Profilaktyka, eset wykrył jakieś wiruski

[ToServeAndProtect]

ESET znalazł wiruski

OTL: http://wklej.org/hash/e3b6c62bd79/

EXTRAS: http://wklej.org/hash/a24e3ae5d13/

System x64

[wojtas]

Uruchom OTL i w sekcji własne opcje skanowania / skrypt wklej:

:OTL
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O4 - HKLM..\Run: [WinDefender] C:\Windows\Wincft.exe File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
@Alternate Data Stream - 183 bytes -> C:\ProgramData\TEMP:5F59E8EA
@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:DD4DD9B9
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:7502ABF1
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:6BF0805F
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:5F91AB27

:Files
C:\Windows\Tasks\{A5CBBC16-D045-470C-934B-D44D1C83D109}.job

:Commands
[emptytemp]
[emptyflash]
[clearallrestorepoints]

Kliknij wykonaj skrypt. I potwierdź reset komputera .
przeczyść autostart po za tym ok

[ToServeAndProtect]

Kod: Zaznacz wszystko

All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinDefender deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
ADS C:\ProgramData\TEMP:5F59E8EA deleted successfully.
ADS C:\ProgramData\TEMP:DD4DD9B9 deleted successfully.
ADS C:\ProgramData\TEMP:7502ABF1 deleted successfully.
ADS C:\ProgramData\TEMP:6BF0805F deleted successfully.
ADS C:\ProgramData\TEMP:5F91AB27 deleted successfully.
========== FILES ==========
C:\Windows\Tasks\{A5CBBC16-D045-470C-934B-D44D1C83D109}.job moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56504 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: DustEater
->Temp folder emptied: 10428000 bytes
->Temporary Internet Files folder emptied: 34693954 bytes
->Java cache emptied: 73623695 bytes
->FireFox cache emptied: 57697489 bytes
->Google Chrome cache emptied: 258759518 bytes
->Flash cache emptied: 399114 bytes

User: LogMeInRemoteUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2940928 bytes
%systemroot%\System32 .tmp files removed: 8741904 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2545419499 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 61938 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 2 854,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: DustEater
->Flash cache emptied: 456 bytes

User: LogMeInRemoteUser

User: Public

Total Flash Files Cleaned = 0,00 mb

Error creating restore point.

OTL by OldTimer - Version 3.2.17.3 log created on 12072010_221543

Files\Folders moved on Reboot...
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Google Gears for Firefox\localserver.db moved successfully.
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Google Gears for Firefox\permissions.db moved successfully.
File\Folder C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Cache\1365E9DCd01 not found!
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Cache\_CACHE_001_ moved successfully.
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Cache\_CACHE_002_ moved successfully.
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Cache\_CACHE_003_ moved successfully.
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\DustEater\AppData\Local\Mozilla\Firefox\Profiles\qi3l9pse.default\urlclassifier3.sqlite moved successfully.

Registry entries deleted on Reboot...


jest ok