Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Facebook wirus "hi, wanna laugh ? "

rafalmarek10 12 Wrz 2011 20:29 1588 10
  • #1 12 Wrz 2011 20:29
    rafalmarek10
    Poziom 8  

    Witam
    Padłem ofiarą wirusa "hi,wanna laugh" Znalazłem w necie dobry poradnik wiec przeskanowałem kompa za pomoca Anti-Malware a póżniej przez OTL
    i prosze was o skrypt do OTL. I chciałem sie jeszcze zapytac czy pozniej jeszcze musze cos jeszcze zrobic zeby w pełni ten wirus został usuniety ?

    0 10
  • #2 12 Wrz 2011 20:51
    Kolobos
    Spec od komputerów

    Wykonaj skrypt w OTL:

    :OTL
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.searchqu.com/406
    IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\InprocServer32 File not found
    FF - prefs.js..browser.startup.homepage: "http://search.bearshare.com/"
    FF - prefs.js..browser.search.selectedEngine: "BearShare Web Search"
    FF - prefs.js..browser.search.defaultenginename: "BearShare Web Search"
    FF - prefs.js..browser.search.order.1: "BearShare Web Search"
    FF - prefs.js..keyword.URL: "http://search.bearshare.com/web?src=ffb&q="
    FF - HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin: C:\Program Files\MyWebSearch\bar\1.bin\NPMyWebS.dll File not found
    [2010-09-15 22:48:00 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\DTToolbar@toolbarnet.com
    [2010-12-20 21:54:24 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com
    O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.15.10\bh\BabylonToolbar.dll File not found
    O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll File not found
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
    O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows iLivid Toolbar\ToolBar\searchqudtx.dll ()
    O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll File not found
    O2 - BHO: (UrlHelper Class) - {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} - C:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Discordia, LTD)
    O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers\YontooIEClient.dll File not found
    O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
    O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
    O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarTlbr.dll File not found
    O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows iLivid Toolbar\ToolBar\searchqudtx.dll ()




    O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll File not found
    O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
    O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll File not found
    O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O4 - HKLM..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui File not found
    O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe File not found
    O4 - HKLM..\Run: [BabylonToolbar] "C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarsrv.exe" /md I File not found
    O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" File not found
    O4 - HKLM..\Run: [tray_ico] File not found
    O4 - HKLM..\Run: [tray_ico2] File not found
    O4 - HKLM..\Run: [tray_ico3] File not found
    O4 - HKLM..\Run: [tray_ico4] File not found
    O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll File not found
    O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll File not found
    O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngr.dll (Discordia, LTD)
    O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Discordia, LTD)
    [2011-08-25 23:05:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.8.1
    [2011-08-22 18:51:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0-lnk
    [2011-08-22 18:51:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0
    [2011-08-19 20:45:12 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.7.1
    [2011-07-26 22:36:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
    [2011-07-26 22:36:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
    [2011-07-26 22:12:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
    [2011-07-26 22:09:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\WinRAR
    [2011-07-26 22:08:22 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
    [2011-07-26 22:05:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
    [2011-07-26 22:04:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
    [2011-07-26 22:04:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-12-0-lnk
    [2011-07-26 22:04:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-12-0
    [2011-05-22 20:34:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\searchqutoolbar
    [2011-09-12 20:01:00 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
    [2011-09-09 21:16:17 | 000,000,223 | ---- | M] () -- C:\WINDOWS\info1
    [2011-07-26 22:36:35 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar
    [2011-07-26 22:36:35 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar
    [2011-07-26 22:36:35 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe
    [2011-07-26 22:36:35 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar
    [2011-07-26 22:09:29 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar
    [2011-07-26 22:07:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
    [2011-07-17 03:24:20 | 004,636,907 | ---- | M] () -- C:\WINDOWS\geoiplist
    [2011-07-26 22:36:35 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar
    [2011-07-26 22:36:35 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar
    [2011-07-26 22:36:35 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar
    [2011-07-26 22:09:30 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist
    [2011-07-26 22:09:29 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar
    [2011-07-26 22:09:29 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
    [2011-07-26 22:08:22 | 000,000,223 | ---- | C] () -- C:\WINDOWS\info1
    [2011-07-26 22:06:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok

    :Commands
    [resethosts]
    [emptytemp]

    Po wykonaniu daj nowy log z OTL.

    Odinstaluj AVG i Avast (na stronach producentow masz deinstalatory).
    Po nastepnie zainstaluj jednego antywirusa.

    Zaktualizauj jave -> www.java.com

    0
  • #3 12 Wrz 2011 21:31
    rafalmarek10
    Poziom 8  

    All processes killed
    ========== OTL ==========
    HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ deleted successfully.
    Prefs.js: "http://search.bearshare.com/" removed from browser.startup.homepage
    Prefs.js: "BearShare Web Search" removed from browser.search.selectedEngine
    Prefs.js: "BearShare Web Search" removed from browser.search.defaultenginename
    Prefs.js: "BearShare Web Search" removed from browser.search.order.1
    Prefs.js: "http://search.bearshare.com/web?src=ffb&q=" removed from keyword.URL
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mywebsearch.com/Plugin\ deleted successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\DTToolbar@toolbarnet.com\components\Resources folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\DTToolbar@toolbarnet.com\components folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\DTToolbar@toolbarnet.com\chrome folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\DTToolbar@toolbarnet.com folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\content\imgs folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\content folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\components folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com\chrome folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\1or18d94.default\extensions\ffxtlbr@babylon.com folder moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ deleted successfully.
    C:\Program Files\Windows iLivid Toolbar\ToolBar\searchqudtx.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}\ deleted successfully.
    C:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
    C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll moved successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{99079a25-328f-4bd4-be04-00955acaa0a7} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
    File C:\Program Files\Windows iLivid Toolbar\ToolBar\searchqudtx.dll not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
    File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\avast deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AVG_TRAY deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BabylonToolbar deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico2 deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico3 deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico4 deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\avgsecuritytoolbar\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F2DDE6B2-9684-4A55-86D4-E255E237B77C}\ deleted successfully.
    File {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll File not found not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ deleted successfully.
    File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll File not found not found.
    Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll deleted successfully.
    File pInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngr.dll not found.
    Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll deleted successfully.
    File pInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll not found.
    C:\WINDOWS\update.8.1 folder moved successfully.
    C:\WINDOWS\update.tray-7-0-lnk folder moved successfully.
    C:\WINDOWS\update.tray-7-0 folder moved successfully.
    C:\WINDOWS\update.7.1 folder moved successfully.
    C:\WINDOWS\ufa folder moved successfully.
    C:\WINDOWS\phoenix\kernels\poclbm folder moved successfully.
    C:\WINDOWS\phoenix\kernels\phatk folder moved successfully.
    C:\WINDOWS\phoenix\kernels folder moved successfully.
    C:\WINDOWS\phoenix folder moved successfully.
    C:\WINDOWS\update.2 folder moved successfully.
    C:\Documents and Settings\LocalService\Dane aplikacji\WinRAR folder moved successfully.
    C:\WINDOWS\update.5.0 folder moved successfully.
    C:\WINDOWS\av_ico folder moved successfully.
    C:\WINDOWS\update.1 folder moved successfully.
    C:\WINDOWS\update.tray-12-0-lnk folder moved successfully.
    C:\WINDOWS\update.tray-12-0 folder moved successfully.
    C:\Documents and Settings\user\Dane aplikacji\searchqutoolbar folder moved successfully.
    C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job moved successfully.
    C:\WINDOWS\info1 moved successfully.
    C:\WINDOWS\phoenix.rar moved successfully.
    C:\WINDOWS\rpcminer.rar moved successfully.
    C:\WINDOWS\unrar.exe moved successfully.
    C:\WINDOWS\ufa.rar moved successfully.
    C:\WINDOWS\geoiplist.rar moved successfully.
    C:\WINDOWS\loader2.exe_ok moved successfully.
    C:\WINDOWS\geoiplist moved successfully.
    File C:\WINDOWS\phoenix.rar not found.
    File C:\WINDOWS\rpcminer.rar not found.
    File C:\WINDOWS\ufa.rar not found.
    File C:\WINDOWS\geoiplist not found.
    File C:\WINDOWS\geoiplist.rar not found.
    File C:\WINDOWS\unrar.exe not found.
    File C:\WINDOWS\info1 not found.
    File C:\WINDOWS\loader2.exe_ok not found.
    ========== COMMANDS ==========
    C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
    HOSTS file reset successfully

    [EMPTYTEMP]

    User: Administrator
    ->Temp folder emptied: 1699 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: All Users

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Gość
    ->Temp folder emptied: 1777625 bytes
    ->Temporary Internet Files folder emptied: 38552 bytes
    ->Google Chrome cache emptied: 5876372 bytes
    ->Opera cache emptied: 10458787 bytes
    ->Flash cache emptied: 2728 bytes

    User: LocalService
    ->Temporary Internet Files folder emptied: 6005719 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: user
    ->Temp folder emptied: 1842117874 bytes
    ->Temporary Internet Files folder emptied: 467749 bytes
    ->Java cache emptied: 174120 bytes
    ->FireFox cache emptied: 70053090 bytes
    ->Google Chrome cache emptied: 5837168 bytes
    ->Opera cache emptied: 43973597 bytes
    ->Flash cache emptied: 26583 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 3238436 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 2990815 bytes
    RecycleBin emptied: 337017713 bytes

    Total Files Cleaned = 2 222,00 mb


    OTL by OldTimer - Version 3.2.28.0 log created on 09122011_212611

    Files\Folders moved on Reboot...

    Registry entries deleted on Reboot...

    0
  • #4 14 Wrz 2011 15:13
    rafalmarek10
    Poziom 8  

    pomożesz dalej ?

    0
  • #5 14 Wrz 2011 17:30
    Kolobos
    Spec od komputerów

    Nie widze zebys dal nowy log z OTL o ktory prosilem, wiec w czym Ci mam pomoc?

    0
  • #6 14 Wrz 2011 22:02
    rafalmarek10
    Poziom 8  

    Wysłałem go w poście bo nie da sie jako załącznik bo " rozszerzenie log jest niedozwolone".

    0
  • #7 14 Wrz 2011 22:13
    Kolobos
    Spec od komputerów

    To nie jest nowy log, tylko log z usuwania.

    Rozumiem, ze zmiana rozszerzenia z .log na .txt to zbyt duzy wysilek?

    0
  • #9 15 Wrz 2011 20:25
    Kolobos
    Spec od komputerów

    Dlaczego nie zainstalowales najnowszej javy?

    Log wyglada ok.

    0
  • #10 15 Wrz 2011 20:31
    rafalmarek10
    Poziom 8  

    mam zainstalowaną i co teraz dalej ?

    0
  • #11 15 Wrz 2011 21:35
    Kolobos
    Spec od komputerów

    To wszystko. Wybierz Sprzatanie w OTL.

    0