Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Strona startowa so-v.com - logi FRST

alteruzio 18 Mar 2016 16:53 489 2
  • #2 18 Mar 2016 16:58
    Kolobos
    Spec od komputerów

    Fixlist.txt dla FRST:
    Task: {0BA9E8C2-B19B-4287-A63A-85CFBD2691D6} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {102B79D0-2F5E-42C2-A8AE-72830C053A0A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {1363C619-579B-45F2-9238-A382A2FD46ED} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {1C56A5CB-7616-495F-97A0-4997D3CA0814} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {49E1A6F9-AD97-4D78-94DE-D7D235D4C70E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {70E300DC-82AF-4AA1-9C15-1CCBC85D4194} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {7C69098D-1C51-411F-81D4-D3AA1B30E874} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {8303CCA3-0E66-4C5F-82E6-83D9EE766554} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {9B90D72C-B9B8-40F2-A9C4-188C7B30E8AE} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {C5F64442-9A50-468D-93E6-6413D0AC9808} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {DF24CB63-E7A1-4851-8621-8DC185FA17E6} - System32\Tasks\0414bUpdateInfo => C:\ProgramData\Avg_Update_0414b\0414b_AVG-Secure-Search-Update.exe [2014-04-09] ()
    Task: {EB9E95CF-C381-43DE-B25A-99FBE0A3E8D1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    ShortcutWithArgument: C:\Users\Artur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9aea4ac5-7b69-45a9-bc34-bc43cc6b1a5f
    ShortcutWithArgument: C:\Users\Artur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9aea4ac5-7b69-45a9-bc34-bc43cc6b1a5f
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9aea4ac5-7b69-45a9-bc34-bc43cc6b1a5f
    HKLM-x32\...\Run: [] => [X]
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.so-v.com/?type=ll&uid=9aea4ac5-7b69-45a9-bc34-bc43cc6b1a5f
    FF SearchPlugin: C:\Users\Artur\AppData\Roaming\Mozilla\Firefox\Profiles\zm92zjh5.default-1427895781905\searchplugins\so-v.xml [2016-03-17]
    FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2016-02-23]
    StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.so-v.com/?type=ll&uid=9aea4ac5-7b69-45a9-bc34-bc43cc6b1a5f
    S2 DeskTop_F; C:\ProgramData\desktopfind\desktop173.exe [236728 2016-03-16] (DeskTopService)
    R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [202144 2016-03-18] (Zemana Ltd.)
    R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [202144 2016-03-18] (Zemana Ltd.)
    2016-03-18 16:20 - 2016-03-18 16:24 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
    2016-03-18 14:56 - 2016-03-18 16:26 - 00000620 _____ C:\WINDOWS\ZAM.krnl.trace
    2016-03-18 14:56 - 2016-03-18 16:26 - 00000119 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
    2016-03-18 14:56 - 2016-03-18 14:56 - 00202144 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys
    2016-03-18 14:56 - 2016-03-18 14:56 - 00202144 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zam64.sys
    2016-03-18 14:56 - 2016-03-18 14:56 - 00000000 ____D C:\Users\Artur\AppData\Local\Zemana
    2016-03-17 21:47 - 2016-03-17 21:47 - 00000000 ____D C:\ProgramData\desktopfind
    2016-03-17 21:46 - 2016-03-17 21:46 - 00000266 __RSH C:\ProgramData\ntuser.pol
    EmptyTemp:

    Po wykonaniu usun katalog C:\FRST.

    0
  • #3 19 Mar 2016 14:25
    alteruzio
    Poziom 2  

    Dziękuję serdecznie.
    Wszystko działa jak dawniej.
    Pozdrawiam

    0