Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

webunstop.net jak się pozbyć

jj9912 03 Lut 2018 17:56 144 2
  • Pomocny post
    #2 03 Lut 2018 17:59
    Kolobos
    Spec od komputerów

    Nie widac, zeby bylo ustawione to proxy.

    Wykonaj Fixlist.txt dla FRST:
    Task: {5A88632D-05F5-4C18-9032-28FE44FE7C2F} - System32\Tasks\Driver Booster SkipUAC (Chude2) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
    Task: {6B4DE03C-E07C-4039-A217-5830602B15B9} - System32\Tasks\{F6162B5A-47E6-4FE9-84DB-466A31B9C7E0} => C:\Windows\system32\pcalua.exe -a "C:\drivers\11. WLAN Driver (Atheros, Broadcom)\Setup.exe" -d "C:\drivers\11. WLAN Driver (Atheros, Broadcom)"
    Task: {AEEFCD5D-4EA3-4AEF-AD4F-876B2A8223B8} - System32\Tasks\{8162D1B3-90DD-4D11-9632-43FF8C5A66F2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Volttrax\uninstall.exe" -c shuz -f "C:\Program Files (x86)\Common Files\Volttrax\uninstall.dat" -a uninstallme 42944ED1-1562-417A-873F-66258328449B DeviceId=c198bef4-09e0-a2c6-79cc-652689c95599 BarcodeId=50027003 ChannelId=3 DistributerName=APSnapdoAMRev
    Task: {B407BC93-C143-4682-AB51-AC9A890AB83F} - System32\Tasks\{D5A9D583-302C-4471-940B-0A932E0DAC14} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{5D642A72-8194-4A22-80DA-11FE610CCA8E}\setup.exe" -c -runfromtemp -l0x0015 -removeonly
    Task: {BA01ED4C-E4C0-46F3-8D55-83E0DB66655E} - System32\Tasks\{0DD96EF3-AB7F-4B94-81C0-B83B07AA7D5E} => C:\Windows\system32\pcalua.exe -a "C:\drivers\TouchPad Driver (Synaptics, Elantech)\Setup.exe" -d "C:\drivers\TouchPad Driver (Synaptics, Elantech)"
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\Run: [ALLUpdate] => D:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [3884720 2017-10-04] (ALLPlayer.org)
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: E - E:\setup.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: G - G:\setup.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {155e3b7a-2cfb-11e7-b874-681729f8a4c0} - H:\HTC_Sync_Manager_PC.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {207afae0-93ab-11e6-abd3-28d244174cc7} - E:\AutoRun.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {2d1785ef-29c2-11e7-a58d-681729f8a4c0} - H:\HTC_Sync_Manager_PC.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {9b27b0a4-e2e0-11e6-b51b-681729f8a4c0} - G:\setup.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {9b27b0aa-e2e0-11e6-b51b-681729f8a4c0} - E:\Setup.exe
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\...\MountPoints2: {fcc6e7a3-962c-11e6-9d06-681729f8a4c0} -
    ShellExecuteHooks: Brak nazwy - {8BC2E310-EABD-11E6-9AFB-64006A5CFC23} - -> Brak pliku
    GroupPolicy: Ograniczenia - Windows Defender <==== UWAGA
    GroupPolicy\User: Ograniczenia <==== UWAGA
    HKU\S-1-5-21-3630138548-138651730-2382155701-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/sv-se/?ocid=iehp
    SearchScopes: HKU\S-1-5-21-3630138548-138651730-2382155701-1000 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7BFFF7D862-7E82-4CA1-ACA8-7A3E568C5E4F%7D&gp=811041
    FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\2475486.js [2018-01-29] <==== UWAGA (Linkuje do pliku *.cfg)
    FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\2475486.cfg [2018-01-29] <==== UWAGA
    S3 btmaux; system32\DRIVERS\btmaux.sys [X]
    S3 btmhsf; system32\DRIVERS\btmhsf.sys [X]
    S3 dump_wmimmc; \??\D:\Program Files (x86)\Metin2\GameGuard\dump_wmimmc.sys [X]
    S3 ibtfltcoex; system32\DRIVERS\iBtFltCoex.sys [X]
    S3 rtsuvc; system32\DRIVERS\rtsuvc.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]
    RemoveProxy:
    2018-02-03 17:20 - 2018-02-03 17:22 - 000000000 ____D C:\AdwCleaner


    Zrob pelny skan przy pomocy Mbam i usun to co wykryje:
    http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

    0
  • #3 03 Lut 2018 18:12
    jj9912
    Poziom 2  

    Mbam czysto. Poklikałam trochę i na razie wydaje się być ok. Bardo dzięki za pomoc. Temat do usunięcia.

    0