Wirus podkreslający wyrazy na stronach, wyskakujące reklamy

Oprogramowanie komputerowe Problemy z oprogramowaniem
#1

Po raz kolejny mam ten sam problem ze złośliwym oprogramowaniem.

OLT

http://wklej.to/9D3LK

Extras

http://wklej.to/Z1UiF

 

#2

Miałeś już taki problem i zapomniałeś, że nikt nie sprawdza logów z OTL.

#3

W styczniu miałem taki problem.

W jakim programie to zrobić mam aby było dobrze?

W OTS

http://wklej.to/Uw53e

#4

http://forum.dobreprogramy.pl/farbar-recovery-scan-tool-raport-obowi%C4%85zkowy-t478727/

 

Dział Bezpieczeństwo

http://forum.dobreprogramy.pl/bezpiecze%C5%84stwo-f15/

#5

FRTS

http://www.wklej.org/id/1771404/

Addition

http://www.wklej.org/id/1771405/

Shortcut

http://www.wklej.org/id/1771406/

#6

Nie cytuj moich odpowiedzi.

W panelu sterowania odinstaluj TermCoach 1.10.0.21.

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448520 2015-06-24] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-27] (DivX, LLC)
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXBannerAdPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXBannerAdPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlayerPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlayerPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDevicePanePlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDevicePanePlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll",DllRegisterServer
HKLM-x32\...\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDFXAudioPlugin.dll] => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDFXAudioPlugin.dll",DllRegisterServer
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKU\S-1-5-21-3292686513-19477922-3165046448-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3292686513-19477922-3165046448-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
R2 tcsvc_1.10.0.21; C:\Program Files (x86)\TermCoach_1.10.0.21\Service\tcsvc.exe [300120 2015-07-28] (TermCoach)
U3 Winsock; no ImagePath
2015-08-09 10:48 - 2015-08-09 10:48 - 00000000 ____ D C:\Users\Zn4jomy\Desktop\FRST-OlderVersion
2015-08-07 22:00 - 2015-08-07 22:01 - 00000000 ___SD C:\ComboFix
RemoveDirectory: C:\Qoobox
2015-08-07 22:00 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-08-07 22:00 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-08-07 22:00 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-08-07 22:00 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-08-07 22:00 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-08-07 22:00 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-08-07 22:00 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-08-07 22:00 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-08-07 21:41 - 2015-08-08 22:01 - 00000000 ____ D C:\AdwCleaner
2015-08-05 20:32 - 2015-08-05 20:32 - 00000000 ____ D C:\Program Files (x86)\TermCoach_1.10.0.21
2015-07-10 20:12 - 2015-07-10 20:12 - 00000000 ____ D C:\ProgramData\AVG
2015-07-10 20:07 - 2015-07-10 20:07 - 00043494 _____ C:\Users\Zn4jomy\AppData\Local\Tempdivx0de7
C:\Users\Zn4jomy\AppData\Local\Temp*.exe
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx0265
2015-07-09 11:39 - 2015-07-09 11:39 - 0043485 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx0510
2015-07-08 02:08 - 2015-07-08 02:08 - 0253196 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx07c3
2015-06-21 22:18 - 2015-06-21 22:18 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx0dd4
2015-07-10 20:07 - 2015-07-10 20:07 - 0043494 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx0de7
2015-07-06 08:02 - 2015-07-06 08:02 - 0253160 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx11f0
2015-06-14 23:18 - 2015-06-14 23:18 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx2aa0
2015-06-20 21:13 - 2015-06-20 21:13 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx2bfe
2015-06-20 21:12 - 2015-06-20 21:12 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx2d1f
2015-07-04 22:49 - 2015-07-04 22:49 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx5528
2015-06-20 21:12 - 2015-06-20 21:12 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx5afa
2015-06-14 23:19 - 2015-06-14 23:19 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx6006
2015-06-14 23:20 - 2015-06-14 23:20 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx620d
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx688f
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx68fc
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx6b6e
2015-07-06 21:17 - 2015-07-06 21:17 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx785d
2015-07-05 11:43 - 2015-07-05 11:43 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx8e4f
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx9bb8
2015-07-04 22:49 - 2015-07-04 22:49 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivx9cef
2015-06-14 23:19 - 2015-06-14 23:19 - 0043682 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxb886
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxbee1
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxc18c
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxc20f
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxe2d8
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxe41e
2015-05-19 02:43 - 2015-05-19 02:43 - 0247298 _____ () C:\Users\Zn4jomy\AppData\Local\Tempdivxe8af
Task: {1A9D2E2C-A60D-4239-B897-34AC646EF995} - \Driver Booster SkipUAC (Zn4jomy) -> No File <==== ATTENTION
Task: {9050B3BF-C7B6-4E35-8A02-45153977F5AC} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-03] ()
Task: {91EDC2B6-6786-406C-9226-7AEC7BF02097} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {B15336C8-56BA-4BCF-8836-10BB8D079EDC} - \Driver Booster Scan -> No File <==== ATTENTION
Task: {C4D032D2-A552-4966-9A71-7668CF555792} - \Driver Booster Update -> No File <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition i Shortcut.

#7

Zrobiłem jak mi mówiłeś o to raport.

http://wklejto.org/w/8e407afe

Z tym że po zrobieniu tego nie działa mi karta sieciowa na komputerze stacjonarnym.

Ponownie zainstalowanie sterownika nic mi nie pomogło.

I z automatu nie mogę zalogować się do rutera po 192.168.1.1

#8

Nie było usuwane nic związanego z siecią, ale nie wiadomo co robił ComboFix, bo ten program powoduje czasem takie problemy.

#9

Odinstalowałem sterownik i zainstalowałem go ponownie ale nic to nie pomogło.

Jak można to naprawić?

#10

http://windows.microsoft.com/pl-pl/windows/what-is-system-restore#1TC=windows-7

#11

Nic mi to nie dało.

Najwyżej skasuje system i zainstaluje go ponownie.

#12

Complete Internet Repair:

http://www.rizonesoft.com/software/complete-internet-repair/

http://www.rizonesoft.com/?rs-download=874