Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Skan FRST - prośba o sprawdzenie logów

miros99 04 Lis 2015 12:25 291 1
  • #2 04 Lis 2015 13:27
    Acorus 20
    Spec od komputerów

    Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {2019B1F4-FDB5-4598-B3CB-689068C5BF11} - System32\Tasks\{CBB3E517-C968-4D0A-AA9E-98B7424357F2} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.3.0.101/pl/abandoninstall?page=tsMain
    Task: {2F3C5721-66C3-40CF-9776-A532BE66D384} - System32\Tasks\{44FC3AB9-DE3C-472F-8971-B921758E8ABD} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.2.0.103/pl/abandon...all?source=lightinstaller&page=tsMain
    Task: {3944D4AF-1471-4C15-966C-A6D68A8A4AA4} - System32\Tasks\{C052500D-6718-4C5E-BAAB-8D921388F128} => pcalua.exe -a "C:\Program Files\Babylon\Babylon-Pro\Utils\uninstbb.exe"
    Task: {52B4BF1D-FE17-41BB-8007-1AC1BABABE3A} - System32\Tasks\{51D96869-3669-42D2-B023-3CA5BACF6BCD} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.2.0.103&LastError=12029
    Task: {550E5A06-4112-462E-8BF5-DFE2493EF1C0} - System32\Tasks\{6444C602-CDA2-4868-B06C-FD163E86ED59} => pcalua.exe -a C:\Users\comp\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=cor
    Task: {7695C060-EBA0-4593-B177-F5DF63EBD9A9} - System32\Tasks\{997657FA-AC3D-498F-B5AC-29478D2B64B1} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.3.0.101&LastError=12029
    Task: {91C8B105-B0D4-40C5-B41D-AE8E7997B76E} - System32\Tasks\{24539DA8-705F-4F61-9FE5-BD884F70B3D3} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.3.0.101/pl/abandoninstall?page=tsBing
    Task: {91D42774-AA63-4D20-8A97-673D9C1057F5} - System32\Tasks\{F69CB7BF-F4A4-4A04-96E7-8CF642455F55} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.2.0.103&LastError=12029
    Task: {A5FEA019-BEF3-4952-A805-52A13ADF78DA} - System32\Tasks\{7787056A-1120-4A73-BE46-32F2D037E98D} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.2.0.103/pl/abandoninstall?page=tsBing
    Task: {CDF769C3-098F-4E0B-BBA3-EFAAD7706E85} - System32\Tasks\{32181627-0D3A-458D-8039-BE6DDB32B926} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.2.0.103&LastError=12029




    Task: {DD923207-2789-4CAA-A6AC-C9B323A8255C} - System32\Tasks\{99C97247-4D75-4890-AF2F-28371D1172ED} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.2.0.103&LastError=12029
    Task: {F7CB32C5-B9EB-4E52-916D-08263A829A0D} - System32\Tasks\{248483D0-9619-4D7E-8787-9D58B9F52601} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=li...amp;amp;ver=7.2.0.103&LastError=12029
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-2836711100-4198130755-4031581230-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL => Brak pliku
    Toolbar: HKU\S-1-5-21-2836711100-4198130755-4031581230-1000 -> Brak nazwy - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - Brak pliku
    Toolbar: HKU\S-1-5-21-2836711100-4198130755-4031581230-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku
    CHR DefaultSuggestURL: Default -> hxxp://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
    CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    CHR HKU\S-1-5-21-2836711100-4198130755-4031581230-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
    U3 catchme; \??\C:\Users\comp\AppData\Local\Temp\catchme.sys [X]
    S3 cpuz134; \??\C:\Users\comp\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
    S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
    S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
    S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
    S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
    S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
    S3 massfilter; system32\drivers\massfilter.sys [X]
    S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
    S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
    S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
    S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
    U3 mbr; \??\C:\ComboFix\mbr.sys [X]
    2015-11-04 11:17 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
    2015-11-04 11:17 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
    2015-11-04 11:17 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
    2015-11-04 11:17 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
    2015-11-04 11:17 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
    2015-11-04 11:17 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
    2015-11-04 11:17 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
    2015-11-04 11:16 - 2015-11-04 11:52 - 00000000 ____D C:\Qoobox
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.
    Przeskanuj progr. Malwarebytes Anti-Malware https://data-cdn.mbamupdates.com/web/mbam-setup-2.1.8.1057.exe

    0