Usuwanie safesavera


(Dominik6616) #1

Witam. przeskanowałem komputera za pomocą  AdwCleaner oraz Malwarebytes Anti-Malware, utworzyłem logi:

 

OLT - http://wklej.to/6y4CU

 

EXTRAS - http://wklej.to/Er6N4

 

proszę o pomoc , z góry dziękuje


(Acorus) #2

Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:

:OTL
SRV - File not found [Auto | Stopped] -- C:\Program Files\iSafe\iSafeSvc.exe -- (iSafeService)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | System | Stopped] -- C:\Program Files\iSafe\iSafeNetFilter.sys -- (iSafeNetFilter)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Program Files\iSafe\iSafeKrnl.sys -- (iSafeKrnl)
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe File not found
O4 - HKU\S-1-5-21-2282915162-3430214789-1475965236-1000..\Run: [Facebook Update] C:\Users\Dominik\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
[2014-01-14 18:36:25 | 000,000,000 | ---D | C] -- C:\Users\Dominik\.android
[2014-01-14 18:36:23 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Documents\Mobogenie
[2014-01-14 18:36:23 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\Mobogenie
[2014-01-14 18:36:23 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\genienext
[2014-01-14 18:35:51 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
[2014-01-14 18:25:11 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014-01-14 18:04:28 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Roaming\eCyber
[2014-01-14 18:04:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
[2014-01-14 18:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\iSafe
[2014-01-14 18:04:06 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Roaming\iSafe
[2014-01-01 20:18:39 | 000,000,000 | ---D | C] -- C:\ProgramData\FunDueeals
[2014-01-01 20:18:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ba5812ff9bbc8e66
[2014-01-01 20:18:12 | 000,000,000 | ---D | C] -- C:\ProgramData\SaveNewaAPpzo
[2014-01-14 19:01:02 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2282915162-3430214789-1475965236-1000UA.job
[2014-01-14 13:01:02 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2282915162-3430214789-1475965236-1000Core.job
[2014-01-14 18:06:32 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\eCyber
[2013-04-23 23:38:20 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\EurekaLog

:Commands
[emptytemp]

Kliknij Wykonaj skrypt.


(Dominik6616) #3

podziękował