Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Chromesearch.win brak możliwości zmiany wyszukiwarki

przemyska 21 Lis 2017 22:07 219 3
  • #2 21 Lis 2017 22:26
    krzychupar
    Poziom 40  

    Odinstaluj:
    ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 3.11.0.12 - Byte Technologies LLC) <==== UWAGA
    WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== UWAGA
    SUPERAntiSpyware

    Otwórz notatnik systemowy i wklej:

    ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-19] (AVAST Software)
    ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ContextMenuHandlers1: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> Brak pliku
    ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ContextMenuHandlers2: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> Brak pliku
    ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ContextMenuHandlers4: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> Brak pliku
    ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Weronika\AppData\Local\MEGAsync\ShellExtX64.dll -> Brak pliku
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
    Task: {1F885916-D9B1-4290-BE4C-304CDC89FFF5} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
    Task: {5EAAB6A3-BDA9-4883-8D2F-FCC547E703CF} - System32\Tasks\AutoPico Daily Restart => C:\Users\Weronika\AppData\Local\Temp\RarSFX0\AutoPico.exe <==== UWAGA
    Task: {6DFAD896-E7B9-454C-A73C-416E4D966B7C} - \psv_Zonein -> Brak pliku <==== UWAGA
    Task: {7FEE4320-9692-41D0-AAF1-96D23CDD8486} - System32\Tasks\Opera scheduled Autoupdate 1498647435 => C:\Users\Weronika\AppData\Local\Programs\Opera\launcher.exe [2017-11-15] (Opera Software)




    Task: {A51B3D18-6937-4884-A71F-04C230A6A669} - System32\Tasks\SecureUpdater => C:\Program Files (x86)\UCBrowser\Security\uclauncher.exe [2016-12-22] (UC Web Inc.) <==== UWAGA
    Task: {CE70F9CF-8FA2-4981-A7EA-8946C655114B} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-06-20] (Byte Technologies LLC) <==== UWAGA
    Task: {D6499AFB-7312-42FD-BDC9-D9188CD34A03} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-06-20] (Byte Technologies LLC) <==== UWAGA
    Hosts:
    HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
    AppInit_DLLs: C:\ProgramData\Hotfresh\Trans-Stock.dll => Brak pliku
    2017-11-21 21:55 - 2017-11-21 21:55 - 000000000 ____D C:\ProgramData\SWCUTemp
    2017-11-21 21:13 - 2017-11-21 21:13 - 000000000 ____D C:\Users\Weronika\AppData\Roaming\SUPERAntiSpyware.com
    2017-11-21 21:13 - 2017-11-21 21:13 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
    2017-11-21 21:13 - 2017-11-21 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2017-11-21 21:13 - 2017-11-21 21:13 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
    2017-11-21 21:12 - 2017-11-21 21:12 - 030094847 _____ C:\Users\Weronika\Downloads\SUPERAntiSpyware Professional 5.6.1042 PL wersja 32 i 64 bitowa.7z
    2017-11-21 21:12 - 2017-11-21 21:12 - 000000000 ____D C:\Users\Weronika\Downloads\SUPERAntiSpyware Professional 5.6.1042 PL wersja 32 i 64 bitowa
    2017-11-21 17:36 - 2017-11-21 17:36 - 000002680 _____ C:\WINDOWS\System32\Tasks\ByteFence Scan
    2017-11-21 17:36 - 2017-11-21 17:36 - 000002590 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
    2017-11-21 17:36 - 2017-11-21 17:36 - 000002578 _____ C:\WINDOWS\System32\Tasks\ByteFence
    2016-12-22 01:05 - 2016-12-22 01:05 - 007316480 _____ () C:\Users\Weronika\AppData\Roaming\agent.dat
    2016-12-22 01:17 - 2016-12-22 01:17 - 000000954 _____ () C:\Users\Weronika\AppData\Roaming\coreavc.ini
    2016-12-22 01:05 - 2016-12-22 01:05 - 000140288 _____ () C:\Users\Weronika\AppData\Roaming\Installer.dat
    2016-12-22 01:05 - 2016-12-22 01:05 - 000018432 _____ () C:\Users\Weronika\AppData\Roaming\Main.dat
    2017-08-21 18:58 - 2017-08-25 21:53 - 000007601 _____ () C:\Users\Weronika\AppData\Local\Resmon.ResmonCfg
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.

    0
  • #4 22 Lis 2017 07:33
    Kolobos
    Spec od komputerów

    Zamiesc nowe logi z FRST, ze skanowania.

    0