Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Google Chrome - błąd "o tym ustawieniu decyduje administrator".

desti22 15 Lut 2016 16:37 807 3
  • #1 15 Lut 2016 16:37
    desti22
    Poziom 2  

    Mój problem to: nie mogę zmienić przeglądarki domyślnej, bo "o tym ustawieniu decyduje administrator" i jest przekierowanie przez f.piesearch.

    FRST - http://wklej.to/mSHMH
    Additon - http://wklej.to/PRgBP

    0 3
  • Pomocny post
    #2 15 Lut 2016 16:45
    Kolobos
    Spec od komputerów

    W ustawieniach chrome wylacz przywracanie zestawu stron po starcie przegladarki.

    Odinstaluj:
    Pingzapper version 2.0.1
    SpyHunter 4
    Black Desert
    Black Desert RU Patcher

    Fixlist.txt dla FRST:
    Task: {3248677C-F365-426D-A123-B3F90EECBD54} - System32\Tasks\{55D7473D-8FA1-44D4-A421-D8F98EDF9F4B} => Chrome.exe hxxp://ui.skype.com/ui/0/7.17.0.105/pl/abandoninstall?page=tsProgressBar
    Task: {6A18CB41-E1C9-44A4-9442-2743F2648DEE} - System32\Tasks\{7A458E11-0354-402B-ABC6-05C6D219DE5D} => pcalua.exe -a C:\Users\Dawid\AppData\Local\Temp\Temp1_intel_sct.zip\intel_sct\Setup.exe
    Task: {759BEEFF-91A4-4780-A5DC-F3ABD25053B0} - System32\Tasks\{BBE12E3A-FEF3-43D2-AD18-6E75095CEFE0} => Chrome.exe hxxp://ui.skype.com/ui/0/7.10.0.101/pl/abandoninstall?page=tsProgressBar
    Task: {975F1260-260B-499E-A432-39F213975F59} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2016-02-15] (Enigma Software Group USA, LLC.)
    2016-02-06 12:56 - 2012-06-11 11:57 - 00679424 ___SH () C:\Program Files (x86)\Pingzapper\PZService.exe
    (© 2015 Microsoft Corporation) C:\Users\Dawid\AppData\Local\Microsoft\BingSvc\BingSvc.exe
    () C:\Program Files (x86)\Pingzapper\PZService.exe
    HKU\S-1-5-21-3181964001-125274040-335661678-1000\...\Run: [BingSvc] => C:\Users\Dawid\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-07] (© 2015 Microsoft Corporation)
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-3181964001-125274040-335661678-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-3181964001-125274040-335661678-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%...ge3domB7AU-UMqaA6Yd5SjFhDieP7onxZZCMCuJiGQt_d
    SearchScopes: HKU\S-1-5-21-3181964001-125274040-335661678-1000 -> {A060E7FB-91F5-4c7c-BD0F-4A11A581D878} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=96010190_dg
    FF Extension: Fresh Outlook 1.0.1 - C:\Users\Dawid\AppData\Roaming\Mozilla\Firefox\Profiles\dg3kko6g.default\extensions\{03fa8454-1fbf-4601-a3e7-279a3e09ab57}.xpi [2016-01-07] [Brak podpisu cyfrowego]




    FF Extension: Wooden Seal 1.0.1 - C:\Users\Dawid\AppData\Roaming\Mozilla\Firefox\Profiles\dg3kko6g.default\extensions\{b843da08-7133-4882-b3d3-fece35fe866d}.xpi [2016-02-09] [Brak podpisu cyfrowego]
    CHR HomePage: Default -> hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%...NrWxZISQhhcRbf_k1HMV09Ugq78XuFsT6kxPoAk09ZRVf
    CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://istart.webssearches.com/?type=hp&ts=1416833125&from=exp&uid=ST1000DM003-1CH162_W1D1WSF0XXXXW1D1WSF0","hxxp://istart.webssearches.com/?type=hp&ts=1419690079&from=slbnew&uid=ST1000DM003-1CH162_W1D1WSF0XXXXW1D1WSF0","hxxp://do-search.com/?type=hp&ts=1446233142&z=2f90d69ed917ebcfbf0105fg4z7z2qfo1c7ccgdzbo&from=dae&uid=st1000dm003-1ch162_w1d1wsf0xxxxw1d1wsf0","hxxp://www.istartpageing.com/?type=hp&ts=1449520526&z=1a78ea32c24570bc8f2271agaz6zct0w8o6e3w4o7z&from=cmi&uid=ST1000DM003-1CH162_W1D1WSF0XXXXW1D1WSF0","hxxp://www.istartpageing.com/?type=hp&ts=1449555727&z=badc42ed206b775e2f1f58cg3z3zdtfw9w7w1m0ocq&from=cmi&uid=ST1000DM003-1CH162_W1D1WSF0XXXXW1D1WSF0"
    CHR HKLM\...\Chrome\Extension: [oggihoncmelambjaefiboekididcaffe] - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\oggihoncmelambjaefiboekididcaffe.crx <nie znaleziono>
    CHR HKLM-x32\...\Chrome\Extension: [oggihoncmelambjaefiboekididcaffe] - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\oggihoncmelambjaefiboekididcaffe.crx <nie znaleziono>
    S2 MustangService_2015_10_10; C:\ProgramData\TempMoudleSet\MustangSer316.exe [236816 2015-10-09] (MustangService)
    R2 PingzapperSvc; C:\Program Files (x86)\Pingzapper\PZService.exe [679424 2012-06-11] () [Brak podpisu cyfrowego]
    S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1042304 2016-02-15] (Enigma Software Group USA, LLC.)
    S4 Thorn; C:\Users\Dawid\AppData\Local\THORN\Thorn.exe [56824 2015-10-01] (GGS)
    S2 BlueOcean; C:\ProgramData\\BlueOcean\\BlueOcean.exe -f "C:\ProgramData\\BlueOcean\\BlueOcean.dat" -l -a
    S2 nyneryxo; Brak ImagePath
    S2 roqenufe; Brak ImagePath
    S2 woforemu; Brak ImagePath
    S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2016-02-15] (Enigma Software Group USA, LLC.)
    S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-15] ()
    R1 {03fa8454-1fbf-4601-a3e7-279a3e09ab57}Gw64; C:\Windows\System32\drivers\{03fa8454-1fbf-4601-a3e7-279a3e09ab57}Gw64.sys [48744 2016-01-07] (StdLib)
    R1 {b843da08-7133-4882-b3d3-fece35fe866d}Gw64; C:\Windows\System32\drivers\{b843da08-7133-4882-b3d3-fece35fe866d}Gw64.sys [48752 2016-02-11] (StdLib)
    S3 catchme; \??\C:\ComboFix\catchme.sys [X]
    S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
    S3 MBfilt; system32\drivers\MBfilt64.sys [X]
    2016-02-15 14:38 - 2016-02-15 14:38 - 00003338 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
    2016-02-15 14:38 - 2016-02-15 14:38 - 00001091 _____ C:\Users\Dawid\Desktop\SpyHunter.lnk
    2016-02-15 14:38 - 2016-02-15 14:38 - 00000000 ____D C:\Users\Dawid\AppData\Roaming\Enigma Software Group
    2016-02-15 14:38 - 2016-02-15 14:38 - 00000000 _____ C:\autoexec.bat
    2016-02-15 14:36 - 2016-02-15 14:36 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Dawid\Downloads\sh-remover.exe
    2016-02-15 14:36 - 2016-02-15 14:36 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
    2016-02-15 14:36 - 2016-02-15 14:36 - 00000000 ____D C:\Program Files\Enigma Software Group
    2016-02-11 13:19 - 2016-02-11 01:33 - 00048752 _____ (StdLib) C:\Windows\system32\Drivers\{b843da08-7133-4882-b3d3-fece35fe866d}Gw64.sys
    2016-02-06 12:56 - 2016-02-06 13:06 - 00000000 ____D C:\Program Files (x86)\Pingzapper
    2016-02-06 12:56 - 2016-02-06 12:56 - 00001041 _____ C:\Users\Public\Desktop\Pingzapper.lnk
    2016-02-06 12:56 - 2016-02-06 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pingzapper
    2016-02-06 12:28 - 2016-02-06 12:29 - 17795258 _____ C:\Users\Dawid\Downloads\pz_setup_2.0.1.zip
    2016-02-11 13:28 - 2015-12-08 19:44 - 00000000 ____D C:\AdwCleaner
    2016-01-22 16:16 - 2016-01-21 04:16 - 0000040 ____H () C:\Program Files (x86)\5951c0a4.tmp
    2015-12-07 21:39 - 2015-12-07 18:40 - 9545216 _____ () C:\Users\Dawid\AppData\Roaming\agent.dat
    2015-12-07 21:39 - 2015-11-19 15:27 - 0000428 _____ () C:\Users\Dawid\AppData\Roaming\book.txt
    2015-12-07 21:39 - 2015-12-07 18:40 - 0058272 _____ () C:\Users\Dawid\AppData\Roaming\Config.xml
    2015-12-07 22:02 - 2015-12-07 22:02 - 0005120 _____ () C:\Users\Dawid\AppData\Roaming\GiftBag.db
    2015-12-07 21:39 - 2015-12-07 18:40 - 0017920 _____ () C:\Users\Dawid\AppData\Roaming\Main.dat
    2015-12-07 21:39 - 2015-12-07 17:01 - 0005568 _____ () C:\Users\Dawid\AppData\Roaming\md.xml
    2015-12-07 21:39 - 2015-12-07 17:01 - 0043008 _____ () C:\Users\Dawid\AppData\Roaming\Moses.dat
    2015-12-07 21:39 - 2015-11-19 15:26 - 0004134 _____ () C:\Users\Dawid\AppData\Roaming\pic.jpg
    2015-12-07 21:39 - 2015-11-19 15:26 - 0004134 _____ () C:\Users\Dawid\AppData\Roaming\pic1.jpg
    EmptyTemp:

    0
  • #4 15 Lut 2016 18:55
    Kolobos
    Spec od komputerów

    Usun katalog C:\FRST i to wszystko.
    Google Chrome - błąd "o tym ustawieniu decyduje administrator".

    0