Problem z qooglle.. prosze o sprawdzenie logow

misiek993 · 3 Maj 2011 10:18

Tak wiec znany dosyc problem qooglle niestety… o to logi:

Z góry dziekuje za pomoc

Acorus · 3 Maj 2011 10:52

Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:

:OTL SRV - File not found [Auto | Stopped] – -- (PowerManager) IE - HKLM…\URLSearchHook: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFree.dll (Conduit Ltd.) IE - HKLM…\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) IE - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ IE - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\URLSearchHook: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFree.dll (Conduit Ltd.) IE - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) FF - prefs.js…browser.startup.homepage: “http://www.qooqlle.com/” [2009-08-04 13:16:40 | 000,000,682 | ---- | M] () – C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\lx7ghquc.default\searchplugins\ask.xml [2010-08-18 12:20:46 | 000,002,565 | ---- | M] () – C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\lx7ghquc.default\searchplugins\askcom.xml [2009-10-08 18:52:53 | 000,002,399 | ---- | M] () – C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\lx7ghquc.default\searchplugins\daemon-search.xml [2011-05-03 10:55:15 | 000,001,860 | ---- | M] () – C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\lx7ghquc.default\searchplugins\search.xml [2010-05-15 09:10:53 | 000,001,196 | ---- | M] () – C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\lx7ghquc.default\searchplugins\winamp-search.xml [2010-10-10 17:19:22 | 000,024,683 | ---- | M] (Ask.com) – C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll O2 - BHO: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFree.dll (Conduit Ltd.) O2 - BHO: (Alcohol Toolbar Helper) - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - File not found O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) O2 - BHO: (Ask Toolbar BHO) - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O3 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found O3 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Toolbar\WebBrowser: (Free Lunch Design Toolbar) - {57CC715D-37CA-44E4-9EC2-8C2CBDDB25EC} - C:\Program Files\Free_Lunch_Design\tbFree.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Toolbar\WebBrowser: (Alcohol Toolbar) - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - File not found O3 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Toolbar\WebBrowser: (Ask Toolbar) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O4 - HKLM…\Run: [] File not found O4 - HKLM…\Run: [CCUTRAYICON] File not found O4 - HKLM…\Run: [Corel Graphics Suite 1117] File not found O4 - HKLM…\Run: [csrs] C:\ProgramData\csrs.exe (Created with WinAutomation (http://www.WinAutomation.com)) O4 - HKLM…\Run: [svhost] C:\Program Files\Common Files\svhost.exe () O4 - HKLM…\Run: [VirtualCloneDrive] File not found O4 - HKLM…\Run: [winloqon] C:\ProgramData\winloqon.exe (Created with WinAutomation (http://www.WinAutomation.com)) O4 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Run: [GoD] File not found O4 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Run: [RGSC] File not found O4 - HKU\S-1-5-21-4201227408-3571138257-2406158479-1001…\Run: [steam] File not found MsConfig - StartUpReg: Rubin - hkey= - key= - File not found MsConfig - StartUpReg: Tasker - hkey= - key= - File not found [2011-04-30 18:56:58 | 000,331,776 | RHS- | C] (Created with WinAutomation (http://www.WinAutomation.com)) – C:\ProgramData\winloqon.exe [2011-04-30 18:56:57 | 000,339,968 | RHS- | C] (Created with WinAutomation (http://www.WinAutomation.com)) – C:\ProgramData\csrs.exe [2011-04-30 18:56:54 | 006,855,168 | RHS- | M] () – C:\Program Files\Common Files\svhost.exe @Alternate Data Stream - 55920 bytes -> C:\ProgramData:$SS_DESCRIPTOR_LVVWVBGV0VFBTLX4D06YH7LVUTPXGJMBKE1R0WT1VH7E24F7PHCTVF4VMVFVVX4VM :Commands [emptytemp]

Kliknij Wykonaj skrypt…Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).

Pokaż nowy log OTL.txt oraz raport z usuwania.

Odinstaluj DAEMON Tools Toolbar,Free_Lunch_Design Toolbar,Przyspiesz Komputer, uTorrentBar Toolbar.

Podejrzenie Jeefo-Użyj Jeefogui >http://downloads.sophos.com/support/cleaners/jeefogui.com

misiek993 · 3 Maj 2011 11:03

a Service Pack 2 po co?

Afrate · 3 Maj 2011 11:12

Żeby mieć aktualny system.

misiek993 · 3 Maj 2011 11:16

"Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj). " tez wpisac to :

netsvcs

msconfig

safebootminimal

safebootnetwork

%systemdrive%*.*

/md5start

agp440.sys

atapi.sys

beep.sys

cdrom.sys

ndis.sys

winlogon.exe

userinit.exe

/md5stop

?

jestem troche ciemny w tych sprawach…

Acorus · 3 Maj 2011 11:27

Nie musisz tego wpisywać.

misiek993 · 3 Maj 2011 11:49

to logi o ktore prosiles:

http://wklej.to/udIas

http://wklej.to/iEKK0

http://wklej.to/HJ0mM

Acorus · 3 Maj 2011 11:50

W porządku.W OTL użyj opcji Sprzątanie.Przeskanuj progr.Malwarebytes Anti-Malware http://www.malwarebytes.org/mbam.php

Przeskanuj programem Dr.WEB CureIt http://ftp.drweb.com/pub/drweb/cureit/launch.exe

Zainstaluj aktualizacje do programow wskazanych przez: http://screen317.spywareinfoforum.org/SecurityCheck.exe

misiek993 · 3 Maj 2011 12:08

dzieki ogromne wszystkim za sprawna i szybką pomoc!!