Logi do sprawdzenia. Problem z reklamiarzem

[kolniak90]

Logi OTL

OTL.txt
http://wklej.org/id/357797/


Extras.txt
http://wklej.org/id/357802/
z góry dziękuje za pomoc

[mateo8898]

Uruchom OTL w oknie Własne opcje skanowania/skrypt wklej:

:Processes
killallprocesses

:OTL
SRV - [2010-06-11 19:48:02 | 000,065,808 | ---- | M] () [Disabled | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\QuestService\questservice163.exe -- (QuestService Service)
IE - HKU\S-1-5-21-1177238915-861567501-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.myquickfinder.com
FF - HKLM\software\mozilla\Firefox\extensions\\{40f1eb95-4de4-4f36-a826-054ee36bb905}: C:\Program Files\Gameztar Toolbar\2.1.3.6670\FFToolbar [2009-12-19 13:52:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files\Web Search Operator\4.1.0.2080\FF [2009-12-19 13:53:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files\Automated Content Enhancer\4.1.0.5290\FF [2009-12-19 13:54:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files\Customized Platform Advancer\4.1.0.1960\FF [2009-12-19 13:54:24 | 000,000,000 | ---D | M]
[2010-06-14 08:53:09 | 000,000,000 | ---D | M] (QuestService) -- C:\Program Files\Mozilla Firefox\extensions\{F2DDDB92-1605-4260-9B25-45A4DAE87B50}
[2010-03-03 10:04:05 | 000,002,405 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\questservice141.xml
[2010-03-11 11:06:50 | 000,002,405 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\questservice143.xml
O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll ()
O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll ()
O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files\Content Management Wizard\1.1.0.1990\CMWIE.dll ()
O2 - BHO: (Textual Content Provider) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files\Textual Content Provider\1.1.0.1810\TCPIE.dll ()
O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files\Web Search Operator\4.1.0.2080\WSO.dll ()
O3 - HKU\S-1-5-21-1177238915-861567501-1644491937-500\..\Toolbar\WebBrowser: (Gameztar Toolbar) - {D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2} - C:\Program Files\Gameztar Toolbar\2.1.3.6670\mvb0.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\System32\EXPLORER.EXE ()
O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\System32\EXPLORER.EXE ()

:Files
C:\Program Files\Gameztar Toolbar
C:\Documents and Settings\All Users\Dane aplikacji\QuestService
C:\Program Files\Web Search Operator
C:\Program Files\Automated Content Enhancer
C:\Program Files\Customized Platform Advancer
C:\Program Files\Content Management Wizard
C:\Program Files\Textual Content Provider
C:\Program Files\Internet Today

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="explorer.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"SoundMAX"=-
"SoundMAXPnP"=-

:Commands
[emptytemp]

Klikasz Wykonaj skrypt. Następnie pobierz The Avenger w pole Input script here wklej poniższy tekst:

Kod: Zaznacz wszystko

Files to delete:
C:\WINDOWS\System32\EXPLORER.EXE

klikasz Execute Potwierdzasz i zgadzasz się na restart klikając OK.
Po wykonaniu wklej raport na forum C:\avenger.txt + nowe logi z OTL (jak będziesz robił nowe logi to przestaw na 90 dni).

[kolniak90]

TOL.txt
http://wklej.org/id/358305/
avenger
http://wklej.org/id/358306/

[mateo8898]

Ok, więcej nic nie widzę.

W OTL kliknij Sprzątanie

Przeczyść dysk oraz rejestr CCleaner

Wyłącz i włącz przywracanie systemu na wszystkich dyskach Instrukcja

Wykonaj pełne skanowanie Malwarebytes' Anti-Malware - jeśli coś znajdzie usuń i daj raport

Zaktualizuj Firefoxa do najnowszej wersji (Firefox Pomoc Sprawdź dostępność aktualizacji..)

Zainstaluj jakiegoś antywira.

[kolniak90]

Wielkie dzięki za pomoc
mbam-log-2010-07-01 (11-36-05).txt

Kod: Zaznacz wszystko

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Wersja bazy: 4263

Windows 5.1.2600 Dodatek Service Pack 3
Internet Explorer 8.0.6001.18702

2010-07-01 11:36:05
mbam-log-2010-07-01 (11-36-05).txt

Typ skanowania: Szybkie skanowanie
Przeskanowano obiektów: 113075
Upłynęło: 7 minut(y), 15 sekund(y)

Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 51
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 0
Zainfekowanych folderów: 1
Zainfekowanych plików: 3

Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:
HKEY_CLASSES_ROOT\explorerbar.cmw (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.cmw.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1081d532-7de4-40bd-b912-388fa6b27c78} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{629cd6c2-e4c5-4554-aeb8-12e4e2cd40ff} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3de88beb-f271-484a-ba71-01d30f439f0c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50ad41d2-b1f0-47cc-9ea7-395355eaeebd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8ceb185e-81a5-46d3-bc20-c555d605afbd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a72522ba-9ff3-4c83-abc6-9b476728a396} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c5762628-ae15-4ca6-96c4-b00dd17f3419} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d062e03e-65ca-49e4-9b15-31938ba98922} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{2a743834-05f4-4ed4-8a1c-41332b10ac0c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{565dd573-549e-4da9-8cd7-6ae3df25339a} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{f5b8c69c-9b45-4a6a-9380-df225c546ae7} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{b72681c0-a222-4b21-a0e2-53a5a5ca3d411} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{95f19350-a3a2-491b-a404-54bdd34db49d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\questservice (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Gameztar Toolbar (Adware.Gameztar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AppDataLow\SOFTWARE\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QuestService (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Funband Serach (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Funband Serach (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)

Zainfekowane informacje rejestru systemowego:
(Nie znaleziono zagrożeń)

Zainfekowanych folderów:
C:\Program Files\QuestService (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowanych plików:
C:\Program Files\QuestService\questservice.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\QuestService\questservice.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\QuestService\uninstall.exe (Adware.DoubleD) -> Quarantined and deleted successfully.


A jakiego poradził byś mi anty vira. Chodzi mi o darmowego jakiegoś bo to jest komputer w biurze i szef nie chce przeznaczyć środków na ochronę komputera =]

[mateo8898]

Typ skanowania: Szybkie skanowanie

Zrób pełne skanowanie.

A jakiego poradził byś mi anty vira. Chodzi mi o darmowego jakiegoś bo to jest komputer w biurze i szef nie chce przeznaczyć środków na ochronę komputera =]

Skoro to jest komp w biurze, to nie będzie zbyt wielkiego wyboru, bo większość darmowych antywirów ma licencję bezpłatną, z wyłączeniem zastosowań komercyjnych, więc tylko do użytku domowego, a nie w firmie. Całkowicie darmowe, także do firmy są PC Tools AntiVirus http://www.instalki.pl/programy/downloa ... ition.html, pakiet IS Comodo http://www.instalki.pl/programy/downloa ... urity.html i Moon Secure AV http://www.moonsecure.com/index.php?opt ... &Itemid=66. Wybierz jeden z tych trzech

[kolniak90]

Teraz jest chyba ok ?

Kod: Zaznacz wszystko

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Wersja bazy: 4263

Windows 5.1.2600 Dodatek Service Pack 3
Internet Explorer 8.0.6001.18702

2010-07-02 10:41:24
mbam-log-2010-07-02 (10-41-24).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|)
Przeskanowano obiektów: 132368
Upłynęło: 31 minut(y), 2 sekund(y)

Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 1
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 0
Zainfekowanych folderów: 0
Zainfekowanych plików: 18

Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)

Zainfekowane informacje rejestru systemowego:
(Nie znaleziono zagrożeń)

Zainfekowanych folderów:
(Nie znaleziono zagrożeń)

Zainfekowanych plików:
C:\Documents and Settings\ADMIN\Ustawienia lokalne\Dane aplikacji\Gameztar Toolbar\2.1.3.6670\bin\mvbup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\3A0AAFF0\B94081D6\mvbsvc.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\48C8FBD2\B94081D6\ProductInfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\53CCABA1\B94081D6\mvbdl.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\75918810\B94081D6\mvbapp.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\93CE9E2B\B94081D6\mvbasst.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\aiaSetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\CMWSetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\ITSetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\LRI.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\mvbpx.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\mvbterm.exe (Adware.ColorSoft) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\ProductInfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\psksetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\sessetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\OFFLINE\mFileBagIDE.dll\bag\TPSetup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\{0188C6A8-B559-4C1F-AA44-D0347C445C52}\SetupArchive\261FDA5C\B94081D6\LRI.dll (Adware.DoubleD) -> Quarantined and deleted successfully.


[mateo8898]

W porządku, możesz jeszcze opróżnić kwarantannę Malwarebytes.

[kolniak90]

Ok dzięki za pomoc ale jeszcze mam taki problem z PenDrivem gdy go podpinam komputer go wykrywa ale nie instaluje sterowników od niego czytałem że mieli to problemy z okrojonym systemem np mx* i zainstalowanie sp3 pomagało ale tu jest oryginalny system zaktualizowany i nie wiem o co be
mój PenDrive to "Kingston DataTraveler 110 8GB"

[mateo8898]

A próbowałeś podpinać do innego portu USB???

[kolniak90]

Tak z tyłu i z przodu i tak jak mówiłem komputer wykrywa go ale nie może sterowników zainstalować bo niby niema próbowałem z Kingstonem i jeszcze jakimś słabo znanej marki

[mateo8898]

Gdy uruchamia się kreator instalacji sterownika wskaż mu ścieżkę C:\Windows\inf

[kolniak90]

Dalej nic, szukałem w google i znalazłem takie coś że zainstalowanie jakiejś poprawki naprawia ten problem ale to jest od sp2 i nie da rady zainstalować oraz że niema jakichś plików w folderze INF ale to tylko niby w Win7 i Viście

Zawartość folderu inf


Uploaded with ImageShack.us

[mateo8898]

Hmm, podaj jeszcze model płyty głównej. Możesz się posłużyć tym poradnikiem viewtopic.php?f=36&t=20828

[kolniak90]

Kod: Zaznacz wszystko

 General Information :   
Manufacturer :   Intel Corporation (Intel)
Product :   D865PERL
Version :   AAC40926-202
Serial Number :   BTRL35204056
Support MP :   Yes, 1 CPU(s)
Version MPS :   1.4

 Chassis Information :   
Manufacturer :   Unspecified
Type :   Unspecified
Version :   Unspecified
Serial Number :   Unspecified
Asset :   Unspecified

 OEM Support SLIC :   
HPET :   No
SLIC :   No

 On-Board Device Information :   
Device :   Intel GMCH AGP Graphics Controller  (Video)
Device :   Intel 82562 Ethernet Device  (Ethernet)
Device :   Intel ICH4 Audio Device  (Sound)
Embedded Controller :   No

 Slots Information :   
Slot AGP 4X :   32-bit  [3.3v]  -  In Use
Slot PCI :   32-bit  [3.3v]  -  Empty
Slot PCI :   32-bit  [3.3v]  -  Empty
Slot PCI :   32-bit  [3.3v]  -  Empty
Slot PCI :   32-bit  [3.3v]  -  Empty
Slot PCI :   32-bit  [3.3v]  -  Empty

 External Connectors :   
Mouse :   PS/2
Keyboard :   PS/2
Serial 16550A Compatible :   DB9 female
Parallel ECP/EPP :   DB25 male
USB :   Access Bus (USB)
USB :   Access Bus (USB)
FireWire (IEEE P1394) :   1394
USB :   Access Bus (USB)
USB :   Access Bus (USB)
Network :   RJ-45
Audio :   Mini-jack (headphones)
Audio :   Mini-jack (headphones)
Audio :   Mini-jack (headphones)

 Internal Connectors :   
J1A1 :   
J1A1 :   
J2A1 :   
J4A2 :   
JA5A1 :   
JA5A1 :   
J9E1 :   
J2A2 :   
J2A2 :   
JA5A1 :   
J4A1 :   
J4A1 :   
J4A1 :   
J4B1 - +12V :   
J3J1 - FDD :   On Board Floppy
J5J2 - PRI IDE :   On Board IDE
J5J1 - SEC IDE :   On Board IDE
J9B2 - CDIN :   On Board Sound Input from CD-ROM
J9B1 - AUX IN :   
J8J1 - FRONT PANEL HDR :   
J1F2 - CPU FAN :   
J9H3 - FNT PNL :   
J6J2 - FRONT CHASSIS FAN :   
J5B1 - REAR CHASSIS FAN :   
J7H2 - BIOS CONFIG :   
J8A1 - FP AUDIO :   Proprietary
J7F1 - FRONT PANEL USB :   
J2J1 - PS :   
J6J3 - CH INTR :   
J9D1 - FireWire :   
J9E1 - FireWire :   
J7H1 - SATA-0 :   
J6H1 - SATA-1 :   

 System Configuration Options :   
Option #1 :   To Be Filled By O.E.M.
Option #2 :   To Be Filled By O.E.M.
Option #3 :   To Be Filled By O.E.M.


Chyba to