Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Jak usunąć so-v.com -

weraat 17 Mar 2016 23:56 1359 1
  • #2 18 Mar 2016 00:02
    Kolobos
    Spec od komputerów

    Zainstaluj:
    http://ninite.com/java/
    oraz https://support.microsoft.com/pl-pl/kb/2545227

    Fixlist.txt dla FRST:
    Task: {08E18DFC-4CEF-4B78-B27E-4D010D2F3EDE} - System32\Tasks\Price Fountain => C:\Users\Weronika\AppData\Roaming\PRICEF~1\UPDATE~1\UPDATE~1.EXE <==== UWAGA
    Task: {20DC1C6B-BAEC-4582-B3BF-02AA72721C64} - System32\Tasks\{353A7E7E-43AF-4F12-BAF0-667C9315E5CD} => Firefox.exe hxxp://www.skype.com/go/downloading?source=li...r&amp;ver=6.6.0.106&amp;LastError=404
    Task: {292F585D-1F24-44B8-A56C-D1A64F531A9C} - System32\Tasks\WeronikaGuessesBooziestV2 => Rundll32.exe SpacelessPhenomenon.dll,main 7 1 <==== UWAGA
    Task: {328421AE-7FC7-4B9B-BDF6-13A60033E0D1} - System32\Tasks\{F497A41A-7932-401C-9600-BA933EEA54F1} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.80.101/pl/abandoninstall?page=tsProgressBar
    Task: C:\Windows\Tasks\Price Fountain.job => C:\Users\Weronika\AppData\Roaming\PRICEF~1\UPDATE~1\UPDATE~1.EXE <==== UWAGA
    ShortcutWithArgument: C:\Users\Weronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8
    ShortcutWithArgument: C:\Users\Weronika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8
    ShortcutWithArgument: C:\Users\Weronika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8




    ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8
    HKU\S-1-5-21-1537327715-1647717004-1712927746-1001\...\Run: [AdobeBridge] => [X]
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    SearchScopes: HKU\S-1-5-21-1537327715-1647717004-1712927746-1001 -> {1F842B59-A95D-4AB2-9374-4C8A44AD09C1} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
    SearchScopes: HKU\S-1-5-21-1537327715-1647717004-1712927746-1001 -> {ielnksrch} URL = hxxp://www.bing.com/search?q={searchTerms}
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll => Brak pliku
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=144...d=WDCXWD3200BPVT-55ZEST0_WD-WXL1E61JSMC9JSMC9
    FF HKLM-x32\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\Weronika\AppData\Roaming\Mozilla\Firefox\Profiles\0oai23ec.default\extensions\defsearchp@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Weronika\AppData\Roaming\Mozilla\Firefox\Profiles\0oai23ec.default\extensions\deskCutv2@gmail.com => nie znaleziono
    StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.so-v.com/?type=ll&uid=9623c225-c9bd-4f4f-bc84-49f5914862c8
    S2 DeskTop_F; C:\ProgramData\desktopfind\desktop173.exe [236728 2016-03-16] (DeskTopService)
    R3 CLMirrorDriver; system32\DRIVERS\CLMirrorDriver.sys [X]
    S3 RSPCIESTOR; system32\DRIVERS\RtsPStor.sys [X]
    2016-03-17 17:59 - 2016-03-17 17:59 - 00000000 ____D C:\ProgramData\desktopfind
    2016-02-26 11:00 - 2016-02-26 11:00 - 00000000 ___HD C:\Users\Weronika\AppData\Roaming\GoldenGate
    2016-02-26 10:59 - 2016-02-26 11:01 - 00000000 ____D C:\Users\Weronika\AppData\Roaming\Gameo
    2016-02-26 10:59 - 2016-02-26 11:00 - 00000000 ____D C:\Users\Weronika\AppData\Local\Gameo
    2016-02-26 10:59 - 2016-02-26 10:59 - 00000176 _____ C:\Users\Weronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
    2016-01-02 13:11 - 2016-01-02 13:11 - 00000000 ____D C:\Program Files (x86)\TDataDld
    2016-01-02 13:10 - 2016-03-17 23:10 - 00000304 _____ C:\Windows\Tasks\Price Fountain.job
    2016-01-02 13:10 - 2016-01-02 13:10 - 00003464 _____ C:\Windows\System32\Tasks\WeronikaGuessesBooziestV2
    2016-01-02 13:10 - 2016-01-02 13:10 - 00003258 _____ C:\Windows\System32\Tasks\Price Fountain
    2016-01-02 13:10 - 2016-01-02 13:10 - 00000000 ____D C:\Users\Weronika\AppData\Roaming\PriceFountain
    2015-12-27 13:20 - 2015-12-27 13:20 - 00002377 _____ C:\Windows\SysWOW64\findit.xml
    EmptyTemp:

    Po wykonaniu usun katalog C:\FRST.

    0