Dosadni LinkBucks.com - Get your share!

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 03 Dec 2012 16:58

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AB9CC554-E711-4DA1-A628-04CD19BA17C5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AB9CC554-E711-4DA1-A628-04CD19BA17C5}\ not found.
C:\Program Files\Mozilla Firefox\searchplugins\search.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\Web Search.xml moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~2\browse~1\23796~1.11\{16cdf~1\browse~1.dll deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Pedja
->Temp folder emptied: 3884930 bytes
->Temporary Internet Files folder emptied: 8928932 bytes
->Java cache emptied: 416933335 bytes
->FireFox cache emptied: 66091478 bytes
->Google Chrome cache emptied: 341456210 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 939 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 12688631 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 811.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12032012_165328

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Dopuna: 03 Dec 2012 17:03

opet isto.pojavljuje se i dalje

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Koristiš li program MediaBooster? Da li ti taj LinksBucks izbacuje samo u Chrome-u?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Za MediaBooster prvi put cujem, a LinksBucks izbacuje i na Ghrome-u i na Explorer i na Mozilli Firefox cak mi se i pojavljuje kad nista ne radim

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe ako ti ne trebaju:

Pando Media Booster

Zatim otvori Chrome i idi na adresu chrome://plugins
Tu pogledaj da li se nalazi Pando Web Plugin i isključi ga ako postoji.





Da li si ti instalirao AI RoboForm i da li koristiš legalnu verziju istog?





Preuzmi aswMBR i sačuvaj ga na Desktop.

Dvoklikom pokreni aswMBR.

Ukoliko dobiješ sljedeću poruku:
Would you like to download latest Avast! virus definitions?
Klikni na dugme Yes i pričekaj da se proces preuzimanja definicija završi.

Provjeri da je pod AV Scan: izabrana opcija QuickScan

Klikni na Scan.

Kada završi skeniranje ( Scan finished successfully ) klikni Save log.
Sačuvaj aswMBR log na Desktop.
Sadržaj tog loga iskopiraj u temi.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-03 19:48:50
-----------------------------
19:48:50.476 OS Version: Windows 6.1.7601 Service Pack 1
19:48:50.476 Number of processors: 2 586 0x603
19:48:50.479 ComputerName: PEDJA-PC UserName: Pedja
19:48:56.013 Initialize success
19:48:56.132 AVAST engine defs: 12120300
19:49:12.727 The log file has been saved successfully to "C:\Users\Pedja\Desktop\aswMBR.txt"

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Nisi mi odgovorio na pitanje.

Da li si detaljno ispratio uputsvo koje sam ti dao za aswMBR?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

NIsam instalirao AI RoboForm

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Isprati detaljno uputstvo koje sam ti da o za aswMBR i postavi mi njegov izvještaj.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-03 19:48:50
-----------------------------
19:48:50.476 OS Version: Windows 6.1.7601 Service Pack 1
19:48:50.476 Number of processors: 2 586 0x603
19:48:50.479 ComputerName: PEDJA-PC UserName: Pedja
19:48:56.013 Initialize success
19:48:56.132 AVAST engine defs: 12120300
19:49:12.727 The log file has been saved successfully to "C:\Users\Pedja\Desktop\aswMBR.txt"
21:01:39.810 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000061
21:01:39.813 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
21:01:39.829 Disk 0 MBR read successfully
21:01:39.832 Disk 0 MBR scan
21:01:39.835 Disk 0 Windows 7 default MBR code
21:01:39.839 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:01:39.848 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 119899 MB offset 206848
21:01:39.869 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 356938 MB offset 245760000
21:01:39.875 Disk 0 scanning sectors +976769024
21:01:40.007 Disk 0 scanning C:\Windows\system32\drivers
21:01:52.627 Service scanning
21:02:09.804 Modules scanning
21:02:14.787 Disk 0 trace - called modules:
21:02:14.822 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll storport.sys nvstor32.sys ndis.sys Rt86win7.sys tcpip.sys NETIO.SYS tdx.sys afd.sys
21:02:14.828 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x865843d0]
21:02:14.835 3 CLASSPNP.SYS[8b98359e] -> nt!IofCallDriver -> [0x85539f08]
21:02:14.841 5 ACPI.sys[8b3483d4] -> nt!IofCallDriver -> \Device\00000061[0x86237ab0]
21:02:15.750 AVAST engine scan C:\Windows
21:02:17.371 AVAST engine scan C:\Windows\system32
21:04:13.260 AVAST engine scan C:\Windows\system32\drivers
21:04:23.906 AVAST engine scan C:\Users\Pedja
21:04:53.424 Disk 0 MBR has been saved successfully to "C:\Users\Pedja\Desktop\MBR.dat"
21:04:53.436 The log file has been saved successfully to "C:\Users\Pedja\Desktop\aswMBR.txt"

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Dvoklikom pokreni OTL;
U beli okvir prozora gdje piše Custom Scans/Fixes iskopirati sledeći tekst:

netsvcs
drives
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
services.*
/md5stop


kliknite Run Scan;

po završetku skeniranja, izveštaj (koji će biti automatski sačuvan na Desktop-u kao OTL.Txt) će se otvoriti u Notepad-u.

Kopiraj sadržaj OTL.txt u poruku.