Uciążliwy PODOWEB


(Rog Karina) #1

Mam problem z reklamami, które utrudniają funkcjonowanie przeglądarki, przedstawiam raport i proszę o pomoc

 

FRST   http://www.wklej.org/id/1747284/

Shortcut   http://www.wklej.org/id/1747285/

Addition    http://www.wklej.org/id/1747287/


(Acorus) #2

Otwórz notatnik systemowy i wklej:

Task: {2C59ECAF-3A27-4640-9F4B-519B05BDD70F} - \Microsoft\Windows\MUI\LPRemove No Task File ==== ATTENTION
GroupPolicy: Group Policy on Chrome detected ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
HKU\S-1-5-21-3720756569-4205210032-2056150669-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo.com/?fr=hp-ddc-bdtype=pr __alt__ ddc_dsssyc_bd_com
SearchScopes: HKU\S-1-5-21-3720756569-4205210032-2056150669-1000 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://q.search-simple.com/?affID=pr_4d7a23e2-fa96-46aa-b7b6-40c76b8efcd7q={searchTerms}
SearchScopes: HKU\S-1-5-21-3720756569-4205210032-2056150669-1000 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://q.search-simple.com/?affID=pr_4d7a23e2-fa96-46aa-b7b6-40c76b8efcd7q={searchTerms}
SearchScopes: HKU\S-1-5-21-3720756569-4205210032-2056150669-1000 - {B4C486E0-4CCA-4BC6-961E-AE97DEC88E7B} URL = http://rts.dsrlte.com/?affID=naq={searchTerms}r=290
BHO: PodoWeb 1.0.0.7 - {980b8a8f-ea0b-4c24-a2e9-70635e2502e9} - C:\Program Files\PodoWeb\PodoWebBHO.dll [2015-01-27] (PodoWeb)
FF NewTab: hxxp://search.yahoo.com/?fr=hp-ddc-bd-tabtype=616_pr __alt__ ddc_dsssyctab_bd_com
FF DefaultSearchEngine: Yahoo! Search
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://search.yahoo.com/?fr=hp-ddc-bdtype=616_pr __alt__ ddc_dsssyc_bd_com
FF Keyword.URL: hxxp://search.yahoo.com/yhs/search?hspart=ddchsimp=yhs-ddc_bdtype=616_pr __alt__ ddc_dss_bd_comp=
CHR RestoreOnStartup: Default - "hxxp://rts.dsrlte.com?affID=pr_4d7a23e2-fa96-46aa-b7b6-40c76b8efcd7"
CHR StartupUrls: Default - "hxxp://rts.dsrlte.com?affID=pr_4d7a23e2-fa96-46aa-b7b6-40c76b8efcd7"
CHR DefaultSearchKeyword: Default - dsrlte.com
CHR DefaultNewTabURL: Default - http://rts.dsrlte.com?affID=pr_4d7a23e2-fa96-46aa-b7b6-40c76b8efcd7
CHR Extension: (PodoWeb) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiiljpkmcifjfgdjbneemhagneommddc [2014-11-01]
OPR Extension: (PodoWeb) - C:\Users\Dom\AppData\Roaming\Opera Software\Opera Stable\Extensions\ofbadnfgflalgnlglgchfonmpoiiclig [2015-06-11]
R2 Update PodoWeb; C:\Program Files\PodoWeb\updatePodoWeb.exe [473840 2015-06-27] ()
R2 Util PodoWeb; C:\Program Files\PodoWeb\bin\utilPodoWeb.exe [473840 2015-06-27] ()
R1 {37853ded-5f26-4b06-88d4-a4f00ea1c972}Gw; C:\Windows\System32\drivers\{37853ded-5f26-4b06-88d4-a4f00ea1c972}Gw.sys [43144 2014-11-30] (StdLib)
R1 {51d6aaf3-0bd7-47b0-8963-1c6f4d58b8fd}Gw; C:\Windows\System32\drivers\{51d6aaf3-0bd7-47b0-8963-1c6f4d58b8fd}Gw.sys [43144 2014-11-01] (StdLib)
R1 {6b9234ab-d79f-41db-86f9-8be7a3e9ee74}Gw; C:\Windows\System32\drivers\{6b9234ab-d79f-41db-86f9-8be7a3e9ee74}Gw.sys [43144 2014-11-07] (StdLib)
R1 {9642e31c-2703-4a31-ba45-9e8dfb693e38}Gw; C:\Windows\System32\drivers\{9642e31c-2703-4a31-ba45-9e8dfb693e38}Gw.sys [43144 2014-11-13] (StdLib)
R1 {98e700ee-1d13-4cd6-97a6-d8d4d2f0a35b}Gw; C:\Windows\System32\drivers\{98e700ee-1d13-4cd6-97a6-d8d4d2f0a35b}Gw.sys [43144 2014-11-10] (StdLib)
R1 {a2df9e48-ce26-4812-87d1-df6c5bed5ea9}Gw; C:\Windows\System32\drivers\{a2df9e48-ce26-4812-87d1-df6c5bed5ea9}Gw.sys [43144 2014-11-04] (StdLib)
R1 {ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}Gw; C:\Windows\System32\drivers\{ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}Gw.sys [43144 2014-11-27] (StdLib)
R1 {adb41315-fba7-4b86-be27-b2401a20c8d2}Gw; C:\Windows\System32\drivers\{adb41315-fba7-4b86-be27-b2401a20c8d2}Gw.sys [43144 2014-11-19] (StdLib)
R1 {b0ff63b8-ba6f-45bb-b13c-8474c0d8fc94}Gw; C:\Windows\System32\drivers\{b0ff63b8-ba6f-45bb-b13c-8474c0d8fc94}Gw.sys [43144 2014-11-22] (StdLib)
R1 {b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw; C:\Windows\System32\drivers\{b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw.sys [43144 2014-11-30] (StdLib)
R1 {b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}Gw; C:\Windows\System32\drivers\{b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}Gw.sys [43144 2014-11-28] (StdLib)
R1 {c0b542ce-0b43-4536-9ff3-886eaf9fb44c}Gw; C:\Windows\System32\drivers\{c0b542ce-0b43-4536-9ff3-886eaf9fb44c}Gw.sys [43144 2014-11-16] (StdLib)
R1 {d04f5c84-12ff-4486-8e31-240e7ca6e6d3}Gw; C:\Windows\System32\drivers\{d04f5c84-12ff-4486-8e31-240e7ca6e6d3}Gw.sys [43144 2014-10-31] (StdLib)
2015-06-27 11:28 - 2014-11-01 08:01 - 00000000 ____ D C:\Program Files\PodoWeb
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.


(Rog Karina) #3

Reklamy się już nie pokazują. Dziękuję bardzo za pomoc!