Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Win 7 - Ustawienia Hosta skryptow systemu Windows

Majk1984 26 Gru 2016 22:58 465 7
  • #1 26 Gru 2016 22:58
    Majk1984
    Poziom 14  

    Witam !
    Mam problem z uruchomieniem konputera - mialem problem z wirusami i przeskanowalem system programem Mallwarebytes Anti-Malware, wykryl infekcje wiec dalem aby usunal i naprawil co trzeba lecz po ponownym uruchomieniu pulpit jest czarny i nie ma ani paska na dole ani zadnych ikonek, moge wejsc poprzez ctrl+alt+del do menadzera zadan... Czy ktos pomoze wybrnac z tej sytuacji ? Nie chce robic formata...

    0 7
  • #4 27 Gru 2016 08:08
    krzychupar
    Poziom 40  

    Otwórz notatnik systemowy i wklej:
    Task: {0042BE07-70ED-403F-B25C-9110645250E8} - System32\Tasks\{0B949FC8-83AC-4405-823B-3CE8FEE55CDB} => pcalua.exe -a C:\lj1010seriesprintsys\autorun.exe -d C:\lj1010seriesprintsys
    Task: {044606D0-D499-4466-8020-BB1FBABBA3F5} - System32\Tasks\{3EF45148-14A0-4BFE-BC4E-F0BF0BECAF3E} => pcalua.exe -a C:\Users\Majk\Desktop\vcredist_x64_2010.exe -d C:\Users\Majk\Desktop
    Task: {0E443E07-787D-4A92-8279-E84D3D36EFDD} - System32\Tasks\{FE39B01A-BE03-478C-8361-58D9D6F1F2FE} => pcalua.exe -a "G:\Programy\Alcohol_120%\Alcohol 120% 1.9.2.1705\Alkohol120%_1_9_2_1705\Alkohol 120%_Retail\Alcohol_120%_v1.9.2_Retail\setup.exe" -d "G:\Programy\Alcohol_120%\Alcohol 120% 1.9.2.1705\Alkohol120%_1_9_2_1705\Alkohol 120%_Retail\Alcohol_120%_v1.9.2_Retail"
    Task: {1D1090E1-8E4F-4073-8596-F2E6C80D8185} - System32\Tasks\{1AAE64BE-E247-4FB2-A7F7-9165711F76F5} => pcalua.exe -a C:\Users\Majk\Desktop\vcredist_x86_2008_sp1.exe -d C:\Users\Majk\Desktop
    Task: {25C1553A-821E-4F12-8E01-F1D95517D631} - System32\Tasks\6fc13ffa6dc56a6d38a5b14feaf7a8c4 => Rundll32.exe "C:\Program Files (x86)\MSXML 4.0\qxlm1j.dll",e62dc6c6547f46bda862da2d05af6862 <==== UWAGA
    Task: {41BE5373-A164-4CD5-825B-05D348982270} - System32\Tasks\{CBCCEBE8-C2F5-4157-A822-5888151DE5CA} => pcalua.exe -a "C:\Users\Majk\Desktop\Alcohol 120%\setup.exe" -d "C:\Users\Majk\Desktop\Alcohol 120%"
    Task: {67E5DBF3-8D49-451D-B7DF-BA8EBF5EF9C9} - System32\Tasks\{1B0B66F5-CA67-4429-A216-155FF0D76B22} => pcalua.exe -a C:\Medion\USB-Scanner\SETUP.EXE -d C:\Medion\USB-Scanner
    Task: {6B879687-D098-4E0D-8AEC-C33862F12018} - System32\Tasks\{F37AE341-670D-4DC8-8028-5BFA6944CC6E} => pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\Microtek\ScanWizard EZ\MSC.EXE"
    Task: {71B4BC34-F8F6-4B22-9377-E81C3DAEBF48} - System32\Tasks\{BDEF8095-D21E-4294-B53B-C82913D6C5C5} => pcalua.exe -a C:\Users\Majk\Desktop\swez_2610_eu.exe -d C:\Users\Majk\Desktop
    Task: {71F6C472-CD86-42E1-9A2B-3E6F27F0A17B} - System32\Tasks\{5238A017-8A1E-4619-9B02-FC2BFCF4AF2A} => pcalua.exe -a C:\Medion\Slim1200_uk.exe -d C:\Medion
    Task: {8FF82500-309B-442F-A20B-D771DCAB562E} - System32\Tasks\{D2EDC071-E5E9-4516-A8C1-FB793D71500F} => pcalua.exe -a C:\Users\Majk\Desktop\FROCR_EZ_9510_EU\Disk1\Setup.exe -d C:\Users\Majk\Desktop\FROCR_EZ_9510_EU\Disk1
    Task: {A9EB5D04-878C-4103-8F28-DCD458AE164F} - System32\Tasks\{25287739-260C-46D4-8DAB-008EF781D9A5} => pcalua.exe -a C:\Users\Majk\Desktop\ChanSort_2014-01-27.exe -d C:\Users\Majk\Desktop
    Task: {B67632F8-4D0E-4149-B813-9D5B9F3C55AF} - System32\Tasks\{84773130-A85C-4A27-BFF5-3EE02E0A7AF6} => pcalua.exe -a C:\Users\Majk\Desktop\Alcohol120_trial_1_9_2_1705.exe -d C:\Users\Majk\Desktop
    Task: {CB0EDAE0-CA26-4A85-AE63-3ECA15920BD6} - System32\Tasks\{318D82A4-EC1D-40B0-8E2C-EEA4CF7C4E47} => pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\Microtek\ScanWizard EZ\ScanWizardEZ.exe"




    Task: {EF1C9921-B82B-4D80-9D0B-6FA8DE1F981F} - System32\Tasks\{9FA4F3B1-AFF6-418D-BB8E-FC55E85CC415} => pcalua.exe -a "C:\Program Files (x86)\PutLockerDownloader V6.0\Uninstall.exe" -c /fromcontrolpanel=1
    AlternateDataStreams: C:\Windows\system32\drivers:ucdrv-x64.sys [80850]
    AlternateDataStreams: C:\Windows\system32\drivers:x64 [360536]
    AlternateDataStreams: C:\Windows\system32\drivers:x86 [1156450]
    AlternateDataStreams: C:\ProgramData\TEMP:430C6D84 [127]
    AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2 [131]
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\Run: [360wp-srv] => "C:\Users\Majk\AppData\Roaming\360bizhi\360wpsrv.exe" /autorun
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\MountPoints2: {6862d731-d1bd-11e5-b0f8-00c126071fc0} - K:\Startme.exe
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\MountPoints2: {77402104-a315-11e5-9873-00c126071fc0} - K:\startme.exe
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\MountPoints2: {a85d50c4-96a0-11e6-bf2f-00c126071fc0} - K:\iStudio.exe
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\MountPoints2: {af34ef48-ffe6-11e4-a5d7-00c126071fc0} - L:\setup.exe
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\...\MountPoints2: {f2b1230c-4f33-11e6-aefb-00c126071fc0} - K:\startme.exe
    HKU\S-1-5-18\...\Run: [] => 0
    ShellExecuteHooks: Brak nazwy - {48877210-AAA2-11E6-B8D5-64006A5CFC23} - C:\Users\Majk\AppData\Roaming\Zgerghwrapy\Ladycustain.dll -> Brak pliku
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-32633263-3425646671-3422072393-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Youtube AdBlock -> {95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B} -> C:\Program Files (x86)\Youtube AdBlock\IEEF\ffG0tB.dll => Brak pliku
    S2 Arupatherclaqersp; C:\Program Files (x86)\Votutionclibsh\GhaqorydajechSrv.dll [X]
    U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
    S3 cpuz134; \??\C:\Users\Majk\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
    S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
    U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
    NETSVCx32: HpSvc -> Brak ścieżki do pliku.
    NETSVCx32: GmSvc -> Brak ścieżki do pliku.
    NETSVCx32: WpSvc -> Brak ścieżki do pliku.
    2016-12-26 23:41 - 2016-12-26 23:45 - 00000000 ____D C:\AdwCleaner
    2016-12-14 23:30 - 2016-12-14 23:30 - 00000000 ____D C:\Users\Majk\AppData\Local\UCBrowser
    2016-12-14 23:26 - 2016-12-14 23:26 - 00000000 _____ C:\TOSTACK
    2016-12-14 23:25 - 2016-12-14 23:25 - 00003520 _____ C:\Windows\System32\Tasks\6fc13ffa6dc56a6d38a5b14feaf7a8c4
    2016-12-14 23:25 - 2016-12-14 23:25 - 00000000 ____D C:\ProgramData\Avira
    2016-12-14 23:25 - 2016-12-14 23:25 - 00000000 ____D C:\ProgramData\Avg
    2014-03-07 19:28 - 2014-03-07 19:28 - 0045270 _____ () C:\Users\Majk\AppData\Roaming\room_v3.dat
    2015-03-31 09:14 - 2015-03-31 09:14 - 0004387 _____ () C:\Users\Majk\AppData\Roaming\T9ZwHEwJX
    2016-07-21 13:08 - 2016-07-21 13:16 - 21479424 _____ () C:\Users\Majk\AppData\Local\pcc.exe
    2014-02-02 15:07 - 2016-02-09 19:45 - 0007606 _____ () C:\Users\Majk\AppData\Local\Resmon.ResmonCfg
    2014-01-21 21:58 - 2014-01-21 21:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
    2015-11-15 23:39 - 2015-11-15 23:39 - 0004144 _____ () C:\ProgramData\mtbjfghn.xbe
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom FRST i kliknij w Fix/Napraw.

    0
  • #5 27 Gru 2016 09:11
    Kolobos
    Spec od komputerów

    Po wykonaniu zamiesc nowe logi z FRST, ze skanowania.

    0
  • #7 27 Gru 2016 22:31
    Kolobos
    Spec od komputerów

    Fixlist.txt dla FRST:
    Task: {3AC64A59-1312-44FA-8B8C-BCDC97F11A64} - System32\Tasks\{7B643D2A-28D8-4597-A81B-A3D3A0F475D5} => C:\Users\Majk\Desktop\Nowy folder (2)\sratatata.exe
    Task: {3AE9BDB9-74B6-47B4-9907-3381DFD4F38D} - System32\Tasks\{BA3ED40A-8394-41AC-98CC-E2726E16D96F} => C:\Users\Majk\Desktop\SansaUpdaterInstall.exe
    Task: {55B6A2C4-D71A-4DF4-9725-E01A52C5F644} - System32\Tasks\{0BE0BDD7-6780-46D9-B385-65D9D6BF663F} => C:\Users\Majk\Desktop\SansaUpdaterInstall.exe
    Task: {7A0DEA78-BCC7-421B-9423-D4492DB6A27A} - System32\Tasks\{945FC35F-FB25-4C9C-81E7-98FC735A955E} => C:\Users\Majk\Desktop\sratatata.exe
    Task: {7CF5171A-1402-4940-B8F2-6AAB23234BF9} - System32\Tasks\{FE0DC484-A151-4BD4-99C4-86C153E748A0} => Firefox.exe
    Task: {BDB9D047-F00C-4B1E-84DD-6F0350D813BC} - System32\Tasks\{3F327E51-C730-43A9-8085-A74A1F7F343E} => C:\Users\Majk\Desktop\ChanSort_2014-01-27.exe
    Task: {C7D0256C-7CFB-4619-B0D8-981DE0F71232} - System32\Tasks\{AF39D065-1400-4907-B614-D9B5DF594AD3} => C:\Program Files (x86)\Microtek\ScanWizard EZ\MSC.EXE
    Task: {E48D45A0-8394-4A2B-9B9B-41E740AAF453} - System32\Tasks\{D18E6970-D5AE-433E-9F68-33E33F083F7B} => C:\Users\Majk\Desktop\Nowy folder (2)\sratatata.exe
    Task: {E7AD2273-53E7-4015-84BF-AA79D1423FE7} - System32\Tasks\{DA181BF1-3A08-4339-86C6-40DF66CDB75C} => C:\Users\Majk\Desktop\Nowy folder (2)\sratatata.exe
    Task: {F2B1BD9E-0EC3-4469-9B2E-E448E31C0D8B} - System32\Tasks\{4210128B-C804-4CD9-B9A0-3EC1513F6F77} => C:\Medion\USB-Scanner\SETUP.EXE
    Task: {F96AA6D9-80ED-4E9E-A550-118A0CC6522F} - System32\Tasks\{46875650-B1FE-4F18-9F1B-08F4DE2C7BE2} => C:\Program Files (x86)\Microtek\ScanWizard EZ\MSC.EXE
    Task: {FFAF682D-2A35-46F6-AE82-1B200A9A3B54} - System32\Tasks\{DE1762A6-7C96-4716-9FFF-75AFEC64F4A2} => C:\Program Files\BitComet\BitComet.exe [2015-03-30] (www.BitComet.com)
    2016-12-27 21:11 - 2016-12-27 21:11 - 00000000 ____D C:\AdwCleaner
    2016-12-16 21:38 - 2016-12-16 21:38 - 00000000 ____D C:\Users\Majk\AppData\Roaming\Zgerghwrapy
    2016-12-14 23:25 - 2016-03-21 01:29 - 00000000 ____D C:\Program Files (x86)\RegCleaner

    Po wykonaniu usun katalog C:\FRST i to wszystko.

    0
  • #8 27 Gru 2016 22:50
    Majk1984
    Poziom 14  

    Jeszcze? masakra, że Wam się chce takie "logi" przeglądać wygrzebywać w nich "śmieci" i robić pliki dla nas, przecież to czasochłonne i dla Was zapewne już mało satysfakcjonujące jak tyle razy to robiliście... SZACUN ! i MEGA PODZIĘKOWANIA ! ! !

    0