Witam wszystkich bardzo serdecznie .
i co mam tutaj podać ? Przepraszam ale jestem w tym blady dlatego szukam pomocy .
W instrukcji jest wszystko dokładnie opisane.
W panelu sterowania odinstaluj McAfee Security Scan Plus.
Pobierz i uruchom AdwCleaner Kliknij Skanuj (Scan) i później Usuń (Cleaning).
Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :
HKLM-x32\...\Run: [app-helper] => C:\Program Files (x86)\Application Assistance\app-helper.exe
HKU\S-1-5-21-41681020-2643797401-4133232511-1013\...\Run: [NvidiaHostStart] => C:\Users\Norbert_2\AppData\Local\NVIDIA Corporation\nvsync.exe
HKU\S-1-5-21-41681020-2643797401-4133232511-1013\...\Run: [Microsoft Visual C++ 2010] => C:\Users\Norbert_2\AppData\Roaming\cppredistx86.exe
HKU\S-1-5-21-41681020-2643797401-4133232511-1013\...\Run: [Currency] => C:\Users\Norbert_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vernaja Alternativa\CurrencyShow.appref-ms
HKU\S-1-5-21-41681020-2643797401-4133232511-1013\...\Run: [C] => C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol [782 2015-09-22] ()
ShellIconOverlayIdentifiers: [SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Brak pliku
ShellIconOverlayIdentifiers: [SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Brak pliku
ShellIconOverlayIdentifiers: [SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Brak pliku
ShellIconOverlayIdentifiers-x32: [SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Brak pliku
ShellIconOverlayIdentifiers-x32: [SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Brak pliku
ShellIconOverlayIdentifiers-x32: [SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Brak pliku
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VerbAce-Pro Startup Agent.lnk [2014-05-06]
GroupPolicy: Ograniczenia - Chrome <======= UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
URLSearchHook: [S-1-5-21-41681020-2643797401-4133232511-1009] UWAGA => Brak domyślnego URLSearchHook
URLSearchHook: [S-1-5-21-41681020-2643797401-4133232511-1013] UWAGA => Brak domyślnego URLSearchHook
URLSearchHook: HKU\S-1-5-21-41681020-2643797401-4133232511-1013 - (Brak nazwy) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - Brak pliku
SearchScopes: HKLM -> DefaultScope - brak wartości
SearchScopes: HKLM-x32 -> DefaultScope - brak wartości
SearchScopes: HKU\S-1-5-21-41681020-2643797401-4133232511-1011 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-41681020-2643797401-4133232511-1011 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-41681020-2643797401-4133232511-1013 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL =
BHO-x32: Brak nazwy -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> Brak pliku
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll Brak pliku
Handler: WSISVCUchrome - No CLSID Value
FF NewTab: hxxps://pl.search.yahoo.com/?fr=vmn&type=vmn __webcompa__ 1_0 __ya__ hp_WCYID10099_swoc_campaign_150421__yaie
FF SelectedSearchEngine: Yahoo
FF HKLM\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [{21541D23-FDA1-4bf3-8AF2-8F623BF70B07}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension
OPR StartupUrls: "hxxp://www.istartsurf.com/?type=hp&ts=1438940426&z=b69e3d6d813e903601ea08bgazdc2b6t2z7e6g6g1t&from=cornl&uid=HitachiXHDS721010CLA330_JP2940N10BTG0V0BTG0VX"
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.)
S3 IDriverT; "C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe" [X]
S4 QHActiveDefense; "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" [X]
R3 360AvFlt; system32\DRIVERS\360AvFlt.sys [X]
R3 360Box64; system32\DRIVERS\360Box64.sys [X]
S3 andnetndis; \SystemRoot\system32\DRIVERS\lgandnetndis64.sys [X]
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
R1 QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMUdisk64.sys [X]
R4 TAOKernelDriver; System32\Drivers\TAOKernel64.sys [X]
R3 TS888x64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\TS888x64.sys [X]
2015-09-22 23:35 - 2015-09-22 23:35 - 00000000 ____ D C:\Users\Norbert_2\AppData\Roaming\Babylon
2015-09-22 23:35 - 2015-09-22 23:35 - 00000000 ____ D C:\Users\Norbert_2\AppData\Local\Babylon
2015-09-22 23:35 - 2015-09-22 23:35 - 00000000 ____ D C:\ProgramData\Babylon
2015-09-22 17:41 - 2015-09-22 17:47 - 00000000 ____ D C:\Users\Norbert_2\AppData\Roaming\Systweak
2015-09-22 17:41 - 2015-09-22 17:41 - 00000000 ____ D C:\Users\Norbert_2\AppData\Local\Systweak
2015-09-22 16:03 - 2015-09-22 16:03 - 00000000 ____ D C:\ProgramData\TXQMPC
2015-09-22 15:46 - 2015-09-22 15:46 - 00000109 ____ H C:\iexplore.bat
2015-09-22 15:46 - 2015-09-22 15:46 - 00000103 ____ H C:\launcher.bat
2015-09-22 15:46 - 2015-09-11 09:07 - 00955512 ____ H (Opera Software) C:\lаunсhеr.bаt.exe
2015-09-22 15:46 - 2015-05-28 01:19 - 00814256 ____ H (Microsoft Corporation) C:\iехplоrе.bаt.exe
2015-05-16 11:04 - 2015-07-13 18:21 - 0000024 _____ () C:\Users\Norbert_2\AppData\Roaming\appdataFr25.bin
2015-02-04 22:54 - 2015-04-25 09:29 - 0000020 _____ () C:\Users\Norbert_2\AppData\Roaming\appdataFr3.bin
2015-01-22 19:00 - 2015-01-22 19:00 - 0442896 _____ () C:\Users\Norbert_2\AppData\Roaming\data13.dat
2015-04-04 12:15 - 2015-04-04 12:15 - 0000000 _____ () C:\Users\Norbert_2\AppData\Roaming\ssleas.exe
2015-04-26 23:55 - 2015-04-26 23:56 - 0011902 _____ () C:\Users\Norbert_2\AppData\Local\Temp-log.txt
CustomCLSID: HKU\S-1-5-21-41681020-2643797401-4133232511-1013_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Norbert_2\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll Brak pliku
Task: {39FB7371-8E6F-4C67-93D2-DC3D67E57355} - \WPD\SqmUpload_S-1-5-21-41681020-2643797401-4133232511-1001 -> Brak pliku <==== UWAGA
Task: {B0882D95-C42C-4360-82C8-DD1DDC2445E9} - System32\Tasks\{E9408B59-C1CC-468D-84E5-7E5C7905D17A} => Chrome.exe http://ui.skype.com/ui/0/6.16.0.105/pl/abandoninstall?page=tsBing
Task: {EA62A8D1-567B-47F5-B25A-4E3ACCB9D152} - System32\Tasks\{62925069-1B39-4DFF-86DD-A4D5D9D66818} => pcalua.exe -a "C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\UninstallTips.exe" -d "C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218"
AlternateDataStreams: C:\WINDOWS\system32\Drivers\vwcinoqx.sys:changelist
Hosts:
EmptyTemp:
Uruchom FRST i kliknij Napraw (Fix). Pokaż raport z usuwania Fixlog.
Kliknij Skanuj (Scan) i pokaż nowy raport z FRST bez Addition i Shortcut.
Problem został zażegnany ! Dziękuję Bardzo Atis za pomoc 
Jesteś Mistrzem
Widzisz tam jeszcze jakieś nieprawidłowości ?
Fixlog : http://www.wklej.org/id/1803110/
Skasuj folder C:\FRST
Usuń stare punkty przywracania: Przywracanie systemu i kopie w tle
Dysk przeskanuj ESET Online Scanner
Przeczytaj w jaki sposób należy instalować programy: KLIK - KLIK - KLIK