Są szkodliwe śmieci.
1) Użyj
Adw-Cleaner http://www.programosy.pl/program,adwcleaner.html
najpierw kliknij na SZUKAJ, a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ, to kliknij na niego.
Daj z tego raport C:\AdwCleaner\AdwCleaner
[S].txt.
2) Otwórz Notatnik i wklej w nim:
C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe
C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b
C:\Program Files\AdvanceElite
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-3248000872-1939985409-1033055796-1000\...\Run: [Yahoo! Search] => C:\Users\ANGEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe
C:\Users\ANGEL\AppData\Local\Pay-By-Ads
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3248000872-1939985409-1033055796-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://rts.dsrlte.com?affID=na
BHO: AdvanceElite 1.0.0.5 -> {3b2cb4c8-72ab-4b25-8fa1-219b36a60bed} -> C:\Program Files\AdvanceElite\AdvanceEliteBHO.dll (AdvanceElite)
FF NewTab: hxxp://rts.dsrlte.com/?m=tab&affID=na
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://rts.dsrlte.com?affID=na
FF Keyword.URL: hxxp://rts.dsrlte.com/?q=
FF SearchPlugin: C:\Users\ANGEL\AppData\Roaming\Mozilla\Firefox\Profiles\h460pk9u.default\searchplugins\dsrlte.xml
FF Extension: Web Finder Pro - C:\Users\ANGEL\AppData\Roaming\Mozilla\Firefox\Profiles\h460pk9u.default\Extensions\{9802047e-5a84-4da3-b103-c55995d147d1}
FF Extension: AdvanceElite - C:\Users\ANGEL\AppData\Roaming\Mozilla\Firefox\Profiles\h460pk9u.default\Extensions\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}.xpi
CHR Extension: (AdvanceElite) - C:\Users\ANGEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpdgffedgjidfppfcedcmeaddgkolblk
R2 MaintainerSvc1.20.7247763; C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe
R2 Update AdvanceElite; C:\Program Files\AdvanceElite\updateAdvanceElite.exe
R2 Util AdvanceElite; C:\Program Files\AdvanceElite\bin\utilAdvanceElite.exe
R1 {10e3e2da-8f7b-42cc-9f00-90007ce494b8}w; C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}w.sys [43200 2014-11-06] (StdLib)
R1 {255a824a-3cde-4dee-9785-284605606456}w; C:\Windows\System32\drivers\{255a824a-3cde-4dee-9785-284605606456}w.sys [43200 2014-10-28] (StdLib)
R1 {3cac76e7-8310-45ea-8277-96d048a78c60}w; C:\Windows\System32\drivers\{3cac76e7-8310-45ea-8277-96d048a78c60}w.sys [43152 2014-11-27] (StdLib)
R1 {4c1b1795-a87a-4fc2-ac54-edcc060e26fa}w; C:\Windows\System32\drivers\{4c1b1795-a87a-4fc2-ac54-edcc060e26fa}w.sys [43152 2014-12-01] (StdLib)
R1 {51365faa-196b-4544-91d5-04a729ae9395}w; C:\Windows\System32\drivers\{51365faa-196b-4544-91d5-04a729ae9395}w.sys [43152 2014-11-26] (StdLib)
R1 {51b9c91c-8e38-40ae-80de-58a590512b6b}w; C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}w.sys [43200 2014-11-10] (StdLib)
R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}w; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}w.sys [43152 2014-12-01] (StdLib)
R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}w; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}w.sys [43152 2014-10-27] (StdLib)
R1 {cd4cbede-8308-4d72-9759-e1140c7c6eb5}w; C:\Windows\System32\drivers\{cd4cbede-8308-4d72-9759-e1140c7c6eb5}w.sys [43152 2014-11-30] (StdLib)
R1 {d997fcb4-42b4-4f84-a147-2e498567c954}w; C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}w.sys [43152 2014-11-28] (StdLib)
R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw.sys [43152 2014-10-24] (StdLib)
R1 {f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}w; C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}w.sys [43200 2014-11-03] (StdLib)
R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}w; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}w.sys [43200 2014-11-02] (StdLib)
Task: {4997370E-8FC4-49C6-925E-D48CBCF621A3} - System32\Tasks\Yahoo! Search Updater => C:\Users\ANGEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrsetup.exe [2014-12-05] (Pay By Ads LTD) <==== ATTENTION
Task: {BBE7C8E5-020D-46B6-8466-9AFCE965F90B} - System32\Tasks\Yahoo! Search => C:\Users\ANGEL\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [2014-12-05] (Pay By Ads LTD) <==== ATTENTION
EmptyTemp:
Plik zapisz pod nazwą
fixlist.txt i umieść obok
FRST. Uruchom
FRST i kliknij przycisk
Fix.
Powstanie plik fixlog.txt.
Daj ten log.
3) Zrób nowe logi.
.