Witam, dostałem do ogarnięcia laptop od kolegi. Laptop chodzi i reaguje dosyc wolno. Ponizej logi. Proszę o wyrozumialosc jesli pominal jakis punkt. Główny cel jaki chcialbym osiagnac to usuniecie zbednych rzeczy . Dziekuje z gory za pomoc.
Odinstaluj Amazon 1Button App,Browser-Security,ByteFence Anti-Malware,Gameo,Java 8 Update 77,Lenovo Browser Guard,McAfee Security Scan Plus,SafeFinder,Sparta,WarThunder.Otwórz notatnik systemowy i wklej:
CloseProcesses:
Task: {064DACFE-7499-4D18-8799-CAEFE8481929} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2016-03-15] (Byte Technologies LLC) <==== UWAGA
Task: {71CE7E46-B128-4930-86DE-B2602849D7D2} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2016-03-15] (Byte Technologies LLC) <==== UWAGA
ShortcutWithArgument: C:\Users\hubet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy/?subid=2&click_id=5c59ba7691ca8d1f1528cde99c2201e451447e50
ShortcutWithArgument: C:\Users\hubet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparta\Sparta.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://plarium.com/play/en/sparta/navy_pl?adCampaign=88078&clickID=0DtDyDtAyEzytD0BtDzz0CtDzzzytDyB&publisherID=100 --app-window-size=1366,768
ShortcutWithArgument: C:\Users\hubet\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Sparta.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://plarium.com/play/en/sparta/navy_pl?adCampaign=88078&clickID=0DtDyDtAyEzytD0BtDzz0CtDzzzytDyB&publisherID=100 --app-window-size=1366,768
ShortcutWithArgument: C:\Users\hubet\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy/?subid=2&click_id=5c59ba7691ca8d1f1528cde99c2201e451447e50
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [346]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [346]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [346]
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT [40]
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2 [346]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [346]
AlternateDataStreams: C:\Users\hubet\Dane aplikacji:NT [40]
AlternateDataStreams: C:\Users\hubet\Dane aplikacji:NT2 [346]
AlternateDataStreams: C:\Users\hubet\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\hubet\AppData\Roaming:NT2 [346]
Hosts:
HKU\S-1-5-21-4212256537-2123619267-310820368-1001…\StartupApproved\Run: => "Gameo"
HKU\S-1-5-21-4212256537-2123619267-310820368-1001…\Run: [BingSvc] => C:\Users\hubet\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-17] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4212256537-2123619267-310820368-1001…\Run: [Gameo] => C:\Users\hubet\AppData\Roaming\Gameo\gameo.exe [42482176 2015-07-04] ()
AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC64Loader.dll [206152 2014-07-22] (ClientConnect LTD)
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll [119616 2014-09-26] (Amazon Inc.)
AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC32Loader.dll [173896 2014-07-22] (ClientConnect LTD)
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE.dll [106304 2014-09-26] (Amazon Inc.)
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Brak pliku)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-02-01]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe (McAfee, Inc.)
CHR HKU\S-1-5-21-4212256537-2123619267-310820368-1001\SOFTWARE\Google\Chrome\Extensions…\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [jidkebcigjgheaahopdnlfaohgnocfai] - hxxps://clients2.google.com/service/update2/crx
S2 0063481488037426mcinstcleanup; C:\Users\hubet\AppData\Local\Temp\006348~1.EXE [1008304 2016-10-11] (McAfee, Inc.) <==== UWAGA
R2 CltMngSvc; C:\Program Files (x86)\LenovoBrowserGuard\Main\bin\CltMngSvc.exe [2538824 2014-07-22] (ClientConnect LTD)
S4 mfefire; “C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe” [X]
S2 mfemms; “C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe” [X]
S2 mfevtp; “C:\WINDOWS\system32\mfevtps.exe” [X]
S0 cfwids; system32\drivers\cfwids.sys [X]
S3 FairplayKD; ??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
R0 mfeaack; system32\drivers\mfeaack.sys [X]
R0 mfeavfk; system32\drivers\mfeavfk.sys [X]
S0 mfeelamk; system32\drivers\mfeelamk.sys [X]
S0 mfefirek; system32\drivers\mfefirek.sys [X]
R0 mfehidk; system32\drivers\mfehidk.sys [X]
R0 mfeplk; system32\drivers\mfeplk.sys [X]
R0 mfewfpk; system32\drivers\mfewfpk.sys [X]
2016-04-06 18:51 - 2016-04-06 18:51 - 6504960 _____ () C:\Users\hubet\AppData\Roaming\agent.dat
2016-04-06 18:51 - 2016-04-06 18:51 - 0065232 _____ () C:\Users\hubet\AppData\Roaming\Config.xml
2016-04-06 18:50 - 2016-04-06 18:50 - 0167639 _____ () C:\Users\hubet\AppData\Roaming\inst.lat
2016-04-06 18:50 - 2016-04-06 18:51 - 0014208 _____ () C:\Users\hubet\AppData\Roaming\InstallationConfiguration.xml
2016-04-06 18:50 - 2016-04-06 18:50 - 0127488 _____ () C:\Users\hubet\AppData\Roaming\Installer.dat
2016-04-06 18:51 - 2016-04-06 18:51 - 0018432 _____ () C:\Users\hubet\AppData\Roaming\Main.dat
2016-04-06 18:51 - 2016-04-06 18:51 - 0005568 _____ () C:\Users\hubet\AppData\Roaming\md.xml
2016-04-06 18:51 - 2016-04-06 18:51 - 0126464 _____ () C:\Users\hubet\AppData\Roaming\noah.dat
2016-04-06 18:52 - 2016-04-06 18:52 - 0032038 _____ () C:\Users\hubet\AppData\Roaming\uninstall_temp.ico
2016-04-06 18:51 - 2016-04-06 18:51 - 1932216 _____ () C:\Users\hubet\AppData\Roaming\Whitetech.bin
2016-04-06 18:51 - 2016-04-06 18:51 - 1626339 _____ () C:\Users\hubet\AppData\Roaming\Zottough.tst
2015-12-22 21:03 - 2015-12-22 21:03 - 0041482 _____ () C:\Users\hubet\AppData\Local\Update.12.Bron.Tok.bin
EmptyTemp:
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Uruchom jako administrator FRST i kliknij w Fix/Napraw.
Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan(Skanuj) i później Cleaning(Oczyść).
1 polubienie