Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

s-v.com - jak usunac? Logi FRST

nat.kor 14 Lip 2016 14:08 435 1
  • #2 14 Lip 2016 14:24
    Domino_2
    Pomocny dla użytkowników

    Odinstaluj McAfee Security Scan Plus, WebStorage, PriceFountain i Update for PriceFountain.

    Cytat:

    Task: {14AE5C3B-D8D7-4D46-A327-D7A598C1540C} - System32\Tasks\NataliaDaiquiriOligopolyV2 => Rundll32.exe ObjectorRecirculate.dll,main 7 1 <==== UWAGA
    Task: {19E03D9A-8F82-4884-8E9A-BE474A349B27} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {1C2CBC6E-21AF-41A7-8144-B8F850227145} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {53C4CD4E-DB0D-4BA8-AF8D-C03FC05A411B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {86E015EA-CB60-4864-A790-5A3B6D608AA2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
    Task: {97029728-C5FB-4AFD-AD1E-6FF67F2EEFA8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    Task: {9A28E19B-ACEE-45C4-9EA4-216DB51C98CC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {A80E3EEB-3D4F-427C-82F3-4FC09F1DFC6A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {B1D97FDB-0112-44AC-AA2D-D1D6D65F6C55} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {C290E84C-F688-47D1-9908-8C11C978DB57} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
    Task: {C85A21D1-279A-46C8-9A11-8005828E245B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {CB4A2CC6-A657-446F-AE17-9F0D3AB91B7B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {E4A65DC1-4B89-45BF-938E-A3524E71B353} - System32\Tasks\{3E696D68-8F81-67AA-DEA2-71A099A6192A} => C:\Users\Natalia\AppData\Roaming\PRICEF~1\SYNCVE~1.EXE <==== UWAGA
    Task: {EAB64CBF-B974-417E-831A-852C65EB8ECD} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: C:\WINDOWS\Tasks\{3E696D68-8F81-67AA-DEA2-71A099A6192A}.job => C:\Users\Natalia\AppData\Roaming\PRICEF~1\SYNCVE~1.EXE <==== UWAGA
    Shortcut: C:\Users\Natalia\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.html (Brak pliku)
    ShortcutWithArgument: C:\Users\Natalia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=182cf24b-9c70-4ae3-a6b7-eed27b362c70
    ShortcutWithArgument: C:\Users\Natalia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=182cf24b-9c70-4ae3-a6b7-eed27b362c70




    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=182cf24b-9c70-4ae3-a6b7-eed27b362c70
    ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=182cf24b-9c70-4ae3-a6b7-eed27b362c70
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001\...\Run: [BingSvc] => C:\Users\Natalia\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-25] (© 2015 Microsoft Corporation)
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001\...\MountPoints2: {18096343-96da-11e5-8269-14dda9053c18} - "G:\start.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001\...\MountPoints2: {2be35137-943b-11e5-8268-14dda9053c18} - "G:\setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001\...\MountPoints2: {8f609688-8f03-11e5-8261-28c2dd2a60c6} - "F:\setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [BingSvc] => C:\Users\Natalia\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-25] (© 2015 Microsoft Corporation)
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {18096343-96da-11e5-8269-14dda9053c18} - "G:\start.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {2be35137-943b-11e5-8268-14dda9053c18} - "G:\setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {8f609688-8f03-11e5-8261-28c2dd2a60c6} - "F:\setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {18096343-96da-11e5-8269-14dda9053c18} - "F:\start.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {2be35137-943b-11e5-8268-14dda9053c18} - "G:\Setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {65a08bd1-990f-11e5-8269-14dda9053c18} - "H:\setup.exe"
    HKU\S-1-5-21-1708913304-3353355277-1155838070-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {8f609688-8f03-11e5-8261-28c2dd2a60c6} - "F:\setup.exe"
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-03]
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.so-v.com/?type=ll&uid=182cf24b-9c70-4ae3-a6b7-eed27b362c70
    CHR DefaultSearchURL: Default -> hxxps://pl.search.yahoo.com/search?fr=mcafee_...national&type=C211PL91065D20160406&p={searchTerms}
    CHR DefaultSearchKeyword: Default -> McAfee
    S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
    2016-07-14 13:44 - 2016-05-15 15:44 - 00000000 ____D C:\Users\Natalia\AppData\Roaming\PriceFountainUpdateVer
    2016-07-14 13:26 - 2015-11-24 22:39 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
    C:\Windows\Tasks\{3E696D68-8F81-67AA-DEA2-71A099A6192A}.job
    EmptyTemp:


    Wklej to do notatnika i zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się plik FRST.exe/FRST64.exe, odpal go i kliknij Fix/Napraw.

    0