jola00
(Shidoshi)
8 Wrzesień 2009 22:33
#1
Mam problem komp mi się muli i zawiesza mimo że czyściłam i defragmentowałam dysk i rejestr odchudziłam autostart i wyłączyłam niepotrzebne procesy podejrzewam jakiś syf proszę o sprawdzenie loga o to link
http://www.wklejto.pl/42190
z góry dziękuję
Umpfh
(Umpfh)
8 Wrzesień 2009 22:38
#2
Zaznacz i Fix:
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://search.bearshare.com/ R1 - HKLMSoftwareMicrosoftInternet ExplorerSearch,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi … t=&gc=1&q= R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedi … t=&gc=1&q=%s O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:Program FilesAskBarDisbarbinaskBar.dll O2 - BHO: Expressivo - {85F685C3-20D9-4943-95E4-EB4224056C3F} - (no file) O2 - BHO: (no name) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - (no file) O2 - BHO: XBTP02634 Class - {F97DA966-F09D-4cab-BF29-75A0026986EA} - (no file) O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file) O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file) O3 - Toolbar: Expressivo - {85F685C3-20D9-4943-95E4-EB4224056C3F} - (no file) O3 - Toolbar: (no name) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - (no file) O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:Program FilesAskBarDisbarbinaskBar.dll O3 - Toolbar: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - (no file) O4 - HKLM…Run: [Adobe Reader Speed Launcher] “C:Program FilesAdobeReader 9.0ReaderReader_sl.exe” O8 - Extra context menu item: &Winamp Search - C:Documents and SettingsAll UsersDane aplikacjiWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
Daj loga z OTL: http://forum.programosy.pl/otl-tworzeni … 12950.html
jola00
(Shidoshi)
8 Wrzesień 2009 23:07
#3
Tamto usunełam a oto log z OLT
http://wklej.org/id/147239/
– Dodane 09.09.2009 (Śr) 1:07 –
OTl sory
Umpfh
(Umpfh)
8 Wrzesień 2009 23:14
#4
Wklej poniższe w OTL i klik Run Fix:
:Processes explorer.exe :OTL O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKLM…\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll File not found O3 - HKLM…\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM…\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKLM…\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\ShellBrowser: (no name) - {266FCDCA-7BB3-4DA7-B3BF-F845DEA2EBD6} - No CLSID value found. O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found. O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\ShellBrowser: (no name) - {60270DC7-9EA0-472F-9B77-66652C06246E} - No CLSID value found. O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\ShellBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll File not found O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKU\S-1-5-21-3322970762-3847322746-3550839719-1005…\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O8 - Extra context menu item: ÓñČĚŘľ«ÁéĎÂÔŘ(&B) - Reg Error: Value error. File not found O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\msdaipp - No CLSID value found O32 - AutoRun File - [2009-07-20 01:18:24 | 00,000,000 | RHSD | M] - C:\autorun.inf – [FAT32] O32 - AutoRun File - [2009-07-20 01:18:23 | 00,000,000 | RHSD | M] - D:\autorun.inf – [NTFS] O32 - AutoRun File - [2009-07-20 01:18:23 | 00,000,000 | RHSD | M] - G:\autorun.inf – [NTFS] :Files C:\Program Files\AskBarDis :Commands [emptytemp] [start explorer] [Reboot]
Daj loga po usuwaniu.
Następnie musisz usunąć klucz: MountPoints2 .
Wejdź w: Start>>>Uruchom>>> wpisz: regedit
poszukaj klucza: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ Explorer\MountPoints2
Usuwasz MountPoints2
Przeskanuj komputer tym: http://www.dobreprogramy.pl/Malwarebyte … 13117.html usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware)
jola00
(Shidoshi)
9 Wrzesień 2009 00:09
#5
usunełam klucz MountPoints2 a oto log z Malware
http://www.wklejto.pl/42192
Umpfh
(Umpfh)
9 Wrzesień 2009 10:03
#6
Zachowanie komputera uległo poprawie?