Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek dla www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Windows 7 32x - Chrome, Ads - logi z FRST.

04 Mar 2015 21:20 828 3
  • Pomocny post
    Spec od komputerów
    Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {607B1756-801E-40E5-8B6D-BEC769C62E23} - System32\Tasks\{9DD7D48F-CC35-4EE8-93A3-6648399B3EFB} => Chrome.exe http://www.skype.com/go/downloading?source=li...mp;amp;ver=6.16.0.105&LastError=12007
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\...\Run: [pricefountainw.exe] => C:\Users\papa smurf\AppData\Local\PriceFountain\pricefountainw.exe HKEY_CURRENT_USER Software\PriceFountain
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\...\MountPoints2: {0494d287-6f3b-11e4-8829-7054d2311e24} - E:\Startme.exe
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\...\MountPoints2: {22d18905-ec7e-11e2-8cdb-7054d2311e24} - F:\windows\Install\Install.exe
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\...\MountPoints2: {ee44608e-a983-11e4-b457-7054d2311e24} - F:\LGAutoRun.exe
    IFEO\bitguard.exe: [Debugger] tasklist.exe
    IFEO\bprotect.exe: [Debugger] tasklist.exe
    IFEO\bpsvc.exe: [Debugger] tasklist.exe
    IFEO\browserdefender.exe: [Debugger] tasklist.exe
    IFEO\browserprotect.exe: [Debugger] tasklist.exe
    IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
    IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
    IFEO\jumpflip: [Debugger] tasklist.exe
    IFEO\protectedsearch.exe: [Debugger] tasklist.exe
    IFEO\searchinstaller.exe: [Debugger] tasklist.exe
    IFEO\searchprotection.exe: [Debugger] tasklist.exe
    IFEO\searchprotector.exe: [Debugger] tasklist.exe
    IFEO\searchsettings.exe: [Debugger] tasklist.exe
    IFEO\searchsettings64.exe: [Debugger] tasklist.exe
    IFEO\snapdo.exe: [Debugger] tasklist.exe
    IFEO\stinst32.exe: [Debugger] tasklist.exe
    IFEO\stinst64.exe: [Debugger] tasklist.exe
    IFEO\umbrella.exe: [Debugger] tasklist.exe
    IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
    IFEO\volaro: [Debugger] tasklist.exe
    IFEO\vonteera: [Debugger] tasklist.exe
    IFEO\websteroids.exe: [Debugger] tasklist.exe
    IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
    HKLM\...\AppCertDlls: [x64] -> c:\program files\music app\datamngr\x64\apcrtldr.dll <===== ATTENTION
    HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Music App\Datamngr\apcrtldr.dll [493600 2014-12-11] () <===== ATTENTION
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
    BootExecute: autocheck autochk * ROBoot \??\C:\Windows\system32\ASOROSet.bin
    GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hppp&...HitachiXHTS545050A7E380_120618TA95113V06PGDSX
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&am...XHTS545050A7E380_120618TA95113V06PGDSX&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hppp&...HitachiXHTS545050A7E380_120618TA95113V06PGDSX
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&am...XHTS545050A7E380_120618TA95113V06PGDSX&q={searchTerms}
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperbar.com/?p=mKO_AwFzXIpYRak5...dKqoifIU43IXu_PhYYsWjb5OOrE2OCM9QTgA,,&q={searchTerms}
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hppp&...HitachiXHTS545050A7E380_120618TA95113V06PGDSX
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.helperbar.com/?p=mKO_AwFzXIpYRak5...dKqoifIU43IXu_PhYYsWjb5OOrE2OCM9QTgA,,&q={searchTerms}
    HKU\S-1-5-21-1841101854-2762329267-2615370173-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hppp&...HitachiXHTS545050A7E380_120618TA95113V06PGDSX
    SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.helperbar.com/?p=mKO_AwFzXIpYRak5...dKqoifIU43IXu_PhYYsWjb5OOrE2OCM9QTgA,,&q={searchTerms}
    SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = http://dts.search.ask.com/sr?src=ieb&gct=...ME002&o=APN10641&apn_ptnrs=AG2&q={searchTerms}
    SearchScopes: HKU\.DEFAULT -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = http://dts.search.ask.com/sr?src=ieb&gct=...ME002&o=APN10641&apn_ptnrs=AG2&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=dspp&...XHTS545050A7E380_120618TA95113V06PGDSX&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=dspp&...XHTS545050A7E380_120618TA95113V06PGDSX&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {E33C4B1C-BCB9-4C12-9C67-0A0935EB9CC7} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1841101854-2762329267-2615370173-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://isearch.omiga-plus.com/web/?utm_source...DSX&ts=1422721793&type=default&q={searchTerms}
    BHO: Music Box Toolbar (Dist. by Musiclab, Inc.) -> {104d74b8-67eb-4f25-8294-04eecfa292e4} -> C:\PROGRA~1\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
    BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files\XTab\SupTab.dll (Thinknice Co. Limited)
    BHO: ace race 1.0.0.7 -> {68182220-3c75-49d9-a9c4-4093d3986279} -> C:\Program Files\ace race\aceracebho.dll (ace race)
    BHO: PriceFountain -> {b608cc98-54de-4775-96c9-097de398500c} -> C:\Users\papa smurf\AppData\Local\PriceFountain\PriceFountainIE.dll No File
    Toolbar: HKLM - Music Box Toolbar (Dist. by Musiclab, Inc.) - {104d74b8-67eb-4f25-8294-04eecfa292e4} - C:\PROGRA~1\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
    FF Homepage: hxxp://rts.dsrlte.com?affID=na
    FF SelectedSearchEngine: Yahoo! Search
    FF DefaultSearchEngine: Yahoo! Search
    FF SearchPlugin: C:\Users\papa smurf\AppData\Roaming\Mozilla\Firefox\Profiles\m89kw03z.default\searchplugins\dsrlte.xml
    FF Extension: PriceFountain - C:\Users\papa smurf\AppData\Roaming\Mozilla\Firefox\Profiles\m89kw03z.default\Extensions\{b6a94784-0ffb-4121-88c6-435139067ee2}.xpi [2015-01-31]
    FF Extension: Adblock Plus - C:\Users\papa smurf\AppData\Roaming\Mozilla\Firefox\Profiles\m89kw03z.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-15]
    FF Extension: No Name - C:\Users\papa smurf\AppData\Roaming\Mozilla\Firefox\Profiles\m89kw03z.default\extensions\{d2f6cfdf-5a59-4a05-b513-291270f3d08b}.xpi [Not Found]
    FF Extension: PriceFountain - C:\Users\papa smurf\AppData\Roaming\Mozilla\Firefox\Profiles\m89kw03z.default\extensions\staged\{b6a94784-0ffb-4121-88c6-435139067ee2}.xpi [2015-01-31]
    FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
    CHR HomePage: Default -> hxxp://isearch.omiga-plus.com/?type=hppp&...HitachiXHTS545050A7E380_120618TA95113V06PGDSX
    CHR StartupUrls: Default -> "hxxp://isearch.omiga-plus.com/?type=hppp&ts=1422721749&from=cor&uid=HitachiXHTS545050A7E380_120618TA95113V06PGDSX"
    CHR DefaultSearchKeyword: Default -> omiga-plus
    CHR HKLM\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\papa smurf\AppData\Local\Torch\Plugins\TorchPlugin.crx [Not Found]
    R2 IHProtect Service; C:\Program Files\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
    R2 MaintainerSvc2.02.5636706; C:\ProgramData\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8\maintainer.exe [123632 2015-03-04] ()
    R2 Update ace race; C:\Program Files\ace race\updateacerace.exe [404208 2015-03-04] ()
    R2 Util ace race; C:\Program Files\ace race\bin\utilacerace.exe [404208 2015-03-04] ()
    R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [464384 2015-01-31] (SysTool PasSame LIMITED) [File not signed]
    R1 {1fceab11-b7eb-4010-811f-3f56268f9366}w; C:\Windows\System32\drivers\{1fceab11-b7eb-4010-811f-3f56268f9366}w.sys [43144 2014-12-30] (StdLib)
    R1 {2b4f8230-394e-4951-9495-bafd44d837da}w; C:\Windows\System32\drivers\{2b4f8230-394e-4951-9495-bafd44d837da}w.sys [43144 2014-12-27] (StdLib)
    R1 {2f76abac-1058-4d18-a9d9-382d3a1b32c3}w; C:\Windows\System32\drivers\{2f76abac-1058-4d18-a9d9-382d3a1b32c3}w.sys [43152 2014-10-15] (StdLib)
    R1 {3211ae5b-d056-4176-9f6e-b51496f003f1}w; C:\Windows\System32\drivers\{3211ae5b-d056-4176-9f6e-b51496f003f1}w.sys [43144 2014-12-12] (StdLib)
    R1 {3283b201-5c22-4a7d-8767-24ec5d376ea3}w; C:\Windows\System32\drivers\{3283b201-5c22-4a7d-8767-24ec5d376ea3}w.sys [43144 2014-12-08] (StdLib)
    R1 {34cccceb-a541-48ac-a26b-92818f06439d}w; C:\Windows\System32\drivers\{34cccceb-a541-48ac-a26b-92818f06439d}w.sys [43144 2015-01-02] (StdLib)
    R1 {35d31228-a1dd-4d11-a2ff-ef6ba162cebd}w; C:\Windows\System32\drivers\{35d31228-a1dd-4d11-a2ff-ef6ba162cebd}w.sys [43152 2014-10-15] (StdLib)
    R1 {47a3b56f-80e6-4ea5-8093-7656ffd5c11a}w; C:\Windows\System32\drivers\{47a3b56f-80e6-4ea5-8093-7656ffd5c11a}w.sys [43144 2014-12-15] (StdLib)
    R1 {55dce8ba-9dec-4013-937e-adbf9317d990}Gw; C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}Gw.sys [52880 2014-08-01] (StdLib)
    R1 {55dce8ba-9dec-4013-937e-adbf9317d990}w; C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w.sys [52880 2014-08-09] (StdLib)
    R1 {7a11bc7a-fa65-4d5a-ade4-5a0d20eea01d}Gw; C:\Windows\System32\drivers\{7a11bc7a-fa65-4d5a-ade4-5a0d20eea01d}Gw.sys [43152 2015-02-03] (StdLib)
    R1 {8aefbcaf-640f-4dca-9a92-ed05ee387238}w; C:\Windows\System32\drivers\{8aefbcaf-640f-4dca-9a92-ed05ee387238}w.sys [43144 2014-12-21] (StdLib)
    R1 {97daceee-c4d3-4ae1-975b-b77d85ce2d13}w; C:\Windows\System32\drivers\{97daceee-c4d3-4ae1-975b-b77d85ce2d13}w.sys [43144 2014-12-24] (StdLib)
    R1 {993baf86-643c-42e9-95e5-094f337533f0}w; C:\Windows\System32\drivers\{993baf86-643c-42e9-95e5-094f337533f0}w.sys [43144 2014-12-17] (StdLib)
    R1 {9eaa49e2-6918-49c4-9a04-be590dd80dc6}w; C:\Windows\System32\drivers\{9eaa49e2-6918-49c4-9a04-be590dd80dc6}w.sys [43144 2015-01-05] (StdLib)
    R1 {a0eab6f4-c7be-497b-981b-51b21c0122f7}w; C:\Windows\System32\drivers\{a0eab6f4-c7be-497b-981b-51b21c0122f7}w.sys [43144 2014-12-06] (StdLib)
    R1 {a5b0d4ec-75a8-4454-a9c1-5675585828ec}w; C:\Windows\System32\drivers\{a5b0d4ec-75a8-4454-a9c1-5675585828ec}w.sys [43152 2014-10-17] (StdLib)
    R1 {c746a0c9-95e3-4ce8-9e9f-58fac8587b02}w; C:\Windows\System32\drivers\{c746a0c9-95e3-4ce8-9e9f-58fac8587b02}w.sys [43152 2014-10-17] (StdLib)
    R1 {ebf755a7-a244-4bc6-ac93-a366f9eccf49}Gw; C:\Windows\System32\drivers\{ebf755a7-a244-4bc6-ac93-a366f9eccf49}Gw.sys [43152 2015-01-31] (StdLib)
    2015-03-04 20:11 - 2015-01-31 17:29 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
    C:\Program Files\Music App\Datamngr\apcrtldr.dll
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix. Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan i później Cleaning.
  • Poziom 6  
    Dziękuję bardzo za pomoc. :)))

    W końcu jest wszystko w porządku. :D

    Łapy w górę!

    Moderowany przez swiercm:

    Poprawiłem. swiercm

  • Spec od komputerów
    Skasuj folder C:\FRST.
    W AdwCleaner użyj opcji Odinstaluj.
    Windows 7 32x - Chrome, Ads - logi z FRST.