Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Wyskakująca karta "gameorplay.info"

krzysio139 26 Mar 2018 19:27 114 1
  • Pomocny post
    #2 26 Mar 2018 19:44
    Kolobos
    Spec od komputerów

    Odinstaluj:
    Google Toolbar
    SpyHunter

    Wykonaj Fixlist.txt dla FRST:
    Task: {0800B096-B705-453D-9AA3-1D478DE8D6C6} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Brak pliku <==== UWAGA
    Task: {0D371C98-E76F-4957-BC98-168E2830E57C} - System32\Tasks\{1B4A00FA-578F-4D15-ADC7-5EBA797699BA} => C:\WINDOWS\system32\pcalua.exe -a "D:\Program Files\Sebastien Loeb Rally EVO\unins000.exe"
    Task: {211CDF8E-AED6-48DC-B7B2-D99ABD39C21A} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA
    Task: {249D1CD6-2650-48D1-B383-9842EF1B5481} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
    Task: {2D17D585-63C2-471D-A859-DBF973C1BE8D} - \WPD\SqmUpload_S-1-5-21-2438430395-589583573-1229472667-1000 -> Brak pliku <==== UWAGA
    Task: {37620195-C045-48B9-BBE0-F7F5DD0E609D} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
    Task: {52312F23-2693-45F2-8CF5-5426C0283B37} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
    Task: {5482D2CE-771C-4B3E-97D4-CDD99E9AF295} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
    Task: {54B78804-DBF0-4CDF-AC57-3E3D76FB7FE7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
    Task: {5B4F1B45-0D71-474B-B659-30FD63CA4FD3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA
    Task: {6169A7BD-E629-4662-A667-6714D70A85C7} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2018-03-26] (Enigma Software Group USA, LLC.)
    Task: {63F8C2C0-2A14-40A7-9688-07AAE05B5698} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
    Task: {6ED61A4A-3B86-4D0B-87CA-6302035824E8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
    Task: {6F72D330-520D-4275-8DD4-181987B9556B} - System32\Tasks\Skura => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Skura /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" <==== UWAGA
    Task: {78EB76A7-2DBC-486F-98F4-E4C25D6602EA} - \AutoKMS -> Brak pliku <==== UWAGA
    Task: {8346D96B-ADEA-41E7-A327-B5120FD4E80D} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA
    Task: {87059ECF-6210-4D6F-B06D-7CD08BE0DBAA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
    Task: {9040222E-BA40-4179-9E95-28AED56B2E4F} - System32\Tasks\{076C6E8A-98AF-4CC6-811F-7CC417B47BE8} => C:\WINDOWS\system32\pcalua.exe -a "D:\Pobierane z mozilli\Dance3\Dance3.exe" -d "D:\Pobierane z mozilli\Dance3"
    Task: {C18DD722-072A-44CC-94B9-A7D6E8DAE2E2} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-02-01] ()




    Task: {D1223BED-3820-4D70-A58D-82FA2E823C5A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
    Task: {D3A35319-015C-4385-9003-1073D6FFE2E4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
    Task: {DA4F2035-1C6E-47A3-8775-E8D37F785D10} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
    (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
    HKU\S-1-5-21-2438430395-589583573-1229472667-1000\...\Run: [Skura] => explorer.exe hxxp://exinariuminix.info <==== UWAGA
    HKU\S-1-5-21-2438430395-589583573-1229472667-1000\...\MountPoints2: F - "F:\setup.exe"
    CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.12.1.15\Exts\Chrome.crx <nie znaleziono>
    CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.12.1.15\Exts\Chrome.crx <nie znaleziono>
    CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe [889016 2018-03-26] (Enigma Software Group USA, LLC.)
    R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2018-03-26] (Enigma Software Group USA, LLC.)
    S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [22704 2018-03-26] ()
    2018-03-26 18:43 - 2018-03-26 18:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
    2018-03-26 17:43 - 2018-03-26 17:43 - 000003438 _____ C:\WINDOWS\System32\Tasks\SpyHunter4Startup
    2018-03-26 17:43 - 2018-03-26 17:43 - 000001132 _____ C:\Users\Skura\Desktop\SpyHunter.lnk
    2018-03-26 17:43 - 2018-03-26 17:43 - 000000000 ____D C:\Users\Skura\AppData\Roaming\Enigma Software Group
    2018-03-26 17:43 - 2018-03-26 17:43 - 000000000 ____D C:\sh4ldr
    2018-03-26 17:43 - 2018-03-26 17:43 - 000000000 _____ C:\autoexec.bat
    2018-03-26 17:42 - 2018-03-26 17:42 - 000022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
    2018-03-26 17:42 - 2018-03-26 17:42 - 000000000 ____D C:\Program Files\Enigma Software Group

    Po wykonaniu usun katalog C:\FRST.

    0