Prośba o sprawdzenie logów z Hijackthis

Prosze o sprawdzenie logu


Hijackthis : http://www.wklej.eu/index.php?id=3ae6452ac4

Pobierz Malwarebytes http://www.instalki.pl/programy/downloa ... alware.php Wykonaj pełne skanowanie Usuń co znajdzie program daj log na forum

Następnie pobierz OTL Instrukcja i program tutaj viewtopic.php?f=22&t=13967 Uruchom program Klikasz na RunScan Po zakończeniu skanowania pojawi się log Daj ten log na forum

OTL : http://www.wklej.eu/index.php?id=516615bd15


Malwarebytesa : http://www.wklej.eu/index.php?id=16245e4da9

ok już pełno wirusów mi wykryło i jeszcze do tego nie chciało usunąć .

Uruchom OTL w oknie Custom Scans/Fixes wklej:

:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15003&l=dis
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "DAEMON Search"
FF - prefs.js..extensions.enabledItems: [email protected]:3.4.4.113
FF - prefs.js..extensions.enabledItems: [email protected]:1.1.1.0014
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.7
FF - prefs.js..keyword.URL: "http://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=SPC&o=15000&locale=en_US&q="
[2009-11-29 22:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Maniek\Dane aplikacji\Mozilla\Firefox\Profiles\tgob0n9b.default\extensions\[email protected]
[2009-11-24 21:07:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Maniek\Dane aplikacji\Mozilla\Firefox\Profiles\tgob0n9b.default\extensions\[email protected]
[2009-11-24 21:07:36 | 000,002,234 | ---- | M] () -- C:\Documents and Settings\Maniek\Dane aplikacji\Mozilla\Firefox\Profiles\tgob0n9b.default\searchplugins\askcom.xml
[2009-11-29 22:27:06 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\Maniek\Dane aplikacji\Mozilla\Firefox\Profiles\tgob0n9b.default\searchplugins\daemon-search.xml
[2009-12-10 22:56:15 | 000,024,576 | ---- | M] (My Global Search) -- C:\Program Files\Mozilla Firefox\plugins\NPMyGlSh.dll
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (My Global Search Bar BHO) - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (My Global Search)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKCU..\Run: [cdoosoft] C:\DOCUME~1\Maniek\USTAWI~1\Temp\herss.exe File not found
O4 - HKCU..\Run: [RGSC] D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe File not found
O32 - AutoRun File - [2010-01-27 13:54:11 | 000,000,340 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{43f0d062-cfd6-11de-9d99-806d6172696f}\Shell\AutoRun\command - "" = VGrSey.exe
O33 - MountPoints2\{43f0d062-cfd6-11de-9d99-806d6172696f}\Shell\OpeN\coMMaNd - "" = VGrsEY.EXE
O33 - MountPoints2\{8f3d8583-d524-11de-b5cd-001e68753dc7}\Shell\AutoRun\command - "" = kmj.exe
O33 - MountPoints2\{8f3d8583-d524-11de-b5cd-001e68753dc7}\Shell\open\Command - "" = kmj.exe

:Files
C:\Program Files\Winamp Toolbar
C:\Program Files\MyGlobalSearch
C:\Program Files\DAEMON Tools Toolbar
C:\Program Files\Ask.com
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk
C:\Documents and Settings\Maniek\Menu Start\Programy\Autostart\OpenOffice.org 3.1.lnk
C:\32788R22FWJFW
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"Adobe ARM"=-
"HotKeysCmds"=-
"IgfxTray"=-
"iTunesHelper"=-
"KernelFaultCheck"=-
"NeroFilterCheck"=-
"Persistence"=-
"QuickTime Task"=-
"SunJavaUpdateSched"=-
"WinampAgent"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"SuperHidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"ShowSuperHidden"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\Hidden\SHOWALL]
"CheckedValue"=dword:00000001
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
@=""

:Commands
[emptytemp]

Klikasz Run Fix. Dajesz log z usuwania + nowy log z OTL

Wylecz pamięci przenośne Flash Disinfector lub sformatuj

OTL : http://www.wklej.eu/index.php?id=21b06353d2

a ten log z usuwania to z Malwarebytesa tak ??


a Flash mi sie nie chc urucomić, znaczy pojawia mi sie okno uruchom no i naciskam i nic a sformatować sie nie da

Ten log z usuwania dobry podałeś, ale daj jeszcze nowy log z OTL.

Zamiast Flash Disinfectora możesz użyć Panda USB Vaccine http://www.searchengines.pl/index.php?s ... t&p=535829

OTL : http://www.wklej.eu/index.php?id=4c519f905d

Ok, log czysty.

W OTL kliknij CleanUp

Przeczyść dysk oraz rejestr CCleaner

Wyłącz i włącz przywracanie systemu na wszystkich dyskach Instrukcja

ok dzieki