Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Dell n5110 - Price fountain logi FRST

Bogota200606 20 Maj 2016 20:12 474 5
  • Pomocny post
    #2 20 Maj 2016 20:30
    Acorus 20
    Spec od komputerów

    Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {24640808-0FB6-4E9C-A9E3-2B7FB3111977} - System32\Tasks\{19A26934-6026-9673-91F3-482116B28BE2} => C:\Users\Mati\AppData\Roaming\{19A26~1\sync.exe [2013-04-12] () <==== UWAGA
    Task: {33D7B765-B42E-4F07-A74D-920FD9F27BA2} - System32\Tasks\MatiMerrinessTaximeterV2 => Rundll32.exe AttestingSubpoenas.dll,main 7 1 <==== UWAGA
    Task: {ABDB388F-B376-4A27-8B26-7731F3C7025E} - \AdobeFlashPlayerUpdate 2 -> Brak pliku <==== UWAGA
    Task: {EBA0EB1C-53A0-47F3-B2DD-B442E055CC97} - \AdobeFlashPlayerUpdate -> Brak pliku <==== UWAGA
    Task: C:\windows\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}.job => C:\Users\Mati\AppData\Roaming\{19A26~1\sync.exe <==== UWAGA
    ShortcutWithArgument: C:\Users\Mati\Desktop\KogamaLauncherWWW.lnk -> C:\Users\Mati\AppData\Local\KogamaLauncherWWW\Update.exe (Paul Betts) -> --processStart KogamaLauncherWWW.exe
    ShortcutWithArgument: C:\Users\Mati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft\KogamaLauncherWWW.lnk -> C:\Users\Mati\AppData\Local\KogamaLauncherWWW\Update.exe (Paul Betts) -> --processStart KogamaLauncherWWW.exe
    ShortcutWithArgument: C:\Users\Mati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KogamaLauncherWWW.lnk -> C:\Users\Mati\AppData\Local\KogamaLauncherWWW\Update.exe (Paul Betts) -> --processStart KogamaLauncherWWW.exe
    HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2015-09-24] (Adobe Systems Incorporated)
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {1eac3e02-f102-11e0-be0c-806e6f6e6963} - D:\setup.EXE /AUTORUN
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {25f2ae08-bbaf-11e5-84b5-ac7289d000a1} - F:\LG_PC_Programs.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {b303867b-44d6-11e4-8cde-0270ce920801} - F:\DTVP_Launcher.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {b9f61f21-09e6-11e4-995e-ac7289d000a1} - F:\LGAutoRun.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {e64f377b-5efb-11e3-82ce-ac7289d000a1} - C:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\start.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {fe43c218-4425-11e5-8c2f-ac7289d000a1} - F:\LG_PC_Programs.exe
    SearchScopes: HKU\S-1-5-21-64747401-3439502142-443080823-1001 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
    SearchScopes: HKU\S-1-5-21-64747401-3439502142-443080823-1001 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
    S4 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-01] () [Brak podpisu cyfrowego] <==== UWAGA
    S2 OracleOraDB12Home1MTSRecoveryService; C:\app\sql\product\12.1.0\dbhome_5\bin\omtsreco.exe OracleOraDB12Home1MTSRecoveryService [X]
    S2 OracleOraDB12Home1TNSListener; C:\app\sql\product\12.1.0\dbhome_5\BIN\TNSLSNR [X]
    S2 OracleOraDB12Home1TNSListenerLISTENER1; C:\app\sql\product\12.1.0\dbhome_5\BIN\TNSLSNR [X]
    U3 aslsjpod; C:\Windows\System32\Drivers\aslsjpod.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    U4 secdrv; Brak ImagePath
    2016-05-19 13:38 - 2016-05-20 19:34 - 00000000 ____D C:\AdwCleaner
    2016-05-19 10:29 - 2016-05-19 10:29 - 00003136 _____ C:\windows\System32\Tasks\{A7EF7172-23F4-403D-AEFC-BFBF2497C34C}
    2016-05-19 10:19 - 2016-05-19 10:19 - 00003076 _____ C:\windows\System32\Tasks\{333E3EB2-170A-4F27-9AB5-3FC2DBCBE0AD}
    2016-05-19 10:16 - 2016-05-20 19:16 - 00000262 _____ C:\windows\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}.job
    2016-05-19 10:16 - 2016-05-19 11:16 - 00000000 ____D C:\Users\Mati\AppData\Roaming\{19A26934-6026-9673-91F3-482116B28BE2}
    2016-05-19 10:16 - 2016-05-19 10:23 - 00000000 ____D C:\Users\Mati\AppData\Local\MerrinessTaximeter
    2016-05-19 10:16 - 2016-05-19 10:17 - 00003210 _____ C:\windows\System32\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}
    C:\Windows\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}.job
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.

    0
  • #3 20 Maj 2016 20:35
    Kolobos
    Spec od komputerów

    Odinstaluj:
    Spybot - Search & Destroy
    Update for PriceFountain

    Wykonaj Fixlist.txt dla FRST:
    Task: {09EB6EAF-9A96-4B60-976D-3F5198F9A60C} - System32\Tasks\{A7EF7172-23F4-403D-AEFC-BFBF2497C34C} => pcalua.exe -a C:\windows\system32\AxSWindCx64.cpl -c Alcohol iSCSI Sharing Center
    Task: {24640808-0FB6-4E9C-A9E3-2B7FB3111977} - System32\Tasks\{19A26934-6026-9673-91F3-482116B28BE2} => C:\Users\Mati\AppData\Roaming\{19A26~1\sync.exe [2013-04-12] () <==== UWAGA
    Task: {33D7B765-B42E-4F07-A74D-920FD9F27BA2} - System32\Tasks\MatiMerrinessTaximeterV2 => Rundll32.exe AttestingSubpoenas.dll,main 7 1 <==== UWAGA
    Task: {4365333C-40DA-4398-A886-14CD443EA563} - System32\Tasks\{F1829900-CA4C-41EC-A32E-E6E6678EFF2F} => pcalua.exe -a C:\Users\Mati\Downloads\WoT_0.7.1_us_setup.exe -d C:\Users\Mati\Downloads
    Task: {655BC67D-DCA3-42E4-9F3A-FA668ACBFE59} - System32\Tasks\{2B26172F-2B2B-4B09-90F5-B984983B7488} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
    Task: {ABDB388F-B376-4A27-8B26-7731F3C7025E} - \AdobeFlashPlayerUpdate 2 -> Brak pliku <==== UWAGA
    Task: {B2D4A803-1565-42DC-9FF3-C3658C308FF6} - System32\Tasks\{333E3EB2-170A-4F27-9AB5-3FC2DBCBE0AD} => pcalua.exe -a C:\windows\IsUn0407.exe -d C:\windows
    Task: {EBA0EB1C-53A0-47F3-B2DD-B442E055CC97} - \AdobeFlashPlayerUpdate -> Brak pliku <==== UWAGA
    Task: C:\windows\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}.job => C:\Users\Mati\AppData\Roaming\{19A26~1\sync.exe <==== UWAGA
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {1eac3e02-f102-11e0-be0c-806e6f6e6963} - D:\setup.EXE /AUTORUN
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {25f2ae08-bbaf-11e5-84b5-ac7289d000a1} - F:\LG_PC_Programs.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {b303867b-44d6-11e4-8cde-0270ce920801} - F:\DTVP_Launcher.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {b9f61f21-09e6-11e4-995e-ac7289d000a1} - F:\LGAutoRun.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {e64f377b-5efb-11e3-82ce-ac7289d000a1} - C:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\start.exe
    HKU\S-1-5-21-64747401-3439502142-443080823-1001\...\MountPoints2: {fe43c218-4425-11e5-8c2f-ac7289d000a1} - F:\LG_PC_Programs.exe
    Tcpip\..\Interfaces\{4FEB30C1-EE28-41EF-8A12-751ED7E88431}: [NameServer] 0.0.0.0
    S4 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-01] () [Brak podpisu cyfrowego] <==== UWAGA
    U3 aslsjpod; C:\Windows\System32\Drivers\aslsjpod.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    2016-05-19 13:38 - 2016-05-20 19:34 - 00000000 ____D C:\AdwCleaner
    2016-05-19 13:07 - 2016-05-19 13:07 - 00000000 ____D C:\Spacekace
    2016-05-19 10:29 - 2016-05-19 10:29 - 00003136 _____ C:\windows\System32\Tasks\{A7EF7172-23F4-403D-AEFC-BFBF2497C34C}
    2016-05-19 10:19 - 2016-05-19 10:19 - 00003076 _____ C:\windows\System32\Tasks\{333E3EB2-170A-4F27-9AB5-3FC2DBCBE0AD}
    2016-05-19 10:16 - 2016-05-20 19:16 - 00000262 _____ C:\windows\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}.job
    2016-05-19 10:16 - 2016-05-19 11:16 - 00000000 ____D C:\Users\Mati\AppData\Roaming\{19A26934-6026-9673-91F3-482116B28BE2}
    2016-05-19 10:16 - 2016-05-19 10:23 - 00000000 ____D C:\Users\Mati\AppData\Local\MerrinessTaximeter
    2016-05-19 10:16 - 2016-05-19 10:17 - 00003210 _____ C:\windows\System32\Tasks\{19A26934-6026-9673-91F3-482116B28BE2}
    2016-05-19 10:16 - 2016-05-19 10:16 - 00003444 _____ C:\windows\System32\Tasks\MatiMerrinessTaximeterV2
    2016-05-19 10:14 - 2016-05-19 10:14 - 02173104 _____ C:\Users\Mati\Desktop\Setup_FileViewPro_2016.exe
    2016-05-08 23:11 - 2016-05-08 23:11 - 00000000 __SHD C:\found.004
    EmptyTemp:

    W FRST wybierz Napraw.

    Usun katalog C:\FRST.

    0
  • #4 20 Maj 2016 20:46
    Bogota200606
    Poziom 2  

    Dzięki problem rozwiązany.

    0
  • Pomocny post
    #5 20 Maj 2016 20:49
    Kolobos
    Spec od komputerów

    @Bogota200606 wykonaj jeszcze to co podalem, @Acorus 20 troche pominal.

    0