Reklamy w przeglądarce


(Marek Buga) #1

Dzień dobry, proszę o pomoc w usunięciu reklam z przeglądarek. Prezentuję logi FRST:

 

FRST: http://wklej.to/KtKDV

Addition: http://wklej.to/1sKF1


(Atis) #2

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

HKLM-x32\...\Run: [mbot_pl_183] => [X]
HKLM-x32\...\Run: [Opera] => C:\Program Files (x86)\Opera\launcher.exe
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => "C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL" File Not Found
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\superpc_soft_partner.lnk
C:\ProgramData\{bf9485dc-2a52-1cc5-bf94-485dc2a51770}
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220150312
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220150312
HKU\S-1-5-21-820863343-3623620379-1589596787-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=dspp&ts=1426092580&from=amt&uid=TOSHIBAXMQ01ABD100_Y46DP5M3TXXY46DP5M3T&q={searchTerms}
HKU\S-1-5-21-820863343-3623620379-1589596787-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={8BF46D0C-7FE6-4E62-A802-2647C753DEB8}&mid=2886e226feda47cda1d98ddae40d2fad-f2ac1722e81888c626d9b930ca73a6bdfdfcd77f&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-14 05:52:04&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-820863343-3623620379-1589596787-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=dspp&ts=1426092580&from=amt&uid=TOSHIBAXMQ01ABD100_Y46DP5M3TXXY46DP5M3T&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-820863343-3623620379-1589596787-1001 -> DefaultScope {B2F0EB5C-6394-49B4-95D3-737F90531816} URL = 
SearchScopes: HKU\S-1-5-21-820863343-3623620379-1589596787-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={8BF46D0C-7FE6-4E62-A802-2647C753DEB8}&mid=2886e226feda47cda1d98ddae40d2fad-f2ac1722e81888c626d9b930ca73a6bdfdfcd77f&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-14 05:52:04&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-820863343-3623620379-1589596787-1001 -> {B2F0EB5C-6394-49B4-95D3-737F90531816} URL = 
BHO-x32: Steel Cut 1.0.0.7 -> {581f8d6b-754f-4b80-88f6-6037771c0a44} -> C:\Program Files (x86)\Steel Cut\SteelCutbho.dll No File
BHO-x32: Strong Signal -> {c723a437-2eaf-466d-a95b-3fa0966bf88c} -> C:\Program Files (x86)\Strong Signal\Extensions\c723a437-2eaf-466d-a95b-3fa0966bf88c.dll No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.omniboxes.com/?type=sc&ts=1426092560&from=amt&uid=TOSHIBAXMQ01ABD100_Y46DP5M3TXXY46DP5M3T
FF HKU\S-1-5-21-820863343-3623620379-1589596787-1001\...\Firefox\Extensions: [{13DF9D3A-0F8F-DE2C-C9DC-204AFA3AAB6A}] - C:\Program Files (x86)\ver7SpeeditUp\190.xpi
CHR Extension: (HD Cinema Pro 1.8cV11.03) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjfiaeaopgmgbenipljajjipecobmbni [2015-03-12]
CHR Extension: (lkofmbmllpgfbnonmnenkiakimpgoamn) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkofmbmllpgfbnonmnenkiakimpgoamn [2015-03-15]
S2 serveras; C:\Users\Lenovo\AppData\Roaming\ASPackage\ASSrv.exe [X]
S2 cae99edb; "C:\WINDOWS\system32\rundll32.exe" "c:\Program Files (x86)\Super Optimizer\SupOptStats.dll",ENT
2015-03-12 15:29 - 2015-01-11 11:28 - 00003966 _____ () C:\{b6a94784-0ffb-4121-88c6-435139067ee2}.xpi
2015-03-11 18:51 - 2015-03-11 18:51 - 0613255 _____ (CMI Limited) C:\Users\Lenovo\AppData\Local\nsi2EEF.tmp
2015-03-11 18:12 - 2015-03-11 18:12 - 0613255 _____ (CMI Limited) C:\Users\Lenovo\AppData\Local\nsyA0B9.tmp
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.


(Marek Buga) #3

fixlog: http://wklej.to/cyOVD

frst: http://wklej.to/yjl5y


(Atis) #4

Skasuj folder C:\FRST

Usuń stare punkty przywracania: Przywracanie systemu i kopie w tle

Dysk przeskanuj Malwarebytes Anti-Malware

Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware Premium.

http://wstaw.org/m/2014/03/25/2014-03-25_123039.png

Język PL > Settings > General Settings > Language > Polish

Przeczytaj w jaki sposób należy instalować programy: KLIK - KLIK - KLIK - KLIK