Dalej są te reklamy. Dodaję fixlog.
Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Infekk at 2015-06-17 18:04:49 Run:1
Running from C:\Users\Infekk\Downloads
Loaded Profiles: Infekk (Available Profiles: Infekk)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Task: {EB9EB500-CC41-4BC3-A115-01300F77F65C} - System32\Tasks\{0C1E9035-B9FB-4D57-9583-BD1A857F8108} = & gt; pcalua.exe -a C:\Users\Infekk\AppData\Local\Temp\Temp1_6305_vista_win7_pg537(dobreprogramy.pl).zip\6305_Vista_PG537\setup.exe
AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\Users\Infekk\Dane aplikacji:NT
AlternateDataStreams: C:\Users\Infekk\Dane aplikacji:NT2
AlternateDataStreams: C:\Users\Infekk\AppData\Roaming:NT
AlternateDataStreams: C:\Users\Infekk\AppData\Roaming:NT2
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575768 2014-05-14] (Realtek Semiconductor)
ShellIconOverlayIdentifiers: [00avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; No File
GroupPolicy: Group Policy on Chrome detected & lt; ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction & lt; ======= ATTENTION
SearchScopes: HKU\.DEFAULT - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Razor Web - & gt; {2e22e1c9-9ddb-40da-85c7-0753217fff76} - & gt; C:\Program Files (x86)\Razor Web\Extensions\2e22e1c9-9ddb-40da-85c7-0753217fff76.dll No File
OPR Extension: (Razor Web) - C:\Users\Infekk\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljgajomlfccacbljbhocggijdgpablpc [2015-06-16]
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S2 Update Clock Hand; " C:\Program Files (x86)\Clock Hand\updateClockHand.exe " [X]
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-04-05] ()
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
2015-06-17 17:08 - 2015-04-05 23:09 - 00000000 ____D C:\AdwCleaner
EmptyTemp:
*****************
" HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EB9EB500-CC41-4BC3-A115-01300F77F65C} " = & gt; key removed successfully
" HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB9EB500-CC41-4BC3-A115-01300F77F65C} " = & gt; key removed successfully
C:\Windows\System32\Tasks\{0C1E9035-B9FB-4D57-9583-BD1A857F8108} = & gt; moved successfully.
" HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0C1E9035-B9FB-4D57-9583-BD1A857F8108} " = & gt; key removed successfully
C:\ProgramData = & gt; " :NT " ADS removed successfully.
C:\ProgramData = & gt; " :NT2 " ADS removed successfully.
" C:\Users\All Users " = & gt; " :NT " ADS not found.
" C:\Users\All Users " = & gt; " :NT2 " ADS not found.
" C:\ProgramData\Application Data " = & gt; " :NT " ADS not found.
" C:\ProgramData\Application Data " = & gt; " :NT2 " ADS not found.
" C:\ProgramData\Dane aplikacji " = & gt; " :NT " ADS not found.
" C:\ProgramData\Dane aplikacji " = & gt; " :NT2 " ADS not found.
C:\ProgramData\MTA San Andreas All = & gt; " :NT " ADS removed successfully.
C:\ProgramData\MTA San Andreas All = & gt; " :NT2 " ADS removed successfully.
" C:\Users\Infekk\Dane aplikacji " = & gt; " :NT " ADS not found.
" C:\Users\Infekk\Dane aplikacji " = & gt; " :NT2 " ADS not found.
C:\Users\Infekk\AppData\Roaming = & gt; " :NT " ADS removed successfully.
C:\Users\Infekk\AppData\Roaming = & gt; " :NT2 " ADS removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\RTHDVCPL = & gt; value removed successfully
" HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast " = & gt; key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} = & gt; key not found.
C:\Windows\system32\GroupPolicy\Machine = & gt; moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini = & gt; moved successfully.
" HKLM\SOFTWARE\Policies\Google " = & gt; key removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope = & gt; value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope = & gt; value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope = & gt; value removed successfully
" HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2e22e1c9-9ddb-40da-85c7-0753217fff76} " = & gt; key removed successfully
" HKCR\Wow6432Node\CLSID\{2e22e1c9-9ddb-40da-85c7-0753217fff76} " = & gt; key removed successfully
C:\Users\Infekk\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljgajomlfccacbljbhocggijdgpablpc = & gt; moved successfully.
Internet Manager. RunOuc = & gt; Service removed successfully
SpyHunter 4 Service = & gt; Service removed successfully
Update Clock Hand = & gt; Service removed successfully
EsgScanner = & gt; Service removed successfully
AODDriver4.2.0 = & gt; Service removed successfully
FairplayKD = & gt; Service removed successfully
C:\AdwCleaner = & gt; moved successfully.
EmptyTemp: = & gt; 429.3 MB temporary data Removed.
The system needed a reboot..
==== End of Fixlog 18:05:05 ====