X

Wyskakujące reklamy, sprawdzenie loga otl

15 Mar 2014 15:11 KLklaudia2701
  • #1 15 Mar 2014 15:11
    klaudia2701
    Level 6  
    Helpful post? (0)
    Witam!
    Chcę uporać się z wyskakującymi reklamami na kompie brata. Ma na nim totalny syf i nie wiem za co się zabrać. Dołączam log z otl. Proszę o pomoc.
  • Helpful post
    #2 15 Mar 2014 15:19
    mackos_2
    Level 21  
    Helpful post? (0)
    Użyj AdwCleaner ( http://www.bleepingcomputer.com/download/adwcleaner/ ) funkcja: Scan/Szukaj i Clean/Usuń.
  • Helpful post
    #3 15 Mar 2014 15:41
    Kolobos
    Spec od komputerów
    Helpful post? (0)
    Odinstaluj:
    McAfee Security Scan
    BrowseSmart
    Ask
    DefaultTab
    WPM
    SaveSense
    BonanzaDeals

    Usun w chrome dodatki:
    BrowseSmart
    DefaultTab

    Wykonaj skrypt w OTL:

    :OTL
    PRC - [2014-03-14 22:32:31 | 000,348,960 | ---- | M] () -- C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe
    PRC - [2014-02-25 04:06:40 | 000,166,352 | ---- | M] (APN LLC.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
    PRC - [2014-02-25 04:06:19 | 001,758,160 | ---- | M] (APN) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
    PRC - [2013-12-20 04:24:44 | 000,574,464 | ---- | M] () -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
    PRC - [2013-12-11 19:52:23 | 000,499,856 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\WPM\wprotectmanager.exe
    PRC - [2013-12-04 01:51:37 | 000,107,520 | ---- | M] () -- C:\Users\lenovo\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe
    SRV - [2014-03-14 22:32:31 | 000,348,960 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe -- (Util BrowseSmart)
    SRV - [2014-03-14 22:29:23 | 000,348,960 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe -- (Update BrowseSmart)
    SRV - [2014-02-25 04:06:40 | 000,166,352 | ---- | M] (APN LLC.) [Auto | Running] -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe -- (APNMCP)
    SRV - [2014-02-11 01:12:35 | 000,146,920 | ---- | M] (SaveSense) [On_Demand | Stopped] -- C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselivem)
    SRV - [2014-02-11 01:12:35 | 000,146,920 | ---- | M] (SaveSense) [Auto | Stopped] -- C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselive)
    SRV - [2013-12-20 04:24:44 | 000,574,464 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe -- (DefaultTabSearch)
    SRV - [2013-12-11 19:52:23 | 000,499,856 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm)
    SRV - [2013-12-11 19:51:49 | 000,148,976 | ---- | M] (BonanzaDeals) [On_Demand | Stopped] -- C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe -- (bonanzadealslivem)
    SRV - [2013-12-11 19:51:49 | 000,148,976 | ---- | M] (BonanzaDeals) [Auto | Stopped] -- C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe -- (bonanzadealslive)
    SRV - [2013-12-04 01:51:37 | 000,107,520 | ---- | M] () [Auto | Running] -- C:\Users\lenovo\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe -- (DefaultTabUpdate)
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
    IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
    IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.aartemis.com/web/?type=ds&ts=1386787924&from=cor&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX&q={searchTerms}
    FF - prefs.js..extensions.enabledAddons: %7Bf9d03c26-0575-497e-821d-f7956d23e0ca%7D:3.1
    FF - prefs.js..extensions.enabledAddons: WebSiteRecommendation%40weliketheweb.com:1.1.1
    FF - prefs.js..extensions.enabledAddons: %7B7f2b4ad0-671a-477b-bcd4-79d041f50d27%7D:1.0.1
    FF - HKLM\Software\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3: C:\Program Files (x86)\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
    FF - HKLM\Software\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9: C:\Program Files (x86)\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
    FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3: C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
    FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9: C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
    [2014-02-11 01:12:30 | 000,000,000 | ---D | M] (SaveSense) -- C:\Users\lenovo\AppData\Roaming\mozilla\Firefox\Profiles\d2bln41k.default\extensions\{2d7886a0-85bb-4bf2-b684-ba92b4b21d23}
    [2013-12-04 19:02:57 | 000,000,000 | ---D | M] (uTorrentControl_v6) -- C:\Users\lenovo\AppData\Roaming\mozilla\Firefox\Profiles\d2bln41k.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}
    [2013-12-24 11:19:27 | 000,000,000 | ---D | M] ("WebSite Recommendation") -- C:\Users\lenovo\AppData\Roaming\mozilla\Firefox\Profiles\d2bln41k.default\extensions\WebSiteRecommendation@weliketheweb.com
    [2014-02-28 21:29:27 | 000,050,738 | ---- | M] () (No name found) -- C:\Users\lenovo\AppData\Roaming\mozilla\firefox\profiles\d2bln41k.default\extensions\addon@defaulttab.com.xpi
    [2014-03-14 00:17:59 | 000,555,588 | ---- | M] () (No name found) -- C:\Users\lenovo\AppData\Roaming\mozilla\firefox\profiles\d2bln41k.default\extensions\toolbar_ORJ-V7C@apn.ask.com.xpi
    [2014-02-28 20:50:49 | 000,007,315 | ---- | M] () (No name found) -- C:\Users\lenovo\AppData\Roaming\mozilla\firefox\profiles\d2bln41k.default\extensions\{7f2b4ad0-671a-477b-bcd4-79d041f50d27}.xpi
    [2013-12-20 21:14:18 | 000,002,839 | ---- | M] () (No name found) -- C:\Users\lenovo\AppData\Roaming\mozilla\firefox\profiles\d2bln41k.default\extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca}.xpi
    [2014-03-14 00:17:57 | 000,002,542 | ---- | M] () -- C:\Users\lenovo\AppData\Roaming\mozilla\firefox\profiles\d2bln41k.default\searchplugins\ask-search.xml
    CHR - Extension: BrowseSmart = C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ippenodjaoidmkkfdlmdhofiebnpjddb\1.0.1_0\
    CHR - Extension: DefaultTab = C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\2.0.8_0\
    O2 - BHO: (BrowseSmart) - {4c06cc5b-59cb-4063-8ddb-6452de2c5617} - C:\Program Files (x86)\BrowseSmart\BrowseSmartBHO.dll (BrowseSmart)
    O2 - BHO: (SaveSense) - {71e129ff-6c2a-4984-818c-7e2c998b8d99} - C:\Users\lenovo\AppData\Local\SaveSense\SaveSenseIE.dll (SaveSense)
    O2 - BHO: (DefaultTab Browser Helper) - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\lenovo\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll (Search Results LLC.)
    O2 - BHO: (BonanzaDeals) - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files (x86)\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals)
    O2 - BHO: (BrowseSmart) - {ffbb88a9-c663-4b9b-9170-70fa0a5a2786} - C:\Program Files (x86)\BrowseSmart\BrowseSmartBHO.dll (BrowseSmart)
    O4 - HKLM..\Run: [ApnTBMon] C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN)
    O4 - HKU\.DEFAULT..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
    O4 - HKU\S-1-5-18..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
    O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
    O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
    [2014-03-13 10:28:53 | 000,000,000 | ---D | C] -- C:\ProgramData\AskPartnerNetwork
    [2014-03-13 10:28:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AskPartnerNetwork
    [2014-03-13 10:28:45 | 000,000,000 | ---D | C] -- C:\ProgramData\APN
    [2014-02-14 11:03:05 | 000,000,000 | ---D | C] -- C:\Users\lenovo\AppData\Roaming\UpdateBonanza
    [2014-03-15 15:03:03 | 000,000,296 | ---- | M] () -- C:\Windows\tasks\Update Bonanza.job
    [2014-03-15 15:01:00 | 000,000,294 | ---- | M] () -- C:\Windows\tasks\Bonanza.job
    [2014-03-15 14:57:00 | 000,000,926 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
    [2014-03-15 14:17:00 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\SaveSenseLiveUpdateTaskMachineUA.job
    [2014-03-15 14:14:00 | 000,000,296 | ---- | M] () -- C:\Windows\tasks\SaveSense.job
    [2014-03-15 12:57:00 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2358740510-407866977-1345449014-1000UA.job
    [2014-03-15 01:17:00 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\SaveSenseLiveUpdateTaskMachineCore.job
    [2014-03-15 01:10:48 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
    [2014-03-14 21:57:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2358740510-407866977-1345449014-1000Core.job
    [2013-12-29 11:01:27 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\Bonanza
    [2013-12-04 01:51:37 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\defaulttab
    [2014-01-14 14:34:37 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\eCyber
    [2014-01-14 15:24:12 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\iSafe
    [2014-03-07 00:26:09 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\newnext.me
    [2013-12-17 15:52:26 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\OpenCandy
    [2014-02-11 01:12:31 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\SaveSense
    [2013-12-04 19:02:41 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\SimilarSites
    [2013-12-05 14:39:18 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\systweak
    [2014-02-14 11:03:05 | 000,000,000 | ---D | M] -- C:\Users\lenovo\AppData\Roaming\UpdateBonanza



    Zrob pelny skan przy pomocy Mbam:
    http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

    Po wykonaniu daj nowy log z OTL, ze skanowania.
  • #4 15 Mar 2014 20:21
    klaudia2701
    Level 6  
    Topic author Helpful post? (0)
    Zrobiłam wszystko zgodnie z instrukcjami. Reklamy znikły. Wstawiam loga. Czy wszystko już okej? :)
  • Helpful post
    #5 15 Mar 2014 21:18
    Kolobos
    Spec od komputerów
    Helpful post? (0)
    Wybierz w OTL Sprzatanie i to wszystko.
  • #6 15 Mar 2014 22:55
    klaudia2701
    Level 6  
    Topic author Helpful post? (0)
    Dziękuję serdecznie za pomoc:)
Mouser  Search 4 million + Products
Browse Products