Spowolniony laptop, zawiesza się kursor


(Armon) #1

Po tym, gdy wrócę do laptopa po 1h, komputer działa strasznie wolno, tak wolno, że nawet pisanie na klawiaturze literki są opóźnione. Muszę zrestartować laptop. Tak jakby cały czas był włączony jakiś proces.

Jak zrestartuje komputer to nie działa mi scrolling przez ok. 2-3 minuty. Bardzo często zawiesza mi się kursor.

Zainstalowały mi się dwie aplikacje chromium i IGtrading i bytefence antimalware, Adobe Flash Player 20 NPAPI.

Bytefence antimalware usunąłem przed chwilą. Raczej się usunął.

Shortcut:

http://www.wklej.org/id/1915112/

http://wklej.org/id/1915115/

FRST:

http://wklej.org/id/1915116/

Bardzo proszę o pomoc :frowning:

Pozdrawiam serdecznie

 


(Atis) #2

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] = [X]
HKU\S-1-5-21-1891516911-2080306858-3876748776-1002\...\Run: [ALLUpdate] = "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep"
CHR HKLM\SOFTWARE\Policies\Google: Restriction ======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iryhsimp=yhs-fullyhosted_003type=wbf_dwndlm_16_03param1=1param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyEzy0EtAyDtBtCtCtB0CtN0D0Tzu0StCyEzztDtN1L2XzutAtFtCyBtFyEtFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0F0Ezz0BzytDzztGtDzzyC0AtG0DyE0E0BtGtDyCtAzytGtAyC0B0AtB0DtB0EyB0D0AyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0FtCtDtBtA0AyBtGtC0CzytAtGyEtA0E0BtGzztC0FyBtGtC0D0CtDyB0F0CtAyD0F0FyE2QtN0A0LzuyE%26cr%3D1127650874%26a%3Dwbf_dwndlm_16_03%26os_ver%3D6.2%26os%3DWindows%2B8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iryhsimp=yhs-fullyhosted_003type=wbf_dwndlm_16_03param1=1param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyEzy0EtAyDtBtCtCtB0CtN0D0Tzu0StCyEzztDtN1L2XzutAtFtCyBtFyEtFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0F0Ezz0BzytDzztGtDzzyC0AtG0DyE0E0BtGtDyCtAzytGtAyC0B0AtB0DtB0EyB0D0AyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0FtCtDtBtA0AyBtGtC0CzytAtGyEtA0E0BtGzztC0FyBtGtC0D0CtDyB0F0CtAyD0F0FyE2QtN0A0LzuyE%26cr%3D1127650874%26a%3Dwbf_dwndlm_16_03%26os_ver%3D6.2%26os%3DWindows%2B8
HKU\S-1-5-21-1891516911-2080306858-3876748776-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iryhsimp=yhs-fullyhosted_003type=wbf_dwndlm_16_03param1=1param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyEzy0EtAyDtBtCtCtB0CtN0D0Tzu0StCyEzztDtN1L2XzutAtFtCyBtFyEtFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0F0Ezz0BzytDzztGtDzzyC0AtG0DyE0E0BtGtDyCtAzytGtAyC0B0AtB0DtB0EyB0D0AyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0FtCtDtBtA0AyBtGtC0CzytAtGyEtA0E0BtGzztC0FyBtGtC0D0CtDyB0F0CtAyD0F0FyE2QtN0A0LzuyE%26cr%3D1127650874%26a%3Dwbf_dwndlm_16_03%26os_ver%3D6.2%26os%3DWindows%2B8
HKU\S-1-5-21-1891516911-2080306858-3876748776-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://uk.yahoo.com/?fr=yset_ie_syc_oracletype=orcl_hpset
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {3474E3AD-967C-49E7-9446-55BC41C4ECE2} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8tag=hp-uk3-vsb-21link%5Fcode=qsindex=apsfield-keywords={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}ei={inputEncoding}fr=chr-hp-psgtype=HPNTDF
SearchScopes: HKU\.DEFAULT - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1891516911-2080306858-3876748776-1002 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1891516911-2080306858-3876748776-1002 - {1C07BEB3-1420-4352-B2B3-5D1CB2E97602} URL = hxxps://uk.search.yahoo.com/search?p={searchTerms}fr=yset_ie_syc_oracletype=orcl_default
BHO-x32: No Name - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - No File
Toolbar: HKU\S-1-5-21-1891516911-2080306858-3876748776-1002 - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [244664 2016-01-20] ()
S1 ElRawDisk; \??\C:\Windows\system32\drivers\rsdrvx64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
2016-01-20 16:39 - 2016-01-20 16:39 - 00002220 _____ C:\Users\voytek\Desktop\Chromium.lnk
2016-01-20 16:39 - 2016-01-20 16:39 - 00000000 ____ D C:\Users\voytek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium
2016-01-20 16:39 - 2016-01-20 16:39 - 00000000 ____ D C:\Users\voytek\AppData\Local\Chromium
2016-01-20 16:38 - 2016-01-22 19:38 - 00000282 _____ C:\Windows\Tasks\UpdateTask.job
2016-01-20 16:38 - 2016-01-20 16:38 - 00000000 ____ D C:\ProgramData\ByteFence
2016-01-20 16:37 - 2016-01-21 02:39 - 00000000 ____ D C:\Program Files\ByteFence
2016-01-20 16:37 - 2016-01-20 18:50 - 00000000 ____ D C:\Users\voytek\AppData\Local\{A5F893A4-8150-FF1C-ECC8-DAF4C8A0266C}
2016-01-20 16:37 - 2016-01-20 16:40 - 00002455 _____ C:\Users\voytek\Desktop\IGtrading.lnk
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\Users\voytek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IGtrading
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\Users\voytek\AppData\Roaming\IGtrading_124
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\Users\voytek\AppData\Local\IGtrading
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\Users\Public\Documents\Guid
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\Users\Public\Documents\Baidu
2016-01-20 16:37 - 2016-01-20 16:37 - 00000000 ____ D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
2016-01-20 16:39 - 2015-01-26 22:15 - 00000000 ____ D C:\AdwCleaner
2015-12-09 22:43 - 2015-12-09 22:43 - 0000016 _____ () C:\ProgramData\mntemp
2015-12-09 22:43 - 2015-12-09 22:43 - 0005044 _____ () C:\ProgramData\oqztiqep.adk
Task: {1F009D8A-E140-4B80-999F-90587AD10116} - System32\Tasks\IGtrading FF = Chrome.exe hxxps://ad.doubleclick.net/ddm/clk/293590447;120747737;q --new-window --window-size=1920,1080
Task: {28EF980F-9538-47A0-9B26-310C87504E59} - System32\Tasks\IGtrading FTH = Chrome.exe hxxps://ad.doubleclick.net/ddm/clk/293590447;120747737;q --new-window --window-size=1920,1080
Task: {2EC556EB-5293-40AA-8913-9E75732E35F8} - System32\Tasks\IGtrading FTU = Chrome.exe hxxps://ad.doubleclick.net/ddm/clk/293590447;120747737;q --new-window --window-size=1920,1080
Task: {75328F10-DE10-44D1-8709-9A3AFCA139F6} - System32\Tasks\UpdateTask = C:\Users\voytek\AppData\Local\{A5F89~1\UNINST~1.EXE [2016-01-20] ()
Task: {B755A41C-F571-4BE5-B280-720F86E555A7} - System32\Tasks\ByteFence Scan = C:\Program Files\ByteFence\ByteFence.exe [2015-12-31] (Byte Technologies LLC)
Task: {D36D1C24-01F3-4891-B838-DAEE245DCCA6} - System32\Tasks\IGtrading FM = Chrome.exe hxxps://ad.doubleclick.net/ddm/clk/293590447;120747737;q --new-window --window-size=1920,1080
Task: {D8DE2CEC-65F5-4DC2-93F0-8CA111EDDA90} - System32\Tasks\{7FF5F393-4F93-48FE-A97E-62AF94DA65CE} = Firefox.exe hxxp://ui.skype.com/ui/0/7.7.64.103/en/abandoninstall?page=tsProgressBar
Task: C:\Windows\Tasks\UpdateTask.job = C:\Users\voytek\AppData\Local\{A5F89~1\UNINST~1.EXE
Hosts:
EmptyTemp:

Uruchom FRST i kliknij Napraw (Fix). Pokaż raport z usuwania Fixlog.

Odinstaluj Chrome zaznaczając usunięcie danych przeglądania za pomocą Geek Uninstaller Free: KLIK


(Armon) #3

Dziękuję.

FixLog:

http://wklej.org/id/1920058/

FRST:

http://wklej.org/id/1920076/

Addition:

http://wklej.org/id/1920075/


(Atis) #4

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

HKLM-x32\...\Run: [EE Consumer ModemListener] = C:\Program Files (x86)\Web Connection\Y853\BackgroundService\ModemListener.exe start
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1891516911-2080306858-3876748776-1002 - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
S2 EE Consumer Modem Device Helper; C:\Program Files (x86)\Web Connection\Y853\BackgroundService\ServiceManager.exe -start [X]
R4 ccSet_NIS; \SystemRoot\system32\drivers\NISx64\1605050.00F\ccSetx64.sys [X]
R4 IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20150710.001\IDSVia64.sys [X]
R4 SRTSPX; \SystemRoot\system32\drivers\NISx64\1605050.00F\SRTSPX64.SYS [X]
R4 SymEFASI; \SystemRoot\system32\drivers\NISx64\1605050.00F\SYMEFASI64.SYS [X]
DeleteQuarantine:

Uruchom FRST i kliknij Napraw (Fix). Skasuj folder C:\FRST