|
|
|
|
|
|
|
Poslao: 30 Okt 2015 19:22
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
To izgleda cisto. Ponovo pokreni FRST, cekiraj Addition.txt, klikni Scan i dostavi oba izvestaja.
|
|
|
|
|
|
|
|
|
Poslao: 30 Okt 2015 23:04
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Probaj da deinstaliras ovaj Tuvaro toolbar.
1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:
createrestorepoint:
closerprocesses:
emptytemp:
GroupPolicy: Restriction - Chrome <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={92E477B3-AE7F-4E10-93AE-6499A42CB09E}&mid=Unknown&lang=sr&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-01-17 17:57:28&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://be.msn.com/default.aspx?rd=1
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "hxxp://www.google.com" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {56256A51-B582-467e-B8D4-7786EDA79AE0} URL =
SearchScopes: HKU\S-1-5-21-343818398-1715567821-1644491937-1003 -> {D0399D71-F92D-4F61-AEB2-987D06DDF6D0} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=10985
FF SearchPlugin: C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\Profiles\9a736s0m.default\searchplugins\tuvaro.xml [2013-04-14]
FF Extension: No Name - C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\profiles\extensions\extensions [2015-10-30] [not signed]
CHR HKLM\...\Chrome\Extension: [omgjkafaoidbgamjoklhaiiciahohkbh] - C:\Program Files\tuvaro\tuvaro\1.8.17.1\tuvaro.crx <not found>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S3 AIDA64Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [X]
S3 cpuz134; \??\C:\DOCUME~1\Goca\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [239488 2011-10-24] (Huawei Technologies Co., Ltd.)
S4 IntelIde; no ImagePath
S3 massfilter; system32\drivers\massfilter.sys [X]
U5 Psched; C:\Windows\System32\Drivers\Psched.sys [69120 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
S1 {31a2f244-4a67-4367-b593-df9513aea360}Gt; system32\drivers\{31a2f244-4a67-4367-b593-df9513aea360}Gt.sys [X]
2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.
3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.
Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.
|
|
|
|
|
|
|
Poslao: 31 Okt 2015 08:34
|
offline
- Pridružio: 15 Feb 2006
- Poruke: 232
|
Uradio po uputstvu. Pokrenuo FIRST i kliknuo n FIX. Program je počeo da odrađuje posao i posle nekog vremena je "pukao". Vidim da je formirao Fixlog.txt
Ponovo sam pokrenuo program, ovaj put je završio proceduru do kraja. Kada sam hteo otvoriti Fixlog.txt da selektujem i iskopiram izveštaj, Windows se sam od sebe restartovao.
Fix result of Farbar Recovery Scan Tool (x86) Version:29-10-2015
Ran by Goca (2015-10-31 08:26:40) Run:2
Running from C:\Documents and Settings\Goca\Desktop
Loaded Profiles: Goca (Available Profiles: Goca)
Boot Mode: Normal
==============================================
fixlist content:
*****************
createrestorepoint:
closerprocesses:
emptytemp:
GroupPolicy: Restriction - Chrome <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={92E477B3-AE7F-4E10-93AE-6499A42CB09E}&mid=Unknown&lang=sr&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-01-17 17:57:28&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://be.msn.com/default.aspx?rd=1
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "hxxp://www.google.com" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {56256A51-B582-467e-B8D4-7786EDA79AE0} URL =
SearchScopes: HKU\S-1-5-21-343818398-1715567821-1644491937-1003 -> {D0399D71-F92D-4F61-AEB2-987D06DDF6D0} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=10985
FF SearchPlugin: C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\Profiles\9a736s0m.default\searchplugins\tuvaro.xml [2013-04-14]
FF Extension: No Name - C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\profiles\extensions\extensions [2015-10-30] [not signed]
CHR HKLM\...\Chrome\Extension: [omgjkafaoidbgamjoklhaiiciahohkbh] - C:\Program Files\tuvaro\tuvaro\1.8.17.1\tuvaro.crx <not found>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S3 AIDA64Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [X]
S3 cpuz134; \??\C:\DOCUME~1\Goca\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [239488 2011-10-24] (Huawei Technologies Co., Ltd.)
S4 IntelIde; no ImagePath
S3 massfilter; system32\drivers\massfilter.sys [X]
U5 Psched; C:\Windows\System32\Drivers\Psched.sys [69120 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
S1 {31a2f244-4a67-4367-b593-df9513aea360}Gt; system32\drivers\{31a2f244-4a67-4367-b593-df9513aea360}Gt.sys [X]
*****************
Restore point was successfully created.
closerprocesses: => Error: No automatic fix found for this entry.
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => value not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-343818398-1715567821-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D0399D71-F92D-4F61-AEB2-987D06DDF6D0} => key not found.
HKCR\CLSID\{D0399D71-F92D-4F61-AEB2-987D06DDF6D0} => key not found.
"C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\Profiles\9a736s0m.default\searchplugins\tuvaro.xml" => not found.
C:\Documents and Settings\Goca\Application Data\Mozilla\Firefox\profiles\extensions\extensions [2015-10-30] => not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\omgjkafaoidbgamjoklhaiiciahohkbh => key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key not found.
AIDA64Driver => service not found.
cpuz134 => service not found.
ewusbnet => service not found.
IntelIde => service not found.
massfilter => service not found.
Psched => service not found.
WS2IFSL => service not found.
ZTEusbmdm6k => service not found.
ZTEusbnmea => service not found.
ZTEusbser6k => service not found.
{31a2f244-4a67-4367-b593-df9513aea360}Gt => service not found.
EmptyTemp: => 291.6 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 08:26:58 ====
|
|
|
|
|
|
|
|
|
Poslao: 31 Okt 2015 08:55
|
offline
- Pridružio: 15 Feb 2006
- Poruke: 232
|
Avast ništa ne prijavljuje, cenm da je sve ok. Hvala najlepše.
|
|
|
|
|
|
|
|
