• Ogłoszenie:

Prośba o sprawdzenie logów - malware newsgmae.pro

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.

Prośba o sprawdzenie logów - malware newsgmae.pro

Postprzez Joka013 01 Mar 2019, 16:15

reklama
Witam serdecznie,
ostatnio mam problem z malware newsgmae.pro które wyskakuje mi przy każdym starcie komputera.
Proszę o sprawdzenie załączonych logów. FRST w załącznikach.

GMER:
GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2019-03-01 15:15:11
Windows 6.2.9200 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-6 KINGSTON_SH103S3240G rev.580ABBF0 223,57GB
Running: 8h1qbhc4.exe; Driver: C:\Users\Yokens\AppData\Local\Temp\fxlcqpob.sys


---- User IAT/EAT - GMER 2.2 ----

IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4132] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4140] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4148] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5508] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5968] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5372] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ff80b67002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\SHLWAPI.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\MSCTF.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\SYSTEM32\OLEACC.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7fffee202635] C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\chrome_child.dll
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[GDI32.dll!GetStockObject] [7ff80b67006c]
IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4920] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\COMCTL32.dll[USER32.dll!RegisterClassW] [7ff809a4002c]

---- Threads - GMER 2.2 ----

Thread C:\Windows\system32\csrss.exe [664:688] fffff9600095c2d0

---- Registry - GMER 2.2 ----

Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemStartTime 0xD0 0xC3 0x77 0x57 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemLastStartTime 0x3D 0x6E 0xB2 0x21 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFStartTime 0xF5 0x3E 0x78 0x57 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFLastStartTime 0x41 0x10 0xB3 0x21 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData\BootLanguages@pl-PL 81
Reg HKLM\SYSTEM\CurrentControlSet\Control\Creative Tech\20X\BMix\{00000007-00000000-00000001-00001102-00000005-00231102}@Crc32 1821742738
Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\GSM4B7084786_02_07D9_4A^FE32A8C00E30529A3CFB2645E66DCEAD@Timestamp 0x11 0x18 0xD8 0x58 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid 712
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{9F271346-D6AD-4B3A-AC85-06D6D6C98BF7}\Connection@Name Reusable ISATAP Interface {9F271346-D6AD-4B3A-AC85-06D6D6C98BF7}
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Executive@UuidSequenceNumber 3900072
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed 2093265447
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BootId 95
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BaseTime 559707864
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime 15561
Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID e911fb48-ca95-4dc5-84f1-101ae7d
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\WdiContextLog@FileCounter 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{7d50ddd3-60d2-4005-8b4b-344f4909c1ff}@LastProbeTime 1551451688
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{9F271346-D6AD-4B3A-AC85-06D6D6C98BF7}@InterfaceName Reusable ISATAP Interface {9F271346-D6AD-4B3A-AC85-06D6D6C98BF7}
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{9F271346-D6AD-4B3A-AC85-06D6D6C98BF7}@ReusableType 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 4597
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 1782
Reg HKLM\SYSTEM\CurrentControlSet\Services\srvnet\Parameters@MajorSequence 93
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C5DCE1CC-5FE7-4BF7-889E-038CC68F60BF}@LeaseObtainedTime 1551448088
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C5DCE1CC-5FE7-4BF7-889E-038CC68F60BF}@T1 1551451688
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C5DCE1CC-5FE7-4BF7-889E-038CC68F60BF}@T2 1551454388
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C5DCE1CC-5FE7-4BF7-889E-038CC68F60BF}@LeaseTerminatesTime 1551455288
Reg HKLM\SYSTEM\CurrentControlSet\Services\Winmgmt\Parameters@ServiceDllUnloadOnStop 0
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer@GlobalAssocChangedCounter 133
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.txt\OpenWithList@MRUList adbc
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown 1

---- EOF - GMER 2.2 ----
Załączniki
Shortcut.txt
(46.96 KiB) Ściągnięto 256 razy
Addition.txt
(29.43 KiB) Ściągnięto 256 razy
FRST.txt
(21.7 KiB) Ściągnięto 265 razy
Joka013
~user
 
Posty: 4
Dołączenie: 15 Cze 2007, 10:49
Miejscowość: okolice Piły



Prośba o sprawdzenie logów - malware newsgmae.pro

Postprzez ordynat 01 Mar 2019, 17:44

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:
Task: {53697D04-EDBA-41CA-9F9B-77B1EF1582B6} - System32\Tasks\Yokens => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Yokens /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"
HKU\S-1-5-21-1202399807-1177015557-480857921-1002\...\Run: [Yokens] => cmd.exe /c start www.dipladoks.org
C:\Users\Yokens\AppData\Roaming\qnapi.ini
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

Napisz, czy problem znikł?
.

Autor postu otrzymał pochwałę
ordynat
~user
 
Posty: 4765
Dołączenie: 02 Kwi 2010, 11:18
Pochwały: 866



Prośba o sprawdzenie logów - malware newsgmae.pro

Postprzez Joka013 01 Mar 2019, 21:38

Super, dzięki za pomoc. Wszystko wróciło do normy.
Joka013
~user
 
Posty: 4
Dołączenie: 15 Cze 2007, 10:49
Miejscowość: okolice Piły




Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 2 gości