Od kilku dni strasznie muli komputer


(B1703859) #1

Witam. Od kilku dni nagle zaczęło mulić komputer. Podejrzewam, że to przez nagromadzenie różnych bezsensownych programów.


(Acorus) #2

Otwórz Notatnik i wklej:

HKU\S-1-5-21-3099691929-597136357-677967994-1002\...\Run: [Yahoo! Search] = C:\Users\Marcin\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe
GroupPolicy: Group Policy on Chrome detected ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
SearchScopes: HKCU - {BB7CB862-ED24-41E3-8CB0-C9F05FDB25C5} URL = http://rts.dsrlte.com/?q={searchTerms}r=604
SearchScopes: HKCU - {E704A76A-2984-4542-BE73-522ACDC50FCF} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}SearchSource=4ctid=CT3289075CUI=UN37318045171290111UM=1
BHO: Movies Search App (Dist. by Bandoo Media, Inc.) - {c0caa5fe-7c9c-4dca-a265-63cf55379d1a} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx64.dll No File
BHO-x32: Movies Search App (Dist. by Bandoo Media, Inc.) - {c0caa5fe-7c9c-4dca-a265-63cf55379d1a} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - Movies Search App (Dist. by Bandoo Media, Inc.) - {c0caa5fe-7c9c-4dca-a265-63cf55379d1a} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx64.dll No File
Toolbar: HKLM-x32 - Movies Search App (Dist. by Bandoo Media, Inc.) - {c0caa5fe-7c9c-4dca-a265-63cf55379d1a} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
FF NewTab: hxxp://rts.dsrlte.com/?m=tabaffID=na
FF DefaultSearchEngine: Yahoo! Search
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://rts.dsrlte.com?affID=na
FF Keyword.URL: hxxp://rts.dsrlte.com/?q=
FF Extension: BrowseSmart - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\xka030su.default\Extensions\{7f2b4ad0-671a-477b-bcd4-79d041f50d27}.xpi [2014-09-17]
FF Extension: No Name - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\xka030su.default\extensions\{2d7886a0-85bb-4bf2-b684-ba92b4b21d23} [Not Found]
CHR Extension: (BrowseSmart) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ippenodjaoidmkkfdlmdhofiebnpjddb [2014-09-17]
CHR Extension: (Extutil) - C:\Users\Marcin\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B [2014-02-17]
CHR Extension: (Managera) - C:\Users\Marcin\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42 [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [aaaaabcbmongicmdegkmmfgdickgnnob] - C:\Users\Marcin\AppData\Local\ilividmoviestoolbar20\GC\toolbar.crx [2014-04-18]
CHR HKLM-x32\...\Chrome\Extension: [aaaaaigjndjblmpeckabiffcpogflfgl] - C:\Users\Marcin\AppData\Local\ilividbandoomoviestoolbar\GC\toolbar.crx [2014-07-03]
2014-10-31 12:07 - 2014-10-31 12:17 - 00000000 ____ D () C:\AdwCleaner
2014-10-28 09:56 - 2014-10-28 09:56 - 00003512 _____ () C:\windows\System32\Tasks\Yahoo! Search Updater
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.