Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Win 7 64bit - Problem z zawieszającą się przeglądarką.

Warlok18 27 Mar 2016 13:01 444 1
  • #1 27 Mar 2016 13:01
    Warlok18
    Poziom 16  

    Witam.

    To już będzie chyba z 10 raz.:) Zapewne przy pobieraniu jakiś plików naściągało mi "syfu" i przeglądarka zaczęła się przycinać, albo całkowicie wieszać. Użyłem Malwarebytes, OTL oraz AdwCleaner i kilka wirusów usunąłem, lecz przeglądarka dalej nie działa tak, jak trzeba. Wstawiam logi z FRST. Liczę na pomoc.

    Dziękuję i pozdrawiam.

    0 1
  • CControls
  • #2 27 Mar 2016 13:16
    krzychupar
    Poziom 40  

    Otwórz notatnik systemowy i wklej:
    Task: {1A989B7A-C1BC-4025-B27B-97D408E8EA5D} - System32\Tasks\{E3F83744-D41B-4CD1-A0B8-08598317FC48} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe" -c -runfromtemp -l0x0415
    Task: {39179A94-E6DA-477A-AE0B-C30878E1557F} - System32\Tasks\Opera scheduled Autoupdate 1410022559 => D:\Opera\launcher.exe
    Task: {A644F63F-EA77-4C26-A0EA-A07ED223F8FC} - System32\Tasks\{E08AAD6E-35E0-4167-8E4C-0EA6E04F777E} => pcalua.exe -a "C:\Program Files (x86)\Brother\Brmfl07a\Brinstck.exe" -d "C:\Program Files (x86)\Brother\Brmfl07a"
    Task: {D844EC88-DE6A-42C2-9E16-BA931094D917} - System32\Tasks\{955B5736-39DB-4410-9D10-FDBD99EB2FB4} => pcalua.exe -a C:\Users\Michał\Downloads\Programs\RivaTuner224[www.instalki.pl].exe -d C:\Users\Michał\AppData\Roaming\IDM
    Task: {DB89BE86-0A00-448D-B99E-A048A7C5DFD3} - System32\Tasks\{21A8ACDD-9291-42E9-904D-21040AB24874} => pcalua.exe -a E:\DirectX9\DXSETUP.exe -d E:\DirectX9
    Task: {E5E4C6A7-8645-45E6-8123-1E05A9576CFF} - \TweakBit\FixMyPC\Start FixMyPC automatic scanning -> Brak pliku <==== UWAGA
    Hosts:
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1000\...\MountPoints2: {6148fd40-f3e2-11e5-91b5-806e6f6e6963} - H:\setup.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1000\...\MountPoints2: {68f2fe40-ec8c-11e5-85c1-806e6f6e6963} - G:\autorun.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1000\...\MountPoints2: {9209de6b-c829-11e4-a189-50e54953517c} - G:\7sinsLauncher.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1000\...\MountPoints2: {c6bf9abe-f013-11e4-9c85-50e54953517c} - G:\Startme.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: E - E:\autorun.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {68f2fe40-ec8c-11e5-85c1-806e6f6e6963} - G:\autorun.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {a96c7b65-6fff-11e4-9f81-50e54953517c} - G:\AutoRun.exe
    HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\MountPoints2: {a96c7b7e-6fff-11e4-9f81-50e54953517c} - G:\AutoRun.exe
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku
    ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => Brak pliku
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
    URLSearchHook: HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 - (Brak nazwy) - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - Brak pliku




    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-1840533509-4009478071-1247347087-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {4C1871E5-2119-40bf-A3A8-AE2C30CA418E} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBDSV
    SearchScopes: HKU\S-1-5-21-1840533509-4009478071-1247347087-1001-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0 -> {5AF70E54-163E-47e7-8227-7824A30B3D75} URL = hxxp://www.google.com/cse?cx=partner-pub-3794...tner-pub-3794288947762788%3A7941509802&q={searchTerms}
    BHO-x32: Brak nazwy -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> Brak pliku
    FF DefaultSearchEngine: hohosearch
    FF DefaultSearchEngine.US: data:text/plain,browser.search.defaultenginename.US=hohosearch
    FF Keyword.URL: hxxp://www.hohosearch.com/chrome.php?uid=2E01....&v=20160323&mode=ffexttoolbar&q=
    FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
    CHR dev: Chrome dev build wykryto! <======= UWAGA
    CHR HomePage: Default -> hxxp://www.yoursearching.com/?type=hp&ts=...id=wdcxwd5000aakx-001ca0_wd-wcayux64230642306
    CHR StartupUrls: Default -> "hxxp://www.yoursearching.com/?type=hp&ts=1459066852&z=6657fc54c41c772894ed716gdz8w8t4efq7q9bcwdo&from=itr&uid=wdcxwd5000aakx-001ca0_wd-wcayux64230642306"
    CHR DefaultSearchURL: Default -> hxxp://yoursearching.com/web/?type=ds&ts=...wd5000aakx-001ca0_wd-wcayux64230642306&q={searchTerms}
    CHR DefaultSearchKeyword: Default -> yoursearching
    StartMenuInternet: (HKLM) OperaStable - D:\Opera\Launcher.exe
    S2 DS License Server; D:\Licence\win_b64\code\bin\DSLicSrv.exe -startServer [X]
    U3 ayttikst; C:\Windows\System32\Drivers\ayttikst.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    2016-03-21 18:44 - 2016-03-21 18:44 - 00000000 ____D C:\Users\Marcin\AppData\Local\Avg
    2016-03-21 00:21 - 2016-03-27 12:32 - 00000856 _____ C:\Users\Public\Desktop\AVG.lnk
    2016-03-21 00:21 - 2016-03-21 00:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
    2016-03-21 00:20 - 2016-03-21 00:24 - 00000000 ____D C:\ProgramData\Avg
    2016-03-21 00:20 - 2016-03-21 00:22 - 00000000 ____D C:\Program Files (x86)\AVG
    C:\Users\Michał\granny2.dll
    C:\Users\Michał\Metin2 Texture Changer.exe
    C:\Users\Michał\setup-x86_64.exe
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze C:\Users\Michał\Downloads\
    Uruchom FRST i kliknij w Fix/Napraw.

    0