Strong Signal...bardzo proszę o pomoc

Dla specjalistów Bezpieczeństwo
#1

jak w temacie…Nie potrafię się tego pozbyć. Czy ktoś z Was może udzielić mi wskazówki, co zrobić? Bardzo proszę o pomoc, jestem komputerową gapą…

#2

Pobierz Farbar Recovery Scan Tool http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ zgodny z wersją systemu 32-bit lub 64-bit.

#3

FRST: http://wklej.org/id/1648357/

ADDITION: http://wklej.org/id/1648358/

#4

Odinstaluj SpyHunter 4.Otwórz notatnik systemowy i wklej:

Task: {5C1E0B72-814B-49EE-990E-1F2535248079} - System32\Tasks\ZKSQYEMY = C:\Users\user\AppData\Roaming\ZKSQYEMY.exe ==== ATTENTION
Task: {5C58168C-129C-4BC6-A606-B252A048506F} - System32\Tasks\QDWCAL = C:\Users\user\AppData\Roaming\QDWCAL.exe ==== ATTENTION
Task: {C0559DF4-BA78-40B7-BE2C-B9CB1FA44393} - System32\Tasks\SpyHunter4Startup = C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-02-26] (Enigma Software Group USA, LLC.)
Task: C:\Windows\Tasks\QDWCAL.job = C:\Users\user\AppData\Roaming\QDWCAL.exe ==== ATTENTION
Task: C:\Windows\Tasks\ZKSQYEMY.job = C:\Users\user\AppData\Roaming\ZKSQYEMY.exe ==== ATTENTION
ShellIconOverlayIdentifiers: ["DropboxExt1"] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} = No File
ShellIconOverlayIdentifiers: ["DropboxExt2"] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} = No File
ShellIconOverlayIdentifiers: ["DropboxExt5"] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} = No File
ShellIconOverlayIdentifiers: ["DropboxExt7"] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} = No File
SearchScopes: HKU\.DEFAULT - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: EPUBReader - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ap2dczro.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2015-02-12]
FF Extension: Strong Signal - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ap2dczro.default\Extensions\{b0831b08-26e0-4e79-be2c-d45ab7387aaf}.xpi [2015-02-22]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771456 2015-02-26] (Enigma Software Group USA, LLC.)
R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [16432 2015-02-26] (Enigma Software Group USA, LLC.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-02-26] ()
S3 Tosrfcom; No ImagePath
2015-02-26 15:18 - 2015-02-26 15:18 - 00001075 _____ () C:\Users\user\Desktop\SpyHunter.lnk
2015-02-26 15:18 - 2015-02-26 15:18 - 00000000 ____ D () C:\Users\user\AppData\Roaming\Enigma Software Group
2015-02-26 15:18 - 2015-02-26 15:18 - 00000000 ____ D () C:\sh4ldr
2015-02-26 15:17 - 2015-02-26 15:17 - 00019984 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2015-02-26 15:17 - 2015-02-26 15:17 - 00000000 ____ D () C:\Program Files\Enigma Software Group
2015-02-26 15:16 - 2015-02-26 15:16 - 03044736 _____ (Enigma Software Group USA, LLC.) C:\Users\user\Downloads\SpyHunter-Installer.exe
2015-02-26 14:35 - 2014-07-06 15:30 - 00000000 ____ D () C:\AdwCleaner
2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\user\AppData\Roaming\QDWCAL
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\user\AppData\Roaming\ZKSQYEMY
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

#5

dziękuję, pomogło:)

#6

Skasuj folder C:\FRST