Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

[Windows 8.1] Prośba o sprawdzenie logów z FRST

Krystiannnn 31 Lip 2017 13:48 288 2
  • #2 31 Lip 2017 14:01
    Kolobos
    Spec od komputerów

    Odinstaluj: Amazon 1Button App

    Wykonaj Fixlist.txt dla FRST:
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {820d4c22-d9cb-11e6-8297-acb57df85b86} - "F:\HiSuiteDownLoader.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {baf456cc-35e9-11e5-8261-acb57df85b86} - "F:\LaunchU3.exe" -a
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {cd273e0f-5175-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {d6bb1269-aedf-11e6-8295-68f7283ef35b} - "H:\HiSuiteDownLoader.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f2967dfc-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f2967e7f-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f2968084-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f296823b-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f2968277-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f296848d-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    HKU\S-1-5-21-1930449502-2979839500-1212083575-1001\...\MountPoints2: {f29685d8-4b38-11e5-8269-acb57df85b86} - "F:\AutoRun.exe"
    AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => Brak pliku
    AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => Brak pliku
    AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => Brak pliku
    AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => Brak pliku
    CHR HomePage: Default -> hxxp://rts.dsrlte.com
    CHR Extension: (Count Text) - C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealidcaackeflcdbhdpdpdaajgndkgbo [2016-11-11]
    C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealidcaackeflcdbhdpdpdaajgndkgbo
    CHR Extension: (Light ToDo) - C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\impkckfbdbpbhpmcheeinadkjpgpjfko [2016-09-10]
    C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\impkckfbdbpbhpmcheeinadkjpgpjfko
    CHR Extension: (Photo Zoom) - C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnkdbkkfmoeljipfbmhemjfijnjclckf [2015-11-15]
    CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
    C:\Users\zbigniew\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnkdbkkfmoeljipfbmhemjfijnjclckf
    2017-07-31 13:06 - 2017-07-31 13:11 - 000000000 ____D C:\AdwCleaner

    Po wykonaniu usun katalog C:\FRST.

    0
  • #3 31 Lip 2017 14:21
    Krystiannnn
    Poziom 3  

    Wszystko działa jak należy, dzięki za pomoc.

    Zamykam

    0