Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

logi z FRST prosze o naprawę

dafiozo26 14 Gru 2015 15:58 831 4
  • #1 14 Gru 2015 15:58
    dafiozo26
    Poziom 4  

    Witam. Przesyłałam logi z FRST. Laptop dell podczas startu i próbie zalogowanie się na konto użytkownika zawiesza się i wyskakuje blue screen błąd pliku fstfslh.sys czekam na pomoc.

    0 4
  • #2 14 Gru 2015 17:59
    Kolobos
    Spec od komputerów

    Odinstaluj:
    Aff Packages
    Java(TM) 6 Update 22
    Java(TM) 6 Update 27
    Smileys We Love Toolbar for IE

    W menadzerze urzadzen usun wszystkie: Karta Microsoft ISATAP

    Obok frst.exe utworz plik fixlist.txt z zawartoscia:
    Task: {07C0A864-2055-40BB-AECE-E001477E504C} - System32\Tasks\{F545370E-F8A9-4B9F-8853-C04C7F29C915} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {13C404E4-A547-40FE-AC9D-366E7B2C8AC0} - System32\Tasks\{9CA32BE2-4ADF-47F5-B363-AB90490EB920} => pcalua.exe -a "C:\Program Files (x86)\PLAY ONLINE\uninst.exe"
    Task: {20D1F0D1-5E17-4D27-8ABD-51ED0D90E7B0} - System32\Tasks\{43A01F95-504E-44D4-A374-11282C797DB4} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {2500E843-F449-45F3-859E-C609A8EBB35D} - System32\Tasks\{9EAB18D0-A1B5-4069-8DF5-E7715655C0CD} => pcalua.exe -a C:\Users\Tomek\Downloads\SpyHunter-Installer(1).exe -d C:\Users\Tomek\Downloads
    Task: {2C0BCA30-1649-4682-8117-7507384B1517} - System32\Tasks\{19142ED9-0115-4E30-9828-2A0E86D636F9} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {3D54E71C-7BBB-4B14-86A2-FD4CBE5B76CC} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA
    Task: {3E7D14B2-72AE-4788-AC0E-AA5469ABAE49} - System32\Tasks\{6DD8EA3C-5481-40EB-B0EE-E4631AC5F30A} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {46AED524-E0F2-4ECD-AB1C-CC55CFFE0D7B} - System32\Tasks\{7897BB8A-8D40-4567-9E90-34075505B974} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {4DB845AD-01B0-4043-A36E-AD4BD5643BCD} - System32\Tasks\{4A24CD4E-EA7E-4ED8-ACE1-5757D2E7B01F} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {50F571A5-2D00-4E91-B023-2BB12D947401} - System32\Tasks\{129ACB61-A963-45FE-BB9A-8E2C2094EB99} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {5386C164-86FC-4249-A3D6-AAD1A4B5C1C9} - System32\Tasks\{087E9852-1DD2-4D91-9C58-5ED2E83282BA} => Chrome.exe hxxp://ui.skype.com/ui/0/6.0.0.126/pl/abandoninstall?page=tsProgressBar
    Task: {86A5B14F-6D24-4911-9781-19CAFCE523A4} - System32\Tasks\{7898C4A8-5C6F-4987-B5E0-4E66FFE2E910} => pcalua.exe -a C:\Users\Tomek\Downloads\Lightroom_5_LS11.exe -d C:\Users\Tomek\Downloads
    Task: {90A72388-5EA6-4C8E-BFD8-84C0BFCC02F2} - System32\Tasks\{4E25041C-063F-4689-8369-AF33AA1F3C2E} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {95AF043F-7821-4379-A49A-7C1F121C0D67} - System32\Tasks\{34577E5E-E84E-466D-8459-FE0CED472C95} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {986F4F25-8227-4B39-AB08-8ECEE13F5188} - System32\Tasks\{7DD6F9C3-0F34-47F8-81F2-F8233E95433F} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {9CFD2FBC-0E25-487B-9F3D-861CAB8FACBE} - System32\Tasks\{CA1D221C-E3E3-474E-9A96-79EF00F1F3F7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.8.0.154.259/pl/aba...rce=lightinstaller&amp;page=tsProgressBar




    Task: {B8493DEF-DFE5-4CFA-A504-E27F4D23E0B8} - System32\Tasks\{9C437BAA-0093-42FE-AD52-8C0A04B733A6} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {CA14D5B5-7654-45DC-AABB-A6528877A0C6} - System32\Tasks\{9FFBA77C-AE47-4554-B146-ED4CA9811786} => pcalua.exe -a C:\Users\Tomek\Downloads\Nik.Software.Color.Efex.Pro.4.keymaker\Nik.Software.Color.Efex.Pro.4.keymaker.exe -d C:\Users\Tomek\Downloads\Nik.Software.Color.Efex.Pro.4.keymaker
    Task: {CC56457C-3EFA-485E-A3E1-967AD138B05E} - System32\Tasks\{6F8D18A6-20B3-4D0D-B810-7E8C0C2B2046} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {D42C4CD3-C37D-4A53-9695-784B350B7D0C} - System32\Tasks\{C4613F08-BC8F-480B-8A6D-4A6E0C4E04DE} => E:\PROGRAMY\lego\LEGOIndy2.exe
    Task: {FC4312B4-8AC4-4D01-BF0C-AC8EF5DB2578} - System32\Tasks\{D9AD02AC-39FA-481E-B026-6E72BC7C7B56} => E:\PROGRAMY\lego\LEGOIndy2.exe
    AlternateDataStreams: C:\Windows:nlsPreferences
    AlternateDataStreams: C:\ProgramData\Temp:55B41E6A
    AlternateDataStreams: C:\Users\Tomek\AppData\Local\BAAcw8CSgfjQfa:d3p6KIYf4XmCkMKVIyFuBpyFjO
    AlternateDataStreams: C:\Users\Tomek\AppData\Local\Temporary Internet Files:mSzB4IdouusvNZLToTz1TYliz
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\Software\Classes\exefile: <===== UWAGA
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\Run: [TweakBit\Driver Updater\Start Driver Updater >n logon] => "C:\Program Files (x86)\TweakBit\Driver Updater\DriverUpdater.exe" -UseTray
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\Run: [TweakBit\PCSpeedUp\Start PCSpeedUp >n logon] => "C:\Program Files (x86)\TweakBit\PCSpeedUp\PCSpeedUp.exe" -UseTray
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[C2].txt [1431 2015-12-14] ()
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: I - I:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: J - J:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {0493be42-81f6-11e3-acf3-88532e7009c1} - D:\Startme.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {0e2697b9-73f7-11e1-a072-88532e7009c1} - "G:\WD SmartWare.exe" autoplay=true
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {1232737b-5686-11e1-9afd-001e101fb681} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {19112cd6-3046-11e5-9610-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {29a48bde-c958-11e4-8042-88532e7009c1} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {325e59bd-552f-11e5-8ad7-88532e7009c1} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3824242e-696a-11e1-adb2-806e6f6e6963} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3b51e080-6606-11e1-a717-848f69b661f3} - J:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3c531b59-5318-11e5-81b3-88532e7009c1} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3d41b1b8-f3bf-11e4-a497-88532e7009c1} - H:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3d41b1c4-f3bf-11e4-a497-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {3e3321c7-7775-11e3-8026-88532e7009c1} - G:\LaunchU3.exe -a
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {53ae29a8-941d-11e3-a113-9d9f7d552526} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {53ae29e8-941d-11e3-a113-9d9f7d552526} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {6c4ecbd0-7f50-11e1-95b8-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {74412a70-650f-11e1-a688-001e101f36d9} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {7776fe24-2f78-11e5-a695-88532e7009c1} - D:\LGAutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {8895aada-bb6e-11e1-8652-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {8895aaf9-bb6e-11e1-8652-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {9333455c-0100-11e4-b222-fec6c564e924} - D:\LG_PC_Programs.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {9a77fe0d-6650-11e2-848e-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {9c7cdcd4-9416-11e5-862f-88532e7009c1} - D:\LaunchU3.exe -a
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {a667c87b-5884-11e1-8ac4-848f69b661f3} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {ae8fd72d-ff6a-11e1-8393-88532e7009c1} - I:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {b55474fb-8330-11e2-bbbc-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {b61ed3ae-72fc-11e4-8ed5-88532e7009c1} - D:\LG_PC_Programs.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {bd54bfee-5ba0-11e1-8472-848f69b661f3} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {c7ff43e7-650e-11e1-9e41-848f69b661f3} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {c7ff4408-650e-11e1-9e41-848f69b661f3} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {ca97de1d-51cf-11e1-b6dd-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {ca97de2f-51cf-11e1-b6dd-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {ce34085d-f897-11e4-bd65-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {d0d4fe91-dade-11e1-9fc7-88532e7009c1} - D:\Startme.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {d202feb6-c8de-11e4-9e80-806e6f6e6963} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {d202fef9-c8de-11e4-9e80-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {dcdb0675-ff0e-11e1-8fb1-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {de9f9cee-bdeb-11e1-8e2e-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {de9f9cf8-bdeb-11e1-8e2e-88532e7009c1} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {ed4923a2-51d9-11e1-9d02-88532e7009c1} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {f40a488e-5235-11e1-859b-88532e7009c1} - G:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {f5403ffe-6128-11e1-8ac3-001e101f63cf} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {f9579048-46cf-11e2-af16-848f69b661f3} - D:\AutoRun.exe
    HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\...\MountPoints2: {fe086a8e-6746-11e5-b966-88532e7009c1} - D:\LGAutoRun.exe
    ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Brak pliku
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    Tcpip\..\Interfaces\{6F2C087B-826F-4CCD-BCA9-09CC68F25A19}: [NameServer] 0.0.0.0
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    URLSearchHook: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 - (Brak nazwy) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {0388404D-6072-4CEB-B521-8F090FEAEE57} URL = hxxp://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {165EE618-D08D-4959-A36B-213A0EFB3BC8} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {2684D8CB-CDEF-4783-8492-D3A7700E8554} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {44399AE9-58C0-4ADA-B342-740838DB68B1} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {4B1A6DA3-A522-4A82-8424-D60115A630A1} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {529CD34E-FC28-4A02-92A2-F6E75BA1F7A9} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {7E450A6F-6095-4F46-92E4-3EFDEDD7BF3D} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {AB4100C8-2147-42B7-8A6A-14C8EC195DC7} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    SearchScopes: HKU\S-1-5-21-2394628775-2955422164-1279855777-1001 -> {B1DDD2AB-E12B-4F47-976D-9CD7E486AEEA} URL = hxxp://www.burstfiles.com/cse.html?q={searchTerms}&utm_source=lc&utm_medium=opensearch&utm_campaign=search&
    Toolbar: HKLM-x32 - SmileysWeLove - {CF0F43AB-9C23-4D7B-8040-201B82844854} - Brak pliku
    FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono
    FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono
    FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono
    CHR HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Tomek\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx <nie znaleziono>
    CHR HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
    CHR HKU\S-1-5-21-2394628775-2955422164-1279855777-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [jinihaffgdhejchgkogpfkdmpldnmnji] - C:\Users\Tomek\AppData\Local\Temp\tbch.crx <nie znaleziono>
    S3 AndnetBus; system32\DRIVERS\lgandnetbus64.sys [X]
    S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
    S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
    S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
    S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
    S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
    S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
    2015-12-14 18:09 - 2015-12-14 18:12 - 00000000 ____D C:\Program Files (x86)\PCFixKit
    2015-12-14 18:09 - 2015-12-14 18:09 - 00000000 ____D C:\Users\Tomek\AppData\Roaming\PCFixKit
    2015-12-14 15:37 - 2015-12-14 15:37 - 00104154 _____ C:\Extras.Txt
    2015-12-14 15:36 - 2015-12-14 15:36 - 00166332 _____ C:\OTL.Txt
    2015-12-14 15:33 - 2015-12-14 15:30 - 00602112 _____ (OldTimer Tools) C:\OTL.exe
    2015-12-14 10:24 - 2015-12-14 18:16 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:

    W FRST wybierz Napraw.


    Zainstaluj: https://support.microsoft.com/en-us/kb/2744141

    Kiedy wystapil ten problem i co bylo wtedy instalowane?

    0
  • #3 14 Gru 2015 19:11
    dafiozo26
    Poziom 4  

    odinstalowałem
    Aff Packages
    Smileys We Love Toolbar for IE

    w programie zrobiłem fix

    po ściągnieciu aplikacji: Hotfix Package 7 for Microsoft Application Virtualization 4.6 SP1: September 2012 niestety nie można je otworzyć w trybie awaryjnym. Tylko do trybu awaryjnego moge się zalogować. Nie było nic instalowane wcześniej, były przeglądane zdjęcia w komputerze. Komputer normalnie wyłączyłem na drugi dzień komputer włączam i już nie działa jak tylko pojawia się ekran logowanie po 2/3 sekundach wyświetla się bluescreen błąd pliku sftfslh.sys (windows 7 64 bit) jak pisałem wcześniej . Przeskanowałem programem nod32 online, Malwarebytes Anti-Malware oraz adwcleaner, niestety bez zmian dalej wywala bluescreen
    jakieś pomysły

    0
  • #4 14 Gru 2015 23:38
    Kolobos
    Spec od komputerów

    Problem nie ma zwiazku z tym dzialem. Na ogol ten bsod powoduja sterowniki jakiegos urzadzenia.

    0
  • #5 22 Lis 2017 14:28
    dafiozo26
    Poziom 4  

    problem rozwiązany. temat zamykam :)

    0