Cześć. Z tego komputera korzysta młodsza siostra. Najwidoczniej naściągała syfu razem z grami, bo komputer strasznie muli i wyświetlają się reklamy a także samoistnie otwierają się nowe karty w przeglądarce (oczywiście te z promocjami, wygranymi iphone’ami itp). Usunąłem z grubsza niepotrzebne rzeczy przez panel sterowania -> dodaj/usuń programy, ale to na pewno za mało, a sam nie znam się na komputerach zbyt dobrze. Załączam skan z FRST:
http://www.wklej.org/id/1787901/ FRST
http://www.wklej.org/id/1787904/ ADDITION
http://www.wklej.org/id/1787905/ SHORTCUT
Uprzejmie proszę o pomoc.
Acorus
1 Wrzesień 2015 09:37
#2
Odinstaluj Super Optimizer v3.2.Otwórz notatnik systemowy i wklej:
Task: C:\WINDOWS\Tasks\EPUpdater.job = C:\DOCUME~1\Manti\DANEAP~1\BABSOL~1\Shared\BabMaint.exe ==== UWAGA
Task: C:\WINDOWS\Tasks\Optscan.job = c:\documents and settings\all users\dane aplikacji\{5448ebd0-c452-cc77-5448-8ebd0c45af43}\hqghumeaylnlf.exe
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job = C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job = C:\WINDOWS\system32\xp_eos.exe
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\...\Run: [MSMSGS] = C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\...\Run: [Super Optimizer] = C:\Program Files\Super Optimizer\SupOptLauncher.exe
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\...\Run: [Optimizer Pro] = C:\Program Files\Optimizer Pro 3.99\OptProLauncher.exe
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x64] - c:\program files\movies app\datamngr\x64\apcrtldr.dll ===== UWAGA
ShortcutTarget: Opera.lnk - C:\Program Files\Opera\launcher.exe (Brak pliku)
CHR HKLM\SOFTWARE\Policies\Google: Zasada ograniczeń ======= UWAGA
CHR HKU\S-1-5-19\SOFTWARE\Policies\Google: Zasada ograniczeń ======= UWAGA
CHR HKU\S-1-5-20\SOFTWARE\Policies\Google: Zasada ograniczeń ======= UWAGA
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=dsts=1431630872z=6c76b00eb31672767f37d10g6z2cdgbq5cae4b6w2mfrom=coruid=SAMSUNGXHM321HI_S24PJ1QZ503799q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=dsts=1431630872z=6c76b00eb31672767f37d10g6z2cdgbq5cae4b6w2mfrom=coruid=SAMSUNGXHM321HI_S24PJ1QZ503799q={searchTerms}
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=dsts=1432123774z=069b4741624446f199971c7gfz4cfo0g6o8ccm2g7wfrom=wpm05203uid=SAMSUNGXHM321HI_S24PJ1QZ503799q={searchTerms}
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1606980848-1972579041-725345543-1006\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=dsts=1432123774z=069b4741624446f199971c7gfz4cfo0g6o8ccm2g7wfrom=wpm05203uid=SAMSUNGXHM321HI_S24PJ1QZ503799q={searchTerms}
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "hxxp://www.interia.pl/#utm_source=instalki1utm_medium=installerutm_campaign=instalki1iwa_source=installer_instalki" ======= UWAGA
SearchScopes: HKLM - {9a216821-0ec5-49a3-85ac-fb72ae79a1e8} URL = hxxp://int.search.tb.ask.com/search/GGmain.jhtml?p2=^Y6^man000^YYA^ptb=97804195-308D-41B1-94DA-0440A977F15Find=2015061514n=781b660apsa=st=sbsearchfor={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search.ask.com/sr?src=iebgct=dsappid=0systemid=406v=a15946-456apn_uid=7334030294054194apn_dtid=BND406o=APN10645apn_ptnrs=AG6q={searchTerms}
SearchScopes: HKLM - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^HJ^man000^YYA^ptb=1B5B812C-0973-4E24-AC8A-E645D5F99270ind=2014042111n=780bd7ffpsa=st=sbsearchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - {9a216821-0ec5-49a3-85ac-fb72ae79a1e8} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
SearchScopes: HKU\S-1-5-21-1606980848-1972579041-725345543-1006 - {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=butm_medium=utm_campaign=install_ieutm_content=dsfrom=uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6Ats=1420373293type=defaultq={searchTerms}
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.delta-homes.com/?type=scts=1432123774z=069b4741624446f199971c7gfz4cfo0g6o8ccm2g7wfrom=wpm05203uid=SAMSUNGXHM321HI_S24PJ1QZ503799
CHR StartupUrls: Default - "hxxp://www.interia.pl/#utm_source=instalki1utm_medium=installerutm_campaign=instalki1iwa_source=installer_instalki", "hxxp://www.google.com/"
CHR Extension: (Brak nazwy) - C:\Documents and Settings\Anusia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ceakpicibkmdilicebgddflnfbpmcpgd [2015-07-29]
R2 22134214; c:\Program Files\Super Optimizer\SupOptStats.dll [1786416 2015-05-20] ()
S2 FromDocToPDF_65Service; C:\PROGRA~1\FROMDO~1\bar\1.bin\65barsvc.exe [X]
S2 Update lucky leap; "C:\Program Files\lucky leap\updateluckyleap.exe" [X]
S2 Util lucky leap; "C:\Program Files\lucky leap\bin\utilluckyleap.exe" [X]
S3 EagleXNt; \\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S3 GenericMount; system32\DRIVERS\GenericMount.sys [X]
S4 IntelIde; Brak ImagePath
R1 tbfd_1_10_0_16; system32\drivers\tbfd_1_10_0_16.sys [X]
U2 V2iMount; Brak ImagePath
U1 WS2IFSL; Brak ImagePath
2015-08-02 20:07 - 2015-09-01 10:33 - 00000000 ____ D C:\Program Files\browseainndshop
2015-08-02 20:07 - 2015-08-02 20:07 - 00000000 ____ D C:\Program Files\browseiandsHOp
2015-08-02 20:07 - 2015-08-02 20:07 - 00000000 ____ D C:\Program Files\braoiwseandshop
2015-09-01 10:38 - 2014-10-11 18:54 - 00000000 ____ D C:\Program Files\eRightSoft
2015-09-01 10:37 - 2015-07-29 23:36 - 00000000 ____ D C:\Program Files\rocckketsale
2015-09-01 10:37 - 2015-07-15 16:14 - 00000000 ____ D C:\Program Files\rrockeetdeal
2015-09-01 10:37 - 2015-06-29 18:28 - 00000000 ____ D C:\Program Files\LLowratee
2015-09-01 10:37 - 2015-06-29 12:19 - 00000000 ____ D C:\Program Files\ooffersoft
2015-09-01 10:36 - 2015-05-14 21:16 - 00000000 ____ D C:\Program Files\XTab
2015-09-01 10:36 - 2015-05-14 21:15 - 00000000 ____ D C:\Documents and Settings\Anusia\Dane aplikacji\do-search
2015-09-01 10:36 - 2015-05-14 21:14 - 00000000 ____ D C:\Documents and Settings\Anusia\Dane aplikacji\MailUpdate
2015-09-01 10:35 - 2015-07-19 12:37 - 00000000 ____ D C:\Program Files\dollaaRsavear
2015-09-01 10:53 - 2015-06-15 20:04 - 0198992 _____ (Mindspark) C:\Program Files\65res.dll
2015-09-01 10:53 - 2015-06-15 20:04 - 1040920 _____ (Mindspark) C:\Program Files\65Uninstall FromDocToPDF.dll
EmptyTemp:
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
Pojawił się nowy problem. Po zrobieniu tego, co napisał Acorus, nie mogę połączyć się z internetem. Zawsze łączyłem się przez program Intel PROset/Wireless wifi. Teraz, przy klikaniu “połącz” wyskakuje komunikat “Wystąpił problem związany z zastosowaniem profilu”. Nie pomaga restart routera, programu i komputera. Czy jest możliwe, że FRST lub AdwCleaner usunął coś potrzebnego?
Atis
5 Wrzesień 2015 23:46
#4
Przecież możesz połączyć się za pomocą kreatora w panelu sterowania.
http://www.intel.com/support/wireless/wlan/sb/CS-023093.htm