Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

[Rozwiązano] Prośba o sprawdzenie logów

jgom 23 Lip 2018 12:43 87 2
  • Pomocny post
    #2 23 Lip 2018 13:01
    safbot1st
    Poziom 43  

    Wykonaj naprawę za pomocą takiego fixlist.txt :

    HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
    GroupPolicy: Ograniczenia ? <==== UWAGA
    GroupPolicy\User: Ograniczenia ? <==== UWAGA
    Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
    Tcpip\..\Interfaces\{4d0d8f44-5966-44a8-ac81-8d2e4ad21801}: [DhcpNameServer] 192.168.55.1
    Tcpip\..\Interfaces\{bd5ff542-6552-4714-a68a-6cf5b0d55ae0}: [NameServer] 8.8.8.8,8.8.4.4
    Tcpip\..\Interfaces\{bd5ff542-6552-4714-a68a-6cf5b0d55ae0}: [DhcpNameServer] 192.168.55.1
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
    HKU\S-1-5-21-619237600-129959812-1653579165-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
    HKU\S-1-5-21-619237600-129959812-1653579165-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-619237600-129959812-1653579165-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
    FF NewTabOverride: Mozilla\Firefox\Profiles\q8btz8ra.default-1461505562596 -> Disabled: @new-tab
    FF SearchPlugin: C:\Users\AGA\AppData\Roaming\Mozilla\Firefox\Profiles\q8btz8ra.default-1461505562596\searchplugins\yahoo-lavasoft-ff59.xml.bak [2018-05-19]
    FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Brak pliku]
    U4 aspnet_state; Brak ImagePath
    2018-07-20 07:33 - 2018-07-20 07:45 - 000000000 ____D C:\AdwCleaner
    ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Brak pliku
    Task: {0F26E4AC-51CD-4560-B878-F56D9E50AF1D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
    Task: {1F7A6082-9743-4303-81CF-EE2040484C46} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {4F1F320C-BDAB-4F05-9EE1-D9AF62A7D573} - System32\Tasks\{BDC14B7E-A0C3-434F-A56D-B15B4ED2C058} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\AGA\AppData\Local\Temp\HBCD\usb_format.exe -d C:\Users\AGA\AppData\Local\Temp\HBCD <==== UWAGA
    Task: {90F171B1-4BAF-4C5F-B2D5-DAAA60B9FD54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {9258AF7F-D3B8-4032-8F03-3A3DF4F544B2} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
    Task: {9CF96F81-F20D-4606-948C-660E132CDFB3} - System32\Tasks\{C62E311F-1924-42DE-9CB7-E233E5289674} => C:\Windows\system32\pcalua.exe -a "D:\Stery\Karta sieciwa\sp51604.exe" -d "D:\Stery\Karta sieciwa"
    Task: {9F9E1A2F-9AB0-406A-8572-EB298A1B17B0} - System32\Tasks\{4D6AFDAE-A989-496F-9B47-FB93D4D5A9F8} => C:\Windows\system32\pcalua.exe -a F:\sp56036.exe -d F:\
    Task: {BF895C8C-100B-444F-AD7A-8F80856A674B} - System32\Tasks\{63590357-F893-48A7-959A-F62417DFE887} => C:\Windows\system32\pcalua.exe -a C:\Users\AGA\Downloads\sp52330.exe -d C:\Users\AGA\Downloads
    Task: {C25F71A8-89BF-4947-BF38-9C843605423E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {D82C1975-2568-4A83-896E-26A7956D456A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {DE4E5BC3-BFE7-425E-84E7-BB03F5F903AE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    EmptyTemp:

    Po naprawie usuń C:\FRST i to wszystko.

    0
  • #3 23 Lip 2018 19:29
    jgom
    Poziom 2  

    Dziękuję bardzo za pomoc. :D

    0