Witam.Mój antywirus wykrył dwa virusy w elf bot ng
Daje loga z HijackThis
Z góry dziękuje za pomoc
Kompletnie nie mam pojęcia co to jest. :?
Fix w HiJackThis: ( Do a system scan only -> zaznaczasz pola przy podanych niżej wpisach -> Fix checked )
W GMER nic nie zmieniamy -> wciskamy Szukaj (skan potrwa kilkadziesiąt minut) -> po skanie Kopiuj.
GMER 1.0.15.15020 [q59hp7r9.exe] - http://www.gmer.net
Rootkit scan 2009-08-10 21:57:55
Windows 5.1.2600 Dodatek Service Pack 2
---- System - GMER 1.0.15 ----
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwClose [0xBA675818]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwCreateKey [0xBA6757D0]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwCreatePagingFile [0xBA669A20]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateKey [0xBA66A2A8]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateValueKey [0xBA675910]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwOpenKey [0xBA675794]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwQueryKey [0xBA66A2C8]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwQueryValueKey [0xBA675866]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwSetSystemPowerState [0xBA6750B0]
SSDT sput.sys ZwSetValueKey [0xBA6C619C]
INT 0x62 ? 89ADCBF8
INT 0x63 ? 89715F00
INT 0x73 ? 89ADCBF8
INT 0x73 ? 89ADCBF8
INT 0x73 ? 89715F00
INT 0x73 ? 89ADCBF8
INT 0x82 ? 89ADCBF8
INT 0x83 ? 89715F00
INT 0xB1 ? 89A71F00
INT 0xB1 ? 89A71F00
INT 0xB4 ? 89715F00
---- Kernel code sections - GMER 1.0.15 ----
? sput.sys Nie można odnaleźć określonego pliku. !
.text USBPORT.SYS!DllUnload B9C2E62C 5 Bytes JMP 897154E0
.text a2hviqad.SYS B9B53384 1 Byte [20]
.text a2hviqad.SYS B9B53384 37 Bytes [20, 00, 00, 68, 00, 00, 00, ...]
.text a2hviqad.SYS B9B533AA 24 Bytes [00, 00, 20, 00, 00, E0, 00, ...]
.text a2hviqad.SYS B9B533C4 3 Bytes [00, 00, 00]
.text a2hviqad.SYS B9B533C9 1 Byte [00]
.text ...
.text afx1gpt8.SYS B9B1B386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...]
.text afx1gpt8.SYS B9B1B3AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...]
.text afx1gpt8.SYS B9B1B3C4 3 Bytes [00, 70, 02] {ADD [EAX+0x2], DH}
.text afx1gpt8.SYS B9B1B3C9 1 Byte [30]
.text afx1gpt8.SYS B9B1B3C9 11 Bytes [30, 00, 00, 00, 5C, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESP; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL}
.text ...
? C:\WINDOWS\system32\Drivers\PROCEXP90.SYS Nie można odnaleźć określonego pliku. !
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[1756] kernel32.dll!SetUnhandledExceptionFilter 7C810386 4 Bytes [C2, 04, 00, 00]
---- Kernel IAT/EAT - GMER 1.0.15 ----
IAT \SystemRoot\System32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [BA6B7E9C] sput.sys
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KfAcquireSpinLock] 6C000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!READ_PORT_UCHAR] 56000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KeGetCurrentIrql] F4000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KfRaiseIrql] EA000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KfLowerIrql] 65000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!HalGetInterruptVector] 7A000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!HalTranslateBusAddress] AE000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KeStallExecutionProcessor] 08000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!KfReleaseSpinLock] [BA000000] \SystemRoot\System32\DRIVERS\nv4_mini.sys (NVIDIA Compatible Windows 2000 Miniport Driver, Version 158.27 /NVIDIA Corporation)
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] 78000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!READ_PORT_USHORT] 25000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 2E000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[HAL.dll!WRITE_PORT_UCHAR] 1C000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[WMILIB.SYS!WmiSystemControl] B4000000
IAT \SystemRoot\System32\Drivers\a2hviqad.SYS[WMILIB.SYS!WmiCompleteRequest] C6000000
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KfAcquireSpinLock] 0C8D1C46
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!READ_PORT_UCHAR] B08B8932
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KeGetCurrentIrql] 89000001
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KfRaiseIrql] 0001BC83
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KfLowerIrql] 24468B00
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!HalGetInterruptVector] 89820C8D
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!HalTranslateBusAddress] D18BF84D
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KeStallExecutionProcessor] 860F1639
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!KfReleaseSpinLock] 000000BD
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] 0208B389
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!READ_PORT_USHORT] 83660000
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 7400067E
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[HAL.dll!WRITE_PORT_UCHAR] 89D60320
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[WMILIB.SYS!WmiSystemControl] 8D168B00
IAT \SystemRoot\System32\Drivers\afx1gpt8.SYS[WMILIB.SYS!WmiCompleteRequest] F0003284
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs 89A6D1F8
Device \FileSystem\Ntfs \Ntfs 8991B320
AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
Device \Driver\sptd \Device\1412387718 sput.sys
Device \Driver\PCI_PNP5218 \Device\00000043 sput.sys
Device \Driver\usbuhci \Device\USBPDO-0 89731500
Device \Driver\PCI_PNP5218 \Device\00000044 sput.sys
Device \Driver\dmio \Device\DmControl\DmIoDaemon 89A6F1F8
Device \Driver\dmio \Device\DmControl\DmConfig 89A6F1F8
Device \Driver\dmio \Device\DmControl\DmPnP 89A6F1F8
Device \Driver\dmio \Device\DmControl\DmInfo 89A6F1F8
Device \Driver\usbuhci \Device\USBPDO-1 89731500
Device \Driver\usbuhci \Device\USBPDO-2 89731500
Device \Driver\sptd \Device\1412543968 sput.sys
Device \Driver\usbuhci \Device\USBPDO-3 89731500
Device \Driver\usbehci \Device\USBPDO-4 8971F500
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys
Device \Driver\Ftdisk \Device\HarddiskVolume1 89ADD1F8
Device \Driver\Ftdisk \Device\HarddiskVolume2 89ADD1F8
Device \Driver\Cdrom \Device\CdRom0 898381A0
Device \FileSystem\Rdbss \Device\FsWrap 8985D568
Device \Driver\Ftdisk \Device\HarddiskVolume3 89ADD1F8
Device \Driver\Cdrom \Device\CdRom1 898381A0
Device \Driver\atapi \Device\Ide\IdePort0 89854F00
Device \Driver\atapi \Device\Ide\IdePort1 89854F00
Device \Driver\atapi \Device\Ide\IdePort2 89854F00
Device \Driver\atapi \Device\Ide\IdePort3 89854F00
Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-19 89854F00
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-e 89854F00
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-3 89854F00
Device \Driver\Cdrom \Device\CdRom2 898381A0
Device \Driver\Cdrom \Device\CdRom3 898381A0
Device \Driver\Cdrom \Device\CdRom4 898381A0
Device \Driver\NetBT \Device\NetBt_Wins_Export 88FA11F8
Device \Driver\NetBT \Device\NetbiosSmb 88FA11F8
Device \FileSystem\Srv \Device\LanmanServer 88EA0C00
Device \Driver\usbuhci \Device\USBFDO-0 89731500
Device \Driver\usbuhci \Device\USBFDO-1 89731500
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 8951D1F8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 88F7F2E8
Device \Driver\usbuhci \Device\USBFDO-2 89731500
Device \Driver\NetBT \Device\NetBT_Tcpip_{37CA05BC-5083-47BB-B6E5-213B39498E25} 88FA11F8
Device \FileSystem\MRxSmb \Device\LanmanRedirector 8951D1F8
Device \FileSystem\MRxSmb \Device\LanmanRedirector 88F7F2E8
Device \Driver\usbuhci \Device\USBFDO-3 89731500
Device \FileSystem\Npfs \Device\NamedPipe 8961F7C0
Device \Driver\usbehci \Device\USBFDO-4 8971F500
Device \Driver\Ftdisk \Device\FtControl 89ADD1F8
Device \FileSystem\Msfs \Device\Mailslot 8985D4C0
Device \Driver\a2hviqad \Device\Scsi\a2hviqad1Port6Path0Target0Lun0 89638340
Device \Driver\d347prt \Device\Scsi\d347prt1Port4Path0Target0Lun0 89627918
Device \Driver\a2hviqad \Device\Scsi\a2hviqad1 89638340
Device \Driver\afx1gpt8 \Device\Scsi\afx1gpt81 89650918
Device \Driver\afx1gpt8 \Device\Scsi\afx1gpt81Port5Path0Target0Lun0 89650918
Device \Driver\d347prt \Device\Scsi\d347prt1 89627918
Device \FileSystem\Fs_Rec \FileSystem\UdfsCdRomRecognizer 8961B400
Device \FileSystem\Fs_Rec \FileSystem\FatCdRomRecognizer 8961B400
Device \FileSystem\Fs_Rec \FileSystem\CdfsRecognizer 8961B400
Device \FileSystem\Fs_Rec \FileSystem\FatDiskRecognizer 8961B400
Device \FileSystem\Fs_Rec \FileSystem\UdfsDiskRecognizer 8961B400
Device \FileSystem\Cdfs \Cdfs 89684500
Device \FileSystem\Cdfs \Cdfs 89897620
---- Modules - GMER 1.0.15 ----
Module _________ BA5CB000-BA5E3000 (98304 bytes)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x51 0xA0 0x56 0x1B ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x28 0xB5 0xD2 0x69 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x92 0xC6 0x88 0xC3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x14 0xA9 0x20 0x40 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xA9 0x39 0xB6 0x6D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x48 0x37 0x91 0xA3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x5F 0xB1 0x71 0xE8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0xC2 0x6E 0x42 0xCF ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xA3 0xE1 0xE4 0x9B ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x51 0xA0 0x56 0x1B ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x28 0xB5 0xD2 0x69 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x92 0xC6 0x88 0xC3 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 2
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x14 0xA9 0x20 0x40 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xA9 0x39 0xB6 0x6D ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x48 0x37 0x91 0xA3 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x5F 0xB1 0x71 0xE8 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0xC2 0x6E 0x42 0xCF ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xA3 0xE1 0xE4 0x9B ...
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@DeviceNotSelectedTimeout 15
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@GDIProcessHandleQuota 10000
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@Spooler yes
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@swapdisk
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@TransmissionRetryTimeout 90
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@USERProcessHandleQuota 10000
---- EOF - GMER 1.0.15 ----Logi wklejasz na wklej.org lub wklej.to, a w poście dajesz link.
Wklej log OTL, bo to nim się będzie usuwało.
Combofixa to się usuwa z dysku po użyciu, bo będzie nieaktualny.
W Custom Scans/Fixes w OTL wklej:
Run Fix. Restart.
Potem log z usuwania oraz nowy OTL.txt
Podczas wklejania tego textu do Custom Scans/Fixes wyskakuje błąd 
co zrobić?
Jaki błąd, jaka treść komunikatu?
Range check error
No to usunie się inaczej.
Pobierz The Avenger i uruchom.
Wklej w niego ten tekst:
Execute i zgadzasz się na restart.
Po restarcie kasujesz plik C:\Avenger\backup.zip i dajesz tutaj do sprawdzenia raport C:\avenger.txt
Chyba jednak coś kręcisz, bo wygląda to jakby OTL usunął to co trzeba. 
Pokaż nowy log OTL.
tzn jak cos krece? bo troche teraz nie rozumiem o co Ci chodzi, za chwile pokażę nowy log z OTL’a
Proszę :
czy już wszystko wporządku, nie mam się niczego obawiać?
Jednak OTL wykonał to co trzeba.
Log czysty.
W OTL kliknij CleanUp.
Usuń Bonjour Service, bo to śmieć. http://www.searchengines.pl/Jak-usunac- … 03177.html
Usuń zbędniki z autostartu.
Wykonaj pełny skan DR WEB CureIt.
Gdy będą wirusy pokaż raport.
Zrobię jutro tego scana bo jestem trochę śpiący a zanim się zrobi to trochę minie. Mimo wszystko szczerze bardzo dziękuję za pomoc.
– Dodane 11.08.2009 (Wt) 21:01 –
Dosyć długo się skan robił, wyniki
