Jak usunąć "Solution Real"

grubcio7 · 28 Sierpień 2015 15:07

Witam serdecznie, mam problem z wyskakującymi reklamami “sponsorowanymi przez” Solution Real.

Acorus · 28 Sierpień 2015 15:30

Odinstaluj Lenovo Browser Guard,Solution Real,Yahoo! Search.Otwórz notatnik systemowy i wklej:

Task: {09F194D7-9129-44BA-BB63-ACBBF0F2CFBA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d - Brak pliku ==== UWAGA
Task: {10958111-AB5E-4379-B3C5-8282610A650D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d - Brak pliku ==== UWAGA
Task: {3EADAD81-2F0B-4599-96AB-2ECAC49F57B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent - Brak pliku ==== UWAGA
Task: {5E9534C8-319A-4183-B478-E3B39F78F489} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent - Brak pliku ==== UWAGA
Task: {78205B35-85FE-46D0-A453-9CC16FEFD8F8} - System32\Tasks\Yahoo! Search Updater = Wscript.exe //B "C:\Users\Dawid Dziedzic\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\..\updt.js" ==== UWAGA
Task: {91B0D7D3-BE67-40CB-85B4-6FD736F7C3B5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd - Brak pliku ==== UWAGA
Task: {961AEA4F-F778-4366-AF16-0D69B68B1DAC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d - Brak pliku ==== UWAGA
Task: {B5B14132-9D06-4AE3-A3EC-4CB8917AF957} - \Microsoft\Windows\Setup\gwx\launchtrayprocess - Brak pliku ==== UWAGA
Task: {E1D6AEA2-0E95-47E2-9537-804CDC0A139F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B - Brak pliku ==== UWAGA
Task: {E36E4DCE-66E9-4233-B33C-0C5C0A0C5543} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig - Brak pliku ==== UWAGA
Task: {E696B74A-304E-4F80-8A0D-65A272F171AD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d - Brak pliku ==== UWAGA
Task: {F1FEA7FA-19BF-4DD4-9B03-89CBA3B40EBC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d - Brak pliku ==== UWAGA
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1164787623-730121971-1312884353-1002\...\Run: [Yahoo! Search] = C:\Users\Dawid Dziedzic\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrlte.exe [660736 2015-07-31] (Pay By Ads LTD)
GroupPolicy: Zasady grupy Chrome wykryto ======= UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Zasada ograniczeń ======= UWAGA
HKU\S-1-5-21-1164787623-730121971-1312884353-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchsimple-a.akamaihd.net/?affID=is
SearchScopes: HKU\S-1-5-21-1164787623-730121971-1312884353-1002 - {169B32FA-ABE6-408F-90DD-066127BD648F} URL = hxxp://searchsimple-a.akamaihd.net/?affID=isq={searchTerms}r=368
BHO-x32: Solution Real 1.0.0.7 - {1bb456da-878f-44a5-b013-4bfe0ae02fce} - C:\Program Files (x86)\Solution Real\SolutionRealBHO.dll [2015-01-27] (Solution Real)
FF Extension: Solution Real 1.0.1 - C:\Users\Dawid Dziedzic\AppData\Roaming\Mozilla\Firefox\Profiles\gsm9teqq.default\Extensions\{31c21995-b861-4864-ab50-4a53fbca73d4}.xpi [2015-08-04]
CHR Extension: (Solution Real) - C:\Users\Dawid Dziedzic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcgkbggajkpcgaiggodgomjabjhffogj [2015-08-22]
CHR Extension: (AVG Secure Search) - C:\Users\Dawid Dziedzic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-12-13]
CHR HKU\S-1-5-21-1164787623-730121971-1312884353-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
OPR Extension: (Solution Real) - C:\Users\Dawid Dziedzic\AppData\Roaming\Opera Software\Opera Stable\Extensions\fcgkbggajkpcgaiggodgomjabjhffogj [2015-08-22]
R2 Update Solution Real; C:\Program Files (x86)\Solution Real\updateSolutionReal.exe [464112 2015-08-27] ()
R2 Util Solution Real; C:\Program Files (x86)\Solution Real\bin\utilSolutionReal.exe [464112 2015-08-27] ()
R1 {1d7d694e-604c-4da2-9100-b2601d3a1c57}Gw64; C:\Windows\System32\drivers\{1d7d694e-604c-4da2-9100-b2601d3a1c57}Gw64.sys [48792 2015-01-25] (StdLib)
R1 {29b8df85-56af-474f-9022-e376793679f9}Gw64; C:\Windows\System32\drivers\{29b8df85-56af-474f-9022-e376793679f9}Gw64.sys [48792 2015-01-04] (StdLib)
R1 {31c21995-b861-4864-ab50-4a53fbca73d4}Gw64; C:\Windows\System32\drivers\{31c21995-b861-4864-ab50-4a53fbca73d4}Gw64.sys [48784 2015-02-04] (StdLib)
R1 {371bcf01-e691-44bf-9345-60788e5d16a5}Gw64; C:\Windows\System32\drivers\{371bcf01-e691-44bf-9345-60788e5d16a5}Gw64.sys [48792 2015-01-28] (StdLib)
R1 {4cff408a-d9e7-47c3-a711-95133fcf7f45}Gw64; C:\Windows\System32\drivers\{4cff408a-d9e7-47c3-a711-95133fcf7f45}Gw64.sys [48792 2015-01-19] (StdLib)
R1 {5c281c6e-0132-4ac6-ad9d-d1d95d218412}Gw64; C:\Windows\System32\drivers\{5c281c6e-0132-4ac6-ad9d-d1d95d218412}Gw64.sys [48792 2015-01-23] (StdLib)
R1 {693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gw64; C:\Windows\System32\drivers\{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gw64.sys [48792 2015-01-13] (StdLib)
R1 {6e9af5d3-a8f9-4461-ad38-1433888f55dc}Gw64; C:\Windows\System32\drivers\{6e9af5d3-a8f9-4461-ad38-1433888f55dc}Gw64.sys [48792 2015-01-16] (StdLib)
R1 {76eaa25f-d535-414d-8a8b-4bce0a94d247}Gw64; C:\Windows\System32\drivers\{76eaa25f-d535-414d-8a8b-4bce0a94d247}Gw64.sys [48792 2015-01-10] (StdLib)
R1 {8d9c9462-4635-4cc0-ab2c-0e46af3a958b}Gw64; C:\Windows\System32\drivers\{8d9c9462-4635-4cc0-ab2c-0e46af3a958b}Gw64.sys [48792 2015-01-06] (StdLib)
R1 {a5c25b9e-3974-4e91-9864-34f9aca33ff3}Gw64; C:\Windows\System32\drivers\{a5c25b9e-3974-4e91-9864-34f9aca33ff3}Gw64.sys [48792 2014-12-30] (StdLib)
R1 {df8eec40-f909-439c-9ffe-3fee212f71b9}Gw64; C:\Windows\System32\drivers\{df8eec40-f909-439c-9ffe-3fee212f71b9}Gw64.sys [48784 2015-01-31] (StdLib)
R1 {edf2e803-e64b-4078-9a9f-33672590ad18}Gw64; C:\Windows\System32\drivers\{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64.sys [48792 2015-01-03] (StdLib)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
2015-07-31 10:50 - 2015-07-31 10:50 - 00000000 ____ D C:\Users\Dawid Dziedzic\AppData\Local\Pay-By-Ads
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan i później Cleaning.

grubcio7 · 28 Sierpień 2015 15:58

Zrobił tak jak mi kazałeś, ale po kliknięciu na “wyczyść” w programie adw cleaner, na samym koncu procesu wyskakuje okienko “Autolt Error” i poniżej, Line 17131 (File “C:\User\DawidDziedzic\Downloads\adwcleaner_5.004.exe”): Error: Variable used without being declared.

Acorus · 28 Sierpień 2015 16:39

Chyba.Pokaż z niego log.

Miało być tak:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.Uruchom jako administrator FRST i kliknij w Fix.

Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net…loads/finish/1/ Kliknij Scan i później Cleaning.