Enter Digital - jak go usunąć


(Guzik95) #1

Domyślam się, że trzeba użyć FRST ale do tego potrzebna są specjalne skrypty których nie jestem w stanie ułożyć


(Acorus) #2

Odinstaluj Adobe Download Assistant,WinZipper.Otwórz notatnik systemowy i wklej:

Task: {BF594ADC-4F96-43A3-8638-826E8E3F757B} - System32\Tasks\{B4290CCA-D16F-4410-A284-1BAE33B24FDE} = Iexplore.exe http://ui.skype.com/ui/0/6.21.60.104/pl/go/help.faq.installer?LastError=1618
GroupPolicy: Group Policy on Chrome detected ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sweet-page.com/?type=hpts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657X
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=dsts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hpts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657X
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=dsts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
HKU\S-1-5-21-2822182803-3108138383-1016313322-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=dsts=1418205077from=wpm12103uid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
HKU\S-1-5-21-2822182803-3108138383-1016313322-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sweet-page.com/?type=hpts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657X
HKU\S-1-5-21-2822182803-3108138383-1016313322-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hpts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657X
HKU\S-1-5-21-2822182803-3108138383-1016313322-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=dsts=1418205077from=wpm12103uid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
SearchScopes: HKLM - DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://www.v9.com/web?type=dsts=1421835191from=zbd1uid=fujitsuxmhz2320bhxg2_k62wt8927657t8927657xq={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=dsts=1415096791from=coruid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
SearchScopes: HKLM - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://www.v9.com/web?type=dsts=1421835191from=zbd1uid=fujitsuxmhz2320bhxg2_k62wt8927657t8927657xq={searchTerms}
SearchScopes: HKU\S-1-5-21-2822182803-3108138383-1016313322-1000 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?type=dsts=1418205077from=wpm12103uid=FUJITSUXMHZ2320BHXG2_K62WT8927657T8927657Xq={searchTerms}
SearchScopes: HKU\S-1-5-21-2822182803-3108138383-1016313322-1000 - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://www.v9.com/web?type=dsts=1421835191from=zbd1uid=fujitsuxmhz2320bhxg2_k62wt8927657t8927657xq={searchTerms}
SearchScopes: HKU\S-1-5-21-2822182803-3108138383-1016313322-1000 - {75F93190-4D3E-494B-87F0-36E41891B6A8} URL =
BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO: EnterDigital 1.0.0.7 - {91b8f7a9-1558-40b3-b1e9-824ae5a2089f} - C:\Program Files\EnterDigital\EnterDigitalBHO.dll (EnterDigital)
CHR RestoreOnStartup: Default - "hxxp://search.yahoo.com/?fr=hp-ddc-bdtype=616_pr __alt__ ddc_dsssyc_bd_com"
CHR StartupUrls: Default - "hxxp://search.yahoo.com/?fr=hp-ddc-bdtype=616_pr __alt__ ddc_dsssyc_bd_com"
CHR DefaultSearchKeyword: Default - yahoo.com
CHR DefaultNewTabURL: Default - http://search.yahoo.com/?fr=hp-ddc-bd-tabtype=616_pr __alt__ ddc_dsssyctab_bd_com
CHR Extension: (EnterDigital) - C:\Users\GUZINHOOO\AppData\Local\Google\Chrome\User Data\Default\Extensions\loaijddfgbgdmididoklildabncemoog [2015-02-06]
CHR HKLM\...\Chrome\Extension: [noajmlkipclmeolfcnflkjhijkigpfjh] - C:\Users\GUZINHOOO\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh.crx [2014-12-10]
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [714208 2014-11-04] (Cherished Technololgy LIMITED)
R2 MaintainerSvc6.37.565328; C:\ProgramData\7bb6df21-8ca8-4eec-965d-8cd2261544c7\maintainer.exe [123632 2015-02-20] ()
R2 Update EnterDigital; C:\Program Files\EnterDigital\updateEnterDigital.exe [409840 2015-02-20] ()
R2 Util EnterDigital; C:\Program Files\EnterDigital\bin\utilEnterDigital.exe [409840 2015-02-20] ()
R2 winzipersvc; C:\Program Files\WinZipper\winzipersvc.exe [424624 2015-01-12] (Taiwan Shui Mu Chih Ching Technology Limited.) ==== ATTENTION
R1 {16fd1cfd-5f7d-4fb7-ac6e-55eec1f56bf3}w; C:\Windows\System32\drivers\{16fd1cfd-5f7d-4fb7-ac6e-55eec1f56bf3}w.sys [43152 2014-11-11] (StdLib)
R1 {60fb1691-e7e8-4d48-b26c-c3f85822f710}Gw; C:\Windows\System32\drivers\{60fb1691-e7e8-4d48-b26c-c3f85822f710}Gw.sys [43152 2014-11-04] (StdLib)
R1 {70ed362e-6c2f-4f13-9f05-a5b35ff4be55}w; C:\Windows\System32\drivers\{70ed362e-6c2f-4f13-9f05-a5b35ff4be55}w.sys [43152 2014-11-30] (StdLib)
R1 {781c47fe-8e73-4938-873f-2850548c7fb4}w; C:\Windows\System32\drivers\{781c47fe-8e73-4938-873f-2850548c7fb4}w.sys [43152 2014-11-30] (StdLib)
R1 {8ca7f150-5454-4b4c-9537-1b831c71d329}w; C:\Windows\System32\drivers\{8ca7f150-5454-4b4c-9537-1b831c71d329}w.sys [43152 2014-11-17] (StdLib)
R1 {9015bae7-cdbb-4473-a5d0-ecfa559b2ca5}w; C:\Windows\System32\drivers\{9015bae7-cdbb-4473-a5d0-ecfa559b2ca5}w.sys [43152 2014-11-05] (StdLib)
R1 {93feeb25-9f23-4de1-b697-6a2c12816bac}w; C:\Windows\System32\drivers\{93feeb25-9f23-4de1-b697-6a2c12816bac}w.sys [43152 2014-11-23] (StdLib)
R1 {b28b16f8-524c-4f96-b046-1c8f12a5fe03}w; C:\Windows\System32\drivers\{b28b16f8-524c-4f96-b046-1c8f12a5fe03}w.sys [43152 2014-11-15] (StdLib)
R1 {bf07813e-aac8-4cea-bf69-7178c16076ac}w; C:\Windows\System32\drivers\{bf07813e-aac8-4cea-bf69-7178c16076ac}w.sys [43152 2014-11-21] (StdLib)
R1 {cb0b6f3d-aa8b-4a68-acf6-6ff30e1d0243}w; C:\Windows\System32\drivers\{cb0b6f3d-aa8b-4a68-acf6-6ff30e1d0243}w.sys [43152 2014-11-27] (StdLib)
R1 {e761f54c-32c6-465c-ba31-504773457b77}w; C:\Windows\System32\drivers\{e761f54c-32c6-465c-ba31-504773457b77}w.sys [43152 2014-11-26] (StdLib)
S1 iSafeKrnlMon; \\C:\Program Files\Elex-tech\YAC\iSafeKrnlMon.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2015-02-10 16:10 - 2015-02-10 16:10 - 00000000 ____ D () C:\Users\GUZINHOOO\AppData\Roaming\eCyber
2015-02-08 23:52 - 2015-02-08 23:52 - 00000000 ____ D () C:\Users\GUZINHOOO\AppData\Local\Pay-By-Ads
2015-02-20 11:23 - 2014-11-04 21:09 - 00000000 ____ D () C:\Program Files\EnterDigital
D:\Programy\Chrome\GoogleChromePortable\App\Chrome-bin\chrome.exe
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.