Problem pri startovanju racunara

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Pozdravio bih vas ,posto sam odusevljen pomoci koju nesebicno pruzate,pri resavanju problema oko racunara,i zelim vam svako dobro.

Ja imam problem oko startovanja racunara , gde moram da sacekam da se podigne sistem oko 5-10 min i izlazi mi ovakva tri prozorcica na ekranu...


nvmctray.dll
missing entry:nvtaskbarinit

msiuww32.dll
missing entry:yeqafds

nvcpl.dll
A dinamic link libary(DLL) initialization failed



mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

Posta sam laik u ovim stvarima ,ako ste u mogucnosti pomoci ,bio bih vam veoma zahvalan

• 1Ovo se svidja korisniku: cilitis
  
  Registruj se da bi pohvalio/la poruku!

Pozdrav,

Pazljivo procitaj uputstvo:
http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

(fale logovi)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 02 Nov 2011 9:07

Izvinite na "glupom pitanju' ali svako pitanje nije glupo kada neznas,posto sam naveo da sam laik u ovome, kako da mi objasnite sta da uradim posto sam iz upustva postavljanja teme poslao to sto je napisano....koji logovi hvale i kako da to uradim.....

Dopuna: 02 Nov 2011 9:19

internet konekcija koju imam je adsl Orion ,brzina 420...problem se poceo javljati pre 5 dana ,verovatno aktivacijom (zabranjeno)-a ili kaygena za neki od programa ,instalirao sam bio malver zastitu , pokazao prisustvo virusa i ocistio sada nerma...Koristim Aviru free,a instalirao sam bio da ocisti kom paket Advanced system care Pro 4.1.0 .Sada je to ok ali pri pokretanju racunara izbaci tri prozorcica i stoji da hvale ove tri stavke koje sam gore napisao i traje podizanje sistema 5-10 min ..

Dopuna: 02 Nov 2011 10:28

• 1Ovo se svidja korisniku: cilitis
  
  Registruj se da bi pohvalio/la poruku!

Konkretno fali DDS log (imas sve u uputstvu koje sam okačio) i Attach... Sve je jasno napisano i po etapama.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 02 Nov 2011 11:15

Hvala puno.....samo jos jedno pitanje,moram nositi u servis ili mogu uz vasu pomoc to obaviti,posto nemam disk za NVIDIA.....NVIDIA 8400GS 163.71 / winxp_32bit.........hvala na svemu

Dopuna: 02 Nov 2011 11:29

Odgovorili ste pre mene,izvinite zbog pisanja a gde se nalazi upustvo ? Nisam mogao naci

• 1Ovo se svidja korisniku: cilitis
  
  Registruj se da bi pohvalio/la poruku!

Hajdemo još jednom.

Prema sledećem uputstvu:
http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

postavi neophodne izveštaje i postavi ih na forum. Bitno je da ih pravilno označiš. Naročito obrati pažnju na 3 gmer izveštaja.

Samo polako, ne žuri, sve ćemo srediti.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 02 Nov 2011 11:35

dDa li ja sam mogu ubaciti DDS log ili ide kod "mehanicara " xexexex veliki pozdrav i izvinite na dosadnoim pod pitanjima.....

Dopuna: 02 Nov 2011 11:36

Ok idem ponovo........

Dopuna: 02 Nov 2011 12:33

mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png





.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29
Run by owner at 12:47:44 on 2011-11-02
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.skip-search.com/?cfg=2-82-0-0&engine_id=2&provider_id=2&product_id=82&country=RS
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {1FD79A59-37B1-459B-9097-09F9FAB8A523} - No File
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: CDNSCacheObj Object: {376892ae-1825-4e5f-9f85-23f9640051cc} - c:\windows\mplayerplgn.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [MSIDLL] rundll32.exe msiuww32.dll,yeqafds
uRun: [VisualTaskTips] c:\program files\visualtasktips\visualtasktips.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [avrestart.exe] c:\program files\avira\antivir desktop\avrestart.exe
mRun: [NvCplDaemon] rundll32.exe c:\windows\system32\nvcpl.dll,nvstartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] rundll32.exe c:\windows\system32\nvmctray.dll,nvtaskbarinit
mRun: [DrvIcon] c:\program files\vista drive icon\drvicon.exe
mRun: [Lexmark X1100 Series] "c:\program files\lexmark x1100 series\lxbkbmgr.exe"
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\pdvdserv.exe"
mRun: [Smapp] c:\program files\analog devices\soundmax\SMTray.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\documents and settings\owner\application data\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1177316463750
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{15E13B7F-0590-4AEE-9375-86D10DA96DE7} : DhcpNameServer = 192.168.0.1 192.168.1.1
TCP: Interfaces\{328A07BF-0A62-4771-A364-4F693F54BF25} : DhcpNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\kwcbr7em.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://en-US.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=685749&p=
FF - prefs.js: network.proxy.type - 0
FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordext.dll
FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordlegacyext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\nitro pdf\reader 2\npnitromozilla.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
FF - Ext: TuneTune.net Converter: convert@tunetune.net - %profile%\extensions\convert@tunetune.net
FF - Ext: RapidShare DownloadHelper: rsDownloadHelper@yevgenyandrov.net - %profile%\extensions\rsDownloadHelper@yevgenyandrov.net
FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Tweak Network: {DAD0F81A-CF67-4eed-98D6-26F6E47274CA} - %profile%\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: PDF Download: {37E4D8EA-8BDA-4831-8EA1-89053939A250} - %profile%\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: YouTube to MP3: youtube2mp3@mondayx.de - %profile%\extensions\youtube2mp3@mondayx.de
FF - Ext: Download YouTube Videos as MP4 and FLV: {b9bfaf1c-a63f-47cd-8b9a-29526ced9060} - %profile%\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}
FF - Ext: Facebook Phishing Protector: {023e9ca0-63f3-47b1-bcb2-9badf9d9ef28} - %profile%\extensions\{023e9ca0-63f3-47b1-bcb2-9badf9d9ef28}
FF - Ext: Session Manager: {1280606b-2510-4fe0-97ef-9b5a22eafe30} - %profile%\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\Ext
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\DivXHTML5
.
---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2011-11-02 10:12:20 -------- d-----w- c:\program files\Wisdom-soft ScreenHunter 5 Free
2011-11-01 22:21:24 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-11-01 22:21:22 -------- d-----w- c:\program files\ffdshow
2011-11-01 21:33:23 -------- d-----w- c:\program files\VideoLAN
2011-11-01 20:40:42 -------- d-----w- c:\documents and settings\owner\application data\DDMSettings
2011-11-01 20:35:36 -------- d-----w- c:\program files\common files\DivX Shared
2011-11-01 15:51:09 -------- d-----w- c:\program files\URUSoft
2011-11-01 14:14:12 -------- d-----w- c:\program files\DivX
2011-11-01 13:25:36 4652985 ----a-w- c:\windows\klcodec462b.exe
2011-11-01 13:25:36 40960 ----a-w- c:\windows\Server.exe
2011-11-01 02:05:55 14336 ----a-w- c:\windows\system32\drivers\PN31Snoop.sys
2011-10-31 14:16:09 -------- d-----w- c:\documents and settings\owner\application data\Uniblue
2011-10-31 12:20:41 352256 ----a-w- c:\windows\system32\SETB5.tmp
2011-10-31 12:20:13 75776 ----a-w- c:\windows\system32\SETA4.tmp
2011-10-31 12:20:13 25088 ----a-w- c:\windows\system32\SETA5.tmp
2011-10-31 12:20:12 263552 -c----w- c:\windows\system32\dllcache\http.sys
2011-10-31 12:20:12 263552 ----a-w- c:\windows\system32\drivers\SETA6.tmp
2011-10-31 12:19:10 133632 ----a-w- c:\windows\system32\SET9D.tmp
2011-10-31 11:19:35 -------- d-----w- c:\documents and settings\owner\application data\Avira
2011-10-31 11:12:48 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-31 11:12:47 -------- d-----w- c:\program files\Avira
2011-10-31 11:12:47 -------- d-----w- c:\documents and settings\all users\application data\Avira
2011-10-31 10:51:13 2576 ----a-w- c:\windows\system32\ASOROSet.bin
2011-10-31 10:41:34 15592 ----a-w- c:\windows\system32\roboot.exe
2011-10-31 10:41:33 431936 ----a-w- c:\windows\system32\msvcp100.dll
2011-10-31 10:32:55 202240 ----a-w- c:\documents and settings\owner\local settings\application data\Keygenerator.exe
2011-10-31 01:20:20 -------- d-sh--w- c:\documents and settings\owner\UserData
2011-10-30 21:46:28 -------- d-----w- C:\backup
2011-10-30 21:22:47 -------- d-----w- c:\windows\Downloaded Program Files
2011-10-30 16:50:55 -------- d-----w- c:\documents and settings\owner\application data\DriverCure
2011-10-30 16:50:54 -------- d-----w- c:\documents and settings\owner\application data\ParetoLogic
2011-10-30 16:50:39 -------- d-----w- c:\documents and settings\all users\application data\ParetoLogic
2011-10-30 09:25:13 -------- d-----w- c:\documents and settings\all users\application data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-10-30 09:05:44 -------- d-----w- c:\documents and settings\owner\application data\Nullsoft
2011-10-28 18:34:10 647872 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2011-10-28 18:34:10 348160 ----a-w- c:\windows\system32\MFC30.DLL
2011-10-28 18:33:27 696320 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2011-10-28 18:33:27 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2011-10-28 18:33:27 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2011-10-28 18:33:27 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2011-10-28 18:33:27 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2011-10-28 18:33:26 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2011-10-28 18:33:25 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2011-10-28 09:45:25 -------- d-----w- c:\program files\MOJOSOFT
2011-10-28 09:45:25 -------- d-----w- c:\documents and settings\owner\application data\mojosoft
2011-10-28 08:30:22 4325376 ----a-w- c:\windows\system32\QtGui4.dll
2011-10-27 21:25:14 -------- d-----w- c:\documents and settings\owner\local settings\application data\PackageAware
2011-10-27 13:06:20 -------- d-----w- c:\program files\BusinessCardDesigner
2011-10-27 12:36:24 140096 ----a-w- c:\windows\system32\COMDLG32.OCX
2011-10-27 12:36:16 -------- d-----w- c:\windows\system32\gs
2011-10-27 10:50:58 -------- d-----w- c:\documents and settings\owner\local settings\application data\Thinstall
2011-10-27 10:50:58 -------- d-----w- c:\documents and settings\owner\application data\Thinstall
2011-10-27 09:49:48 -------- d-----w- c:\documents and settings\owner\application data\Summitsoft
2011-10-25 16:45:27 -------- d-----w- c:\documents and settings\owner\application data\ScreenSeven
2011-10-25 16:44:56 -------- d-----w- c:\documents and settings\all users\application data\Intenium
2011-10-25 08:29:42 -------- d-----w- c:\documents and settings\all users\application data\DivX
2011-10-24 11:12:21 -------- d-----w- c:\documents and settings\owner\application data\GetRightToGo
2011-10-24 11:10:55 -------- d-----w- c:\documents and settings\owner\application data\LogoMaker
2011-10-24 11:08:15 -------- d-----w- c:\program files\Studio V5
2011-10-23 16:50:14 90112 ----a-w- c:\windows\unvise32.exe
2011-10-23 16:47:41 -------- d-----w- c:\program files\The Logo Creator v5
2011-10-23 09:29:38 436792 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-10-20 17:16:41 -------- d-----w- c:\program files\AAALOGO2009
2011-10-20 17:12:52 174592 ----a-w- c:\windows\system32\msiuww32.dll
2011-10-19 08:49:51 -------- d-----w- c:\documents and settings\owner\local settings\application data\PCHealth
2011-10-19 07:57:44 454016 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-10-19 07:51:19 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
2011-10-19 07:51:18 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
2011-10-19 07:50:48 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2011-10-19 07:41:36 -------- d-----w- c:\windows\ServicePackFiles
2011-10-19 07:40:42 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-19 07:35:54 2137088 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-10-19 07:35:53 2181376 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-10-19 07:35:52 2016768 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-10-19 07:35:51 2058368 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-10-19 07:27:17 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-10-19 07:27:17 272128 ------w- c:\windows\system32\drivers\bthport.sys
2011-10-19 03:33:32 -------- d-----w- c:\documents and settings\all users\application data\PC Drivers HeadQuarters
2011-10-19 02:32:57 -------- d-----w- c:\program files\Windows Media Codec Pack
2011-10-18 20:17:27 -------- d-----w- c:\documents and settings\owner\application data\IObit
2011-10-18 17:04:20 -------- d-----w- c:\documents and settings\all users\application data\IObit
2011-10-18 17:01:58 -------- d-----w- c:\program files\IObit
2011-10-16 13:48:46 -------- d-----w- c:\documents and settings\owner\local settings\application data\HTSoft
2011-10-16 13:48:46 -------- d-----w- c:\documents and settings\owner\application data\Personal Numerologist
2011-10-16 13:48:46 -------- d-----w- c:\documents and settings\all users\application data\HWdata
2011-10-16 13:36:43 -------- d-----w- c:\documents and settings\all users\application data\Personal Numerologist
2011-10-16 12:52:10 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-16 12:52:10 476904 ----a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll
2011-10-16 12:52:10 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-16 09:05:09 25048 ----a-w- c:\program files\mozilla firefox\components\browserdirprovider.dll
2011-10-16 09:05:09 140248 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll
2011-10-16 09:05:08 66520 ----a-w- c:\program files\mozilla firefox\plugins\npnul32.dll
2011-10-16 09:05:08 505816 ----a-w- c:\program files\mozilla firefox\sqlite3.dll
2011-10-16 09:05:07 1015256 ----a-w- c:\program files\mozilla firefox\js3250.dll
2011-10-11 15:30:30 -------- d-----w- c:\documents and settings\all users\application data\MAGIX
2011-10-11 15:30:05 -------- d-----w- c:\documents and settings\all users\application data\Xara
2011-10-11 15:29:59 -------- d-----w- c:\program files\MSXML 4.0
2011-10-11 15:18:50 -------- d-----w- c:\documents and settings\owner\application data\MAGIX
2011-10-11 09:46:14 -------- d-----w- c:\program files\common files\Akamai
2011-10-11 09:00:56 -------- d-----w- c:\documents and settings\owner\local settings\application data\Solid State Networks
2011-10-11 07:48:40 26416 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2011-10-11 07:48:40 17712 ----a-w- c:\windows\system32\nitrolocalui2.dll
2011-10-11 07:48:25 -------- d-----w- c:\program files\Nitro PDF
2011-10-11 07:48:24 -------- d-----w- c:\program files\common files\Nitro PDF
2011-10-11 07:47:17 -------- d-----w- c:\documents and settings\owner\application data\Downloaded Installations
2011-10-11 07:37:19 116224 ----a-w- c:\windows\system32\pdfmonnt.dll
2011-10-11 07:37:09 -------- d-----w- c:\windows\system32\psconv
2011-10-11 07:37:09 -------- d-----w- c:\program files\psconvert
2011-10-11 07:34:18 -------- d-----w- c:\program files\Free PDF to Word Doc Converter
.
==================== Find3M ====================
.
2011-10-31 11:44:47 1404928 ----a-w- c:\windows\system32\nvcpl.dll
2011-09-30 07:41:37 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-09-30 07:41:37 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-09-26 21:14:50 2193 ----a-w- c:\windows\system32\MSSbs.sys
.
============= FINISH: 12:48:05,46 ===============

Dopuna: 02 Nov 2011 12:35

mycity.rs/must-login.png

• 1Ovo se svidja korisniku: cilitis
  
  Registruj se da bi pohvalio/la poruku!

Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix;
u prozoru koji se otvori klikni "I Agree".
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.

Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 02 Nov 2011 14:32

izveštaj koji je ComboFix napravio

mycity.rs/must-login.png



ComboFix 11-11-02.01 - owner 02.11.2011 15:14:24.1.1 - x86
Running from: c:\documents and settings\owner\Desktop\ComboFix.exe
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\owner\Application Data\doctor.exe
c:\documents and settings\owner\Local Settings\Application Data\Keygenerator.exe
c:\documents and settings\owner\WINDOWS
c:\windows\help\tours\htmltour\unlock_playing.htm
c:\windows\klcodec462b.exe
c:\windows\mplayerplgn.dll
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\server.exe
c:\windows\system32\Thumbs.db
.
.
((((((((((((((((((((((((( Files Created from 2011-10-02 to 2011-11-02 )))))))))))))))))))))))))))))))
.
.
2011-11-02 10:12 . 2011-11-02 10:12 -------- d-----w- c:\program files\Wisdom-soft ScreenHunter 5 Free
2011-11-01 22:21 . 2011-10-14 14:11 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-11-01 22:21 . 2011-11-01 22:21 -------- d-----w- c:\program files\ffdshow
2011-11-01 21:34 . 2011-11-02 00:33 -------- d-----w- c:\documents and settings\owner\Application Data\vlc
2011-11-01 21:33 . 2011-11-01 21:33 -------- d-----w- c:\program files\VideoLAN
2011-11-01 20:40 . 2011-11-01 20:40 -------- d-----w- c:\documents and settings\owner\Application Data\DDMSettings
2011-11-01 20:35 . 2011-11-01 20:36 -------- d-----w- c:\program files\Common Files\DivX Shared
2011-11-01 15:51 . 2011-11-01 16:34 -------- d-----w- c:\program files\URUSoft
2011-11-01 14:14 . 2011-11-01 21:02 -------- d-----w- c:\program files\DivX
2011-11-01 02:05 . 2011-11-01 18:24 14336 ----a-w- c:\windows\system32\drivers\PN31Snoop.sys
2011-10-31 14:16 . 2011-10-31 14:34 -------- d-----w- c:\documents and settings\owner\Application Data\Uniblue
2011-10-31 12:20 . 2009-08-25 09:47 352256 ----a-w- c:\windows\system32\SETB5.tmp
2011-10-31 12:20 . 2009-10-21 06:00 75776 ----a-w- c:\windows\system32\SETA4.tmp
2011-10-31 12:20 . 2009-10-21 06:00 25088 ----a-w- c:\windows\system32\SETA5.tmp
2011-10-31 12:20 . 2009-10-20 14:58 263552 -c----w- c:\windows\system32\dllcache\http.sys
2011-10-31 12:20 . 2009-10-20 14:58 263552 ----a-w- c:\windows\system32\drivers\SETA6.tmp
2011-10-31 12:19 . 2009-09-11 14:33 133632 ----a-w- c:\windows\system32\SET9D.tmp
2011-10-31 11:19 . 2011-10-31 11:19 -------- d-----w- c:\documents and settings\owner\Application Data\Avira
2011-10-31 11:12 . 2011-10-31 11:22 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-31 11:12 . 2011-10-31 11:22 138192 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-10-31 11:12 . 2010-06-17 13:27 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2011-10-31 11:12 . 2010-06-17 13:27 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2011-10-31 11:12 . 2011-10-31 11:12 -------- d-----w- c:\program files\Avira
2011-10-31 11:12 . 2011-10-31 11:12 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-10-31 10:51 . 2011-10-31 12:46 2576 ----a-w- c:\windows\system32\ASOROSet.bin
2011-10-31 10:41 . 2011-03-25 17:03 15592 ----a-w- c:\windows\system32\roboot.exe
2011-10-31 10:41 . 2011-03-25 04:35 431936 ----a-w- c:\windows\system32\msvcp100.dll
2011-10-31 01:20 . 2011-10-31 01:20 -------- d-sh--w- c:\documents and settings\owner\UserData
2011-10-30 21:46 . 2011-10-30 21:46 -------- d-----w- C:\backup
2011-10-30 21:22 . 2011-10-30 21:22 -------- d-----w- c:\windows\Downloaded Program Files
2011-10-30 16:50 . 2011-10-30 16:50 -------- d-----w- c:\documents and settings\owner\Application Data\DriverCure
2011-10-30 16:50 . 2011-10-30 16:50 -------- d-----w- c:\documents and settings\owner\Application Data\ParetoLogic
2011-10-30 16:50 . 2011-10-30 23:22 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2011-10-30 09:25 . 2011-10-30 21:46 -------- d-----w- c:\documents and settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-10-30 09:05 . 2011-10-30 09:05 -------- d-----w- c:\documents and settings\owner\Application Data\Nullsoft
2011-10-28 18:34 . 2005-01-05 14:30 647872 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2011-10-28 18:34 . 1995-02-28 21:00 348160 ----a-w- c:\windows\system32\MFC30.DLL
2011-10-28 18:33 . 2003-02-27 14:12 696320 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2011-10-28 18:33 . 2002-12-05 12:10 155648 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2011-10-28 18:33 . 2002-12-02 13:22 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2011-10-28 18:33 . 2002-12-02 11:33 57344 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2011-10-28 18:33 . 2002-12-02 11:33 237568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2011-10-28 18:33 . 2011-10-28 18:33 163972 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2011-10-28 18:33 . 2011-10-28 18:33 282756 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2011-10-28 09:45 . 2011-10-28 09:45 -------- d-----w- c:\program files\MOJOSOFT
2011-10-28 09:45 . 2011-10-28 09:45 -------- d-----w- c:\documents and settings\owner\Application Data\mojosoft
2011-10-28 08:30 . 2010-02-18 14:54 4325376 ----a-w- c:\windows\system32\QtGui4.dll
2011-10-27 21:25 . 2011-10-27 21:25 -------- d-----w- c:\documents and settings\owner\Local Settings\Application Data\PackageAware
2011-10-27 13:06 . 2011-10-27 13:26 -------- d-----w- c:\program files\BusinessCardDesigner
2011-10-27 12:36 . 2011-10-07 10:54 140096 ----a-w- c:\windows\system32\COMDLG32.OCX
2011-10-27 12:36 . 2011-10-27 13:08 -------- d-----w- c:\windows\system32\gs
2011-10-27 10:50 . 2011-10-27 10:50 -------- d-----w- c:\documents and settings\owner\Local Settings\Application Data\Thinstall
2011-10-27 10:50 . 2011-10-27 10:50 -------- d-----w- c:\documents and settings\owner\Application Data\Thinstall
2011-10-27 09:49 . 2011-10-27 09:49 -------- d-----w- c:\documents and settings\owner\Application Data\Summitsoft
2011-10-25 16:45 . 2011-10-25 16:45 -------- d-----w- c:\documents and settings\owner\Application Data\ScreenSeven
2011-10-25 16:44 . 2011-10-25 16:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Intenium
2011-10-25 08:32 . 2011-11-01 20:49 -------- d-----w- c:\documents and settings\owner\Application Data\DivX
2011-10-25 08:29 . 2011-11-01 20:37 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2011-10-24 11:12 . 2011-10-24 11:34 -------- d-----w- c:\documents and settings\owner\Application Data\GetRightToGo
2011-10-24 11:10 . 2011-10-24 11:11 -------- d-----w- c:\documents and settings\owner\Application Data\LogoMaker
2011-10-24 11:08 . 2011-10-24 11:08 -------- d-----w- c:\program files\Studio V5
2011-10-23 16:50 . 2004-03-29 14:23 90112 ----a-w- c:\windows\unvise32.exe
2011-10-23 16:47 . 2011-10-31 15:16 -------- d-----w- c:\program files\The Logo Creator v5
2011-10-23 09:29 . 2011-10-23 09:29 436792 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-10-22 08:49 . 2011-10-22 08:49 -------- d-----w- c:\program files\Microsoft Silverlight
2011-10-20 17:16 . 2011-10-20 17:16 -------- d-----w- c:\program files\AAALOGO2009
2011-10-20 17:12 . 2011-10-20 17:12 174592 ----a-w- c:\windows\system32\msiuww32.dll
2011-10-19 08:49 . 2011-10-19 08:49 -------- d-----w- c:\documents and settings\owner\Local Settings\Application Data\PCHealth
2011-10-19 07:57 . 2010-02-24 12:31 454016 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-10-19 07:51 . 2009-11-27 16:37 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
2011-10-19 07:51 . 2009-11-27 16:37 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
2011-10-19 07:50 . 2009-11-27 17:33 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2011-10-19 07:41 . 2011-10-19 07:41 -------- d-----w- c:\windows\ServicePackFiles
2011-10-19 07:40 . 2004-08-03 22:56 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-10-19 07:35 . 2010-02-16 13:17 2137088 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-10-19 07:35 . 2010-02-16 13:19 2181376 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-10-19 07:35 . 2010-02-16 12:39 2016768 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-10-19 07:35 . 2010-02-16 12:39 2058368 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-10-19 07:27 . 2008-06-13 13:10 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-10-19 07:27 . 2008-06-13 13:10 272128 ------w- c:\windows\system32\drivers\bthport.sys
2011-10-19 03:33 . 2011-10-19 03:33 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2011-10-19 02:32 . 2011-10-19 08:55 -------- d-----w- c:\program files\Windows Media Codec Pack
2011-10-18 20:17 . 2011-11-01 11:15 -------- d-----w- c:\documents and settings\owner\Application Data\IObit
2011-10-18 19:29 . 2011-10-18 19:29 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee
2011-10-18 17:04 . 2011-10-18 17:04 -------- d-----w- c:\documents and settings\All Users\Application Data\IObit
2011-10-18 17:01 . 2011-10-31 12:42 -------- d-----w- c:\program files\IObit
2011-10-16 19:21 . 2011-10-16 19:21 -------- d-----w- c:\program files\Common Files\Java
2011-10-16 13:48 . 2011-10-20 07:00 -------- d-----w- c:\documents and settings\owner\Application Data\Personal Numerologist
2011-10-16 13:48 . 2011-10-16 13:48 -------- d-----w- c:\documents and settings\owner\Local Settings\Application Data\HTSoft
2011-10-16 13:48 . 2011-10-16 13:48 -------- d-----w- c:\documents and settings\All Users\Application Data\HWdata
2011-10-16 13:36 . 2011-10-16 13:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Personal Numerologist
2011-10-16 12:52 . 2011-10-16 12:52 -------- d-----w- c:\windows\Sun
2011-10-16 12:52 . 2011-10-03 03:06 476904 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2011-10-16 12:52 . 2011-10-03 03:06 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-16 12:52 . 2011-10-03 00:37 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-10-16 12:51 . 2011-10-23 15:19 -------- d-----w- c:\program files\Java
2011-10-16 09:05 . 2011-10-18 19:26 25048 ----a-w- c:\program files\Mozilla Firefox\components\browserdirprovider.dll
2011-10-16 09:05 . 2011-10-18 19:26 140248 ----a-w- c:\program files\Mozilla Firefox\components\brwsrcmp.dll
2011-10-16 09:05 . 2011-10-18 19:26 505816 ----a-w- c:\program files\Mozilla Firefox\sqlite3.dll
2011-10-16 09:05 . 2011-10-18 19:26 66520 ----a-w- c:\program files\Mozilla Firefox\plugins\npnul32.dll
2011-10-16 09:05 . 2011-10-18 19:26 1015256 ----a-w- c:\program files\Mozilla Firefox\js3250.dll
2011-10-11 15:30 . 2011-10-11 15:30 -------- d-----w- c:\documents and settings\All Users\Application Data\MAGIX
2011-10-11 15:30 . 2011-10-11 15:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Xara
2011-10-11 15:29 . 2011-10-23 14:58 -------- d-----w- c:\program files\MSXML 4.0
2011-10-11 15:18 . 2011-10-11 15:30 -------- d-----w- c:\documents and settings\owner\Application Data\MAGIX
2011-10-11 09:46 . 2011-11-02 10:19 -------- d-----w- c:\program files\Common Files\Akamai
2011-10-11 09:02 . 2011-10-11 09:02 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-10-11 09:00 . 2011-10-30 21:46 -------- d-----w- c:\documents and settings\owner\Local Settings\Application Data\Solid State Networks
2011-10-11 07:49 . 2011-11-02 10:22 -------- d-----w- c:\documents and settings\owner\Application Data\Nitro PDF
2011-10-11 07:48 . 2011-10-10 06:31 17712 ----a-w- c:\windows\system32\nitrolocalui2.dll
2011-10-11 07:48 . 2011-10-10 06:31 26416 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2011-10-11 07:48 . 2011-10-11 07:48 -------- d-----w- c:\documents and settings\All Users\Application Data\Nitro PDF
2011-10-11 07:48 . 2011-10-11 07:48 -------- d-----w- c:\program files\Nitro PDF
2011-10-11 07:48 . 2011-10-11 07:48 -------- d-----w- c:\program files\Common Files\Nitro PDF
2011-10-11 07:47 . 2011-10-11 07:47 -------- d-----w- c:\documents and settings\owner\Application Data\Downloaded Installations
2011-10-11 07:37 . 2001-10-28 23:42 116224 ----a-w- c:\windows\system32\pdfmonnt.dll
2011-10-11 07:37 . 2011-10-11 07:37 -------- d-----w- c:\windows\system32\psconv
2011-10-11 07:37 . 2011-10-11 07:37 -------- d-----w- c:\program files\psconvert
2011-10-11 07:34 . 2011-10-11 07:34 -------- d-----w- c:\program files\Free PDF to Word Doc Converter
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-31 11:44 . 2007-09-16 23:07 1404928 ----a-w- c:\windows\system32\nvcpl.dll
2011-09-30 07:41 . 2003-03-18 20:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-09-30 07:41 . 2003-02-21 02:42 348160 ----a-w- c:\windows\system32\msvcr71.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSIDLL"="msiuww32.dll" [2011-10-20 174592]
"VisualTaskTips"="c:\program files\visualtasktips\visualtasktips.exe" [2006-03-14 34816]
"avrestart.exe"="c:\program files\Avira\AntiVir Desktop\avrestart.exe" [2011-10-31 195240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\nvcpl.dll" [2011-10-31 1404928]
"nwiz"="nwiz.exe" [2007-09-16 1626112]
"NvMediaCenter"="c:\windows\system32\nvmctray.dll" [2007-09-16 81920]
"DrvIcon"="c:\program files\vista drive icon\drvicon.exe" [2007-07-04 45056]
"Lexmark X1100 Series"="c:\program files\lexmark x1100 series\lxbkbmgr.exe" [2003-08-19 57344]
"RemoteControl"="c:\program files\cyberlink\powerdvd\pdvdserv.exe" [2004-11-02 32768]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2002-11-08 98304]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-01-10 281768]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2011-09-30 273528]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R2 gupdate;?????? Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-04-18 135664]
R3 cpuz134;cpuz134;c:\docume~1\owner\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-04-18 135664]
R3 N100;Compaq Ethernet or Fast Ethernet NIC Driver;c:\windows\system32\DRIVERS\n100325.sys [2001-08-17 128000]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-10-23 436792]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2004-08-03 14336]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-10-31 136360]
S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe [2011-10-10 196912]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - aftyqfod
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contents of the 'Scheduled Tasks' folder
.
2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-18 16:03]
.
2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-18 16:03]
.
2011-11-02 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-670792205-2225589205-3563514748-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-08-11 13:22]
.
2011-11-02 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-670792205-2225589205-3563514748-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-08-11 13:22]
.
2011-11-02 c:\windows\Tasks\User_Feed_Synchronization-{EF5539D9-73C2-488E-899E-A6A99A167973}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.skip-search.com/?cfg=2-82-0-0&engine_id=2&provider_id=2&product_id=82&country=RS
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\documents and settings\owner\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\owner\Application Data\Mozilla\Firefox\Profiles\kwcbr7em.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://en-US.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=685749&p=
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
FF - Ext: TuneTune.net Converter: convert@tunetune.net - %profile%\extensions\convert@tunetune.net
FF - Ext: RapidShare DownloadHelper: rsDownloadHelper@yevgenyandrov.net - %profile%\extensions\rsDownloadHelper@yevgenyandrov.net
FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Tweak Network: {DAD0F81A-CF67-4eed-98D6-26F6E47274CA} - %profile%\extensions\{DAD0F81A-CF67-4eed-98D6-26F6E47274CA}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: PDF Download: {37E4D8EA-8BDA-4831-8EA1-89053939A250} - %profile%\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: YouTube to MP3: youtube2mp3@mondayx.de - %profile%\extensions\youtube2mp3@mondayx.de
FF - Ext: Download YouTube Videos as MP4 and FLV: {b9bfaf1c-a63f-47cd-8b9a-29526ced9060} - %profile%\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}
FF - Ext: Facebook Phishing Protector: {023e9ca0-63f3-47b1-bcb2-9badf9d9ef28} - %profile%\extensions\{023e9ca0-63f3-47b1-bcb2-9badf9d9ef28}
FF - Ext: Session Manager: {1280606b-2510-4fe0-97ef-9b5a22eafe30} - %profile%\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\documents and settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2011-11-02 15:20
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
Completion time: 2011-11-02 15:25:11
ComboFix-quarantined-files.txt 2011-11-02 14:25
.
Pre-Run: 36.724.191.232 bytes free
Post-Run: 36.784.988.160 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 72FF3C85ACE346D0B3C1E4CDD6096E46

Dopuna: 02 Nov 2011 16:15

I posle ComboFix-a rezultat je isti .....

• 1Ovo se svidja korisniku: cilitis
  
  Registruj se da bi pohvalio/la poruku!

Postavi na forum, preko ovog linka: http://www.mycity.rs/ambulanta-upload.php , sledeću datoteku:

Citat:c:\windows\system32\dllcache\http.sys

Javi u temi kada upload-ujes.