Powolne uruchamianie programów i stron

[kerli]

Logi:
FRST
http://wklej.to/YRIUF

Addition
http://wklej.to/7ksuY

Shortcut
http://wklej.to/gTG8r

Za pomoc z góry dziękuję

[ordynat]

1) Odinstaluj te programy:
Ask Toolbar (HKLM\...\{4F524A2D-5637-4300-76A7-A758B70C2600}) (Version: 12.38.0.384 - APN, LLC) <==== UWAGA
AVG SafeGuard by Ask (HKLM\...\{41564753-5032-2D53-4700-A758B70C2500}) (Version: 12.37.0.2864 - APN, LLC)
Bonanza Deals (remove only) (HKLM\...\Bonanza Deals) (Version: 5.0.1.0 - Bonanza Deals) <==== UWAGA
BrowserProtect (HKLM\...\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}) (Version: - Bit89 Inc) <==== UWAGA
DealPly (HKLM\...\DealPly) (Version: - DealPly Technologies Ltd) <==== UWAGA
DealPly (HKU\S-1-5-21-920042824-1600371187-316545834-1001\...\DealPly) (Version: - ) <==== UWAGA
DefaultTab (HKLM\...\DefaultTab) (Version: 1.2.8.0 - Search Results, LLC) <==== UWAGA

2) Użyj Adw-Cleaner http://www.programosy.pl/program,adwcleaner.html
najpierw kliknij na SZUKAJ (SCAN), a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ (CLEANING), to kliknij na niego.
Pokaż raport z niego "C".

3) Otwórz Notatnik i wklej w nim:

C:\Program Files\AskPartnerNetwork
DeleteKey: HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes
DeleteKey: HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes
DeleteKey: HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes
DeleteKey: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnTBMon
Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== UWAGA
Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== UWAGA
Task: {E8E8D888-5EA0-40DE-B24E-7DB46A2BD40E} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== UWAGA
Task: {DE9BFDFF-C744-4749-8A61-7738DF601C78} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe <==== UWAGA
Task: {BA049D4D-7538-4881-A1D2-5FD01BAE1F89} - System32\Tasks\DealPly => C:\Users\hp\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== UWAGA
Task: {BEA4DF96-55FC-4CCE-9D33-F0A5728DDACC} - System32\Tasks\DealPlyUpdate => C:\Program Files\DealPly\DealPlyUpdate.exe <==== UWAGA
Task: {9FDD1D46-64F2-4221-9DF4-26DE94F72921} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== UWAGA
Task: {300C9A56-369E-41C8-BFBD-30D9F702FF31} - System32\Tasks\Default2Check => c:\Users\All Users\dtdata\R003.exe <==== UWAGA
Task: {517E6E68-E1C8-476E-8901-F2073E0E3C7B} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe <==== UWAGA
Task: {6A9316B5-88BE-4CD2-B711-402F13BB480A} - System32\Tasks\BonanzaDealsUpdate => C:\Program <==== UWAGA
C:\Program Files\BonanzaDealsLive
c:\Users\All Users\dtdata
C:\Users\hp\AppData\Roaming\DealPly
CustomCLSID: HKU\S-1-5-21-920042824-1600371187-316545834-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\hp\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll => Brak pliku
C:\Windows\Minidump\*.dmp
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [198216 2016-01-05] (APN LLC.)
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx [2012-12-20]
CHR HKLM\...\Chrome\Extension: [pljcgbedjplidkdjahbaalanadmjfgop] - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7C\CRX\ToolbarCR.crx [2016-01-05]
CHR HKU\S-1-5-21-920042824-1600371187-316545834-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2013-01-15]
CHR Extension: (BrowserProtect) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph [2014-03-06]
CHR HKLM\...\Chrome\Extension: [aaaadbhonifkcheeddllhmpapnhcpgia] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaadbhonifkcheeddllhmpapnhcpgia.crx [2015-11-12]
CHR HKLM\...\Chrome\Extension: [aaaadbkccgigjdmfmdhgikcckicldhjb] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaadbkccgigjdmfmdhgikcckicldhjb.crx [2015-11-12]
CHR HKLM\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2013-01-15]
CHR Extension: (DealPly) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje [2014-03-10]
CHR Extension: (AVG SafeGuard by Ask) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaadbkccgigjdmfmdhgikcckicldhjb [2015-10-02]
CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp
FF HKU\S-1-5-21-920042824-1600371187-316545834-1001\...\Firefox\Extensions: [{58bd07eb-0ee0-4df0-8121-dc9b693373df}] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension
FF Extension: BrowserProtect - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension [2013-02-14] [Brak podpisu cyfrowego]
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 -> C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll [2013-11-17] (BonanzaDeals)
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 -> C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll [2013-11-17] (BonanzaDeals)
BHO: BonanzaDeals -> {fe063412-bea4-4d76-8ed3-183be6220d17} -> C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll [2013-08-21] (BonanzaDeals)
BHO: DealPly -> {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} -> C:\Program Files\DealPly\DealPlyIE.dll [2013-01-15] (DealPly Technologies Ltd)
HKU\S-1-5-21-920042824-1600371187-316545834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mysearchresults.com/?c=3508&t=01
HKU\S-1-5-21-920042824-1600371187-316545834-1001\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.mysearchresults.com/?c=3508&t=07
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-920042824-1600371187-316545834-1001 -> DefaultScope {1B2D23A6-8D4D-40E4-923A-D1990587094B} URL = hxxp://www.mysearchresults.com/search?&c=3508&t=07&q={searchTerms}
SearchScopes: HKU\S-1-5-21-920042824-1600371187-316545834-1001 -> bProtectorDefaultScope {1B2D23A6-8D4D-40E4-923A-D1990587094B}
SearchScopes: HKU\S-1-5-21-920042824-1600371187-316545834-1001 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119586&babsrc=SP_ss&mntrId=ceddcc1e000000000000001e3778a21b
SearchScopes: HKU\S-1-5-21-920042824-1600371187-316545834-1001 -> {1B2D23A6-8D4D-40E4-923A-D1990587094B} URL = hxxp://www.mysearchresults.com/search?&c=3508&t=07&q={searchTerms}
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1699400 2016-01-05] (APN)
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exe
Uruchom FRST i kliknij przycisk Fix (NAPRAW).
Powstanie plik fixlog.txt.
Daj ten log.
.

[kerli]

Skan:
http://wklej.to/kDeUz

[ordynat]

wróć do mojego poprzedniego postu

[kerli]

logi:
http://wklej.to/lbTvu

[ordynat]

Chyba możemy kończyć:
Otwórz Notatnik i wklej w nim:

DeleteQuarantine:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST. Uruchom FRST i kliknij w Fix (NAPRAW).
przez SHIFT+DEL usuń pozostały folder C:\FRST.

W Adw-Cleaner kliknij na przycisk Odinstaluj (UNINSTALL).
.

Autor postu otrzymał pochwałę