Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Windows XP. Avast wykrywa wirusy.Prośba o sprawdzenie logów.

janusz733 14 Cze 2015 15:42 636 4
  • CControls
  • #2 14 Cze 2015 17:33
    Acorus 20
    Spec od komputerów

    Odinstaluj Smart File Advisor 1.1.2, SystemBooster, VuuPC Packages, WinZipper. Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan i później Cleaning.
    Pokaż nowe logi z FRST.

    0
  • CControls
  • Pomocny post
    #4 14 Cze 2015 18:28
    Acorus 20
    Spec od komputerów

    Otwórz notatnik systemowy i wklej:

    Cytat:
    CloseProcesses:
    HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16859648 2008-01-29] (Realtek Semiconductor Corp.)
    HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
    HKU\S-1-5-19\...\RunOnce: [nltide_2] => regsvr32 /s /n /i:U shell32
    HKU\S-1-5-20\...\RunOnce: [nltide_2] => regsvr32 /s /n /i:U shell32
    HKU\S-1-5-21-1993962763-606747145-1177238915-1003\...\Run: [] => [X]
    HKU\S-1-5-21-1993962763-606747145-1177238915-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
    HKU\S-1-5-18\...\RunOnce: [nltide_2] => regsvr32 /s /n /i:U shell32
    IFEO\volaro: [Debugger] tasklist.exe
    IFEO\vonteera: [Debugger] tasklist.exe
    ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => No File
    ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => No File
    ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => No File
    ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => No File
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    CHR HKU\S-1-5-21-1993962763-606747145-1177238915-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    HKU\S-1-5-21-1993962763-606747145-1177238915-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/#utm_source=instalki&utm_medium=installer&utm_campaign=instalki
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.interia.pl/#utm_source=instalki&utm_medium=installer&utm_campaign=instalki" <======= ATTENTION
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\.DEFAULT -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://www.v9.com/web?type=ds&ts=14254852...xtorxstm3160813as_9sy1fwnqxxxx9sy1fwnq&q={searchTerms}
    SearchScopes: HKU\.DEFAULT -> {C9A36987-A614-48D9-A9CC-C0BF628D301C} URL = http://www.zwankysearch.com/?prt=ZWANKYSEARCH199&keywords={searchTerms}
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =




    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {47CB7243-BB49-4495-9930-247BF73D9121} URL = http://ZiggyTV.toolbaroptions.com/?tmp=toolba...&prt=ziggytvtb01ie&v=15&Keywords={searchTerms}
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {B49CC977-2E27-4300-AE15-9094065E360E} URL = http://ZiggyTV.toolbaroptions.com/?tmp=toolba...&prt=ziggytvtb01ie&v=15&Keywords={searchTerms}
    SearchScopes: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> {szukaj.gazeta.pl} URL = http://szukaj.gazeta.pl/internet/0,0.html?slowo={searchTerms}
    Toolbar: HKU\S-1-5-21-1993962763-606747145-1177238915-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
    FF Plugin HKU\S-1-5-21-1993962763-606747145-1177238915-1003: @kaneva.com/KanevaPatch -> C:\Program Files\Kaneva\npkanevapatch.dll No File
    FF Extension: No Name - C:\Documents and Settings\A\Dane aplikacji\Mozilla\Firefox\Profiles\s4usnewu.default-1375547103640\Extensions\131 [2013-09-02]
    FF Extension: Lyrmix - C:\Documents and Settings\A\Dane aplikacji\Mozilla\Firefox\Profiles\s4usnewu.default-1375547103640\Extensions\133 [2013-09-11]
    FF Extension: Quick Start - C:\Documents and Settings\A\Dane aplikacji\Mozilla\Firefox\Profiles\s4usnewu.default-1375547103640\Extensions\lightningnewtab@gmail.com [2014-02-20]
    FF Extension: QuickStores-Toolbar - C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de [2015-06-02]
    FF Extension: No Name - C:\Program Files\VDownloader\Addons\FireFox [2014-08-26]
    U3 ayqb01jh; C:\WINDOWS\system32\Drivers\ayqb01jh.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
    S3 andnetadb; System32\Drivers\lgandnetadb.sys [X]
    S3 anvsnddrv; system32\drivers\anvsnddrv.sys [X]
    S3 CrystalSysInfo; \??\C:\Program Files\MediaCoder Audio Edition\SysInfo.sys [X]
    S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
    S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
    S3 filtertdidriver; system32\drivers\ewfiltertdidriver.sys [X]
    S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
    S4 IntelIde; No ImagePath
    U3 Winsock - Google Desktop Search Backup Before First Install; No ImagePath
    U3 Winsock - Google Desktop Search Backup Before Last Install; No ImagePath
    U1 WS2IFSL; No ImagePath
    2015-06-14 17:44 - 2015-06-14 17:48 - 00000000 ____D C:\AdwCleaner
    2013-08-21 18:16 - 2013-08-21 18:16 - 0003698 ____C () C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
    C:\Documents and Settings\A\TempWmicBatchFile.bat
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix. Odinstaluj Chrome zaznaczając usunięcie danych przeglądania.
    Najpierw możesz wyeksportować zakładki: https://support.google.com/chrome/answer/96816?hl=pl
    Później zainstaluj stabilną wersję: https://www.google.pl/chrome/browser/desktop/

    1
  • #5 21 Sty 2017 13:58
    janusz733
    Poziom 9  

    Problem rozwiązany, temat do zamknięcia.

    0