheB0xrRs5Sr2cZjP0ENJTXp3NEq5mku4LSLlw,,
    CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
    U1 aswbdisk; Brak ImagePath
    2018-11-27 10:05 - 2019-05-09 10:18 - 000000037 _____ () C:\Users\Maria\AppData\Roaming\WB.CFG
    2016-02-08 22:16 - 2016-02-27 15:51 - 000006006 _____ () C:\Users\Maria\AppData\Local\unins000.dat
    2016-02-27 15:51 - 2016-02-27 15:50 - 000707672 _____ () C:\Users\Maria\AppData\Local\unins000.exe
    2016-02-08 22:16 - 2016-02-27 15:51 - 000011761 _____ () C:\Users\Maria\AppData\Local\unins000.msg
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.
  • REKLAMA
  • Pomocny post
    #3 17957462
    RADU23
    VIP Zasłużony dla elektroda
    Posty: 20716
    Pomógł: 2426
    Ocena: 1727
    Otwórz notatnik i wklej zawartość:
    Cytat:
    CloseProcesses:
    CreateRestorePoint:
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: E - E:\LaunchU3.exe -a
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {0fefdbef-39cc-11e9-b0b1-acfdce9c4b0e} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {0fefdc43-39cc-11e9-b0b1-acfdce9c4b0e} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {335f7d81-68b7-11e8-af35-acfdce9c4b12} - E:\LaunchU3.exe -a
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {394394e4-58d8-11e7-b469-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc34971-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc3498e-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {6bc34990-96cb-11e5-ad8a-acfdce9c4b12} - E:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {7f3fd050-5bef-11e8-a49f-806e6f6e6963} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {7f3fd0c5-5bef-11e8-a49f-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {a06f93e2-82f7-11e8-a9c1-acfdce9c4b12} - E:\AutoRun.exe
    HKU\S-1-5-21-554963908-3903082898-970466155-1000\...\MountPoints2: {b6e47b72-0525-11e8-a01c-acfdce9c4b12} - F:\LaunchU3.exe -a
    FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
    Task: {A818B808-243F-4C38-B688-4E441F220CBC} - System32\Tasks\{954F34EB-75B8-4278-A48A-979876663538} => C:\Windows\system32\pcalua.exe -a C:\Users\Maria\AppData\Roaming\yoursearching\UninstallManager.exe -c -ptid=cor
    Tcpip\..\Interfaces\{199E6E46-5ABE-4F8D-B768-D5789AC6B4A6}: [DhcpNameServer] 192.168.0.1
    Tcpip\..\Interfaces\{57F0F2DE-040C-4DBB-838F-E4FD8C59928D}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{AA576564-1C16-402E-833B-1E5D8F822957}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{B19756F4-A410-47F5-B1DE-A293074F6F9C}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{C0E25151-5F7B-47F2-8758-BF28A1204001}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> DefaultScope {8C1A7B8C-6290-4319-A877-DF01BFE7498E} URL = hxxp://www.nav-pl.com/search?q={searchTerms}
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> OldSearch URL = hxxp://www.bing.com/search?q={searchTerms}
    SearchScopes: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> {8C1A7B8C-6290-4319-A877-DF01BFE7498E} URL = hxxp://www.nav-pl.com/search?q={searchTerms}
    Toolbar: HKU\S-1-5-21-554963908-3903082898-970466155-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku
    FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => nie znaleziono
    CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
    S2 HuaweiHiSuiteService64.exe; "C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
    U1 aswbdisk; Brak ImagePath
    ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
    ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.
  • #4 18057942
    majk636363
    Poziom 3  
    Posty: 92
    Ocena: 24
    dzięki, ruszyło
| Nowy temat
Zgłoś naruszenie prawa
REKLAMA