Skocz do zawartości

Temat został przeniesiony do archiwum

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

mit

Prosze o sprawdzenie logow

Rekomendowane odpowiedzi

1) Odinstaluj:

"AVG Secure Search" = AVG Security Toolbar

"conduitEngine" = Conduit Engine

"Mobogenie" = Mobogenie

 

2) Użyj >Adw-cleaner

najpierw kliknij na SZUKAJ, a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ, to kliknij na niego.

Pokaż raport z niego C:\AdwCleaner\AdwCleaner.txt

 

3)

[2012/10/19 18:38:23 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Enfya

[2012/10/19 02:59:41 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Moazz

[2013/05/02 19:45:12 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Omerta

[2012/12/08 17:43:29 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Siku

[2012/10/19 16:56:58 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Ugetx

[2012/12/07 16:27:52 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Uqneup

[2012/12/08 17:44:22 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Ysewki

[2012/12/07 16:29:10 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\Zumes

Znasz te powyższe?

 

4) Uruchom OTL i w oknie Własne opcje skanowania/Skrypt wklej to:

:OTL

[2014/01/10 15:28:16 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\systweak

[2014/01/15 20:35:25 | 000,000,000 | ---D | M] -- C:\Users\mm\AppData\Roaming\newnext.me

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 10.55.2)

O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)

O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 10.55.2)

O4 - HKU\S-1-5-21-2195184045-3265951034-2981680463-1001..\Run: [AVG-Secure-Search-Update_JUNE2013_HP] C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_HP.exe (AVG Secure Search)

O4 - HKU\S-1-5-21-2195184045-3265951034-2981680463-1001..\Run: [AVG-Secure-Search-Update_JUNE2013_TB] C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe (AVG Secure Search)

O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()

O3 - HKLM\..\Toolbar: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\tbFree.dll File not found

O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll File not found

O3 - HKLM\..\Toolbar: (WinZipBar Toolbar) - {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll File not found

O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.786\AVG Secure Search_toolbar.dll (AVG Secure Search)

O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.786\AVG Secure Search_toolbar.dll (AVG Secure Search)

O2 - BHO: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\tbFree.dll File not found

O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~2\mcafee\msk\mskapbho.dll File not found

O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll File not found

O2 - BHO: (WinZipBar Toolbar) - {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll File not found

O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\MSKAPB~1.DLL File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.786\ [2014/08/12 13:36:36 | 000,000,000 | ---D | M]

DRV:64bit: - [2014/08/12 13:35:19 | 000,050,976 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)

SRV - [2014/08/12 13:35:17 | 001,820,184 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe -- (vToolbarUpdater18.1.9)

MOD - [2014/08/12 13:35:18 | 002,640,408 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe

MOD - [2014/08/12 13:35:18 | 000,519,704 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\log4cplusU.dll

 

:Files

C:\Users\wangzhisong

c:\windows\Tasks\0814tbUpdateInfo.job

c:\programdata\Avg_Update_0814tb\0814tb_{D98C35A7-5595-4620-A034-92B93FCD32C8}.exe

c:\programdata\Avg_Update_0814tb

C:\Users\mm\AppData\Local\Temp*.html

C:\Users\mm\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof

C:\Program Files (x86)\Common Files\AVG Secure Search

 

:Reg

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]

[-HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes]

[-HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes]

[-HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes]

[-HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes]

 

:Commands

[emptytemp]

Kliknij w Wykonaj Skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie.

 

5) Zrób nowy log z OTL.

 

F.

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

  • Ostatnio przeglądający   0 użytkowników

    Brak zarejestrowanych użytkowników przeglądających tę stronę.

×
×
  • Dodaj nową pozycję...