Wolne otwieranie folderów


(fan77) #1

Czy mógłby ktoś rzucić na logi fachowym okiem?

 

http://wklej.to/u1QjB

 

http://www.wklej.org/id/1681829/


(fedora24x) #2

Ale w czym jest problem, było było wiadomo czego szukać :slight_smile:

 


(fan77) #3

HiJackThis pokazał kilka podejrzanych wpisów i chciałem się upewnić czy wszystko w porządku, poza tym troszkę jakby komputer woniej reagował na otwieranie folderów.


(Acorus) #4

Otwórz notatnik systemowy i wklej:

Task: {07A6A058-9C4D-4772-A914-445A3EF6B97A} - System32\Tasks\{8F8FEE92-5245-4A65-A458-24885E146678} = Firefox.exe http://ui.skype.com/ui/0/6.14.59.104/pl/go/help.faq.installer?LastError=1618
Task: {5A5C5257-0550-4FF8-B5BD-380C7FAB1F50} - System32\Tasks\{EFE7DA7B-216D-4716-9543-977F55B47181} = Firefox.exe http://ui.skype.com/ui/0/7.2.0.103/pl/abandoninstall?page=tsBing
Task: {8A75CF17-E734-4EF6-B79B-7508B37E318F} - System32\Tasks\{8749DEEE-A282-4FF2-AC2A-B9FCDFBB2F39} = Firefox.exe http://ui.skype.com/ui/0/5.10.0.116/pl/go/help.faq.installer?LastError=1618
Task: {C868DCDF-27D9-415C-A574-2D78E0EE5B6F} - \ASUSControlDeck No Task File ==== ATTENTION
HKLM-x32\...\Winlogon: [Userinit] [X]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/#utm_source=instalkiutm_medium=installerutm_campaign=instalki
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-681183572-3063194734-653479779-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=SKY2ocid=SKY2DHPosmkt=pl-pl
HKU\S-1-5-21-681183572-3063194734-653479779-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=butm_medium=vlt2from=vlt2uid=ST9320325AS_6VD9J8H4 ____ 6VD9J8H4ts=1360069936
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=MAAUsrc=IE-SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=MAAUsrc=IE-SearchBox
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=MAAUsrc=IE-SearchBox
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}form=ASUTDFpc=MAAUsrc=IE-SearchBox
SearchScopes: HKU\S-1-5-21-681183572-3063194734-653479779-1000 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-681183572-3063194734-653479779-1000 - {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://pl.search.yahoo.com/search?p={searchTerms}fr=chr-comodo
Toolbar: HKU\S-1-5-21-681183572-3063194734-653479779-1000 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
FF SearchPlugin: C:\Users\Jacek\AppData\Roaming\Mozilla\Firefox\Profiles\dwpsapuy.default\searchplugins\web-search.xml [2012-08-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
CHR StartupUrls: Default - "hxxp://www.v9.com/?utm_source=butm_medium=vlt2from=vlt2uid=ST9320325AS_6VD9J8H4 ____ 6VD9J8H4ts=1360069936"
CHR HKU\S-1-5-21-681183572-3063194734-653479779-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Jacek\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [Not Found]
CHR HKU\S-1-5-21-681183572-3063194734-653479779-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
U3 idsvc; No ImagePath
NETSVC: dosvc - No ServiceDLL Path.
NETSVCx32: NetSetupSvc - C:\Windows\SysWOW64\NetSetupSvc.dll == No File.
NETSVCx32: UserManager - C:\Windows\SysWOW64\usermgr.dll == No File.
2015-03-13 19:11 - 2015-03-20 11:01 - 00003182 _____ () C:\WINDOWS\System32\Tasks\{EFE7DA7B-216D-4716-9543-977F55B47181}
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.

Przeskanuj programem Malwarebytes Anti-Malware http://data-cdn.mbamupdates.com/v2/mbam/consumer/data/mbam-setup-2.1.4.1018.exe