Elektroda.pl
Elektroda.pl
X

Search our partners

Find the latest content on electronic components. Datasheets.com
Elektroda.pl
Please add exception to AdBlock for elektroda.pl.
If you watch the ads, you support portal and users.

gameharbor.org - rosyjska strona uruchamiana przy starcie systemu

17 Sep 2014 10:14 891 1
  • IT specialist
    Odinstaluj: SpyHunter

    Fixlist.txt dla FRST:
    HKU\S-1-5-21-186484493-3649492625-3663678741-1000\...\Run: [CMD] => cmd.exe /c start http://extendedunlimited.org && exit <===== ATTENTION
    AppInit_DLLs: ú => ú File Not Found
    GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
    FF Extension: webget - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\43ltpszs.default\Extensions\{9edd0ea8-2819-47c2-8320-b007d5996f8a}.xpi [2014-05-18]
    CHR Extension: (No Name) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjncaimkjjplfepbejemfcoimjgebno [2014-07-20]
    CHR Extension: (MySearch) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gailcedhjoeeemjpdeggcfjdppgdlnpg [2014-07-20]
    CHR Extension: (No Name) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iklgpchfbohgmghgfagediakopecfmbm [2014-09-01]
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    S2 43c1b835; "C:\Windows\system32\rundll32.exe" "c:\progra~1\sssupp~1\AssistantSvc.dll",service
    S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
    S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
    S3 catchme; \??\C:\Users\Daniel\AppData\Local\Temp\catchme.sys [X]
    S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
    2014-09-17 09:57 - 2014-09-17 09:58 - 00000000 ____D () C:\AdwCleaner
    Task: {03D6B981-1208-4D11-A6AE-F73AE8C23736} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-186484493-3649492625-3663678741-1000UA => C:\Users\Daniel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-06] (Facebook Inc.)
    Task: {60181B92-1469-4279-99A0-CBA5B2AB3AAB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-186484493-3649492625-3663678741-1000Core => C:\Users\Daniel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-06] (Facebook Inc.)
    Task: {CF8693A7-4D9F-4BBD-85EB-33E867E7B98B} - System32\Tasks\pennybee Runner => C:\PROGRA~2\pennybee\pennybee.exe
    Task: C:\Windows\Tasks\pennybee Runner.job => C:\PROGRA~2\pennybee\pennybee.exe
    Task: C:\Windows\Tasks\Tempo Runner.job => C:\PROGRA~2\pennybee\pennybee.exe

    Po wykonaniu usun katalog C:\FRST i to wszystko.