Zamulenie kompa - prosba o sprawdzenie loga

kixar · 10 Marzec 2012 20:14

Witam

Ostatnimi czasy cierpie na straszne zamukenie kompa… ;/

Czy ktos moglby sprawdzic czym jestem zainfekowany ??

OTL: http://wklej.to/VFvsN

EXTRAS: http://wklej.to/U9XbA

Z gory dziekuje za pomoc

– Dodane 11.03.2012 (N) 9:48 –

Jest aż tak źle ??

Acorus · 11 Marzec 2012 08:53

Odinstaluj AutocompletePro,facemoods,QuickStores-Toolbar 1.2.0,StartNow Toolbar,Winamp Toolbar.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:

:OTL IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=desktop&s={searchTerms}&f=4 IE - HKU\S-1-5-21-1409082233-1677128483-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10181&bi=400 IE - HKU\S-1-5-21-1409082233-1677128483-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com IE - HKU\S-1-5-21-1409082233-1677128483-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10181&bi=400 IE - HKU\S-1-5-21-1409082233-1677128483-725345543-1003…\SearchScopes{0D7562AE-8EF6-416d-A838-AB665251703A}: “URL” = http://start.facemoods.com/?a=desktop&s={searchTerms}&f=4 IE - HKU\S-1-5-21-1409082233-1677128483-725345543-1003…\SearchScopes{afdbddaa-5d3f-42ee-b79c-185a7020515b}: “URL” = http://search.autocompletepro.com/?si=10181&bi=400&q={searchTerms} [2011-09-16 22:47:57 | 000,003,189 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\acpro.xml [2010-11-29 11:25:56 | 000,002,039 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\fcmdSrchdesktop.xml O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll (SimplyGen) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.2\bh\facemoods.dll (facemoods.com BHO) O2 - BHO: (StartNow Toolbar Helper) - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll () O3 - HKLM…\Toolbar: (StartNow Toolbar) - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll () O3 - HKLM…\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.2\facemoodsTlbr.dll (facemoods.com) O3 - HKLM…\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O3 - HKU\S-1-5-21-1409082233-1677128483-725345543-1003…\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.) O4 - HKLM…\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.2\facemoodssrv.exe (facemoods.com) O4 - HKLM…\Run: [startNowToolbarHelper] “C:\Program Files\StartNow Toolbar\ToolbarHelper.exe” File not found O4 - HKU\S-1-5-21-1409082233-1677128483-725345543-1003…\Run: [Real Desktop] “C:\Program Files\Real Desktop\Real Desktop.exe” File not found O4 - Startup: C:\Documents and Settings\Berlik\Menu Start\Programy\Autostart\Real Desktop.lnk = File not found O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found [2011-09-16 20:31:50 | 000,000,000 | —D | M] – C:\Documents and Settings\Berlik\Dane aplikacji\OpenCandy :Commands [emptytemp]

Kliknij Wykonaj skrypt.Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).

Pokaż nowy log OTL.txt oraz raport z usuwania.