wluczega
(Kamil Solinski)
6 Marzec 2012 07:28
#1
Witam
Mam od jakiegoś czasu problem z działaniem systemu. Chodzi bardzo wolno, zacinają się programy. Skanowałem system programem Malwarebytes i znalazł parę zagrożeń.
Dodatkowo dochodzi problem przy włączaniu komputera - wyskakuje komunikat:
Wystąpił błąd podczas ładowania
C:\Windows$NtUninstallMTF197$\cdtkg.dll
Nie można odnaleźć określonego modułu
Dodaję plik ze skanowania OTL-em
Plik Extras: http://wklej.org/id/702985/
Plik OTL: http://wklej.org/id/702986/
Proszę o pomoc w naprawie systemu i dziękuję za pomoc
Acorus
(Acorus)
6 Marzec 2012 07:48
#2
Odinstaluj AutocompletePro,Free_Lunch_Design Toolbar.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
:OTL IE - HKLM…\URLSearchHook: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found IE - HKLM…\SearchScopes{afdbddaa-5d3f-42ee-b79c-185a7020515b}: “URL” = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= … =CT2247187 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://search.conduit.com?SearchSource= … =CT2475029 IE - HKCU…\URLSearchHook: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found IE - HKCU…\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found IE - HKCU…\SearchScopes{0B278C6F-EC6B-3477-311E-6342928C69FF}: “URL” = http://flv.asksearch.com/s/?q={searchTerms}&iesrc={referrer:source?}&cfg=2-113-11-ksMV IE - HKCU…\SearchScopes{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: “URL” = http://websearch.ask.com/redirect?clien … src=crm&q={searchTerms}&locale= IE - HKCU…\SearchScopes{afdbddaa-5d3f-42ee-b79c-185a7020515b}: “URL” = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678 IE - HKCU…\SearchScopes{CF739809-1C6C-47C0-85B9-569DBB141420}: “URL” = http://toolbar.ask.com/toolbarv/askRedi … t=&gc=1&q={searchTerms}&crm=1&toolbar=VZ2 IE - HKCU…\SearchScopes{FD4B4F0E-0135-46F6-B3A3-3B3520A31B78}: “URL” = http://www.dymasearch.com/search.php?src=tops&q={SearchTerms} FF - prefs.js…browser.search.defaultengine: “Ask.com ” FF - prefs.js…browser.search.defaultenginename: “Ask.com ” FF - prefs.js…browser.search.defaulturl: “http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms} ” FF - prefs.js…browser.search.order.1: “Ask.com ” FF - prefs.js…browser.search.selectedEngine: “Ask.com ” FF - prefs.js…browser.startup.homepage: “http://www.ask.com/?l=dis&o=101916 ” FF - prefs.js…extensions.enabledItems: support@predictad.com:1.11 [2011-08-18 16:29:26 | 000,000,000 | —D | M] (Free Lunch Design Community Toolbar) – C:\Users\Dorota i Daniel\AppData\Roaming\mozilla\Firefox\Profiles\gl0zxga6.default\extensions{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} [2012-01-26 12:56:11 | 000,000,000 | —D | M] (Mario Forever Toolbar) – C:\Users\Dorota i Daniel\AppData\Roaming\mozilla\Firefox\Profiles\gl0zxga6.default\extensions{707db484-2428-402d-afb5-d85b387544c7} [2011-08-18 16:29:27 | 000,000,000 | —D | M] (MyAshampoo Community Toolbar) – C:\Users\Dorota i Daniel\AppData\Roaming\mozilla\Firefox\Profiles\gl0zxga6.default\extensions{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} [2011-08-18 16:29:30 | 000,000,000 | —D | M] (uTorrentBar Community Toolbar) – C:\Users\Dorota i Daniel\AppData\Roaming\mozilla\Firefox\Profiles\gl0zxga6.default\extensions{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2010-12-24 13:27:13 | 000,000,000 | —D | M] (“AutocompletePro - Your handy search suggestions tool”) – C:\Users\Dorota i Daniel\AppData\Roaming\mozilla\Firefox\Profiles\gl0zxga6.default\extensions\support@predictad.com [2010-02-10 14:18:51 | 000,001,747 | ---- | M] () – C:\Users\Dorota i Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\gl0zxga6.default\searchplugins\ask.uk.xml [2010-01-14 14:59:27 | 000,000,687 | ---- | M] () – C:\Users\Dorota i Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\gl0zxga6.default\searchplugins\ask.xml [2011-11-04 13:16:58 | 000,002,428 | ---- | M] () – C:\Users\Dorota i Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\gl0zxga6.default\searchplugins\askcom.xml [2010-12-24 13:31:21 | 000,000,913 | ---- | M] () – C:\Users\Dorota i Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\gl0zxga6.default\searchplugins\conduit.xml [2009-11-09 17:46:46 | 000,000,254 | ---- | M] () – C:\Users\Dorota i Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\gl0zxga6.default\searchplugins\Search.xml O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll (SimplyGen) O2 - BHO: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O2 - BHO: (no name) - {C444AEB2-91C7-DF38-9CFB-23A44CF3CD26} - No CLSID value found. O2 - BHO: (no name) - {E6755822-DC6B-4DBB-8918-A8FA88597A89} - No CLSID value found. O2 - BHO: (no name) - {E985B76F-FB99-495B-80E2-108492A0EE7A} - No CLSID value found. O3 - HKLM…\Toolbar: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O3 - HKCU…\Toolbar\WebBrowser: (no name) - {57CC715D-37CA-44E4-9EC2-8C2CBDDB25EC} - No CLSID value found. O4 - HKLM…\Run: [bEWINTERNET-PLSessionManager] “C:\Program Files\OrangeBS\BEWInternet-PL\SessionManager\SessionManager.exe” File not found O4 - HKLM…\Run: [bipro] rundll32 “C:\Windows$NtUninstallMTF197$\cdtkg.dll”,Run File not found O4 - HKLM…\Run: [xekbgvfhmknh] C:\Windows\System32\regsvr32.exe /s “C:\Windows\system32\ncxxuocugytv.dll” File not found O4 - HKCU…\Run: [cdoosoft] C:\Users\DOROTA~1\AppData\Local\Temp\herss.exe File not found :Reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] :Commands [emptytemp]
Kliknij Wykonaj skrypt.W OTL użyj opcji Sprzątanie.Zainstaluj aktualizacje do programow wskazanych przez: http://screen317.spywareinfoforum.org/SecurityCheck.exe jako out of date.