Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

HKU Dwa komputery - logi FRST

wunsz1 15 Sty 2018 00:23 177 1
  • #2 15 Sty 2018 07:37
    Kolobos
    Spec od komputerów

    Fixlist.txt dla 1:
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\Policies\Explorer: []
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {1d48c161-3778-11e7-bc85-f642fda8e0bc} - D:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {c9ada967-cbda-11e7-9a20-e88ffc1c3702} - D:\AutoRun.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {c9ada969-cbda-11e7-9a20-e88ffc1c3702} - E:\AutoRun.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {c9ada96c-cbda-11e7-9a20-e88ffc1c3702} - F:\setup_homm5.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {c9ada979-cbda-11e7-9a20-e88ffc1c3702} - G:\Setup.now.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {c9ada97a-cbda-11e7-9a20-e88ffc1c3702} - H:\NOP.exe
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\...\MountPoints2: {f7202217-8f07-11e6-b218-d53ad2ece5c3} - D:\Welcome.exe
    GroupPolicy: Ograniczenia <==== UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
    HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
    HKU\S-1-5-21-486755371-171601600-2524081658-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
    SearchScopes: HKU\.DEFAULT -> DefaultScope {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
    SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\.DEFAULT -> {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
    SearchScopes: HKU\S-1-5-21-486755371-171601600-2524081658-1000 -> DefaultScope {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
    SearchScopes: HKU\S-1-5-21-486755371-171601600-2524081658-1000 -> {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
    C:\Users\Przemek\AppData\Roaming\Mozilla\Firefox\Profiles\ry1126zq.default-1510264727317\Extensions\{0fde9597-0508-47ff-ad8a-793fa059c4e7}.xpi
    FF Extension: (Popup-Blocker) - C:\Users\Przemek\AppData\Roaming\Mozilla\Firefox\Profiles\ry1126zq.default-1510264727317\Extensions\{0fde9597-0508-47ff-ad8a-793fa059c4e7}.xpi [2017-11-18]
    2018-01-14 23:04 - 2018-01-14 23:05 - 000000000 ____D C:\AdwCleaner


    Dla 2, odinstaluj:




    Amazon 1Button App
    Intel Security True Key

    Fixlist.txt dla 2:
    Task: {084AA054-3D20-4DAB-AD35-96EC3A5368E1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {0BEA33F8-12B0-4F81-B22A-D839041F77EA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {12451C04-C6F5-45B8-B718-5C90B0F72149} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {13D7582A-7FDC-4D44-82CB-544C3F8EA0FB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {149D2A56-1B5E-47C5-AE07-11EB7D8C980E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {154F9106-A440-4D41-BA29-2C5C1E28897A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {1601388B-65C1-4D87-98C3-D70D1B80E6C6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {2385E0E9-0156-4731-94A5-49B87DD73647} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {4708680B-62B0-419E-B488-BB6FB8665E59} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\WINDOWS\TEMP\DeleteFolderTask.exe <==== UWAGA
    Task: {56019586-12CC-427B-B617-4A2ECEACA4CA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {598E78F6-4FE7-4A22-B36E-4E40D6FA040C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {7180CE1A-29EF-470B-BE09-C0772B3BAF79} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {DA511378-CC0F-4F8D-BEC5-67D1FA273B7A} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
    HKU\S-1-5-21-3981582986-80029888-2171288683-1004\...\MountPoints2: {ab7e3073-836c-11e7-82a9-e4f89c614193} - "E:\HiSuiteDownLoader.exe"
    Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
    BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
    BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
    Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
    Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
    Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - Brak pliku

    Po wykonaniu usun katalogi C:\FRST i to wszystko.

    Na przyszlosc nie zamieszczaj logow bez powodu.

    0