Provera

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Samo bih hteo da proverim

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16611 BrowserJavaVersion: 10.21.2
Run by admin at 16:20:37 on 2013-07-05
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Users\admin\Local Settings\Apps\F.lux\flux.exe
C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
.
============== Pseudo HJT Report ===============
.
uStart Page = [Link mogu videti samo ulogovani korisnici]
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [F.lux] "c:\users\admin\local settings\apps\f.lux\flux.exe" /noshow
uRun: [uTorrent] "c:\users\admin\appdata\roaming\utorrent\uTorrent.exe" /MINIMIZED
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
dRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
uPolicies-Explorer: NoSecurityTab = dword:1
uPolicies-Explorer: NoDrives = dword:0
uPolicies-System: DisableChangePassword = dword:-1
uPolicies-System: DisableLockWorkStation = dword:-1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Se&nd to OneNote - <no file>
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - <orphaned>
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: google-analytics.com
Trusted Zone: novastor.com
Trusted Zone: novastor.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{A336B012-CB35-48FA-A52C-C0A5F96D7BB1} : DHCPNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
SSODL: WebCheck - <orphaned>
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
============= SERVICES / DRIVERS ===============
.
R? !SASCORE;SAS Core Service
R? b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? CodeMeter.exe;CodeMeter Runtime Server
R? dmvsc;dmvsc
R? epmntdrv;epmntdrv
R? EuGdiDrv;EuGdiDrv
R? HTCAND32;HTC Device Driver
R? HTCMonitorService;HTCMonitorService
R? htcnprot;HTC NDIS Protocol Driver
R? PanService;PandoraService
R? PassThru Service;Internet Pass-Through Service
R? RdpVideoMiniport;Remote Desktop Video Miniport Driver
R? s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter
R? s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver
R? s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface
R? Stereo Service;NVIDIA Stereoscopic 3D Driver Service
R? SuperMounter;SuperMounter
R? SwitchBoard;SwitchBoard
R? Synth3dVsc;Synth3dVsc
R? terminpt;Microsoft Remote Desktop Input Driver
R? TsUsbFlt;TsUsbFlt
R? TsUsbGD;Remote Desktop Generic USB Device
R? tsusbhub;tsusbhub
R? Uim_Vim;UIM Virtual Image Plugin
R? VGPU;VGPU
S? AntiVirSchedulerService;Avira Scheduler
S? AntiVirService;Avira Real-Time Protection
S? avgntflt;avgntflt
S? avkmgr;avkmgr
S? dtsoftbus01;DAEMON Tools Virtual Bus Driver
S? eusk2par;Aladdin SmartKey Parallel Driver
S? HssDRV6;Hotspot Shield Routing Driver 6
S? HWiNFO32;HWiNFO32/64 Kernel Driver
S? RTL8167;Realtek 8167 NT Driver
S? SASDIFSV;SASDIFSV
S? SASKUTIL;SASKUTIL
S? SCT_SKMScan;SCT_SKMScan
S? stdriver;Sound Tap Upper Class Filter Driver v2.0.0.0
S? U3SDR200;U3SDR200
S? VIAHdAudAddService;VIA High Definition Audio Driver Service
S? vsock;vSockets Driver
.
=============== File Associations ===============
.
ShellExec: dreamweaver.exe: Open="c:\program files\adobe\adobe dreamweaver cs6\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2013-06-20 11:38:44 -------- d-----w- c:\programdata\SystemRequirementsLab
2013-06-20 11:38:44 -------- d-----w- c:\program files\SystemRequirementsLab
2013-06-11 18:02:02 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-06-11 18:02:02 218112 ----a-w- c:\program files\internet explorer\sqmapi.dll
2013-06-11 17:36:15 1505280 ----a-w- c:\windows\system32\d3d11.dll
2013-06-11 17:36:11 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-11 17:36:07 492544 ----a-w- c:\windows\system32\win32spl.dll
2013-06-11 17:36:05 903168 ----a-w- c:\windows\system32\certutil.exe
2013-06-11 17:36:04 43008 ----a-w- c:\windows\system32\certenc.dll
2013-06-11 17:36:04 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-06-11 17:36:04 1160192 ----a-w- c:\windows\system32\crypt32.dll
2013-06-11 17:36:04 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-06-11 17:35:54 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-11 17:35:52 3968872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-11 17:35:52 3913576 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-11 17:35:51 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-08 13:31:35 119808 ----a-r- c:\users\admin\appdata\roaming\microsoft\installer\{ccf298af-9ce1-4b26-b251-486e98a34789}\icons.exe
2013-06-08 13:09:54 -------- d-----w- c:\program files\Google Chrome Backup
.
==================== Find3M ====================
.
2013-07-01 14:48:00 67168 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-05-17 01:25:57 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-05-17 01:25:27 2877440 ----a-w- c:\windows\system32\jscript9.dll
2013-05-17 01:25:26 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-05-17 01:25:26 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-05-14 08:40:13 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-04-30 19:37:18 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-04-30 19:37:18 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-04-29 22:54:44 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-04-13 04:45:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 13:45:29 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-12 10:33:16 188176 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-04-12 10:33:02 94480 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-04-12 10:33:02 104720 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-04-12 10:32:06 115984 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-04-12 10:32:04 174864 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-04-10 05:18:40 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 05:18:40 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 03:14:06 2347520 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 16:21:25.63 ===============

[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.


Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);

Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop.


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

startupall;
filesrcm;
skipfix-iedefaults;
firefoxlook;
chromelook;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadrzaj tog loga u poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zoek.exe Version 4.0.0.4 Updated 10-July-2013
Tool run by admin on 11-Jul-13 at 3:16:20.32.
Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 WMI=failure
Running in: Normal Mode Internet Access Detected

==== System Restore Info ======================

Failed to create System Restore Point

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\admin\AppData\Local\Temp ====
====== C:\Windows\system32 =====
2013-07-10 10:21:42 BF1D2CFAE91C1E835902ECA27F8F7470 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-07-10 10:21:42 52F71A5790E1B6FFC34648F3B311EEE1 690688 ----a-w- C:\Windows\System32\jscript.dll
2013-07-10 10:21:41 CB811C14C225DD07B98E676DFB0221E6 2877440 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-10 10:21:41 B6A67646BD7E3A0AF2515703CBBD9A1C 61440 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-10 10:21:41 AC9A9B64AF7005E488390E38AE00D117 39424 ----a-w- C:\Windows\System32\jsproxy.dll
2013-07-10 10:21:41 6A32A12A2C76B729D6485D04FCFB2175 391168 ----a-w- C:\Windows\System32\ieui.dll
2013-07-10 10:21:40 F4A608A800C1BB6838797390CBBC1269 33280 ----a-w- C:\Windows\System32\iernonce.dll
2013-07-10 10:21:40 EED047A0C528813D6AAF4F4F8B2C40C4 493056 ----a-w- C:\Windows\System32\msfeeds.dll
2013-07-10 10:21:40 DED7DCF831A05D21F49510EA03F8F2C5 109056 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-10 10:21:40 6D404DDC4D0C13350E8EF0DD0421A7ED 42496 ----a-w- C:\Windows\System32\ie4uinit.exe
2013-07-10 10:21:40 225D276C730DF08CC83EABAC407F0D75 1141248 ----a-w- C:\Windows\System32\urlmon.dll
2013-07-10 10:21:40 0D2F075863C2FA4F84FB95AC00B95151 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-10 10:21:39 FE29131E35902038066C924CF9C59DF8 2046976 ----a-w- C:\Windows\System32\iertutil.dll
2013-07-10 10:21:38 9BF7C7654EFD098EE3A27B49492A382A 1767936 ----a-w- C:\Windows\System32\wininet.dll
2013-07-10 10:21:37 CC3FD6DEEE458D0BE9A69241E0749717 13760512 ----a-w- C:\Windows\System32\ieframe.dll
2013-07-10 10:21:35 AF31E7D2C385F647ADFD5F5736B3BA64 14329856 ----a-w- C:\Windows\System32\mshtml.dll
2013-07-09 21:33:30 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\System32\DWrite.dll
2013-07-09 21:33:29 56D61BE56DA22334829E14CDE6A8C1FE 1620480 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-09 21:33:28 674EB817CF6E43B7DF3EC26E06E98D98 509440 ----a-w- C:\Windows\System32\qedit.dll
2013-07-09 21:33:25 4D52150FC35E333F6CBBB6B6E6D9366D 2347520 ----a-w- C:\Windows\System32\win32k.sys
====== C:\Windows\system32\drivers =====
2013-06-11 17:35:51 D32FDAC73FCD76B85389C39BC1087F2A 1293672 ----a-w- C:\Windows\System32\drivers\tcpip.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-06-20 11:38:44 -------- d-----w- C:\Program Files\SystemRequirementsLab
======= C: =====
2013-07-05 21:50:26 5D1EDDE6A0D29AE347CB667D820BD165 103680 ----a-w- C:\pxldapow.sys
====== C:\Users\admin\AppData\Roaming ======
====== C:\Users\admin ======
2013-06-20 11:38:44 -------- d-----w- C:\ProgramData\SystemRequirementsLab

====== C: exe-files ==
2013-07-10 10:21:40 6D404DDC4D0C13350E8EF0DD0421A7ED 42496 ----a-w- C:\Windows\System32\ie4uinit.exe
2013-07-10 10:21:40 0D2F075863C2FA4F84FB95AC00B95151 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-10 10:21:38 30E7CA4620500FE012EB464F0E1DE91E 770648 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
=== C: other files ==
2013-07-11 01:16:32 0BE568FD1E7D6C6D64D2272649F5C716 111 ----a-w- C:\Users\admin\AppData\Local\temp\scripttest.vbs
2013-07-09 21:33:25 4D52150FC35E333F6CBBB6B6E6D9366D 2347520 ----a-w- C:\Windows\System32\win32k.sys
2013-07-09 00:51:39 51BA1290386C0D74F64336A06E34069F 9468064 ----a-w- C:\Users\admin\Desktop\Gibson.zip
2013-07-05 21:50:26 5D1EDDE6A0D29AE347CB667D820BD165 103680 ----a-w- C:\pxldapow.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-4232926109-2270386077-2592286719-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"F.lux"="C:\Users\admin\Local Settings\Apps\F.lux\flux.exe /noshow"
"uTorrent"="C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"F.lux"="C:\Users\admin\Local Settings\Apps\F.lux\flux.exe /noshow"
"uTorrent"="C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acronis Scheduler2 Service]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acronis Scheduler2 Service"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Acronis\\Schedule2\\schedhlp.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AcronisTibMounterMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AcronisTibMounterMonitor"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Acronis\\TibMounter\\TibMounterMonitor.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS5.5ServiceManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS5.5ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\CS5.5ServiceManager\\CS5.5ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS6ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\COMODO Internet Security]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="COMODO Internet Security"
"hkey"="HKLM"
"command"="C:\\Program Files\\COMODO\\COMODO Internet Security\\cistray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\FileHippo.com]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="FileHippo.com"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\FileHippo.com\\UpdateChecker.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gbrspcontrol]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="gbrspcontrol"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Comodo\\GeekBuddyRSP.exe\" -controlservice -slave"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\admin\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDAudDeck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HDAudDeck"
"hkey"="HKLM"
"command"="C:\\Program Files\\VIA\\VIAudioi\\VDeck\\VDeck.exe -r"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDD Monitor 2]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HDD Monitor 2"
"hkey"="HKLM"
"command"="C:\\Users\\admin\\Desktop\\HDD Monitor 2.exe /t"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpqSRMon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="hpqSRMon"
"hkey"="HKLM"
"command"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSRMon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MCShield Monitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MCShield Monitor"
"hkey"="HKCU"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NvCplDaemon"
"hkey"="HKLM"
"command"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NvMediaCenter"
"hkey"="HKLM"
"command"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Sidebar"
"hkey"="HKCU"
"command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SUPERAntiSpyware"
"hkey"="HKCU"
"command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SwitchBoard"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TrayMonitor.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TrayMonitor.exe"
"hkey"="HKLM"
"command"="C:\\Program Files\\Acronis\\TrayMonitor\\TrayMonitor.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TrueImageMonitor.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TrueImageMonitor.exe"
"hkey"="HKLM"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\uTorrent\\uTorrent.exe\" /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinampAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="WinampAgent"
"hkey"="HKLM"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
"backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NovaBACKUP Tray Control.lnk]
"backup"="C:\\Windows\\pss\\NovaBACKUP Tray Control.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"item"="NovaBACKUP Tray Control"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
"backup"="C:\\Windows\\pss\\Secunia PSI Tray.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"item"="Secunia PSI Tray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Start GeekBuddy.lnk"
"backup"="C:\\Windows\\pss\\Start GeekBuddy.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\Comodo\\GEEKBU~1\\launcher.exe \"unit_manager.exe\""
"item"="Start GeekBuddy"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
"backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup"
"backupExtension"=".Startup"
"item"="Dropbox"
"path"="C:\\Users\\admin\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
"backup"="C:\\Windows\\pss\\Facebook Messenger.lnk.Startup"
"backupExtension"=".Startup"
"item"="Facebook Messenger"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^fliptoast.lnk]
"backup"="C:\\Windows\\pss\\fliptoast.lnk.Startup"
"backupExtension"=".Startup"
"item"="fliptoast"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\!SASCORE]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdAndroidSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdLogRotatorSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CLPSLauncher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\cmdAgent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\cmdvirth]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CodeMeter.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Crypkey License]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\GeekBuddyRSP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\HTCMonitorService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\IDriverT]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\nvsvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\nvUpdatusService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\PanService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\PassThru Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\PnkBstrA]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RichVideo]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Secunia PSI Agent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Secunia Update Agent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Stereo Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SwitchBoard]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TeamViewer7]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VMAuthdService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VMnetDHCP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VMUSBArbService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VMware NAT Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\vToolbarUpdater12.2.6]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [30-Apr-13 21:37]
C:\Windows\tasks\GlaryInitialize.job --a------ C:\Program Files\Glary Utilities\initialize.exe [28-Nov-12 14:10]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4232926109-2270386077-2592286719-1000Core.job --a------ C:\Users\admin\AppData\LoC:al\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4232926109-2270386077-2592286719-1000UA.job --a------ C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [21-Aug-11 16:24]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bmiabdepfhhiieiipmeecdmeljggmfee - No path found[]
dlnembnfbcpjnepmfjmngjenhhajpdfd - No path found[]
fpgkjhpjldibdbbppfcabadmpfenkdfe - No path found[]
jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]
jifflliplgeajjdhmkcfnngfpgbjonjg - C:\Program Files\Perion\NewTab\newTab.crx[17-Sep-12 21:29]
nihbenclcjngmdidijddeocjfokamlhp - C:\Users\admin\AppData\Local\CRE\nihbenclcjngmdidijddeocjfokamlhp.crx[29-Aug-12 20:03]
pfmopbbadnfoelckkcmjjeaaegjpjjbk - C:\Program Files\Gophoto.it\gophotoit14.crx[31-Jul-12 13:58]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
knkakpihealnpggeceajhaonlmgdkaip - No path found[]
nihbenclcjngmdidijddeocjfokamlhp - C:\Users\admin\AppData\Local\CRE\nihbenclcjngmdidijddeocjfokamlhp.crx[29-Aug-12 20:03]

Angry Birds - admin - Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Does Amazon Ship to ...? - admin - Default\Extensions\gpnamfpkffldfnlkofbbebcndfdkclpc
Windows Media Player Extension for HTML5 - admin - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://us.yahoo.com?fr=fp-comodo"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\y]
@="http://yandex.ru/yandsearch?win=36&clid=1783274&text=%s"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} ?????? Url="http://yandex.ru/yandsearch?win=36&clid=1783273&text={searchTerms}"
{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} Yahoo//us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo"
{95B7759C-8C7F-4BF1-B163-73684A933233} AVG Secure Search Url="https://isearch.avg.com/search?cid={3DB5F359-7F58-44EB-A3B4-6CA2E0FA1164}&mid=4b9083dfe5dd47d0acb241affc2c886c-d67babce8a2dbc92ad2d05c7bcaa02479ea2c3f1&lang=en&ds=AVG&pr=pr&d=2012-09-29"

==== EOF on 11-Jul-13 at 3:21:07.86 ======================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Aktivnu infekciju nisam našao. Sada ću da ti uklonim Mystart by Incredibar iz Chromea.


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

jifflliplgeajjdhmkcfnngfpgbjonjg;chr
emptyalltemp;

Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadržaj tog loga u poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zoek.exe Version 4.0.0.4 Updated 10-July-2013
Tool run by admin on 11-Jul-13 at 10:54:03.85.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results11-Jul-13-0321.log 20424 bytes

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bmiabdepfhhiieiipmeecdmeljggmfee - No path found[]
dlnembnfbcpjnepmfjmngjenhhajpdfd - No path found[]
fpgkjhpjldibdbbppfcabadmpfenkdfe - No path found[]
jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]
jifflliplgeajjdhmkcfnngfpgbjonjg - C:\Program Files\Perion\NewTab\newTab.crx[17-Sep-12 21:29]
nihbenclcjngmdidijddeocjfokamlhp - C:\Users\admin\AppData\Local\CRE\nihbenclcjngmdidijddeocjfokamlhp.crx[29-Aug-12 20:03]
pfmopbbadnfoelckkcmjjeaaegjpjjbk - C:\Program Files\Gophoto.it\gophotoit14.crx[31-Jul-12 13:58]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
knkakpihealnpggeceajhaonlmgdkaip - No path found[]
nihbenclcjngmdidijddeocjfokamlhp - C:\Users\admin\AppData\Local\CRE\nihbenclcjngmdidijddeocjfokamlhp.crx[29-Aug-12 20:03]

Angry Birds - admin - Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Does Amazon Ship to ...? - admin - Default\Extensions\gpnamfpkffldfnlkofbbebcndfdkclpc
Windows Media Player Extension for HTML5 - admin - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak

==== Chrome Fix ======================

C:\Program Files\Perion\NewTab\newTab.crx deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_features.en.softonic.com_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_features.en.softonic.com_0.localstorage-journal deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg deleted successfully

==== Empty IE Cache ======================

C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\admin\AppData\Local\temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\admin\AppData\Local\VirtualStore\Windows\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\users\admin\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\admin\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 11-Jul-13 at 11:57:30.42 ======================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

To bi bilko to.




Preuzmi "Xplode"-ov DelFix i sačuvaj ga na Desktop

Dvoklikom pokreni program.

Štikliraj sledeće opcije:
Remove disinfection tools
Purge System Restore
Reset system settings

Klikni na dugme "Run" i pričekaj da program završi rad.
Kada alat završi, otvoriće izvestaj u notepadu.
Napomena: Izvestaj ce takodje biti sacuvan na C:\DelFix.txt

Ne moraš kačiti taj izvještaj.





Posjeti temu Testirajte da li vam je pretraživač ranjiv, pročitaj i isprati link koji stoji u njoj.



Pozdrav.