Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Proszę o sprawdzenie loga, yessearch

Kopytka7 08 Lut 2016 00:28 552 1
  • #2 08 Lut 2016 08:14
    safbot1st
    Poziom 43  

    Z sieci i z "penów" USB.
    Zdezynfekuj i zaszczep pendrive`y.
    Odinstaluj McAffe.

    Zapisz obok FRST.exe jako fixlist.txt przy pomocy notatnika:

    Spoiler:

    Startup: C:\Users\Mizia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\home.vbe ()
    MountPoints2: {ff29b05f-cd82-11e5-82ec-645a042908cc} - "F:\SETUP.EXE"
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    SearchScopes: HKLM - {3D62D55E-7760-496F-8665-27FF1313AAD6} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
    SearchScopes: HKLM-x32 - {3D62D55E-7760-496F-8665-27FF1313AAD6} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
    SearchScopes: HKCU - DefaultScope {3D62D55E-7760-496F-8665-27FF1313AAD6} URL =
    SearchScopes: HKCU - {3D62D55E-7760-496F-8665-27FF1313AAD6} URL =
    BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
    BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
    BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
    BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
    Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
    Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
    Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
    Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)




    Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\MSC\McSnIePl64.dll (McAfee, Inc.)
    Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
    Tcpip\Parameters: [DhcpNameServer] 62.179.1.60 62.179.1.61
    FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF Extension: No Name - C:\Users\Mizia\AppData\Roaming\Mozilla\Firefox\Profiles\8vbwhpxu.default\Extensions\staged
    FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
    FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
    FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
    FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
    FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\npmcsnffpl.dll ()
    FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\npmcsnffpl64.dll ()
    CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
    CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
    k: {FDA0516A-464D-4E87-B04E-144CA85A6904} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXDetector.exe
    Task: {F17CDCA7-61C8-40F9-BC08-D642ABF04D89} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime No Task File
    Task: {F4F2F109-E428-4BE1-8FA5-89BE045B3689} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe
    Task: {EAD9AF2D-945D-431B-8F8C-4B71DBFBEF29} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe
    Task: {ED87A626-90C5-4179-8E67-133BF7C601CC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
    Task: {E26A3927-708B-4870-BF49-295371ADC30E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe
    Task: {D97950F2-80D5-4185-893A-AFEA92D759C4} - \WinTaske No Task File
    Task: {C45E6826-FF7E-4D1A-A320-E33BECABEC54} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime No Task File
    Task: {AAF5B8D7-72FE-433E-8B6D-680A0A668861} - \WindowsUpda2ta No Task File
    Task: {AB102801-8761-4746-B6F3-A97C3166E081} - \WindowsUpda2ta No Task File
    Task: {A2D8BF5A-942B-4BA5-A363-8D583E6B8C41} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe
    Task: {93DEE49C-4562-4B70-9D9F-098D14A6B182} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => C:\Windows\system32\GWX\GWX.exe
    Task: {9BA71248-3B65-4317-96B3-CD62DBF10ACE} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\mcafee\AMContent\scanners\x86_64\datrep\21.0\mcdatrep.exe [2015-08-04] (McAfee, Inc.)
    Task: {1AB60685-54C5-47EA-B9A1-13DC890C7CD2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe
    Task: {1B0626F1-FEBB-4ABD-8F4D-B4D16DD05518} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => C:\Windows\system32\GWX\GWXDetector.exe
    Task: {120ADB0F-7D58-433B-B2ED-AEA76508F5C8} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
    Task: {0413151E-88B6-4CAD-A490-C326999918B1} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe
    Task: {0690CCAD-FA49-46BF-A30B-70459F2C3D8A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => C:\Windows\system32\GWX\GWXDetector.exe
    EmptyTemp:

    W FRST wybierz "Napraw".

    1