Prosba o sprawdzenie OTL


(Dzyniu89 89) #1

http://wklej.org/id/231784/


(deFco247) #2

Widać, że nie patrzysz co instalujesz, gdyż masz Confickera, 181 infekcji z pendrive oraz mnóstwo zbędnych toolbarów.

OTL widzi jednak tego pierwszego i zobaczymy, czy go usunie.

W białe dolne okno Custom Scans/Fixes w OTL wklej:

:Processes

Explorer.EXE


:Services

bjozvj


:OTL

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/pl/

IE - HKCU\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - E:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL (Ask.com)

IE - HKCU\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - E:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)

IE - HKCU\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - E:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)

[2009-04-05 12:48:01 | 00,001,196 | ---- | M] () -- E:\Documents and Settings\my\Dane aplikacji\Mozilla\Firefox\Profiles\31lxv7hn.default\searchplugins\winamp-search.xml

O2 - BHO: (PromotionsTool) - {04C8A5DD-6081-D104-96F7-F765C20B22F1} - E:\Program Files\PromotionsTool\PromotionsTool-1.dll ()

O2 - BHO: (Ask Search Assistant BHO) - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - E:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL (Ask.com)

O2 - BHO: (My Global Search Bar BHO) - {37B85A21-692B-4205-9CAD-2626E4993404} - E:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)

O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - E:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)

O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - E:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)

O2 - BHO: (Ask Toolbar BHO) - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - E:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)

O2 - BHO: (Burn4Free Toolbar Helper) - {F8E5CA21-C27B-43e7-B2BE-4CA93C9F9A1F} - E:\Program Files\Burn4Free Toolbar\v2.0.0.5\Burn4Free_Toolbar.dll ()

O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - E:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)

O3 - HKLM\..\Toolbar: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - E:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)

O3 - HKLM\..\Toolbar: (Burn4Free Toolbar) - {70DE7956-479D-4eb7-8641-2B45774C350E} - E:\Program Files\Burn4Free Toolbar\v2.0.0.5\Burn4Free_Toolbar.dll ()

O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - E:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)

O3 - HKLM\..\Toolbar: (Ask Toolbar) - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - E:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)

O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - E:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)

O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.

O3 - HKCU\..\Toolbar\ShellBrowser: (Burn4Free Toolbar) - {70DE7956-479D-4EB7-8641-2B45774C350E} - E:\Program Files\Burn4Free Toolbar\v2.0.0.5\Burn4Free_Toolbar.dll ()

O3 - HKCU\..\Toolbar\ShellBrowser: (Ask Toolbar) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - E:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)

O3 - HKCU\..\Toolbar\WebBrowser: (Burn4Free Toolbar) - {70DE7956-479D-4EB7-8641-2B45774C350E} - E:\Program Files\Burn4Free Toolbar\v2.0.0.5\Burn4Free_Toolbar.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - E:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)

O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - E:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com)

O4 - HKCU..\Run: [cdoosoft] E:\Documents and Settings\my\Ustawienia lokalne\Temp\herss.exe ()

O28 - HKLM ShellExecuteHooks: {BB4C402F-882A-4526-8C08-51278EA437C1} - E:\WINDOWS\system32\e8main0.dll ()

O32 - AutoRun File - [2009-12-11 10:36:25 | 00,000,059 | RHS- | M] () - C:\autorun.inf -- [NTFS]

O32 - AutoRun File - [2009-12-11 10:36:25 | 00,000,059 | RHS- | M] () - D:\autorun.inf -- [NTFS]

O32 - AutoRun File - [2009-12-11 10:36:25 | 00,000,059 | RHS- | M] () - E:\autorun.inf -- [NTFS]

O33 - MountPoints2\{00a0675c-b33b-11dd-9f6c-e023569dbd3f}\Shell\AutoRun\command - "" = I:\ukfbi3aw.exe -- File not found

O33 - MountPoints2\{00a0675c-b33b-11dd-9f6c-e023569dbd3f}\Shell\open\Command - "" = I:\ukfbi3aw.exe -- File not found

O33 - MountPoints2\{59b5041a-52b9-11de-a28c-001f1f148545}\Shell\AutoRun\command - "" = I:\sm.exe -- File not found

O33 - MountPoints2\{59b5041a-52b9-11de-a28c-001f1f148545}\Shell\open\Command - "" = I:\sm.exe -- File not found

O33 - MountPoints2\{5e75c5ce-d5f2-11de-a4c2-001f1f148545}\Shell\AutoRun\command - "" = G:\q93fi6kf.exe -- File not found

O33 - MountPoints2\{5e75c5ce-d5f2-11de-a4c2-001f1f148545}\Shell\open\Command - "" = G:\q93fi6kf.exe -- File not found

O33 - MountPoints2\{681c020b-8a16-11dd-9e89-cba5df08e43b}\Shell\AutoRun\command - "" = G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\xop32.exe -- File not found

O33 - MountPoints2\{681c020b-8a16-11dd-9e89-cba5df08e43b}\Shell\open\command - "" = G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\xop32.exe -- File not found

O33 - MountPoints2\{87a57bb2-c7bc-11dd-9fb3-f1dab93b7d3d}\Shell\AutoRun\command - "" = G:\xih9.cmd -- File not found

O33 - MountPoints2\{87a57bb2-c7bc-11dd-9fb3-f1dab93b7d3d}\Shell\explore\Command - "" = G:\xih9.cmd -- File not found

O33 - MountPoints2\{87a57bb2-c7bc-11dd-9fb3-f1dab93b7d3d}\Shell\open\Command - "" = G:\xih9.cmd -- File not found

O33 - MountPoints2\{8bc5a096-a84e-11de-a3ef-001f1f148545}\Shell\AutoRun\command - "" = G:\se12ydam.exe -- File not found

O33 - MountPoints2\{8bc5a096-a84e-11de-a3ef-001f1f148545}\Shell\open\Command - "" = G:\se12ydam.exe -- File not found

O33 - MountPoints2\{b1c87c16-de61-11de-a4ff-001f1f148545}\Shell - "" = AutoRun

O33 - MountPoints2\{c59684d3-1216-11de-a0d0-001f1f148545}\Shell\AutoRun\command - "" = 2fiy.bat

O33 - MountPoints2\{c59684d3-1216-11de-a0d0-001f1f148545}\Shell\open\Command - "" = 2fiy.bat

O33 - MountPoints2\{c9e00491-10b6-11de-a0c9-001f1f148545}\Shell\AutoRun\command - "" = I:\8paf1d.com -- File not found

O33 - MountPoints2\{c9e00491-10b6-11de-a0c9-001f1f148545}\Shell\open\Command - "" = I:\8paf1d.com -- File not found

O33 - MountPoints2\{d442635e-b8ca-11de-a430-001f1f148545}\Shell\AutoRun\command - "" = G:\l61yyp.exe -- File not found

O33 - MountPoints2\{d442635e-b8ca-11de-a430-001f1f148545}\Shell\open\Command - "" = G:\l61yyp.exe -- File not found

O33 - MountPoints2\{db966852-d9bf-11dd-9ff5-d0a88d9eae3d}\Shell\AutoRun\command - "" = G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\xop32.exe -- File not found

O33 - MountPoints2\{db966852-d9bf-11dd-9ff5-d0a88d9eae3d}\Shell\open\command - "" = G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\xop32.exe -- File not found

NetSvcs: bjozvj - E:\WINDOWS\system32\srmgs.dll ()


:Files

C:\060ptrm.com

C:\0bcobed.exe

C:\0c9k.exe

C:\0fkk02x.exe

C:\0qw6vege.exe

C:\0xuc.com

C:\10nb.exe

C:\1a1dndah.exe

C:\1di1w.exe

C:\1f.bat

C:\1mteolu9.com

C:\1ogf.exe

C:\1xniph.bat

C:\22yj2fy1.exe

C:\28b6ry9r.exe

C:\2a.exe

C:\2id9.exe

C:\2nuk.com

C:\2sm66r.exe

C:\3.cmd

C:\3c.exe

C:\3j2h0tf.bat

C:\3n8awsyg.exe

C:\6p2dxv.bat

C:\6phx.com

C:\6ruaqx.exe

C:\8.exe

C:\86l2qw.bat

C:\8b3.bat

C:\8dtyjjf.exe

C:\8gig0ofk.com

C:\8paf1d.com

C:\8rcahp.exe

C:\9b9w3.exe

C:\9dlvtiil.exe

C:\9g86.exe

C:\9jyhdim8.exe

C:\9u.exe

C:\a2g21.exe

C:\auq9bor.bat

C:\b00ijwpu.exe

C:\be2trf.bat

C:\boyedt.com

C:\bycfht.exe

C:\cahpcg.cmd

C:\cb.exe

C:\cj3k.exe

C:\cqxj.exe

C:\cr1s1.bat

C:\cs6phv6d.exe

C:\ctu8r.exe

C:\curqp.exe

C:\cv8j.exe

C:\d9c.bat

C:\dhrhyje.bat

C:\e2.cmd

C:\eexyv.exe

C:\ej10fkdo.bat

C:\em8tqm.cmd

C:\ewqij.bat

C:\eyt.exe

C:\f2.bat

C:\f9o8o.exe

C:\fbak.exe

C:\fsaht.cmd

C:\g12g.exe

C:\g1ljsm.com

C:\g8k.exe

C:\gbm6n.exe

C:\gclwpivc.cmd

C:\gcq6.exe

C:\gkc6.com

C:\gpcdt.cmd

C:\gyn.cmd

C:\hjvjte.exe

C:\hkn6k.bat

C:\hm1bfpuj.exe

C:\husyu8n.exe

C:\hx.exe

C:\i.cmd

C:\i0yva6.exe

C:\i9bwjpqc.exe

C:\icxpa.cmd

C:\j.cmd

C:\j39y2.bat

C:\k8jc.exe

C:\ktly.exe

C:\l61yyp.exe

C:\lad.bat

C:\lc.exe

C:\lcw.exe

C:\ljnhwt.bat

C:\lphfa.exe

C:\luk1ylq.com

C:\m.com

C:\m.exe

C:\mb9x.exe

C:\mbdm.exe

C:\mbvd.exe

C:\metdgv.bat

C:\minm.cmd

C:\mje12tni.exe

C:\ml.com

C:\mranjm.exe

C:\mt.bat

C:\mt2.exe

C:\mwfubaob.exe

C:\n0euybx.exe

C:\n68mqcra.exe

C:\nds0q.exe

C:\ngp8l.exe

C:\nkbd1v.exe

C:\npee.com

C:\nqdymj.exe

C:\nu.cmd

C:\ohd.exe

C:\opdux.exe

C:\p.exe

C:\p0ijj.bat

C:\pbudsara.exe

C:\ph.exe

C:\pkkwng.exe

C:\q0dhfjf.exe

C:\q1alx.exe

C:\q3kku.exe

C:\q8e6.bat

C:\q9.cmd

C:\q93fi6kf.exe

C:\qbr2q.exe

C:\qkjxl.exe

C:\qothmn.cmd

C:\qr.exe

C:\qwtb.com

C:\r2g20.exe

C:\rbj9jn1n.bat

C:\rg9g9bgq.exe

C:\rwj0.cmd

C:\s.exe

C:\s3ek.exe

C:\se12ydam.exe

C:\sm.exe

C:\sp1jensi.exe

C:\srgo.exe

C:\ste8.bat

C:\sv8c2bjw.bat

C:\t2hjo0.exe

C:\t8s2x.exe

C:\u0riu2.exe

C:\ukfbi3aw.exe

C:\ukvr.bat

C:\upw.bat

C:\upx.bat

C:\uqgvf.exe

C:\uxkl0apt.bat

C:\v1cbvsmq.exe

C:\vb0hsoay.exe

C:\vlvtdflx.exe

C:\vwewav8.com

C:\w.com

C:\w9hw8.exe

C:\w9uxx92.exe

C:\wbj.exe

C:\wcgswa.exe

C:\wfx062.exe

C:\wu1n.exe

C:\xdglur.bat

C:\xdw.com

C:\xh319r9b.bat

C:\xhah66s.cmd

C:\xih9.cmd

C:\xmcckw.bat

C:\xmor.exe

C:\xs6kpr0.exe

C:\xsia.bat

C:\y.bat

C:\y6yol.exe

C:\y8.exe

C:\ycvvj.exe

C:\yh.cmd

C:\yhh.bat

C:\ysep1.exe

D:\060ptrm.com

D:\0bcobed.exe

D:\0c9k.exe

D:\0fkk02x.exe

D:\0qw6vege.exe

D:\0xuc.com

D:\10nb.exe

D:\1a1dndah.exe

D:\1di1w.exe

D:\1f.bat

D:\1mteolu9.com

D:\1ogf.exe

D:\1xniph.bat

D:\22yj2fy1.exe

D:\28b6ry9r.exe

D:\2a.exe

D:\2id9.exe

D:\2nuk.com

D:\2sm66r.exe

D:\3.cmd

D:\3c.exe

D:\3j2h0tf.bat

D:\3n8awsyg.exe

D:\6p2dxv.bat

D:\6phx.com

D:\6ruaqx.exe

D:\8.exe

D:\86l2qw.bat

D:\8b3.bat

D:\8dtyjjf.exe

D:\8gig0ofk.com

D:\8paf1d.com

D:\8rcahp.exe

D:\9b9w3.exe

D:\9dlvtiil.exe

D:\9g86.exe

D:\9jyhdim8.exe

D:\9u.exe

D:\a2g21.exe

D:\auq9bor.bat

D:\b00ijwpu.exe

D:\be2trf.bat

D:\boyedt.com

D:\bycfht.exe

D:\cahpcg.cmd

D:\cb.exe

D:\cj3k.exe

D:\cqxj.exe

D:\cr1s1.bat

D:\cs6phv6d.exe

D:\ctu8r.exe

D:\curqp.exe

D:\cv8j.exe

D:\d9c.bat

D:\dhrhyje.bat

D:\e2.cmd

D:\eexyv.exe

D:\ej10fkdo.bat

D:\em8tqm.cmd

D:\ewqij.bat

D:\eyt.exe

D:\f2.bat

D:\f9o8o.exe

D:\fbak.exe

D:\fsaht.cmd

D:\g12g.exe

D:\g1ljsm.com

D:\g8k.exe

D:\gbm6n.exe

D:\gclwpivc.cmd

D:\gcq6.exe

D:\gkc6.com

D:\gpcdt.cmd

D:\gyn.cmd

D:\hjvjte.exe

D:\hkn6k.bat

D:\hm1bfpuj.exe

D:\husyu8n.exe

D:\hx.exe

D:\i.cmd

D:\i0yva6.exe

D:\i9bwjpqc.exe

D:\icxpa.cmd

D:\j.cmd

D:\j39y2.bat

D:\k8jc.exe

D:\ktly.exe

D:\l61yyp.exe

D:\lad.bat

D:\lc.exe

D:\lcw.exe

D:\ljnhwt.bat

D:\lphfa.exe

D:\luk1ylq.com

D:\m.com

D:\m.exe

D:\mb9x.exe

D:\mbdm.exe

D:\mbvd.exe

D:\metdgv.bat

D:\minm.cmd

D:\mje12tni.exe

D:\ml.com

D:\mranjm.exe

D:\mt.bat

D:\mt2.exe

D:\mwfubaob.exe

D:\n0euybx.exe

D:\n68mqcra.exe

D:\nds0q.exe

D:\ngp8l.exe

D:\nkbd1v.exe

D:\npee.com

D:\nqdymj.exe

D:\nu.cmd

D:\ohd.exe

D:\opdux.exe

D:\p.exe

D:\p0ijj.bat

D:\pbudsara.exe

D:\ph.exe

D:\pkkwng.exe

D:\q0dhfjf.exe

D:\q1alx.exe

D:\q3kku.exe

D:\q8e6.bat

D:\q9.cmd

D:\q93fi6kf.exe

D:\qbr2q.exe

D:\qkjxl.exe

D:\qothmn.cmd

D:\qr.exe

D:\qwtb.com

D:\r2g20.exe

D:\rbj9jn1n.bat

D:\rg9g9bgq.exe

D:\rwj0.cmd

D:\s.exe

D:\s3ek.exe

D:\se12ydam.exe

D:\sm.exe

D:\sp1jensi.exe

D:\srgo.exe

D:\ste8.bat

D:\sv8c2bjw.bat

D:\t2hjo0.exe

D:\t8s2x.exe

D:\u0riu2.exe

D:\ukfbi3aw.exe

D:\ukvr.bat

D:\upw.bat

D:\upx.bat

D:\uqgvf.exe

D:\uxkl0apt.bat

D:\v1cbvsmq.exe

D:\vb0hsoay.exe

D:\vlvtdflx.exe

D:\vwewav8.com

D:\w.com

D:\w9hw8.exe

D:\w9uxx92.exe

D:\wbj.exe

D:\wcgswa.exe

D:\wfx062.exe

D:\wu1n.exe

D:\xdglur.bat

D:\xdw.com

D:\xh319r9b.bat

D:\xhah66s.cmd

D:\xih9.cmd

D:\xmcckw.bat

D:\xmor.exe

D:\xs6kpr0.exe

D:\xsia.bat

D:\y.bat

D:\y6yol.exe

D:\y8.exe

D:\ycvvj.exe

D:\yh.cmd

D:\yhh.bat

D:\ysep1.exe

E:\060ptrm.com

E:\0bcobed.exe

E:\0c9k.exe

E:\0fkk02x.exe

E:\0qw6vege.exe

E:\0xuc.com

E:\10nb.exe

E:\1a1dndah.exe

E:\1di1w.exe

E:\1f.bat

E:\1mteolu9.com

E:\1ogf.exe

E:\1xniph.bat

E:\22yj2fy1.exe

E:\28b6ry9r.exe

E:\2a.exe

E:\2id9.exe

E:\2nuk.com

E:\2sm66r.exe

E:\3.cmd

E:\3c.exe

E:\3j2h0tf.bat

E:\3n8awsyg.exe

E:\6p2dxv.bat

E:\6phx.com

E:\6ruaqx.exe

E:\8.exe

E:\86l2qw.bat

E:\8b3.bat

E:\8dtyjjf.exe

E:\8gig0ofk.com

E:\8paf1d.com

E:\8rcahp.exe

E:\9b9w3.exe

E:\9dlvtiil.exe

E:\9g86.exe

E:\9jyhdim8.exe

E:\9u.exe

E:\a2g21.exe

E:\auq9bor.bat

E:\b00ijwpu.exe

E:\be2trf.bat

E:\boyedt.com

E:\bycfht.exe

E:\cahpcg.cmd

E:\cb.exe

E:\cj3k.exe

E:\cqxj.exe

E:\cr1s1.bat

E:\cs6phv6d.exe

E:\ctu8r.exe

E:\curqp.exe

E:\cv8j.exe

E:\d9c.bat

E:\dhrhyje.bat

E:\e2.cmd

E:\eexyv.exe

E:\ej10fkdo.bat

E:\em8tqm.cmd

E:\ewqij.bat

E:\eyt.exe

E:\f2.bat

E:\f9o8o.exe

E:\fbak.exe

E:\fsaht.cmd

E:\g12g.exe

E:\g1ljsm.com

E:\g8k.exe

E:\gbm6n.exe

E:\gclwpivc.cmd

E:\gcq6.exe

E:\gkc6.com

E:\gpcdt.cmd

E:\gyn.cmd

E:\hjvjte.exe

E:\hkn6k.bat

E:\hm1bfpuj.exe

E:\husyu8n.exe

E:\hx.exe

E:\i.cmd

E:\i0yva6.exe

E:\i9bwjpqc.exe

E:\icxpa.cmd

E:\j.cmd

E:\j39y2.bat

E:\k8jc.exe

E:\ktly.exe

E:\l61yyp.exe

E:\lad.bat

E:\lc.exe

E:\lcw.exe

E:\ljnhwt.bat

E:\lphfa.exe

E:\luk1ylq.com

E:\m.com

E:\m.exe

E:\mb9x.exe

E:\mbdm.exe

E:\mbvd.exe

E:\metdgv.bat

E:\minm.cmd

E:\mje12tni.exe

E:\ml.com

E:\mranjm.exe

E:\mt.bat

E:\mt2.exe

E:\mwfubaob.exe

E:\n0euybx.exe

E:\n68mqcra.exe

E:\nds0q.exe

E:\ngp8l.exe

E:\nkbd1v.exe

E:\npee.com

E:\nqdymj.exe

E:\nu.cmd

E:\ohd.exe

E:\opdux.exe

E:\p.exe

E:\p0ijj.bat

E:\pbudsara.exe

E:\ph.exe

E:\pkkwng.exe

E:\q0dhfjf.exe

E:\q1alx.exe

E:\q3kku.exe

E:\q8e6.bat

E:\q9.cmd

E:\q93fi6kf.exe

E:\qbr2q.exe

E:\qkjxl.exe

E:\qothmn.cmd

E:\qr.exe

E:\qwtb.com

E:\r2g20.exe

E:\rbj9jn1n.bat

E:\rg9g9bgq.exe

E:\rwj0.cmd

E:\s.exe

E:\s3ek.exe

E:\se12ydam.exe

E:\sm.exe

E:\sp1jensi.exe

E:\srgo.exe

E:\ste8.bat

E:\sv8c2bjw.bat

E:\t2hjo0.exe

E:\t8s2x.exe

E:\u0riu2.exe

E:\ukfbi3aw.exe

E:\ukvr.bat

E:\upw.bat

E:\upx.bat

E:\uqgvf.exe

E:\uxkl0apt.bat

E:\v1cbvsmq.exe

E:\vb0hsoay.exe

E:\vlvtdflx.exe

E:\vwewav8.com

E:\w.com

E:\w9hw8.exe

E:\w9uxx92.exe

E:\wbj.exe

E:\wcgswa.exe

E:\wfx062.exe

E:\wu1n.exe

E:\xdglur.bat

E:\xdw.com

E:\xh319r9b.bat

E:\xhah66s.cmd

E:\xih9.cmd

E:\xmcckw.bat

E:\xmor.exe

E:\xs6kpr0.exe

E:\xsia.bat

E:\y.bat

E:\y6yol.exe

E:\y8.exe

E:\ycvvj.exe

E:\yh.cmd

E:\yhh.bat

E:\ysep1.exe

E:\WINDOWS\System32\nmdfgds2.dll

E:\WINDOWS\System32\nmdfgds1.dll

E:\WINDOWS\System32\nmdfgds0.dll

E:\WINDOWS\System32\ckvo0.dll

E:\WINDOWS\System32\srmgs.dll

E:\WINDOWS\system32\e8main.dll

E:\Program Files\PromotionsTool

E:\Program Files\AskSBar

E:\Program Files\MyGlobalSearch

E:\Program Files\AskTBar

E:\Program Files\free-downloads.net


:Commands

[emptytemp]

[start explorer]

[Reboot]

Run Fix. Restart, jeśli będzie potrzebny.

Potem log z usuwania oraz nowy log robiony opcją Run Scan.

Zastosuj Combofix.

Przed uruchomieniem odinstaluj wszelkie programy tworzące wirtualne napędy (Daemon Tools, Alcohol itp.) oraz usuń sterownik SPTD narzędziem SPTDInst z opcji Uninstall (jeśli będzie zszarzałe, to OK).

Podczas pobierania i skanowania Combofixem należy wyłączyć wszelkie antywirusy i firewalle.

Pokaż log.


(lazikar) #3

dzyniu89_89 , opisz proszę problem i zmień tytuł na właściwy.