Wyskakujące reklamy w Chrome Windows 7 32x


(Sajkros) #1

Skan wykonany. OTL: http://wklej.to/oHiWyExtras: http://wklej.to/6NaxP Czyszczenie Kompa za pomocą AdwCleanera na razie odpada, bo usuwa mi internet :v


(Acorus) #2

Pobierz Farbar Recovery Scan Tool http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ zgodny z wersją systemu 32-bit lub 64-bit.


(Sajkros) #3

FRST http://wklej.to/q3Ae5Addition: http://wklej.to/6hCNl


(Atis) #4

Odinstaluj SpyHunter 4, TerminusDouble, YTD Video Downloader 4.8.4.

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hppp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1426620080&from=face&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hppp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1426620080&from=face&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1941034440-304669165-1358077965-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=dspp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
HKU\S-1-5-21-1941034440-304669165-1358077965-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hppp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX
HKU\S-1-5-21-1941034440-304669165-1358077965-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hppp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX
HKU\S-1-5-21-1941034440-304669165-1358077965-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=dspp&ts=1426618959&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1426620080&from=face&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1426620080&from=face&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&q={searchTerms}
SearchScopes: HKLM -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchoholic.info/?l=1&q={searchTerms}&pid=21073&r=2015/01/04&hid=3087173373326095212&lg=EN&cc=PL&unqvl=72
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1941034440-304669165-1358077965-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.omniboxes.com/web/?utm_source=b&utm_medium=obw&utm_campaign=install_ie&utm_content=ds&from=obw&uid=ST3500630A_9QGABDWXXXXX9QGABDWX&ts=1426618972&type=default&q={searchTerms}
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1409556689&from=amt&uid=ST3500630A_9QGABDWXXXXX9QGABDWX
S4 7ce60bbd; "C:\Windows\system32\rundll32.exe" "c:\Program Files\TerminusDouble\TerminusDouble.dll",serv
S2 NvtlService; "C:\Program Files\Novatel Wireless\Novacore\Server\NvtlSrvr.exe" [X]
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-03-20] ()
S1 ccnfd_1_10_0_6; system32\drivers\ccnfd_1_10_0_6.sys [X]
S1 qrnfd_1_10_0_9; system32\drivers\qrnfd_1_10_0_9.sys [X]
S2 sbmntr; \??\C:\PROGRA~1\YTDOWN~1\sbmntr.sys [X]
S2 SPDRIVER_1.37.0.1373; \??\C:\Program Files\ShopperPro\JSDriver\1.37.0.1373\jsdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2015-03-22 15:05 - 2015-03-22 16:21 - 00000000 ____ D () C:\AdwCleaner
2015-03-20 19:59 - 2015-03-20 20:14 - 00000000 ____ D () C:\Users\Sajkros\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2015-03-20 19:58 - 2015-03-22 16:37 - 00000000 ____ D () C:\Program Files\Enigma Software Group
2015-03-20 19:58 - 2015-03-20 19:58 - 00019984 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2015-03-17 20:26 - 2015-03-22 16:39 - 00000000 ____ D () C:\Program Files\HD Cinema Pro 1.8cV16.03
2015-03-17 20:10 - 2015-03-25 19:23 - 00000000 ____ D () C:\Users\Sajkros\AppData\Local\34323030-1426623049-4132-4232-4331FFFFFFFF
2015-03-27 19:15 - 2013-08-30 20:37 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-20 20:22 - 2014-06-01 21:04 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
c:\Program Files\TerminusDouble
2015-01-06 22:40 - 2015-01-29 21:59 - 0000112 _____ () C:\ProgramData\7pk5hq.dat
Task: {067B9E37-F34D-4EE3-9462-CA05D7EEBBF6} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {0B113802-AEA6-47CA-8628-C0662799936D} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {1199326B-1000-438A-9F56-252480FDE72A} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-5_user => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-5.exe <==== ATTENTION
Task: {12853B74-5CF1-4CB3-89C4-00DC5F5493D9} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-10_user => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-10.exe <==== ATTENTION
Task: {1DC515DF-7D78-4C4E-81CE-C46DB37D1675} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {1FEED5FE-8787-481F-91C1-B13BAD94FED9} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-3 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-3.exe <==== ATTENTION
Task: {21C7BB69-497A-4307-A0DD-D8F0044C27E4} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {310C20E9-3BFB-4B02-9DCA-DC20D4FCFDF4} - System32\Tasks\AAPY => C:\Users\Sajkros\AppData\Roaming\AAPY.exe <==== ATTENTION
Task: {35C01986-98C8-4941-8ACA-3D5E41F5B7DC} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-1-6 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-1-6.exe [2015-03-17] (HD CinemaV16.03) <==== ATTENTION
Task: {491D3283-9687-45ED-A6A7-EAA7DBE107BD} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-5 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-5.exe <==== ATTENTION
Task: {68D3C24F-EF2D-4B71-9EB5-203C2853B2A6} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-6 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-6.exe [2015-03-17] (HD CinemaV16.03) <==== ATTENTION
Task: {76250FD3-D2B7-4E37-9AC6-BA60BCB4B67C} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-7 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-7.exe <==== ATTENTION
Task: {83989E80-DAD5-443E-B3B2-452991505CF3} - System32\Tasks\KGJO => C:\Users\Sajkros\AppData\Roaming\KGJO.exe <==== ATTENTION
Task: {8F65958B-D7DC-4B27-B888-AD07A5B6804F} - System32\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-1-7 => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-1-7.exe <==== ATTENTION
Task: {943C81F5-0480-42A6-84AA-D8E093CA737F} - \Program aktualizacji online firmy Adobe. No Task File <==== ATTENTION
Task: {9B482E61-9014-450D-BCC5-CB94C305800C} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Sajkros\AppData\Local\SmartWeb\SmartWebHelper.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-1-6.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-1-7.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-10_user.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-3.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-5.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-5_user.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-6.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\01187b69-0c28-4a49-91a5-93186d9c5cde-7.job => C:\Program Files\HD Cinema Pro 1.8cV16.03\01187b69-0c28-4a49-91a5-93186d9c5cde-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\AAPY.job => C:\Users\Sajkros\AppData\Roaming\AAPY.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => <==== ATTENTION
Task: C:\Windows\Tasks\KGJO.job => C:\Users\Sajkros\AppData\Roaming\KGJO.exe <==== ATTENTION
C:\Users\Sajkros\AppData\Roaming\*.exe
CMD: netsh winsock reset
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.


(mlody95pl) #5

Jak Ci usuwa internet to wpisz w CMD:

netsh int ip reset c:\resetlog.txt


(Sajkros) #6

Report FRST Scan 

 

http://wklej.to/ZVZIv


(Atis) #7

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
2015-03-27 22:34 - 2015-03-27 22:34 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-17 20:21 - 2015-03-16 16:21 - 00295808 _____ (BD Inc.) C:\Windows\system32\BDL.dll
2015-03-22 16:39 - 2015-01-12 21:54 - 00000000 ____ D () C:\ProgramData\ac57225b67a4770e
2015-03-22 16:39 - 2015-01-11 22:51 - 00000000 ____ D () C:\ProgramData\IsavoErr
DeleteQuarantine:
CreateRestorePoint:

Uruchom FRST i kliknij Fix. Skasuj folder C:\FRST

Dysk przeskanuj Malwarebytes Anti-Malware

Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware Premium.

http://wstaw.org/m/2014/03/25/2014-03-25_123039.png

Język PL > Settings > General Settings > Language > Polish

Przeczytaj w jaki sposób należy instalować programy: KLIK - KLIK - KLIK - KLIK

Odinstaluj:

Adobe Flash Player 11

Adobe Flash Player 16 NPAPI

Java 7 Update 67

Zainstaluj:

Flash Player 17.0.0.134 Plugin

Flash Player 17.0.0.134 ActiveX

Java 8 Update 40

Service Pack 1 (537.8 MB)

Internet Explorer 11


(Sajkros) #8

Komputer zaczął normalnie funkcjonować.

Bardzo wam dziękuje za wszelaką pomoc.