Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

[Rozwiązano] Counterfix nie mogę usunąć tego adware

lolek2417 08 Lut 2018 22:42 258 2
  • #2 09 Lut 2018 08:11
    Kolobos
    Spec od komputerów

    Fixlist.txt dla FRST:
    Task: {4FD031BE-583C-4ACF-A557-E044E86C03A3} - System32\Tasks\{0B4D71F9-1975-E8F2-799D-DB26E77A996A} => C:\Windows\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\cc402c09\9e189550.dll" <==== UWAGA
    Task: {5E2F92FF-8A70-404A-8331-B6B0B01D2864} - System32\Tasks\{F86755C2-8DB0-4867-BF1C-EE453A75DF83} => C:\Windows\system32\pcalua.exe -a D:\instalki\ActivationAcronisTIH.exe -d D:\instalki
    Task: {7AAAC804-BE97-4AF0-BC73-093B6AEF4E93} - System32\Tasks\{087E0C47-0B78-7A0D-0511-0D050B091179} => C:\Windows\system32\WindowsPowershell\v1.0\powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand
    Task: {7F29E2BE-831E-4B07-A783-7770A2785F99} - System32\Tasks\{E3DE4F87-18DA-40DD-9B74-96ACED1C6E8F} => C:\Windows\system32\pcalua.exe -a D:\instalki\XperiaCompanion.exe -d D:\instalki
    Task: {BEE8943B-C54B-4498-AEB7-083ACE660D81} - System32\Tasks\{811360E6-B5E4-4275-A937-AD94D48A2749} => C:\Windows\system32\pcalua.exe -a "C:\Users\Grzes\Desktop\Acronis True Image Home 2014 17.0\Acronis True Image Home 2014 17.0 Build 6614 Premium [PL]\Activation TIH\Activation TIH.exe" -d "C:\Users\Grzes\Desktop\Acronis True Image Home 2014 17.0\Acronis True Image Home 2014 17.0 Build 6614 Premium [PL]\Activation TIH"
    Task: {C9C3B8B1-F6CE-4B03-997D-3457987EB7F5} - System32\Tasks\524763A0-3EFE-6239-A0A5-92AC29FD36F5 => C:\Windows\SysWOW64\regsvr32.exe /n /s /i:"/367997e69871612f /q" "C:\Users\Grzes\AppData\Local\2A365B~1\{9E189~1."
    Hosts:
    HKU\S-1-5-21-1220836415-4008592948-1329472403-1000\...\MountPoints2: {2c8d641a-b0a3-11e6-8412-fcaa143d8075} - F:\setup.exe
    GroupPolicy: Ograniczenia <==== UWAGA
    Tcpip\Parameters: [NameServer] 82.163.143.176 82.163.142.178
    Tcpip\..\Interfaces\{D7D3BD2E-2D3E-4546-A828-BF6B4876A277}: [NameServer] 82.163.143.176 82.163.142.178
    FF HKU\S-1-5-21-1220836415-4008592948-1329472403-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Grzes\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono
    CHR HKU\S-1-5-21-1220836415-4008592948-1329472403-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
    U3 acn1zmhb; C:\Windows\System32\Drivers\acn1zmhb.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    S3 cpuz137; \??\C:\Users\Grzes\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X] <==== UWAGA
    S3 dcdbas; system32\DRIVERS\dcdbas64.sys [X]
    S2 WinRing0_1_2_0; \??\D:\Program Files (x86)\EVGA\Precision XOC\WinRing0\WinRing0x64.sys [X]
    2018-02-08 22:20 - 2018-02-08 22:25 - 000000000 ____D C:\AdwCleaner
    2018-02-08 17:19 - 2018-02-08 17:20 - 000003728 _____ C:\Windows\System32\Tasks\{0B4D71F9-1975-E8F2-799D-DB26E77A996A}
    2018-02-08 17:19 - 2018-02-08 17:19 - 000023344 _____ C:\Windows\System32\Tasks\{087E0C47-0B78-7A0D-0511-0D050B091179}
    2018-02-08 17:18 - 2018-02-08 17:19 - 000004214 _____ C:\Windows\System32\Tasks\524763A0-3EFE-6239-A0A5-92AC29FD36F5
    2018-02-08 17:18 - 2018-02-08 17:19 - 000000000 ____D C:\Users\Grzes\AppData\Local\2A365B00-3CFD-5DB8-50D7-63F8847756E5
    2018-02-08 17:18 - 2018-02-08 17:18 - 000000000 ____D C:\Users\Grzes\AppData\Roaming\Jetmedia
    2017-05-05 13:37 - 2017-05-05 13:37 - 000182656 _____ () C:\Users\Grzes\comcat5.dll

    0