Strona 1 z 1

Prosba o sprawdzenie logów

PostWysłany: 06 Mar 2018, 16:26
przez chcwdb

Re: Prosba o sprawdzenie logów

PostWysłany: 06 Mar 2018, 22:00
przez filutka78
Uruchom FRST. NA klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:
Kod: Zaznacz wszystko
Task: {3D0F4E03-CD02-4B8C-A7CE-B419FC9D9C35} - System32\Tasks\pawelDentsBravedV2 => rundll32.exe SongwriterPurposelessly.dll,main 7 1 <==== ATTENTION
ShortcutTarget: BackupRemind.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\BackupRemind.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\rvlkl.lnk [2016-09-21]
ShortcutTarget: rvlkl.lnk -> C:\ProgramData\rvlkl\rvlkl.exe (No File)
GroupPolicy\User: Restriction <==== ATTENTION
ShortcutWithArgument: C:\Users\pawel\Desktop\WarThunder.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=1&click_id=fd9ee01d44a807fcd374a7b0ea5522419f684747
ShortcutWithArgument: C:\Users\pawel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=1&click_id=fd9ee01d44a807fcd374a7b0ea5522419f684747
ShortcutWithArgument: C:\Users\pawel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=1&click_id=fd9ee01d44a807fcd374a7b0ea5522419f684747
C:\Users\pawel\Desktop\Настройки FIFA 14.lnk
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {F37618EC-C6B9-42C7-AE40-1B9D56246299} - System32\Tasks\Microsoft\Windows\RVLKL\RVLKL => C:\ProgramData\rvlkl\rvlkl.exe <==== ATTENTION
S3 AndNetDiag; \SystemRoot\system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; \SystemRoot\system32\DRIVERS\lgandnetmodem64.sys [X]
S3 pccsmcfd; \SystemRoot\system32\DRIVERS\pccsmcfdx64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\pawel\AppData\Local\Temp\tmp8C8D.tmp [X] <==== ATTENTION
RemoveDirectory: C:\Program Files (x86)\FKPNT Manager
RemoveDirectory: C:\ProgramData\rvlkl
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\Dr.Fone for Android\DriverInstall.exe [X]
HKU\S-1-5-21-665606059-4175248711-732120037-1001\...\Run: [service.exe] => C:\Program Files (x86)\FKPNT Manager\service.exe [1035776 2017-06-18] ()
HOSTS:
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).