Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Zerknijcie na logi chłopaki.

CMS 09 Maj 2018 18:10 300 2
  • CControls
  • #2 09 Maj 2018 22:26
    dt1
    Moderator - Komputery Serwis

    Cześć. Jeśli chodzi o infekcje - czysto, jeśli chodzi o optymalizację (czyli redukcji ilości zbędnie uruchamianych rzeczy i sprzątnięciu paru pozostałości, które niczym krytycznym nie są) - to da się coś zrobić.

    Te rzeczy bym usunął w ramach wiosennych porządków, moim zdaniem nieprzydatne, ale przejrzyj sobie listę - jeśli na przykład uznasz, że uruchamianie aplikacji "dolby" na dzień dobry jest Ci potrzebne - to wywal taką linijkę z mojej listy.

    Code:
    HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12673128 2011-08-16] (Realtek Semiconductor)
    
    HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277480 2011-08-16] (Realtek Semiconductor)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
    HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
    HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-02-18] (Intel Corporation)
    HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
    HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.)
    HKLM-x32\...\Run: [PPort11reminder] => "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
    HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
    HKU\S-1-5-21-2550078589-612756978-2805750326-1000\...\MountPoints2: {76dee121-ffe1-11e4-b313-b870f4b062bc} - H:\LGAutoRun.exe
    HKU\S-1-5-21-2550078589-612756978-2805750326-1000\...\MountPoints2: {97b1c943-b919-11e5-8f53-b870f4b062bc} - H:\LG_PC_Programs.exe
    HKU\S-1-5-21-2550078589-612756978-2805750326-1001\...\MountPoints2: {76dee121-ffe1-11e4-b313-b870f4b062bc} - I:\LGAutoRun.exe
    HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
    ShortcutTarget: Dropbox.lnk -> C:\Users\Marcin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Brak pliku)

    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1432420594&z=ba308752d272d4270381b57gfzbcdo9zfo1e7wetew&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&q={searchTerms}




    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1432420594&z=ba308752d272d4270381b57gfzbcdo9zfo1e7wetew&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&q={searchTerms}
    HKU\S-1-5-21-2550078589-612756978-2805750326-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
    SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1001 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=HGSTXHTS541010A9E680_140322JA10091037NZ5PX&ts=1432420641&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2550078589-612756978-2805750326-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
    BHO: Brak nazwy -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Brak pliku
    BHO: Brak nazwy -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Brak pliku
    BHO-x32: Brak nazwy -> {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} -> Brak pliku
    Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
    Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
    Toolbar: HKU\S-1-5-21-2550078589-612756978-2805750326-1000 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
    CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
    CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
    U0 aswVmm; Brak ImagePath

    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  -> Brak pliku
    ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku

    Task: {03977FE1-5C43-4418-BCE3-1A29730097FC} - System32\Tasks\{D40B1723-B6F8-4D98-8080-862EBFC76423} => C:\Windows\system32\pcalua.exe -a C:\Users\Marcin\Desktop\^UŻYTKI\7z442.exe -d C:\Users\Marcin\Desktop\^UŻYTKI
    Task: {10EBB5A4-5155-4897-B328-847C4E180D40} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
    Task: {1C5394CF-BB50-4D0D-A2BD-FC614312ECC7} - System32\Tasks\{A0E54CB0-2E90-4572-8FA0-AFBB9BDB2C2C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Marcin\Desktop\^UŻYTKI\AUDIO VIDEO\mpc-plugin-0.96.exe" -d "C:\Users\Marcin\Desktop\^UŻYTKI\AUDIO VIDEO"
    Task: {307D993E-3161-49A3-9297-AE082565E5D6} - System32\Tasks\AdobeAAMUpdater-1.0-Marcin-Komputer-Marcin => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
    Task: {39A96D42-09CA-4BD4-A19A-28AD486B093E} - System32\Tasks\AdobeGCInvoker-1.0-Marcin-Komputer-Marcin => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05] (Adobe Systems, Incorporated)
    Task: {97625052-D2B1-460D-B2AB-D2F5FD3BE576} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
    Task: {B63D0CC4-82CD-491B-B594-4EDFB787963F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated)
    Task: {C90E5113-1429-4F83-B7F2-E856CEE95AB0} - System32\Tasks\{6AD5EF07-BBE4-496A-A9FD-EA9DDB0EF344} => C:\Windows\system32\pcalua.exe -a C:\Users\Marcin\AppData\Roaming\do-search\UninstallManager.exe -c  -ptid=cor
    Task: {CD97BD8E-5CC2-4493-AC2E-BBA0948051A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)

    0
  • CControls
  • #3 10 Maj 2018 09:23
    CMS
    Administator HydePark

    Cześć.

    Już po wrzuceniu logów przypomniało mi się o czymś takim jak msconfig i tam powyłączałem większość z tego o czym piszesz. Dzięki za odpowiedź.

    0