Bloods2
4 Grudzień 2010 15:01
#1
Witam Mam problem taki jak w temacie.Weszłem na stronke fable.com.pl i ot tak zresetowal mi sie komputer.Po ponownym uruchomieniu wyświetla mi sie komunikat o treści “Missing Hard Drive?” "Damaged hard drive clusters detected. Prive data is at risk"a także pojawiła mi sie znikąd ikonka Disc Doctor.Nie ma na pulpicia żadnej ikony. Do tego jeszcze zamula mi kompa. Log z otl http://wklejto.pl/83054
Log z hijackthis http://wklejto.pl/83055
system
4 Grudzień 2010 15:06
#2
pobierz malwarebytes anti-malware zrób update a potem pełny skan.
Leon1
4 Grudzień 2010 16:22
#3
Wyłącz przywracanie systemu na wszystkich dyskach.http://support.microsoft.com/kb/310405/pl
OTL w oknie Custom Scans-Fixes wklej następujący skrypt:
:OTL SRV - [2010-10-29 16:21:56 | 000,028,762 | ---- | M] (MyWebSearch.com ) [Auto | Stopped] – C:\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE – (MyWebSearchService) IE - HKCU…\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com \GenericAskToolbar.dll File not found IE - HKCU…\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (MyWebSearch.com ) FF - prefs.js…browser.search.defaultengine: “Ask.com ” FF - HKLM\software\mozilla\Firefox\Extensions\m3ffxtbr@mywebsearch.com: C:\Program Files\MyWebSearch\bar\1.bin [2010-10-29 16:22:00 | 000,000,000 | —D | M] [2010-04-06 12:33:53 | 000,000,000 | —D | M] – C:\Documents and Settings\Beata\Dane aplikacji\Mozilla\Firefox\Profiles\ewpy464v.default\extensions\toolbar@ask.com [2010-04-06 12:33:56 | 000,002,424 | ---- | M] () – C:\Documents and Settings\Beata\Dane aplikacji\Mozilla\Firefox\Profiles\ewpy464v.default\searchplugins\askcom.xml O2 - BHO: (MyWebSearch Search Assistant BHO) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (MyWebSearch.com ) O2 - BHO: (mwsBar BHO) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (MyWebSearch.com ) O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll File not found O2 - BHO: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll File not found O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll File not found O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com \GenericAskToolbar.dll File not found O3 - HKLM…\Toolbar: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (MyWebSearch.com ) O3 - HKLM…\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll File not found O3 - HKLM…\Toolbar: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll File not found O3 - HKLM…\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com \GenericAskToolbar.dll File not found O3 - HKCU…\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com \GenericAskToolbar.dll File not found O4 - HKLM…\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe File not found O4 - HKLM…\Run: [My Web Search Bar Search Scope Monitor] C:\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE (MyWebSearch.com ) O4 - HKLM…\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE (MyWebSearch.com ) O4 - HKLM…\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe File not found O4 - HKCU…\Run: [208359] C:\Documents and Settings\Beata\Ustawienia lokalne\Temp\208359.exe (Microsoft Corporation) O4 - HKCU…\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe File not found O4 - HKCU…\Run: [bitTorrent DNA] C:\Program Files\DNA\btdna.exe File not found O4 - HKCU…\Run: [Expressivo] C:\Program Files\ivo\Expressivo\expressivo.exe File not found O4 - HKCU…\Run: [ExprOElauncher] C:\Program Files\ivo\Expressivo\integr\OutlookExpress\ExprOElauncher.exe File not found O4 - HKCU…\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE (MyWebSearch.com ) O4 - HKCU…\Run: [QgLxTtISjh.exe] C:\Documents and Settings\Beata\Ustawienia lokalne\Temp\QgLxTtISjh.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Beata\Menu Start\Programy\Autostart\siszpe32.exe () O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ … vc1dmo.cab (Reg Error: Key error.) O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found :Reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] :Commands [emptytemp] [start explorer] [Reboot]
Kliknij w Run Fix (Wykonaj scrypt). Zatwierdź restart komputera.
potem nowy log OTL robiony opcją Run Scan (Skanuj)
