brak dostępu do Facebooka

[Majkel00161]

sciągnąłem przpadkowo jakiegos wirusa i nie moge wejsc na facebooka, wszystkie inne stron dzialaja, co mam zrobic ?

[mateo8898]

Podaj logi z OTL i GMER

[Majkel00161]

http://www.wklej.eu/index.php?id=bb5db5698f

http://www.wklej.eu/index.php?id=d43a6bad96

ja skanue w m GMER t chwili jawia mi si czan ekran, nie im czemu

[Majkel00161]

http://www.wklej.eu/index.php?id=0999320f5a

mam tylko takie cos ale nie wiem czy to o to chodzi

[mateo8898]

Uruchom OTL w oknie Własne opcje skanowania/skrypt wklej:

:Processes
killallprocesses

:OTL
MOD - [2011-08-23 19:45:05 | 000,636,416 | ---- | M] () -- C:\WINDOWS\update.2\svchost.exe
MOD - [2011-08-21 20:44:40 | 000,355,840 | ---- | M] () -- C:\WINDOWS\update.5.0\svchost.exe
MOD - [2011-08-17 17:37:55 | 001,000,920 | ---- | M] () -- C:\Program Files\Mozilla Firefox\js3250.dll
MOD - [2011-07-25 15:05:20 | 001,185,280 | -H-- | M] () -- C:\WINDOWS\update.1\svchost.exe
FF - prefs.js..network.proxy.backup.ssl: ""
FF - prefs.js..network.proxy.backup.ssl_port: 0
FF - prefs.js..network.proxy.ftp: "210.210.35.11"
FF - prefs.js..network.proxy.ftp_port: 553
FF - prefs.js..network.proxy.gopher: "210.210.35.11"
FF - prefs.js..network.proxy.gopher_port: 553
FF - prefs.js..network.proxy.http: "210.210.35.11"
FF - prefs.js..network.proxy.http_port: 553
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "210.210.35.11"
FF - prefs.js..network.proxy.socks_port: 553
FF - prefs.js..network.proxy.ssl: "210.210.35.11"
FF - prefs.js..network.proxy.ssl_port: 553
FF - prefs.js..network.proxy.type: 2
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9E83-2DB586E27190} - No CLSID value found.
O4 - HKLM..\Run: [1649979.exe] File not found
O4 - HKLM..\Run: [2248315.exe] File not found
O4 - HKLM..\Run: [2622714.exe] File not found
O4 - HKLM..\Run: [4785196.exe] File not found
O4 - HKLM..\Run: [6204058.exe] File not found
O4 - HKLM..\Run: [91239998-loader2.exe] File not found
O4 - HKLM..\Run: [NVIDIA driver monitor] c:\WINDOWS\nvsvc32.exe ()
O4 - HKLM..\Run: [sysdriver32.exe] File not found
O4 - HKLM..\Run: [sysdriver32_.exe] File not found
O4 - HKLM..\Run: [systemup] C:\WINDOWS\systemup.exe ()
O4 - HKLM..\Run: [wxpdrv] C:\WINDOWS\update.1\svchost.exe ()
O4 - HKCU..\Run: [NVIDIA driver monitor] c:\WINDOWS\nvsvc32.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk = File not found
[2011-08-25 19:58:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.8.1
[2011-08-19 13:47:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.7.1
[2011-08-29 20:26:54 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RegistryBooster.job
[2011-08-29 20:18:15 | 000,003,968 | RHS- | M] () -- C:\WINDOWS\wibrf.jpg
[2011-08-29 20:18:15 | 000,003,416 | RHS- | M] () -- C:\WINDOWS\wiybr.png
[2011-08-29 18:45:32 | 000,000,248 | ---- | M] () -- C:\WINDOWS\info1
[2011-08-28 15:47:20 | 000,130,560 | ---- | M] () -- C:\WINDOWS\systemup.exe
[2011-07-25 15:07:10 | 000,130,560 | ---- | C] () -- C:\WINDOWS\systemup.exe
[2011-07-25 15:06:18 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
[2011-07-25 15:06:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok
[2011-07-25 15:05:27 | 001,185,280 | ---- | C] () -- C:\WINDOWS\services32.exe

:Files
C:\WINDOWS\update.2
C:\WINDOWS\update.5.0
C:\WINDOWS\update.1
C:\WINDOWS\ufa

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVRaidService"=-
"SoundMan"=-
"nwiz"=-

:Commands
[clearallrestorepoints]
[resethosts]
[emptytemp]

Klikasz Wykonaj skrypt. Dajesz log z usuwania + nowe logi z OTL.

[Majkel00161]

http://www.wklej.eu/index.php?id=101405f962

[Majkel00161]

http://www.wklej.eu/index.php?id=7ce383f8db

[mateo8898]

Skopiuj porządnie skrypt od początku do końca, bo źle to zrobiłeś i niewiele się wykonało. Następnie podaj log z usuwania i nowe logi z OTL.

[Majkel00161]

http://www.wklej.eu/index.php?id=78839d25d1

[Majkel00161]

http://www.wklej.eu/index.php?id=cacc738ca5

teraz powinno byc dobrze

[Majkel00161]

http://www.wklej.eu/index.php?id=d553bde5ad

[Majkel00161]

trz ostatnie sa dobre xD sory ze tak mące ..

[Majkel00161]

dziala, dziekuje bardzo

[mateo8898]

To jeszcze nie koniec.
Uruchom OTL w oknie Własne opcje skanowania/skrypt wklej:

:OTL
SRV - File not found [Auto | Stopped] -- -- (wxpdrivers)
SRV - File not found [Auto | Stopped] -- -- (srviecheck)
SRV - File not found [Auto | Stopped] -- -- (srvbtcclient)
SRV - File not found [On_Demand | Stopped] -- -- (McComponentHostService)
O4 - HKLM..\Run: [l1rezerv.exe] File not found
O31 - SafeBoot: AlternateShell - services32.exe

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie\facebook-pic00005267.exe"=-
"C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie\Flash-Player.exe"=-
"C:\WINDOWS\update.2\svchost.exe"=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
"AlternateShell"="cmd.exe"

Klikasz Wykonaj skrypt. Dajesz log z usuwania + nowe logi z OTL.

[justyna0002]

ja tez mam ten problem ale nie wiem od pocztaku coi jak robic;/