nnamed
(Bk0504)
6 Grudzień 2014 15:27
#1
Witam mam ogromny problem. Co jakieś 10 minut otwiera mi się nowa karta z reklamami typu: http://okfiles.net/0vh559
Skanowałem Kasperskim i nic nie wykrywa. Proszę o pomoc, dodam, że jestem zielony w sprawach komputera. Nie wiem co to OTL itp. Proszę o jasno wytłumaczoną odpowiedź.
Dziękuje z góry.
Pobierz na pulpit skaner Adwcleaner - https://toolslib.net/downloads/viewdownload/1-adwcleaner/
Po uruchomieniu wykonaj polecenia szukaj i usuń. Po restarcie wykonaj polecenie 2.
Pobierz na pulpit skaner FRST ( wersja musi być odpowiednia do zainstalowanego systemu operacyjnego ) - http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/
Po uruchomieniu FRST poleceniem skan zostaną wygenerowane dwa raporty FRST I Addition.
Raporty FRST i Addition umieść na http://www.wklej.org , a w poście na forum podajemy linki do wklejek.
nnamed
(Bk0504)
7 Grudzień 2014 12:53
#3
Otwórz systemowy notatnik i wklej:
HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\MountPoints2: {95dc9eeb-5940-11e4-b0ec-bc5ff41ec5c2} - G:\Startme.exe HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\MountPoints2: {9d4b74e6-2b86-11e3-a0fa-bc5ff41ec5c2} - H:\SETUP.EXE HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\MountPoints2: {ab1dc66b-7aae-11e3-aeb3-bc5ff41ec5c2} - H:\Autorun.exe HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\MountPoints2: {ab1dc670-7aae-11e3-aeb3-bc5ff41ec5c2} - I:\autorun.exe HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\MountPoints2: {e0d08cf5-d65b-11e2-9c75-bc5ff41ec5c2} - G:\Autorun.exe ShortcutTarget: HDDlife.lnk -> D:\Hddlite\HDDlifePro.exe (No File) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll No File SearchScopes: HKU.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] S3 TunngleService; E:\Tunngle\TnglCtrl.exe [X] U3 awr97syt; No ImagePath S3 EagleX64; ??\C:\Windows\system32\drivers\EagleX64.sys [X] S3 EtronHub3; System32\Drivers\EtronHub3.sys [X] S3 EtronXHCI; System32\Drivers\EtronXHCI.sys [X] S3 GGSAFERDriver; ??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X] S3 GPU-Z; ??\C:\Users\Admin\AppData\Local\Temp\GPU-Z.sys [X] S3 X6va011; ??\C:\Windows\SysWOW64\Drivers\X6va011 [X] S3 X6va017; ??\C:\Windows\SysWOW64\Drivers\X6va017 [X] 2014-12-07 13:47 - 2014-12-07 13:48 - 00000000 ____D () C:\AdwCleaner C:\ProgramData\C__Users_Admin_Desktop_Hide IP Easy by Gamus_Crack_HideIPEasy.exe C:\ProgramData\hash.dat C:\Users\Admin\AppData\Local\Temp\Quarantine.exe C:\Users\Admin\AppData\Local\Temp\sqlite3.dll Minecraft Packages (HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\Minecraft Packages) (Version: - ) <==== ATTENTION UpdateChecker (HKU\S-1-5-21-3810054629-1300068247-4062579497-1000…\Popajar, inc UpdateChecker) (Version: - Popajar, inc) <==== ATTENTION CustomCLSID: HKU\S-1-5-21-3810054629-1300068247-4062579497-1000_Classes\CLSID{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll No File Task: {3E2D6BB3-0CCD-47F1-8AD6-010A523E4764} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv => C:\Windows\TEMP{14270526-E36C-4CB0-9DCB-0FC2D8A503C4}.exe Task: {79342E08-F501-45DE-BAC9-10466938061D} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP{C89D2F2E-C575-4D7A-AE91-C4E0FBC2B58E}.exe Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:\Windows\TEMP{14270526-E36C-4CB0-9DCB-0FC2D8A503C4}.exe Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP{C89D2F2E-C575-4D7A-AE91-C4E0FBC2B58E}.exe Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-1.job => C:\Program Files (x86)\HDPlus-V1.9\HDPlus-V1.9-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-11.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-11.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-2.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-2.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-3.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-3.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-4.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-4.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-5.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-5.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-5_user.job => C:\Program Files (x86)\HDPlus-V1.9\c9d77c59-0ff5-4036-8806-71115fd01f45-5.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-6.job => C:\Program Files (x86)\HDPlus-V1.9\HDPlus-V1.9-novainstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\c9d77c59-0ff5-4036-8806-71115fd01f45-7.job => C:\Program Files (x86)\HDPlus-V1.9\HDPlus-V1.9-nova.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis FM.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis TM.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis TW1.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis TW2.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis W1.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\InfiniteCrisis W2.job => C:\Users\Admin\AppData\Local\Google\Chrome\Application\chrome.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT N.job => C:\Program Files\Internet Explorer\iexplore.exe Task: C:\Windows\Tasks\WOT T.job => C:\Program Files\Internet Explorer\iexplore.exe Task: C:\Windows\Tasks\WOT W1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT W2.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WFRI1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WMON1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WTHUR1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WTUE1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WW1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WW2.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\WOT WWED1.job => C:\Program Files\Internet Explorer\iexplore.exe <==== ATTENTION Task: C:\Windows\Tasks\XboxStatTask.job => C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B emptytemp: Zapisz jako fixlist.txt. Umieść obok skanera FRST. Uruchom skaner i wykonaj polecenie FIX. Po restarcie pokaż raport fixlog i nowy FRST.
żeby uchronic się od reklam po prostu zainstaluj program ABP