Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Antywirus wyświetla komunikat że blokuje stronę webundstop.net

emeryt12 06 Mar 2018 01:05 552 6
  • Pomocny post
    #2 06 Mar 2018 06:47
    krzychupar
    Poziom 40  

    Odinstaluj:
    SpyHunter 4
    WiperSoft

    Otwórz notatnik systemowy i wklej:
    Task: {604DC278-E461-41A9-AF7D-CDF05C67B088} - System32\Tasks\{51302E2F-6651-48C6-99E4-231EF5E57088} => C:\Windows\system32\pcalua.exe -a C:\Users\Admin\Desktop\32bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Admin\Desktop
    Task: {96D31FA8-29FD-43DF-9557-870492BCE87A} - System32\Tasks\{156010CC-F55C-48BF-ACE2-7DB2155A1AC5} => c:\program files (x86)\opera\launcher.exe [2018-02-21] (Opera Software)
    Task: {A14E4111-B60E-4212-A97E-A40BDE7F544B} - System32\Tasks\{8118D7D0-D9C6-427F-95FC-54B0A3D20EA2} => C:\Windows\system32\pcalua.exe -a "G:\TATA\Programy X 64\Nero 8 Keygen & Activation Crack\Nero 8 Activation Crack.exe" -d "G:\TATA\Programy X 64\Nero 8 Keygen & Activation Crack"
    Task: {D8AC3DA2-AFAA-4D05-AE28-E9E55E88185F} - System32\Tasks\Opera scheduled Autoupdate 1438849914 => C:\Program Files (x86)\Opera\launcher.exe [2018-02-21] (Opera Software)
    Task: {A7CDD2A9-C2F7-4D51-85C1-D71159E46DAF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2018-03-05] (Enigma Software Group USA, LLC.)
    (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {5169a866-bcfb-11e5-923b-94de80025e22} - K:\LG_PC_Programs.exe
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {fc9fbefd-3abf-11e5-a04a-806e6f6e6963} - D:\Run.exe
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {fe4051ad-462e-11e5-88df-001b10002aec} - "L:\WD SmartWare.exe" autoplay=true
    GroupPolicy: Ograniczenia <==== UWAGA
    GroupPolicy\User: Ograniczenia <==== UWAGA
    AutoConfigURL: [S-1-5-21-1519607844-1542913043-2766703447-1000] => hxxp://webunstop.net/wpad.dat?f7f14a6be8654e6e403c7eea0f08f90738394588
    ManualProxies: 0hxxp://webunstop.net/wpad.dat?f7f14a6be8654e6e403c7eea0f08f90738394588
    FF Plugin HKU\S-1-5-21-1519607844-1542913043-2766703447-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Brak pliku]
    S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe [889016 2018-03-05] (Enigma Software Group USA, LLC.)
    U3 a10sqbyb; C:\Windows\System32\Drivers\a10sqbyb.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    U3 ak3fsxld; C:\Windows\System32\Drivers\ak3fsxld.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    S3 AODDriver; \??\C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver.sys [X]
    2018-03-05 23:19 - 2018-03-05 23:19 - 000022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
    2018-03-05 23:19 - 2018-03-05 23:19 - 000003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
    2018-03-05 23:19 - 2018-03-05 23:19 - 000001087 _____ C:\Users\Admin\Desktop\SpyHunter.lnk
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Enigma Software Group
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\sh4ldr
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\Program Files\Enigma Software Group
    2018-03-05 23:18 - 2018-03-05 23:18 - 005189808 _____ (Enigma Software Group USA, LLC.) C:\Users\Admin\Desktop\SpyHunter-Installer.exe
    2018-03-05 22:30 - 2018-03-05 22:30 - 001174467 _____ C:\Windows\unins000.exe
    2018-03-05 22:29 - 2018-03-05 22:29 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000770 _____ C:\Users\Admin\Desktop\WiperSoft.lnk
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\WiperSoft
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WiperSoft
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\Program Files\WiperSoft
    2018-03-05 22:28 - 2018-03-05 22:28 - 002000496 _____ (WiperSoft) C:\Users\Admin\Desktop\WiperSoft_1.1.1136.exe
    2018-03-05 21:38 - 2018-03-05 22:30 - 000006331 _____ C:\Windows\unins000.dat
    2018-03-05 20:43 - 2018-03-05 20:43 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashRpt
    2018-03-05 23:33 - 2015-09-14 18:16 - 000000000 ____D C:\ProgramData\Emsisoft
    2018-03-05 22:04 - 2015-08-07 06:21 - 000000000 ____D C:\AdwCleaner

    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.

    0
  • Pomocny post
    #4 06 Mar 2018 08:07
    Kolobos
    Spec od komputerów

    Odinstaluj jeszcze: Google Toolbar for Internet Explorer

    Wykonaj taki Fixlist.txt dla FRST:
    CloseProcesses:
    Task: {356F0A76-A3C9-4E8A-9C7B-C2AB53263B1E} - System32\Tasks\{E7A466CF-8902-4067-8BD3-28C9B36FAC12} => G:\TATA Will Rock\bin\WillRock.exe
    Task: {604DC278-E461-41A9-AF7D-CDF05C67B088} - System32\Tasks\{51302E2F-6651-48C6-99E4-231EF5E57088} => C:\Windows\system32\pcalua.exe -a C:\Users\Admin\Desktop\32bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Admin\Desktop
    Task: {96D31FA8-29FD-43DF-9557-870492BCE87A} - System32\Tasks\{156010CC-F55C-48BF-ACE2-7DB2155A1AC5} => c:\program files (x86)\opera\launcher.exe [2018-02-21] (Opera Software)
    Task: {A14E4111-B60E-4212-A97E-A40BDE7F544B} - System32\Tasks\{8118D7D0-D9C6-427F-95FC-54B0A3D20EA2} => C:\Windows\system32\pcalua.exe -a "G:\TATA\Programy X 64\Nero 8 Keygen & Activation Crack\Nero 8 Activation Crack.exe" -d "G:\TATA\Programy X 64\Nero 8 Keygen & Activation Crack"
    Task: {A7CDD2A9-C2F7-4D51-85C1-D71159E46DAF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2018-03-05] (Enigma Software Group USA, LLC.)
    Task: {D8AC3DA2-AFAA-4D05-AE28-E9E55E88185F} - System32\Tasks\Opera scheduled Autoupdate 1438849914 => C:\Program Files (x86)\Opera\launcher.exe [2018-02-21] (Opera Software)
    (WiperSoft) C:\Program Files\WiperSoft\WiperSoft.exe
    (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {5169a866-bcfb-11e5-923b-94de80025e22} - K:\LG_PC_Programs.exe
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {fc9fbefd-3abf-11e5-a04a-806e6f6e6963} - D:\Run.exe
    HKU\S-1-5-21-1519607844-1542913043-2766703447-1000\...\MountPoints2: {fe4051ad-462e-11e5-88df-001b10002aec} - "L:\WD SmartWare.exe" autoplay=true
    HKU\S-1-5-18\...\Run: [script_fcbd] => "H:\Far Cry 3 Blood Dragon\fcbd.bat"
    GroupPolicy: Ograniczenia <==== UWAGA
    GroupPolicy\User: Ograniczenia <==== UWAGA
    AutoConfigURL: [S-1-5-21-1519607844-1542913043-2766703447-1000] => hxxp://webunstop.net/wpad.dat?f7f14a6be8654e6e403c7eea0f08f90738394588
    ManualProxies: 0hxxp://webunstop.net/wpad.dat?f7f14a6be8654e6e403c7eea0f08f90738394588
    RemoveProxy:
    S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe [889016 2018-03-05] (Enigma Software Group USA, LLC.)
    S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2018-03-05] ()
    U3 a10sqbyb; C:\Windows\System32\Drivers\a10sqbyb.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    U3 ak3fsxld; C:\Windows\System32\Drivers\ak3fsxld.sys [0 ] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder)
    S3 AODDriver; \??\C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver.sys [X]
    2018-03-05 23:19 - 2018-03-05 23:19 - 000022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
    2018-03-05 23:19 - 2018-03-05 23:19 - 000003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
    2018-03-05 23:19 - 2018-03-05 23:19 - 000001087 _____ C:\Users\Admin\Desktop\SpyHunter.lnk
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Enigma Software Group
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\sh4ldr
    2018-03-05 23:19 - 2018-03-05 23:19 - 000000000 ____D C:\Program Files\Enigma Software Group
    2018-03-05 23:18 - 2018-03-05 23:18 - 005189808 _____ (Enigma Software Group USA, LLC.) C:\Users\Admin\Desktop\SpyHunter-Installer.exe
    2018-03-05 22:30 - 2018-03-05 22:30 - 001174467 _____ C:\Windows\unins000.exe
    2018-03-05 22:29 - 2018-03-05 22:29 - 000027888 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000770 _____ C:\Users\Admin\Desktop\WiperSoft.lnk
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\WiperSoft
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WiperSoft
    2018-03-05 22:29 - 2018-03-05 22:29 - 000000000 ____D C:\Program Files\WiperSoft
    2018-03-05 22:28 - 2018-03-05 22:28 - 002000496 _____ (WiperSoft) C:\Users\Admin\Desktop\WiperSoft_1.1.1136.exe

    0
  • #5 06 Mar 2018 08:43
    emeryt12
    Poziom 4  

    Zrobione. Póki co 10 minut spokój, log z naprawy w załączniku. Wielkie dzięki za zaangażowanie i konkretną pomoc, jeszcze nie zamykam tematu zobaczę w ciągu dnia czy jest dalej spokój.

    0
  • Pomocny post
    #6 06 Mar 2018 08:55
    Kolobos
    Spec od komputerów

    Usun katalog C:\FRST i to wszystko.

    0
  • #7 06 Mar 2018 11:40
    emeryt12
    Poziom 4  

    Tak zrobię, 4 godziny jest spokój. Problem rozwiązany, jeszcze raz wielkie dzięki!!!

    0