VIRY.CZ

Zdravím, už několik dní mě trápí zpomalený PC, několik minut trvá načtení googlu(neodpovídá), načtení složky, apod.. Vím, že to dělalo od té doby, kdy jsem stahoval windows update a poté jsem večer vypnul pc a následný den jsem měl zpomalenější načítání. Jinak jsem zkusil stáhnout malwarebytes a proscanovat pc a nakonec mi našel jeden program, nějaký PUG, ten jsem pak vymazal přes malwarebytes. Děkuji za pomoc.

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Zdravím, posílám log


# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-20-2021
# Duration: 00:00:18
# OS: Windows 10 Pro
# Cleaned: 19
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\ProgramData\Tencent
Deleted C:\Users\Petrk\AppData\Local\Tencent
Deleted C:\Users\Petrk\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Users\Petrk\AppData\Roaming\Tencent

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CE75B6D-1189-4169-AC6D-70A5380B6EDD}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{0BB41E4C-D0A1-4A12-95F6-5035FCFCE6E8}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{97B0C768-2EB0-431C-8EF7-4BB2E590377A}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{9A86B6C9-1C7C-4D5B-BDE6-D004CDD455DB}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{9E414A74-F570-4525-A5B1-B3F51AE2BFF0}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C7BBEBAA-F3FA-4BEC-B0A8-798EDD9B4ED8}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C7C8C92E-9291-4CD0-AB62-6312E30D8D73}
Deleted HKLM\Software\Classes\METNSD

***** [ Chromium (and derivatives) ] *****

Deleted cigiagpbkapepgklncnajbakkpkopmam

***** [ Chromium URLs ] *****

Deleted http://mystart.incredibar.com/?a=6R906EYcyS&loc=skw
Deleted http://mystart.incredibar.com/?a=6R906EYcyS&loc=skw
Deleted http://websearch.searchsun.info/?pid=72 ... g=EN&cc=CZ

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3371 octets] - [20/05/2021 14:42:21]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-20-2021
# Duration: 00:00:10
# OS: Windows 10 Pro
# Scanned: 31984
# Detected: 19


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare C:\Users\Petrk\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.Legacy C:\ProgramData\Tencent
PUP.Optional.Legacy C:\Users\Petrk\AppData\Local\Tencent
PUP.Optional.Legacy C:\Users\Petrk\AppData\Roaming\Tencent

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CE75B6D-1189-4169-AC6D-70A5380B6EDD}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{0BB41E4C-D0A1-4A12-95F6-5035FCFCE6E8}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{97B0C768-2EB0-431C-8EF7-4BB2E590377A}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{9A86B6C9-1C7C-4D5B-BDE6-D004CDD455DB}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{9E414A74-F570-4525-A5B1-B3F51AE2BFF0}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C7BBEBAA-F3FA-4BEC-B0A8-798EDD9B4ED8}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C7C8C92E-9291-4CD0-AB62-6312E30D8D73}
PUP.Optional.Legacy HKLM\Software\Classes\METNSD

***** [ Chromium (and derivatives) ] *****

PUP.Optional.CrossRider cigiagpbkapepgklncnajbakkpkopmam

***** [ Chromium URLs ] *****

PUP.Optional.Legacy http://mystart.incredibar.com/?a=6R906EYcyS&loc=skw
PUP.Optional.Legacy http://mystart.incredibar.com/?a=6R906EYcyS&loc=skw
PUP.Optional.Legacy http://websearch.searchsun.info/?pid=72 ... g=EN&cc=CZ

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

OK. Dejte nové logy FRST+Addition.

Zdravím, zasílám logy. Děkuji

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
KU\S-1-5-21-438706691-1456983326-2169936386-1001\...\MountPoints2: {0fb1a98e-aa18-11ea-92c6-1c1b0d6559d7} - "E:\Viewer.exe" /dicomdir:dicomdir
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0BDE0D58-ED7A-46A5-9D14-345497AA2BEA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-30] (Google Inc -> Google LLC)
Task: {9E320397-9BEA-4A33-A5B3-DAC4CA705735} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-30] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Program Files (x86)\GUT29AA.tmp
C:\Program Files (x86)\GUT5BAD.tmp
C:\Program Files (x86)\GUT5D34.tmp
C:\Program Files (x86)\GUTC3DE.tmp
C:\Program Files (x86)\GUTF48.tmp
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [182]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [182]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [182]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT [40]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT2 [182]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [182]
AlternateDataStreams: C:\Users\Petrk\Data aplikací:NT [40]
AlternateDataStreams: C:\Users\Petrk\Data aplikací:NT2 [182]
AlternateDataStreams: C:\Users\Petrk\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\Petrk\AppData\Roaming:NT2 [182]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
FirewallRules: [UDP Query User{7186AD23-345D-41A2-9236-9B5840151E37}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Allow) C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => No File
FirewallRules: [TCP Query User{8E6B1E30-4BB5-4515-91A0-D89F63C3B19A}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Allow) C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Klikl jsem fix a v polovině načítání se mi to seklo(program neodpovídá). Tak čekám než se mi to odsekne.

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-05-2021
Ran by Petrk (20-05-2021 22:33:23) Run:1
Running from C:\Users\Petrk\Desktop
Loaded Profiles: Petrk & postgres
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
KU\S-1-5-21-438706691-1456983326-2169936386-1001\...\MountPoints2: {0fb1a98e-aa18-11ea-92c6-1c1b0d6559d7} - "E:\Viewer.exe" /dicomdir:dicomdir
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0BDE0D58-ED7A-46A5-9D14-345497AA2BEA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-30] (Google Inc -> Google LLC)
Task: {9E320397-9BEA-4A33-A5B3-DAC4CA705735} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-30] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Program Files (x86)\GUT29AA.tmp
C:\Program Files (x86)\GUT5BAD.tmp
C:\Program Files (x86)\GUT5D34.tmp
C:\Program Files (x86)\GUTC3DE.tmp
C:\Program Files (x86)\GUTF48.tmp
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [182]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [182]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [182]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT [40]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT2 [182]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [182]
AlternateDataStreams: C:\Users\Petrk\Data aplikací:NT [40]
AlternateDataStreams: C:\Users\Petrk\Data aplikací:NT2 [182]
AlternateDataStreams: C:\Users\Petrk\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\Petrk\AppData\Roaming:NT2 [182]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
FirewallRules: [UDP Query User{7186AD23-345D-41A2-9236-9B5840151E37}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Allow) C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => No File
FirewallRules: [TCP Query User{8E6B1E30-4BB5-4515-91A0-D89F63C3B19A}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Allow) C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
KU\S-1-5-21-438706691-1456983326-2169936386-1001\...\MountPoints2: {0fb1a98e-aa18-11ea-92c6-1c1b0d6559d7} - "E:\Viewer.exe" /dicomdir:dicomdir => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0BDE0D58-ED7A-46A5-9D14-345497AA2BEA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0BDE0D58-ED7A-46A5-9D14-345497AA2BEA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E320397-9BEA-4A33-A5B3-DAC4CA705735}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E320397-9BEA-4A33-A5B3-DAC4CA705735}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
C:\Program Files (x86)\GUT29AA.tmp => moved successfully
C:\Program Files (x86)\GUT5BAD.tmp => moved successfully
C:\Program Files (x86)\GUT5D34.tmp => moved successfully
C:\Program Files (x86)\GUTC3DE.tmp => moved successfully
C:\Program Files (x86)\GUTF48.tmp => moved successfully
C:\ProgramData => ":NT" ADS removed successfully
C:\ProgramData => ":NT2" ADS removed successfully
"C:\Users\All Users" => ":NT" ADS not found.
"C:\Users\All Users" => ":NT2" ADS not found.
C:\ProgramData\Application Data => ":NT" ADS removed successfully
C:\ProgramData\Application Data => ":NT2" ADS removed successfully
"C:\ProgramData\Data aplikací" => ":NT" ADS not found.
"C:\ProgramData\Data aplikací" => ":NT2" ADS not found.
C:\ProgramData\MTA San Andreas All => ":NT" ADS removed successfully
C:\ProgramData\MTA San Andreas All => ":NT2" ADS removed successfully
C:\Users\Petrk\Data aplikací => ":NT" ADS removed successfully
C:\Users\Petrk\Data aplikací => ":NT2" ADS removed successfully
"C:\Users\Petrk\AppData\Roaming" => ":NT" ADS not found.
"C:\Users\Petrk\AppData\Roaming" => ":NT2" ADS not found.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7186AD23-345D-41A2-9236-9B5840151E37}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8E6B1E30-4BB5-4515-91A0-D89F63C3B19A}C:\users\petrk\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 80358910 B
Java, Flash, Steam htmlcache => 857137838 B
Windows/system/drivers => 9490902 B
Edge => 36378 B
Chrome => 656045890 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 90943 B
NetworkService => 90943 B
Petrk => 306482822 B
postgres => 306482822 B

RecycleBin => 2485101959 B
EmptyTemp: => 4.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:45:13 ====

Smazáno. Nastala nějaká změna?

Zdravim, změna určitě nastala, je to rychlejší, avšak mi to připadá, ze to není jak to bylo, ale je to znát, jak je to plynulý. Čekal jsem cca. 2 minuty než mi načetla plocha, avšak vždycky mi načetla hnedka. Děkuji za pomoc

Když chci kliknout na spodni lištu, tak se nic nestane(nenacte) a pc se sekne. Po 3 minutách se to odseklo.

Zkuste ještě defragmentovat disk.

Dobře, zkusím udělat a dám vědět.

OK.