Uciążliwe programy. Proszę o pomoc

Dla specjalistów Bezpieczeństwo
#1

Witam,

bardzo proszę o pomoc z nieustannie wyskakującymi reklamami. Komputer z tego powodu również spowalnia. Praca na nim jest niemożliwa. Jestem laikiem w tych sprawach.

Załączam logi z OTL i Extras.

 

OTL:

http://www.wklej.org/id/1748302/

 

Extras:

http://www.wklej.org/id/1748303/

#2

Farbar Recovery Scan Tool - Raport obowiązkowy

#3

dziękuję za odpowiedź. Poniżej raport:

 

FRST:

http://www.wklej.org/id/1748322/

 

Addition:

 

Shortcut

http://www.wklej.org/id/1748324/

#4

Odinstaluj Image Editor Packages,Norton Internet Security.Otwórz notatnik systemowy i wklej:

HKLM\...\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] = "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [WinampAgent] = C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] = C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] = C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [HP Software Update] = C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] = [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-320547457-2041515029-3647522490-1001\...\Run: [dc2k5] = C:\WINDOWS\SVIQ.EXE
HKU\S-1-5-21-320547457-2041515029-3647522490-1001\...\Run: [Fun] = C:\WINDOWS\system\Fun.exe
HKU\S-1-5-21-320547457-2041515029-3647522490-1001\...\Run: [dc] = C:\WINDOWS\dc.exe
HKU\S-1-5-21-320547457-2041515029-3647522490-1001\...\CurrentVersion\Windows: [Load] C:\WINDOWS\inf\Other.exe ===== ATTENTION
HKU\S-1-5-21-320547457-2041515029-3647522490-1001\...\CurrentVersion\Windows: [Run] C:\WINDOWS\system32\config\Win.exe ===== ATTENTION
Startup: C:\Users\siedlok\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\superoptimizersetup.lnk [2015-03-14]
ShortcutTarget: superoptimizersetup.lnk - C:\ProgramData\{357db69a-afcc-2f47-357d-db69aafcda6a}\superoptimizersetup.exe (No File)
ShellIconOverlayIdentifiers: [SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = No File
ShellIconOverlayIdentifiers: [SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = No File
ShellIconOverlayIdentifiers: [SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524} = No File
ShellIconOverlayIdentifiers-x32: [SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = No File
ShellIconOverlayIdentifiers-x32: [SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = No File
ShellIconOverlayIdentifiers-x32: [SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524} = No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction ======= ATTENTION
SearchScopes: HKU\.DEFAULT - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKLM-x32 - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
CHR HKLM\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx [2014-12-10]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx [2014-12-10]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
S2 Update DigiHelp; "C:\Program Files (x86)\DigiHelp\updateDigiHelp.exe" [X]
S2 Update web waltz; "C:\Program Files (x86)\web waltz\updatewebwaltz.exe" [X]
S2 Util DigiHelp; "C:\Program Files (x86)\DigiHelp\bin\utilDigiHelp.exe" [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
2015-06-28 19:16 - 2015-06-28 19:20 - 00000000 ____ D C:\AdwCleaner
2013-06-27 16:16 - 2014-07-10 15:31 - 0003731 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

#5

Dziękuję - zrobiłem wszystko jak w instrukcji, Podaje nowe logi:

 

http://wklej.org/id/1748792/

#6

Skasuj folder C:\FRST. Reset Chrome: https://support.google.com/chrome/answer/3296214?hl=pl

#7

usunąłem FRST oraz zrobiłem reset chrome jednak reklamy nadal wyskakują… :frowning: