Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Adware.elex - Od jakiegoś czasu próbuję uporać się z Adwarem Elex.

Kulcia37 06 Lip 2017 23:00 726 1
  • #1 06 Lip 2017 23:00
    Kulcia37
    Poziom 1  

    Potrzebuję pomocy z Adwarem.elex (prawdopodobnie to nie jedyny adware na tym komputerze). Wykonałem skan za pomocą AdwCleaner, Malwarebytes i FRST. Używam Opery i Windowsa 7.

    0 1
  • #2 06 Lip 2017 23:08
    Kolobos
    Spec od komputerów

    > Adwarem.elex

    Jaki program to wykrywa? Podaj sciezke oraz nazwe pliku w ktorym to wykrywa.

    Odinstaluj: Popcorn Time

    Obok frst.exe utworz plik Fixlist.txt z zawartoscia:
    CloseProcesses:
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Brak pliku
    ContextMenuHandlers03: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Brak pliku
    Task: {05F010EE-C232-43BB-B1BC-66C7D6AE5E6D} - System32\Tasks\{2CB2C7E2-2E31-4AC1-A887-2C726A22FD4F} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {1DC08C5F-513C-4131-B721-64CE93DB7C18} - System32\Tasks\{8D99DD6C-B7F6-45C4-B42E-154FF015D23B} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {1E4B3232-2DB7-43CC-A04D-CFF16504F0B7} - System32\Tasks\{FAA3ACB4-3B36-461E-ADD9-13AF82CFDB96} => Chrome.exe hxxps://www.skype.com/go/downloading?source=l...taller&ver=7.32.0.104&LastError=12002
    Task: {288DC65C-B6DD-4FD0-B6C2-84C85BFB1EC5} - System32\Tasks\{8BB00206-0BB1-4D50-8BC1-D93C20137B65} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {311BCADC-C132-486B-9ABD-7D8ADD61B3C9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-07-01] ()
    Task: {3D8FC758-D3F2-4939-8827-AE6E5E77F1CD} - System32\Tasks\{6D5C3713-EE4F-4C33-85C3-7E1649C77CA6} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {5E9409D7-BCD9-45BD-9D68-0A8E6F735999} - System32\Tasks\{FF4FE6EA-07AE-4365-80D4-CAD7B9E0D3FA} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {6593DEB1-F7DA-423C-B149-47838FA34B8B} - System32\Tasks\{0241ED79-2677-4D1D-BE30-5BCE1E69E41E} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {7F20D9C1-F4ED-47C0-8AE3-EF42356DE628} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-07-01] ()
    Task: {99620C00-9775-4184-AE35-DE248CAA9E50} - System32\Tasks\{9415B1DF-4A46-4977-9A72-3B666BD5A4E0} => pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=402
    Task: {B6FA343E-014B-4DD1-B849-1F785C5F0E1D} - System32\Tasks\{403675C8-0AD5-4F85-AE68-F9A7E12A5790} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe
    Task: {BAB36587-A1F7-4C61-9606-3E83FEABDC6F} - System32\Tasks\{D152B273-C911-4117-BB32-5235648C135A} => C:\Program Files (x86)\Bethesda.net Launcher\BethesdaNetUpdater.exe




    Task: {CABF4615-59F2-4D77-B6C7-EF553CD75A9F} - System32\Tasks\{A9DADF2B-0EA7-4B17-8164-F99942743B4F} => Chrome.exe hxxps://www.skype.com/go/downloading?source=l...taller&ver=7.32.0.104&LastError=12002
    Task: {FFCF91D3-8347-4CC4-B8D9-D4749ACBA63B} - System32\Tasks\Opera scheduled Autoupdate 1465331239 => C:\Program Files (x86)\Opera\launcher.exe [2017-06-27] (Opera Software)
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: G - G:\autorun.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {05a3ff0c-02d2-11e6-a839-806e6f6e6963} - F:\Startup.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {29daf492-914c-11e6-80fc-6c626dccac48} - G:\Install.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {3239eda8-ccec-11e6-872a-6c626dccac48} - G:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {4c5e582c-896b-11e6-a6cf-6c626dccac48} - G:\setup.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {78987d52-475e-11e6-91e1-6c626dccac48} - L:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-1847449465-2007341275-4188990677-1000\...\MountPoints2: {b42e9c29-cf7a-11e6-b2e3-806e6f6e6963} - G:\HiSuiteDownLoader.exe
    AppInit_DLLs: 0 => Brak pliku
    GroupPolicy: Ograniczenia <==== UWAGA
    GroupPolicy\User: Ograniczenia <==== UWAGA
    GroupPolicyUsers\S-1-5-21-1847449465-2007341275-4188990677-1001\User: Ograniczenia <==== UWAGA
    Toolbar: HKU\S-1-5-21-1847449465-2007341275-4188990677-1000 -> Brak nazwy - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Brak pliku
    FF Extension: (Bing Search) - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ohffudd8.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-05-12]
    FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ohffudd8.default\searchplugins\bing-.xml [2016-05-12]
    CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
    OPR Extension: (Amazon Assistant for Opera) - C:\Users\Jakub\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2017-07-03]
    S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [X]
    S2 Wallpaper Engine Service; C:\Users\Jakub\Desktop\wallpaper_engine\bin\wallpaperservice32_c.exe -x64 [X]
    2017-07-06 21:37 - 2016-12-11 18:49 - 00000000 ____D C:\AdwCleaner
    EmptyTemp:

    W FRST wybierz Napraw.

    1