Witam,
problemy z wolno działającym komputerem, uciążliwe reklamy
Wykonano adwcleaner i skan Malwarebytes
proszę o sprawdzenie logów
FRST
http://www.wklej.org/id/1605687/
Addition
Dzięki, pzdr
Odinstaluj Adobe Reader 9.3 - Polish.Otwórz notatnik systemowy i wklej:
Task: {3401EC3D-8247-4429-8A4F-50B22BCCE8E4} - System32\Tasks\{68A26F94-3C83-4763-A897-5F7E50C2E16C} = Firefox.exe http://ui.skype.com/ui/0/7.0.11.102/pl/abandoninstall?page=tsMain
Task: {EB02381F-D652-4B1C-894A-712498C62C51} - \Microsoft\Windows\MUI\LPRemove No Task File ==== ATTENTION
HKLM\...\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6489704 2010-09-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [TkBellExe] = C:\Program Files (x86)\Real\realplayer\update\realsched.exe [273528 2011-10-22] (RealNetworks, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\S-1-5-21-1862615579-2186564082-2848287964-1002\...\Run: [] = [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
URLSearchHook: HKLM-x32 - free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\prxtbfre0.dll No File
URLSearchHook: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\prxtbfre0.dll No File
URLSearchHook: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - (No Name) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - No File
SearchScopes: HKLM - {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = http://rover.ebay.com/rover/1/724-111084-4166-0/4?satitle={searchTerms}mfe=Notebooks
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://it.search.yahoo.com/search?p={searchTerms}ei={inputEncoding}fr=chr-hp-psgtype=HPNTDF
SearchScopes: HKU\.DEFAULT - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - DefaultScope {75A43D1E-4702-41FA-A540-6FEE28637EEF} URL = http://search.yahoo.com/search?fr=chr-greentree_ieei=utf-8ilc=12type=744028p={searchTerms}
SearchScopes: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - {75A43D1E-4702-41FA-A540-6FEE28637EEF} URL = http://search.yahoo.com/search?fr=chr-greentree_ieei=utf-8ilc=12type=744028p={searchTerms}
SearchScopes: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = http://rover.ebay.com/rover/1/724-111084-4166-0/4?satitle={searchTerms}mfe=Notebooks
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll No File
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll No File
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
BHO-x32: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~2\ALLPLA~1\Iplex\IPLEXT~1.DLL No File
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll No File
BHO-x32: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\prxtbfre0.dll No File
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\prxtbfre0.dll No File
Toolbar: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-1862615579-2186564082-2848287964-1002 - No Name - {ECDEE021-0D17-467F-A1FF-C7A115230949} - No File
CHR HKLM-x32\...\Chrome\Extension: [naipdapbimiiikbbgjcpbgmfhnlbagpj] - C:\Users\Basia\AppData\Local\Temp\naipdapbimiiikbbgjcpbgmfhnlbagpj.crx [Not Found]
U3 acflleah; C:\Windows\System32\Drivers\acflleah.sys [0] (Advanced Micro Devices) ==== ATTENTION (zero size file/folder)
2015-01-22 17:36 - 2015-01-22 17:36 - 00002966 _____ () C:\Windows\System32\Tasks\{3C1ECCBD-666C-40ED-A2B1-F4687503E59F}
2015-01-22 17:09 - 2015-01-22 17:09 - 00002966 _____ () C:\Windows\System32\Tasks\{D4B10D0D-D43F-4B11-BEAF-27D64330EFE8}
2015-01-22 14:58 - 2015-01-22 14:58 - 00003074 _____ () C:\Windows\System32\Tasks\{68A26F94-3C83-4763-A897-5F7E50C2E16C}
EmptyTemp:
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Wszystko super,
usunąłem nawet folder FRST z partycji C
ale…
odinstalowałem również przeglądarkę Firefox, po ponownej instalacji znów wskoczyły toolbary i paski u góry przeglądarki,
firefox instalowany oczywiście ze strony bez żadnych dodatków!
stworzyłem nowy log frst
FRST
Addition
Pokaż cały log Addition.txt