Zmora Strong signal ads

kysu12345 · 21 Marzec 2015 20:12

Witam problem z reklamami uniemozliwiajacymi korzystanie z komputera. Zrobilem logi z programu frst. Prosze o instrukcje jakie mam podjac następne kroki.

Addition - wklej.org/id/1668095

Frst -wklej.org/id/1668096

Pozdrawiam i prosze o pomoc

Atis · 21 Marzec 2015 22:18

W panelu sterowania odinstaluj:

iWebarMcAfee Security Scan Plus

SensePlus

Shopper-Pro

YouTube Accelerator

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

CloseProcesses:
HKU\S-1-5-21-2946609190-2713987549-12398012-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Aneczka\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2946609190-2713987549-12398012-1000\...\Policies\Explorer: [] 
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=hppp&ts=1425116027&from=smt&uid=SAMSUNGXHM321HI_S26VJ9FZ717686
CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hppp&ts=1425116027&from=smt&uid=SAMSUNGXHM321HI_S26VJ9FZ717686"
CHR Extension: (Strong Signal) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jahepoliaomnhnejhcjbapfailjpapek [2015-03-11]
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-02-28] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-02-28] (globalUpdate) [File not signed]
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 SPBIUpd; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2346408 2015-03-18] (ShopperPro)
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\updater.exe [432888 2015-03-21] ()
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [487056 2015-02-28] (SysTool PasSame LIMITED)
R2 YouTubeAcceleratorService; C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe [1510248 2015-02-28] (GOOBZO)
R3 SPBIUpdd; C:\Program Files\Common Files\ShopperPro\spbiw.sys [41624 2015-03-18] ()
R2 SPDRIVER_1.39.0.1578; C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1578\jsdrv.sys [52376 2015-03-18] ()
2015-03-10 17:55 - 2015-03-21 18:34 - 00000000 ____ D () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
2015-03-10 17:55 - 2015-03-10 17:55 - 00000000 ____ D () C:\Program Files (x86)\Strong Signal
2015-03-05 21:21 - 2015-03-16 18:53 - 00000000 ____ D () C:\ProgramData\McAfee Security Scan
2015-03-05 21:21 - 2015-03-05 21:21 - 00000000 ____ D () C:\ProgramData\McAfee
2015-02-28 10:44 - 2015-02-28 10:44 - 00000000 ____ D () C:\Program Files (x86)\globalUpdate
2015-02-28 10:44 - 2015-02-28 10:44 - 00000000 ____ D () C:\Users\Aneczka\AppData\Local\globalUpdate
2015-02-28 10:34 - 2015-03-19 19:41 - 00000000 ____ D () C:\Program Files\Common Files\ShopperPro
2015-02-28 10:34 - 2015-03-18 17:02 - 00000000 ____ D () C:\ProgramData\ShopperPro
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\Users\Public\Documents\YTAHelper
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\Users\Public\Documents\ShopperPro
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\Users\Public\Documents\GOOBZO
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\ProgramData\YTAHelper
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\ProgramData\IHProtectUpDate
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\Program Files (x86)\YTAHelper
2015-02-28 10:34 - 2015-02-28 10:34 - 00000000 ____ D () C:\Program Files (x86)\XTab
2015-02-28 10:33 - 2015-02-28 10:33 - 00000000 ____ D () C:\ProgramData\WindowsMangerProtect
2015-02-28 09:51 - 2015-03-21 18:33 - 00000000 ____ D () C:\ProgramData\Temp
Task: {026548B6-FA15-49CD-98FF-F6C5FB2E0B3B} - System32\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-7 => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-7.exe [2015-02-28] (Webby) <==== ATTENTION
Task: {08DBB95B-3DCF-4366-9B79-C9269AC2CD41} - System32\Tasks\ShopperPro => C:\Program Files (x86)\ShopperPro\ShopperPro.exe [2015-03-18] (Goobzo LTD) <==== ATTENTION
Task: {121DBF4A-C49C-47AC-9BAA-817A9730A83F} - System32\Tasks\YTAUpdate => C:\Program Files (x86)\YouTube Accelerator\Updater.exe [2015-02-28] (Goobzo) <==== ATTENTION
Task: {2C9EFD94-11FB-4C27-B3DC-AA728B70C3DC} - System32\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-11 => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-11.exe [2015-02-28] (Webby) <==== ATTENTION
Task: {2EEFEFD4-DF40-4C56-BF81-7140375A6224} - System32\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-6 => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-6.exe [2015-02-28] (Webby) <==== ATTENTION
Task: {34A879F6-D807-4B64-B760-B3FDDD7A7432} - System32\Tasks\YTAHelper => C:\Program Files (x86)\YTAHelper\YTAHelper.exe [2015-02-22] (Goobzo LTD) <==== ATTENTION
Task: {46101BCD-6B62-4A0A-A5B1-6B972C691915} - System32\Tasks\Inst_Rep => C:\Users\Aneczka\AppData\Local\Installer\Install_7467\DCytaiesmt_smtyc_setup.exe [2015-02-28] ()
Task: {4C305303-CC96-4D09-AD8C-D1B457755AE6} - System32\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-11 => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-11.exe [2015-02-28] (Sense+) <==== ATTENTION
Task: {6CC930ED-EB67-4EB3-980B-85DC00AC9F87} - System32\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-7 => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-7.exe [2015-02-28] (Sense+) <==== ATTENTION
Task: {76A29BA9-61C4-4C61-B964-6FE91F652068} - System32\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5 => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5.exe [2015-02-28] (Sense+) <==== ATTENTION
Task: {7EF0089A-70E7-459B-82BF-0740C573F93B} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro\updater.exe [2015-03-18] (Goobzo) <==== ATTENTION
Task: {883ECA99-8105-46E8-9A93-34EFCD41D9CB} - System32\Tasks\SPDriver => C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1578\jsdrv.exe [2015-03-18] () <==== ATTENTION
Task: {91208295-E83A-43B8-9528-A3975E06FE7E} - System32\Tasks\YTAUpdate_logon => C:\Program Files (x86)\YouTube Accelerator\Updater.exe [2015-02-28] (Goobzo) <==== ATTENTION
Task: {D5BBC301-F0A9-4CCA-B972-4EEB71809948} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-02-28] (globalUpdate) <==== ATTENTION
Task: {DF4C9EC2-05E4-41E2-B035-20010D160F07} - System32\Tasks\SPBIW_UpdateTask_Time_323636313330363531302d454a2a415034412a4a6c575a => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {EED032D8-54F8-4DF1-A890-36F8D0281CB6} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-02-28] (globalUpdate) <==== ATTENTION
Task: {F081D5DE-A60B-4A3E-8064-85166153C845} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {F5028BAF-C36B-4E8D-8AE8-174B41E4ED40} - System32\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-6 => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-6.exe [2015-02-28] (Sense+) <==== ATTENTION
Task: C:\Windows\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-6.job => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-7.job => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\7097e20d-b4ba-4df2-863f-c5fde9ed4035-11.job => C:\Program Files (x86)\iWebar\7097e20d-b4ba-4df2-863f-c5fde9ed4035-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-6.job => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-7.job => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-11.job => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5.job => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5_user.job => C:\Program Files (x86)\SensePlus\f66e49ce-6c9d-4cac-aced-1bb277a6e147-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
CMD: netsh winsock reset
EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.

Pobierz i uruchom AdwCleaner Kliknij Scan i później Cleaning.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.

kysu12345 · 22 Marzec 2015 14:13

Fixlog - http://wklej.org/id/1668654/

Nowy raport z FRST - http://wklej.org/id/1668657/

Adw Cleaner- http://wklej.org/id/1668661/

Ostatni raport FRST - http://wklej.org/id/1668663/

Jakie są następne kroki? Widzę, że w przeglądarce już problem znikł.

Atis · 22 Marzec 2015 14:48

Odinstaluj McAfee Security Scan Plus i Akamai NetSession Interface.

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
CHR DefaultSearchKeyword: Default -> mystartsearch
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
2015-03-22 14:56 - 2015-03-22 14:56 - 00000000 ____ D () C:\ProgramData\McAfee
2015-03-22 14:55 - 2015-03-22 14:56 - 00000000 ____ D () C:\ProgramData\McAfee Security Scan
2015-03-10 18:37 - 2015-03-10 18:37 - 00000000 ____ D () C:\Users\Aneczka\AppData\Local\Akamai
DeleteQuarantine:

Uruchom FRST i kliknij Fix. Skasuj folder C:\FRST

Usuń stare punkty przywracania: Aby usunąć wszystkie punkty przywracania

Dysk przeskanuj Malwarebytes Anti-Malware

Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware Premium.

http://wstaw.org/m/2014/03/25/2014-03-25_123039.png

Język PL > Settings > General Settings > Language > Polish

Przeczytaj w jaki sposób należy instalować programy: KLIK - KLIK - KLIK - KLIK

Odinstaluj Adobe Flash Player 16 ActiveX

Zainstaluj:

Flash Player 17.0.0.134 ActiveX

Service Pack 1 x64 (903.2 MB)

Internet Explorer 11

kysu12345 · 22 Marzec 2015 18:28

Wszystko dziala, bardzo dziękuję za pomoc. Temat do zamkniecia