witam,
wczoraj ściągnąłem na komputer jakiś program już go usunąłem ale teraz gdy wchodzę w przeglądarke to wyskakuje jakaś wyszukiwarka której nie chcę mieć boję się o komputer i proszę o pomoc:
FRST:
Addition:
Pobierz i uruchom AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Szukaj i później Usuń.
Pokaż nowe logi z FRST.
Otwórz Notatnik i wklej:
Task: {9ED11A1D-2003-40CF-93EB-F1C15EB13336} - System32\Tasks\PC_Booster-S-493389286 = c:\programdata\trusted publisher\pc_booster\PC_Booster.exe ==== ATTENTION
Task: C:\Windows\Tasks\PC_Booster-S-493389286.job = c:\programdata\trusted publisher\pc_booster\PC_Booster.exe ==== ATTENTION
BHO: pricechoop - {0C89BD11-CC18-1899-EE37-3BF140FCB39A} - C:\Program Files (x86)\pricechoop\4tMRH.x64.dll No File
BHO: Adblocker - {548E6B9C-CFD9-BF78-58E5-5108CAFF599C} - C:\Program Files (x86)\Adblocker\8mOpQb.x64.dll No File
BHO: priiCechop - {B13F41D4-7939-EF59-C186-8399BA915D47} - C:\Program Files (x86)\priiCechop\5XErKc7rsc.x64.dll No File
BHO-x32: pricechoop - {0C89BD11-CC18-1899-EE37-3BF140FCB39A} - C:\Program Files (x86)\pricechoop\4tMRH.dll No File
BHO-x32: Adblocker - {548E6B9C-CFD9-BF78-58E5-5108CAFF599C} - C:\Program Files (x86)\Adblocker\8mOpQb.dll No File
BHO-x32: priiCechop - {B13F41D4-7939-EF59-C186-8399BA915D47} - C:\Program Files (x86)\priiCechop\5XErKc7rsc.dll No File
FF Extension: Adblocker - C:\Users\DanielKrĂłl\AppData\Roaming\Mozilla\Firefox\Profiles\vyf6y5qc.default-1395096068430\Extensions\gds4xf5k@acxbuo.net [2014-08-06]
FF Extension: prIicEchop - C:\Users\DanielKrĂłl\AppData\Roaming\Mozilla\Firefox\Profiles\vyf6y5qc.default-1395096068430\Extensions\oirx@pgfhwdcf.org [2014-08-06]
FF Extension: pricechoop - C:\Users\DanielKrĂłl\AppData\Roaming\Mozilla\Firefox\Profiles\vyf6y5qc.default-1395096068430\Extensions\yfa5cjlg@cjegu-p.com [2014-08-06]
CHR Extension: (prIicEchop) - C:\Users\DanielKrĂłl\AppData\Local\Google\Chrome\User Data\Default\Extensions\enoojpijlokfbiclbdfdcpppnjldhgbc [2014-08-06]
CHR Extension: (pricechoop) - C:\Users\DanielKrĂłl\AppData\Local\Google\Chrome\User Data\Default\Extensions\kglhjaanccjhhoieamcdboigjdoeocip [2014-08-06]
CHR Extension: (Save Flash) - C:\Users\DanielKrĂłl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lackfehpdclhclidcbbfcemcpolgdgnb [2014-08-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
2014-08-06 20:43 - 2014-08-06 20:44 - 00000000 ____ D () C:\AdwCleaner
2014-08-06 02:42 - 2014-08-06 20:45 - 00000486 ____ H () C:\Windows\Tasks\PC_Booster-S-493389286.job
2014-08-06 02:42 - 2014-08-06 03:22 - 00000000 ____ D () C:\ProgramData\bed4833f611c0dff
2014-08-06 02:42 - 2014-08-06 02:42 - 00002732 _____ () C:\Windows\System32\Tasks\PC_Booster-S-493389286
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\GoĹÄ\AppData\Local\Google
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\GoĹÄ\AppData\Local\Comodo
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\GoĹÄ
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\DanielKrĂłl\AppData\Local\Packages
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\DanielKrĂłl\AppData\Local\Comodo
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\Administrator\AppData\Local\Google
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Users\Administrator\AppData\Local\Comodo
2014-08-06 02:42 - 2014-08-06 02:42 - 00000000 ____ D () C:\Program Files (x86)\PC_Booster
CMD: del /f /s /q %TEMP%\*.*
Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.