Poslao: 06 Dec 2012 11:55
|
offline
- Pridružio: 02 Okt 2007
- Poruke: 50
|
Postovani,
Imam problem kada pokrenem Mozillu non stop mi se pojavljuje Funmoods, nikako nemogu se otkaciti od taj dosadan toolbar Funmoods. Koristim antivirusni program Avast medjutim nije pronasao virus, medjutim ne mogu da ga uklonim, a imam ADSL konekciju
Kako da resim problem.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_31
Run by Opsto at 12:31:51 on 2012-12-05
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1919.817 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Worm Protection *Disabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Wondershare\Wondershare Application Center\WACService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FOXITS~1\FOXITR~1\FOXITR~1.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/webhp?hl=mk
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1QzutDtDtC0CtByD0A0A0FtCtC0AtB0ByCtBtN0D0Tzu0CtAtBzztN1L2XzutBtFtBtFtDtFtAyEyE&cr=767495901
mSearch Bar = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=382e2b62000000000000001c25aaf11a&tlver=1.4.19.19&affID=17160
uURLSearchHooks: {C94E154B-1459-4A47-966B-4B843BEFC7DB} - <orphaned>
mWinlogon: Userinit = c:\windows\system32\userinit.exe
BHO: Disabled:{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - <orphaned>
BHO: Disabled:{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - <orphaned>
BHO: Disabled:{9030D464-4C02-4ABF-8ECC-5164760863C6} - <orphaned>
BHO: Disabled:{AA58ED58-01DD-4d91-8333-CF10577473F7} - <orphaned>
BHO: Disabled:{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - <orphaned>
BHO: Disabled:{C544BB19-7F79-414F-B9EF-136C5E7B60B1} - <orphaned>
BHO: Disabled:{CC59E0F9-7E43-44FA-9FAA-8377850BF205} - <orphaned>
BHO: Disabled:{DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
BHO: Disabled:{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - <orphaned>
BHO: Disabled:{E7E6F031-17CE-4C07-BC86-EABFE594F69C} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\alwil software\avast5\aswWebRepIE.dll
BHO: {99079a25-328f-4bd4-be04-00955acaa0a7} - <orphaned>
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\program files\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Download Accelerator Toolbar: {C544BB19-7F79-414F-B9EF-136C5E7B60B1} - c:\documents and settings\all users\application data\tradio\tradio.dll
TB: FreeRIP.com Toolbar: {081230F8-EA50-42A9-983C-D22ABC2EED3B} - c:\program files\freerip3\toolband.dll
TB: Download Accelerator Toolbar: {C544BB19-7F79-414F-B9EF-136C5E7B60B1} - c:\documents and settings\all users\application data\tradio\tradio.dll
TB: FreeRIP.com Toolbar: {081230F8-EA50-42A9-983C-D22ABC2EED3B} - c:\program files\freerip3\toolband.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\alwil software\avast5\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe" /MINIMIZED
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Free Download Manager] "c:\program files\free download manager\fdm.exe" -autorun
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -startup
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb07.exe
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
StartupFolder: c:\docume~1\opsto\startm~1\programs\startup\avast! free antivirus.lnk - c:\program files\alwil software\avast5\AvastUI.exe
StartupFolder: c:\docume~1\opsto\startm~1\programs\startup\microsoft office outlook 2007.lnk - c:\windows\installer\{90120000-0030-0000-0000-0000000ff1ce}\outicon.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoThumbnailCache = dword:1
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: &FreeRIP Search - c:\program files\freerip3\toolband.dll/MENUSEARCH.HTM
IE: Add to Windows &Live Favorites - favorites.live.com/quickadd.aspx
IE: Download all with Free Download Manager - c:\program files\free download manager\dlall.htm
IE: Download selected with Free Download Manager - c:\program files\free download manager\dlselected.htm
IE: Download video with Free Download Manager - c:\program files\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - c:\program files\free download manager\dllink.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Open in new background tab - c:\program files\windows live toolbar\components\en-ww\msntabres.dll.mui/229?de363fa8f5e649bfb7ab9d5d18a437d4
IE: Open in new foreground tab - c:\program files\windows live toolbar\components\en-ww\msntabres.dll.mui/230?de363fa8f5e649bfb7ab9d5d18a437d4
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {B4E30F61-16D9-11D3-85D1-005004229569} - {85E0B172-04FA-11D1-B7DA-00A0C90348D6}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {B479199A-1242-4E3C-AD81-7F0DF801B4AE} - hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.178.1
TCP: Interfaces\{18917FB2-C6E0-456E-8959-2C9B52336FD2} : NameServer = 8.8.8.8,8.8.8.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
TCP: Interfaces\{18917FB2-C6E0-456E-8959-2C9B52336FD2} : DHCPNameServer = 192.168.178.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
AppInit_DLLs= c:\progra~1\searchqu toolbar\datamngr\datamngr.dll c:\progra~1\searchqu toolbar\datamngr\IEBHO.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT391767&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.mk/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT391767&q=
FF - component: c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\extensions\{28d35620-51d9-11de-9d13-2db156d89593}\components\dtTransparency.dll
FF - component: c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\extensions\ffxtlbr@facemoods.com\components\FFHst.dll
FF - component: c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\extensions\radiobar@toolbar\components\toolbarhomewmp.dll
FF - component: c:\program files\common files\spigot\wtxpcom\components\WidgiToolbarFF.dll
FF - plugin: c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\extensions\{6d6f4ac7-11e4-46bf-97a2-a0b3807e68a5}\plugins\np-mswmp.dll
FF - plugin: c:\documents and settings\opsto\application data\mozilla\firefox\profiles\47j2ycrj.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\plugins\np-mswmp.dll
FF - plugin: c:\documents and settings\opsto\application data\mozilla\plugins\np-mswmp.dll
FF - plugin: c:\documents and settings\opsto\local settings\application data\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\npMSDM.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_110.dll
FF - ExtSQL: 2012-10-24 09:37; wrc@avast.com; c:\program files\alwil software\avast5\webrep\FF
FF - ExtSQL: 2012-12-03 11:31; fdm_ffext@freedownloadmanager.org; c:\program files\free download manager\firefox\Extension
FF - ExtSQL: !HIDDEN! 2009-09-03 00:07; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.funmoods.hmpg - true
FF - user.js: extensions.funmoods.hmpgUrl - hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1QzutDtDtC0CtByD0A0A0FtCtC0AtB0ByCtBtN0D0Tzu0CtAtBzztN1L2XzutBtFtBtFtDtFtAyEyE&cr=767495901
FF - user.js: extensions.funmoods.dfltSrch - true
FF - user.js: extensions.funmoods.srchPrvdr - Search
FF - user.js: extensions.funmoods.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods.newTabUrl - hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&cd=2XzuyEtN2Y1L1QzutDtDtC0CtByD0A0A0FtCtC0AtB0ByCtBtN0D0Tzu0CtAtBzztN1L2XzutBtFtBtFtDtFtAyEyE&cr=767495901
FF - user.js: extensions.funmoods.tlbrSrchUrl - hxxp://searchfunmoods.com/?f=3&a=download&chnl=download&cd=2XzuyEtN2Y1L1QzutDtDtC0CtByD0A0A0FtCtC0AtB0ByCtBtN0D0Tzu0CtAtBzztN1L2XzutBtFtBtFtDtFtAyEyE&cr=767495901&q=
FF - user.js: extensions.funmoods.id - 001C25AAF11A2B62
FF - user.js: extensions.funmoods.instlDay - 15667
FF - user.js: extensions.funmoods.vrsn - 1.5.23.22
FF - user.js: extensions.funmoods.vrsni - 1.5.23.22
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.23.2215:7:0
FF - user.js: extensions.funmoods.prtnrId - funmoods
FF - user.js: extensions.funmoods.prdct - funmoods
FF - user.js: extensions.funmoods.aflt - download
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods.tlbrId - base
FF - user.js: extensions.funmoods.instlRef - download
FF - user.js: extensions.funmoods.dfltLng -
FF - user.js: extensions.funmoods.excTlbr - false
FF - user.js: extensions.funmoods.autoRvrt - false
FF - user.js: extensions.funmoods.envrmnt - production
FF - user.js: extensions.funmoods.isdcmntcmplt - true
FF - user.js: extensions.funmoods.mntrvrsn - 1.3.0
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-15 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2009-7-14 360392]
R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files\abbyy finereader 11\NetworkLicenseServer.exe [2011-12-22 818952]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-7-14 21256]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-12-13 44808]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-11-1 54752]
R2 WACService;WACService;c:\program files\wondershare\wondershare application center\WACService.exe [2012-12-3 103272]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S2 gupdate1ca04c9418c3248;Google Update Service (gupdate1ca04c9418c3248);c:\program files\google\update\GoogleUpdate.exe [2009-7-14 133104]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S3 cpuz132;cpuz132;\??\c:\docume~1\opsto\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\opsto\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 esgiguard;esgiguard;\??\c:\program files\enigma software group\spyhunter\esgiguard.sys --> c:\program files\enigma software group\spyhunter\esgiguard.sys [?]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2009-8-6 704864]
S3 FXDrv32;FXDrv32;\??\d:\fxdrv32.sys --> d:\FXDrv32.sys [?]
S3 GemCCID;GemCCID;c:\windows\system32\drivers\GemCCID.sys [2009-8-10 89600]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?]
.
=============== File Associations ===============
.
ShellExec: Foxit Reader.exe: print="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/p "%1"
ShellExec: Foxit Reader.exe: printto="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/t "%1" "%2" "%3" "%4"
ShellExec: FOXITR~1.EXE: print="c:\progra~1\foxits~1\foxitr~1\FOXITR~1.EXE"/p "%1"
ShellExec: FOXITR~1.EXE: printto="c:\progra~1\foxits~1\foxitr~1\FOXITR~1.EXE"/t "%1" "%2" "%3" "%4"
.
=============== Created Last 30 ================
.
2012-12-03 10:39:31 -------- d-----w- c:\documents and settings\opsto\local settings\application data\Wondershare
2012-12-03 10:39:30 -------- d-----w- c:\program files\common files\Wondershare
2012-12-03 10:39:16 -------- d-----w- c:\documents and settings\opsto\application data\Wondershare
2012-12-03 10:39:15 -------- d-----w- c:\program files\Wondershare
2012-12-03 10:31:49 -------- d-----w- c:\documents and settings\opsto\application data\Free Download Manager
2012-12-01 08:19:48 -------- d-----w- c:\documents and settings\opsto\application data\DriverCure
2012-12-01 08:19:47 -------- d-----w- c:\documents and settings\opsto\application data\SpeedyPC Software
2012-12-01 08:19:33 -------- d-----w- c:\documents and settings\all users\application data\SpeedyPC Software
2012-11-29 13:31:46 -------- d-----w- c:\windows\DDABC66756B3412282B02F5782EA2F9A.TMP
2012-11-24 11:37:51 798773 ----a-w- c:\windows\system32\MFCO42D.DLL
2012-11-24 11:37:51 516173 ----a-w- c:\windows\system32\MSVCP60D.DLL
2012-11-24 11:37:51 4092928 ----a-w- c:\windows\system32\Redemption.dll
2012-11-24 11:37:51 385100 ----a-w- c:\windows\system32\MSVCRTD.DLL
2012-11-24 11:37:51 274485 ----a-w- c:\windows\system32\MFCD42D.DLL
2012-11-24 11:37:50 929844 ----a-w- c:\windows\system32\MFC42D.DLL
2012-11-24 11:16:15 -------- d-----w- c:\documents and settings\opsto\application data\YourFileDownloader
2012-11-09 08:13:04 -------- d-----w- c:\windows\system32\cache
.
==================== Find3M ====================
.
2012-11-30 08:00:07 73656 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-11-30 08:00:07 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-11-02 08:29:31 1187697 ----a-w- c:\windows\unins000.exe
2012-10-26 10:49:34 715248 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-10-23 10:18:34 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-23 10:17:48 41224 ----a-w- c:\windows\avastSS.scr
2012-10-22 08:37:31 1866368 ----a-w- c:\windows\system32\win32k.sys
2012-10-12 06:34:54 86528 ----a-w- c:\windows\system32\pdfcmon.dll
2012-10-02 18:04:21 58368 ----a-w- c:\windows\system32\synceng.dll
.
============= FINISH: 12:33:14,54 ===============
mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png
|
|
|
|
Poslao: 06 Dec 2012 12:56
|
offline
- higuy
- Legendarni građanin
- penzionisani tabijatlija
- crni hronicar
- Pridružio: 21 Apr 2010
- Poruke: 8565
- Gde živiš: Dubocica
|
Pozdrav, adelita.
Preuzmi "Xplode"-ov AdwCleaner i sacuvaj ga na Desktop
Dvoklikom pokreni program i klikni na dugme [Search] .
Kada program zavrsi analizu otvorice notepad (AdwCleaner[R1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[R1].txt
|
|
|
|
|
Poslao: 06 Dec 2012 14:15
|
offline
- higuy
- Legendarni građanin
- penzionisani tabijatlija
- crni hronicar
- Pridružio: 21 Apr 2010
- Poruke: 8565
- Gde živiš: Dubocica
|
Uradi sledece.
Ponovo pokreni AdwCleaner
Klikni na dugme [Delete] i pricekaj da program zavrsi.
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok
Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt
Kad sve odradis, napisi kakvo je sad stanje. Da li ti se i dalje javlja problem sa Funmoods u Firefox-u. Ako ga ima, kako se ispoljava.
|
|
|
|
Poslao: 06 Dec 2012 14:58
|
offline
- Pridružio: 02 Okt 2007
- Poruke: 50
|
mycity.rs/must-login.png
Mislim da sad je sve u redu, ne mi se pojavljuje vise onaj dosadan Funmoods u Firefox-u.
Samo recite mi dali da izbrisem sve ti fajlove sta sam do sad radila u vezi Funmoods koji su na DESKTOPU.
Hvala VAM puno,
Adelita Ilic
|
|
|
|
|
Poslao: 07 Dec 2012 09:16
|
offline
- Pridružio: 02 Okt 2007
- Poruke: 50
|
Milim da sam uradila kako treba i da je taj ovaj link koji vi trazite
browsercheck.qualys.com/?scan_type=js
Pozdrav,
Adelita
|
|
|
|