Acorus
16 Listopad 2011 18:01
#2
Odinstaluj Winamp Toolbar,Babylon toolbar,BitTorrentBar Toolbar,MediaBar,free-downloads.net Toolbar,SweetIM Toolbar,facemoods Toolbar,Akamai NetSession Interface.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
:OTL SRV - [2011-10-29 09:15:24 | 000,344,576 | ---- | M] () [Disabled | Stopped] – C:\Windows\update.5.0\svchost.exe – (srvbtcclient) SRV - [2011-10-29 09:14:25 | 000,258,048 | ---- | M] () [Disabled | Stopped] – C:\Windows\sysdriver32.exe – (srvsysdriver32) SRV - [2011-10-29 09:12:08 | 001,201,152 | -H-- | M] (Cronosoft) [Disabled | Stopped] – C:\Windows\update.1\svchost.exe – (wxpdrivers) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&barid={49F4B425-08E4-4489-826E-B5D2516E4A8A} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=bf2&s={searchTerms}&f=4 IE - HKLM…\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) IE - HKLM…\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) IE - HKLM…\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net \prxtbfree.dll (Conduit Ltd.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= … =CT2790392 IE - HKCU…\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) IE - HKCU…\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) IE - HKCU…\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net \prxtbfree.dll (Conduit Ltd.) IE - HKCU…\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) [2011-10-12 13:38:24 | 000,002,046 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO) O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com \facemoods\1.4.17.11\bh\facemoods.dll (facemoods.com BHO) O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC) O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files\BearShare Applications\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll () O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net \prxtbfree.dll (Conduit Ltd.) O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM…\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O3 - HKLM…\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.) O3 - HKLM…\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files\BearShare Applications\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll () O3 - HKLM…\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com \facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com ) O3 - HKLM…\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O3 - HKLM…\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net \prxtbfree.dll (Conduit Ltd.) O3 - HKLM…\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM…\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU…\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O3 - HKCU…\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net \prxtbfree.dll (Conduit Ltd.) O3 - HKCU…\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM…\Run: [tray_ico] File not found O4 - HKLM…\Run: [tray_ico0] File not found O4 - HKLM…\Run: [tray_ico1] File not found O4 - HKLM…\Run: [tray_ico2] File not found O4 - HKLM…\Run: [tray_ico3] File not found O4 - HKLM…\Run: [tray_ico4] File not found O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll) -C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll (MusicLab, LLC) O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll) -C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC) MsConfig - StartUpReg: 1787179.exe - hkey= - key= - File not found MsConfig - StartUpReg: 2658773.exe - hkey= - key= - File not found MsConfig - StartUpReg: 693986.exe - hkey= - key= - File not found MsConfig - StartUpReg: 9376262.exe - hkey= - key= - File not found MsConfig - StartUpReg: BitComet - hkey= - key= - File not found MsConfig - StartUpReg: facemoods - hkey= - key= - File not found MsConfig - StartUpReg: Steam - hkey= - key= - File not found [2011-10-30 01:25:49 | 000,000,000 | —D | C] – C:\Program Files\Conduit [2011-10-30 01:25:47 | 000,000,000 | —D | C] – C:\Users\Czacha\AppData\Local\Conduit [2011-10-29 09:20:01 | 000,000,000 | —D | C] – C:\Windows\ufa [2011-10-29 09:20:01 | 000,000,000 | —D | C] – C:\Windows\rpcminer [2011-10-29 09:20:01 | 000,000,000 | —D | C] – C:\Windows\phoenix [2011-10-29 09:15:49 | 000,000,000 | -H-D | C] – C:\Windows\update.3 [2011-10-29 09:15:42 | 000,000,000 | -H-D | C] – C:\Windows\update.2 [2011-10-29 09:15:25 | 000,000,000 | -H-D | C] – C:\Windows\update.5.0 [2011-10-29 09:12:52 | 001,201,152 | ---- | C] (Cronosoft) – C:\Windows\services32.exe [2011-10-29 09:12:52 | 000,000,000 | -H-D | C] – C:\Windows\update.1 [2011-10-29 09:23:45 | 000,904,792 | ---- | M] () – C:\Windows\geoiplist.rar [2011-10-29 09:23:45 | 000,246,272 | ---- | M] () – C:\Windows\unrar.exe [2011-10-29 09:20:00 | 005,589,370 | ---- | M] () – C:\Windows\phoenix.rar [2011-10-29 09:20:00 | 001,075,284 | ---- | M] () – C:\Windows\rpcminer.rar [2011-10-29 09:20:00 | 000,182,617 | ---- | M] () – C:\Windows\ufa.rar [2011-10-29 09:16:09 | 000,000,734 | ---- | M] () – C:\Windows\System32\drivers\etc\hîsts [2011-10-29 09:15:53 | 000,000,112 | ---- | M] () – C:\Windows\info1 [2011-10-29 09:14:57 | 000,000,000 | ---- | M] () – C:\Windows\loader2.exe_ok [2011-10-29 09:14:25 | 000,258,048 | ---- | M] () – C:\Windows\sysdriver32_.exe [2011-10-29 09:14:25 | 000,258,048 | ---- | M] () – C:\Windows\sysdriver32.exe [2011-10-29 09:12:08 | 001,201,152 | ---- | M] (Cronosoft) – C:\Windows\services32.exe :Reg [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot] “AlternateShell”=“cmd.exe” :Commands [emptytemp]
Kliknij Wykonaj skrypt .Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
Pokaż nowy log OTL.txt oraz raport z usuwania.
siwyprz
16 Listopad 2011 20:00
#3
To jest to co mi wyskoczyło po skanowaniu gdy zresetowałem kompa .
http://wklej.to/erku0
A to jest raport z usuwania ( chyba że coś spieprzyłem )
http://wklej.to/qPaXl
Acorus
16 Listopad 2011 20:10
#4
Odinstaluj w końcu ten Akamai.W OTL użyj opcji Sprzątanie.Wyłącz i włącz przywracanie systemu.
http://www.searchengines.pl/Czyszczenie … 41981.html
Przeskanuj progr.Malwarebytes Anti-Malware
http://www.dobreprogramy.pl/Malwarebyte … 13117.html
Przed skanowaniem wykonaj RĘCZNĄ AKTUALIZACJĘ BAZY WIRUSÓW
Zainstaluj aktualizacje do programow wskazanych przez: http://screen317.spywareinfoforum.org/SecurityCheck.exe jako out of date.
siwyprz
16 Listopad 2011 20:23
#5
Gdy miałem to robić : Wyłącz i włącz przywracanie systemu.
http://www.searchengines.pl/Czyszczenie … 41981.html . To wyskoczył mi taki błąd -
http://tinypic.com/r/1o7i4h/5
■■■.?
– Dodane 16.11.2011 (Śr) 23:26 –
Dobra poradziłem, sobie z tamtym (wyżej)
Po skanowaniu tym programem wyskoczyło mi takie coś :
http://tinypic.com/r/23lliqx/5
– Dodane 17.11.2011 (Cz) 0:05 –
Jak będziesz to bardzo proszę odpisz, bo nie wiem co z tymi wirusami zrobić ;/
siwyprz
17 Listopad 2011 11:32
#7
Usunąłem .
– Dodane 17.11.2011 (Cz) 16:55 –
Mam nadal lagi w grze ;/ lag trwa około 15 sekund nie wiem co zrobić ;/
W procesach mam to /cenzura/ svchost.exe
Jeśli możesz to bardzo proszę pomóż .
– Dodane 18.11.2011 (Pt) 20:41 –
Pomoże ktoś ?
nie da się grać ;/