Elektroda.pl
Elektroda.pl
X
Please add exception to AdBlock for elektroda.pl.
If you watch the ads, you support portal and users.

Nie mogę zainstalować żadnego antywirusa

agathaa2 11 Nov 2011 12:10 2372 6
  • #1
    agathaa2
    Level 9  
    Witam ! Mam taki problem a mianowicie nie mogę zainstalować żadnego antywirusa. Instaluję się normalnie a później jak chcę go włączyć nie dam rady bo dzieję się tak jak by był usunięty. Dodam jeszcze, że jeśli naciskam na ikonkę w prawym dolnym rogu to pojawia mi się komunikat " Enhanced protection mode". Proszę o pomoc gdyż pierwszy raz mi się coś takiego zdarzyło i nie mam pojęcia jak temu zapobiec. Była bym bardzo wdzięczna za wszelką pomoc.
  • #4
    Kolobos
    IT specialist
    Po usunieciu infekcji zainstaluj aktualizacje do javy -> www.java.com Stare wersje odinstaluj.
    Oraz doi:
    Mozilla Firefox (3.6.20)
    Adobe Reader 9.1 - Polish

    Odinstaluj:
    Bing Bar
    50 FREE MP3s +1 Free Audiobook!
    Softonic-Polska Toolbar
    Winamp Toolbar

    Wykonaj skrypt w OTL:

    :OTL
    SRV - [2011/11/02 09:59:31 | 000,257,024 | ---- | M] () [Auto | Running] -- C:\windows\sysdriver32.exe -- (srvsysdriver32)
    SRV - [2011/08/22 11:39:00 | 000,382,464 | ---- | M] () [Auto | Running] -- C:\windows\update.7.1\svchostdriver.exe -- (ddservice)
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/cheatengine/{EBB39C7A-2120-49F6-A7BA-8C029454196B}
    IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    IE - HKLM\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    IE - HKU\.DEFAULT\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
    IE - HKU\S-1-5-18\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
    IE - HKU\S-1-5-21-606138750-3606273870-274665690-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
    IE - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    IE - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
    FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
    FF - prefs.js..browser.search.order.1: "Ask.com"
    FF - prefs.js..extensions.enabledItems: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:2.7.1.3
    FF - prefs.js..extensions.enabledItems: arcabit(malpa)www.arcabit.pl:3.5
    FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="
    [2010/10/10 14:41:43 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\Agata\AppData\Roaming\mozilla\Firefox\Profiles\qwachlwg.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
    [2010/10/14 12:01:34 | 000,000,000 | ---D | M] (Softonic-Polska Toolbar) -- C:\Users\Agata\AppData\Roaming\mozilla\Firefox\Profiles\qwachlwg.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
    [2011/06/27 16:37:58 | 000,002,380 | ---- | M] () -- C:\Users\Agata\AppData\Roaming\Mozilla\Firefox\Profiles\qwachlwg.default\searchplugins\search.xml
    [2011/03/15 16:16:23 | 000,000,000 | ---D | M] (ArcaBit Ext.) -- C:\Program Files (x86)\mozilla firefox\extensions\arcabit@www.arcabit.pl
    O2:64bit: - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
    O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll File not found
    O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\ievkbd.dll File not found
    O2:64bit: - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
    O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\klwtbbho.dll File not found
    O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O2 - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
    O2 - BHO: (SBCONVERT Class) - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
    O2 - BHO: (SearchPredictObj Class) - {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - C:\PROGRA~2\SEARCH~1\SEARCH~1.DLL (Speedbit Ltd.)
    O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll File not found
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
    O2 - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
    O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Agata\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll File not found
    O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~2\SPEEDB~1\Toolbar\grabber.dll (Speedbit Ltd.)
    O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll File not found
    O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
    O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
    O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O3 - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
    O3 - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O4:64bit: - HKLM..\Run: [ABREGMON] C:\Program Files\ArcaBit\ArcaVir\ABregmon.exe File not found
    O4 - HKLM..\Run: [2269421.exe] "C:\Windows\Temp\2269421.exe" File not found
    O4 - HKLM..\Run: [5848034.exe] C:\Windows\Temp\5848034.exe ()
    O4 - HKLM..\Run: [6364905.exe] C:\Windows\Temp\6364905.exe ()
    O4 - HKLM..\Run: [828074.exe] "C:\Users\Agata\AppData\Local\Temp\828074.exe" File not found
    O4 - HKLM..\Run: [l1rezerv.exe] C:\windows\l1rezerv.exe ()
    O4 - HKLM..\Run: [Onet.pl AutoUpdate] "C:\Program Files (x86)\Common Files\Onet.pl\NewAutoUpdate.exe" /updateexetsr File not found
    O4 - HKLM..\Run: [sysdriver32.exe] C:\windows\sysdriver32.exe ()
    O4 - HKLM..\Run: [sysdriver32_.exe] C:\windows\sysdriver32_.exe ()
    O4 - HKLM..\Run: [systemup] C:\windows\systemup.exe ()
    O4 - HKLM..\Run: [tray_ico] File not found
    O4 - HKLM..\Run: [tray_ico0] C:\Windows\update.tray-9-0\svchost.exe ()
    O4 - HKLM..\Run: [tray_ico1] C:\Windows\update.tray-7-0\svchost.exe ()
    O4 - HKLM..\Run: [tray_ico2] File not found
    O4 - HKLM..\Run: [tray_ico3] File not found
    O4 - HKLM..\Run: [tray_ico4] File not found
    O4 - HKLM..\Run: [wxpdrv] C:\windows\services32.exe File not found
    O4 - HKU\.DEFAULT..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f File not found
    O4 - HKU\S-1-5-18..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f File not found
    O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
    O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
    O31 - SafeBoot: AlternateShell - services32.exe
    [2011/10/28 20:14:47 | 000,000,000 | -H-D | C] -- C:\windows\update.tray-7-0-lnk
    [2011/10/28 20:14:47 | 000,000,000 | -H-D | C] -- C:\windows\update.tray-7-0
    [2[2011/11/11 11:48:04 | 000,000,734 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hîsts
    [2011/11/02 09:59:32 | 000,000,223 | ---- | M] () -- C:\windows\info1
    [2011/11/02 10:00:08 | 000,257,024 | ---- | C] () -- C:\windows\sysdriver32_.exe
    [2011/08/22 11:42:20 | 000,246,272 | ---- | C] () -- C:\windows\unrar.exe
    [2011/08/22 11:40:36 | 000,232,960 | ---- | C] () -- C:\windows\l1rezerv.exe
    [2011/08/22 11:36:06 | 000,130,560 | ---- | C] () -- C:\windows\systemup.exe
    [2011/08/22 11:32:25 | 000,000,000 | ---- | C] () -- C:\windows\loader2.exe_ok
    [2011/08/22 11:32:10 | 000,257,024 | ---- | C] () -- C:\windows\sysdriver32.exe
    [2010/12/28 16:24:48 | 000,006,776 | ---- | C] () -- C:\Users\Agata\AppData\Roaming\wklnhst.dat

    :Reg
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Users\Agata\Downloads\Flash-Player.exe" =-
    "C:\windows\update.1\svchost.exe" =-
    "C:\windows\services32.exe" =-
    "C:\Windows\update.tray-9-0\svchost.exe" =-
    "C:\windows\update.2\svchost.exe" =-

    :Commands
    [resethosts]
    [emptytemp]


    Po wykonaniu odinstaluj avast, kasperskiego oraz arcavir'a. Zrob skan przy pomocy mbam oraz cureit i daj nowy log z OTL.
  • #5
    Acorus 20
    Level 43  
    Odinstaluj Softonic-Polska Toolbar,Winamp Toolbar.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:

    Quote:
    :OTL


    MOD - [2011/08/22 11:40:31 | 000,232,960 | ---- | M] () -- C:\Windows\l1rezerv.exe
    MOD - [2011/08/22 11:19:43 | 001,213,440 | -H-- | M] () -- C:\Windows\update.tray-9-0\svchost.exe
    MOD - [2011/08/22 11:19:43 | 001,213,440 | -H-- | M] () -- C:\Windows\update.tray-7-0\svchost.exe
    SRV - [2011/11/02 09:59:31 | 000,257,024 | ---- | M] () [Auto | Running] -- C:\windows\sysdriver32.exe -- (srvsysdriver32)
    SRV - [2011/08/22 11:39:00 | 000,382,464 | ---- | M] () [Auto | Running] -- C:\windows\update.7.1\svchostdriver.exe -- (ddservice)
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/cheatengine/{EBB39C7A-2120-49F6-A7BA-8C029454196B}
    IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    IE - HKLM\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    IE - HKU\.DEFAULT\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
    IE - HKU\S-1-5-18\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
    IE - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    IE - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
    FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
    FF - prefs.js..browser.search.order.1: "Ask.com"
    FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="
    [2010/10/14 12:01:34 | 000,000,000 | ---D | M] (Softonic-Polska Toolbar) -- C:\Users\Agata\AppData\Roaming\mozilla\Firefox\Profiles\qwachlwg.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
    [2011/06/27 16:37:58 | 000,002,380 | ---- | M] () -- C:\Users\Agata\AppData\Roaming\Mozilla\Firefox\Profiles\qwachlwg.default\searchplugins\search.xml
    O2:64bit: - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
    O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll File not found
    O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\ievkbd.dll File not found
    O2:64bit: - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
    O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\klwtbbho.dll File not found
    O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O2 - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
    O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll File not found
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
    O2 - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
    O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files (x86)\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-21-606138750-3606273870-274665690-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
    O4:64bit: - HKLM..\Run: [ABREGMON] C:\Program Files\ArcaBit\ArcaVir\ABregmon.exe File not found
    O4 - HKLM..\Run: [2269421.exe] "C:\Windows\Temp\2269421.exe" File not found
    O4 - HKLM..\Run: [5848034.exe] C:\Windows\Temp\5848034.exe ()
    O4 - HKLM..\Run: [6364905.exe] C:\Windows\Temp\6364905.exe ()
    O4 - HKLM..\Run: [828074.exe] "C:\Users\Agata\AppData\Local\Temp\828074.exe" File not found
    O4 - HKLM..\Run: [l1rezerv.exe] C:\windows\l1rezerv.exe ()
    O4 - HKLM..\Run: [Onet.pl AutoUpdate] "C:\Program Files (x86)\Common Files\Onet.pl\NewAutoUpdate.exe" /updateexetsr File not found
    O4 - HKLM..\Run: [sysdriver32.exe] C:\windows\sysdriver32.exe ()
    O4 - HKLM..\Run: [sysdriver32_.exe] C:\windows\sysdriver32_.exe ()
    O4 - HKLM..\Run: [systemup] C:\windows\systemup.exe ()
    O4 - HKLM..\Run: [tray_ico] File not found
    O4 - HKLM..\Run: [tray_ico0] C:\Windows\update.tray-9-0\svchost.exe ()
    O4 - HKLM..\Run: [tray_ico1] C:\Windows\update.tray-7-0\svchost.exe ()
    O4 - HKLM..\Run: [tray_ico2] File not found
    O4 - HKLM..\Run: [tray_ico3] File not found
    O4 - HKLM..\Run: [tray_ico4] File not found
    O4 - HKLM..\Run: [wxpdrv] C:\windows\services32.exe File not found
    O4 - HKU\S-1-5-21-606138750-3606273870-274665690-1000..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent File not found
    O4 - HKU\.DEFAULT..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f File not found
    O4 - HKU\S-1-5-18..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f File not found
    [2011/10/28 20:14:47 | 000,000,000 | -H-D | C] -- C:\windows\update.tray-7-0-lnk
    [2011/10/28 20:14:47 | 000,000,000 | -H-D | C] -- C:\windows\update.tray-7-0
    [2011/11/02 09:59:32 | 000,000,223 | ---- | M] () -- C:\windows\info1
    [2011/11/02 09:59:31 | 000,257,024 | ---- | M] () -- C:\windows\sysdriver32_.exe
    [2011/11/02 09:59:31 | 000,257,024 | ---- | M] () -- C:\windows\sysdriver32.exe
    [2011/08/22 11:42:20 | 000,246,272 | ---- | C] () -- C:\windows\unrar.exe
    [2011/08/22 11:40:36 | 000,232,960 | ---- | C] () -- C:\windows\l1rezerv.exe
    [2011/08/22 11:32:25 | 000,000,000 | ---- | C] () -- C:\windows\loader2.exe_ok
    [2011/08/22 11:32:10 | 000,257,024 | ---- | C] () -- C:\windows\sysdriver32.exe

    :Reg
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
    "AlternateShell"="cmd.exe"

    :Commands
    [emptytemp]
    resethosts]


    Kliknij Wykonaj skrypt .Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
    Pokaż nowy log OTL.txt oraz raport z usuwania.
  • #7
    Kolobos
    IT specialist
    Po co to wklejasz skoro NIC nie wykonalas?