wirus http://gmaegames.pro/redirect-from-banner.html

[sebo0404 0]

Witam, mam ten sam problem prosze o pomoc

 

i reszta

[filutka78 11]

------------->>@sebo0404

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

Task: {56DAB4D1-EBAB-486D-8A95-928B8506164A} - System32\Tasks\SEBO0404 => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v SEBO0404 /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"

HKU\S-1-5-21-1077546664-3274175405-2728243795-1001\...\Run: [sEBO0404] => cmd.exe /c start www.dipladoks.org

Task: {BFC6A16A-80E9-4D55-8A38-3924BCEC498D} - System32\Tasks\vhost => C:\Users\SEBO0404\AppData\Roaming\regasm.exe <==== UWAGA

Task: {E9D7461A-5D4E-49A6-B26D-8ED1118A991A} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] () <==== UWAGA

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Uaktualnij Javę, wg https://www.fixitpc.pl/topic/5-dezynfekcja-kroki-finalizuj%C4%85ce-temat/?tab=comments#comment-179769

zaraz ...

 

Napisz, czy problem znikł?

 

F.

[sebo0404 0]

Dziekuje filutka78 po raz kolejny.. jestes the best

[zuzasss 0]

Uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

CloseProcesses:
Task: {109EAFC4-C0AE-45C0-A46B-003E6B7116CA} - System32\Tasks\{A161224E-WSP1-9722-1GH5-LA58912C12AA} => C:\Users\damian\AppData\Roaming\WinRAR\Precomp\precomp.exe [2018-08-07] () <==== UWAGA
Task: {CEB00B5E-820F-455C-A613-B44EA6061A0B} - System32\Tasks\damian => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v damian /t REG_SZ /d "explorer.exe hxxp://dipladoks.org" <==== UWAGA
FirewallRules: [{EADF36CB-09E2-478E-A8F7-6F67DE78109D}] => (Allow) D:0\Dragon Age\DragonAgeInquisition.exe Brak pliku
FirewallRules: [{77BE88E2-CC56-4282-A074-16EFF905DEC3}] => (Allow) D:0\Dragon Age\DragonAgeInquisition.exe Brak pliku
FirewallRules: [TCP Query User{24C8A0FD-A217-4EA3-8B19-783488F3497F}C:\Users\damian\AppData\Local\InstallShield\instsh.exe] => (Allow) C:\Users\damian\AppData\Local\InstallShield\instsh_x64.exe Brak pliku
FirewallRules: [TCP Query User{24C8A0FD-A217-4EA3-8B19-783488F3497F}C:\Users\damian\AppData\Local\InstallShield\instsh_x86.exe] => (Allow) C:\Users\damian\AppData\Local\InstallShield\instsh_x86.exe Brak pliku
FirewallRules: [uDP Query User{EFB7E5A6-6DC9-4DDD-9DE9-55C359633320}C:\users\konstantin\appdata\local\installshield\instsh_x86.exe] => (Allow) C:\Users\damian\AppData\Local\InstallShield\instsh_x86.exe Brak pliku
FirewallRules: [uDP Query User{EFB7E5A6-6DC9-4DDD-9DE9-55C359633320}C:\users\konstantin\appdata\local\installshield\instsh_x64.exe] => (Allow) C:\Users\damian\AppData\Local\InstallShield\instsh_x64.exe Brak pliku
FirewallRules: [TCP Query User{C61AE4E6-8F89-4473-A2C1-A623A0D3FF15}C:\users\damian\appdata\local\installshield\instsh_x64.exe] => (Block) C:\users\damian\appdata\local\installshield\instsh_x64.exe Brak pliku
FirewallRules: [uDP Query User{BFC1AEA5-984F-45C5-A2EE-BB91E067C08B}C:\users\damian\appdata\local\installshield\instsh_x64.exe] => (Block) C:\users\damian\appdata\local\installshield\instsh_x64.exe Brak pliku
FirewallRules: [{B9D79177-CE9A-47AC-A855-AF420CF0967B}] => (Allow) D:6\NFS Payback\NeedForSpeedPaybackTrial.exe Brak pliku
FirewallRules: [{FACD78A7-408F-4F08-AC6B-111FBD7C42D6}] => (Allow) D:6\NFS Payback\NeedForSpeedPaybackTrial.exe Brak pliku
FirewallRules: [{858B3D89-1A7C-4404-8162-7962A1E3AED7}] => (Allow) D:6\NFS Payback\NeedForSpeedPayback.exe Brak pliku
FirewallRules: [{7ECF196F-55D1-4E74-BC70-D7388216E77E}] => (Allow) D:6\NFS Payback\NeedForSpeedPayback.exe Brak pliku
FirewallRules: [TCP Query User{A2785187-203F-4308-9CEF-0B64A647E016}D:0\killer instinct\killerinstinctx64_r.exe] => (Allow) D:0\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [uDP Query User{B3A3909F-BF40-4147-B6D8-620999D3AAF9}D:0\killer instinct\killerinstinctx64_r.exe] => (Allow) D:0\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [TCP Query User{E5D67669-B07A-45A7-A507-CD3C3A435F71}D:4\gry\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:4\gry\the sims 4\game\bin\ts4_x64.exe Brak pliku
FirewallRules: [uDP Query User{6A696C98-A63D-4F1A-91CA-ABAC29A8C413}D:4\gry\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:4\gry\the sims 4\game\bin\ts4_x64.exe Brak pliku
FirewallRules: [{D187D8D8-1680-4088-9AB1-E4E5BC115B0B}] => (Allow) D:4\Gry\Przygody Tintina - Tajemnica Jednorozca\TINTIN.exe Brak pliku
FirewallRules: [{B9D777BA-F6D8-4847-9D58-9F764F5EEF69}] => (Allow) D:4\Gry\Przygody Tintina - Tajemnica Jednorozca\TINTIN.exe Brak pliku
FirewallRules: [TCP Query User{081EB1DA-D778-4731-9550-42F13A68D2CB}D:0\gry\przygody tintina - tajemnica jednorozca\tintin.exe] => (Allow) D:0\gry\przygody tintina - tajemnica jednorozca\tintin.exe Brak pliku
FirewallRules: [uDP Query User{DB6D1D5C-6F21-4184-8197-CA0964E7C1AA}D:0\gry\przygody tintina - tajemnica jednorozca\tintin.exe] => (Allow) D:0\gry\przygody tintina - tajemnica jednorozca\tintin.exe Brak pliku
FirewallRules: [{688EF7FD-4FA6-4366-8A88-531EED90348A}] => (Allow) D:0\Gry\Assassin's Creed III\AC3SP.exe Brak pliku
FirewallRules: [{648F0B09-059C-4ED6-8E84-2165C301F361}] => (Allow) D:0\Gry\Assassin's Creed III\AC3SP.exe Brak pliku
FirewallRules: [{ACE56158-5236-4411-8D59-E5C77659743D}] => (Allow) D:0\Gry\Assassin's Creed III\AC3MP.exe Brak pliku
FirewallRules: [{F5FB113B-F407-4DB0-B54D-C6E0D041FEB1}] => (Allow) D:0\Gry\Assassin's Creed III\AC3MP.exe Brak pliku
FirewallRules: [{7748AB31-D316-4BAE-9AE9-955BE290B6DD}] => (Allow) D:0\Gry\Assassin's Creed III\AssassinsCreed3.exe Brak pliku
FirewallRules: [{A03B48F1-4811-4E74-AC85-333F5B0BF5A1}] => (Allow) D:0\Gry\Assassin's Creed III\AssassinsCreed3.exe Brak pliku
FirewallRules: [TCP Query User{A86D9B40-E61D-4530-A631-0F72A182219E}D:0\gry\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:0\gry\the sims 4\game\bin\ts4_x64.exe Brak pliku
FirewallRules: [uDP Query User{A46102BC-3E63-4EBA-BD64-35A6DEA06E93}D:0\gry\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:0\gry\the sims 4\game\bin\ts4_x64.exe Brak pliku
FirewallRules: [TCP Query User{28816C3B-FB92-4D75-8F67-F485F7275778}D:2\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Allow) D:2\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{26E18A58-44C8-4C02-9E61-6D49BBB417E7}D:2\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Allow) D:2\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{A9A62178-1B3C-4E97-AB12-6034D5BF0FFE}D:6\gry\max payne 3\maxpayne3.exe] => (Allow) D:6\gry\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [uDP Query User{2BA46ABD-67AD-46D7-8368-4C2F4A7F6C5F}D:6\gry\max payne 3\maxpayne3.exe] => (Allow) D:6\gry\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [{BD6D7CC4-9BB9-43AD-B5BF-83F32E8F785F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{034AD76C-70F8-4F7F-B027-A73962FF921B}D:0\gry\the sims 4\game\bin\ts4.exe] => (Allow) D:0\gry\the sims 4\game\bin\ts4.exe Brak pliku
FirewallRules: [uDP Query User{34A77A04-EE39-46C3-9273-BA750899FAC8}D:0\gry\the sims 4\game\bin\ts4.exe] => (Allow) D:0\gry\the sims 4\game\bin\ts4.exe Brak pliku
FirewallRules: [TCP Query User{06035812-D5B2-4BF2-ABDB-FC3DCCAEA48D}D:0\gry\max payne 3\maxpayne3.exe] => (Allow) D:0\gry\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [uDP Query User{C3FFECA6-D1C2-426E-AF65-2A27C1C0DFEB}D:0\gry\max payne 3\maxpayne3.exe] => (Allow) D:0\gry\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [TCP Query User{B1FFAE63-B781-4DF7-9001-5496FBFAABE5}D:0\gry\call of duty modern warfare 3\iw5sp.exe] => (Block) D:0\gry\call of duty modern warfare 3\iw5sp.exe Brak pliku
FirewallRules: [uDP Query User{AA7BDC8B-9333-4656-86E5-17FB8673DD54}D:0\gry\call of duty modern warfare 3\iw5sp.exe] => (Block) D:0\gry\call of duty modern warfare 3\iw5sp.exe Brak pliku
FirewallRules: [TCP Query User{776D355E-4920-4868-86CE-49BA34AA6D95}D:0\gry\assassin's creed brotherhood\acbsp.exe] => (Block) D:0\gry\assassin's creed brotherhood\acbsp.exe Brak pliku
FirewallRules: [uDP Query User{7D63B74A-D13A-45DF-8C6D-0901B3045677}D:0\gry\assassin's creed brotherhood\acbsp.exe] => (Block) D:0\gry\assassin's creed brotherhood\acbsp.exe Brak pliku
FirewallRules: [TCP Query User{F45AFA0D-FF09-4ED5-820B-5E2432B338CE}D:6\gry\battlefield 1\setup\bf1.exe] => (Allow) D:6\gry\battlefield 1\setup\bf1.exe Brak pliku
FirewallRules: [uDP Query User{080B7ED1-2458-4299-865C-207E2334B4D5}D:6\gry\battlefield 1\setup\bf1.exe] => (Allow) D:6\gry\battlefield 1\setup\bf1.exe Brak pliku
FirewallRules: [TCP Query User{2488B7DD-4091-45E7-ADAA-4FBBCB9D640E}D:0\gry\homefront the revolution\bin64\homefront2_release.exe] => (Allow) D:0\gry\homefront the revolution\bin64\homefront2_release.exe Brak pliku
FirewallRules: [uDP Query User{71804E47-676B-4261-853C-B12F4645F553}D:0\gry\homefront the revolution\bin64\homefront2_release.exe] => (Allow) D:0\gry\homefront the revolution\bin64\homefront2_release.exe Brak pliku
FirewallRules: [TCP Query User{7783D1BB-C9F7-47FC-B15F-B258248917E1}D:4\csgo\7launcher\tools\steamcmd\steamcmd.exe] => (Allow) D:4\csgo\7launcher\tools\steamcmd\steamcmd.exe Brak pliku
FirewallRules: [uDP Query User{CA1B4C04-3CA2-42B2-8E43-DB4DB5441892}D:4\csgo\7launcher\tools\steamcmd\steamcmd.exe] => (Allow) D:4\csgo\7launcher\tools\steamcmd\steamcmd.exe Brak pliku
FirewallRules: [TCP Query User{129882B6-4BAB-44C4-B10D-C4A21CBF1E0C}D:4\csgo\csgo.exe] => (Allow) D:4\csgo\csgo.exe Brak pliku
FirewallRules: [uDP Query User{53CAA51B-09A7-476E-9067-BC1090AD6BD4}D:4\csgo\csgo.exe] => (Allow) D:4\csgo\csgo.exe Brak pliku
FirewallRules: [TCP Query User{DF71D7A3-690C-42EF-930F-910C3E6A3273}D:4\my memory of us\mmou.exe] => (Allow) D:4\my memory of us\mmou.exe Brak pliku
FirewallRules: [uDP Query User{A05C713B-1DD5-4D3E-88AA-92C7533DE45E}D:4\my memory of us\mmou.exe] => (Allow) D:4\my memory of us\mmou.exe Brak pliku
FirewallRules: [TCP Query User{53F50675-AE16-4741-9AF0-01A25EB37198}D:0\gry\far cry 3 complete collection\far cry 3\bin\farcry3.exe] => (Allow) D:0\gry\far cry 3 complete collection\far cry 3\bin\farcry3.exe Brak pliku
FirewallRules: [uDP Query User{F6783EA8-AB89-4B0A-B36E-5A5FEC149DC5}D:0\gry\far cry 3 complete collection\far cry 3\bin\farcry3.exe] => (Allow) D:0\gry\far cry 3 complete collection\far cry 3\bin\farcry3.exe Brak pliku
FirewallRules: [{88607CE5-2C5C-463A-8C71-83088771D6A3}] => (Allow) D:2\Gry zainstalowane\FIFASetup\fifaconfig.exe Brak pliku
FirewallRules: [{EA0FDEEC-A844-43F3-AF18-38394FDE0584}] => (Allow) D:2\Gry zainstalowane\FIFASetup\fifaconfig.exe Brak pliku
FirewallRules: [TCP Query User{E344BB00-0D86-4BDD-B58F-BB418E34A234}D:2\gry zainstalowane\fifa 19\fifa19.exe] => (Allow) D:2\gry zainstalowane\fifa 19\fifa19.exe Brak pliku
FirewallRules: [uDP Query User{642B8B99-3B53-4B36-A7BE-7A7D8858F546}D:2\gry zainstalowane\fifa 19\fifa19.exe] => (Allow) D:2\gry zainstalowane\fifa 19\fifa19.exe Brak pliku
FirewallRules: [TCP Query User{4623D60B-F433-438B-ADBB-A827F7CD2266}D:2\gry zainstalowane\quantum break\game\dx11\quantumbreak.exe] => (Allow) D:2\gry zainstalowane\quantum break\game\dx11\quantumbreak.exe Brak pliku
FirewallRules: [uDP Query User{5DA12727-21C0-4D69-9DEA-8F6CBF3DD402}D:2\gry zainstalowane\quantum break\game\dx11\quantumbreak.exe] => (Allow) D:2\gry zainstalowane\quantum break\game\dx11\quantumbreak.exe Brak pliku
FirewallRules: [{B79B0011-9091-464A-8A8F-2F9E837E022A}] => (Allow) D:2\Gry zainstalowane\Battlefield.V\bfvTrial.exe Brak pliku
FirewallRules: [{82309E83-FFB4-418E-ABB0-7389965EC508}] => (Allow) D:2\Gry zainstalowane\Battlefield.V\bfvTrial.exe Brak pliku
FirewallRules: [{6800DABC-14C8-4F33-AB8A-EA5F7C50DA25}] => (Allow) D:2\Gry zainstalowane\Battlefield.V\bfv.exe Brak pliku
FirewallRules: [{AE7DAACC-BDC2-40F2-9FCD-5E023BF8CBFE}] => (Allow) D:2\Gry zainstalowane\Battlefield.V\bfv.exe Brak pliku
FirewallRules: [TCP Query User{D81B6D2B-1665-4542-A767-5C802AC7931D}D:2\gry zainstalowane\everybodys.gone.to.the.rapture\everybodys gone to the rapture\bin64\rapture_release.exe] => (Allow) D:2\gry zainstalowane\everybodys.gone.to.the.rapture\everybodys gone to the rapture\bin64\rapture_release.exe Brak pliku
FirewallRules: [uDP Query User{7B3FEF6D-4CA8-495C-9818-813217E21F11}D:2\gry zainstalowane\everybodys.gone.to.the.rapture\everybodys gone to the rapture\bin64\rapture_release.exe] => (Allow) D:2\gry zainstalowane\everybodys.gone.to.the.rapture\everybodys gone to the rapture\bin64\rapture_release.exe Brak pliku
FirewallRules: [TCP Query User{1A50AE6D-F2C4-46FD-8B01-02B217C02B17}D:2\gry zainstalowane\sunset overdrive\sunset.exe] => (Allow) D:2\gry zainstalowane\sunset overdrive\sunset.exe Brak pliku
FirewallRules: [uDP Query User{AF20BE98-B6D5-44A2-B7F9-09FFB0CB1667}D:2\gry zainstalowane\sunset overdrive\sunset.exe] => (Allow) D:2\gry zainstalowane\sunset overdrive\sunset.exe Brak pliku
FirewallRules: [TCP Query User{33EB916D-399F-442A-BCAD-9BB6427FAF1A}D:2\gry zainstalowane\recore - definitive edition\recore.exe] => (Allow) D:2\gry zainstalowane\recore - definitive edition\recore.exe Brak pliku
FirewallRules: [uDP Query User{58257B74-39D1-4694-A442-D9477AE0339D}D:2\gry zainstalowane\recore - definitive edition\recore.exe] => (Allow) D:2\gry zainstalowane\recore - definitive edition\recore.exe Brak pliku
FirewallRules: [TCP Query User{FEC08EE7-CF61-43EA-86BA-F3E199595EA1}D:6\gry zainstalowane\ashen\ashen\binaries\win64\ashen-win64-shipping.exe] => (Block) D:6\gry zainstalowane\ashen\ashen\binaries\win64\ashen-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{9B29FF6D-9D34-44EC-B268-B3C7AE965766}D:6\gry zainstalowane\ashen\ashen\binaries\win64\ashen-win64-shipping.exe] => (Block) D:6\gry zainstalowane\ashen\ashen\binaries\win64\ashen-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{483B1ACB-F907-4590-8B6A-9B7CA354CB1A}D:0\gry\killer instinct\killerinstinctx64_r.exe] => (Block) D:0\gry\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [uDP Query User{5852C396-8477-4D02-8A73-15F9188DDF8C}D:0\gry\killer instinct\killerinstinctx64_r.exe] => (Block) D:0\gry\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [TCP Query User{865AD2BB-5B23-4563-9E2C-8CD6F2BE3965}D:4\mortal kombat xl\binaries\retail\mk10.exe] => (Block) D:4\mortal kombat xl\binaries\retail\mk10.exe Brak pliku
FirewallRules: [uDP Query User{C7DC862C-AF58-4CB8-8C02-C936716E2E53}D:4\mortal kombat xl\binaries\retail\mk10.exe] => (Block) D:4\mortal kombat xl\binaries\retail\mk10.exe Brak pliku
FirewallRules: [TCP Query User{8ABCC76E-B49A-4165-A9C0-4E9EE1BCFEE9}D:2\gry zainstalowane\cs go\csgo.exe] => (Allow) D:2\gry zainstalowane\cs go\csgo.exe Brak pliku
FirewallRules: [uDP Query User{41E9804E-AF5D-4CCA-87DE-012434665D18}D:2\gry zainstalowane\cs go\csgo.exe] => (Allow) D:2\gry zainstalowane\cs go\csgo.exe Brak pliku
FirewallRules: [TCP Query User{B7053318-596B-4C63-96E6-EC03E9CC1631}D:2\gry zainstalowane\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:2\gry zainstalowane\max payne 3\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [uDP Query User{C07A0F6D-E790-4B5C-B43F-28B1CFE65721}D:2\gry zainstalowane\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:2\gry zainstalowane\max payne 3\max payne 3\maxpayne3.exe Brak pliku
FirewallRules: [TCP Query User{C44871E0-BB35-4779-BC15-13A4AA0256E5}D:2\gry zainstalowane\killer instinct\killerinstinctx64_r.exe] => (Block) D:2\gry zainstalowane\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [uDP Query User{F740283F-0808-4A9F-9A19-BE37725DD3BC}D:2\gry zainstalowane\killer instinct\killerinstinctx64_r.exe] => (Block) D:2\gry zainstalowane\killer instinct\killerinstinctx64_r.exe Brak pliku
FirewallRules: [{30DC930B-B610-4A04-85AC-A223065DC41D}] => (Allow) D:2\Gry zainstalowane\A.Way.Out\Haze1\Binaries\Win64\AWayOut.exe Brak pliku
FirewallRules: [{E36B875C-90FB-4A27-B734-ECC4D83725C5}] => (Allow) D:2\Gry zainstalowane\A.Way.Out\Haze1\Binaries\Win64\AWayOut.exe Brak pliku
FirewallRules: [{6EFAAE9C-295A-41F4-A5F9-437537A274B4}] => (Allow) D:2\Gry zainstalowane\A.Way.Out\Haze1\Binaries\Win64\AWayOut_friend.exe Brak pliku
FirewallRules: [{92133F2A-7D6E-4339-8360-9A70E277B80B}] => (Allow) D:2\Gry zainstalowane\A.Way.Out\Haze1\Binaries\Win64\AWayOut_friend.exe Brak pliku
FirewallRules: [TCP Query User{562D479A-9C68-4F45-8D46-DBB779ACAD0E}D:8\gry zainstalowane\fifa 19\fifa19.exe] => (Allow) D:8\gry zainstalowane\fifa 19\fifa19.exe Brak pliku
FirewallRules: [uDP Query User{2E929FD1-C3B0-4C1B-A52B-E3FFC1B94A98}D:8\gry zainstalowane\fifa 19\fifa19.exe] => (Allow) D:8\gry zainstalowane\fifa 19\fifa19.exe Brak pliku
HKU\S-1-5-21-1247206368-2342858194-1677174277-1001\...\Run: [damian] => explorer.exe hxxp://dipladoks.org <==== UWAGA
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.16.3.21\Exts\Chrome.crx <nie znaleziono>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.16.3.21\Exts\Chrome.crx <nie znaleziono>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
S4 SymEvnt; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\SymPlatform\SymEvnt.sys [X]
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu. Napisz później czy problem znikł.

 

 

Znasz powyższy plik?

 

Dziękuję bardzo. Pomogło. Nie wiem co to może być za plik (coś z nim trzeba zrobić?)

[Gość]

Nie wiem co to może być za plik (coś z nim trzeba zrobić?)

Jak nie wiesz to uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

File: C:\Users\damian\AppData\Local\InstallShield\InstMP.exe

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Podaj log z naprawy (Fixlog.txt).

[zuzasss 0]

Jak nie wiesz to uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

File: C:\Users\damian\AppData\Local\InstallShield\InstMP.exe

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Podaj log z naprawy (Fixlog.txt).

 

Podaję log. Dzięki

Fixlog.txt

[Gość]

Nie znalazł pliku. Zostawiamy to jak jest już dobrze.

[leprodant 0]

Witam, mam ten sam problem z gmaegames.pro. Proszę o pomoc. Pozdrawiam

FRST.txt

Addition.txt

[Gość]

Witam, mam ten sam problem z gmaegames.pro. Proszę o pomoc. Pozdrawiam

Uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Brak pliku
ContextMenuHandlers1: [briefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Brak pliku
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers6: [briefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
Task: {56E884CD-4B5E-40E7-9374-8656CBDA32DF} - \dell -> Brak pliku <==== UWAGA
Task: {FA669705-B861-49B9-867C-C59759E4B1BC} - System32\Tasks\Auslogics\Anti-Malware\Scan with optional clean => rundll32.exe TaskSchedulerHelper.dll,RunTask "AntiMalware.exe" "/UseTray /Schedule"
HKU\S-1-5-21-537560245-1716161257-2562455317-1001\...\Run: [dell] => cmd.exe /c start www.dipladoks.org
2019-01-04 18:06 - 2019-01-04 18:06 - 007020848 _____ (EnigmaSoft Limited) C:\Users\dell\Downloads\SpyHunter-Installer(1).exe
2019-01-03 09:09 - 2019-01-03 09:09 - 007020848 _____ (EnigmaSoft Limited) C:\Users\dell\Downloads\SpyHunter-Installer.exe
Hosts:
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu. Napisz później czy problem znikł.

[leprodant 0]

Problem usunięty, serdeczne dzięki. Gorąco pozdrawiam.

[wachu5496 0]

Witam. Mam taki sam problem jak reszta użytkowników i proszę o pomoc.

Addition.txt

FRST.txt

[Gość]

Witam. Mam taki sam problem jak reszta użytkowników i proszę o pomoc.

Przez Panel Sterowania odinstaluj:

WorldofTanks (HKLM-x32\...\WorldofTanks) (Version: - ) <==== UWAGA

Tylko nie pomyl z:

World of Tanks (HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)

 

Uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

CloseProcesses:
Task: {3D77161C-D3BA-4A37-8062-3D39BC1FC916} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [2018-09-23] (AVG Technologies) <==== UWAGA
Task: {5A820D9C-35B2-491B-A66E-166BA3CB7913} - System32\Tasks\User => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v User /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"
Task: {97EF31D8-EE9E-4E40-A66D-8BC37ED82141} - System32\Tasks\{6190A37D-1DC3-447F-B31D-E9B2411EAD71} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Documents\Archiwum X\Nero Burning ROM 2018 v19.0.00800\Setup.exe" -d "C:\Users\User\Documents\Archiwum X\Nero Burning ROM 2018 v19.0.00800"
Task: {A71B6C62-9CF7-4F9D-86CD-3F69AD4C32C4} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [2018-09-23] (AVG Technologies) <==== UWAGA
Task: {B19C4FB3-BEC9-490F-9A27-D1467EAD5992} - System32\Tasks\{492702A9-B8DB-4698-A2DB-D50B682BCAF0} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Documents\Archiwum X\Nero Burning ROM 2018 v19.0.00800\Setup.exe" -d "C:\Users\User\Documents\Archiwum X\Nero Burning ROM 2018 v19.0.00800"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --app-window-size=1024,768
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --app-window-size=1024,768
FirewallRules: [{287A3293-817A-4AB0-9AFB-1C61DF0FF8CB}] => (Allow) D:\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [{EE953B19-220D-48B0-AB42-860F7EC8966C}] => (Allow) D:\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [{7552F658-F406-438E-A588-1FCDAB73C95C}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe Brak pliku
FirewallRules: [{0BCF877F-6C63-4628-9633-8F347C4829F0}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe Brak pliku
FirewallRules: [{6134CC46-4E16-440F-BB59-07E66EF0E3A9}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku
FirewallRules: [{9551ADEC-A6D7-4816-84AF-48B97ADD8E04}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku
FirewallRules: [TCP Query User{BC75A224-EF23-45B3-871D-FD4892284B95}D:\torment - tides of numenera\win\tidesofnumenera.exe] => (Block) D:\torment - tides of numenera\win\tidesofnumenera.exe Brak pliku
FirewallRules: [uDP Query User{7BC875EE-06C4-4932-959C-A8493B7DD0A6}D:\torment - tides of numenera\win\tidesofnumenera.exe] => (Block) D:\torment - tides of numenera\win\tidesofnumenera.exe Brak pliku
FirewallRules: [TCP Query User{E5CA8090-8EA5-4F0F-97F1-521C28303BDD}D:\crysis 2 - maximum edition\bin32\crysis2.exe] => (Block) D:\crysis 2 - maximum edition\bin32\crysis2.exe Brak pliku
FirewallRules: [uDP Query User{59DD2E2D-431B-4E76-9EE1-859A1267272B}D:\crysis 2 - maximum edition\bin32\crysis2.exe] => (Block) D:\crysis 2 - maximum edition\bin32\crysis2.exe Brak pliku
FirewallRules: [{94C21084-558C-4015-9FEE-138AF7655E3A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe Brak pliku
FirewallRules: [{19FEF9B4-C589-4513-8732-CE602748457F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe Brak pliku
FirewallRules: [TCP Query User{377A5185-3372-4FE5-B86D-EB9233F73140}C:\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Block) C:\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{0C2C9798-18B8-4819-9C92-F7D84E34D906}C:\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Block) C:\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{478CCC64-8431-4551-87EB-E6312030AC85}C:\program files (x86)\a total war saga - tob\thrones.exe] => (Block) C:\program files (x86)\a total war saga - tob\thrones.exe Brak pliku
FirewallRules: [uDP Query User{9FCDD2C3-AA4A-44AF-AE3C-5A547CE7DAF1}C:\program files (x86)\a total war saga - tob\thrones.exe] => (Block) C:\program files (x86)\a total war saga - tob\thrones.exe Brak pliku
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\Run: [user] => cmd.exe /c start www.dipladoks.org
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\MountPoints2: {06eb9814-8876-11e6-bf97-e06995c8f5e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\MountPoints2: {2843139c-6094-11e7-9199-e06995c8f5e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\MountPoints2: {284313a0-6094-11e7-9199-e06995c8f5e8} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\MountPoints2: {734a2deb-0f9a-11e6-b6ef-e06995c8f5e8} - F:\Setup.exe
HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\...\MountPoints2: {77abf3ef-2289-11e6-8cfd-e06995c8f5e8} - G:\setup.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [brak pliku]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [brak pliku]
CHR HKU\S-1-5-21-1430571510-2254971792-1294345418-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu. Napisz później czy problem znikł.

[wachu5496 0]

Pomogło, dzięki wielkie!

[menia 0]

Również proszę o pomoc:

FRST.txt

Addition.txt

[Gość]

Również proszę o pomoc:

Uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
Task: {35FD81C4-8D07-4721-8DF7-7E0AC842331A} - System32\Tasks\Jackson => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Jackson /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"
FirewallRules: [uDP Query User{6E046B12-C6A0-47C2-8F70-0EF6B84FF02C}E:\nier automata\nierautomata.exe] => (Block) E:\nier automata\nierautomata.exe Brak pliku
FirewallRules: [TCP Query User{AEA0F925-B8BC-4CF6-8B32-1832951E9FA6}E:\nier automata\nierautomata.exe] => (Block) E:\nier automata\nierautomata.exe Brak pliku
FirewallRules: [uDP Query User{97A067C7-EAEA-43EB-9457-9C20C9D5A502}E:\grand theft auto v\gta5.exe] => (Block) E:\grand theft auto v\gta5.exe Brak pliku
FirewallRules: [TCP Query User{9CE7E8C0-48A4-4B86-ADD6-404FCC4F4C15}E:\grand theft auto v\gta5.exe] => (Block) E:\grand theft auto v\gta5.exe Brak pliku
FirewallRules: [uDP Query User{AA7C1D4A-9CB1-481C-8E0E-52339AE16A68}E:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [TCP Query User{44BD2474-A4DC-4EFF-B95A-1336990FA42A}E:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [{E032946C-178A-4DF4-842C-6E17CCEA975A}] => (Allow) E:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe Brak pliku
FirewallRules: [{38F9DFF4-FBF1-4D9E-8F66-9547AD87704A}] => (Allow) E:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe Brak pliku
FirewallRules: [uDP Query User{93804B4B-8DC5-4F0F-A962-29BA63566A7C}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [TCP Query User{780FF5EA-D613-45D1-9363-6EBEEC496BBC}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [uDP Query User{6C9C5052-8015-4011-BF14-26C83637FE85}E:\olympic games\london2012.exe] => (Block) E:\olympic games\london2012.exe Brak pliku
FirewallRules: [TCP Query User{6B0BB6BB-E96E-4EA5-9F1D-BDF12690029D}E:\olympic games\london2012.exe] => (Block) E:\olympic games\london2012.exe Brak pliku
FirewallRules: [uDP Query User{698C5F1A-48B0-45F6-AA38-2FAFE48DAF9C}E:\nier automata\nierautomata.exe] => (Block) E:\nier automata\nierautomata.exe Brak pliku
FirewallRules: [TCP Query User{71A44F9D-E415-4DAB-82BA-A6D782EE8A14}E:\nier automata\nierautomata.exe] => (Block) E:\nier automata\nierautomata.exe Brak pliku
FirewallRules: [uDP Query User{978A2348-90E4-4A73-BE1C-DF54DCA0F4AA}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe Brak pliku
FirewallRules: [TCP Query User{B541B86A-DA4B-470C-A7AF-B7D1BFC99658}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe Brak pliku
FirewallRules: [uDP Query User{05C8A7B2-9797-47A6-A579-90493F769D58}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe Brak pliku
FirewallRules: [TCP Query User{260D4427-22C8-477F-9BCC-C3909C6F010F}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe Brak pliku
FirewallRules: [uDP Query User{4CF556CF-B357-4A8D-A970-20B0014225EE}E:\outlast 2\binaries\win64\outlast2.exe] => (Block) E:\outlast 2\binaries\win64\outlast2.exe Brak pliku
FirewallRules: [TCP Query User{705844D0-BC26-476B-8B58-043ACCBFA159}E:\outlast 2\binaries\win64\outlast2.exe] => (Block) E:\outlast 2\binaries\win64\outlast2.exe Brak pliku
FirewallRules: [uDP Query User{558BE13E-0699-42CF-B20B-995E9C368FE3}E:\grand theft auto v\gta5.exe] => (Block) E:\grand theft auto v\gta5.exe Brak pliku
FirewallRules: [TCP Query User{47EB2F43-BA6F-48A4-B59C-26939EDC2981}E:\grand theft auto v\gta5.exe] => (Block) E:\grand theft auto v\gta5.exe Brak pliku
FirewallRules: [uDP Query User{8B3DDE9C-56D8-4734-868A-FB364E757307}E:\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) E:\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe Brak pliku
FirewallRules: [TCP Query User{69BF2760-449B-4510-B4B9-B735ADFD021D}E:\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) E:\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe Brak pliku
FirewallRules: [uDP Query User{3BE79605-E01A-44BE-B7DF-EEE59AC13F82}E:\assetto corsa\acs.exe] => (Block) E:\assetto corsa\acs.exe Brak pliku
FirewallRules: [TCP Query User{85F168D2-DB5D-4146-AD8D-C3E2595D3D10}E:\assetto corsa\acs.exe] => (Block) E:\assetto corsa\acs.exe Brak pliku
FirewallRules: [uDP Query User{5FCD98A5-B84F-4998-9925-28131E0875F5}C:\users\jackson\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\jackson\appdata\roaming\bittorrent\bittorrent.exe Brak pliku
FirewallRules: [TCP Query User{FDA02498-260C-4C7E-8478-E2AEC1ACAC60}C:\users\jackson\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\jackson\appdata\roaming\bittorrent\bittorrent.exe Brak pliku
FirewallRules: [uDP Query User{792E6C02-B37A-4D67-990E-45538AD7FF37}E:\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Block) E:\mortal kombat komplete edition\disccontentpc\mkke.exe Brak pliku
FirewallRules: [TCP Query User{0AEE07EE-299E-4F2E-86A6-A07C07527AEF}E:\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Block) E:\mortal kombat komplete edition\disccontentpc\mkke.exe Brak pliku
FirewallRules: [{B50B40A5-59C5-498D-89DC-D59F6A70CAB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Brak pliku
FirewallRules: [uDP Query User{20DDC922-9EFA-4D67-8AFE-76A540979CE0}E:\spintires\spintires.exe] => (Block) E:\spintires\spintires.exe Brak pliku
FirewallRules: [TCP Query User{82DEC9C4-A166-4C27-B2E1-01E0A6EE5975}E:\spintires\spintires.exe] => (Block) E:\spintires\spintires.exe Brak pliku
FirewallRules: [uDP Query User{AF6C1823-9183-4A75-A5B7-A8FFA3180F25}E:\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Block) E:\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe Brak pliku
FirewallRules: [TCP Query User{1C89C4AF-CB47-4AC1-A2B8-C89146F4D5A7}E:\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Block) E:\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe Brak pliku
FirewallRules: [{14C791F2-78D6-4CE6-B1BD-CBC5DBD8F095}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku
FirewallRules: [{5A4F7346-84DE-4671-8638-1E907C6028E5}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku
FirewallRules: [uDP Query User{9A50FD1E-6480-4D16-AA26-7B612C2B9F74}E:\saints row 3\saintsrowthethird_dx11.exe] => (Block) E:\saints row 3\saintsrowthethird_dx11.exe Brak pliku
FirewallRules: [TCP Query User{0DAEF8B9-2FD6-4113-BF0F-186B1647CECE}E:\saints row 3\saintsrowthethird_dx11.exe] => (Block) E:\saints row 3\saintsrowthethird_dx11.exe Brak pliku
FirewallRules: [uDP Query User{F31EC181-954D-4E45-8F44-E0BD94C5B829}E:\borderlands - game of the year edition\binaries\borderlands.exe] => (Block) E:\borderlands - game of the year edition\binaries\borderlands.exe Brak pliku
FirewallRules: [TCP Query User{D0652427-85AA-4212-AD1A-68F70AC89F0C}E:\borderlands - game of the year edition\binaries\borderlands.exe] => (Block) E:\borderlands - game of the year edition\binaries\borderlands.exe Brak pliku
FirewallRules: [uDP Query User{0DF17B12-7E3A-479B-B80D-8B706EA45CEC}E:\saints row iv - game of the century edition\saintsrowiv.exe] => (Block) E:\saints row iv - game of the century edition\saintsrowiv.exe Brak pliku
FirewallRules: [TCP Query User{42234C61-9323-4478-84F9-8D4DE7047D68}E:\saints row iv - game of the century edition\saintsrowiv.exe] => (Block) E:\saints row iv - game of the century edition\saintsrowiv.exe Brak pliku
FirewallRules: [{1BEABA0F-52EC-4B25-BDE8-2947744A6D62}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe Brak pliku
FirewallRules: [{6F72C1FA-118A-4512-A2EB-BE42BE41DA43}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe Brak pliku
FirewallRules: [{240705EE-00CE-404F-BA89-D771257E3BC1}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe Brak pliku
FirewallRules: [{9B2933EB-F5BA-4700-A917-26D8DFDB7CDC}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe Brak pliku
FirewallRules: [{4B7C6FAF-C5F3-43BA-BFF2-DD64B95DF743}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe Brak pliku
FirewallRules: [{E7D52BD9-8D43-4DD9-84FA-730573771E1D}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe Brak pliku
FirewallRules: [{080B06BE-D377-47FC-BCA1-EDAABEBB7C70}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [{DCFAC0BA-18A9-48C2-895C-80E809832343}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [{B776B196-6AFD-436C-983E-05307BB8EBA4}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe Brak pliku
FirewallRules: [{73C50CF8-0D89-4356-8EDE-7D6C74AAC29A}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe Brak pliku
FirewallRules: [TCP Query User{FB5DE30D-E293-478E-9C18-58ECDBC40127}E:\pro evolution soccer 2016-cracked-3dm (2015)\pro evolution soccer 2016\pes2016.exe] => (Block) E:\pro evolution soccer 2016-cracked-3dm (2015)\pro evolution soccer 2016\pes2016.exe Brak pliku
FirewallRules: [uDP Query User{F35F72B4-2746-4234-8FC4-8C9DBD74E9CF}E:\pro evolution soccer 2016-cracked-3dm (2015)\pro evolution soccer 2016\pes2016.exe] => (Block) E:\pro evolution soccer 2016-cracked-3dm (2015)\pro evolution soccer 2016\pes2016.exe Brak pliku
FirewallRules: [{EC7AC837-DCFB-46E0-B29E-62AA97340EB1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe Brak pliku
FirewallRules: [{A2AEF084-ACCF-4FED-A680-29F351AFF916}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe Brak pliku
FirewallRules: [TCP Query User{F7C9A134-38A0-4040-B4EC-6A6D9AE1668B}E:\saints row iv\saintsrowiv.exe] => (Block) E:\saints row iv\saintsrowiv.exe Brak pliku
FirewallRules: [uDP Query User{7FC046A5-A52C-480E-87AA-9E157A918CE1}E:\saints row iv\saintsrowiv.exe] => (Block) E:\saints row iv\saintsrowiv.exe Brak pliku
FirewallRules: [{DF008A31-CBEF-4676-8303-2A2DF617E53E}] => (Allow) E:\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [{BA4D12E5-679F-4C3D-9CCC-BE5E6F3E6195}] => (Allow) E:\Steam\bin\steamwebhelper.exe Brak pliku
FirewallRules: [TCP Query User{94970954-4376-4009-8016-EB1A04F7D82B}E:\outlast\binaries\win32\olgame.exe] => (Allow) E:\outlast\binaries\win32\olgame.exe Brak pliku
FirewallRules: [uDP Query User{845F8980-3C28-4282-9008-8F4EDEC728DF}E:\outlast\binaries\win32\olgame.exe] => (Allow) E:\outlast\binaries\win32\olgame.exe Brak pliku
FirewallRules: [TCP Query User{7AF30B1F-3BBA-454C-BBD3-EE7678C3DB63}E:\udownloader\udownloader.exe] => (Block) E:\udownloader\udownloader.exe Brak pliku
FirewallRules: [uDP Query User{0DB59BF0-83FC-41FB-A8B3-52A452B1AD8B}E:\udownloader\udownloader.exe] => (Block) E:\udownloader\udownloader.exe Brak pliku
FirewallRules: [{A706A361-ED5D-490C-AB60-EB468B27B751}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe Brak pliku
FirewallRules: [{2806F992-C71C-43C6-8FDD-3B36E642D4C9}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe Brak pliku
FirewallRules: [{079580D9-B0B2-46E3-9A8D-1DD12E7AC4F3}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe Brak pliku
FirewallRules: [{6299281F-E828-49A8-9AEA-38C656EA1FFF}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe Brak pliku
FirewallRules: [{2E1CE745-627E-4C29-989D-F2FAA0B3EAC3}] => (Allow) E:\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe Brak pliku
FirewallRules: [{FA556577-F059-4649-AFEF-46714580FEB1}] => (Allow) E:\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe Brak pliku
FirewallRules: [{2F5DFA84-1DC8-4CCE-B7CF-A7D294151C74}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe Brak pliku
FirewallRules: [{89E01B6E-4877-4E6B-A405-C16734DB192F}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe Brak pliku
FirewallRules: [{21104A15-1401-46CD-AF70-1AA1FFA55715}] => (Allow) E:\WB Games\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe Brak pliku
FirewallRules: [{2B400B64-B2B8-4CD2-A390-BCC80A5C6E5D}] => (Block) E:\Batman Arkham City GOTY\Binaries\Win32\BatmanAC_o.exe Brak pliku
FirewallRules: [TCP Query User{313E8E79-8BC5-4799-9166-C0DA4615B014}E:\batman arkham city goty\binaries\win32\batmanac.exe] => (Block) E:\batman arkham city goty\binaries\win32\batmanac.exe Brak pliku
FirewallRules: [uDP Query User{AEE20103-51C7-49C5-8F57-A2258E70CA61}E:\batman arkham city goty\binaries\win32\batmanac.exe] => (Block) E:\batman arkham city goty\binaries\win32\batmanac.exe Brak pliku
FirewallRules: [TCP Query User{6648716C-0E24-4D78-8714-43547C9A2FDD}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe Brak pliku
FirewallRules: [uDP Query User{89646BAD-1904-499F-8B06-148D65B80F14}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe Brak pliku
FirewallRules: [{CCC9B7B6-1D74-4350-A0C9-1377C5305CE3}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe Brak pliku
FirewallRules: [{FF43EC88-A579-44FE-B4A4-C1E872A003E6}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe Brak pliku
FirewallRules: [{74AC18C8-6C4B-4397-9F91-6FB03F491F37}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe Brak pliku
FirewallRules: [{62CAAF45-F822-4C48-867D-F032D913DD6E}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe Brak pliku
FirewallRules: [{7A91FA9F-E7C4-4DE0-9647-D5B163C094E6}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe Brak pliku
FirewallRules: [{90A1D36F-A5A9-4E17-9FD6-B7F20FB1A780}] => (Allow) E:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe Brak pliku
FirewallRules: [TCP Query User{2FE1B648-C0A4-4675-81E4-0A38CA967676}E:\far cry 4\bin\farcry4.exe] => (Allow) E:\far cry 4\bin\farcry4.exe Brak pliku
FirewallRules: [uDP Query User{2547FFA9-5AD5-4356-9DA4-FA50862391FF}E:\far cry 4\bin\farcry4.exe] => (Allow) E:\far cry 4\bin\farcry4.exe Brak pliku
FirewallRules: [TCP Query User{8C34E3ED-6A62-4FD0-B17F-1595DA8725CF}E:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe Brak pliku
FirewallRules: [uDP Query User{D1EF20B6-3CEC-4A1C-AFEE-82B6730A4EE6}E:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe Brak pliku
FirewallRules: [TCP Query User{4B7DCA62-E890-4F81-B4B1-E3F9A7DD201A}E:\hatred\hatred\binaries\win64\hatred-win64-shipping.exe] => (Allow) E:\hatred\hatred\binaries\win64\hatred-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{BCA0163E-07AB-4C5B-8507-B4999EC3212D}E:\hatred\hatred\binaries\win64\hatred-win64-shipping.exe] => (Allow) E:\hatred\hatred\binaries\win64\hatred-win64-shipping.exe Brak pliku
FirewallRules: [{E3EF6F7B-52BE-4A92-9BF0-B25B0CCCD7A4}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.exe Brak pliku
FirewallRules: [{FAE2BB5A-2A3D-4CA9-82B9-B8B2C908CE48}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.x64.exe Brak pliku
FirewallRules: [{EE9D95EF-3F56-4B90-B46A-404D38009561}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.exe Brak pliku
FirewallRules: [{3B50120B-15BC-40AF-8458-E86561A5B833}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.x64.exe Brak pliku
FirewallRules: [{596A1CA7-9F42-4BB1-AA13-2E391668C5A7}] => (Allow) C:\Users\Jackson\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe Brak pliku
FirewallRules: [{103DEE5A-808B-4EB5-B421-001642280990}] => (Allow) E:\Nowy folder\Downloaded\Public\Tools\RemoteCrashSender.exe Brak pliku
FirewallRules: [{B017AFA9-95F4-49FE-A068-2A720E5B8629}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.exe Brak pliku
FirewallRules: [{475B3824-1EC0-4E0B-9294-F21194149633}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.x64.exe Brak pliku
FirewallRules: [{4377BA9C-ABD7-4645-984F-252D591C1E49}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.exe Brak pliku
FirewallRules: [{8A121691-1138-4581-BE37-193812AACEA8}] => (Allow) E:\Nowy folder\Downloaded\Public\Warframe.x64.exe Brak pliku
FirewallRules: [{7D4D8B13-D079-42AC-880D-DC4448943F9C}] => (Allow) C:\Users\Jackson\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe Brak pliku
FirewallRules: [{F40EAD7E-7BC2-494B-A997-FA30AEB63121}] => (Allow) E:\Nowy folder\Downloaded\Public\Tools\RemoteCrashSender.exe Brak pliku
FirewallRules: [TCP Query User{7F2002A1-0CF3-4DB7-90F6-7AFC72E06A6E}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [uDP Query User{3BDA1ADD-CB22-4FF7-A37F-6651253888FE}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Brak pliku
FirewallRules: [TCP Query User{896D9069-5E44-4BB2-B8F4-20EA46C49874}C:\users\jackson\desktop\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\users\jackson\desktop\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [uDP Query User{3438A172-7BC2-424C-BDD5-F1D59FD569ED}C:\users\jackson\desktop\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\users\jackson\desktop\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [TCP Query User{A7DD12B0-ADC1-4934-A55E-FA9F590CDB4A}E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [uDP Query User{1EAAD6CA-BF2F-4990-A4FD-4397516143E0}E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [{4481534A-9EB1-41F1-B686-189ECEA3B967}] => (Block) E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [{017004B7-B00B-451B-BBF7-5BCF8D56BDAE}] => (Block) E:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [TCP Query User{F381B7C3-AEFA-4B86-AE77-243C8C9F7EC5}E:\dying light\dyinglightgame.exe] => (Block) E:\dying light\dyinglightgame.exe Brak pliku
FirewallRules: [uDP Query User{9C3ABD30-A041-4BAA-A7DF-D825D1EEE59D}E:\dying light\dyinglightgame.exe] => (Block) E:\dying light\dyinglightgame.exe Brak pliku
FirewallRules: [TCP Query User{0144DB33-7DB8-4265-B70F-F487E22C3388}E:\olympic games\london2012.exe] => (Block) E:\olympic games\london2012.exe Brak pliku
FirewallRules: [uDP Query User{1380F90B-355D-47C1-8E4F-B3AEA3FE4336}E:\olympic games\london2012.exe] => (Block) E:\olympic games\london2012.exe Brak pliku
FirewallRules: [TCP Query User{161BF67D-2E70-4363-8495-1820E794C0BA}E:\dead island - definitive collection\dead island de\deadislandgame.exe] => (Block) E:\dead island - definitive collection\dead island de\deadislandgame.exe Brak pliku
FirewallRules: [uDP Query User{369826C5-13A7-4243-9B95-B1E777D445F9}E:\dead island - definitive collection\dead island de\deadislandgame.exe] => (Block) E:\dead island - definitive collection\dead island de\deadislandgame.exe Brak pliku
FirewallRules: [TCP Query User{835F4052-B7CA-42F5-A81E-EA76E81A1FF0}E:\dead island - definitive collection\dead island riptide de\deadislandriptidegame.exe] => (Block) E:\dead island - definitive collection\dead island riptide de\deadislandriptidegame.exe Brak pliku
FirewallRules: [uDP Query User{376DDC3A-A805-4DE1-B10E-3B6591A1A423}E:\dead island - definitive collection\dead island riptide de\deadislandriptidegame.exe] => (Block) E:\dead island - definitive collection\dead island riptide de\deadislandriptidegame.exe Brak pliku
FirewallRules: [TCP Query User{F222B9BD-E97B-4212-9DFD-A3DFB8CD2C81}E:\world_of_tanks\wotlauncher.exe] => (Block) E:\world_of_tanks\wotlauncher.exe Brak pliku
FirewallRules: [uDP Query User{A88127E1-906D-4F0A-8E01-C1436E8617D2}E:\world_of_tanks\wotlauncher.exe] => (Block) E:\world_of_tanks\wotlauncher.exe Brak pliku
FirewallRules: [TCP Query User{053B810A-7DD0-4E6B-BEB7-1867FCAF4FAC}E:\world_of_tanks\worldoftanks.exe] => (Block) E:\world_of_tanks\worldoftanks.exe Brak pliku
FirewallRules: [uDP Query User{81878D1D-378A-41A6-A743-1B613D46A2A3}E:\world_of_tanks\worldoftanks.exe] => (Block) E:\world_of_tanks\worldoftanks.exe Brak pliku
FirewallRules: [TCP Query User{EA4D8279-5220-47A2-9999-94685251F92F}E:\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) E:\farming simulator 19\x64\farmingsimulator2019game.exe Brak pliku
FirewallRules: [uDP Query User{2D11A3FE-4FD9-4222-A393-250C30A0EC86}E:\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) E:\farming simulator 19\x64\farmingsimulator2019game.exe Brak pliku
HKU\S-1-5-21-3764051872-2586629007-3658895249-1001\...\Run: [World of Tanks] => "E:\World_of_Tanks\WargamingGameUpdater.exe"
HKU\S-1-5-21-3764051872-2586629007-3658895249-1001\...\Run: [Jackson] => cmd.exe /c start www.dipladoks.org
2019-01-17 12:01 - 2019-01-17 12:01 - 000000000 ____D C:\Users\Jackson\Downloads\FRST-OlderVersion
C:\Users\Jackson\AppData\Roaming\*.*
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu. Napisz później czy problem znikł.

[menia 0]

Pomogło! Dziękuję bardzo!

[lukecz 0]

Prośba o pomoc z usunięciem http://newsgmae.pro/page.html w przeglądarce Firefox (WIndows 10).Malwarebytes Antimalware oraz ADW Cleaner nie usuwają problemu.Logi spakowane bo przekraczały dopuszczalną wielkość załączników w poście

Logi.zip

[Gość]

Prośba o pomoc z usunięciem http://newsgmae.pro/page.html w przeglądarce Firefox (WIndows 10).Malwarebytes Antimalware oraz ADW Cleaner nie usuwają problemu.Logi spakowane bo przekraczały dopuszczalną wielkość załączników w poście

Uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

 

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-3970395143-3663404394-784615714-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Luke\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-3970395143-3663404394-784615714-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Luke\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-3970395143-3663404394-784615714-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Luke\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
Task: {C7E66F84-2BF5-465D-BD4C-4A32F6F9D897} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe () [brak podpisu cyfrowego]
Task: {F43930A8-0BB1-4B49-82C7-0148691F6A7F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
FirewallRules: [uDP Query User{716598C7-3DC9-41BD-9295-892891FE3D2E}D:\program files\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) D:\program files\starcraft ii\versions\base71061\sc2_x64.exe Brak pliku
FirewallRules: [TCP Query User{BF547478-479A-4F2D-A8E4-AB05F7F1E1F8}D:\program files\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) D:\program files\starcraft ii\versions\base71061\sc2_x64.exe Brak pliku
FirewallRules: [uDP Query User{072C8404-CB7E-4BD8-A00A-F1DBF360EB93}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{BB9C9E13-B6B2-4019-B92B-4CDE90CF18C0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{329A46D5-EB66-4B45-8521-13ADDC00F03B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe Brak pliku
FirewallRules: [TCP Query User{CBF7F208-D5DD-40A0-B7BD-C7BCD662A246}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe Brak pliku
FirewallRules: [uDP Query User{CD237F48-C835-4240-B26A-A877B1C2D04B}D:\program files\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) D:\program files\starcraft ii\versions\base69232\sc2_x64.exe Brak pliku
FirewallRules: [TCP Query User{CD844B93-01D3-4539-8051-3307EE9D346D}D:\program files\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) D:\program files\starcraft ii\versions\base69232\sc2_x64.exe Brak pliku
FirewallRules: [{AFA258F1-73D4-4E37-AE87-D8DC363E0BDF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Brak pliku
FirewallRules: [{05A32201-8BEF-4BE0-A7DE-C8B7CF811A97}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Brak pliku
FirewallRules: [uDP Query User{EFB7E5A6-6DC9-4DDD-9DE9-55C359633320}C:\users\konstantin\appdata\local\installshield\instsh_x64.exe] => (Allow) C:\Users\Luke\AppData\Local\InstallShield\instsh_x64.exe Brak pliku
FirewallRules: [uDP Query User{EFB7E5A6-6DC9-4DDD-9DE9-55C359633320}C:\users\konstantin\appdata\local\installshield\instsh_x86.exe] => (Allow) C:\Users\Luke\AppData\Local\InstallShield\instsh_x86.exe Brak pliku
FirewallRules: [TCP Query User{24C8A0FD-A217-4EA3-8B19-783488F3497F}C:\Users\Luke\AppData\Local\InstallShield\instsh_x86.exe] => (Allow) C:\Users\Luke\AppData\Local\InstallShield\instsh_x86.exe Brak pliku
FirewallRules: [TCP Query User{24C8A0FD-A217-4EA3-8B19-783488F3497F}C:\Users\Luke\AppData\Local\InstallShield\instsh.exe] => (Allow) C:\Users\Luke\AppData\Local\InstallShield\instsh_x64.exe Brak pliku
FirewallRules: [uDP Query User{04E3307D-0AA8-4473-9787-16163C104C6C}D:\program files\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{A64529BD-E690-4B52-BABB-A123AC929D91}D:\program files\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe Brak pliku
FirewallRules: [{7BDE05C0-DE12-4807-9DC9-D4F42F454574}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe Brak pliku
FirewallRules: [{99946B13-4850-4A34-9825-4A41FEB24276}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe Brak pliku
FirewallRules: [{C9D6F979-03B4-4F42-BBF5-B3D2857BD923}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe Brak pliku
FirewallRules: [{B05975CA-CD33-4C1C-9B6E-15401CCBD79D}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe Brak pliku
FirewallRules: [{4334E7C5-B412-48F3-8EE8-95FEFF266E36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew 2 Beta\TheCrew2.exe Brak pliku
FirewallRules: [{DE402DAD-615C-4F6D-9B25-159FEF1FC79E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew 2 Beta\TheCrew2.exe Brak pliku
FirewallRules: [uDP Query User{AD0CA335-F0C0-4BB4-A751-BCE3B513A69F}F:\setup wizard\setup wizard.exe] => (Allow) F:\setup wizard\setup wizard.exe Brak pliku
FirewallRules: [TCP Query User{D6793563-9C5E-4A6E-B926-3CEBF24AF7FC}F:\setup wizard\setup wizard.exe] => (Allow) F:\setup wizard\setup wizard.exe Brak pliku
FirewallRules: [uDP Query User{8D7E9D7B-2456-4780-A97B-57D46B467BA2}C:\users\luke\desktop\dns-320l_setup_wizard_eu_v1.2.0.9_01082016\setup wizard.exe] => (Allow) C:\users\luke\desktop\dns-320l_setup_wizard_eu_v1.2.0.9_01082016\setup wizard.exe Brak pliku
FirewallRules: [TCP Query User{027A7326-859A-48E8-A872-771FD874FACF}C:\users\luke\desktop\dns-320l_setup_wizard_eu_v1.2.0.9_01082016\setup wizard.exe] => (Allow) C:\users\luke\desktop\dns-320l_setup_wizard_eu_v1.2.0.9_01082016\setup wizard.exe Brak pliku
FirewallRules: [{43AF5438-8D79-4639-9CAB-FF512E5133AB}] => (Allow) D:\Program Files\Origin\Titanfall2\Titanfall2.exe Brak pliku
FirewallRules: [{47FE05E1-A30E-41D8-A4C8-1693A05BFE74}] => (Allow) D:\Program Files\Origin\Titanfall2\Titanfall2.exe Brak pliku
FirewallRules: [{472604C4-5624-4F93-B315-F643CBDE7273}] => (Allow) D:\Program Files\Origin\Titanfall2\Titanfall2_trial.exe Brak pliku
FirewallRules: [{72413A4F-7EE6-420F-9AAF-E83AD5A1BCF9}] => (Allow) D:\Program Files\Origin\Titanfall2\Titanfall2_trial.exe Brak pliku
FirewallRules: [{BBE68CAE-6FF6-4236-B275-BF02BB53667E}] => (Allow) D:\Program Files\SteamLibrary\SteamApps\common\pressure\bin\pressure.exe Brak pliku
FirewallRules: [{4A1613AA-5217-4998-A814-798BE08ECB21}] => (Allow) D:\Program Files\SteamLibrary\SteamApps\common\pressure\bin\pressure.exe Brak pliku
FirewallRules: [TCP Query User{BB18ECF7-3585-40D9-88E0-CAF354F956CD}D:\program files\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{DD700067-296E-4952-ACA9-8B21D4C20E06}D:\program files\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{EF1E0142-E9B9-407E-BA1A-5F2F68D28D7A}C:\program files (x86)\subnautica\subnautica.exe] => (Block) C:\program files (x86)\subnautica\subnautica.exe Brak pliku
FirewallRules: [uDP Query User{9C31BE51-5E05-4484-B324-2842BB389B2F}C:\program files (x86)\subnautica\subnautica.exe] => (Block) C:\program files (x86)\subnautica\subnautica.exe Brak pliku
FirewallRules: [{0A183D51-39F9-4EFE-8F91-70632DBA2BAB}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutParadise.exe Brak pliku
FirewallRules: [{26ECA24A-14A1-46ED-966E-6590B35B4CFB}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutParadise.exe Brak pliku
FirewallRules: [{CECB34C4-A0A8-422E-8AD9-71F64E52B4D5}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutLauncher.exe Brak pliku
FirewallRules: [{D375076F-8915-4F2F-B370-A8E2A25ABCBC}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutLauncher.exe Brak pliku
FirewallRules: [{F070ECE9-8A14-4CBE-8702-B56E793349B4}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutConfigTool.exe Brak pliku
FirewallRules: [{34ED4EFA-3AE5-4529-B218-1D4A56CD6B90}] => (Allow) C:\Program Files (x86)\Burnout Paradise\BurnoutConfigTool.exe Brak pliku
FirewallRules: [TCP Query User{68562D01-D6B4-42ED-8047-3F7508142496}D:\program files\steamlibrary\steamapps\common\giana sisters twisted dreams\gsgameexe.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\giana sisters twisted dreams\gsgameexe.exe Brak pliku
FirewallRules: [uDP Query User{0E8B7DEA-C72E-49A0-BE0C-8FBAA45FEA51}D:\program files\steamlibrary\steamapps\common\giana sisters twisted dreams\gsgameexe.exe] => (Allow) D:\program files\steamlibrary\steamapps\common\giana sisters twisted dreams\gsgameexe.exe Brak pliku
FirewallRules: [{6B0053E2-B18F-4B89-BFC8-72EFF8EB7F1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe Brak pliku
FirewallRules: [{5CFD1801-6CAF-4B86-B71B-C414A890A64A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe Brak pliku
FirewallRules: [{BF6CECCE-9353-4829-A32B-17CE599136F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe Brak pliku
FirewallRules: [{79E0A6ED-DC59-4A47-9ED2-E06A8D52FA0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe Brak pliku
FirewallRules: [{05568C8C-A4CE-45EA-9D0D-BAF82E0DF617}] => (Allow) D:\Program Files\SteamLibrary\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe Brak pliku
FirewallRules: [{8D4753A7-BF2C-466D-B5F0-8B48FF80C657}] => (Allow) D:\Program Files\SteamLibrary\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe Brak pliku
FirewallRules: [TCP Query User{8591DDFD-BFED-4477-99A1-9CF09C4AABB9}C:\program files (x86)\steam\steamapps\common\tropico 6 - beta\tropico6\binaries\win64\tropico6-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tropico 6 - beta\tropico6\binaries\win64\tropico6-win64-shipping.exe Brak pliku
FirewallRules: [uDP Query User{6E24829D-170E-4D70-9493-091C2558C797}C:\program files (x86)\steam\steamapps\common\tropico 6 - beta\tropico6\binaries\win64\tropico6-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tropico 6 - beta\tropico6\binaries\win64\tropico6-win64-shipping.exe Brak pliku
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\Run: [Luke] => explorer.exe hxxp://dinoraptzor.org <==== UWAGA
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {10f65933-311a-11e9-ba1b-111111111111} - "V:\setup.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {1344be61-3bb2-11e9-ba3f-111111111111} - "V:\setup.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {59893921-2742-11e9-b9f2-111111111111} - "V:\setup.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {69e64232-15e2-11e9-b9cb-111111111111} - "V:\setup.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {9d8e577a-3358-11e9-ba22-111111111111} - "V:\Install.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {aa1cf185-4b50-11e9-ba78-111111111111} - "V:\setup.exe" 
HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\MountPoints2: {e65b929d-4e63-11e9-ba89-111111111111} - "V:\setup.exe" 
GroupPolicy: Ograniczenia ? <==== UWAGA
GroupPolicy-Firefox: Ograniczenia <==== UWAGA
FF HKU\S-1-5-21-3970395143-3663404394-784615714-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Luke\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono
FF Plugin HKU\S-1-5-21-3970395143-3663404394-784615714-1001: @acestream.net/acestreamplugin,version=3.1.32 -> C:\Users\Luke\AppData\Roaming\ACEStream\player\npace_plugin.dll [brak pliku]
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu. Napisz później czy problem znikł.

[lukecz 0]

Wygląda na to że działa, bardzo dziękujęMuszę jedynie od początku ustawić blokowanie pytania (policy) o aktualizację FF (korzystam z FF 63, chyba ostatniej z obsługą livebookmarks)Jeszcze raz wielkie dzięki.