Jak usunąć Champion Browser

gudr · 12 Październik 2014 16:19

Addition - http://www.wklej.org/id/1486038/

Wklejki po skanowaniu AdwCleanerem.

Proszę o pomoc.

Acorus · 12 Październik 2014 17:34

Otwórz Notatnik i wklej:

Hosts:
Task: {753EA8EF-C0F9-4004-BF08-6723134D1400} - \bench-sys No Task File ==== ATTENTION
Task: {93FA88CB-A864-48B3-875A-7A4ED1F32FAF} - \bench-S-1-5-21-620059180-2123850291-3575301230-1000 No Task File ==== ATTENTION
Task: {E46EE11A-4447-468D-A3F5-EFB92855EF5A} - System32\Tasks\SpyHunter4Startup = C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: C:\Windows\Tasks\bench-S-1-5-21-620059180-2123850291-3575301230-1000.job = C:\Program Files (x86)\Bench\Updater\updater.exe ==== ATTENTION
Task: C:\Windows\Tasks\bench-sys.job = C:\Program Files (x86)\Bench\Updater\updater.exe ==== ATTENTION
HKLM-x32\...\Run: [BService64] = C:\Program Files (x86)\Bench\BService\1.1\bservice64.exe [110592 2014-08-20] ()
HKLM-x32\...\Run: [Bench Settings Cleaner] = C:\Program Files (x86)\Bench\Proxy\cl.exe [62464 2014-09-10] ()
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\RunOnce: [adawarebp] = reg.exe delete "HKCU\Software\AppDataLow\Software\adawarebp" /f
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\RunOnce: [adawarebp_XP] = reg.exe delete "HKCU\Software\adawarebp" /f
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\RunOnce: [adawarebp_DATA_FOLDER] = cmd.exe /c rmdir "C:\ProgramData\Ad-Aware Browsing Protection" /s /q
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\RunOnce: [adawarebp_INSTALL_FOLDER] = cmd.exe /c rmdir "C:\Users\Domownicy\AppData\Local\adawarebp" /s /q
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\MountPoints2: {16878b49-69bb-11e1-953f-0026b920ccc9} - F:\Autorun.exe
HKU\S-1-5-21-620059180-2123850291-3575301230-1000\...\MountPoints2: {642bad7f-154b-11e1-859b-0026b920ccc9} - F:\Startme.exe
ShellIconOverlayIdentifiers: [00avast] - {472083B0-C522-11CF-8763-00608CC02F24} = No File
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch2.lavasoft.com/results.php?pr=vmnid=adawaretbv=3_9idate=2014-10-08gen=installkihsimp=yhs-lavasoftent=chq={searchTerms}
BHO: Browser Champion BHO - {FD6EF0F0-B46B-4CB2-839C-BBE569FAA859} - C:\Program Files (x86)\Browser Champion\FrameworkBHO64.dll ()
BHO-x32: Browser Champion BHO - {FD6EF0F0-B46B-4CB2-839C-BBE569FAA859} - C:\Program Files (x86)\Browser Champion\FrameworkBHO.dll ()
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF SearchPlugin: C:\Users\Domownicy\AppData\Roaming\Mozilla\Firefox\Profiles\pehofkg2.default-1412796855071\searchplugins\securesearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystartsearch.xml
FF Extension: No Name - C:\Users\Domownicy\AppData\Roaming\Mozilla\Firefox\Profiles\pehofkg2.default-1412796855071\extensions\{87934c42-161d-45bc-8cef-ef18abe2a30c} [Not Found]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe www.mystartsearch.com/?type=scts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe www.mystartsearch.com/?type=scts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
S3 avchv; system32\DRIVERS\avchv.sys [X]
S3 STHDA; system32\DRIVERS\stwrt64.sys [X]
2014-10-09 02:55 - 2014-10-09 02:56 - 00000000 ____ D () C:\AdwCleaner
2014-10-08 23:35 - 2014-10-12 17:19 - 00000000 ____ D () C:\ProgramData\Ad-Aware Browsing Protection
2014-10-08 23:35 - 2014-10-08 23:35 - 00000000 ____ D () C:\Users\Domownicy\AppData\Roaming\SecureSearch
2014-10-08 23:35 - 2014-10-08 23:35 - 00000000 ____ D () C:\Users\Domownicy\AppData\Local\adawarebp
2014-10-08 23:34 - 2014-10-12 17:20 - 00000000 ____ D () C:\Program Files (x86)\Lavasoft
2014-10-08 23:27 - 2014-10-08 23:27 - 02806920 _____ () C:\Users\Domownicy\Desktop\Adaware_Installer.exe
2014-10-08 21:55 - 2014-10-08 21:55 - 00003346 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-10-08 21:10 - 2014-10-08 21:18 - 00000000 ____ D () C:\Users\Domownicy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Champion
2014-10-08 21:10 - 2014-10-08 21:18 - 00000000 ____ D () C:\Users\Domownicy\AppData\Local\Browser Champion
2014-10-08 21:10 - 2014-10-08 21:10 - 00000000 ____ D () C:\Users\Domownicy\AppData\Local\BenchUpdater
2014-10-08 21:10 - 2014-10-08 21:10 - 00000000 ____ D () C:\ProgramData\Xunlei
2014-10-08 21:10 - 2014-10-08 21:10 - 00000000 ____ D () C:\ProgramData\Thunder Network
2014-10-08 21:10 - 2014-10-08 21:10 - 00000000 ____ D () C:\Program Files (x86)\Browser Champion
2014-10-08 21:10 - 2014-10-08 21:10 - 00000000 ____ D () C:\Program Files (x86)\Bench
C:\Users\Domownicy\cFosSpeed(12826).exe
C:\Users\Domownicy\ChromeSetup.exe
C:\Users\Domownicy\foobar2000(13337).exe
C:\Users\Domownicy\googledrivesync.exe
C:\Users\Domownicy\jxpiinstall.exe
C:\Users\Domownicy\SteamSetup.exe
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

gudr · 12 Październik 2014 18:46

Dziękuję za szybką odpowiedź. Zrobiłam wszystko według instrukcji.

Wrzucam jeszcze aktualne logi.

Addition - http://www.wklej.org/id/1486229/

FRST - http://www.wklej.org/id/1486231/

Acorus · 13 Październik 2014 06:24

Otwórz Notatnik i wklej:

GroupPolicy: Group Policy on Chrome detected ======= ATTENTION
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = www.mystartsearch.com/web/?type=dsts=1412795431from=ilduid=WDCXWD3200BEKT-75F3T0_WD-WXE0AB98796087960q={searchTerms}

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

gudr · 13 Październik 2014 16:11

FRST - http://www.wklej.org/id/1486973/

Add - http://www.wklej.org/id/1486974/

Czy już jest wszystko ok, czy jeszcze coś powinnam zrobić?