Uciążliwe reklamy Solution Real i Deal Fox


(Szy Dariusz) #1

Witam, mam problem z wyskakującymi okienkami. Prosze o pomoc w ich usunięciu.

Z góry dziękuję. Pozdrawiam

Addition_26-04-2015_12-46-17.txt

FRST_26-04-2015_12-46-17.txt


(Acorus) #2

Odinstaluj YAC(Yet Another Cleaner!).Otwórz notatnik systemowy i wklej:

Task: {21986B66-FDCE-4B9A-ABDD-ED271C29314A} - System32\Tasks\{BAE4A5B7-3810-4489-9848-A187D8B12CD6} = Firefox.exe http://ui.skype.com/ui/0/6.18.60.105/pl/abandoninstall?page=tsProgressBar
Task: {4CBFE1EA-2F5C-4B22-B3FB-88F2648E9050} - \AdobeFlashPlayerUpdate No Task File ==== ATTENTION
Task: {E7EE220C-C6BF-4F38-88B6-D1B4527770A6} - System32\Tasks\{2F217059-FB43-46F6-85D8-B65CA0FB646A} = Firefox.exe http://ui.skype.com/ui/0/6.18.60.105/pl/abandoninstall?page=tsProgressBar
Task: {F0ABC733-D859-4ECC-89D9-599CB23306B7} - System32\Tasks\SpyHunter4Startup = C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-12-14] (Enigma Software Group USA, LLC.)
Task: {FEB28844-C60D-4FDC-B596-574FA8BD6FA8} - \AdobeFlashPlayerUpdate 2 No Task File ==== ATTENTION
HKU\S-1-5-21-132920134-1766922923-1734567042-1000\...\Policies\Explorer: []
ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] - {36A21736-36C2-4C11-8ACB-D4136F2B57BD} = No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction ======= ATTENTION
HKU\S-1-5-21-132920134-1766922923-1734567042-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction ======= ATTENTION
BHO: No Name - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No File
BHO-x32: No Name - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - No File
BHO-x32: No Name - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No File
BHO-x32: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~2\ALLPLA~1\Iplex\IPLEXT~1.DLL No File
Toolbar: HKU\S-1-5-21-132920134-1766922923-1734567042-1000 - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Extension: Solution Real 1.0.1 - C:\Users\darek\AppData\Roaming\Mozilla\Firefox\Profiles\dakre88p.default\Extensions\{76eaa25f-d535-414d-8a8b-4bce0a94d247}.xpi [2015-01-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-04-22]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.799
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx [Not Found]
R2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [118048 2014-12-08] (Elex do Brasil Participações Ltda)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-07] () [File not signed] ==== ATTENTION
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2014-12-14] (Enigma Software Group USA, LLC.)
R1 iSafeKrnl; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [249000 2014-12-08] (Elex do Brasil Participações Ltda)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [45224 2014-12-08] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlKit; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [99496 2014-12-08] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlR3; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [65704 2014-12-08] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [49320 2014-11-03] (Elex do Brasil Participações Ltda)
U3 BcmSqlStartupSvc; No ImagePath
S3 catchme; \\C:\Users\darek\AppData\Local\Temp\catchme.sys [X]
U2 CLKMSVC10_3A60B698; No ImagePath
U2 CLKMSVC10_C3B3B687; No ImagePath
U2 DriverService; No ImagePath
S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
U2 iATAgentService; No ImagePath
U2 idealife Update Service; No ImagePath
U3 IGRS; No ImagePath
U2 IviRegMgr; No ImagePath
U2 nvUpdatusService; No ImagePath
U2 Oasis2Service; No ImagePath
U2 PCCarerService; No ImagePath
U2 ReadyComm.DirectRouter; No ImagePath
U2 RichVideo; No ImagePath
U2 RtLedService; No ImagePath
U2 SeaPort; No ImagePath
U2 SoftwareService; No ImagePath
U3 SQLWriter; No ImagePath
U2 Stereo Service; No ImagePath
2015-04-26 12:11 - 2015-04-26 12:12 - 00000000 ____ D () C:\AdwCleaner
2013-06-26 20:01 - 2014-06-24 00:34 - 0003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.


(Szy Dariusz) #3

Jest o niebo lepiej, ale dalej pojawiają sie okienka z “ADS BY Deal Fox”.

W załączniku przesyłam wyniki do wykonaniu “FIX” i ze skanowania po nim.

Z góry dziekuję za pomoc.

Addition.txt

Fixlog.txt

FRST.txt

Shortcut.txt


(Acorus) #4

Otwórz notatnik systemowy i wklej:

Google Update Helper (x32 Version: 1.3.23.0 - BonanzaDeals) Hidden ==== ATTENTION
CustomCLSID: HKU\S-1-5-21-132920134-1766922923-1734567042-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 - C:\Program Files\Autodesk\AutoCAD 2013\acad.exe No File
CustomCLSID: HKU\S-1-5-21-132920134-1766922923-1734567042-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 - C:\Program Files\Autodesk\AutoCAD 2013\acad.exe /Automation No File
CustomCLSID: HKU\S-1-5-21-132920134-1766922923-1734567042-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 - C:\Program Files\Autodesk\AutoCAD 2013\pl-PL\acadficn.dll No File
FF SearchPlugin: C:\Users\darek\AppData\Roaming\Mozilla\Firefox\Profiles\dakre88p.default\searchplugins\yandex.ru-223731.xml [2013-10-26]
FF SearchPlugin: C:\Users\darek\AppData\Roaming\Mozilla\Firefox\Profiles\dakre88p.default\searchplugins\yqs-barff-yandex.xml [2013-10-28]
S2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [X]
2015-04-26 18:13 - 2015-04-26 18:15 - 00000000 ____ D () C:\Users\darek\Downloads\FRST-OlderVersion

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.


(Szy Dariusz) #5

Już nic nie wyskakuje:) Dzieki wielkie za pomoc.


(Acorus) #6

Skasuj folder C:\FRST