Skocz do zawartości


Zdjęcie

Problem ze stij.exe - logi


  • Zaloguj się, aby dodać odpowiedź
6 odpowiedzi w tym temacie

#1 marco polo

marco polo

    Nowy

  • 3 postów

Napisano 29 01 2014 - 14:37

Witam, mam problem z procesem jak w temacie. Prosiłbym o pomoc w jego usunięciu. Załączam logi wykonane godzinę temu.

Załączony plik  Extras.Txt   40,96 KB   402 Ilość pobrań

Załączony plik  OTL.Txt   136,04 KB   352 Ilość pobrań



  • 0

#2 pawel315

pawel315

    Uzależniony od forum

  • 1 553 postów

Napisano 30 01 2014 - 10:23

Witaj;

Odinstaluj:

Pando Media Booster
Video Converter Bundle by SweetPacks

Uruchom OTL i w oknie własne opcje skanowania/skrypt wklej:
:Services
IBUpdaterService

:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}: "URL" = http://search.bearshare.com/web?src=ieb&q={searchTerms}
IE - HKU\S-1-5-21-436374069-1958367476-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&babsrc=SP_ss_gin2g&mntrId=3CD80015AFDD9439&affID=44444&tsp=4921
IE - HKU\S-1-5-21-436374069-1958367476-839522115-1004\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}: "URL" = http://search.bearshare.com/web?src=ieb&q={searchTerms}
IE - HKU\S-1-5-21-436374069-1958367476-839522115-1004\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
IE - HKU\S-1-5-21-436374069-1958367476-839522115-1004\..\SearchScopes\{E86A5998-D916-42E1-B5E8-D439BA4F1C2C}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=08248C38-BF9A-4E76-9352-950F0286F220&apn_sauid=ADC0C835-4E25-4765-A128-03BB425D4B82
FF - prefs.js..browser.search.defaultengine: "Ask.com"
O4 - HKLM..\Run: [hpqSRMon]  File not found
O4 - HKLM..\Run: [NPSStartup]  File not found
O4 - HKLM..\Run: [ORAHSSSessionManager] "C:\Program Files\Livebox\SessionManager\SessionManager.exe" File not found
O4 - HKLM..\Run: [SService] C:\WINDOWS\system32\~.exe File not found
O4 - HKU\S-1-5-21-436374069-1958367476-839522115-1004..\Run: [services] C:\WINDOWS\services.exe File not found
O4 - HKU\S-1-5-21-436374069-1958367476-839522115-1004..\Run: [Steam] "D:\Program Files\steam\Steam.exe" -silent File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: services = C:\WINDOWS\services.exe
O7 - HKU\S-1-5-21-436374069-1958367476-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: services = C:\WINDOWS\services.exe

:Files
C:\WINDOWS\System32\dmwu.exe
C:\WINDOWS\system32\jmdp

:Commands
[emptytemp]
Kliknij Wykonaj skrypt i przedstaw log, który wyświetli się po restarcie systemu.
Następnie
  • Daj nowe logi z OTL'a

 



  • 1

#3 marco polo

marco polo

    Nowy

  • 3 postów

Napisano 30 01 2014 - 14:03

Procesu już w menadżerze nie widzę. Wklejam nowy log OTL, a tego, który wyświetlił mi się po restarcie nie mogę dodać. Wyskoczył mi taki komunikat:

  • 01302014_123128.log

    Nie masz uprawnień do wysyłania tego typu plików

To jest zawartość tego notatnika:
 
All processes killed
========== SERVICES/DRIVERS ==========
Error: No service named IBUpdaterService was found to stop!
Service\Driver key IBUpdaterService not found.
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}\ not found.
Registry key HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}\ not found.
Registry key HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ not found.
Registry key HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Internet Explorer\SearchScopes\{E86A5998-D916-42E1-B5E8-D439BA4F1C2C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E86A5998-D916-42E1-B5E8-D439BA4F1C2C}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\hpqSRMon deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ORAHSSSessionManager deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SService deleted successfully.
Registry value HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\services deleted successfully.
Registry value HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\Steam deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\services deleted successfully.
Registry value HKEY_USERS\S-1-5-21-436374069-1958367476-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\services deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\dmwu.exe not found.
C:\WINDOWS\system32\jmdp folder moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 20442932 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes
 
User: user
->Temp folder emptied: 777934771 bytes
->Temporary Internet Files folder emptied: 24973710 bytes
->Java cache emptied: 41215238 bytes
->FireFox cache emptied: 361316964 bytes
->Google Chrome cache emptied: 127644105 bytes
->Flash cache emptied: 2401 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2148726 bytes
%systemroot%\System32 .tmp files removed: 19214372 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2846318 bytes
RecycleBin emptied: 17145486 bytes
 
Total Files Cleaned = 1 330,00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 01302014_123128
 
Files\Folders moved on Reboot...
 
PendingFileRenameOperations files...
 
Registry entries deleted on Reboot...
 

 

Załączone pliki

  • Załączony plik  OTL.Txt   130,51 KB   367 Ilość pobrań

  • 0

#4 pawel315

pawel315

    Uzależniony od forum

  • 1 553 postów

Napisano 30 01 2014 - 16:14

:Files
C:\Documents and Settings\user\svchost.reg

Ten skrypt jeszcze w OTL'u do wykonania.

Po tej czynności uruchom OTL i kliknij w nim "Sprzątanie"


  • 1

#5 marco polo

marco polo

    Nowy

  • 3 postów

Napisano 30 01 2014 - 21:34

Polecenia wykonane. Jeśli to tyle, to DZIĘKI WIELKIE za koniec tych męczarni! ;D


  • 0

#6 pawel315

pawel315

    Uzależniony od forum

  • 1 553 postów

Napisano 30 01 2014 - 21:59

A nie ma za co ;)
Tak, to wszystko w tym temacie
  • 0

#7 ZbigMatapan

ZbigMatapan

    Nowy

  • 1 postów

Napisano 28 05 2014 - 09:16

Witam, taż mam problem z stij.exe - help.



  • 0

Zobacz więcej tematów z tagiem: stij.exe



Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych