Procesor chodzi na 100%


(Vadi345) #1

Witam!

 

Często zdarza mi się, że procesor pracuje na 100%, czego skutkiem jest np. zacinający się dźwięk i zawieszające się aplikacje. Podejrzewam, że problem może tkwić w złośliwym oprogramowaniu.

 

FRST: http://wklej.to/mhAmp

Addition: http://wklej.to/UUilo

 

Z góry dziękuję za pomoc.


(Acorus) #2

Odinstaluj sweet-page uninstall,TNT2-11147 Toolbar,YTD Video Downloader 4.8.9.Otwórz notatnik systemowy i wklej:

GroupPolicy: Group Policy on Chrome detected ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
HKU\S-1-5-21-907075547-3930823481-1968160208-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
HKU\S-1-5-21-907075547-3930823481-1968160208-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hpts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=dsts=1423424366from=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606q={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {136718A1-C5B1-4CCD-A2F8-EEB930CFF7F8} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {7FFF6A88-EB3F-496A-8C59-A296102CD66C} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.sweet-page.com/web/?utm_source=butm_medium=corutm_campaign=install_ieutm_content=dsfrom=coruid=SAMSUNGXHD502HI_S1VZJ90SA29606ts=1423424463type=defaultq={searchTerms}
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\XTab\SupTab.dll (Thinknice Co. Limited)
Toolbar: HKLM - TNT2-11147 Toolbar - {AB8F70D7-D8F2-4521-B32A-C2C5700B3FF4} - C:\Program Files (x86)\TNT2\Profiles\11147\passport64.dll (Freshy.com)
Toolbar: HKLM-x32 - TNT2-11147 Toolbar - {AB8F70D7-D8F2-4521-B32A-C2C5700B3FF4} - C:\Program Files (x86)\TNT2\Profiles\11147\passport.dll (Freshy.com)
Toolbar: HKU\S-1-5-21-907075547-3930823481-1968160208-1000 - TNT2-11147 Toolbar - {AB8F70D7-D8F2-4521-B32A-C2C5700B3FF4} - C:\Program Files (x86)\TNT2\Profiles\11147\passport64.dll (Freshy.com)
FF Plugin HKU\S-1-5-21-907075547-3930823481-1968160208-1000: @tnt2npapi.com/Plugin - C:\Users\Madeje\AppData\Local\TNT2\2.0.0.1923\npTNT2.dll (Freshy.com)
S2 Update gate snapper; "C:\Program Files (x86)\gate snapper\updategatesnapper.exe" [X]
R1 {06cae18b-b5d9-4160-936a-6acb4fd59762}w64; C:\Windows\System32\drivers\{06cae18b-b5d9-4160-936a-6acb4fd59762}w64.sys [48792 2015-01-17] (StdLib)
R1 {7acd30ce-c292-49ee-901d-9a8d4b7df1fc}Gw64; C:\Windows\System32\drivers\{7acd30ce-c292-49ee-901d-9a8d4b7df1fc}Gw64.sys [48792 2015-01-12] (StdLib)
R1 {b8540546-4197-4bed-809f-59205cfa1f27}w64; C:\Windows\System32\drivers\{b8540546-4197-4bed-809f-59205cfa1f27}w64.sys [48792 2015-01-20] (StdLib)
R1 {b944123a-7082-45c7-b1b6-6f8cadfaf928}w64; C:\Windows\System32\drivers\{b944123a-7082-45c7-b1b6-6f8cadfaf928}w64.sys [48792 2015-01-14] (StdLib)
2015-02-08 20:41 - 2015-02-08 20:41 - 00000000 ____ D () C:\ProgramData\IHProtectUpDate
2015-02-08 20:41 - 2015-02-08 20:41 - 00000000 ____ D () C:\Program Files (x86)\XTab
2015-02-08 20:40 - 2015-02-22 12:57 - 00000000 ____ D () C:\ProgramData\WindowsMangerProtect
2015-02-08 20:39 - 2015-02-08 20:39 - 00000000 ____ D () C:\Users\Madeje\AppData\Roaming\sweet-page
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.