Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Proszę o sprawdzenie - logi FRST

piotrek303 27 Sty 2017 21:51 240 4
  • CControls
  • Pomocny post
    #2 27 Sty 2017 22:08
    Kolobos
    Spec od komputerów

    Fixlist.txt:
    Task: {6E6BB1DC-AC8F-491C-9D68-7B6B08238372} - \Opera scheduled Autoupdate 1443282170 -> Brak pliku <==== UWAGA
    C:\Users\ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AION\AION.lnk
    C:\Users\ewa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AION.lnk
    (© 2015 Microsoft Corporation) C:\Users\ewa\AppData\Local\Microsoft\BingSvc\BingSvc.exe
    HKU\S-1-5-21-767355604-3491425193-1934028061-1001\...\Run: [BingSvc] => C:\Users\ewa\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-13] (© 2015 Microsoft Corporation)
    HKU\S-1-5-21-767355604-3491425193-1934028061-1001\...\MountPoints2: {eda52bc3-7000-11e4-be6e-806e6f6e6963} - "E:\Starter\starter.exe"
    ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku
    ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku
    ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku
    ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku
    ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts...cor&uid=st500dm002-1bd142_z3twp2rl&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts...cor&uid=st500dm002-1bd142_z3twp2rl&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=144...p;from=cor&uid=st500dm002-1bd142_z3twp2rl
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=144...p;from=cor&uid=st500dm002-1bd142_z3twp2rl




    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts...cor&uid=st500dm002-1bd142_z3twp2rl&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts...cor&uid=st500dm002-1bd142_z3twp2rl&q={searchTerms}
    HKU\S-1-5-21-767355604-3491425193-1934028061-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=144...p;from=cor&uid=st500dm002-1bd142_z3twp2rl
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM -> {FAB53A53-8894-400B-BB62-56044F78DF63} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?i...k%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKLM-x32 -> {FAB53A53-8894-400B-BB62-56044F78DF63} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?i...k%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKU\S-1-5-21-767355604-3491425193-1934028061-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-767355604-3491425193-1934028061-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts...cor&uid=st500dm002-1bd142_z3twp2rl&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-767355604-3491425193-1934028061-1001 -> {FAB53A53-8894-400B-BB62-56044F78DF63} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?i...k%5Fcode=qs&index=aps&field-keywords={searchTerms}
    BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => Brak pliku
    BHO-x32: Brak nazwy -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> Brak pliku
    BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll => Brak pliku
    Toolbar: HKU\S-1-5-21-767355604-3491425193-1934028061-1001 -> Brak nazwy - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Brak pliku
    FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\12kr20ds.default -> Bing
    FF Keyword.URL: Mozilla\Firefox\Profiles\12kr20ds.default -> hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q=
    FF HKLM-x32\...\Firefox\Extensions: [sidebarff@gmail.com] - C:\Users\ewa\AppData\Roaming\Mozilla\Firefox\Profiles\12kr20ds.default\extensions\sidebarff@gmail.com => nie znaleziono
    CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
    CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
    2017-01-15 18:17 - 2017-01-15 18:17 - 07316480 _____ C:\Users\ewa\AppData\Roaming\agent.dat
    2017-01-15 18:17 - 2017-01-15 18:17 - 01907313 _____ C:\Users\ewa\AppData\Roaming\NamSilfind.tst
    2017-01-15 18:17 - 2017-01-15 18:17 - 00126464 _____ C:\Users\ewa\AppData\Roaming\noah.dat
    2017-01-15 18:17 - 2017-01-15 18:17 - 00070752 _____ C:\Users\ewa\AppData\Roaming\Config.xml
    2017-01-15 18:17 - 2017-01-15 18:17 - 00018432 _____ C:\Users\ewa\AppData\Roaming\Main.dat
    2017-01-15 18:17 - 2017-01-15 18:17 - 00005568 _____ C:\Users\ewa\AppData\Roaming\md.xml
    2017-01-15 18:10 - 2017-01-16 15:15 - 00011568 _____ C:\Users\ewa\AppData\Roaming\InstallationConfiguration.xml
    2017-01-15 18:10 - 2017-01-15 18:10 - 00140288 _____ C:\Users\ewa\AppData\Roaming\Installer.dat
    2017-01-15 18:10 - 2017-01-15 18:10 - 00000000 ____D C:\ProgramData\SYSTEMAX Software Development
    EmptyTemp:

    0
  • CControls
  • #3 27 Sty 2017 22:20
    piotrek303
    Poziom 13  

    Mam jeszcze jedno pytanie.
    Czy ze sterowników też to wyrzucamy:

    U0 aswVmm; Brak ImagePath
    U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]

    0
  • #4 27 Sty 2017 22:21
    Kolobos
    Spec od komputerów

    Nie musisz.

    0
  • #5 27 Sty 2017 22:26
    piotrek303
    Poziom 13  

    Serdecznie Dziękuję i Pozdrawiam

    0