|
Poslao: 09 Avg 2012 08:05
|
offline
- Pridružio: 11 Jul 2012
- Poruke: 46
|
Pozdrav.
Naime bio sam odsutan mjesec dana i kada sam došao zatekao sam čudnu situaciju. Neko je nešto čačkao i nabacio mi ovaj Avg secure search koji mi se otvara kada startujem chrome ili mozillu. Uradim ja disable ali ne može remove. A i memorije je nestalo. Samo 600 mb na C slobodno.
Korak 1
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.5.1
Run by WINXPSP3 at 7:43:00 on 2012-08-09
Microsoft Windows XP Professional 5.1.2600.3.1250.387.1033.18.2047.1012 [GMT 2:00]
.
AV: ESET Smart Security 4.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\system32\ctfmon.exe
D:\programi\PrintScreen\PrintScreen.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\MCShield\mcshieldrtm.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\FolderSize\FolderSizeSvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nlssrv32.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\WINXPSP3\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://isearch.avg.com/?cid={8CB0F463-27FB-4E55-A6B7-96BD72B15665}&mid=ff7c3a0ece1e47d0838bd1a93b73812c-f0e10767caae01fe1c42c48be5a32f204f7ba3eb&lang=en&ds=gl011&pr=sa&d=2012-07-27 17:59:05&v=11.1.0.12&sap=hp
uInternet Settings,ProxyOverride = localhost; 127.0.0.1; <local>
mSearchAssistant =
uURLSearchHooks: Winamp Toolbar Search Class: {57bca5fa-5dbb-45a2-b558-1755c3f6253b} - c:\program files\winamp toolbar\winamptb.dll
mURLSearchHooks: Winamp Toolbar Search Class: {57bca5fa-5dbb-45a2-b558-1755c3f6253b} - c:\program files\winamp toolbar\winamptb.dll
BHO: Claro LTD Helper Object: {000f18f2-09eb-4a59-82b2-5ae4184c39c3} - c:\program files\claro ltd\claro\1.6.4.1\bh\claro.dll
BHO: AC-Pro: {0fb6a909-6086-458f-bd92-1f8ee10042a0} - c:\program files\autocompletepro\AutocompletePro.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Winamp Toolbar Loader: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - c:\program files\winamp toolbar\winamptb.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~3\office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.12\AVG Secure Search_toolbar.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~3\office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.12\AVG Secure Search_toolbar.dll
TB: Claro LTD Toolbar: {9e131a93-eed7-4beb-b015-a0adb30b5646} - c:\program files\claro ltd\claro\1.6.4.1\claroTlbr.dll
TB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - c:\program files\winamp toolbar\winamptb.dll
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Gadwin PrintScreen] "d:\programi\printscreen\PrintScreen.exe" /nosplash
uRun: [Facebook Update] "c:\documents and settings\winxpsp3\local settings\application data\facebook\update\FacebookUpdate.exe" /c /nocrashserver
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
uRun: [Google Update] "c:\documents and settings\winxpsp3\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [BitTorrent] "c:\program files\bittorrent\BitTorrent.exe"
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [C-Media Mixer] Mixer.exe /startup
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [NPSStartup]
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
IE: E&xport to Microsoft Excel - d:\programi\office~1\office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\documents and settings\winxpsp3\application data\dvdvideosoftiehelpers\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\documents and settings\winxpsp3\application data\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm
IE: Se&nd to OneNote - d:\programi\office~1\office14\ONBttnIE.dll/105
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{10DD475A-6EB7-442E-87A5-5F2C5371D1BE} : DhcpNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\11.2.0\ViProtocol.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~3\office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\winxpsp3\application data\mozilla\firefox\profiles\agqo6c5y.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.startup.homepage - hxxp://isearch.avg.com?cid=%7B6dea1b0c-6a88-46cc-a6c3-e8d03316cb93%7D&mid=ff7c3a0ece1e47d0838bd1a93b73812c-f0e10767caae01fe1c42c48be5a32f204f7ba3eb&ds=gl011&v=11.1.0.12&lang=en&pr=sa&d=2012-07-27%2017%3A59%3A05&sap=hp
FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B6dea1b0c-6a88-46cc-a6c3-e8d03316cb93%7D&mid=ff7c3a0ece1e47d0838bd1a93b73812c-f0e10767caae01fe1c42c48be5a32f204f7ba3eb&ds=gl011&v=11.1.0.12&lang=en&pr=sa&d=2012-07-27%2017%3A59%3A05&sap=ku&q=
FF - plugin: c:\docume~1\winxpsp3\applic~1\powerc~1\nppowerloader.dll
FF - plugin: c:\documents and settings\winxpsp3\application data\mozilla\firefox\profiles\agqo6c5y.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\plugins\np-mswmp.dll
FF - plugin: c:\documents and settings\winxpsp3\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\winxpsp3\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\winxpsp3\local settings\application data\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\documents and settings\winxpsp3\local settings\application data\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\progra~1\micros~3\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~3\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\11.2.0\npsitesafety.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_262.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.claro.id - 84e5589d00000000000000e07d9768df
FF - user.js: extensions.claro.instlDay - 15551
FF - user.js: extensions.claro.vrsn - 1.6.4.1
FF - user.js: extensions.claro.vrsni - 1.6.4.1
FF - user.js: extensions.claro_i.vrsnTs - 1.6.4.119:14:41
FF - user.js: extensions.claro.prtnrId - claro
FF - user.js: extensions.claro.prdct - claro
FF - user.js: extensions.claro.aflt - babsst
FF - user.js: extensions.claro_i.smplGrp - none
FF - user.js: extensions.claro.tlbrId - iclaro
FF - user.js: extensions.claro.instlRef - sst
FF - user.js: extensions.claro.dfltLng - en
FF - user.js: extensions.claro.excTlbr - false
FF - user.js: extensions.claro.admin - false
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
FF - user.js: browser.sessionstore.resume_from_crash - false
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2012-7-27 242240]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2010-7-29 115008]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/05/03 13:47:52];c:\program files\cyberlink\powerdvd10\navfilter\000.fcl [2010-8-26 87536]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2010-8-12 810144]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2012-4-30 238952]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\nlssrv32.exe [2011-12-8 66560]
R2 vToolbarUpdater11.2.0;vToolbarUpdater11.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\11.2.0\ToolbarUpdater.exe [2012-7-29 935008]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2012-4-30 36608]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google ажурирање услуга (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-6-21 116648]
S2 NEWDRIVER;NEWDRIVER;\??\c:\windows\system32\winvdedrv6.sys --> c:\windows\system32\WinVDEdrv6.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-5-3 1684736]
S3 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [2011-5-3 12672]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2012-4-30 80824]
S3 gupdatem;Google ажурирање услуга (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-6-21 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2010-3-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-26 114144]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2012-4-30 181432]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\drivers\ssudserd.sys [2012-4-30 181432]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-23 47128]
S4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\microsoft visual studio 8\common7\ide\remote debugger\x86\msvsmon.exe [2005-9-23 2799808]
S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [2009-3-30 239336]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2009-3-30 366936]
.
=============== Created Last 30 ================
.
2012-08-08 09:07:41 -------- d-----w- c:\program files\common files\DirectX
2012-08-07 17:29:31 -------- d-----w- c:\documents and settings\winxpsp3\application data\Capcom
2012-08-07 10:36:56 -------- d-----w- c:\program files\Winamp Detect
2012-08-07 10:36:47 -------- d-----w- c:\program files\Winamp Toolbar
2012-08-07 10:36:47 -------- d-----w- c:\documents and settings\all users\application data\Winamp Toolbar
2012-08-07 10:36:40 -------- d-----w- c:\program files\common files\Software Update Utility
2012-08-06 14:33:58 -------- d-----w- c:\program files\Webteh
2012-08-06 14:20:26 -------- d-----w- c:\program files\Unknown Device Identifier
2012-08-06 14:19:23 -------- d-----w- c:\program files\TeamViewer
2012-08-06 14:19:23 -------- d-----w- c:\program files\PCUninstall
2012-08-06 13:40:23 -------- d-----w- c:\program files\Windows Live SkyDrive
2012-08-06 13:37:55 -------- d-----w- c:\program files\Serious Magic
2012-08-06 13:37:48 -------- d-----r- c:\program files\Skype
2012-08-06 13:23:12 -------- d-----w- c:\windows\Config
2012-08-06 13:23:12 -------- d-----w- c:\windows\addins
2012-08-03 19:13:01 -------- d-----w- c:\documents and settings\winxpsp3\local settings\application data\SKIDROW
2012-08-01 19:03:29 -------- d-----w- c:\documents and settings\winxpsp3\application data\Claro LTD
2012-08-01 19:02:11 -------- d-----w- c:\windows\system32\xlive
2012-08-01 19:02:01 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2012-08-01 18:12:55 238088 ----a-w- c:\windows\system32\xactengine3_2.dll
2012-08-01 18:11:51 3495784 ----a-w- c:\windows\system32\d3dx9_33.dll
2012-08-01 18:11:50 255848 ----a-w- c:\windows\system32\xactengine2_6.dll
2012-08-01 18:08:58 -------- d-----w- c:\windows\Logs
2012-07-31 21:28:44 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2012-07-31 21:28:44 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2012-07-31 21:28:44 -------- d-----w- c:\program files\OpenAL
2012-07-31 21:20:27 -------- d-sh--w- c:\documents and settings\winxpsp3\application data\.#
2012-07-30 17:02:53 -------- d-----w- c:\program files\YourFileDownloader
2012-07-30 16:39:59 -------- d-----w- c:\program files\Claro LTD
2012-07-30 16:39:04 -------- d-----w- c:\documents and settings\all users\application data\Babylon
2012-07-30 16:39:03 -------- d-----w- c:\documents and settings\winxpsp3\application data\Babylon
2012-07-30 16:38:37 -------- d-----w- c:\program files\ExpressFiles
2012-07-30 16:38:37 -------- d-----w- c:\documents and settings\winxpsp3\application data\ExpressFiles
2012-07-30 13:48:45 -------- d-----w- c:\documents and settings\winxpsp3\application data\PowerISO
2012-07-29 19:02:24 73696 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2012-07-29 17:20:32 -------- d-----w- c:\windows\system32\cache
2012-07-28 18:52:29 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-07-28 18:52:29 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-07-27 16:11:41 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-07-27 16:11:27 -------- d-----w- c:\documents and settings\winxpsp3\application data\DAEMON Tools Lite
2012-07-27 16:11:23 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-07-27 16:10:47 -------- d-----w- c:\documents and settings\all users\application data\DAEMON Tools Lite
2012-07-27 15:59:26 -------- d-----w- c:\documents and settings\winxpsp3\local settings\application data\AVG Secure Search
2012-07-27 15:59:07 -------- d-----w- c:\documents and settings\winxpsp3\application data\AVG Secure Search
2012-07-27 15:59:05 -------- d-----w- c:\documents and settings\all users\application data\AVG Secure Search
2012-07-27 15:59:01 -------- d-----w- c:\program files\common files\AVG Secure Search
2012-07-27 15:58:58 -------- d-----w- c:\program files\AVG Secure Search
2012-07-27 15:57:21 -------- d-----w- c:\program files\Hotspot Shield
2012-07-27 15:56:43 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2012-07-12 21:23:44 -------- d-----w- c:\documents and settings\all users\application data\ASGVIS
2012-07-11 20:16:58 -------- d-----w- c:\program files\MCShield
2012-07-11 20:16:58 -------- d-----w- c:\documents and settings\all users\application data\MCShield
.
==================== Find3M ====================
.
2012-08-07 17:28:48 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-07-10 05:51:13 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-10 05:51:13 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-07 12:43:09 446258 ----a-w- c:\windows\AutoKMS.exe
2012-06-11 18:17:42 65536 ----a-w- c:\windows\system32\frapsvid.dll
2012-05-22 13:47:28 405176 ----a-w- c:\windows\system32\Newtonsoft.Json.Net20.dll
.
============= FINISH: 7:43:58,37 ===============
mycity.rs/must-login.png
mycity.rs/must-login.png
|
|
|
|
|
|
|
Poslao: 09 Avg 2012 09:49
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Pozdrav, aleksey
Korak 1
Preuzmi AVG Remover, pokreni i prati korake.
Korak 2
Preuzmi "Xplode"-ov AdwCleaner i sacuvaj ga na Desktop
Dvoklikom pokreni program i klikni na dugme [Search] .
Kada program zavrsi analizu otvorice notepad sa izvestajem. Zatvori taj notepad.
Klikni na dugme [Delete] i pricekaj da program zavrsi.
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok
Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt
TwinHeadedEagle (AMF Tim)
|
|
|
|
|
|
|
Poslao: 09 Avg 2012 11:54
|
offline
- Pridružio: 11 Jul 2012
- Poruke: 46
|
Odradio sam to. Ali mi niste rekli da će ovaj Adwcleaner da poništi sva prethodna podešavanja na Chromu. Od 10 dodataka što sam imao nije ostao ni jedan.
mycity.rs/must-login.png
|
|
|
|
|
|
|
|
|
|
|
|
|
Poslao: 12 Avg 2012 09:46
|
offline
- Pridružio: 11 Jul 2012
- Poruke: 46
|
Nažalost računar mi ne dozvoljava da deinstaliram Javu 31 update.
Sve ostalo savršeno radi.
Hvala vam.
|
|
|
|
|
|
Adwcleaner ne vrsi nikakva setovanja, brise sav adware/spyware, maliciozne i neke legitimne toolbarove, PUP (softver okarakterisan kao nezeljen). U toku uklanjanja je kod tebe nazalost zakacio i uklonio par legitimnih. Ali veliki deo toga jeste los softver. Ponovo instaliraj te ekstenzije koje si koristio, one vecinom dolaze uz instalacije programa koje koristis...ali ne zaboravi da ubuduce pomno pratis svaku instalaciju i ne instaliras nepotrebne (maliciozne) toolbarove...
