kako se osloboditi reklame koja mi iskace na desktop????

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 22 Jan 2015 21:10




na desetak minuta mi iskace ova i slicne reklame na desktop,ne mogu se iskljuciti dok se ne klikne na njih,kada kliknem baca me na sajt te reklame ... kako se to moze ukloniti? please help

Dopuna: 22 Jan 2015 21:28

mycity.rs/must-login.png

mycity.rs/must-login.png







Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by viga (administrator) on VIGA-PC on 22-01-2015 21:18:44
Running from C:\Users\viga\Desktop
Loaded Profiles: viga & UpdatusUser (Available profiles: viga & UpdatusUser)
Platform: Microsoft Windows 7 Ultimate (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Users\viga\AppData\Local\Viber\Viber.exe
(Microsoft) C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\System Process.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcfgex.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-05-09] (Realtek Semiconductor)
HKU\S-1-5-21-1896509803-219009610-3679717614-1000\...\Run: [MK LOL] => C:\Program Files\MKJogo\MK IM\Bin\MKIM.exe [1092296 2014-12-20] ()
HKU\S-1-5-21-1896509803-219009610-3679717614-1000\...\Run: [Viber] => C:\Users\viga\AppData\Local\Viber\Viber.exe [936656 2014-10-20] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\System Process.exe (Microsoft)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = google.com
HKU\S-1-5-21-1896509803-219009610-3679717614-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
HKU\S-1-5-21-1896509803-219009610-3679717614-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1896509803-219009610-3679717614-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = mysearch.avg.com/search?cid={EE6BE055-3ED3-4B15-A23B-AD41D14ED761}&mid=d4fb3e80492b47d2b6f6d15696346853-6497a142b682393e2af54acd23a7feea18996bea&lang=en&ds=AVG&coid=avgtbavg&cmpid=1214tb&pr=fr&d=2014-11-06 18:06:08&v=4.0.5.7&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1896509803-219009610-3679717614-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\viga\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.rs/
CHR StartupUrls: Default -> "hxxp://www.google.rs/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-18]
CHR Extension: (Google Docs) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-18]
CHR Extension: (Google Drive) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-18]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-18]
CHR Extension: (YouTube) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-18]
CHR Extension: (Drumtrackz) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\cciklmellmkeeeibdekdkbacdllgfbpa [2014-12-07]
CHR Extension: (Google Search) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-18]
CHR Extension: (AdBlock) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-10-18]
CHR Extension: (League of Legends) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\imnjbagkijcpfbblmjigpcgjcnhpnodl [2014-12-15]
CHR Extension: (Google Wallet) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-18]
CHR Extension: (Desktop Client for Viber™) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\olamheimegmegknankiijehcgocchdph [2014-11-01]
CHR Extension: (Gmail) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-18]
CHR Extension: (Sniper Team) - C:\Users\viga\AppData\Local\Google\Chrome\User Data\Default\Extensions\plgicdnbfgmhjkgbhbnplfeppddpkkid [2014-11-30]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-29] (TuneUp Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-19] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208152 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-19] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [43296 2014-12-09] (AVG Technologies)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:18 - 2015-01-22 21:19 - 00011547 _____ () C:\Users\viga\Desktop\FRST.txt
2015-01-22 21:17 - 2015-01-22 21:18 - 00000000 ____D () C:\FRST
2015-01-22 21:17 - 2015-01-22 21:17 - 01118208 _____ (Farbar) C:\Users\viga\Desktop\FRST.exe
2015-01-22 20:46 - 2015-01-22 20:50 - 00000000 ____D () C:\AdwCleaner
2015-01-22 20:45 - 2015-01-22 20:45 - 02186752 _____ () C:\Users\viga\Downloads\adwcleaner_4.108.exe
2015-01-22 20:32 - 2015-01-22 20:35 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-22 20:32 - 2015-01-22 20:32 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-01-22 20:32 - 2015-01-22 20:32 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-01-22 20:32 - 2015-01-22 20:32 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-01-22 20:32 - 2015-01-22 20:32 - 00000000 ____D () C:\Program Files\Adobe
2015-01-22 20:29 - 2015-01-22 20:34 - 00000000 ____D () C:\Users\viga\AppData\Local\Adobe
2015-01-19 22:21 - 2015-01-19 22:21 - 00024666 _____ () C:\Users\viga\Downloads\172723-bountykiller_2013_brripxvidetrg.zip
2015-01-19 01:50 - 2015-01-19 02:04 - 00000000 ____D () C:\Users\viga\.instagiffer
2015-01-19 01:33 - 2015-01-19 01:36 - 00000000 ____D () C:\Users\viga\AppData\Roaming\FreeGifMaker
2015-01-16 15:58 - 2015-01-16 15:58 - 00001063 _____ () C:\Users\Public\Desktop\FastStone Image Viewer.lnk
2015-01-16 15:58 - 2015-01-16 15:58 - 00000000 ____D () C:\Users\viga\AppData\Roaming\FastStone
2015-01-16 15:58 - 2015-01-16 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2015-01-16 15:58 - 2015-01-16 15:58 - 00000000 ____D () C:\Program Files\FastStone Image Viewer
2015-01-11 19:29 - 2015-01-11 19:30 - 00000000 ____D () C:\Users\viga\Desktop\minster
2015-01-11 19:27 - 2015-01-11 19:27 - 00025711 _____ () C:\Users\viga\Downloads\av_qest.zip
2015-01-11 19:26 - 2015-01-11 19:26 - 00319360 _____ () C:\Users\viga\Downloads\minster.zip
2015-01-11 19:24 - 2015-01-11 19:24 - 00015516 _____ () C:\Users\viga\Downloads\dark_arts.zip
2015-01-11 19:24 - 2015-01-11 19:24 - 00015516 _____ () C:\Users\viga\Downloads\dark_arts (1).zip
2015-01-05 13:01 - 2015-01-05 13:01 - 00000000 ____D () C:\Windows\system32\appmgmt
2015-01-05 12:51 - 2015-01-05 12:51 - 02671528 _____ () C:\Users\viga\Downloads\Advanced Email Password Retriever V2.24.zip
2014-12-28 22:29 - 2015-01-22 20:29 - 00000000 ____D () C:\Users\viga\Downloads\gift

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:01 - 2009-07-14 05:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-22 21:01 - 2009-07-14 05:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-22 20:57 - 2014-10-19 08:28 - 00216141 _____ () C:\Windows\WindowsUpdate.log
2015-01-22 20:54 - 2014-11-01 20:27 - 00000000 ____D () C:\Users\viga\AppData\Roaming\ViberPC
2015-01-22 20:54 - 2014-11-01 20:25 - 00000000 ____D () C:\Users\viga\AppData\Local\Viber
2015-01-22 20:53 - 2014-10-18 23:36 - 00014818 _____ () C:\Windows\PFRO.log
2015-01-22 20:53 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-22 20:53 - 2009-07-14 05:39 - 00027986 _____ () C:\Windows\setupact.log
2015-01-22 20:44 - 2014-10-19 08:33 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-22 20:34 - 2014-10-18 23:37 - 00000000 ____D () C:\Users\viga\AppData\Roaming\Adobe
2015-01-22 18:22 - 2014-10-18 23:45 - 00000000 ____D () C:\ProgramData\MFAData
2015-01-22 12:29 - 2014-12-05 02:37 - 00000000 ____D () C:\Users\viga\Desktop\mika
2015-01-20 14:09 - 2009-07-14 05:33 - 00271736 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-20 13:17 - 2014-10-18 23:41 - 00000000 ____D () C:\Users\viga\AppData\Roaming\uTorrent
2015-01-19 20:01 - 2014-12-21 18:05 - 00000000 ____D () C:\Users\viga\Desktop\tumblr
2015-01-19 08:52 - 2014-10-18 23:40 - 00710770 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-19 04:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-01-19 01:50 - 2014-10-19 08:31 - 00000000 ____D () C:\Users\viga
2015-01-17 15:28 - 2014-12-19 22:01 - 00000733 _____ () C:\Users\viga\Desktop\posao.txt
2015-01-17 12:52 - 2014-11-23 17:50 - 00000000 ____D () C:\Users\viga\Desktop\IDEJE
2015-01-16 23:49 - 2014-10-18 23:34 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-12 09:15 - 2014-10-18 23:48 - 00000935 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-01-12 09:15 - 2014-10-18 23:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-01-12 00:46 - 2014-10-19 08:32 - 00059912 _____ () C:\Users\viga\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-11 18:59 - 2014-10-30 20:52 - 00000000 ____D () C:\Users\viga\AppData\Roaming\Skype
2015-01-04 23:36 - 2014-10-24 21:08 - 00002286 _____ () C:\Users\viga\Desktop\Chrome App Launcher.lnk
2015-01-04 23:36 - 2014-10-19 08:31 - 00001413 _____ () C:\Users\viga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-03 15:04 - 2014-10-30 20:52 - 00000000 ___RD () C:\Program Files\Skype
2015-01-03 15:04 - 2014-10-30 20:51 - 00000000 ____D () C:\ProgramData\Skype
2015-01-02 12:26 - 2014-12-18 02:33 - 00000000 ____D () C:\Users\viga\AppData\Roaming\AIMP3

==================== Files in the root of some directories =======
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\viga\AppData\Roaming\XBYGR
2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\viga\AppData\Roaming\YOOMH
2014-10-19 00:46 - 2014-10-19 00:46 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\viga\AppData\Local\Temp\Quarantine.exe
C:\Users\viga\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 02:50

==================== End Of Log ============================

• 1Ovo se svidja korisniku: cincin
  
  Registruj se da bi pohvalio/la poruku!

Pozdrav Vladimir Vignjevic i dobrodosao u Ambulantu MyCIty foruma.

Izvestaji mi govore da je pokretan Adware Cleaner (AdwCleaner) alat. Molim te postavi mi njegov log. C:\AdwCleaner[S0].txt






1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

Start
CloseProcesses:
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1896509803-219009610-3679717614-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={EE6BE055-3ED3-4B15-A23B-AD41D14ED761}&mid=d4fb3e80492b47d2b6f6d15696346853-6497a142b682393e2af54acd23a7feea18996bea&lang=en&ds=AVG&coid=avgtbavg&cmpid=1214tb&pr=fr&d=2014-11-06 18:06:08&v=4.0.5.7&pid=wtu&sg=&sap=dsp&q={searchTerms}

Folder: C:\Windows\system32\appmgmt

Hosts:
C:\Users\viga\AppData\Roaming\XBYGR
C:\Users\viga\AppData\Roaming\YOOMH

EmptyTemp:
End

2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

evo ga AdwCleaner[S0].txt

mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zdravo ljudi

Ok, recite mi da li je problem resen. Adware Cleaner je ciljao neke ostatke adware-a, a ja sam uklonio preostalo sto sam video iz FRST logovima. Osim toga, sami izvestaji su izgledali prilicno cisto.

Recite mi da li je problem resen ili treba da idemo na dodatnu proveru?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

nije, idalje mi iskacu ti prozori bilo da sam otvorio internet pretrazivac ili ne....
imam i adBlock ali nista ne pomaze

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ok, idemo dalje ...




Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

StandardSearch;

Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadrzaj tog loga u poruku.