Wysoki ping słaba szybkość ściągania - Podane Logi

KrzysiczkOo · 6 Kwiecień 2012 18:19

Prosze o szybka pomoc

Atis · 6 Kwiecień 2012 19:42

Odinstaluj Browsers Protector, Contextual Tool Extrafind, StartSearch Toolbar

Do okna Własne opcje skanowania / skrypt wklej:

:OTL

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=1&cf=533ab0c2-7e6b-11e1-ad60-001617985fcf

IE - HKLM\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=533ab0c2-7e6b-11e1-ad60-001617985fcf&q={searchTerms}

IE - HKU\S-1-5-21-436374069-790525478-1177238915-1002\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=533ab0c2-7e6b-11e1-ad60-001617985fcf&q={searchTerms}

[2012-01-02 11:48:42 | 000,083,456 | ---- | M] (StartSearch ) -- C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll

O2 - BHO: (extrafind) - {8d5908a6-416c-6056-488d-d038f4c30ca6} - C:\WINDOWS\system32\24998423.dll ()

O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\system32\FindeXer.dll (A Part of the LessCliX Suite by Alianyn)

O3 - HKLM\..\Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - No CLSID value found.

O3 - HKU\S-1-5-21-436374069-790525478-1177238915-1002\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.

O3 - HKU\S-1-5-21-436374069-790525478-1177238915-1002\..\Toolbar\ShellBrowser: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - No CLSID value found.

O3 - HKU\S-1-5-21-436374069-790525478-1177238915-1002\..\Toolbar\ShellBrowser: (no name) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - No CLSID value found.

O4 - HKLM..\Run: [Browsers Protector] C:\Program Files\Browsers Protector\regmon32.exe ()

O4 - HKLM..\Run: [Windows Data Network] C:\WINDOWS\system32\wmpdnc32.exe ()

O4 - HKU\S-1-5-21-436374069-790525478-1177238915-1002..\Run: [MSConfig] C:\Documents and Settings\Górka\fgdvhmi.exe ()

O4 - HKU\S-1-5-21-436374069-790525478-1177238915-1002..\Run: [UpdateMyDrivers] C:\Program Files\SmartTweak Software\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss File not found

[2012-04-04 17:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Browsers Protector

[2012-04-04 17:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\StartSearch plugin

[2012-04-04 17:32:41 | 000,075,045 | ---- | M] () -- C:\WINDOWS\System32\4e61b5f0.exe

[2012-04-04 17:32:39 | 001,915,904 | ---- | M] () -- C:\WINDOWS\System32\24998423.dll

@Alternate Data Stream - 594089 bytes -> C:\WINDOWS\Temp:temp


:Files

C:\Documents and Settings\Górka\*.exe


:Commands

[emptytemp]

Kliknij Wykonaj skrypt i zatwierdź restart.

Pokaż raport z usuwania i nowy log Skanuj.

KrzysiczkOo · 7 Kwiecień 2012 08:13

Zrobiłem wszystko tak jak napisałeś i po zrestartowaniu komputera wyskoczyło mi okno z notatnika z takim czymś:

All processes killed

========== OTL ==========

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page| /E : value set successfully!

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.

Registry key HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Internet Explorer\SearchScopes{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.

File C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{8d5908a6-416c-6056-488d-d038f4c30ca6}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{8d5908a6-416c-6056-488d-d038f4c30ca6}\ not found.

File C:\WINDOWS\system32\24998423.dll not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD}\ deleted successfully.

C:\WINDOWS\system32\FindeXer.dll moved successfully.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\{D2F8F919-690B-4EA2-9FA7-A203D1E04F75} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{D2F8F919-690B-4EA2-9FA7-A203D1E04F75}\ not found.

Registry value HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.

Registry value HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{63AB4C54-3310-44c9-85D8-AA92C2263D58} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{63AB4C54-3310-44c9-85D8-AA92C2263D58}\ not found.

Registry value HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{EBE9E2B5-B526-48BC-AD46-687263EDCB0E} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{EBE9E2B5-B526-48BC-AD46-687263EDCB0E}\ not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Browsers Protector not found.

File C:\Program Files\Browsers Protector\regmon32.exe not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Windows Data Network deleted successfully.

C:\WINDOWS\system32\wmpdnc32.exe moved successfully.

Registry value HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Windows\CurrentVersion\Run\MSConfig deleted successfully.

C:\Documents and Settings\Górka\fgdvhmi.exe moved successfully.

Registry value HKEY_USERS\S-1-5-21-436374069-790525478-1177238915-1002\Software\Microsoft\Windows\CurrentVersion\Run\UpdateMyDrivers not found.

Folder C:\Program Files\Browsers Protector\ not found.

Folder C:\Program Files\StartSearch plugin\ not found.

File C:\WINDOWS\System32\4e61b5f0.exe not found.

File C:\WINDOWS\System32\24998423.dll not found.

ADS C:\WINDOWS\Temp:temp deleted successfully.

File ptytemp] not found.

OTL by OldTimer - Version 3.2.39.2 log created on 04072012_101016

Files\Folders moved on Reboot…

Registry entries deleted on Reboot…

Atis · 7 Kwiecień 2012 09:13

Przecież napisałem żebyś pokazał nowy log Skanuj.

Wszystkie logi umieszczaj na stronie wklej.to

KrzysiczkOo · 7 Kwiecień 2012 09:25

http://wklej.to/ozXeP

http://wklej.to/iQ7ot

Sory nie doczytałem.

Atis · 7 Kwiecień 2012 09:41

Przestań instalować śmieci i odinstaluj Softonic toolbar.

Do okna Własne opcje skanowania / skrypt wklej:

:OTL IE - HKU\S-1-5-21-436374069-790525478-1177238915-1002…\SearchScopes{87DD7BD1-DEC9-411E-B0C0-A8E85FFAD1BF}: “URL” = http://search.softonic.com/MON00084/tb_v1?q={searchTerms}&SearchSource=4&cc= [2012-04-06 20:41:21 | 000,000,000 | —D | M] (softonic.com) – C:\Documents and Settings\Górka\Dane aplikacji\Mozilla\Firefox\Profiles\jofe5by1.default\extensions\ffxtlbra@softonic.com O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found. O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.5.21.0\bh\Softonic.dll (Softonic.com) O3 - HKLM…\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll (Softonic.com) O3 - HKLM…\Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found. O3 - HKU\S-1-5-21-436374069-790525478-1177238915-1002…\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found. [2012-04-06 20:55:59 | 000,000,167 | ---- | M] () – C:\user.js [2012-04-04 11:57:06 | 000,333,312 | ---- | M] (YourCompany) – C:\Documents and Settings\Górka\bm.exe :Files C:\Documents and Settings\Górka*.exe :Commands [emptytemp]

Kliknij Wykonaj skrypt i zatwierdź restart.

Później uruchom OTL i kliknij Sprzątanie.

Wyłącz i ponownie włącz przywracanie systemu:

http://support.microsoft.com/kb/310405/pl

Uruchom SecurityCheck i aktualizuj programy oznaczone jako Out of date

Dysk przeskanuj Malwarebytes-AntiMalware.

Podczas instalacji kliknij Odrzuć żeby zainstalować tylko darmowy skaner.

http://www.dobreprogramy.pl/Malwarebyte … 13117.html

KrzysiczkOo · 7 Kwiecień 2012 10:36

Logi po skanowaniu dysku

http://wklej.to/81uqJ

Atis · 7 Kwiecień 2012 10:55

Nic nie wykrył, bo to wszystko ma związek z tym, że masz zmodyfikowaną wersję Windows.