Ne vide se hidden files and folders

Ne vide se hidden files and folders

offline
  • Pridružio: 03 Maj 2005
  • Poruke: 1298
  • Gde živiš: Vršac

Ne vide mi se hidden files and folders + Kaspersky nalazi trojance.
Inace, kompjuter nije usporen i sve drugo radi normalno.
Evo loga:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:10:53, on 12/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\USB_safe_remover\usb_safe_remover.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Steva\Desktop\New Folder\TR3.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.defaulthomepage.info
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [USB_safe_remover] "C:\Program Files\USB_safe_remover\usb_safe_remover.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Add to Media Manager... - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {EF58E341-49C3-4156-A3C4-5FFCA7C1EAB7} (EURAS_Portal.Gateway) - http://www.euras.com/euras/EIS/plugin/euras.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{5D4B581D-FDD2-4A82-A8EA-FBC55A5D8E6B}: NameServer = 212.200.191.166,212.200.190.166
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~2\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~2\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~2\kloehk.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8-) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

--
End of file - 7855 bytes

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Pozdrav...

Šta znači: ne vide se? Jesi li aktivirao prikaz? Ne možeš da aktiviraš prikaz? Ili?

Šta to KAV nalazi? Nazivi file-ova?

offline
  • Pridružio: 03 Maj 2005
  • Poruke: 1298
  • Gde živiš: Vršac

To mi je komp na poslu tako da ću nazive postaviti danas posle 10h.
Aktiviram prikaz, apply, ali oni se ne pojave. Javljam se čim dođem na posao sa još podataka, prvi post sam pisao posle radnog vremena, bio sam gladan pa sam žurio kući

Dopuna: 13 Jan 2009 12:42

Sad sam uradio sa apdejtovanim KAV-om full scan i nije nasao nista. Juce je znaci uspeo da pobrise one viruse nakon restarta.
Sto se tice hidden files-a sad sam opet probao. Idem na apply ali cim kliknem ok on mi verovatno opet vrati na Do NOT show hidden files and folders.

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Ok. Privremeno isključi zaštitni softver pre pokretanja idućeg programa.


Arrow Skini ComboFix sa jedne od sledecih adresa na Desktop:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://www.forospyware.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Startuj ga i ne diraj prozor programa dok skenira.
Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

offline
  • Pridružio: 03 Maj 2005
  • Poruke: 1298
  • Gde živiš: Vršac

Unapred se izvinjavam što ću okačiti log tek 15-og posle 10h (pošto ne radim danas zbog srpske nove godine). Vidim po vremenu javljanja da nam je slično radno vreme:-)

Dopuna: 15 Jan 2009 14:58

ComboFix 09-01-13.04 - Steva 2009-01-15 14:42:14.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.479.205 [GMT 1:00]
Running from: c:\documents and settings\Steva\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Outdated)
FW: Kaspersky Internet Security *disabled*
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system\msvbvm60.dll
c:\windows\system32\drivers\npf.sys
c:\windows\system32\Packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\wpcap.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_IPRIP
-------\Legacy_NPF
-------\Service_Iprip
-------\Service_NPF


((((((((((((((((((((((((( Files Created from 2008-12-15 to 2009-01-15 )))))))))))))))))))))))))))))))
.

2008-12-26 16:17 . 2008-12-26 16:18 <DIR> d-------- c:\program files\JAlbumWin
2008-12-25 12:50 . 2008-12-25 12:51 <DIR> d-------- c:\program files\Jalbum8.1
2008-12-23 15:41 . 2008-12-23 15:41 54,156 --ah----- c:\windows\QTFont.qfn
2008-12-23 15:41 . 2008-12-23 15:41 1,409 --a------ c:\windows\QTFont.for
2008-12-23 12:26 . 2008-12-23 12:28 <DIR> d-------- c:\program files\Web Page Maker
2008-12-23 12:26 . 2008-12-23 12:27 <DIR> d-------- c:\documents and settings\Steva\Application Data\Web Page Maker
2008-12-18 15:38 . 2009-01-09 15:24 406 --a------ c:\windows\wcx_ftp.ini
2008-12-18 15:33 . 2008-12-18 15:36 <DIR> d-------- C:\totalcmd
2008-12-18 15:33 . 2009-01-09 15:24 2,974 --a------ c:\windows\wincmd.ini
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\UC.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\RAR.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\PKZIP.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\PKUNZIP.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\NOCLOSE.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\LHA.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\ARJ.PIF
2008-12-18 14:30 . 2008-12-18 14:30 <DIR> d-------- c:\program files\Kristanix
2008-12-17 17:00 . 2008-12-17 17:00 <DIR> d-------- c:\program files\Express Thumbnail Creator
2008-12-16 20:26 . 2008-12-18 15:44 <DIR> d-------- c:\program files\FTP Commander
2008-12-16 13:17 . 2008-12-16 13:17 <DIR> d-------- c:\program files\MSECache

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-15 13:46 491,552 --sha-w c:\windows\system32\drivers\fidbox2.dat
2009-01-15 13:46 27,680 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-01-15 13:46 2,760 --sha-w c:\windows\system32\drivers\fidbox2.idx
2009-01-15 13:46 --------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-01-15 13:44 3,394,080 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-01-14 18:46 --------- d-----w c:\documents and settings\Steva\Application Data\skypePM
2009-01-14 18:46 --------- d-----w c:\documents and settings\Steva\Application Data\Skype
2009-01-13 16:34 --------- d-----w c:\program files\Golubovi
2009-01-12 15:58 38,912 ----a-w c:\windows\system32\sens.dll
2009-01-01 17:46 --------- d-----w c:\documents and settings\Steva\Application Data\OpenOffice.org2
2008-12-12 15:55 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-12 15:55 --------- d-----w c:\program files\Macromedia
2008-12-12 15:55 --------- d-----w c:\program files\Common Files\Macromedia
2008-12-09 12:41 --------- d-----w c:\documents and settings\Steva\Application Data\vlc
2008-12-08 11:47 --------- d-----w c:\program files\DVD Shrink
2008-12-08 10:29 --------- d-----w c:\program files\Ultra Video Splitter
2008-12-08 10:24 --------- d-----w c:\program files\Easy Video Splitter
2008-12-02 16:16 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-12-02 16:16 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2008-12-02 16:16 --------- d-----w c:\documents and settings\Steva\Application Data\PC Suite
2008-12-02 16:16 --------- d-----w c:\documents and settings\Steva\Application Data\Nokia
2008-12-02 16:07 --------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2008-12-02 16:06 --------- d-----w c:\program files\Common Files\PCSuite
2008-12-02 16:06 --------- d-----w c:\program files\Common Files\Nokia
2008-12-02 16:05 --------- d-----w c:\program files\PC Connectivity Solution
2008-12-02 16:05 --------- d-----w c:\program files\Nokia
2008-12-02 16:05 --------- d-----w c:\program files\DIFX
2008-12-02 16:04 --------- d-----w c:\documents and settings\All Users\Application Data\Installations
2008-12-02 10:42 96,976 ----a-w c:\windows\system32\drivers\klin.dat
2008-12-02 10:42 87,855 ----a-w c:\windows\system32\drivers\klick.dat
2008-12-02 10:27 --------- d-----w c:\program files\Kaspersky Lab
2008-11-28 11:13 --------- d-----w c:\program files\USB_safe_remover
2008-11-26 14:52 --------- d-----w c:\program files\OJOsoft
2008-11-26 14:52 --------- d-----w c:\program files\Common Files\Common Share
2008-11-26 14:04 --------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2008-11-25 10:56 --------- d-----w c:\program files\Opera
2008-11-24 12:54 --------- d-----w c:\program files\(zabranjeno)PDF
2008-11-21 14:59 --------- d-----w c:\documents and settings\Steva\Application Data\pdf995
2008-11-21 14:59 --------- d-----w c:\documents and settings\All Users\Application Data\pdf995
2008-11-21 14:55 51,716 ----a-w c:\windows\system32\pdf995mon.dll
2008-11-21 14:55 249,856 ----a-w c:\windows\system32\pdfmona.dll
2008-11-21 14:55 --------- d-----w c:\program files\pdf995
2008-11-18 13:41 --------- d-----w c:\program files\Video Strip Poker Full Version
2008-11-17 13:40 --------- d-----w c:\program files\TuneUp Utilities 2008
2008-11-17 13:39 306,432 ----a-w c:\windows\system32\TuneUpDefragService.exe
2008-11-17 13:38 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2008-11-17 13:38 --------- d-----w c:\documents and settings\All Users\Application Data\TuneUp Software
2008-11-17 13:13 --------- d-----w c:\documents and settings\Steva\Application Data\KlipFolio
2008-11-17 12:52 --------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-11-17 09:28 --------- d-----w c:\documents and settings\Steva\Application Data\dvdcss
2008-11-05 10:13 39,424 ----a-w c:\windows\zipinst.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-08-26 10:32 279944 --a------ c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB_safe_remover"="c:\program files\USB_safe_remover\usb_safe_remover.exe" [2008-11-26 197120]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2008-04-25 201992]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]

c:\documents and settings\Steva\Start Menu\Programs\Startup\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2007-10-23 1642496]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Utility Tray.lnk - c:\windows\system32\sistray.exe [2007-10-23 266240]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Meteo Fusion"="c:\program files\Eggiz\Meteo Fusion\Meteo Fusion.exe"
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 7\PCSync2.exe" /NoDialog
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Windows Peer-to-Peer Grouping
"3540:UDP"= 3540:UDP:Peer Name Resolution Protocol (PNRP)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784]
R1 SSHDRV86;SSHDRV86;c:\windows\system32\drivers\SSHDRV86.sys [2007-10-23 81408]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-03-25 24592]
R4 pardrv;pardrv;c:\windows\system32\drivers\pardrv.sys [2007-10-23 8832]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe [2008-11-04 33752]
S3 Vsbccmias;Vsbccmias; [x]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9a057b28-c766-11dd-b46f-0015f286c007}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe killVBS.vbs
.
Contents of the 'Scheduled Tasks' folder

2009-01-09 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 15:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=%s
IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm
IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Add to AMV Convert Tool... - c:\program files\MP3 Player Utilities 4.00\AMVConverter\grab.html
IE: Add to Media Manager... - c:\program files\MP3 Player Utilities 4.00\MediaManager\grab.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: {5D4B581D-FDD2-4A82-A8EA-FBC55A5D8E6B} = 212.200.191.166,212.200.190.166
FF - ProfilePath - c:\documents and settings\Steva\Application Data\Mozilla\Firefox\Profiles\iyxcbnpj.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPEU32.dll
FF - plugin: c:\program files\Opera\program\plugins\NPEU32.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-15 14:46:22
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1272)
c:\windows\system32\klogon.dll

- - - - - - - > 'lsass.exe'(1328-)
c:\windows\system32\relog_ap.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\windows\system32\tcpsvcs.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-01-15 14:48:25 - machine was rebooted
ComboFix-quarantined-files.txt 2009-01-15 13:48:22

Pre-Run: 31.879.561.216 bytes free
Post-Run: 31,817,138,176 bytes free

217

Dopuna: 15 Jan 2009 15:07

Samo da dodam da su se pojavili sakriveni fajlovi!

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Otvoriti Notepad i iskopirati sledeci tekst:

Driver::
Vsbccmias

Registry::
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9a057b28-c766-11dd-b46f-0015f286c007}]


Snimiti na Desktop fajl iz Notepada kao "CFScript"




Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici.
Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.

offline
  • Pridružio: 03 Maj 2005
  • Poruke: 1298
  • Gde živiš: Vršac

ComboFix 09-01-13.04 - Steva 2009-01-16 11:48:54.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.479.165 [GMT 1:00]
Running from: c:\documents and settings\Steva\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Steva\Desktop\CFScript
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated)
FW: Kaspersky Internet Security *disabled*
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_Vsbccmias


((((((((((((((((((((((((( Files Created from 2008-12-16 to 2009-01-16 )))))))))))))))))))))))))))))))
.

2008-12-26 16:17 . 2008-12-26 16:18 <DIR> d-------- c:\program files\JAlbumWin
2008-12-25 12:50 . 2008-12-25 12:51 <DIR> d-------- c:\program files\Jalbum8.1
2008-12-23 15:41 . 2008-12-23 15:41 54,156 --ah----- c:\windows\QTFont.qfn
2008-12-23 15:41 . 2008-12-23 15:41 1,409 --a------ c:\windows\QTFont.for
2008-12-23 12:26 . 2008-12-23 12:28 <DIR> d-------- c:\program files\Web Page Maker
2008-12-23 12:26 . 2008-12-23 12:27 <DIR> d-------- c:\documents and settings\Steva\Application Data\Web Page Maker
2008-12-18 15:38 . 2009-01-09 15:24 406 --a------ c:\windows\wcx_ftp.ini
2008-12-18 15:33 . 2008-12-18 15:36 <DIR> d-------- C:\totalcmd
2008-12-18 15:33 . 2009-01-09 15:24 2,974 --a------ c:\windows\wincmd.ini
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\UC.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\RAR.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\PKZIP.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\PKUNZIP.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\NOCLOSE.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\LHA.PIF
2008-12-18 15:33 . 2008-07-29 07:04 545 --a------ c:\windows\ARJ.PIF
2008-12-18 14:30 . 2008-12-18 14:30 <DIR> d-------- c:\program files\Kristanix
2008-12-17 17:00 . 2008-12-17 17:00 <DIR> d-------- c:\program files\Express Thumbnail Creator
2008-12-16 20:26 . 2008-12-18 15:44 <DIR> d-------- c:\program files\FTP Commander
2008-12-16 13:17 . 2008-12-16 13:17 <DIR> d-------- c:\program files\MSECache

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-16 10:52 499,744 --sha-w c:\windows\system32\drivers\fidbox2.dat
2009-01-16 10:52 3,404,832 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-01-16 10:52 27,680 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-01-16 10:52 2,788 --sha-w c:\windows\system32\drivers\fidbox2.idx
2009-01-16 09:04 --------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-01-14 18:46 --------- d-----w c:\documents and settings\Steva\Application Data\skypePM
2009-01-14 18:46 --------- d-----w c:\documents and settings\Steva\Application Data\Skype
2009-01-13 16:34 --------- d-----w c:\program files\Golubovi
2009-01-12 15:58 38,912 ----a-w c:\windows\system32\sens.dll
2009-01-01 17:46 --------- d-----w c:\documents and settings\Steva\Application Data\OpenOffice.org2
2008-12-12 15:55 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-12 15:55 --------- d-----w c:\program files\Macromedia
2008-12-12 15:55 --------- d-----w c:\program files\Common Files\Macromedia
2008-12-09 12:41 --------- d-----w c:\documents and settings\Steva\Application Data\vlc
2008-12-08 11:47 --------- d-----w c:\program files\DVD Shrink
2008-12-08 10:29 --------- d-----w c:\program files\Ultra Video Splitter
2008-12-08 10:24 --------- d-----w c:\program files\Easy Video Splitter
2008-12-02 16:16 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-12-02 16:16 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2008-12-02 16:16 --------- d-----w c:\documents and settings\Steva\Application Data\PC Suite
2008-12-02 16:16 --------- d-----w c:\documents and settings\Steva\Application Data\Nokia
2008-12-02 16:07 --------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2008-12-02 16:06 --------- d-----w c:\program files\Common Files\PCSuite
2008-12-02 16:06 --------- d-----w c:\program files\Common Files\Nokia
2008-12-02 16:05 --------- d-----w c:\program files\PC Connectivity Solution
2008-12-02 16:05 --------- d-----w c:\program files\Nokia
2008-12-02 16:05 --------- d-----w c:\program files\DIFX
2008-12-02 16:04 --------- d-----w c:\documents and settings\All Users\Application Data\Installations
2008-12-02 10:42 96,976 ----a-w c:\windows\system32\drivers\klin.dat
2008-12-02 10:42 87,855 ----a-w c:\windows\system32\drivers\klick.dat
2008-12-02 10:27 --------- d-----w c:\program files\Kaspersky Lab
2008-11-28 11:13 --------- d-----w c:\program files\USB_safe_remover
2008-11-26 14:52 --------- d-----w c:\program files\OJOsoft
2008-11-26 14:52 --------- d-----w c:\program files\Common Files\Common Share
2008-11-26 14:04 --------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2008-11-25 10:56 --------- d-----w c:\program files\Opera
2008-11-24 12:54 --------- d-----w c:\program files\(zabranjeno)PDF
2008-11-21 14:59 --------- d-----w c:\documents and settings\Steva\Application Data\pdf995
2008-11-21 14:59 --------- d-----w c:\documents and settings\All Users\Application Data\pdf995
2008-11-21 14:55 51,716 ----a-w c:\windows\system32\pdf995mon.dll
2008-11-21 14:55 249,856 ----a-w c:\windows\system32\pdfmona.dll
2008-11-21 14:55 --------- d-----w c:\program files\pdf995
2008-11-18 13:41 --------- d-----w c:\program files\Video Strip Poker Full Version
2008-11-17 13:40 --------- d-----w c:\program files\TuneUp Utilities 2008
2008-11-17 13:39 306,432 ----a-w c:\windows\system32\TuneUpDefragService.exe
2008-11-17 13:38 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2008-11-17 13:38 --------- d-----w c:\documents and settings\All Users\Application Data\TuneUp Software
2008-11-17 13:13 --------- d-----w c:\documents and settings\Steva\Application Data\KlipFolio
2008-11-17 12:52 --------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-11-17 09:28 --------- d-----w c:\documents and settings\Steva\Application Data\dvdcss
2008-11-05 10:13 39,424 ----a-w c:\windows\zipinst.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-08-26 10:32 279944 --a------ c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB_safe_remover"="c:\program files\USB_safe_remover\usb_safe_remover.exe" [2008-11-26 197120]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]

c:\documents and settings\Steva\Start Menu\Programs\Startup\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2007-10-23 1642496]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Utility Tray.lnk - c:\windows\system32\sistray.exe [2007-10-23 266240]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Meteo Fusion"="c:\program files\Eggiz\Meteo Fusion\Meteo Fusion.exe"
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 7\PCSync2.exe" /NoDialog
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Windows Peer-to-Peer Grouping
"3540:UDP"= 3540:UDP:Peer Name Resolution Protocol (PNRP)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784]
R1 SSHDRV86;SSHDRV86;c:\windows\system32\drivers\SSHDRV86.sys [2007-10-23 81408]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-03-25 24592]
R4 pardrv;pardrv;c:\windows\system32\drivers\pardrv.sys [2007-10-23 8832]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe [2008-11-04 33752]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder

2009-01-09 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 15:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=%s
IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm
IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Add to AMV Convert Tool... - c:\program files\MP3 Player Utilities 4.00\AMVConverter\grab.html
IE: Add to Media Manager... - c:\program files\MP3 Player Utilities 4.00\MediaManager\grab.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: {5D4B581D-FDD2-4A82-A8EA-FBC55A5D8E6B} = 212.200.191.166,212.200.190.166
FF - ProfilePath - c:\documents and settings\Steva\Application Data\Mozilla\Firefox\Profiles\iyxcbnpj.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPEU32.dll
FF - plugin: c:\program files\Opera\program\plugins\NPEU32.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-16 11:53:10
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1272)
c:\windows\system32\klogon.dll

- - - - - - - > 'lsass.exe'(1328-)
c:\windows\system32\relog_ap.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\windows\system32\tcpsvcs.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-01-16 11:54:54 - machine was rebooted
ComboFix-quarantined-files.txt 2009-01-16 10:54:50
ComboFix2.txt 2009-01-15 13:48:26

Pre-Run: 31.769.202.688 bytes free
Post-Run: 31,760,048,128 bytes free

207

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Ovo izgleda čisto.


Klikni START a zatim RUN
U liniju za unos teksta ukucaj Combofix /u i klikni OK





Sačekaj da se proces deinstalacije završi

Gornja procedura će:
Obrisati sledeće:
ComboFix i njegove file-ove i foldere
VundoFix Backups folder, ako postoji
C:\Deckard folder, ako postoji
C:\OtMoveIt folder, ako postoji

Resetovati podešavanja sata na kompjuteru
Sakriti ekstenzije file-ova, ako je potrebno
Sakriti sistemske/skrivene file-ove/foldere, ako je potrebno
Resetovati System Restore



To je sve.

offline
  • Pridružio: 03 Maj 2005
  • Poruke: 1298
  • Gde živiš: Vršac

Hvala na svemu.

Ko je trenutno na forumu
 

Ukupno su 1119 korisnika na forumu :: 29 registrovanih, 6 sakrivenih i 1084 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: anta, Apok, Bane san, bufanje, darkojbn, Denaya, DENIRO, djboj, djuradj, Hans Gajger, havoc995, ILGromovnik, Kibice, Kubovac, kunktator, mercedesamg, milenko crazy north, Nemanja.M, ozzy, Parker, procesor, raketaš, rovac, sabac015555m, TangoSix, User98, W123, wolf431, zlatkoa987