Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

proszę o sprawdzenie loga FRST

uomo 07 Mar 2018 19:44 216 3
  • CControls
  • #2 07 Mar 2018 20:10
    krzychupar
    Poziom 40  

    Odinstaluj:
    SpeedUpMyComputer
    WPM17.8.0.3393
    istartsurf uninstall
    HQ-Video-Pro-1.4
    AVG Web TuneUp

    Otwórz notatnik systemowy i wklej:
    ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
    Task: {84346830-275F-4770-8164-02BF4735AA27} - System32\Tasks\HQ-Video-Pro-1.4-chromeinstaller => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-chromeinstaller.exe <==== UWAGA
    Task: {85A55682-6593-4450-82EB-60C89BA6701E} - System32\Tasks\HQ-Video-Pro-1.4-firefoxinstaller => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-firefoxinstaller.exe <==== UWAGA
    Task: {9DB4C6E3-FD86-4F99-8FB4-769ECF1D91BC} - System32\Tasks\HQ-Video-Pro-1.4-enabler => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-enabler.exe <==== UWAGA
    Task: {B66A7B18-7FCD-4829-B575-A80615CECF6E} - System32\Tasks\HQ-Video-Pro-1.4-updater => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-updater.exe <==== UWAGA
    Task: {BD756EAC-CDD8-4B5D-AACF-3B353B42CB6C} - System32\Tasks\HQ-Video-Pro-1.4-codedownloader => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-codedownloader.exe <==== UWAGA
    Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-chromeinstaller.exe <==== UWAGA
    Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-codedownloader.exeȺ/reinstallapp /runfrom=task /agentregpath='HQ-Video-Pro-1.4' /appid=52920 /srcid='001182' /subid='0' /zdata='0' /bic=16110C5D048D4F37A4836DE9DBC6D597IE /verifier=8a3c904749a2779f95e8dd8d85c9a0e5 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393881887 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /codedownloaddomain=hxxp:/app-static.crossrider.com /defbro=ff /allusers /autoupdateulr='hxxp:/update.srvstatsdata.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== UWAGA
    Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-enabler.exeȎ/enablebho /agentregpath='HQ-Video-Pro-1.4' /appid=52920 /srcid='001182' /subid='0' /zdata='0' /bic=16110C5D048D4F37A4836DE9DBC6D597IE /verifier=8a3c904749a2779f95e8dd8d85c9a0e5 /installerversion=1_34_2_13 /installationtime=1393881887 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110511291120 /defbro=ff /useiepol /allusers /autoupdateulr='hxxp:/update.srvstatsdata.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== UWAGA
    Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-firefoxinstaller.exeѝ/installxpi /agentregpath='HQ-Video-Pro-1.4' /extensionfilepath C:\Program Files (x86)\HQ-Video-Pro-1.4\52920.xpi' /appid=52920 /srcid='001182' /subid='0' /zdata='0' /bic=16110C5D048D4F37A4836DE9DBC6D597IE /verifier=8a3c904749a2779f95e8dd8d85c9a0e5 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393881887 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com /extensionversion=0.93 /prefsbranch=af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/52920.rdf /extensionname='HQ-Video-Pro-1.4' /extensiondesc='HQ Videos is an add-on for your Internet browser that enhances your online experience by displaying online videos in their highest quality format available.' /publishername='HQ-Video' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='hxxp:/update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.jso <==== UWAGA




    Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-updater.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-updater.exeɗ/runupdater /agentregpath='HQ-Video-Pro-1.4' /appid=52920 /srcid='001182' /subid='0' /zdata='0' /bic=16110C5D048D4F37A4836DE9DBC6D597IE /verifier=8a3c904749a2779f95e8dd8d85c9a0e5 /installerversion=1_34_2_13 /installationtime=1393881887 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /geoserviceurl=hxxp:/ipgeoapi.com/ /updatejsondomain=hxxp:/update.srvstatsdata.com /updaterversion=2 /monetizationdomain=hxxp:/stats.mstatsserv.com /autoupdateulr='hxxp:/update.srvstatsdata.com/updater_agent_updates/{CAMP_ID}/update.jso <==== UWAGA
    AlternateDataStreams: C:\ProgramData\Temp:4D066AD2 [134]
    AlternateDataStreams: C:\ProgramData\Temp:93EB7685 [143]
    AlternateDataStreams: C:\ProgramData\Temp:CDFF58FE [149]
    AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D [129]
    HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
    HKU\S-1-5-21-482680629-1605728305-2341851360-1000\...\MountPoints2: F - F:\setup.exe /AUTORUN
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...d=WDCXWD3200BEVT-22A23T0_WD-WX61AA0N9292N9292
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...d=WDCXWD3200BEVT-22A23T0_WD-WX61AA0N9292N9292
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    HKU\S-1-5-21-482680629-1605728305-2341851360-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1...d=WDCXWD3200BEVT-22A23T0_WD-WX61AA0N9292N9292
    HKU\S-1-5-21-482680629-1605728305-2341851360-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=dspp&...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    HKU\S-1-5-21-482680629-1605728305-2341851360-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=dspp&...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    URLSearchHook: HKLM-x32 -> Domyślne = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D}
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.istartsurf.com/web/?utm_source=b&a...292&ts=1436369251&type=default&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=dspp&...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={B8C0DFA4-5FFF-4108-9EEB-DD86E834A2C3}&mid=3fd18f67952b47d2b275b1a22f3316ed-dff33fce6b1715e6a2d8f4b81ef1030886d3756b&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0715tb&pr=fr&d=2014-11-07 13:11:05&v=4.1.4.948&pid=wtu&sg=&sap=dsp&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-482680629-1605728305-2341851360-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.istartsurf.com/web/?utm_source=b&a...292&ts=1436369251&type=default&q={searchTerms}
    BHO-x32: Brak nazwy -> {2c774641-5504-46a8-b63f-6715ae3fe376} -> Brak pliku
    BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll [2015-08-31] (AVG)
    FF Homepage: Mozilla\Firefox\Profiles\ol7dh3z3.default -> hxxps://mysearch.avg.com/?cid={B8C0DFA4-5FFF-4108-9EEB-DD86E834A2C3}&mid=3fd18f67952b47d2b275b1a22f3316ed-dff33fce6b1715e6a2d8f4b81ef1030886d3756b&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0715tb&pr=fr&d=2014-11-07 13:11:05&v=4.1.4.948&pid=wtu&sg=&sap=hp
    FF Extension: (AVG Web TuneUp) - C:\Users\Kolbusz\AppData\Roaming\Mozilla\Firefox\Profiles\ol7dh3z3.default\Extensions\avg@toolbar [2015-08-31] [Przestarzałe] [Brak podpisu cyfrowego]
    FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\Kolbusz\AppData\Roaming\Mozilla\Firefox\Profiles\ol7dh3z3.default\extensions\searchffv2@gmail.com => nie znaleziono
    FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Kolbusz\AppData\Roaming\Mozilla\Firefox\Profiles\ol7dh3z3.default\extensions\sweetsearch@gmail.com => nie znaleziono
    FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.6\\npsitesafety.dll [Brak pliku]
    CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hppp&ts=1436369240&z=9c85ebfb58837bfb18e56f3g7z4c1q4ccqdt8obcbc&from=cornl&uid=WDCXWD3200BEVT-22A23T0_WD-WX61AA0N9292N9292"
    CHR DefaultSearchURL: Default -> hxxp://www.istartsurf.com/web/?type=dspp&...D3200BEVT-22A23T0_WD-WX61AA0N9292N9292&q={searchTerms}
    CHR DefaultSearchKeyword: Default -> istartsurf
    CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&form=UP97DF&PC=UP97
    CHR HKU\S-1-5-21-482680629-1605728305-2341851360-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
    S2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1195920 2015-07-17] (AVG Technologies CZ, s.r.o.)
    S2 Update FindRight; "C:\Program Files (x86)\FindRight\updateFindRight.exe" [X]
    S2 Util FindRight; "C:\Program Files (x86)\FindRight\bin\utilFindRight.exe" [X]
    S2 vToolbarUpdater40.1.6; "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe" [X]

    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze, gdzie masz FRST.exe.
    Uruchom FRST i kliknij w Fix/Napraw.

    1
  • CControls
  • #4 08 Mar 2018 08:10
    uomo
    Poziom 16  

    Dziękuje bardzo za odpowiedź Krzychupar.pozdrawiam

    0