Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

so-v.com, nie mogę usunąć :(

marcelin4 17 Mar 2016 23:03 432 2
  • #1 17 Mar 2016 23:03
    marcelin4
    Poziom 4  

    Dzień dobry,
    tak jak wiele osób ostatnio, zmagam się z search.so-v.com i sobie nie radzę. Wyczytałam tyle, ile mogłam, ale nie potrafię sama stworzyć fixlist, dlatego proszę o pomoc.
    Przesyłam potrzebne pliki, proszę o gotową fixlist, lub informację, jak ją zrobić, i co potem, bo widzę, że różne osoby dostają różne wskazówki kolejnych kroków...
    Korzystam z mozilli i chroma i na obydwóch przeglądarkach problem jest :(
    pozdrawiam marcelina

    0 2
  • Pomocny post
    #2 17 Mar 2016 23:23
    Kolobos
    Spec od komputerów

    Fixlist.txt dla FRST:
    Task: {3A48D796-6841-4667-8DE9-AFACBE01AE9A} - System32\Tasks\{C77D594C-2597-433F-BB75-CCE5A30B9FBD} => pcalua.exe -a C:\Users\M\Desktop\VirtualDub-1.9.11\auxsetup.exe -d C:\Users\M\Desktop\VirtualDub-1.9.11
    ShortcutWithArgument: C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Adblock Plus.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\Users\M\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\Users\M\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\Users\M\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1




    AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\Run: [UpdateMyDrivers.exe] => C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: D - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {21bfa46d-edf8-11e2-9750-001e101f8924} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {2e65b277-7c2f-11e2-84ed-001e101f82a0} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {2fc0e767-7db5-11e2-88d6-f0bf974617d9} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {5eb2b3eb-4f3b-11e1-a0f3-90004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {5eb2b414-4f3b-11e1-a0f3-90004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {5f2dde9c-680b-11e4-96ed-9a004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {7026d78c-9995-11e4-8e61-001e101f8ed0} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {7ad874c5-2e0d-11e4-95af-9a004ebb106e} - D:\.\StartModem.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {87467bb4-4fe2-11e1-a006-90004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {9836db89-38ec-11e3-9094-001e101faa49} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {a790b3a6-66c8-11e4-9dfb-9a004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {a790b3b4-66c8-11e4-9dfb-9a004ebb106e} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {b6e25406-7c2b-11e2-88fe-f0bf974617d9} - D:\AutoRun.exe
    HKU\S-1-5-21-273706975-1873383841-2640402780-1001\...\MountPoints2: {b6e25416-7c2b-11e2-88fe-f0bf974617d9} - D:\AutoRun.exe
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    SearchScopes: HKU\S-1-5-21-273706975-1873383841-2640402780-1001 -> {74CBA38D-D272-4F79-AF22-B9EBB493598A} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
    SearchScopes: HKU\S-1-5-21-273706975-1873383841-2640402780-1001 -> {FB7EA2CF-78A9-4BBF-929C-7B5D4B18583D} URL = hxxp://rover.ebay.com/rover/1//4?satitle={searchTerms}
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    FF user.js: detected! => C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\lbds6awn.default\user.js [2016-03-17]
    FF SearchPlugin: C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\lbds6awn.default\searchplugins\so-v.xml [2016-03-12]
    StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.so-v.com/?type=ll&uid=11626e5d-1c32-4842-96a0-485d6de1c2f1
    2016-03-17 20:39 - 2016-03-17 21:30 - 00000000 ____D C:\Program Files\AdwCleaner
    C:\Users\M\install_flash_player.exe
    EmptyTemp:

    Po wykonaniu usun katalog C:\FRST.

    0
  • #3 18 Mar 2016 10:59
    marcelin4
    Poziom 4  

    super, naprawione, bardzo dziękuję :))

    0