Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Wolno pracuje komputer - skan z FRST.

Effect_X 20 Wrz 2015 11:51 348 2
  • #1 20 Wrz 2015 11:51
    Effect_X
    Poziom 14  

    Witam, walczę z zawirusowanym komputerem. Przeskanowałem:
    Malwarebytes - usunął sporo;
    Adwcleaner- tez coś usunął.
    Jest poprawa, ale uważam, że jeszcze to nie jest to, co powinno być.
    Wrzucam log ze skanowania programem FRST.
    Pliki FRST.txt i Addition.txt.

    Proszę o pomoc.

    0 2
  • #3 20 Wrz 2015 11:59
    Domino_2
    Pomocny dla użytkowników

    Odinstaluj Google Update Helper i McAfee Security Scan Plus.

    Cytat:

    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1400907132-1789995754-2254911913-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Marta\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
    Task: {00B78E35-0829-45EC-BC88-B5205B0E5A5C} - System32\Tasks\{1DED90C4-CBFB-4446-96C6-B0C90E36A1A0} => Chrome.exe http://ui.skype.com/ui/0/6.5.0.158/pl/abandoninstall?page=tsProgressBar
    Task: {28052046-A920-45CC-8C2F-E489C51881BB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1400907132-1789995754-2254911913-1000UA => C:\Users\Marta\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-31] (Facebook Inc.)
    Task: {58BBB0E3-228D-4416-B869-10B04BFE2F31} - System32\Tasks\{E9C4E9B8-97EB-4FAD-ACDA-8E7ABA139E42} => Chrome.exe http://ui.skype.com/ui/0/6.5.0.158/pl/abandoninstall?page=tsProgressBar
    Task: {84BA0F6C-6A05-43DF-AFB9-765D77F8201B} - \Yahoo! Search Updater No Task File <==== ATTENTION




    Task: {B1166FD0-5BA2-445E-9C3F-53388E94D4EE} - System32\Tasks\{C1C7ED3D-046E-4D7A-B393-995CEDCC5B5B} => Chrome.exe http://ui.skype.com/ui/0/6.5.0.158/pl/abandoninstall?page=tsProgressBar
    Task: {B3AD5DD9-7655-417F-B82B-E081BC4380F4} - System32\Tasks\{29D49093-AC59-4C2E-9F52-7CC2264D245C} => Chrome.exe http://ui.skype.com/ui/0/7.7.0.103/pl/abandoninstall?page=tsProgressBar
    Task: {D0908672-9D53-4855-8406-CBD2287A24F2} - \Yahoo! Search No Task File <==== ATTENTION
    Task: {DB774759-8100-420A-9A35-99C85C163824} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1400907132-1789995754-2254911913-1000Core => C:\Users\Marta\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-31] (Facebook Inc.)
    Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1400907132-1789995754-2254911913-1000Core.job => C:\Users\Marta\AppData\Local\Facebook\Update\FacebookUpdate.exe
    Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1400907132-1789995754-2254911913-1000UA.job => C:\Users\Marta\AppData\Local\Facebook\Update\FacebookUpdate.exe
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
    GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll [2013-09-06] (McAfee, Inc.)
    FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll [2013-09-06] (McAfee, Inc.)
    S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
    U3 a0frt8jt; C:\Windows\System32\Drivers\a0frt8jt.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
    U3 a1zea95w; C:\Windows\System32\Drivers\a1zea95w.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
    S3 massfilter; system32\drivers\massfilter.sys [X]
    S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
    S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
    S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
    2015-09-20 11:06 - 2015-09-20 11:13 - 00000000 ____D () C:\AdwCleaner
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe, odpal go i kliknij Fix/Napraw.

    0