Witam,
proszę o sprawdzenie logów,
wykonany został skan programem AdwCleaner i przeskanowany Malwarebytes
logi:
Addition
FRST
Dziękuję, pozdrawiam
Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=102&systemid=473&v=a13277-214&apn_uid=4841621532424947&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKLM-x32 - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=102&systemid=473&v=a13277-214&apn_uid=4841621532424947&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=102&systemid=473&v=a13277-214&apn_uid=4841621532424947&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKCU - {9E7470FD-8892-425C-86C9-D2463586BD6C} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=FCF0BFD4-622C-4865-B00F-58FDA1B6BD7F&apn_sauid=A93FE58B-C0A9-4FEC-9E60-82D787963CFE
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll No File
FF Extension: Website Discovery Pro - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\lzprzwv3.default\Extensions\discoverypro@discoverypro.com [2014-04-30]
FF Extension: extensionfirefoxntlmauthgooglecodecom - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\lzprzwv3.default\Extensions\extension@firefox-ntlmauth.googlecode.com [2014-09-11]
CHR DefaultSearchKeyword: Default -> istartsurf
CHR DefaultSearchProvider: Default -> istartsurf
CHR DefaultSearchURL: Default -> http://www.istartsurf.com/web/?type=ds&ts=1410283999&from=tt4u&uid=ST9320325AS_6VD2Q0B9XXXX6VD2Q0B9&q={searchTerms}
CHR Extension: (No Name) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-04-02]
CHR Extension: (nopeodilnmhhlfageeohjojginlgeljk) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nopeodilnmhhlfageeohjojginlgeljk [2014-09-11]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
U3 tmlwf; No ImagePath
U3 tmwfp; No ImagePath
C:\found.000
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AVG-Secure-Search-Update_0913b" /f
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Hoolapp Android" /f
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UsageTemp" /f
EmptyTemp:
Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.
Kliknij Scan i pokaż nowy raport z FRST bez Addition.
Skasuj folder C:\FRST