numberon
22 Sierpień 2011 17:22
#1
Acorus
22 Sierpień 2011 17:36
#2
Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
:OTL MOD - [2011-08-21 02:22:45 | 000,382,464 | ---- | M] () – C:\WINDOWS\update.7.1\svchostdriver.exe FF - prefs.js…browser.search.defaultengine: “Ask.com ” FF - prefs.js…browser.search.defaultenginename: “Fast Browser Search” FF - prefs.js…browser.search.defaultthis.engineName: “Fast Browser Search” FF - prefs.js…browser.search.defaulturl: “http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q= ” FF - prefs.js…browser.search.order.1: “Fast Browser Search” FF - prefs.js…browser.search.selectedEngine: “Fast Browser Search” FF - prefs.js…browser.startup.homepage: “http://vshare.toolbarhome.com/?hp=df ” FF - prefs.js…extensions.enabledItems: vshare@toolbar:1.0.0 FF - prefs.js…extensions.enabledItems: toolbar@ask.com:3.6.2.100006 FF - prefs.js…keyword.URL: “http://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=19&tid={2DADC746-277F-073D-E8A0-076C8E523129}&q= ” O4 - HKLM…\Run: [tray_ico] File not found O4 - HKLM…\Run: [tray_ico1] File not found O4 - HKLM…\Run: [tray_ico2] File not found O4 - HKLM…\Run: [tray_ico3] File not found O4 - HKLM…\Run: [tray_ico4] File not found O20 - HKU.DEFAULT Winlogon: Shell - (\mrpky.exe) - File not found O20 - HKU\S-1-5-18 Winlogon: Shell - (\mrpky.exe) - File not found O21 - SSODL: TYAnBtwkH - {5C4A773A-F6E0-DD90-B000-419477BB3E6F} - CLSID or File not found. [2011-08-21 20:43:26 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-7-0-lnk [2011-08-21 20:43:26 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-7-0 [2011-08-21 02:32:43 | 000,000,000 | —D | C] – C:\WINDOWS\ufa [2011-08-21 02:32:42 | 000,000,000 | —D | C] – C:\WINDOWS\phoenix [2011-08-21 02:26:45 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.5.0 [2011-08-21 02:23:58 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.2 [2011-08-21 02:22:57 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.7.1 [2011-08-21 01:51:48 | 000,000,000 | —D | C] – C:\WINDOWS\av_ico [2011-08-21 01:50:07 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.1 [2011-08-21 01:50:02 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-2-0-lnk [2011-08-21 01:50:02 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-2-0 [2011-08-21 01:50:01 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-3-0-lnk [2011-08-21 01:50:01 | 000,000,000 | -H-D | C] – C:\WINDOWS\update.tray-3-0 [2011-08-21 17:54:05 | 000,000,179 | ---- | M] () – C:\WINDOWS\info1 [2011-08-21 02:44:07 | 000,246,272 | ---- | M] () – C:\WINDOWS\unrar.exe [2011-08-21 02:44:07 | 000,182,617 | ---- | M] () – C:\WINDOWS\ufa.rar [2011-08-21 02:44:06 | 005,589,370 | ---- | M] () – C:\WINDOWS\phoenix.rar [2011-08-21 02:43:56 | 001,075,284 | ---- | M] () – C:\WINDOWS\rpcminer.rar [2011-08-21 02:23:32 | 000,904,792 | ---- | M] () – C:\WINDOWS\geoiplist.rar [2011-08-21 02:17:56 | 000,000,000 | ---- | M] () – C:\WINDOWS\loader2.exe_ok [2011-08-22 19:01:07 | 000,000,230 | ---- | M] () – C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job :Services ddservice Akamai :Reg [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot] “AlternateShell”=“cmd.exe” :Commands [emptytemp] [resethosts]
Kliknij Wykonaj skrypt…Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
Pokaż nowy log OTL.txt oraz raport z usuwania.
Odinstaluj Ask Toolbar,Akamai NetSession Interface,Fast Browser Search (My Tattoons),vShare Plugin.
numberon
22 Sierpień 2011 18:42
#3
raport http://wklej.org/id/582205/
OTL http://wklej.org/id/582236/
to wszystko?
ps. jak się tworzy taki skrypt?
