Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Prosba o sprawdzenie logow FRST

Agrehor 16 Sie 2016 21:21 468 3
  • #2 17 Sie 2016 04:25
    krzychupar
    Poziom 40  

    Log Frst.txt jest niekompletmy. Przeskanuj jeszcze raz i zamieść nowe logi.

    0
  • #4 17 Sie 2016 18:54
    krzychupar
    Poziom 40  

    Odinstaluj jednego antywirusa i Bing Bar.

    Otwórr notatniok i wklej:
    CustomCLSID: HKU\S-1-5-21-3745860271-62799353-3742051345-1000_Classes\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}\localserver32 -> C:\Users\palka\AppData\Local\Chromium\Application\46.0.2480.0\delegate_execute.exe (The Chromium Authors) <==== ATTENTION
    Task: {29DAFB22-0D74-4E90-B76A-A96A6A530CEC} - System32\Tasks\{1BA4BB5E-3019-4457-8E28-D1EF17AD0495} => pcalua.exe -a C:\Users\palka\AppData\Roaming\qone8\UninstallManager.exe
    Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe <==== ATTENTION
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe <==== ATTENTION
    HKLM\...\Run: [] => [X]
    GroupPolicy: Restriction - Chrome <======= ATTENTION
    GroupPolicyUsers\S-1-5-21-3745860271-62799353-3742051345-1001\User: Restriction <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
    SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hs...5_37%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-3745860271-62799353-3742051345-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hs...5_37%26os%3DWindows%2B7%2BProfessional&p={searchTerms}




    BHO: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
    Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
    DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455}
    CHR HomePage: Default -> hxxp://fr.yhs4.search.yahoo.com/yhs/web?hspar...cy_ir_15_37%26os%3DWindows%2B7%2BProfessional
    CHR StartupUrls: Default -> "hxxp://fr.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_37&param1=1&param2=f%3D7%26b%3DChrome%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0EyC0B0AyC0D0FyCtBtBtAyE0FtBtN0D0Tzu0StCtAyEzztN1L2XzutAtFtCtBtFyDtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2S0DzzyEyD0FyC0BzytG0BzzyDyCtGyEzyzzzytGzzyCzz0AtGtB0E0B0F0EtCzy0AyByDzyyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EzzyDzyzy0D0CtGtC0B0BtBtGyE0D0B0FtGzztByC0DtGyC0Dzz0F0C0F0Ezy0C0AyCyD2QtN0A0LzutBtN1B2Z1V1T1S1NzuzyyEyE%26cr%3D1417062094%26a%3Dwncy_ir_15_37%26os%3DWindows%2B7%2BProfessional"
    CHR DefaultSearchURL: Default -> hxxp://fr.yhs4.search.yahoo.com/yhs/search?hs...5_37%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
    CHR DefaultSearchKeyword: Default -> search provided by yahoo.com
    CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
    CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => Pas de fichier
    CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => Pas de fichier
    CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Pas de fichier
    S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
    S2 X6XSEx_Pr143; \??\C:\Program Files\Free Ride Games\X6XSEx_Pr143.Sys [X]
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się FRST.exe
    Uruchom FRST i kliknij w Fix/Napraw

    0