Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Pojawiające się reklamy w Chrome.

klaudia2701 08 Paź 2015 18:39 516 3
  • #1 08 Paź 2015 18:39
    klaudia2701
    Poziom 6  

    Witam.
    Problem w wyskakujących reklamach, przeglądarka Chrome.
    Oto log OTL.
    Jak się ich pozbyć?

    0 3
  • CControls
  • CControls
  • #4 08 Paź 2015 19:43
    Acorus 20
    Spec od komputerów

    Odinstaluj CinemaP-1.9cV16.03, Discover Treasure. Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {11822AC0-AACE-41C8-9D12-8B7811F0FC94} - System32\Tasks\Microsoft\Windows\RVLKL\RVLKL => C:\ProgramData\rvlkl\rvlkl.exe [2015-10-05] (Logixoft) <==== UWAGA
    AppInit_DLLs: C:\ProgramData\Plusron\Bamity.dll => C:\ProgramData\Plusron\Bamity.dll [883200 2015-10-05] ()
    AppInit_DLLs-x32: C:\ProgramData\Plusron\Tam-Ity.dll => C:\ProgramData\Plusron\Tam-Ity.dll [320000 2015-10-05] ()
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-2358740510-407866977-1345449014-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
    HKU\S-1-5-21-2358740510-407866977-1345449014-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
    SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...clVQmvrviUoSGfHwEgIza6qPuLyl0zu1R3Bg,,&q={searchTerms}
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-2358740510-407866977-1345449014-1000 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...clVQmvrviUoSGfHwEgIza6qPuLyl0zu1R3Bg,,&q={searchTerms}
    FF Homepage: hxxps://mysearch.avg.com?cid={B81DC806-3E34-49D3-9086-FCB14C8564AD}&mid=e809a2914d9447d387c5d5343d139737-163b515f0f53cf4d4e9ac9dc81d6d20a32d04c97&lang=pl&ds=AVG&coid=avgtbavg&cmpid=1214tb&pr=fr&d=2014-11-09 18:49:09&v=4.0.5.6&pid=wtu&sg=&sap=hp
    FF SearchPlugin: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\d2bln41k.default\searchplugins\findit.xml [2015-10-05]
    FF SearchPlugin: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\d2bln41k.default\searchplugins\istartsurf.xml [2015-09-30]
    FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\findit.xml [2015-10-05]




    FF Extension: Discover Treasure - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\d2bln41k.default\Extensions\{e94ff4ea-596f-4dd3-8115-a9d1d12a13e3}.xpi [2015-10-06]
    StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.mystartsearch.com/?type=sc&ts=...HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX
    CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F...tGMD1XNO1H0w_D4e7d6SKhqJ9yhGt5DoW56G-dYkrDg,,,,
    CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=1443957656&z=2ad9ba37924f4f891070619g1z7z7catew7m8z2w5o&from=cornl&uid=HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX","hxxp://www.google.pl/"
    CHR DefaultSearchURL: Default -> hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...EH5mtOEeNsSLT6ahBJCBROW4Vjbkmod4ENnQ,,&q={searchTerms}
    CHR DefaultSearchKeyword: Default -> feed.sonic-search.com
    CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
    CHR Extension: (Discover Treasure) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fonkecpccnhhopfeedaopjehnohlonkk [2015-10-08]
    CHR Extension: (Gumshoe) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekpfngodchodemgmkhinohkfjefjeea [2015-10-04]
    CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
    StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.mystartsearch.com/?type=sc&ts=...HITACHIXHTS547575A9E384_J2140054KNJMZAKNJMZAX
    R2 Service Mgr DiscoverTreasure; C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe [1047264 2015-10-08] ()
    R2 Update Mgr DiscoverTreasure; C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe [610528 2015-10-08] ()
    R2 WdsManPro; C:\ProgramData\BWdsManProB\WdsManPro.exe [442504 2015-10-04] (DTools LIMITED)
    S3 catchme; \??\C:\ComboFix\catchme.sys [X]
    2015-10-05 18:36 - 2015-10-05 18:54 - 00000000 ____D C:\Qoobox
    2015-10-05 18:36 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
    2015-10-05 18:36 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
    2015-10-05 18:36 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
    2015-10-05 18:36 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
    2015-10-05 18:36 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
    2015-10-05 18:36 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
    2015-10-05 18:36 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
    2015-10-05 18:36 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
    2015-10-05 18:18 - 2015-10-05 21:11 - 00000000 ____D C:\Program Files (x86)\SimpleFiles
    2015-10-05 18:18 - 2015-10-05 18:18 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\SimpleFiles
    2015-10-05 18:18 - 2015-10-05 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SimpleFiles
    2015-10-05 18:17 - 2015-10-05 18:17 - 00000000 ____D C:\Program Files (x86)\Discover Treasure
    2015-10-05 18:16 - 2015-10-05 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\LuckyBrowse
    2015-10-05 18:16 - 2015-10-05 18:16 - 00000000 ____D C:\ProgramData\LuckyBrowse
    2015-10-05 18:16 - 2015-10-05 18:16 - 00000000 ____D C:\Program Files (x86)\LuckyBrowse
    2015-10-05 18:05 - 2015-10-05 18:05 - 00000000 ____D C:\ProgramData\Plusrons
    2015-10-05 18:04 - 2015-10-05 22:04 - 00000000 ____D C:\ProgramData\Plusron
    2015-10-05 18:04 - 2015-10-05 18:04 - 00000000 ____D C:\ProgramData\rvlkl
    2015-10-04 13:21 - 2015-10-04 13:22 - 00000000 ____D C:\ProgramData\BWdsManProB
    2015-10-06 20:24 - 2014-03-15 16:23 - 00000000 ____D C:\AdwCleaner
    C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
    EmptyTemp:


    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw. Pobierz i uruchom jako administrator AdwCleaner https://toolslib.net/downloads/finish/1/ Kliknij Scan i później Cleaning.

    0