Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Prośba o sprawdzenie logów FRST

mikikem 28 Kwi 2016 17:35 315 2
  • Pomocny post
    #2 28 Kwi 2016 17:53
    Acorus 20
    Spec od komputerów

    Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: C:\Windows\Tasks\lwnGZVQzxVmly3uV.job => C:\Users\Miko�aj\AppData\Roaming\lwnGZVQzxVmly3uV.exe <==== UWAGA
    Hosts:
    HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1385840 2014-04-15] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1385840 2014-04-15] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1385840 2014-04-15] (Realtek Semiconductor)
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\...\MountPoints2: D - D:\setup.exe
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\...\MountPoints2: {619f13c0-5948-11e5-aa30-2c337af1c60e} - D:\INSTALL.EXE
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\...\MountPoints2: {906cae9e-831d-11e5-835f-2c337af1c60e} - E:\SETUP.EXE
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\...\MountPoints2: {bab84ca7-ffe2-11e5-9bec-f0761cd75a81} - E:\SETUP.EXE
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\...\MountPoints2: {e9380daa-e9cd-11e5-9ffb-f0761cd75a81} - D:\HTC_Sync_Manager_PC.exe
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-796863904-2528661519-1840225122-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3323885&...4FD30C2-9FE4-4709-8E92-F0010C1B404D&SSPV=
    CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3323885&octid=EB_ORIGINAL_CTID&ISID=MAF237D26-D6E3-4D76-9D29-800CC10BE3F3&SearchSource=55&CUI=&UM=5&UP=SP84FD30C2-9FE4-4709-8E92-F0010C1B404D&SSPV=","hxxp://search.babylon.com/?affID=110825&tt=5212_1&babsrc=HP_ss&mntrId=143a7809000000000000001e8c5447f8","hxxp://mystart.incredibar.com/mb203?a=6PQNhtcopS&i=26","hxxp://www.delta-search.com/?affID=119370&babsrc=HP_ss&mntrId=5aaa6942000000000000001e8c5447f8","hxxp://www.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=5aaa6942000000000000001e8c5447f8","hxxp://www.amazon.com/websearch/ref=bit_bds-p13_serp_cr_us_display?ie=UTF8&tagbase=bds-p13&tbrId=v1_abb-channel-13_eb965c4d13db435992a68e41a848560d_30_39_20130301_PL_cr_sp_","hxxp://www1.delta-search.com/?affID=121845&babsrc=HP_ss&mntrId=5AAA001E8C5447F8","hxxp://www.claro-search.com/?affID=114506&tt=4612_5&babsrc=HP_clro&mntrId=6ebcf3d8000000000000001fd09ec274","hxxp://www.google.com/","hxxp://websearch.searchsun.info/?pid=724&r=2014/03/11&hid=8098903512666849757&lg=EN&cc=PL","hxxp://www.sweet-page.com/?type=hp&ts=1394581251&from=wpc&uid=ST750LM022XHN-M750MBB_S2USJ9ECA02739","chrome://newtab/","hxxp://search.babylon.com/?affID=114656&tt=5112_2&babsrc=HP_ss&mntrId=143a7809000000000000001e8c5447f8","hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=8A12689423FA269C&affID=128403&tt=120614_kms&tsp=5278","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=0E3E451CF872F4FC9A060C2CB9090DCB&v=20160421&ts=AHEqAHEpA3IqAk.."
    S3 mfeaack01; \Device\mfeaack01.sys [X]
    2016-04-26 23:53 - 2016-01-20 15:06 - 00000000 ____D C:\AdwCleaner
    2015-04-19 14:20 - 2015-11-07 13:48 - 0000626 _____ () C:\Users\Mikołaj\AppData\Roaming\lwnGZVQzxVmly3uV
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.
    W ustawieniach Chrome usun przywracanie zestawu stron po starcie przegladarki.

    0
  • #3 29 Kwi 2016 16:18
    mikikem
    Poziom 6  

    Dziękuje ślicznie za pomoc.
    Pozdrawiam :)

    0