Problem sa usporenošću interneta

1

Problem sa usporenošću interneta

offline
  • Pridružio: 30 Avg 2013
  • Poruke: 13

Dakle, imam problema sa usporenoscu interneta koji traje vec 3-4 dana..Poceo je mnogo da koci i usporava kada sam povezana na net..Koristim Malwarebytes koji je juce skenirao 11 virusa..Posto cesto koristim fb primetila sam da kada igram jednu igricu ( covece ne ljuti se ) da mnogo koci tada a ne samo meni nego i ostalim igracima, sto sam posumnjala da mozda taj njihov sajt nije zarazen nekim virusom..
Imam windows 7 starter, brzina neta 400 kb, ( adsl )..

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.21.2
Run by Windows User at 13:21:47 on 2013-08-31
Microsoft Windows 7 Starter 6.1.7601.1.1252.1.1033.18.2047.898 [GMT 2:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\Stardock\MyColors\VistaSrv.exe
C:\Program Files\Stardock\MyColors\WBVista.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Oceanis\SystemSetting\WallPaperAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\Explorer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files\NetWorx\networx.exe
C:\Program Files\Hmonitor\hmonitor.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = c:\program files\allgameshome toolbar\tbunsnb0cd.tmp\fasttabs.html
uURLSearchHooks: MB2 Toolbar: {013a635f-e3aa-4371-b682-ece95ca974b0} - c:\program files\mb2\prxtbMB0.dll
mURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTo0.dll
mURLSearchHooks: MB2 Toolbar: {013a635f-e3aa-4371-b682-ece95ca974b0} - c:\program files\mb2\prxtbMB0.dll
uWinlogon: Shell = c:\program files\oceanis\systemsetting\WallPaperAgent.exe
BHO: MB2 Toolbar: {013a635f-e3aa-4371-b682-ece95ca974b0} - c:\program files\mb2\prxtbMB0.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.0.318\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTo0.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - c:\program files\windows live\companion\companioncore.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Windows 7 Starter Helper: {D381FF29-7CFB-4D4E-B92A-C4EDDC696614} - c:\program files\oceanis\systemsetting\StarterHelper.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: uTorrentControl_v2 Toolbar: {7473B6BD-4691-4744-A82B-7854EB3D70B6} - c:\program files\utorrentcontrol_v2\prxtbuTo0.dll
TB: MB2 Toolbar: {013A635F-E3AA-4371-B682-ECE95CA974B0} - c:\program files\mb2\prxtbMB0.dll
TB: &NetWorx Desk Band: {FEEA54B4-D80F-41C7-87B9-DC08E6D3255F} - c:\program files\networx\deskband.dll
TB: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - c:\program files\utorrentcontrol_v2\prxtbuTo0.dll
TB: MB2 Toolbar: {013a635f-e3aa-4371-b682-ece95ca974b0} - c:\program files\mb2\prxtbMB0.dll
uRun: [AlcoholAutomount] "c:\program files\alcohol soft\alcohol 120\AxAutoMntSrv.exe" -automount
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"
mRun: [NetWorx] "c:\program files\networx\networx.exe" /auto
mRun: [hmonitor] c:\program files\hmonitor\hmonitor.exe
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [QuickTime Task] "c:\program files\qt lite\QTTask.exe" -atboottime
mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.0.318\SSScheduler.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{96D6AF8C-A88F-4E0F-ABBB-41A6B4A30ABE} : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\windows user\appdata\roaming\mozilla\firefox\profiles\35sh46s6.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?affID=110819&tt=3312_6&babsrc=KW_ss&mntrId=342d7e8800000000000000ffa0435473&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\mcafee security scan\3.0.318\npMcAfeeMSS.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin2.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin3.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin4.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin5.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin6.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin7.dll
FF - plugin: c:\program files\qt lite\plugins\npqtplugin8.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\windows user\appdata\roaming\mozilla\firefox\profiles\35sh46s6.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\plugins\np-mswmp.dll
FF - plugin: c:\users\windows user\appdata\roaming\mozilla\firefox\profiles\35sh46s6.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\plugins\npConduitFirefoxPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=16729&tt=270312_bext_fix
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - def
FF - user.js: extensions.BabylonToolbar_i.id - 342d7e8800000000000000ffa0435473
FF - user.js: extensions.BabylonToolbar_i.hardId - 342d7e8800000000000000ffa0435473
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15427
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1715:07:54
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babclient
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - std
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]
R1 PSSDK42;PSSDK42;c:\windows\system32\drivers\pssdk42.sys [2011-1-24 38976]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-1-26 176128]
R2 HTCMonitorService;HTCMonitorService;c:\program files\htc\htc sync manager\HSMServiceEntry.exe [2013-1-29 87368]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-13 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-9-13 701512]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 107392]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\PassThruSvr.exe [2013-7-21 167424]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2013-8-14 3291008]
R2 StarWindServiceAE;StarWind AE Service;c:\program files\alcohol soft\alcohol 120\starwind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5;c:\program files\teamviewer\version5\TeamViewer_Service.exe [2011-1-23 1960744]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-5-1 22856]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-6-20 295376]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\drivers\teamviewervpn.sys [2011-1-23 25088]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-6-3 162408]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2012-4-8 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2012-3-8 1492840]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2012-12-7 23040]
S3 Lsacaci;Lsacaci;c:\windows\system32\drivers\NV_AGP.SYS [2009-7-14 105024]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-3-13 52224]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]
.
=============== Created Last 30 ================
.
2013-08-30 15:09:52 7166848 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{fc8539d6-ca73-4c8f-9b7a-0003c95c5567}\mpengine.dll
2013-08-29 06:48:33 7166848 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2013-08-23 08:30:00 697992 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{16b0a011-789c-49ed-94fc-46cc1544abcd}\gapaengine.dll
2013-08-14 14:00:58 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-08-14 09:11:04 4774272 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-08-14 09:11:04 4774272 ----a-w- c:\program files\mozilla firefox\browser\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-08-14 09:03:00 652800 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-14 09:02:58 175104 ----a-w- c:\windows\system32\wintrust.dll
2013-08-14 09:02:58 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-14 09:02:58 1166848 ----a-w- c:\windows\system32\crypt32.dll
2013-08-14 09:02:58 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-14 09:02:49 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-14 09:02:48 3968960 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-08-14 09:02:48 1289096 ----a-w- c:\windows\system32\ntdll.dll
2013-08-14 09:02:45 1293760 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 09:02:44 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-14 09:02:33 2048 ----a-w- c:\windows\system32\tzres.dll
2013-08-14 09:02:20 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
.
==================== Find3M ====================
.
2013-08-21 17:18:51 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-21 17:18:51 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-07-26 03:13:24 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- c:\windows\system32\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-07-26 01:59:38 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-06-18 19:50:08 211560 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-06-18 19:50:08 107392 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2013-06-05 03:05:09 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 04:53:07 509440 ----a-w- c:\windows\system32\qedit.dll
2013-06-02 18:59:33 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-06-02 18:59:30 866720 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-06-02 18:59:30 788896 ----a-w- c:\windows\system32\deployJava1.dll
.
============= FINISH: 13:23:03.93 ===============
mycity.rs/must-login.png

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Pozdrav.

Uninstaliraj sledece:

McAfee Security Scan Plus
Skype Click to Call


Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok


Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"

Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt




*******************





Preuzmi zoek.zip sa ovog ili ovog linka i sačuvaj ga na Desktop.


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:


filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 30 Avg 2013
  • Poruke: 13

Posle skeniranja kada sam kliknula na dugme clean tu je zablokirao skroz i morala sam da restartujem komp..Sta sada da radim..?

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Predji na drugi korak, zoek alat.

offline
  • Pridružio: 30 Avg 2013
  • Poruke: 13

Zoek.exe Version 4.0.0.4 Updated 31-08-2013
Tool run by Windows User on 31/08/2013 at 16:41:51.90.
Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\WINDOW~1\AppData\Local\Temp\Rar$EX13.065\zoek.exe [Script inserted]

==== System Restore Info ======================

31/08/2013 16:44:15 Zoek.exe System Restore Point Created Succesfully.

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="explorer.exe"

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\WINDOW~1\AppData\Local\Temp ====
2013-08-21 10:20:01 D07444BDB22757545CD2FA91654F2FD0 328019 ----a-w- C:\Users\WINDOW~1\AppData\Local\Temp\Quarantine.exe
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
2013-08-14 09:02:45 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-08-14 09:02:20 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C: =====
====== C:\Users\Windows User\AppData\Roaming ======
====== C:\Users\Windows User ======
2013-08-31 12:56:54 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 ----a-w- C:\Users\Windows User\Downloads\adwcleaner.exe
2013-08-31 11:20:55 8B968045D75783A09592C3105F2865DA 688992 ----a-w- C:\Users\Windows User\Downloads\dds.com

====== C: exe-files ==
2013-08-31 12:56:54 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 ----a-w- C:\Users\Windows User\Downloads\adwcleaner.exe
2013-08-31 12:52:45 17EFB4C5F996F783E90BE1EB0077BA40 477560 ----a-w- C:\Users\Windows User\AppData\Local\Temp\MSS\3.0.318.3\McUICnt.exe
=== C: other files ==
2013-08-31 11:20:55 8B968045D75783A09592C3105F2865DA 688992 ----a-w- C:\Users\Windows User\Downloads\dds.com

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe"
"NetWorx"="C:\Program Files\NetWorx\networx.exe /auto"
"hmonitor"="C:\Program Files\Hmonitor\hmonitor.exe"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"QuickTime Task"="C:\Program Files\QT Lite\QTTask.exe -atboottime"
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe Reader Speed Launcher"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Greenshot]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Greenshot"
"hkey"="HKCU"
"command"="C:\\Program Files\\Greenshot\\Greenshot.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QT Lite\\QTTask.exe\" -atboottime"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Adobe Gamma Loader.lnk"
"backup"="C:\\Windows\\pss\\Adobe Gamma Loader.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\COMMON~1\\Adobe\\CALIBR~1\\ADOBEG~1.EXE "
"item"="Adobe Gamma Loader"


==== Startup Folders ======================

2010-11-19 12:03:49 1447 ----a-w- C:\users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Think Green Weather.lnk
2010-11-19 12:03:49 1447 ----a-w- C:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Think Green Weather.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [21/08/2013 19:18]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [10/05/2011 13:36]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [10/05/2011 13:36]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default
- MB2 - %ProfilePath%\extensions\{013a635f-e3aa-4371-b682-ece95ca974b0}
- uTorrentControl_v2 - %ProfilePath%\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
- AllGamesHome Toolbar - %ProfilePath%\extensions\{C178BB02-BFCF-4E69-AB7C-DED3BD0291BD}
- free-downloads.net Community Toolbar - %ProfilePath%\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}

AppDir: C:\Program Files\Mozilla Firefox
- Widgi Toolbar Platform - %AppDir%\extensions\wtxpcom@mybrowserbar.com
- YouTube Downloader Toolbar - %AppDir%\extensions\youtubedownloader@mybrowserbar.com

==== Firefox Plugins ======================

Profilepath: C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default
101700E93EB905992B518256CB441829 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll - Google Update
0C8597DBC74AAF5179471BA013E3C6B4 - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash
8F24103AB984847AA2939F58F19CCC98 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U21
ADC539F67D3198679F480974EE203678 - C:\Windows\system32\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
F045DF7AF127DC4BCC53421850114E15 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll - Silverlight Plug-In
570A48F975661221A126FCFE3B38B7E1 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
B1BB8EDC9D83D8096EE873F04CEE600C - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
7331D500F777A77803EFC49FC1205221 - C:\Program Files\QT Lite\Plugins\npqtplugin8.dll - QuickTime Plug-in 7.7
A03CA6CA6762A5C23A4EBF1FD3961761 - C:\Program Files\QT Lite\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.7
9D424DB2373EFFA4B03EAED7D8460FE2 - C:\Program Files\QT Lite\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.7
BD879D8AFBCCAB1F957904168D9CD6D8 - C:\Program Files\QT Lite\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7
21EF01CBD2E5D126D51EF8FFDBB98390 - C:\Program Files\QT Lite\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7
01986158921B5064631F6C47A998FD99 - C:\Program Files\QT Lite\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7
15A10AEA93A48B82E7AF02B6F32D3564 - C:\Program Files\QT Lite\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7
534FB04D167CE2B8DE6E180A23646074 - C:\Program Files\QT Lite\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7
C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery
2DEE3CBE9DB65124C49A6366D0B042A3 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
855B79451ECF62602F20EB4D5C71F99B - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
0722E6932916BE23F34365157427730E - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Multimedia Plug-in
65FB4909BD29CAAA81FDC69AD21BB905 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
01F0264937036BD962563F1ADF35CE72 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll - RealPlayer Version Plugin
7D28153B7D586330678AD522B71D89CB - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrlui.dll - Microsoft® Silverlight
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ejpbbhjlbipncjklfjjaedaieimbmdda - C:\Users\Windows User\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx[14/08/2012 09:27]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ejpbbhjlbipncjklfjjaedaieimbmdda - C:\Users\Windows User\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx[14/08/2012 09:27]


==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\Program Files\\AllGamesHome Toolbar\\fasttabs.html"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Search the web (Babylon) Url="http://search.babylon.com/?q={searchTerms}&affID=110819&tt=3312_6&babsrc=SP_ss&mntrId=342d7e8800000000000000ffa0435473"
{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} Unknown Url="Not_Found"
{7BE933EC-2827-4657-99A0-CBB04F67C4D2} Yahoo//search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=937811&p={searchTerms}"
{ECF8A494-B461-4135-B1EE-34FC58802A82} MB2 Customized Web Search Url="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431400"
{EEE6C360-6118-11DC-9C72-001320C79847} SweetIM Search Url="http://search.sweetim.com/search.asp?src=6&q={searchTerms}"

==== EOF on 31/08/2013 at 16:46:54.19 ======================

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:


emptyclsid;
c:\program files\mb2;fs
c:\program files\utorrentcontrol_v2;fs
c:\program files\allgameshome toolbar;fs
C:\\Program Files\\AllGamesHome Toolbar;fs
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main];r
"Tabs"=-;r
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes];r
"DefaultScope"=-;r
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9};c
{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E};c
{ECF8A494-B461-4135-B1EE-34FC58802A82};c
{EEE6C360-6118-11DC-9C72-001320C79847};c
FFdefaults;
chrdefaults;
iedefaults;
emptyalltemp;
autoclean;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.



********************




Preuzmi Junkware Removal Tool ( JRT ) i sacuvaj ga na desktop.

zatvori browser i ostale pokrenute programe;
Jel potrebno navesti napomenu za duzinu scana? Da postavim ovaj PG ili nema potrebe za tim?

Privremeno deaktiviraj zastitni softver (Uputstvo);

dvoklikom na ikonicu ( )pokreni program JRT;

Kod obavestenja "press any key" pritisnuti bilo koji taster i alat ce zapoceti skeniranje.
Napomena: u ovisnosti od sistemske specifikacije vreme skeniranja u nekim slucajevima moze da potraje.

Kada zavrsi otvorice se log sa izvestajem koji ce biti sacuvan na desktopu pod nazivom JRT.txt


Arrow Kopiraj sadrzaj tog loga u temu.

offline
  • Pridružio: 30 Avg 2013
  • Poruke: 13

Zoek.exe Version 4.0.0.4 Updated 31-08-2013
Tool run by Windows User on 31/08/2013 at 18:00:59.63.
Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\WINDOW~1\AppData\Local\Temp\Rar$EX49.0546\zoek.exe [Script inserted]

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\SearchScopes\{ECF8A494-B461-4135-B1EE-34FC58802A82} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7BE933EC-2827-4657-99A0-CBB04F67C4D2} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com/");
user_pref("browser.search.defaulturl", "");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Search the web (Babylon)");
user_pref("keyword.URL", "http://search.babylon.com/?affID=110819&tt=3312_6&babsrc=KW_ss&mntrId=342d7e8800000000000000ffa0435473&q=");

Added to C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default\prefs.js:

ProfilePath: C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default

---- Lines CT3220468 removed from prefs.js ----


---- Lines CT3220468 modified from prefs.js ----


---- Lines CT3220468 removed from user.js ----


---- Lines conduit removed from prefs.js ----


---- Lines conduit modified from prefs.js ----


---- Lines conduit removed from user.js ----


---- Lines Search removed from prefs.js ----


---- Lines Search modified from prefs.js ----


---- Lines Search removed from user.js ----


---- Lines babylon removed from prefs.js ----


---- Lines babylon modified from prefs.js ----


---- Lines babylon removed from user.js ----

user_pref("extensions.BabylonToolbar_i.babTrack", "affID=16729&tt=270312_bext_fix");
user_pref("extensions.BabylonToolbar_i.babExt", "");
user_pref("extensions.BabylonToolbar_i.srcExt", "def");
user_pref("extensions.BabylonToolbar_i.id", "342d7e8800000000000000ffa0435473");
user_pref("extensions.BabylonToolbar_i.hardId", "342d7e8800000000000000ffa0435473");
user_pref("extensions.BabylonToolbar_i.instlDay", "15427");
user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1715:07:54");
user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar_i.aflt", "babclient");
user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
user_pref("extensions.BabylonToolbar_i.instlRef", "std");

---- Lines ask.com removed from prefs.js ----


---- Lines ask.com modified from prefs.js ----


---- Lines mybrowserbar removed from prefs.js ----


---- Lines mybrowserbar modified from prefs.js ----


---- Lines smartbar removed from prefs.js ----


---- Lines smartbar modified from prefs.js ----


---- FireFox user.js and prefs.js backups ----

user_082013_1808_.backup
prefs_082013_1808_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Tabs"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"=-

==== Deleting Files \ Folders ======================

"C:\user.js" deleted
"C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml" deleted
"C:\Program Files\Mozilla Firefox\extensions\wtxpcom@mybrowserbar.com" deleted
"C:\Program Files\Mozilla Firefox\extensions\youtubedownloader@mybrowserbar.com" deleted
"C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml" deleted
"C:\user.js" deleted
"C:\END" deleted
"C:\Windows\System32\SET35B1.tmp" deleted
"C:\Windows\System32\SET42BF.tmp" deleted
"C:\Windows\System32\SET59E6.tmp" deleted
"C:\Windows\System32\SET81BC.tmp" deleted
"C:\Windows\System32\SETA88F.tmp" deleted
"c:\program files\MB2" deleted
"c:\program files\uTorrentControl_v2" deleted
"c:\program files\AllGamesHome Toolbar" deleted
"C:\\Program Files\\AllGamesHome Toolbar" deleted
"C:\Program Files\Application Updater" deleted
"C:\Program Files\uTorrentControl_v2" deleted
"C:\Program Files\YouTube Downloader Toolbar" deleted
"C:\Program Files\iLivid" deleted
"C:\Program Files\Conduit" deleted
"C:\Program Files\Common Files\Spigot" deleted
"C:\Users\Windows User\AppData\Roaming\YourFileDownloader" deleted
"C:\ProgramData\Babylon" deleted
"C:\ProgramData\Trymedia" deleted
"C:\Users\Windows User\AppData\Local\Ilivid Player" deleted
"C:\Users\Windows User\AppData\Local\CRE" deleted
"C:\Users\Windows User\AppData\Local\PackageAware" deleted
"C:\Users\Windows User\AppData\Local\Babylon" deleted
"C:\Users\Windows User\AppData\Local\Conduit" deleted
"C:\Users\Windows User\AppData\LocalLow\uTorrentControl_v2" deleted
"C:\Users\Windows User\AppData\LocalLow\PriceGong" deleted
"C:\Users\Windows User\AppData\LocalLow\Conduit" deleted
"C:\Users\Windows User\AppData\LocalLow\Search Settings" deleted
"C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default\CT3220468" deleted
"C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default\CT3220468" deleted
"C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default\smartbar" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default
- MB2 - %ProfilePath%\extensions\{013a635f-e3aa-4371-b682-ece95ca974b0}
- uTorrentControl_v2 - %ProfilePath%\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
- AllGamesHome Toolbar - %ProfilePath%\extensions\{C178BB02-BFCF-4E69-AB7C-DED3BD0291BD}
- free-downloads.net Community Toolbar - %ProfilePath%\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}

==== Firefox Plugins ======================

Profilepath: C:\Users\Windows User\AppData\Roaming\Mozilla\Firefox\Profiles\35sh46s6.default
101700E93EB905992B518256CB441829 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll - Google Update
0C8597DBC74AAF5179471BA013E3C6B4 - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash
8F24103AB984847AA2939F58F19CCC98 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U21
ADC539F67D3198679F480974EE203678 - C:\Windows\system32\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
F045DF7AF127DC4BCC53421850114E15 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll - Silverlight Plug-In
570A48F975661221A126FCFE3B38B7E1 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
B1BB8EDC9D83D8096EE873F04CEE600C - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
7331D500F777A77803EFC49FC1205221 - C:\Program Files\QT Lite\Plugins\npqtplugin8.dll - QuickTime Plug-in 7.7
A03CA6CA6762A5C23A4EBF1FD3961761 - C:\Program Files\QT Lite\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.7
9D424DB2373EFFA4B03EAED7D8460FE2 - C:\Program Files\QT Lite\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.7
BD879D8AFBCCAB1F957904168D9CD6D8 - C:\Program Files\QT Lite\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7
21EF01CBD2E5D126D51EF8FFDBB98390 - C:\Program Files\QT Lite\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7
01986158921B5064631F6C47A998FD99 - C:\Program Files\QT Lite\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7
15A10AEA93A48B82E7AF02B6F32D3564 - C:\Program Files\QT Lite\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7
534FB04D167CE2B8DE6E180A23646074 - C:\Program Files\QT Lite\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7
C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery
2DEE3CBE9DB65124C49A6366D0B042A3 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
855B79451ECF62602F20EB4D5C71F99B - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
0722E6932916BE23F34365157427730E - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Multimedia Plug-in
65FB4909BD29CAAA81FDC69AD21BB905 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
01F0264937036BD962563F1ADF35CE72 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll - RealPlayer Version Plugin
7D28153B7D586330678AD522B71D89CB - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrlui.dll - Microsoft® Silverlight
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ejpbbhjlbipncjklfjjaedaieimbmdda - C:\Users\Windows User\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ejpbbhjlbipncjklfjjaedaieimbmdda - C:\Users\Windows User\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx[]


==== Chrome Fix ======================

C:\Users\Windows User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\Program Files\\AllGamesHome Toolbar\\fasttabs.html"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_USERS\S-1-5-21-2034002616-3973095975-1480110338-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7473b6bd-4691-4744-a82b-7854eb3d70b6} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{013a635f-e3aa-4371-b682-ece95ca974b0} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda deleted successfully

==== Empty IE Cache ======================

C:\Users\Windows User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Windows User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Windows User\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\users\Windows User\AppData\Local\Mozilla\Firefox\Profiles\35sh46s6.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\WINDOW~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\users\Windows User\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XHQEZ892\g-ecx.images-amazon.com" not found
"C:\users\Windows User\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XHQEZ892\hosting.lockhosts.com" not found
"C:\users\Windows User\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XHQEZ892\static.xvideos.com" not found
"C:\users\Windows User\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XHQEZ892\themepark.static.zgncdn.com" not found
"C:\users\Windows User\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XHQEZ892\zynga1-a.akamaihd.net" not found

==== EOF on 31/08/2013 at 18:12:38.91 ======================

Nastavaljam dalje korake....

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Napisano: 31 Avg 2013 18:18

Pokreni ponovo AdwCleaner, ali obrisi tu ikonicu i preuzmi novu sa neta.

Dopuna: 31 Avg 2013 18:19

Zavrsi prvo sa JRT programom Smile

offline
  • Pridružio: 30 Avg 2013
  • Poruke: 13

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.6 (08.30.2013:1)
OS: Windows 7 Starter x86
Ran by Windows User on 31/08/2013 at 18:19:25.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Predji na AdwCleaner.

Ko je trenutno na forumu
 

Ukupno su 751 korisnika na forumu :: 8 registrovanih, 1 sakriven i 742 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: Bubimir, croato, ladro, Milos82, Pohovani_00, Srle993, suton, wizzardone