logo elektroda
logo elektroda
X
logo elektroda
Szukanie Zaawansowane
logo elektroda
REKLAMA
REKLAMA
Adblock/uBlockOrigin/AdGuard mogą powodować znikanie niektórych postów z powodu nowej reguły.

Jak usunąć wirusa Google Custom Search z Google Chrome na Windows 10?

rafael96 19 Mar 2016 19:43 1788 7
REKLAMA
Zgłoś naruszenie prawa
| Nowy temat
  • #1 15537856
    rafael96
    Poziom 9  
    Posty: 16
    Ocena: 4
    Witam, mam problem ostatnio z google chrome a mianowicie z wirusem, który mi się wdarł i narzuca mi przeglądarkę oraz jej reklamy "Google Custom Search" .
    Nie wiem jak go usunąć, bo w rozszerzeniach nie ma nic takiego. I jestem "zielony" w tych sprawach.
    Posiadam Windows 10
  • REKLAMA
  • REKLAMA
  • #3 15538055
    rafael96
    Poziom 9  
    Posty: 16
    Ocena: 4
    Wysyłam załączniki
    Załączniki:
    • Addition.txt (49.68 KB) Musisz być zalogowany, aby pobrać ten załącznik.
    • FRST.txt (83.96 KB) Musisz być zalogowany, aby pobrać ten załącznik.
  • Pomocny post
    #4 15538158
    krzychupar
    Poziom 43  
    Posty: 6807
    Pomógł: 1490
    Ocena: 633
    Odinstaluj:
    AVG Web TuneUp
    AVG Zen
    StormFall
    UpdateChecker
    Otwórz notatnik systemowy i wklej:
    Task: {3611BA85-1F04-46C6-A952-AFC1BEEA7399} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {3655DAF4-1498-49A2-9BF6-8111C5A030F9} - System32\Tasks\{6E9CB322-D27D-4771-9C70-D15FF70E5627} => pcalua.exe -a C:\Users\Rafael\Desktop\PandoraMT2\PandoraMT2.exe -d C:\Users\Rafael\Desktop\PandoraMT2
    Task: {491E8F89-3AF4-4780-ADBD-8A281ABFBAF0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {5C805C10-47BD-4A1E-9266-CACB28CF913D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {632DD340-A287-4D0B-951F-24F37E772E14} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {7ABE7B3E-E885-4CB9-9F44-CA539DB65A0D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {94D87539-0CFF-4189-B7A6-6827DF641F67} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {CCDA1553-8D64-4683-8B17-4AE74E127EF6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {D295A86D-DC73-48D3-9625-7D243090CB9F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {DC33D824-CA7A-4AD5-B6A9-93EFFACF3D30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {EEB6E4B6-4949-4B01-8927-86A3A5F53677} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {F5B9D16C-8D0F-4AA0-8009-A221518C8F7D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2923876251-4096457698-3730816502-1002Core.job => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe
    Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2923876251-4096457698-3730816502-1002UA.job => C:\Users\Rafael\AppData\Local\Facebook\Update\FacebookUpdate.exe
    Task: C:\WINDOWS\Tasks\Open Chrome.job => c:\program files (x86)\Google\Chrome\Application\chrome.exeF--new-window hxxp:/toolbar.avg.com/
    ShortcutWithArgument: C:\Users\Rafael\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall\StormFall.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\StormFall.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
    HKU\S-1-5-21-2923876251-4096457698-3730816502-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://flux-cf.com/
    SearchScopes: HKU\.DEFAULT -> {9E9CF7A0-3C73-4F9A-BB06-7630401A3F53} URL =
    SearchScopes: HKU\S-1-5-21-2923876251-4096457698-3730816502-1001 -> {9E9CF7A0-3C73-4F9A-BB06-7630401A3F53} URL =
    SearchScopes: HKU\S-1-5-21-2923876251-4096457698-3730816502-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={3DCF132F-1F06-4B2D-A3BA-D1B3DD387720}&mid=0457443d50a747d39d29f121db340661-e9b2c3f38b4dd4ee9069d88606db39e314971a91&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=fr&d=2014-12-24 22:22:04&v=4.1.6.294&pid=wtu&sg=&sap=dsp&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2923876251-4096457698-3730816502-1002 -> {9E9CF7A0-3C73-4F9A-BB06-7630401A3F53} URL =
    BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.2.4.155\AVG Web TuneUp.dll [2015-12-16] (AVG)
    BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.2.4.155\AVG Web TuneUp.dll [2016-02-03] (AVG)
    FF NewTab: hxxp://www.yoursearching.com/newtab/?type=nt&ts=1451734925&z=3d0af1b6b6ce7ad67a1775cgdz3w4g6m0c6zbtco7w&from=cornl&uid=st1000lm024xhn-m101mbb_s2u5j9bcb02309
    FF DefaultSearchEngine: so-v
    FF Homepage: hxxp://www.yoursearching.com/?type=hp&ts=1451734925&z=3d0af1b6b6ce7ad67a1775cgdz3w4g6m0c6zbtco7w&from=cornl&uid=st1000lm024xhn-m101mbb_s2u5j9bcb02309
    FF HKLM-x32\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\extensions\defsearchp@gmail.com => nie znaleziono
    CHR HomePage: Profile 1 -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pl-pl
    CHR DefaultSearchURL: Profile 1 -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
    CHR DefaultSearchKeyword: Profile 1 -> bing.com
    CHR HKU\S-1-5-21-2923876251-4096457698-3730816502-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
    R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1215560 2016-02-22] ()
    S3 X6va062; \??\C:\WINDOWS\SysWOW64\Drivers\X6va062 [X]
    2016-02-22 17:58 - 2014-12-24 22:21 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
    2016-02-22 17:58 - 2014-12-24 22:21 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
    2016-02-21 11:42 - 2013-08-11 21:55 - 00000000 ____D C:\Users\Rafael\AppData\Roaming\TS3Client
    C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze C:\Users\Rafael\Downloads\FRST64.exe
    Uruchom FRST i kliknij w Fix/Napraw.
  • Pomocny post
    #5 15538170
    Kolobos
    Spec od komputerów
    Posty: 85158
    Pomógł: 17162
    Ocena: 10429
    Odinstaluj
    StormFall
    UpdateChecker

    Fixlist.txt dla FRST:
    Task: {3611BA85-1F04-46C6-A952-AFC1BEEA7399} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {3655DAF4-1498-49A2-9BF6-8111C5A030F9} - System32\Tasks\{6E9CB322-D27D-4771-9C70-D15FF70E5627} => pcalua.exe -a C:\Users\Rafael\Desktop\PandoraMT2\PandoraMT2.exe -d C:\Users\Rafael\Desktop\PandoraMT2
    Task: {491E8F89-3AF4-4780-ADBD-8A281ABFBAF0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {5C805C10-47BD-4A1E-9266-CACB28CF913D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {632DD340-A287-4D0B-951F-24F37E772E14} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {63CC6B0C-708D-4C33-851C-6A1219B0FDB9} - System32\Tasks\AVG_SYS_TASK_0316tb_DELETE => C:\ProgramData\Avg_Update_0316tb\AVG-Secure-Search-Update_0316tb.exe [2016-03-11] ()
    Task: {7ABE7B3E-E885-4CB9-9F44-CA539DB65A0D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {94D87539-0CFF-4189-B7A6-6827DF641F67} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {CCDA1553-8D64-4683-8B17-4AE74E127EF6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {D295A86D-DC73-48D3-9625-7D243090CB9F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {D447262C-D2FB-4884-8975-C6BD5BF9BC7E} - System32\Tasks\Open Chrome => Chrome.exe --new-window hxxp://toolbar.avg.com/almost-done?pid=safeguard&amp;lang=pl
    Task: {DC33D824-CA7A-4AD5-B6A9-93EFFACF3D30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {EEB6E4B6-4949-4B01-8927-86A3A5F53677} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {F5B9D16C-8D0F-4AA0-8009-A221518C8F7D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: C:\WINDOWS\Tasks\Open Chrome.job => c:\program files (x86)\Google\Chrome\Application\chrome.exeF--new-window hxxp:/toolbar.avg.com/
    ShortcutWithArgument: C:\Users\Rafael\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall\StormFall.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\StormFall.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\Users\Rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=76cc2b19-987e-4812-b124-c81ec64d36eb
    2016-03-16 10:36 - 2016-03-11 20:21 - 02977864 _____ () C:\WINDOWS\TEMP\avg_a01852\AVG-Secure-Search-Update_0316tb_clean.exe
    () C:\Windows\Temp\avg_a01852\AVG-Secure-Search-Update_0316tb_clean.exe
    HKU\S-1-5-21-2923876251-4096457698-3730816502-1002\...\Run: [BingSvc] => C:\Users\Rafael\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
    HKU\S-1-5-21-2923876251-4096457698-3730816502-1002\...\MountPoints2: {e216ed1d-5878-11e4-bedb-089e01380a33} - "J:\LG_PC_Programs.exe"
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    Tcpip\..\Interfaces\{9107c3c4-77bd-4da3-8ab4-41cacf4bef26}: [DhcpNameServer] 60.4.0.1 60.4.0.2
    SearchScopes: HKU\S-1-5-21-2923876251-4096457698-3730816502-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={3DCF132F-1F06-4B2D-A3BA-D1B3DD387720}&mid=0457443d50a747d39d29f121db340661-e9b2c3f38b4dd4ee9069d88606db39e314971a91&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=fr&d=2014-12-24 22:22:04&v=4.1.6.294&pid=wtu&sg=&sap=dsp&q={searchTerms}
    FF NewTab: hxxp://www.yoursearching.com/newtab/?type=nt&ts=1451734925&z=3d0af1b6b6ce7ad67a1775cgdz3w4g6m0c6zbtco7w&from=cornl&uid=st1000lm024xhn-m101mbb_s2u5j9bcb02309
    FF DefaultSearchEngine: so-v
    FF Homepage: hxxp://www.yoursearching.com/?type=hp&ts=1451734925&z=3d0af1b6b6ce7ad67a1775cgdz3w4g6m0c6zbtco7w&from=cornl&uid=st1000lm024xhn-m101mbb_s2u5j9bcb02309
    FF Plugin-x32: @AVG.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.6\\npsitesafety.dll [Brak pliku]
    FF SearchPlugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\searchplugins\avg-secure-search.xml [2016-02-22]
    FF SearchPlugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\searchplugins\so-v.xml [2016-03-12]
    FF SearchPlugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\searchplugins\yoursearching.xml [2016-01-02]
    FF Extension: AVG Web TuneUp - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\Extensions\avg@toolbar.xpi [2016-02-22]
    FF Extension: Bing Search - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\Extensions\bingsearch.full@microsoft.com [2015-09-29] [Brak podpisu cyfrowego]
    FF Extension: FirefixTab - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\Extensions\deskCutv2@gmail.com [2016-01-02] [Brak podpisu cyfrowego]
    FF HKLM-x32\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\extensions\defsearchp@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\g3fpacwk.default\extensions\deskCutv2@gmail.com
    CHR HKU\S-1-5-21-2923876251-4096457698-3730816502-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
    S2 MustangService_2015_10_10; C:\ProgramData\TempMoudleSet\MustangSer1259.exe [235776 2015-12-15] (MustangService)
    S3 X6va062; \??\C:\WINDOWS\SysWOW64\Drivers\X6va062 [X]
    2016-03-12 12:59 - 2016-03-12 12:59 - 00000266 __RSH C:\ProgramData\ntuser.pol
    2016-03-12 12:59 - 2016-03-12 12:59 - 00000000 ____D C:\ProgramData\TempMoudleSet
    2016-03-04 19:04 - 2016-03-04 09:12 - 00024064 _____ C:\Users\Rafael\AppData\Roaming\Hack.exe
    2016-03-04 19:04 - 2016-02-25 21:28 - 00533504 _____ C:\Users\Rafael\AppData\Roaming\injetor de hack.exe
    C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
    EmptyTemp:

    W FRST wybierz Napraw.
  • REKLAMA
  • #6 15538385
    rafael96
    Poziom 9  
    Posty: 16
    Ocena: 4
    Jeżeli chodzi o UpdateChecker, to jak to usunąć?
  • REKLAMA
  • #7 15538402
    Kolobos
    Spec od komputerów
    Posty: 85158
    Pomógł: 17162
    Ocena: 10429
    Odinstaluj w programach i funkcjach. Jezeli nie ma lub nie mozesz to pomin.

    Nastepnie wykonaj fixlist.txt, ktory podalem.
  • #8 15538698
    rafael96
    Poziom 9  
    Posty: 16
    Ocena: 4
    Dzięki pomogło :-)
| Nowy temat
Zgłoś naruszenie prawa

Podsumowanie tematu

✨ Użytkownik zgłosił problem z wirusem "Google Custom Search" w przeglądarce Google Chrome na systemie Windows 10. W odpowiedzi zalecano przesłanie logów z programu FRST oraz odinstalowanie podejrzanych programów, takich jak AVG Web TuneUp, AVG Zen, StormFall i UpdateChecker. Użytkownik został również poinstruowany, jak usunąć zadania systemowe związane z wirusem, korzystając z pliku fixlist.txt. Po wykonaniu tych kroków, użytkownik potwierdził, że problem został rozwiązany.
Wygenerowane przez model językowy.
REKLAMA