Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

DNS Unlocker - jak to usunąć (logi z FRST)

shdart 16 Wrz 2015 02:44 690 3
  • Pomocny post
    #3 16 Wrz 2015 08:50
    Domino_2
    Pomocny dla użytkowników

    Odinstaluj SpyHunter 4.

    Cytat:

    (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
    CustomCLSID: HKU\S-1-5-21-1660267270-1344298523-1569691445-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Domownicy\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay Brak pliku
    Task: {081A2234-8F45-48D8-A38F-1B9EBCEB8DB7} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-09-15] (Enigma Software Group USA, LLC.)
    HKU\S-1-5-21-1660267270-1344298523-1569691445-1000\...\Run: [AdobeBridge] => [X]
    ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Brak pliku
    GroupPolicyScripts: Ograniczenia <======= UWAGA
    Tcpip\..\Interfaces\{4A7C54E6-3E88-4CAF-B056-47544F67179E}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-1660267270-1344298523-1569691445-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
    SearchScopes: HKLM-x32 -> DefaultScope Yandex URL = hxxp://yandex.ru/yandsearch?clid=48572&text={searchTerms}
    SearchScopes: HKLM-x32 -> Yandex URL = hxxp://yandex.ru/yandsearch?clid=48572&text={searchTerms}
    SearchScopes: HKU\S-1-5-21-1660267270-1344298523-1569691445-1000 -> DefaultScope {11BFEA9A-84A4-4B79-9751-BB872EABE7B5} URL = hxxp://www.bing.com/search?FORM=U220DF&PC=U220&q={searchTerms}&src=IE-SearchBox
    SearchScopes: HKU\S-1-5-21-1660267270-1344298523-1569691445-1000 -> 3A96A11BDF2046AE8B249C987D17BFB3 URL = hxxp://www.google.com/search?hl=pl&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1660267270-1344298523-1569691445-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-1660267270-1344298523-1569691445-1000 -> {11BFEA9A-84A4-4B79-9751-BB872EABE7B5} URL = hxxp://www.bing.com/search?FORM=U220DF&PC=U220&q={searchTerms}&src=IE-SearchBox
    BHO-x32: Brak nazwy -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Brak pliku
    CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp




    CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\ppGoogleNaClPluginChrome.dll => Brak pliku
    CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\pdf.dll => Brak pliku
    CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Brak pliku
    CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - hxxps://clients2.google.com/service/update2/crx
    R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1026944 2015-09-15] (Enigma Software Group USA, LLC.)
    S3 iPod Service; "C:\Program Files\iPod\bin\iPodService.exe" [X]
    S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
    S3 cpuz130; \??\C:\Users\DOMOWN~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
    S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [X]
    S3 cpuz137; \??\C:\Users\DOMOWN~1\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
    S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
    S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    2015-09-15 22:03 - 2015-09-15 22:03 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Domownicy\Desktop\SpyHunter-Installer.exe
    2015-09-15 22:03 - 2015-09-15 22:03 - 00003338 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
    2015-09-15 22:03 - 2015-09-15 22:03 - 00001093 _____ C:\Users\Domownicy\Desktop\SpyHunter.lnk
    2015-09-14 00:38 - 2015-07-07 03:41 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe, odpal go i kliknij Fix/Napraw.

    0
  • #4 17 Wrz 2015 03:41
    shdart
    Poziom 8  

    Dzięki bardzo. Oczywiście pomogło skutecznie.
    Wciąż nie mam pojęcia kiedy to złapałem i dlaczego NOD32 to puścił.

    0