Adware i dwa okna chrome po jednym kliku oraz problem z exploratorem


(Warchol1910) #1

Proszę o sprawdzenie logów 

Spyhunter wykrywa sporo adwarów i często zawiesza się explorer.exe

 

win 8.1 64 bit

 

Farbar Recovery Scan Tool FRIST

http://www.wklej.org/id/1484664/

 

Farbar Recovery Scan Tool Addition

http://www.wklej.org/id/1484665/

 

Farbar Recovery Scan Tool Info 

http://wklej.org/id/1484670/

 

Random's System Information Tool 64 bit

http://www.wklej.org/id/1484668/

 

OTL otl 

http://www.wklej.org/id/1484666/

 

OTL Extras

http://www.wklej.org/id/1484667/

 

AdwCleaner

http://wklej.org/id/1484678/

 

AutoRuns

http://www.wklej.org/id/1484694/

 

DDS nie chce zadziałać na win 8.1


(Acorus) #2

Po co tyle logów.Odinstaluj Akamai NetSession Interface,Spybot - Search & Destroy.Otwórz Notatnik i wklej:

Task: {12CED247-2AA4-4B99-BD31-AE6FEB15DB3A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe

Task: {361AA530-6E6F-4C40-A69B-79F24A2BC263} - System32\Tasks\SPBIW_UpdateTask_Time_3834313838393133372d3437415a556c2a3223346c41 => Wscript.exe //B “C:\ProgramData\ShopperPro\spbihe.js” spbiu.exe /invoke /f:check_services /l:0

Task: {8FDC6BEF-CC1D-4E68-BC80-E6166200AC68} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe

Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work

Task: {C8C75CDB-4D5A-4C57-B8CE-68B2E5B3B406} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe

HKLM-x32…\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)

Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]

HKU\S-1-5-21-826175575-2035128733-4027837632-1001…\Run: [Akamai NetSession Interface] => C:\Users\Dom\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)

BootExecute: autocheck autochk * sdnclean64.exe

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)

R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)

R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)

2014-10-10 20:37 - 2014-10-10 20:49 - 00000000 ___DC () C:\AdwCleaner

2014-10-10 19:57 - 2014-10-10 19:57 - 00000000 ____D () C:\Program Files\Enigma Software Group

2014-10-10 19:56 - 2014-10-10 20:38 - 00000000 ____D () C:\WINDOWS\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP

2014-10-10 17:41 - 2014-10-10 17:44 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2

2014-10-10 17:41 - 2014-10-10 17:41 - 00001403 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk

2014-10-10 17:41 - 2014-10-10 17:41 - 00001391 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk

2014-10-10 17:41 - 2014-10-10 17:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking

2014-10-10 17:41 - 2014-10-10 17:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2

2014-10-10 17:41 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe

2014-10-07 22:40 - 2014-10-07 22:40 - 00003112 _____ () C:\WINDOWS\System32\Tasks{C891998B-B1E3-42A8-8CDF-F30AE4BA737E}

2014-10-07 22:34 - 2014-10-07 22:34 - 00004226 _____ () C:\WINDOWS\System32\Tasks\SPBIW_UpdateTask_Time_3834313838393133372d3437415a556c2a3223346c41

2014-10-07 22:34 - 2014-10-07 22:34 - 00000000 ____D () C:\Program Files\Common Files\ShopperPro

2014-10-07 22:33 - 2014-10-07 22:33 - 00000000 ____D () C:\Users\Dom\AppData\Local\CrashRpt

2014-10-07 22:32 - 2014-10-07 22:32 - 00000000 ____D () C:\ProgramData\Xunlei

2014-10-07 22:32 - 2014-10-07 22:32 - 00000000 ____D () C:\ProgramData\Thunder Network

EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

Uruchom FRST i kliknij w Fix.Skasuj folder C:\FRST

Przeskanuj programem Malwarebytes Anti-Malware http://data-cdn.mbamupdates.com/v2/mbam/consumer/data/mbam-setup-2.0.2.1012.exe

Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware Premium.


(Warchol1910) #3

explorer exe nadal się wiesza :frowning: czy to taki standard w 8.1 


(Atis) #4

Błąd odczytany z systemowego podglądu zdarzeń:

Uruchom Autoruns i odznacz wpisy odnoszące się do pliku OnetDyskContextMenuHandler

Później zrestartuj komputer.