Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Chińszczyzna do usunięcia? Logi FRST.

thcjoe 01 Paź 2015 15:45 423 3
  • Pomocny post
    #2 01 Paź 2015 15:56
    Domino_2
    Pomocny dla użytkowników

    Cytat:

    globalupdate Helper (Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== UWAGA
    CustomCLSID: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000_Classes\CLSID\{61CED8F3-2CB2-4C3C-9484-7530E1127A58}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000_Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll => Brak pliku
    Task: {0335DBE5-D5B3-4F44-BE07-82145349BE21} - System32\Tasks\868351e2-b93b-4ada-80fb-4143bf685520-1-6 => C:\Program Files\MyBrowser 1.0.2V30.07\868351e2-b93b-4ada-80fb-4143bf685520-1-6.exe <==== UWAGA
    Task: {08B68FD5-FD8A-4DD9-9B85-C5AD7B58F4C5} - System32\Tasks\868351e2-b93b-4ada-80fb-4143bf685520-10_user => C:\Program Files\MyBrowser 1.0.2V30.07\868351e2-b93b-4ada-80fb-4143bf685520-10.exe <==== UWAGA
    Task: {1F2C62E1-9F44-4369-BBFF-BDD132D8DABA} - \globalUpdateUpdateTaskMachineCore -> Brak pliku <==== UWAGA
    Task: {233A4D08-4107-487F-9F52-2732E080981C} - \868351e2-b93b-4ada-80fb-4143bf685520-11 -> Brak pliku <==== UWAGA
    Task: {3859B209-6568-4740-98F7-8733E1BA4A88} - \Crossbrowse -> Brak pliku <==== UWAGA
    Task: {3C745706-F76F-4210-BDA2-F9541E0EF577} - \globalUpdateUpdateTaskMachineUA -> Brak pliku <==== UWAGA
    Task: {6D9C49DE-CAB4-4368-B1C5-1B7E7592AC75} - System32\Tasks\868351e2-b93b-4ada-80fb-4143bf685520-5_user => C:\Program Files\MyBrowser 1.0.2V30.07\868351e2-b93b-4ada-80fb-4143bf685520-5.exe <==== UWAGA
    Task: {91B2927A-CA5D-43C9-9E1B-36A246DA8A7A} - System32\Tasks\868351e2-b93b-4ada-80fb-4143bf685520-4 => C:\Program Files\MyBrowser 1.0.2V30.07\868351e2-b93b-4ada-80fb-4143bf685520-4.exe <==== UWAGA
    Task: {9E645B83-229D-4656-958B-A77CB7E99687} - \UCRe4MHoXj6wMVjr -> Brak pliku <==== UWAGA
    Task: {CB12EF70-560F-4ADB-99A8-DA9B1A241B72} - System32\Tasks\868351e2-b93b-4ada-80fb-4143bf685520-5 => C:\Program Files\MyBrowser 1.0.2V30.07\868351e2-b93b-4ada-80fb-4143bf685520-5.exe <==== UWAGA
    Task: {E1713545-A3C4-458E-842F-041187DF3A9B} - System32\Tasks\LaunchPreSignup => C:\Program Files\OLBPre\OLBPre.exe <==== UWAGA
    Task: {E1F093B7-1BA4-4B66-9487-DCE083D143B7} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\admin\AppData\Local\SmartWeb\SmartWebHelper.exe <==== UWAGA
    Task: {EB78BA3A-1F5B-4715-838B-6A569DE30016} - \868351e2-b93b-4ada-80fb-4143bf685520-1-7 -> Brak pliku <==== UWAGA
    Task: {F36ED09F-34E9-4F9C-BFCC-026F91BD22E8} - System32\Tasks\EoKPZl5ZWktIH => C:\Users\admin\AppData\Roaming\EoKPZl5ZWktIH.exe <==== UWAGA
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    GroupPolicyScripts: Ograniczenia <======= UWAGA
    GroupPolicyScripts\User: Ograniczenia <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA




    HKU\S-1-5-21-1608620369-1968598942-2082683332-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-1608620369-1968598942-2082683332-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&am...sungXSSDX840XEVOX120GB_S1D5NSAF671829D&q={searchTerms}
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&...sungXSSDX840XEVOX120GB_S1D5NSAF671829D&q={searchTerms}
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&...sungXSSDX840XEVOX120GB_S1D5NSAF671829D&q={searchTerms}
    SearchScopes: HKLM -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=3540&r=2015/06/20&hid=10925210293105619636&lg=EN&cc=PL&unqvl=90
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1608620369-1968598942-2082683332-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=...29D&ts=1438825731&type=default&q={searchTerms}
    FF NewTab: chrome://quick_start/content/index.html
    FF DefaultSearchEngine: mystartsearch
    FF DefaultSearchEngine,S: WebSearch
    FF DefaultSearchUrl: hxxp://websearch.hotsearches.info/?pid=3540&a...p;lg=EN&cc=PL&unqvl=90&l=1&q=
    FF SearchEngineOrder.1: WebSearch
    FF SearchEngineOrder.1,S: WebSearch
    FF SelectedSearchEngine: mystartsearch
    FF SelectedSearchEngine,S: WebSearch
    FF Homepage: hxxp://www.google.pl/
    FF Keyword.URL: hxxp://websearch.hotsearches.info/?pid=3540&a...p;lg=EN&cc=PL&unqvl=90&l=1&q=
    FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [Brak pliku]
    FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [Brak pliku]
    FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [Brak pliku]
    FF Plugin HKU\S-1-5-21-1608620369-1968598942-2082683332-1000: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll Brak pliku
    FF HKLM\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\searchengine@gmail.com => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\istart_ffnt@gmail.com => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [quick_searchff@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\quick_searchff@gmail.com => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\sweetsearch@gmail.com => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\defsearchp@gmail.com => nie znaleziono
    FF HKLM\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vbstj9ud.default\extensions\deskCutv2@gmail.com => nie znaleziono
    CHR HKLM\...\Chrome\Extension: [olmajmomenlhgihenlbjcfbopoghpckg] - hxxps://clients2.google.com/service/update2/crx
    S2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]
    S4 IHProtect Service; [X]
    S2 nibiguno; C:\Program Files\0B1FB800-1434795994-11E0-0000-2C27D72BE538\knsoA0DB.tmp [X]
    S4 xoperoze; [X]
    S4 zedepory; [X]
    S3 catchme; \??\C:\Users\admin\AppData\Local\Temp\catchme.sys [X]
    S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
    S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
    S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
    S1 ujjqrpvb; \??\C:\Windows\system32\drivers\ujjqrpvb.sys [X]
    S1 wsafd_1_10_0_19; system32\drivers\wsafd_1_10_0_19.sys [X]
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe, odpal go i kliknij Fix/Napraw.

    Przeskanuj komputer programem ADWCleaner i usuń wszystko co znalazł.

    0
  • #3 02 Paź 2015 14:42
    thcjoe
    Poziom 2  

    Podziękował Domino, wszystko hula i śmiga.:)

    0
  • #4 02 Paź 2015 20:44
    Domino_2
    Pomocny dla użytkowników

    Proszę bardzo.
    Możesz usunąć folder C:\FRST.
    Chińszczyzna do usunięcia? Logi FRST.

    0