Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

HP Pavilion - Wyskakujące reklamy.Logi FRST

stasiekjunior 30 Mar 2016 18:59 576 7
  • #2 30 Mar 2016 19:16
    krzychupar
    Poziom 40  

    Otwórz notatnik systemowy i wklej:
    Task: {1338872E-FE84-4D97-8916-C61ED32D8684} - System32\Tasks\{5E0ECE47-A360-43F8-ACDD-B13E98CE4052} => pcalua.exe -a C:\Users\Emila\Desktop\subeditcodecpack_b4072_install.exe -d C:\Users\Emila\Desktop
    Task: {154F90B5-F16E-4846-B31C-BBA5CB1EFCBB} - System32\Tasks\{AD780401-E03A-4C11-84AF-EBAC4A038303} => pcalua.exe -a "C:\Program Files\Kwiatowa Przygoda\unins000.exe" -d "C:\Program Files\Kwiatowa Przygoda"
    Task: {CAF587B8-43FB-464B-ABDE-F4C04D1AEA05} - System32\Tasks\{4E143EAB-0C10-4303-91B5-1509D9FB4553} => pcalua.exe -a "C:\Users\Emila\Desktop\NokiaFREE Unlock Codes Calculator\uninst.exe" -d "C:\Users\Emila\Desktop\NokiaFREE Unlock Codes Calculator"
    Task: {CEF577F3-B445-4F42-AF82-8661C91C924D} - System32\Tasks\{BEE5B382-9959-4011-8C57-47B00FF27EDB} => pcalua.exe -a C:\Users\Emila\Desktop\Opera_1063_int_Setup.exe -d C:\Users\Emila\Desktop
    Task: {DCE18126-3E4C-45BC-A575-4D8F5A8B4A4C} - System32\Tasks\{61C69F75-0CB2-4272-98C6-0321818D819A} => pcalua.exe -a "C:\Program Files\IncrediMail\Bin\ImSetup.exe" -c /uninstallProduct /addon:incredimail
    Task: {F1E68788-37FC-4B89-AB0D-467E3D0DFEA3} - System32\Tasks\{3616C549-81A7-4693-AF1E-114B66C8E072} => pcalua.exe -a C:\Users\Emila\Downloads\super-mario-3-mario-forever-5-103-en-win.exe -d C:\Users\Emila\Downloads
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    CHR HKU\S-1-5-21-3647567995-2961481781-677987582-1000\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-3647567995-2961481781-677987582-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?PC=AV01
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
    HKU\S-1-5-21-3647567995-2961481781-677987582-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKU\S-1-5-21-3647567995-2961481781-677987582-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?PC=AV01




    SearchScopes: HKLM -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKU\S-1-5-21-3647567995-2961481781-677987582-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKU\S-1-5-21-3647567995-2961481781-677987582-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
    CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUJQoPUgFAFBhBJVoNTA1JQgEOIQsKBBRAFAdBIwFeVAhAGFMFIk0FA1oDB0VXfV5bFElXTwhnKUpbDk8UU2FRJVhLFEsU"
    CHR HKLM\...\Chrome\Extension: [kidmhllhjmmmnpbiaihafgchacpmokof] - C:\Program Files\Lyrmix\133.crx <nie znaleziono>
    S3 catchme; \??\C:\Users\Emila\AppData\Local\Temp\catchme.sys [X]
    S3 cpuz134; \??\C:\Users\Emila\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
    S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
    S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]
    S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
    S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    2016-03-28 11:32 - 2016-03-28 11:32 - 00009104 _____ C:\ComboFix.txt
    2016-03-28 11:11 - 2016-03-28 11:12 - 05659241 ____R (Swearware) C:\Users\Emila\Downloads\ComboFix.exe
    2016-03-28 11:32 - 2014-04-19 11:26 - 00000000 ____D C:\Qoobox
    2016-03-28 11:06 - 2014-04-20 12:16 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze C:\Users\Emila\Downloads\
    Uruchom FRST i kliknij w Fix/Napraw.

    0
  • #3 30 Mar 2016 19:19
    Acorus 20
    Spec od komputerów

    Odinstaluj Java(TM) 6 Update 26, Qtrax Player. Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {614E7239-FBB5-4A24-8535-7695631EEA28} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3647567995-2961481781-677987582-1000UA => C:\Users\Emila\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-04] (Facebook Inc.)
    Task: {8A50F7AF-5E2D-40B9-AACF-E2C4362A502D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3647567995-2961481781-677987582-1000Core => C:\Users\Emila\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-04] (Facebook Inc.)
    Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3647567995-2961481781-677987582-1000Core.job => C:\Users\Emila\AppData\Local\Facebook\Update\FacebookUpdate.exe
    Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3647567995-2961481781-677987582-1000UA.job => C:\Users\Emila\AppData\Local\Facebook\Update\FacebookUpdate.exe
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    CHR HKU\S-1-5-21-3647567995-2961481781-677987582-1000\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-3647567995-2961481781-677987582-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    SearchScopes: HKLM -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKU\S-1-5-21-3647567995-2961481781-677987582-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    SearchScopes: HKU\S-1-5-21-3647567995-2961481781-677987582-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUJQoPUgFAFBhBJVoNTA1JQgEOIQsKBBRAFAdBIwFeVAhAGFMFIk0FA1oDB0VXfV5bFElXTwhnKUpbDk8UU2FRJVhLFEsU"
    OPR Extension: (Digital More) - C:\Users\Emila\AppData\Roaming\Opera Software\Opera Stable\Extensions\kofliegnkcgbdkmlphcidohcgfgomcbn [2015-05-01]
    S3 catchme; \??\C:\Users\Emila\AppData\Local\Temp\catchme.sys [X]
    S3 cpuz134; \??\C:\Users\Emila\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
    S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
    S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]
    S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
    S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    2016-03-28 11:06 - 2014-04-20 12:16 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.
    Reset Chrome: https://support.google.com/chrome/answer/3296214?hl=pl

    0
  • #4 30 Mar 2016 19:39
    stasiekjunior
    Poziom 8  

    Niestety powyższe zabiegi nie dały efektu. Czym mogę jeszcze przeskanować system ?

    0
  • #5 30 Mar 2016 19:46
    Acorus 20
    Spec od komputerów

    W jakich przeglądarkach?

    0
  • #6 30 Mar 2016 19:56
    stasiekjunior
    Poziom 8  

    Google Chrome.

    0
  • #8 04 Lip 2016 12:20
    stasiekjunior
    Poziom 8  

    Problem został rozwiązany.

    0