Ravi94
10 Lipiec 2012 19:26
#1
Mam ten sam problem co poprzednicy.
Oto logi:
OTL
http://www.wklej.org/hash/e7f083781cf/
Extras:
http://www.wklej.org/id/787955/
Proszę o pomoc
Acorus
10 Lipiec 2012 19:46
#2
Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
:OTL SRV - [2012-06-27 17:01:34 | 000,791,488 | ---- | M] (Spigot, Inc.) [Auto | Stopped] – C:\Program Files\Application Updater\ApplicationUpdater.exe – (Application Updater) O3 - HKLM…\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) O3 - HKLM…\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKLM…\Toolbar: (Ashampoo PO Toolbar) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - C:\Program Files\Ashampoo_PO\prxtbAsh0.dll (Conduit Ltd.) O3 - HKLM…\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\6.0\youtubedownloaderToolbarIE.dll (Spigot, Inc.) O3 - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\Toolbar\WebBrowser: (no name) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No CLSID value found. O3 - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\Toolbar\WebBrowser: (Ashampoo PO Toolbar) - {D43723AE-1AE1-4A25-A6A4-BF0929273CAB} - C:\Program Files\Ashampoo_PO\prxtbAsh0.dll (Conduit Ltd.) O4 - HKLM…\Run: [] File not found O4 - HKLM…\Run: [searchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) O4 - HKLM…\Run: [WSManHTTPConfig] C:\Documents and Settings\Właściciel\Ustawienia lokalne\Dane aplikacji\Microsoft\Windows\812\WSManHTTPConfig.exe () [2012-07-06 19:53:41 | 000,000,000 | —D | C] – C:\Documents and Settings\Właściciel\Dane aplikacji\hellomoto :Files C:\Documents and Settings\Właściciel\Ustawienia lokalne\Dane aplikacji\Microsoft\Windows\812 :Reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] :Commands [emptytemp]
Kliknij Wykonaj skrypt.Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
Pokaż nowy log OTL.txt oraz raport z usuwania.
Ravi94
10 Lipiec 2012 20:05
#3
Acorus
10 Lipiec 2012 20:21
#4
Odinstaluj DealPly.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
:OTL DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\EagleXNt.sys – (EagleXNt) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=c86ce05000000000000000221563e3d5&tlver=1.4.19.19&affID=17160 IE - HKU.DEFAULT…\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\S-1-5-18…\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= … =CT2481033 IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\URLSearchHook: {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - No CLSID value found IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - No CLSID value found IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\SearchScopes{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: “URL” = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=c86ce05000000000000000221563e3d5&tlver=1.4.19.19&affID=17160 IE - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\SearchScopes{afdbddaa-5d3f-42ee-b79c-185a7020515b}: “URL” = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678 FF - prefs.js…browser.search.defaultenginename: “Yahoo” FF - prefs.js…browser.search.defaultthis.engineName: “Ashampoo PO Customized Web Search” FF - prefs.js…browser.search.defaulturl: “http://search.conduit.com/ResultsExt.aspx?ctid=CT2481033&SearchSource=3&q={searchTerms} ” FF - prefs.js…browser.search.param.yahoo-fr: “chr-greentree_ff&ilc=12&type=937811” FF - prefs.js…browser.search.selectedEngine: “Yahoo” FF - prefs.js…browser.startup.homepage: “http://search.babylon.com/?babsrc=HP_Prot ” [2012-05-23 10:03:12 | 000,000,000 | —D | M] (uTorrentBar Community Toolbar) – C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\5f8wlz6z.default\extensions{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2012-05-23 10:03:13 | 000,000,000 | —D | M] (Ashampoo PO Community Toolbar) – C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\5f8wlz6z.default\extensions{d43723ae-1ae1-4a25-a6a4-bf0929273cab} [2012-05-13 21:09:53 | 000,000,000 | —D | M] (DealPly) – C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\5f8wlz6z.default\extensions{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} [2011-12-23 19:37:03 | 000,000,000 | —D | M] (Babylon) – C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\5f8wlz6z.default\extensions\ffxtlbr@babylon.com [2011-10-10 16:00:28 | 000,000,925 | ---- | M] () – C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\5f8wlz6z.default\searchplugins\conduit.xml [2012-07-02 11:59:10 | 000,000,000 | —D | M] (Widgi Toolbar Platform) – C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM O3 - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKU\S-1-5-21-1085031214-1659004503-682003330-1003…\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found. :Commands [emptytemp]
Kliknij Wykonaj skrypt.W OTL użyj opcji Sprzątanie.Użyj AdwCleaner http://general-changelog-team.fr/outils/289-adwcleaner z funkcji Delete
Wyłącz i włącz przywracanie systemu.
http://www.searchengines.pl/Czyszczenie … 41981.html
Zainstaluj aktualizacje do programow wskazanych przez Security Check
analiza-dezynfekcja-zestaw-narzedzi-nieingerencyjnych-t485632.html jako out of date.
