Problem z surfvox

mam problem z tym gów**** wirusem

Addition.txt

FRST.txt

Odinstaluj Search App by Ask.Otwórz notatnik systemowy i wklej:

CloseProcesses:
Task: {05F331E9-B070-4C83-9251-E8ECBB97F189} - \BonanzaDealsUpdate No Task File <==== ATTENTION
HKU\S-1-5-21-4184139833-546640301-799078283-1000\...\Run: [nvxasync] => C:\Users\Admin\AppData\Roaming\nvxasync\nvxasync.exe [153822720 2015-04-22] ()
HKU\S-1-5-21-4184139833-546640301-799078283-1000\...\MountPoints2: {05adfd7a-f63c-11e3-b965-d43d7e547010} - F:\Startme.exe
HKU\S-1-5-21-4184139833-546640301-799078283-1000\...\MountPoints2: {b9cf3484-f812-11e2-ae3e-d43d7e547010} - F:\iStudio.exe
HKU\S-1-5-21-4184139833-546640301-799078283-1000\...\Winlogon: [Shell] C:\ProgramData\nvxasync\cvxasync.exe [153822720 2015-04-22] () <==== ATTENTION
AppInit_DLLs: C:\Program Files (x86)\SO_X64~1.BOO => C:\Program Files (x86)\SO_X64~1.BOO File Not Found
AppInit_DLLs-x32: c:\program files (x86)\so0cb7~1.boo => "c:\program files (x86)\so0cb7~1.boo" File Not Found
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKU\S-1-5-21-4184139833-546640301-799078283-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.surfvox.com/
SearchScopes: HKU\S-1-5-21-4184139833-546640301-799078283-1000 -> {8ACDD044-6360-41F7-B3F0-EB220653293B} URL = http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=^BBE^OSJ000^YY^PL&gct=&itbv=12.23.0.15&apn_uid=951ADCDF-DD82-4D04-A7A9-FF590CAE8A49&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=ie&doi=2015-01-23&trgb=IE&q={searchTerms}&psv=&pt=tb
SearchScopes: HKU\S-1-5-21-4184139833-546640301-799078283-1000 -> {B79F36F8-EEE3-40F6-86CB-D69154CBC904} URL = http://search.ividi.org/?q={searchTerms}&src=tbsp&id=aa673143000000000000d43d7e547010&affilt=3&r=486
SearchScopes: HKU\S-1-5-21-4184139833-546640301-799078283-1000 -> {ED66AF76-96DA-48AF-9272-82B6B3766CF9} URL = http://searchou.com/?q={searchTerms}&id=aa673143000000000000d43d7e547010&affilt=5&r=79
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF DefaultSearchEngine: SurfVox
FF SelectedSearchEngine: SurfVox
FF Homepage: hxxp://www.surfvox.com
FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\searchplugins\starter.xml [2015-04-22]
FF Extension: YoutubeAdblocker - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\Extensions\daxta@autcp.org [2014-05-26]
FF Extension: saVee NoeT - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\Extensions\e5bkjo@aueiasjc.org [2014-05-21]
FF Extension: save on - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\Extensions\keoaoyg@wsyuv.org [2014-05-26]
FF Extension: YoutubeAdblocker - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\Extensions\vaw98rud@muzy-.edu [2014-05-21]
FF Extension: saVe onn - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\37nn5atk.default\Extensions\xz5yq_qqv@x-niaqeovrp.net [2014-05-26]
CHR HomePage: Default -> hxxp://www.surfvox.com/
CHR StartupUrls: Default -> "hxxp://www.surfvox.com/"
CHR DefaultSearchKeyword: Default -> surfvox.com
CHR DefaultSearchURL: Default -> http://www.google.com/?cx=partner-pub-0900663996874144%3A6813731868&ie=UTF-8&q={searchTerms}&sa=Search&siteurl=www.surfvox.com%2F&ref=&ss=
U3 ag4aqeqr; C:\Windows\System32\Drivers\ag4aqeqr.sys [0] (Advanced Micro Devices) <==== ATTENTION (zero size file/folder)
S3 esgiguard; \\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MSICDSetup; \\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \\E:\NTIOLib_X64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]
S3 xhunter1; \\C:\Windows\xhunter1.sys [X]
2015-04-22 22:57 - 2015-04-22 22:57 - 00000000 _____ () C:\autoexec.bat
2015-04-22 22:56 - 2015-04-22 22:56 - 00000000 ____ D () C:\Program Files\Enigma Software Group
2015-04-22 22:55 - 2015-04-23 16:32 - 00000000 ____ D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2015-04-22 22:26 - 2015-04-22 22:26 - 00000000 _RSHD () C:\ProgramData\nvxasync
2015-04-22 22:25 - 2015-04-22 22:26 - 00000000 _RSHD () C:\Users\Admin\AppData\Roaming\nvxasync
2015-04-22 22:25 - 2015-04-22 22:25 - 00000000 ____ D () C:\Users\Admin\AppData\Roaming\chportu
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

Wielkie dzięki :slight_smile:

Skasuj folder C:\FRST.

No fajnie tylko mam inny problem a mianowicie w niektórych programach nie mogę teraz wprowadzić zmian ustawień np. w operze zmiany nie zapisują się i po ponownym włączeniu jest wszystko po staremu