Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Odczytanie logów z frst. Mile widziane podpowiedzi

karolbary 04 Wrz 2018 19:19 111 3
  • #2 04 Wrz 2018 19:53
    krzychupar
    Poziom 40  

    Otwórz notatnik systemowy i wklej:

    CloseProcesses:
    Task: {0E537A3C-151B-4731-8ADC-CB772455BE85} - System32\Tasks\{2FA7288D-9B59-4176-9B58-D64D57AD3A61} => C:\Windows\system32\pcalua.exe -a "F:\Program Files (x86)\Origin Games\The Sims 4\__Installer\vc\vc2010sp1\redist\vcredist_x86.exe" -d "F:\Program Files (x86)\Origin Games\The Sims 4\__Installer\vc\vc2010sp1\redist"
    Task: {2B7186AB-FC51-4814-91CF-AC6B923FA797} - System32\Tasks\{ADB53672-8BF7-44CC-9A66-6A1418741D04} => C:\Windows\system32\pcalua.exe -a G:\cdsetup.exe -d G:\
    Task: {54EDB1F9-B683-4D6E-BF4E-975795309201} - System32\Tasks\Opera scheduled Autoupdate 1535974447 => C:\Users\olo\AppData\Local\Programs\Opera\launcher.exe [2018-08-23] (Opera Software)
    Task: {61FFA9C4-1440-44BC-A7C4-F74DCC71E1C8} - System32\Tasks\{E283BA09-7A8C-4FE7-B8A6-E06D597A912E} => C:\Windows\system32\pcalua.exe -a F:\Downloads\SetupsmokeX18.exe -d F:\Downloads
    Task: {659FEAB4-4F4F-4ACD-A69E-85C0E39AF05F} - System32\Tasks\{90AD0FAC-F252-3FD5-6CE3-65537A8F1E9C} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" worldmediarek.ru/cl/?guid=1hpamlwf8p9o1ya9sk39wl1zrk61n3if&prid=1&pid=6_1308_64261
    Task: {B2695254-F902-40CA-B5CF-5542FC468275} - System32\Tasks\{34C81268-8216-A0D7-EEEB-D8E8BDEFA21F} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" worldmediarek.ru/cl/?guid=1hpamlwf8p9o1ya9sk39wl1zrk61n3if&prid=1&pid=6_1308_64261
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {64fd0156-1d28-11e8-8671-d406378c3073} - H:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {64fd0165-1d28-11e8-8671-d406378c3073} - D:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {9304e871-2f58-11e8-b691-6c3be536ce00} - G:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {c702d8e9-ac6f-11e8-bbef-d43d7e6c22cb} - G:\AutoRun.exe
    FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
    CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - F:\Downloads\Internet Download Manager\IDMGCExt.crx <nie znaleziono>
    U4 CscService; Brak ImagePath
    S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
    S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
    S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
    S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
    S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
    S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X]
    S3 hwusb_wwanecm; system32\DRIVERS\ew_wwanecm.sys [X]
    S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
    U4 RemoteRegistry; Brak ImagePath
    U2 wscsvc; Brak ImagePath
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.

    0
  • #3 04 Wrz 2018 19:54
    Kolobos
    Spec od komputerów

    Wykonaj Fixlist.txt dla FRST:
    CloseProcesses:
    Task: {0E537A3C-151B-4731-8ADC-CB772455BE85} - System32\Tasks\{2FA7288D-9B59-4176-9B58-D64D57AD3A61} => C:\Windows\system32\pcalua.exe -a "F:\Program Files (x86)\Origin Games\The Sims 4\__Installer\vc\vc2010sp1\redist\vcredist_x86.exe" -d "F:\Program Files (x86)\Origin Games\The Sims 4\__Installer\vc\vc2010sp1\redist"
    Task: {1686C061-4D4C-4D11-87E0-C71C22EB5031} - System32\Tasks\{755FDD67-13B8-7A2B-10BF-1C6DAE029350} => C:\Windows\SysWOW64\wIgkGsU.exe [2009-07-14] (Microsoft Corporation)
    Task: {2B7186AB-FC51-4814-91CF-AC6B923FA797} - System32\Tasks\{ADB53672-8BF7-44CC-9A66-6A1418741D04} => C:\Windows\system32\pcalua.exe -a G:\cdsetup.exe -d G:\
    Task: {54EDB1F9-B683-4D6E-BF4E-975795309201} - System32\Tasks\Opera scheduled Autoupdate 1535974447 => C:\Users\olo\AppData\Local\Programs\Opera\launcher.exe [2018-08-23] (Opera Software)
    Task: {61FFA9C4-1440-44BC-A7C4-F74DCC71E1C8} - System32\Tasks\{E283BA09-7A8C-4FE7-B8A6-E06D597A912E} => C:\Windows\system32\pcalua.exe -a F:\Downloads\SetupsmokeX18.exe -d F:\Downloads
    Task: {659FEAB4-4F4F-4ACD-A69E-85C0E39AF05F} - System32\Tasks\{90AD0FAC-F252-3FD5-6CE3-65537A8F1E9C} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" worldmediarek.ru/cl/?guid=1hpamlwf8p9o1ya9sk39wl1zrk61n3if&prid=1&pid=6_1308_64261
    Task: {B2695254-F902-40CA-B5CF-5542FC468275} - System32\Tasks\{34C81268-8216-A0D7-EEEB-D8E8BDEFA21F} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" worldmediarek.ru/cl/?guid=1hpamlwf8p9o1ya9sk39wl1zrk61n3if&prid=1&pid=6_1308_64261
    Task: {DEFED836-4762-4CCA-A228-EE0571EFDC43} - System32\Tasks\{9442C640-C395-67B4-00D0-CE19827D35D2} => C:\Users\olo\hIsHSyt.exe [2009-07-14] (Microsoft Corporation)
    C:\Windows\SysWOW64\wIgkGsU.exe
    C:\Users\olo\hIsHSyt.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {64fd0156-1d28-11e8-8671-d406378c3073} - H:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {64fd0165-1d28-11e8-8671-d406378c3073} - D:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {9304e871-2f58-11e8-b691-6c3be536ce00} - G:\AutoRun.exe
    HKU\S-1-5-21-3674578369-3304836493-452401941-1000\...\MountPoints2: {c702d8e9-ac6f-11e8-bbef-d43d7e6c22cb} - G:\AutoRun.exe
    2018-09-03 13:34 - 2018-09-03 13:34 - 000004072 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1535974447
    2018-09-02 14:29 - 2018-09-02 14:29 - 000003736 _____ C:\Windows\System32\Tasks\{90AD0FAC-F252-3FD5-6CE3-65537A8F1E9C}
    2018-09-02 14:29 - 2018-09-02 14:29 - 000003736 _____ C:\Windows\System32\Tasks\{34C81268-8216-A0D7-EEEB-D8E8BDEFA21F}
    2018-09-02 14:29 - 2018-09-02 14:29 - 000003586 _____ C:\Windows\System32\Tasks\{9442C640-C395-67B4-00D0-CE19827D35D2}
    2018-09-02 14:29 - 2018-09-02 14:29 - 000003400 _____ C:\Windows\System32\Tasks\{755FDD67-13B8-7A2B-10BF-1C6DAE029350}
    2018-09-02 14:29 - 2018-09-02 14:29 - 000000002 _____ C:\Users\olo\AppData\Local\imw.ini
    2009-07-14 03:14 - 2009-07-14 03:14 - 000073216 ____N (Microsoft Corporation) C:\Users\olo\hIsHSyt.exe
    2018-09-02 14:29 - 2018-09-02 14:29 - 000000002 _____ () C:\Users\olo\AppData\Local\imw.ini


    Po wykonaniu usun katalog C:\FRST i to wszystko.

    0
  • #4 05 Wrz 2018 15:35
    karolbary
    Poziom 2  

    Panowie wielkie dzięki i wieczna wam chwała w tym co robicie. Pozdrawiam, temat można zamknąć.

    0