X

Przeglądarki internetowe nie działają

looon 03 Oct 2013 15:57
  • #1 03 Oct 2013 15:57
    looon
    Level 4  
    Helpful post? (+1)
    Proszę o pomoc w analizie logów. Od paru dni na laptopie pojawił się problem z dostępem do internetu - nie otwiera stron żadna z przeglądarek.
  • #2 03 Oct 2013 16:28
    Kolobos
    Spec od komputerów
    Helpful post? (0)
    Odinstaluj:
    VideoDownloadConverter Firefox Toolbar
    VideoDownloadConverter Internet Explorer Toolbar
    Qtrax Player
    Update for Zip Opener
    Qtrax Connection Manager
    Zip Opener Packages

    Uzyj AdwCleaner, opcja Scan i Clean:
    http://www.bleepingcomputer.com/download/adwcleaner/

    Wykonaj skrypt w OTL:

    :OTL
    PRC - [2013-09-20 00:08:03 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
    PRC - [2013-09-20 00:08:03 | 000,030,096 | ---- | M] (VER_COMPANY_NAME) -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
    PRC - [2013-09-18 00:46:47 | 003,579,904 | ---- | M] (Bandoo Media Inc.) -- C:\Program Files\Movies Toolbar\Datamngr\DatamngrUI.exe
    PRC - [2013-09-18 00:46:43 | 003,418,624 | ---- | M] (Bandoo Media Inc.) -- C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe
    PRC - [2013-07-29 12:22:04 | 000,118,568 | ---- | M] () -- C:\Users\Piotrek\Qtrax\Player\notification.exe
    PRC - [2012-11-08 18:32:04 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
    SRV - [2013-09-20 00:08:03 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
    SRV - [2013-09-18 00:46:43 | 003,418,624 | ---- | M] (Bandoo Media Inc.) [Auto | Running] -- C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe -- (DatamngrCoordinator)
    SRV - [2012-11-08 18:32:04 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Piotrek\AppData\Local\Temp\catchme.sys -- (catchme)
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (arqez1jv)
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (ailuqiqd)
    IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=362&systemid=406&v=a9301-114&apn_uid=8037411545114075&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
    IE - HKCU\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
    FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
    [2013-09-23 10:52:16 | 000,000,000 | ---D | M] (New tab) -- C:\Users\Piotrek\AppData\Roaming\mozilla\Firefox\Profiles\caei151g.default\extensions\{A159B887-7EA3-B6C7-59EB-D1011D624DC6}
    [2013-06-18 23:14:22 | 000,001,294 | ---- | M] () -- C:\Users\Piotrek\AppData\Roaming\mozilla\firefox\profiles\caei151g.default\searchplugins\delta.xml
    O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Piotrek\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
    O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
    O2 - BHO: (no name) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - No CLSID value found.
    O4 - HKLM..\Run: [VideoDownloadConverter Search Scope Monitor] C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe (MindSpark)
    O4 - HKLM..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (VER_COMPANY_NAME)
    O4 - HKCU..\Run: [QtraxNotification] C:\Users\Piotrek\Qtrax\Player\Notification.exe ()
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.25.2)
    O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.25.2)
    O36 - AppCertDlls: x64 - (c:\program files\movies toolbar\datamngr\x64\apcrtldr.dll) - File not found
    O36 - AppCertDlls: x86 - (c:\program files\movies toolbar\datamngr\apcrtldr.dll) - c:\Program Files\Movies Toolbar\Datamngr\apcrtldr.dll ()
    [2013-09-23 10:52:13 | 000,000,000 | ---D | C] -- C:\Program Files\Movies Toolbar
    [2013-09-23 10:52:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Datamngr
    [2013-09-22 20:35:23 | 000,000,000 | ---D | C] -- C:\Users\Piotrek\AppData\Local\Babylon
    [2013-09-20 00:08:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Download Converter
    [2013-09-20 00:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\Video Download Converter
    [2013-09-20 00:08:06 | 000,000,000 | ---D | C] -- C:\Users\Piotrek\AppData\Local\VideoDownloadConverter_4z
    [2013-09-20 00:08:03 | 000,000,000 | ---D | C] -- C:\Program Files\VideoDownloadConverter_4z
    [2013-10-03 13:24:52 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\ilazmmjc.job
    [2013-10-02 20:28:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-463180154-1204085003-4290093290-1000Core.job
    [2013-01-22 15:09:59 | 000,118,784 | RHS- | C] () -- C:\Windows\System32\propsysq.dll

    :Files
    C:\Users\Piotrek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda\


    Zainstaluj: http://ninite.com/java/

    Zrob tez pelny skan przy pomocy Mbam:
    http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/
    oraz: http://ftp.drweb.com/pub/drweb/cureit/launch.exe



    Po wykonaniu daj nowy log z OTL, ze skanowania.
  • #3 03 Oct 2013 16:29
    safbot1st
    Level 43  
    Helpful post? (0)
    Ikona połączenia z kartą sieciową pokazuje w ogóle, że kabel jest podłączony?
    Wi-fi też nie ma żadnego krzyżyka na ikonie połączenia?
  • Helpful post
    #4 03 Oct 2013 16:34
    Kolobos
    Spec od komputerów
    Helpful post? (0)
    Na razie ikony zostawmy w spokoju.

    Strony/przegladarke zapewne blokuje antywirus lub sama infekcja:
    [2013-10-03 13:24:52 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\ilazmmjc.job
    [2013-01-22 15:09:59 | 000,118,784 | RHS- | C] () -- C:\Windows\System32\propsysq.dll
  • #5 04 Oct 2013 08:55
    looon
    Level 4  
    Topic author Helpful post? (0)
    Po samym użyciu adwcleaner problem z przeglądarkami się skończył. Wykonałem jednak również kolejne wskazówki i po nich log z otl wygląda następująco:

    ========== OTL ==========
    No active process named 4zbarsvc.exe was found!
    No active process named 4zbrmon.exe was found!
    No active process named DatamngrUI.exe was found!
    No active process named DatamngrCoordinator.exe was found!
    No active process named notification.exe was found!
    No active process named ToolbarUpdater.exe was found!
    Error: No service named VideoDownloadConverter_4zService was found to stop!
    Service\Driver key VideoDownloadConverter_4zService not found.
    File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe not found.
    Error: No service named DatamngrCoordinator was found to stop!
    Service\Driver key DatamngrCoordinator not found.
    File C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe not found.
    Service vToolbarUpdater13.2.0 stopped successfully!
    Service vToolbarUpdater13.2.0 deleted successfully!
    File C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe not found.
    Error: No service named catchme was found to stop!
    Service\Driver key catchme not found.
    File C:\Users\Piotrek\AppData\Local\Temp\catchme.sys not found.
    Error: No service named arqez1jv was found to stop!
    Service\Driver key arqez1jv not found.
    Error: No service named ailuqiqd was found to stop!
    Service\Driver key ailuqiqd not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{93a3111f-4f74-4ed8-895e-d9708497629e} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}\ not found.
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin\ deleted successfully.
    File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll not found.
    Folder C:\Users\Piotrek\AppData\Roaming\mozilla\Firefox\Profiles\caei151g.default\extensions\{A159B887-7EA3-B6C7-59EB-D1011D624DC6}\ not found.
    File C:\Users\Piotrek\AppData\Roaming\mozilla\firefox\profiles\caei151g.default\searchplugins\delta.xml not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ not found.
    File C:\Users\Piotrek\AppData\Roaming\Complitly\Complitly.dll not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ not found.
    C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\VideoDownloadConverter Search Scope Monitor not found.
    File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\VideoDownloadConverter_4z Browser Plugin Loader not found.
    File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\QtraxNotification not found.
    File C:\Users\Piotrek\Qtrax\Player\Notification.exe not found.
    Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
    Starting removal of ActiveX control {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
    Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
    Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 not found.
    Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls\\x86 not found.
    File c:\Program Files\Movies Toolbar\Datamngr\apcrtldr.dll not found.
    Folder C:\Program Files\Movies Toolbar\ not found.
    C:\ProgramData\Datamngr folder moved successfully.
    Folder C:\Users\Piotrek\AppData\Local\Babylon\ not found.
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Download Converter folder moved successfully.
    Folder move failed. C:\Program Files\Video Download Converter scheduled to be moved on reboot.
    Folder C:\Users\Piotrek\AppData\Local\VideoDownloadConverter_4z\ not found.
    Folder C:\Program Files\VideoDownloadConverter_4z\ not found.
    C:\Windows\Tasks\ilazmmjc.job moved successfully.
    C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-463180154-1204085003-4290093290-1000Core.job moved successfully.
    File move failed. C:\Windows\System32\propsysq.dll scheduled to be moved on reboot.
    ========== FILES ==========
    Folder C:\Users\Piotrek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda not found.

    OTL by OldTimer - Version 3.2.69.0 log created on 10032013_224551

    Files\Folders moved on Reboot...
    Folder move failed. C:\Program Files\Video Download Converter scheduled to be moved on reboot.
    C:\Windows\System32\propsysq.dll moved successfully.

    PendingFileRenameOperations files...

    Registry entries deleted on Reboot...
  • #6 04 Oct 2013 11:42
    Kolobos
    Spec od komputerów
    Helpful post? (0)
    Wybierz w OTL Sprzatanie i to wszystko.
  • #7 04 Oct 2013 15:27
    looon
    Level 4  
    Topic author Helpful post? (0)
    Dzięki za pomoc! Temat zamykam.
  Search 4 million + Products
Browse Products