Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Samsung QX310 - Prośba o sprawdzenie loga z FRST

uomo 14 Gru 2016 13:23 228 5
  • CControls
  • Pomocny post
    #2 14 Gru 2016 13:41
    Domino_2
    Pomocny dla użytkowników

    Cytat:

    Task: {090FF46C-3916-416E-9453-99685BE23F45} - System32\Tasks\0414bUpdateInfo => C:\ProgramData\Avg_Update_0414b\0414b_AVG-Secure-Search-Update.exe
    Task: {15C2C95A-8E04-47D0-AFEA-7ECBAC51B3FF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {1A643B1B-F0F3-407D-9C76-D22C03921393} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager2.exe [2010-08-05] (Samsung Electronics)
    Task: {212D6D71-D00F-4B98-AEC3-4F4B6356F7E1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {26AE8905-CEF0-4411-9FDC-46FC71909C34} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {30FAB7CD-7EE2-4F7B-9108-82FEA1483471} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {36F4FBB8-3714-4637-824B-CB3602C6E4A9} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== UWAGA
    Task: {49D18DDF-AD75-4CCF-8237-428212636689} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {5F5EBEB5-9CB2-49E2-A47C-39284C5FE899} - System32\Tasks\{3CAADBE5-F7ED-46A0-BD38-C7D2DF844773} => pcalua.exe -a "D:\VIDEO\GNI\gra\Nowy folder\HentaII 3D\Installer.exe" -d "D:\VIDEO\GNI\gra\Nowy folder\HentaII 3D"
    Task: {65202F05-258D-40CC-81FF-BF8A3438CDD0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {7BE2E430-59D7-46C1-9050-ACBB9E97E947} - System32\Tasks\{3043EF1A-8AE2-3EEE-C5D6-6E28F3FFD141} => C:\Users\Piotr\AppData\Local\{09233~1\SYNCVE~1.EXE <==== UWAGA
    Task: {8D1F808C-68FC-4BF0-874A-4DC8B85B60B6} - System32\Tasks\Yahoo! Powered nitim => Wscript.exe "C:\ProgramData\{603CA55F-EA7E-2F99-6CB8-B1DBF6FA3A15}\tida.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b36303343413535462d454137452d324639392d364342382d4231444246364641334131357d5c666f73696465" "433a5c50726f6772616d446174615c7b36303343413535462d454137452d324639392d364342 (dane wartości zawierają 78 znaków więcej).
    Task: {ADB30C52-3D58-4079-AD96-5BA9F53D0245} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {B15BA4AE-057B-414B-9D44-AEF96E086018} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {BFC7407E-FFA6-4A8C-AEF7-74F28C8F7D0F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {C4AAA3DA-D511-48C7-BA0E-390E3D32A656} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {C67DAF44-7E99-464B-82F9-217FB6BEB3E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {D5009CA1-0D19-464A-99D3-C03B94E63B94} - System32\Tasks\{7683CA93-DD9A-4329-871B-0778FA601CC6} => pcalua.exe -a "D:\VIDEO\GNI\gry\Seduce Me Setup.exe" -d D:\VIDEO\GNI\gry




    Task: {E4559C6D-9F3D-4EBC-9B83-4F6AD52AF2F2} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2010-07-30] (SAMSUNG Electronics)
    Task: C:\WINDOWS\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== UWAGA
    Task: C:\WINDOWS\Tasks\Yahoo! Powered nitim.job => Wscript.exe C:\ProgramData\{603CA55F-EA7E-2F99-6CB8-B1DBF6FA3A15}\tida.txt <==== UWAGA
    Task: C:\WINDOWS\Tasks\{3043EF1A-8AE2-3EEE-C5D6-6E28F3FFD141}.job => C:\Users\Piotr\AppData\Local\{09233~1\SYNCVE~1.EXE <==== UWAGA
    (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\19.5.0\ToolbarUpdater.exe
    HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [1707080 2016-11-22] ()
    GroupPolicy: Ograniczenia <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912...amp;GUID=F17BD1FC-3FF6-96F8-5B7B-4C24EA17526C
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912...amp;GUID=F17BD1FC-3FF6-96F8-5B7B-4C24EA17526C
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1431...D5000BPKX-75HPJT0_WD-WX31A73K9179K9179&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://do-search.com/?type=hp&ts=14312400...d=WDCXWD5000BPKX-75HPJT0_WD-WX31A73K9179K9179
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1431...D5000BPKX-75HPJT0_WD-WX31A73K9179K9179&q={searchTerms}
    HKU\S-1-5-21-1236169856-3573213423-1841828282-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
    HKU\S-1-5-21-1236169856-3573213423-1841828282-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.interia.pl/
    HKU\S-1-5-21-1236169856-3573213423-1841828282-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://do-search.com/?type=hp&ts=14312400...d=WDCXWD5000BPKX-75HPJT0_WD-WX31A73K9179K9179
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://do-search.com/web/?type=ds&ts=1431...D5000BPKX-75HPJT0_WD-WX31A73K9179K9179&q={searchTerms}
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&...=n&ver=12791&tm=371&src=ds&p={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://do-search.com/web/?type=ds&ts=1431...D5000BPKX-75HPJT0_WD-WX31A73K9179K9179&q={searchTerms}
    SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&...=n&ver=12791&tm=371&src=ds&p={searchTerms}
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://mysearch.avg.com/search?cid={DAFE21A0-931F-4317-8565-99DB7E219A66}&mid=4910a56d403547d0a57c9da4988d0ce7-da1c5d95b05572df1f632473febcaae4f32e9698&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-04-18 20:29:51&v=18.0.5.292&pid=safeguard&sg=&sap=dsp&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={DAFE21A0-931F-4317-8565-99DB7E219A66}&mid=4910a56d403547d0a57c9da4988d0ce7-da1c5d95b05572df1f632473febcaae4f32e9698&lang=en&ds=AVG&coid=avgtbavg&cmpid=1116tb&pr=fr&d=2014-04-18 20:29:51&v=19.6.0.592&pid=safeguard&sg=&sap=dsp&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={DAFE21A0-931F-4317-8565-99DB7E219A66}&mid=4910a56d403547d0a57c9da4988d0ce7-da1c5d95b05572df1f632473febcaae4f32e9698&lang=en&ds=AVG&coid=avgtbavg&cmpid=1116tb&pr=fr&d=2014-04-18 20:29:51&v=19.6.0.592&pid=safeguard&sg=&sap=dsp&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1236169856-3573213423-1841828282-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL =
    BHO-x32: Wajam -> {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} -> C:\Program Files (x86)\Wajam\IE\priam_bho.dll => Brak pliku
    Toolbar: HKU\S-1-5-21-1236169856-3573213423-1841828282-1000 -> Brak nazwy - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - Brak pliku
    Toolbar: HKU\S-1-5-21-1236169856-3573213423-1841828282-1001 -> Brak nazwy - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - Brak pliku
    FF DefaultSearchEngine: Mozilla\Firefox\Profiles\igckq7t7.default -> AVG Secure Search
    FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\igckq7t7.default -> default-search.net
    FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\igckq7t7.default -> Bing
    FF SelectedSearchEngine: Mozilla\Firefox\Profiles\igckq7t7.default -> AVG Secure Search
    FF SearchPlugin: C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\igckq7t7.default\searchplugins\avg-secure-search.xml [2016-11-22]
    FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\19.0.0.10 => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\igckq7t7.default\extensions\sweetsearch@gmail.com => nie znaleziono
    FF Extension: (Wajam) - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi [2013-10-03] [Brak podpisu cyfrowego]
    FF Extension: (Re-markit) - C:\Program Files (x86)\Re-markit\150.xpi [2014-01-20] [Brak podpisu cyfrowego]
    FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\19.5.0\\npsitesafety.dll [Brak pliku]
    CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
    CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
    CHR Extension: (Re-markit) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcpfhaghaadpjpgocojgnlhjcieeooel [2016-01-11]
    CHR HKLM\...\Chrome\Extension: [bmlggjgglgmlgbendppbpmkpakefkmkd] - <Brak Path/update_url>
    CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
    CHR HKU\S-1-5-21-1236169856-3573213423-1841828282-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmlggjgglgmlgbendppbpmkpakefkmkd] - <Brak Path/update_url>
    CHR HKU\S-1-5-21-1236169856-3573213423-1841828282-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
    CHR HKU\S-1-5-21-1236169856-3573213423-1841828282-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [bmlggjgglgmlgbendppbpmkpakefkmkd] - <Brak Path/update_url>
    CHR HKLM-x32\...\Chrome\Extension: [dcpfhaghaadpjpgocojgnlhjcieeooel] - C:\Program Files (x86)\Re-markit\150.crx [2014-01-20]
    CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
    S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe" [X]
    U3 idsvc; Brak ImagePath
    C:\Windows\Tasks\{3043EF1A-8AE2-3EEE-C5D6-6E28F3FFD141}.job
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe/FRST64.exe, uruchom go i kliknij Fix/Napraw.

    Przeskanuj komputer programem ADWCleaner i usuń wszystko co znalazł.

    Zainstaluj sobie dodatek do przeglądarki uBlock Origin.

    0
  • CControls
  • #3 14 Gru 2016 13:54
    Kolobos
    Spec od komputerów

    Windows Update dziala i pobiera aktualizacje, czy moze sie zepsul i dlatego svchost obciaza?

    0
  • #4 14 Gru 2016 16:04
    uomo
    Poziom 16  

    Dzięki za podpowiedzi zrobiłem wszystko jak napisane powyżej niestety system dalej muli , konkretnie procesor pracuje na 90 % już po włączeniu przegladarki . Jeśli chodzi windows update to nie wiem chyba faktycznie jest coś nie tak po wejściu w windows update jest tak jak na obrazku i nic się nie zmienia .

    0
  • #6 14 Gru 2016 16:58
    uomo
    Poziom 16  

    OK poszło samo bez mojej ingerencji , może czyszczenie w końcu pomogło , od razu spadło uzycie CPU teraz jest 15% . Jeszcze raz dzieki za podpoowiedzi

    0