Možda tražite i:
Pomoć_Allek

MyCity » Ambulanta -> Arhiva Ambulante » Pomoć_Allek_opet :(

Pomoć_Allek_opet :(

Napisano na dan: 29.12.2008

Pomoć_Allek_opet :(

Sledeća strana

Pagination

Odgovori

Aleksandar_ČA Poslao: 29 Dec 2008 01:00 Idi na vrh
offline Aleksandar_ČA Novi MyCity građanin Pridružio: 18 Dec 2008 Poruke: 21	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 0:48:16, on 29.12.2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\WINDOWS\system32\oodag.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\WINDOWS\VM305_STI.EXE C:\Downloads\TEMPERATURA\DTemp.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\TuneUp Utilities 2008\RegistryCleaner.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe C:\Program Files\Maxthon2\Maxthon.exe C:\Program Files\ESET\ESET Smart Security\ekrn.exe C:\WINDOWS\system32\spoolsv.exe C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\yyy248.exe C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~tmpb.exe C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~tmpc.exe C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe C:\Documents and Settings\All Users\Application Data\1886258372\1792660497.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\Administrator\My Documents\drBora-virusolog\drBora.exe..exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157 O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: UrlHelper Class - {6D023EBF-70B8-45A6-9ED5-556515FA0FE4} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Windows Live pomagač za prijavljivanje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BSMediaBar.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [BigDog305] C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305) O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [nodenable] C:\Program Files\eset\nodenable.exe O4 - HKCU\..\Run: [Win32 utility for HDD temperature monitoring] C:\Downloads\TEMPERATURA\DTemp.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Objavi ovo u blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Objavi ovo u blogu u okviru usluge Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU) O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - eset.eu/OnlineScanner.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing) O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe -- End of file - 10537 bytes Dopuna: 29 Dec 2008 1:00 opet sam nagazio na nešto skinuo sam neku glupost pod imenom Sistem Security i sad mi se to svaki čas samo aktivira i opet mi se opojavila crvana značka na čijem balončiću piše You have a security problem i to se pojavljaije jednom u minuti jooooj poludeću

Profil

dr_Bora Poslao: 29 Dec 2008 15:29 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav... Opet. Potrebno je isključiti TeaTimer: Pokrenite Spybot S&D Kliknite Mode stavku u meniju Odaberite Advance Mode Na traci levo kliknite na Tools Kliknite na Resident Destiklirajte Resident Tea-Timer Zatvorite Spybot S&D Restartujte kompjuter. - Zatim skinuti program sa ovog linka na Desktop. - Pokrenuti ga dvoklikom i ispratiti uputstva. Nemojte zaboraviti da ponovo ukljucite ove opcije kada zavrsimo ciscenje. Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

Aleksandar_ČA Poslao: 31 Dec 2008 11:30 Idi na vrh
offline Aleksandar_ČA Novi MyCity građanin Pridružio: 18 Dec 2008 Poruke: 21	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! odradio sam kako ste mi rekli u temi pomoć_alek_opet ali vidim da je to zaključano odradiosam sa combofixom ali mi je sad još gora stvar pa se plašim da nisam nešto pogrešio sada mi diže sistem malo manje od pola sata ne mogu log posle combofixa da nalepime jer mi se itgubio šta da radim sada???

Profil

dr_Bora Poslao: 31 Dec 2008 12:14 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Tema nije bila zaključana. Lokacija loga je C:\ComboFix.txt.

Profil

Aleksandar_ČA Poslao: 31 Dec 2008 14:54 Idi na vrh
offline Aleksandar_ČA Novi MyCity građanin Pridružio: 18 Dec 2008 Poruke: 21	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 08-12-30.02 - Administrator 2008-12-31 10:50:41.4 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.511.97 [GMT 1:00] Running from: c:\documents and settings\Administrator\Desktop\Nova fascikla\ComboFix.exe AV: ESET NOD32 Antivirus 3.0 On-access scanning enabled (Updated) * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\program files\Mozilla Firefox\components\iamfamous.dll c:\windows\system32\drivers\msqpdxmoojlgqk.sys c:\windows\system32\msqpdxcyaodjer.dll D:\Autorun.inf D:\resycled d:\resycled\boot.com . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_MSQPDXSERV.SYS ((((((((((((((((((((((((( Files Created from 2008-11-28 to 2008-12-31 ))))))))))))))))))))))))))))))) . 2008-12-29 03:28 . 2008-12-29 03:28 0 --a------ c:\windows\system32\cid_store.dat 2008-12-20 15:59 . 2008-12-08 17:01 55,136 --a------ c:\windows\system32\drivers\fssfltr_tdi.sys 2008-12-20 15:56 . 2008-12-20 15:56 <DIR> d-------- c:\program files\Microsoft Sync Framework 2008-12-20 15:52 . 2008-12-20 15:52 <DIR> d-------- c:\program files\Windows Live SkyDrive 2008-12-18 14:11 . 2008-12-18 14:13 <DIR> d-------- c:\program files\ClamWinPortable 2008-12-17 19:08 . 2008-12-21 15:00 54,156 --ah----- c:\windows\QTFont.qfn 2008-12-17 19:08 . 2008-12-17 19:08 1,409 --a------ c:\windows\QTFont.for 2008-12-16 20:31 . 2008-12-16 20:35 <DIR> d-------- c:\documents and settings\All Users\Application Data\WinZip 2008-12-16 19:52 . 2008-12-16 19:56 <DIR> d-------- c:\program files\RogueRemover FREE 2008-12-16 19:33 . 2008-12-16 19:33 <DIR> d-------- c:\program files\Secunia 2008-12-13 18:16 . 2008-12-31 09:12 <DIR> d-------- c:\documents and settings\Administrator\Tracing 2008-12-13 17:25 . 2008-12-13 17:25 <DIR> d-------- c:\program files\Microsoft Office Outlook Connector 2008-12-13 17:24 . 2008-09-04 22:03 56,344 --a------ c:\windows\system32\drivers\fssfltr.sys 2008-12-13 17:17 . 2008-12-13 17:17 <DIR> d-------- c:\program files\Microsoft 2008-12-13 17:05 . 2008-12-13 17:05 <DIR> d-------- c:\program files\Common Files\Windows Live 2008-12-12 01:47 . 2008-12-29 00:59 <DIR> d-------- c:\documents and settings\All Users\Application Data\EmailNotifier 2008-12-10 15:17 . 2008-12-10 15:17 7,808 --a------ c:\windows\system32\drivers\psi_mf.sys 2008-12-07 22:09 . 2008-12-07 22:09 <DIR> d-------- c:\documents and settings\Administrator\.narya 2008-12-07 21:47 . 2008-12-07 22:10 <DIR> d-------- c:\documents and settings\Administrator\Application Data\bang 2008-12-06 01:52 . 2008-12-06 01:55 <DIR> d----c--- C:\NOD_upd 2008-12-04 23:27 . 2008-12-04 23:27 308,072 --a------ c:\windows\WLXPGSS.SCR 2008-12-02 22:37 . 2008-12-02 22:37 49,480 --a------ c:\windows\system32\sirenacm.dll 2008-12-02 01:13 . 2008-12-02 01:13 <DIR> d-------- c:\documents and settings\All Users\Application Data\Sandlot Games 2008-12-02 01:10 . 2008-12-02 01:26 <DIR> d-------- c:\program files\Tagged Games 2008-11-12 19:04 . 2008-11-12 19:04 <DIR> d----c--- C:\Arquivos de programas 2008-11-12 13:41 . 2008-10-24 12:21 455,296 -----c--- c:\windows\system32\dllcache\mrxsmb.sys 2008-11-12 13:38 . 2008-09-04 18:15 1,106,944 -----c--- c:\windows\system32\dllcache\msxml3.dll 2008-11-10 00:33 . 2008-11-10 00:33 <DIR> d----c--- C:\NOD_update 2008-11-06 09:23 . 2008-11-06 09:23 <DIR> d-------- c:\program files\Common Files\Skype 2008-11-06 09:23 . 2008-11-06 09:23 48 --ah----- c:\windows\system32\ezsidmv.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-31 09:36 --------- d-----w c:\documents and settings\Administrator\Application Data\Orbit 2008-12-31 00:37 --------- d-----w c:\documents and settings\Administrator\Application Data\Skype 2008-12-30 23:00 --------- d-----w c:\documents and settings\Administrator\Application Data\skypePM 2008-12-30 13:31 --------- d-----w c:\program files\Common Files\Symantec Shared 2008-12-29 20:09 --------- d-----w c:\program files\Orbitdownloader 2008-12-29 04:00 --------- d-----w c:\program files\Norton Security Scan 2008-12-29 04:00 --------- d-----w c:\documents and settings\Administrator\Application Data\MxBoost 2008-12-29 02:21 --------- d-----w c:\program files\Maxthon2 2008-12-27 05:34 --------- d-----w c:\program files\TuneUp Utilities 2008 2008-12-24 21:07 --------- d-----w c:\documents and settings\Administrator\Application Data\BearShare 2008-12-20 14:58 --------- d-----w c:\program files\Windows Live 2008-12-17 18:03 --------- d-----w c:\documents and settings\Administrator\Application Data\LimeWire 2008-12-17 17:24 --------- d-----w c:\program files\Maxthon 2008-12-16 20:32 --------- d-----w c:\program files\Yahoo! 2008-12-16 18:29 --------- d-----w c:\program files\Common Files\Adobe 2008-12-13 16:22 --------- d-----w c:\program files\Windows Live Toolbar 2008-12-13 08:35 --------- d-----w c:\program files\Common Files\Wise Installation Wizard 2008-12-10 19:22 --------- d-----w c:\program files\iSysCleaner Pro 2008-12-02 00:25 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP 2008-11-09 23:37 --------- d-----w c:\program files\Eset 2008-11-09 02:18 --------- d-----w c:\program files\Spybot - Search & Destroy 2008-11-01 07:04 --------- d-----w c:\program files\KingMania 2008-10-31 21:48 355,584 ----a-w c:\windows\system32\TuneUpDefragService.exe 2008-10-31 12:33 --------- d-----w c:\program files\OO Software 2008-10-23 12:36 286,720 ----a-w c:\windows\system32\gdi32.dll 2008-10-16 20:38 826,368 ----a-w c:\windows\system32\wininet.dll 2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll 2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll 2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll 2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll 2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll 2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe 2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll 2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll 2008-10-16 13:06 268,648 ----a-w c:\windows\system32\mucltui.dll 2008-10-16 13:06 208,744 ----a-w c:\windows\system32\muweb.dll 2008-10-03 10:02 247,326 ----a-w c:\windows\system32\strmdll.dll 2008-09-30 15:43 1,286,152 ----a-w c:\windows\system32\msxml4.dll 2008-09-15 12:12 1,846,400 ----a-w c:\windows\system32\win32k.sys 2008-09-10 01:14 1,307,648 ----a-w c:\windows\system32\msxml6.dll 2008-09-04 17:15 1,106,944 ----a-w c:\windows\system32\msxml3.dll 2008-03-14 22:08 81,920 ------w c:\documents and settings\Administrator\Application Data\ezpinst.exe 2008-03-14 22:08 47,360 ------w c:\documents and settings\Administrator\Application Data\pcouffin.sys 2008-02-08 21:42 32 ----a-w c:\documents and settings\All Users\Application Data\ezsid.dat 2007-10-30 23:44 3,056 ----a-w c:\program files\plugin-ignore.ini 2007-10-10 05:19 32 ----a-r c:\documents and settings\All Users\hash.dat 2007-08-16 18:57 67 ----a-w c:\program files\spellcheck.ini 2007-08-16 18:57 3,345 ----a-w c:\program files\OperaDef6.ini 2007-08-09 10:21 79,360 ----a-w c:\program files\Opera.exe 2007-08-09 10:21 34,816 ----a-w c:\program files\spellcheck.dll 2007-08-09 10:21 3,197,952 ----a-w c:\program files\Opera.dll 2007-08-09 10:21 25,600 ----a-w c:\program files\OUniAnsi.dll 2007-08-09 09:47 653,124 ----a-w c:\program files\chartables.bin 2007-08-09 09:47 218,821 ----a-w c:\program files\english.lng 2007-03-29 14:55 7,065 ----a-w c:\program files\search.ini 2007-03-22 07:00 99,142 ----a-w c:\program files\dialog.ini 2006-11-11 11:44 16,332,072 ----a-w c:\program files\Install_Messenger_nous.exe 2006-11-11 02:20 1,424,218 ----a-w c:\program files\nt3242ai.exe 2006-11-11 02:06 677,481 ----a-w c:\program files\ftpx1010.zip 2006-11-11 02:03 59,843 ----a-w c:\program files\magicm28.zip 2006-11-11 02:03 311,064 ----a-w c:\program files\sorpro2.zip 2006-10-03 09:19 2,099 ----a-w c:\program files\fastforward.ini 2006-06-27 13:10 3,888 ----a-w c:\program files\lngcode.txt 2006-05-19 14:44 1,363 ----a-w c:\program files\xmlentities.ini 2004-08-20 12:56 290 ----a-w c:\program files\c3nform.vxml 2004-02-26 11:35 7,904 ----a-w c:\program files\html40_entities.dtd 2002-08-03 12:33 147,456 ----a-w c:\program files\DTemp.exe 2002-08-01 00:40 65,536 ----a-w c:\program files\ReportTool.exe 2008-08-23 22:47 67,696 ----a-w c:\program files\mozilla firefox\components\jar50.dll 2008-08-23 22:47 54,376 ----a-w c:\program files\mozilla firefox\components\jsd3250.dll 2008-08-23 22:47 34,952 ----a-w c:\program files\mozilla firefox\components\myspell.dll 2008-08-23 22:47 46,720 ----a-w c:\program files\mozilla firefox\components\spellchk.dll 2008-08-23 22:47 172,144 ----a-w c:\program files\mozilla firefox\components\xpinstal.dll 2008-09-06 12:57 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008090620080907\index.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6D023EBF-70B8-45A6-9ED5-556515FA0FE4}] 2008-04-17 08:44 398776 --a------ c:\program files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nodenable"="c:\program files\eset\nodenable.exe" [2008-09-23 326823] "Win32 utility for HDD temperature monitoring"="c:\downloads\TEMPERATURA\DTemp.exe" [2002-08-03 147456] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2008-09-16 1833296] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2008-08-18 1447168] "BigDog305"="c:\windows\VM305_STI.EXE" [2005-08-05 61440] "QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2008-01-31 385024] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2008-03-26 1232896] c:\documents and settings\All Users\Start Menu\Programs\Startup\ Orbit.lnk - c:\program files\Orbitdownloader\orbitdm.exe [2007-06-12 1711304] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableChangePassword"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.3iv2"= 3ivxVfWCodec.dll "VIDC.HFYU"= huffyuv.dll "VIDC.VP31"= vp31vfw.dll "msacm.divxa32"= msaud32_divx.acm "msacm.dvacm"= c:\progra~1\COMMON~1\ULEADS~1\Vio\Dvacm.acm "msacm.ulmp3acm"= c:\progra~1\COMMON~1\ULEADS~1\MPEG\ulmp3acm.acm "msacm.mpegacm "= c:\progra~1\COMMON~1\ULEADS~1\MPEG\mpegacm.acm [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Acrobat Assistant.lnk] backup=c:\windows\pss\Acrobat Assistant.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^ATI CATALYST System Tray.lnk] backup=c:\windows\pss\ATI CATALYST System Tray.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC] --a------ 2006-01-02 18:41 45056 c:\program files\ATI Technologies\ATI.ACE\CLI.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] --a------ 2004-08-25 12:52 339968 c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] --a------ 2008-04-14 01:12 15360 c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] --------- 2005-07-14 21:35 1961984 c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2001-07-09 11:50 155648 c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] --a------ 2005-07-20 14:07 7110656 c:\windows\system32\nvcpl.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] --a------ 2005-07-20 14:07 86016 c:\windows\system32\nvmctray.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PVR Agent] --a------ 2005-04-29 16:00 748032 c:\program files\MSI\TV@Anywhere Plus\TVR\Scheduled.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] --------- 2003-10-31 19:42 32768 c:\program files\CyberLink\PowerDVD\PDVDServ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] --a------ 2008-08-04 00:02 36352 c:\program files\Winamp\winampa.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] --a------ 2005-07-20 14:07 1519616 c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] --a------ 2005-04-15 04:01 77824 c:\windows\SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "SDhelper"=2 (0x2) "ose"=3 (0x3) "NVSvc"=2 (0x2) "ATI Smart"=2 (0x2) "Ati HotKey Poller"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" "Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PCSync2.exe" /NoDialog "PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray "Search Protection"=c:\program files\Yahoo!\Search Protection\SearchProtection.exe "swg"=c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe "NCLaunch"=c:\windows\NCLAUNCH.EXe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "NeroFilterCheck"=c:\windows\system32\NeroCheck.exe "SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" "ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay "Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" "QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\QTTask.exe" -atboottime "FastTVSync"="c:\program files\Common Files\InterVideo\FastTVSync\FastTVSync.exe" "YSearchProtection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\ICQLite\\ICQLite.exe"= "c:\\Program Files\\Orbitdownloader\\orbitdm.exe"= "c:\\Program Files\\Orbitdownloader\\orbitnet.exe"= "c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"= "c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-08-18 34312] R2 ekrn;Eset Service;"c:\program files\ESET\ESET Smart Security\ekrn.exe" [2007-12-21 468224] R2 fssfltr;FssFltr;c:\windows\system32\DRIVERS\fssfltr_tdi.sys [2008-12-20 55136] R2 fsssvc;Windows Live Porodična bezbednost;"c:\program files\Windows Live\Family Safety\fsssvc.exe" [2008-12-08 533344] R2 SeaPort;SeaPort;"c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe" [2008-12-04 226640] R3 Cap713x;Philips Cap713x Video Capture;c:\windows\system32\DRIVERS\Cap713x.sys [2006-07-24 686080] R3 ZSMC0305;Look 316;c:\windows\system32\Drivers\usbVM305.sys [2007-11-03 1466624] S2 878TVCard;Bt878 TV Card - Video Capture;c:\windows\system32\drivers\Bt878.sys [2006-05-12 196736] S2 878TVTuner;Bt878 TV Card - TV Tuner;c:\windows\system32\drivers\BtTuner.sys [2006-05-12 9216] S2 878Xbar;Bt878 TV Card - Crossbar;c:\windows\system32\drivers\BtXbar.sys [2006-05-12 8448] S3 K320bus;Sony Ericsson K320 driver (WDM);c:\windows\system32\DRIVERS\K320bus.sys [2008-03-29 61504] S3 K320mdfl;Sony Ericsson K320 USB WMC Modem Filter;c:\windows\system32\DRIVERS\K320mdfl.sys [2008-03-29 9328] S3 K320mdm;Sony Ericsson K320 USB WMC Modem Driver;c:\windows\system32\DRIVERS\K320mdm.sys [2008-03-29 97056] S3 K320mgmt;Sony Ericsson K320 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\K320mgmt.sys [2008-03-29 88560] S3 K320obex;Sony Ericsson K320 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\K320obex.sys [2008-03-29 86368] S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2008-07-27 138112] S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2008-07-27 8320] S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2008-12-10 7808] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contents of the 'Scheduled Tasks' folder 2008-12-31 c:\windows\Tasks\1-Click Maintenance.job - c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-06-20 09:09] 2008-10-17 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 16:57] 2008-12-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1085031214-1708537768-725345543-500.job - c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-12-27 00:59] 2008-12-29 c:\windows\Tasks\Norton Security Scan for Administrator.job - c:\program files\Norton Security Scan\Nss.exe [2008-09-19 03:18] 2008-12-10 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job - c:\program files\Spybot - Search & Destroy\SpybotSD.exe [2008-07-30 13:45] . . ------- Supplementary Scan ------- . uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/http://www.yahoo.com/ext/search/search.html IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201 IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204 IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203 IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202 O16 -: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab c:\windows\Downloaded Program Files\Microsoft XML Parser for Java.osd FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1h82j3x0.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - prefs.js: browser.startup.homepage - hxxp://go.microsoft.com/fwlink/?LinkId=69157 FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=utf-8&fr=megaup&p= FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1h82j3x0.default\extensions\kodak-companion@mozilla.com\platform\WINNT\components\pickup.dll ATTENTION: FIREFOX POLICES IS IN FORCE FF - user.js: network.http.max-connections-per-server - 8 FF - user.js: content.max.tokenizing.time - 200000 FF - user.js: content.notify.interval - 100000 FF - user.js: nglayout.initialpaint.delay - 300 FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: content.switch.threshold - 650000 . *********************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2008-12-31 10:54:27 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... HKLM\Software\Microsoft\Windows\CurrentVersion\Run BigDog305 = c:\windows\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305)???????????????????0?????????@?????????????? scanning hidden files ... ************************************************************************ [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\msqpdxserv.sys] "imagepath"="\systemroot\system32\drivers\msqpdxmoojlgqk.sys" . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'winlogon.exe'(636) c:\windows\system32\Ati2evxx.dll . Completion time: 2008-12-31 10:57:17 ComboFix-quarantined-files.txt 2008-12-31 09:55:59 Pre-Run: 304,218,112 bytes free Post-Run: 758,005,760 bytes free 306 --- E O F --- 2008-12-31 05:55:45

Profil

dr_Bora Poslao: 01 Jan 2009 18:12 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ovo izgleda čisto. Trenutno stanje? I kakvu internet konekciju koristiš? Dopuna: 01 Jan 2009 18:12 I, Aleksande, da li je i sada tema zaključana? Startuje li Windows sada kako treba?

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Pomoć_Allek_opet :(

Ko je trenutno na forumu

Ukupno su 778 korisnika na forumu :: 6 registrovanih, 1 sakriven i 771 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 39mm, _Rade, acatomic, mrav pesadinac, Tila Painen, voja64

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by