Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

chromesearch.wim- durny wirus!

awezik 23 Lis 2017 22:07 186 1
  • #2 24 Lis 2017 01:00
    krzychupar
    Poziom 40  

    Otwórz notatnik systemowy i wklej:

    CustomCLSID: HKU\S-1-5-21-2622056316-3200336429-3875218594-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Filip\AppData\Local\Microsoft\OneDrive\17.3.6917.0607\amd64\FileSyncShell64.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-2622056316-3200336429-3875218594-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Filip\AppData\Local\Microsoft\OneDrive\17.3.6917.0607\amd64\FileSyncShell64.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-2622056316-3200336429-3875218594-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Filip\AppData\Local\Microsoft\OneDrive\17.3.6917.0607\amd64\FileSyncShell64.dll => Brak pliku
    CustomCLSID: HKU\S-1-5-21-2622056316-3200336429-3875218594-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Filip\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll => Brak pliku
    ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
    ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku
    ContextMenuHandlers1_S-1-5-21-2622056316-3200336429-3875218594-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Filip\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll -> Brak pliku
    ContextMenuHandlers4_S-1-5-21-2622056316-3200336429-3875218594-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Filip\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll -> Brak pliku
    ContextMenuHandlers5_S-1-5-21-2622056316-3200336429-3875218594-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Filip\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll -> Brak pliku
    HKU\S-1-5-21-2622056316-3200336429-3875218594-1001\...\MountPoints2: {e4f7325a-f368-11e6-a5e8-806e6f6e6963} - "D:\AUTORUN.EXE"
    GroupPolicy: Ograniczenia - Chrome <==== UWAGA
    CHR DefaultSearchURL: Default -> hxxps://spiralstab.com/search?q={searchTerms}
    CHR DefaultSearchKeyword: Default -> SpiralsTab
    CHR DefaultSuggestURL: Default -> hxxps://spiralstab.com/suggestions.php?q={searchTerms}
    CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
    R2 AccountService; C:\Program Files\Essentware\Common\AccountService.exe [211136 2016-02-29] (Essentware) <==== UWAGA
    S2 WMI_Hook_Service; Brak ImagePath
    S3 MSICDSetup; \??\D:\CDriver.sys [X]
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.

    0