Tema: Re: kazkokia masine problema: win 7 ir nebeatpazystami usb irenginiai
Autorius: ccc
Data: 2014-07-08 15:36:02
On 2014.07.08 14:01, [mikro] wrote:
> placiau galima?
> dabar mastau, kad daugelis tu pc, su 7-tos kartos chipais. z77 h77 hm76
> ir panasiai. tai kazkaip variantas tiketinas...
Visai ne. KEdo minimu atveju usb irenginiai neveikia visai. Bet
isinstaliavus bloga tvarkykle atsigauna. Siuo atveju tu neturi teises
instaliuoti JOKIU irenginiu ne tik usb. Tame tarpe ir net framework,
bent jau kai kuriu (jei ne visu windows atnaujinimu) ir dar neaisku ko.
Galiu nurodyti ir konkreciu registro raktus, bet kas is to jei liksi
sedeti su infekcija ?
Siandienos adw clener logas:
Po valymo viskas pradejo veikti. Bet reikia neuzmirsti isvalyti usb
irenginiu kesa, arba isinstaliuoti neveikiancius irenginius.
# AdwCleaner v3.214 - Report created 08/07/2014 at 14:33:23
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : User - USER-PC
# Running from : C:\Users\User\Downloads\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A9119622
[#] Service Deleted : SafetyNutManager
***** [ Files / Folders ] *****
[!] Folder Deleted : C:\ProgramData\SafetyNut
Folder Deleted : C:\Users\User\AppData\Local\iac
Folder Deleted : C:\Users\User\AppData\Local\Google\Chrome\User
Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
***** [ Shortcuts ] *****
***** [ Registry ] *****
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Key Deleted :
HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ToolbarProtector
Key Deleted :
HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ToolbarProtector.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\browserprotect.exe
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session
Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session
Manager\AppCertDlls [x86]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session
Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session
Manager\AppCertDlls [x86]
Key Deleted :
HKLM\SOFTWARE\Classes\CLSID\{3719959C-1CCD-4FA7-8EBB-7D9DED86FCCB}
Key Deleted :
HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted :
HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted :
HKLM\SOFTWARE\Classes\TypeLib\{37923200-6887-4B44-95D4-CAE8F83ECFEE}
Key Deleted :
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted :
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKCU\Software\Microsoft\Internet
Explorer\SearchScopes\{CF6E4B1C-DBDE-457E-9CEF-AB8ECAC8A5E8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet
Explorer\SearchScopes\{CF6E4B1C-DBDE-457E-9CEF-AB8ECAC8A5E8}
Key Deleted : HKLM\Software\SafetyNut
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image
File Execution Options\websteroidsservice.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\User\AppData\Local\Google\Chrome\User
Data\Default\preferences ]
Deleted [Search Provider] :
hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^HJ^xdm073^YYA^lt&si=pconvIE&ptb=1F4FA0D4-59DD-4846-A0F1-9468C342B370&ind=2014032106&n=780bb0ea&psa=&st=sb&searchfor={searchTerms}
Deleted [Search Provider] :
hxxp://www.searchgol.com/?q={searchTerms}&affID=119816&babsrc=SP_ss&mntrId=A027101111111111
Deleted [Search Provider] :
hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Search Provider] :
hxxp://dts.search-results.com/sr?src=crb&appid=342&systemid=406&sr=0&q={searchTerms}
Deleted [Search Provider] :
hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&ctid=CT3072253
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] :
hxxp://www.delta-search.com/?q={searchTerms}&affID=119816&babsrc=SP_ss&mntrId=A027101111111111
Deleted [Search Provider] :
hxxp://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=&
Deleted [Search Provider] :
hxxp://websearch.relevantsearch.info/?l=1&q={searchTerms}&pid=821&r=2013/10/13&hid=5307165326940081574&lg=EN&cc=SE&unqvl=38
Deleted [Search Provider] :
hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=128&systemid=488&v=n12521-400&apn_uid=3328136863184073&apn_dtid=TCH001&o=APN11459&apn_ptnrs=AG1&q={searchTerms}
Deleted [Startup_urls] :
hxxp://www.searchgol.com/?affID=119816&babsrc=HP_ss&mntrId=A027101111111111
Deleted [Startup_urls] : hxxp://www.sweetpacks-search.com/?barid=&src=10&
Deleted [Startup_urls] :
hxxp://www.searchgol.com/?affID=119816&babsrc=HP_ss&mntrId={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&ocid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&dt=072313|hxxp://www.sweetpacks-search.com/?barid=&src=10&|hxxp://mysearch.avg.com?cid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&mid=0d58be7ebc9d47d2a345d150386270b0-cacda28d47e9b5155fd982a336337393444e7fd7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-01
22:06:26&v=18.0.5.292&pid=safeguard&sg=&sap=hp
Deleted [Startup_urls] :
hxxp://www.searchgol.com/?affID=119816&babsrc=HP_ss&mntrId={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&ocid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&dt=072313|hxxp://www.sweetpacks-search.com/?barid=&src=10&|hxxp://mysearch.avg.com?cid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&mid=0d58be7ebc9d47d2a345d150386270b0-cacda28d47e9b5155fd982a336337393444e7fd7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-01
22:06:26&v=18.1.0.443&pid=safeguard&sg=&sap=hp|hxxp://www.searchgol.com/?affID=119816&babsrc=HP_ss&mntrId={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&ocid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&dt=072313|hxxp://www.sweetpacks-search.com/?barid=&src=10&|hxxp://mysearch.avg.com?cid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&mid=0d58be7ebc9d47d2a345d150386270b0-cacda28d47e9b5155fd982a336337393444e7fd7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-01
22:06:26&v=18.0.5.292&pid=safeguard&sg=&sap=hp|hxxp://mysearch.avg.com?cid={EB82CCFF-0793-48A8-8A15-FCCE2D60EA4C}&mid=0d58be7ebc9d47d2a345d150386270b0-cacda28d47e9b5155fd982a336337393444e7fd7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-01
22:06:26&v=18.0.5.292&pid=safeguard&sg=&sap=hp
Deleted [Startup_urls] :
hxxp://www.search.ask.com/?o=APN11459&gct=hp&d=488-128&v=n12521-400&t=4
Deleted [Homepage] : hxxp://mystart.incredimail.com/?a=6PQVoq0Bnk
Deleted [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
*************************
AdwCleaner[R0].txt - [8482 octets] - [08/07/2014 14:32:33]
AdwCleaner[S0].txt - [9264 octets] - [08/07/2014 14:33:23]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9324 octets] ##########