Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

sprawdzenie logów PriceFountain

uekarola 21 Gru 2015 23:47 462 1
  • #1 21 Gru 2015 23:47
    uekarola
    Poziom 1  

    Witam, mam problem z PriceFountain. Do punktu, w którym mam uruchomić FRST i zrobić logi udało mi się dotrzeć samej, ale co wkleić do fixlist.txt?

    Pomożecie blondynce? ;)

    0 1
  • #2 22 Gru 2015 08:42
    Domino_2
    Pomocny dla użytkowników

    Odinstaluj McAfee Security Scan Plus.

    Cytat:

    Task: {82A49B40-499B-4B33-A199-A6CEC1097884} - System32\Tasks\{31B15B08-7DF5-4B7F-A9D5-C28D2B6B1B73} => Chrome.exe hxxp://ui.skype.com/ui/0/5.8.0.158/en/abandoninstall?page=tsMain
    Task: {B34DF1D5-AA49-44D3-99D5-04B7049686AA} - System32\Tasks\FarmhandsManyfoldV2 => Rundll32.exe WofulTortures.dll,main 7 1 <==== UWAGA
    HKU\S-1-5-21-2940293867-578583823-1431221202-1003\...\MountPoints2: {0cc6c184-1488-11e2-a4a1-00245409cb3a} - F:\DPFMate.exe
    HKU\S-1-5-21-2940293867-578583823-1431221202-1003\...\MountPoints2: {70d1c648-fc84-11de-98db-00245409cb3a} - F:\Setup.exe
    HKU\S-1-5-21-2940293867-578583823-1431221202-1003\...\MountPoints2: {aeccb2a8-e0d1-11e3-b5d0-00245409cb3a} - F:\LGAutoRun.exe
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    SearchScopes: HKLM -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
    SearchScopes: HKLM -> Backup.Old.DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
    SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
    SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
    SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=...mp;type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> DefaultScope {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL =
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> Backup.Old.DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL =
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =




    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL =
    SearchScopes: HKU\S-1-5-21-2940293867-578583823-1431221202-1003 -> {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL =
    BHO: IEPluginBHO Class -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> Brak pliku
    FF Plugin HKU\S-1-5-21-2940293867-578583823-1431221202-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Karola\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [Brak pliku]
    FF HKLM\...\Firefox\Extensions: [{6E19037A-12E3-4295-8915-ED48BC341614}] - C:\Program Files\RelevantKnowledge => nie znaleziono
    StartMenuInternet: (HKLM) Opera - C:\Program Files\Opera\Opera.exe hxxp://www.istartsurf.com/?type=sc&ts=144...=cor&uid=ST9250315AS_5VC6FM6BXXXX5VC6FM6B
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [235696 2015-12-02] (McAfee, Inc.)
    S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
    S0 iaStor; system32\DRIVERS\iaStor.sys [X]
    S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
    S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
    S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
    S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
    2015-12-16 16:39 - 2015-12-16 16:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
    2015-12-10 21:23 - 2015-12-10 21:27 - 00000000 ____D C:\AdwCleaner
    2015-12-16 16:39 - 2015-11-12 07:22 - 00000000 ____D C:\Program Files\McAfee Security Scan
    C:\Users\Karola\SkypeSetup.exe
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe/FRST64.exe, odpal go i kliknij Fix/Napraw.

    0