iskacuci prozorcici

3

iskacuci prozorcici

offline
  • Pridružio: 06 Feb 2015
  • Poruke: 86

Napisano: 15 Jun 2015 14:42

# AdwCleaner v4.206 - Logfile created 15/06/2015 at 14:37:35
# Updated 01/06/2015 by Xplode
# Database : 2015-06-14.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : boki - BOKI-PC
# Running from : C:\Users\boki\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : IHProtect Service

***** [ Files / Folders ] *****

Folder Found : C:\Program Files\GreenTree Applications
Folder Found : C:\Program Files\XTab
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\IHProtectUpDate
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\Users\boki\AppData\Roaming\OpenCandy
Folder Found : C:\Users\boki\AppData\Roaming\sweet-page

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\AppID\{1DA17428-323D-48FF-857C-98CFEE48BFD5}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9C81D00A-3DAA-48AB-90C7-8252119ABB93}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A72B8EA8-5B63-4C90-9FE8-D9C76C99DE32}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{618B2F0C-A1AF-4D1D-9354-CF0C42AF5BCB}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Found : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector
Key Found : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector.1
Key Found : HKLM\SOFTWARE\IHProtect
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E877590-30B7-400E-A835-B942489EB7BC}
Key Found : HKLM\SOFTWARE\PositiveFinds
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\sweet-pageSoftware
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v38.0.5 (x86 en-US)

[irzjr10b.default] - Line Found : user_pref("browser.search.searchengine.iconURL", "hxxp://www.sweet-page.com/favicon.ico");
[irzjr10b.default] - Line Found : user_pref("browser.search.searchengine.url", "hxxp://www.sweet-page.com/web/?type=ds&ts=1423233794&from=cor&uid=HitachiXHDP725025GLA380_GEK230RBTT5JNATT5JNAX&q={searchTerms}");
[irzjr10b.default] - Line Found : user_pref("extensions.quick_start.enable_search1", false);
[irzjr10b.default] - Line Found : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[irzjr10b.default] - Line Found : user_pref("extensions.toolbar_NDV-V7@apn.ask.com.install-event-fired", true);

-\\ Google Chrome v43.0.2357.124

[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Found [Default_Search_Provider_Data] : hxxps://www.google.de/search?q={searchTerms}?trackid=sp-006",
"usage_count": 0
}
},
"extensions": {
"settings": {
"ahfgeienlihckogmohjhadlkjgocpleb": {
"active_permissions": {
"api": [ "management", "system.display", "system.storage", "webstorePrivate", "system.cpu", "system.memory", "system.network" ],
"manifest_permissions": [ ]
},
"app_launcher_ordinal": "t",
"commands": {

},
"content_settings": [ ],
"creation_flags": 1,
"events": [ ],
"from_bookmark": false,
"from_webstore": false,
"incognito_content_settings": [ ],
"incognito_preferences": {

},
"install_time": "13067633787602950",
"location": 5,
"manifest": {
"app": {
"launch": {
"web_url": "hxxps://chrome.google.com/webstore"
},
"urls": [ "hxxps://chrome.google.com/webstore" ]
},
"description": "Discover great apps, games, extensions and themes for Google Chrome.",
"icons": {
"128": "webstore_icon_128.png",
"16": "webstore_icon_16.png"
},
"key": "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCtl3tO0osjuzRsf6xtD2SKxPlTfuoy7AWoObysitBPvH5fE1NaAA1/2JkPWkVDhdLBWLaIBPYeXbzlHp3y4Vv/4XG+aN5qFE3z+1RU/NqkzVYHtIpVScf3DjTYtKVL66mzVGijSoAIwbFCC3LpGdaoe6Q1rSRDp76wR6jjFzsYwQIDAQAB",
"name": "Web Store",
"permissions": [ "webstorePrivate", "management", "system.cpu", "system.display", "system.memory", "system.network", "system.storage" ],
"version": "0.2"
},
"page_ordinal": "n",
"path": "C:\\Program Files\\Google\\Chrome\\Application\\40.0.2214.94\\resources\\web_store",
"preferences": {

},
"regular_only_preferences": {

},
"state": 1,
"was_installed_by_default": false,
"was_installed_by_oem": false
},
"aohghmighlieiainnegkcijnfilokake": {
"ack_external": true,
"active_permissions": {
"api": [ ],
"manifest_permissions": [ ]
},
"app_launcher_ordinal": "w",
"commands": {

},
"content_settings": [ ],
"creation_flags": 137,
"events": [ ],
"from_bookmark": false,
"from_webstore": true,
"granted_permissions": {
"api": [ ],
"manifest_permissions": [ ]
},
"incognito_content_settings": [ ],
"incognito_preferences": {

},
"initial_keybindings_set": true,
"install_time": "13067726861349691",
"lastpingday": "13072604395864123",
"location": 1,
"manifest": {
"api_console_project_id": "619683526622",
"app": {
"launch": {
"local_path": "main.html"
}
},
"container": "GOOGLE_DRIVE",
"current_locale": "en_US",
"default_locale": "en_US",
"description": "Create and edit documents ",
"icons": {
"128": "icon_128.png",
"16": "icon_16.png"
},
"key": "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJhLK6fk/BWTEvJhywpk7jDe4A2r0bGXGOLZW4/AdBp3IiD9o9nx4YjLAtv0tIPxi7MvFd/GUUbQBwHT5wQWONJj1z/0Rc2qBkiJA0yqXh42p0snuA8dCfdlhOLsp7/XTMEwAVasjV5hC4awl78eKfJYlZ+8fM/UldLWJ/51iBQwIDAQAB",
"manifest_version": 2,
"name": "Google Docs",
"offline_enabled": true,
"update_url": "hxxps://clients2.google.com/service/update2/crx",
"version": "0.9"
},
"page_ordinal": "n",
"path": "aohghmighlieiainnegkcijnfilokake\\0.9_0",
"preferences": {

},
"regular_only_preferences": {

},
"state": 1,
"was_installed_by_default": true,
"was_installed_by_oem": false
},
"apdfllckaahabafndbhieahigkjlhalf": {
"ack_external": true,
"active_permissions": {
"api": [ "background", "clipboardRead", "clipboardWrite", "notifications", "unlimitedStorage" ],
"manifest_permissions": [ ]
},
"app_launcher_ordinal": "x",
"commands": {

},
"content_settings": [ ],
"creation_flags": 137,
"events": [ ],
"from_bookmark": false,
"from_webstore": true,
"granted_permissions": {
"api": [ "background", "clipboardRead", "clipboardWrite", "notifications", "unlimitedStorage" ],
"manifest_permissions": [ ]
},
"incognito_content_settings": [ ],
"incognito_preferences": {

},
"install_time": "13067726869599691",
"lastpingday": "13072604395864123",
"location": 1,
"manifest": {
"app": {
"launch": {
"web_url": "hxxps://drive.google.com/?usp=chrome_app"
},
"urls": [ "hxxp://docs.google.com/", "hxxp://drive.google.com/", "hxxps://docs.google.com/", "hxxps://drive.google.com/" ]
},
"background": {
"allow_js_access": false
},
"current_locale": "en_US",
"default_locale": "en_US",
"description": "Google Drive: create, share and keep all your stuff in one place.",
"icons": {
"128": "128.png"
},
"key": "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIl5KlKwL2TSkntkpY3naLLz5jsN0YwjhZyObcTOK6Nda4Ie21KRqZau9lx5SHcLh7pE2/S9OiArb+na2dn7YK5EvH+aRXS1ec3uxVlBhqLdnleVgwgwlg5fH95I52IeHcoeK6pR4hW/Nv39GNlI/Uqk6O6GBCCsAxYrdxww9BiQIDAQAB",
"manifest_version": 2,
"name": "Google Drive",
"offline_enabled": true,
"options_page": "hxxps://drive.google.com/settings",
"permissions": [ "background", "clipboardRead", "clipboardWrite", "notifications", "unlimitedStorage" ],
"update_url": "hxxps://clients2.google.com/service/update2/crx",
"version": "6.4"
},
"page_ordinal": "n",
"path": "apdfllckaahabafndbhieahigkjlhalf\\6.4_0",
"preferences": {

},
"regular_only_preferences": {

},
"state": 1,
"was_installed_by_default": true,
"was_installed_by_oem": false
},
"bepbmhgboaologfdajaanbcjmnhjmhfn": {
"disable_reasons": 1,
"state": 0
},
"blpcfgokakmgnkcojhhkbfbldkacnbeo": {
"ack_external": true,
"active_permissions": {
"api": [ ],
"manifest_permissions": [ ]
},
"app_launcher_ordinal": "y",
"commands": {

},
"content_settings": [ ],
"creation_flags": 153,
"events": [ ],
"from_bookmark": true,
"from_webstore": true,
"granted_permissions": {
"api": [ ],
"manifest_permissions": [ ]
},
"incognito_content_settings": [ ],
"incognito_preferences": {

},
"install_time": "13067726857031691",
"lastpingday": "13072604395864123",
"location": 1,
"manifest": {
"app": {
"launch": {
"container": "tab",
"web_url": "hxxp://www.youtube.com/?feature=ytca"
},
"web_content": {
"enabled": true,
"origin": "hxxp://www.youtube.com"
}
},
"current_locale": "en_US",
"default_locale": "en",
"description": "The world's most popular online video community.",
"icons": {
"128": "128.png"
},
"key": "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC/HotmFlyuz5FaHaIbVBhhL4BwbcUtsfWwzgUMpZt5ZsLB2nW/Y5xwNkkPANYGdVsJkT2GPpRRIKBO5QiJ7jPMa3EZtcZHpkygBlQLSjMhdrAKevpKgIl6YTkwzNvExY6rzVDzeE9zqnIs33eppY4S5QcoALMxuSWlMKqgFQjHQIDAQAB",
"manifest_version": 2,
"name": "YouTube",
"update_url": "hxxp://clients2.google.com/service/update2/crx",
"version": "4.2.7"
},
"page_ordinal": "n",
"path": "blpcfgokakmgnkcojhhkbfbldkacnbeo\\4.2.7_0",
"preferences": {

},
"regular_only_preferences": {

},
"state": 1,
"was_installed_by_default": true,
"was_installed_by_oem": false
},
"cifndhjjchjamcecpjhpggeaacihcjnl": {
"ack_ntp_bubble": true,
"active_permissions": {
"api": [ "contextMenus", "cookies", "downloads", "downloadsInternal", "history", "management", "tabs" ],
"explicit_host": [ "chrome://favicon/*", "hxxp://*/*", "hxxp://127.0.0.1/*", "hxxp://localhost/*", "hxxps://*/*" ],
"manifest_permissions": [ ],
"scriptable_host": [ "hxxp://*/*", "hxxp://ak.imgfarm.com/images/toolbar/radio/radioWrapper.html", "hxxp://internetspeedtracker.dl.tb.ask.com/blank.jhtml

-\\ Opera v30.0.1835.59


*************************

AdwCleaner[R0].txt - [13769 bytes] - [15/06/2015 14:37:35]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [13829 bytes] ##########

Dopuna: 15 Jun 2015 14:43

# AdwCleaner v4.206 - Logfile created 15/06/2015 at 14:38:54
# Updated 01/06/2015 by Xplode
# Database : 2015-06-14.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : boki - BOKI-PC
# Running from : C:\Users\boki\Downloads\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : IHProtect Service

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\IHProtectUpDate
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Program Files\XTab
Folder Deleted : C:\Users\boki\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\boki\AppData\Roaming\sweet-page

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector
Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9C81D00A-3DAA-48AB-90C7-8252119ABB93}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1DA17428-323D-48FF-857C-98CFEE48BFD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A72B8EA8-5B63-4C90-9FE8-D9C76C99DE32}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{618B2F0C-A1AF-4D1D-9354-CF0C42AF5BCB}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E877590-30B7-400E-A835-B942489EB7BC}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\sweet-pageSoftware
Key Deleted : HKLM\SOFTWARE\IHProtect
Key Deleted : HKLM\SOFTWARE\PositiveFinds

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v38.0.5 (x86 en-US)

[irzjr10b.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://www.sweet-page.com/favicon.ico");
[irzjr10b.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.url", "hxxp://www.sweet-page.com/web/?type=ds&ts=1423233794&from=cor&uid=HitachiXHDP725025GLA380_GEK230RBTT5JNATT5JNAX&q={searchTerms}");
[irzjr10b.default\prefs.js] - Line Deleted : user_pref("extensions.quick_start.enable_search1", false);
[irzjr10b.default\prefs.js] - Line Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[irzjr10b.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar_NDV-V7@apn.ask.com.install-event-fired", true);

-\\ Google Chrome v43.0.2357.124

[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\boki\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Default_Search_Provider_Data] :

-\\ Opera v30.0.1835.59


*************************

AdwCleaner[R0].txt - [13909 bytes] - [15/06/2015 14:37:35]
AdwCleaner[S0].txt - [3747 bytes] - [15/06/2015 14:38:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3806 bytes] ##########

Dopuna: 15 Jun 2015 14:46

Slika u formatu txt nije dozvoljena. Dozvoljeni formati slika su JPG, GIF i PNG. ne mogu prikaciti ....

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Kakvo je sad stanje?

Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

 
autoclean;
emptyclsid;
emptyfolderscheck;delete
emptyalltemp;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 06 Feb 2015
  • Poruke: 86

mnogo bolje je za sada ne iskace nista



Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by boki on Mon 06/15/2015 at 16:15:57.45.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\boki\Downloads\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 16:17:00.66 =====

--- Create Environment Variables 16:17:03.75
--- Create System Restore Point 16:17:27.14

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Opet nije ceo log? Tacnije, nema nicega, lepo to kopiraj. Ili iskoristi opciju prikaci fajl.

offline
  • Pridružio: 06 Feb 2015
  • Poruke: 86

mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Dva puta si Zoek pokretala. Jednom sad u 17:05, a jednom u 16:15. Nadji mi log od 16:15 ako mozes, pa mi okaci.

offline
  • Pridružio: 06 Feb 2015
  • Poruke: 86

Napisano: 15 Jun 2015 17:39

ih obrisala sam odmah.............

Dopuna: 15 Jun 2015 17:40

da opet pokrenem i okavcim

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Nemoj. Meni je bitno bilo da vidim da li je nesto ocistio. Ovako ces morati da mi okacis i novi FRST log i Addition, da vidim da li smo zavrsili.

offline
  • Pridružio: 06 Feb 2015
  • Poruke: 86

jel opet zoek da pokrenem?

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Ne diraj zoek. Samo ponovo pokreni FRST, skeniraj i postavi mi novi log i Addition log.

Ko je trenutno na forumu
 

Ukupno su 881 korisnika na forumu :: 41 registrovanih, 6 sakrivenih i 834 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: aleksmajstor, Andrija357, Ben Roj, Brana01, BRATORIII, Dannyboy, Dimitrije Paunovic, Dimitrise93, Dvojac005, FOX, Georgius, HogarStrashni, ivan979, ivica976, Joja, Još malo pa deda, Karla, kybonacci, laurusri, Luka Blažević, mercedesamg, milanovic, Milometer, Miškić, Mlav, moldway, Motocar, nemkea71, opt1, sap, slonic_tonic, ss10, Steeeefan, stegonosa, suton, Vlada78, VP6919, W123, zbazin, zillbg, Zoca