MyCity » Ambulanta -> Arhiva Ambulante » Problem sa radom racunara

Problem sa radom racunara

Napisano na dan: 20.2.2012

Problem sa radom racunara

Sledeća strana

Pagination

Odgovori

Mishale2 Poslao: 20 Feb 2012 00:56 Idi na vrh
offline Mishale2 Novi MyCity građanin Milos Stevanovic Pridružio: 12 Avg 2010 Poruke: 12 Gde živiš: Leskovac	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav svima i hvala unapred, Imam dva konkretna problema, prvi je taj sto se ja vrlo malo razumem u racunare tako da mi i najmanji problemi izgledaju kao veliki. Drugi problem je usporeni rad racunara, kada otvaram mozilu treba mi oko pola minuta da je otvori, od jednom se ugasi neki program, ukoci se komp. itd. Problem imam vec nekih mesec dana . Koristim Avast antivirus, pustio sam ga juce on je detektovao neke viruse i ja sam ih prebacio u "move to chest", koristim sbb internet valjda 4mb/s. Sta mi je ciniti? I koliko je opasno? OTL.txt fajl [Link mogu videti samo ulogovani korisnici] OTL logfile created on: 20.2.2012 0:41:34 - Run 1 OTL by OldTimer - Version 3.2.33.0 Folder = C:\Users\Sandra & Milos\Desktop 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 0000241a \| Country: Srbija \| Language: SRM \| Date Format: d.M.yyyy 4,00 Gb Total Physical Memory \| 2,80 Gb Available Physical Memory \| 69,94% Memory free 8,00 Gb Paging File \| 6,74 Gb Available in Paging File \| 84,26% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 195,21 Gb Total Space \| 156,15 Gb Free Space \| 79,99% Space Free \| Partition Type: NTFS Drive D: \| 292,97 Gb Total Space \| 252,64 Gb Free Space \| 86,24% Space Free \| Partition Type: NTFS Drive E: \| 292,97 Gb Total Space \| 180,56 Gb Free Space \| 61,63% Space Free \| Partition Type: NTFS Drive F: \| 150,26 Gb Total Space \| 123,76 Gb Free Space \| 82,36% Space Free \| Partition Type: NTFS Drive G: \| 3,00 Gb Total Space \| 0,00 Gb Free Space \| 0,00% Space Free \| Partition Type: UDF Drive I: \| 5,58 Gb Total Space \| 0,00 Gb Free Space \| 0,00% Space Free \| Partition Type: UDF Computer Name: STEVANOVIC-PC \| User Name: Sandra & Milos \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.02.20 00:41:01 \| 000,583,680 \| ---- \| M] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe PRC - [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWOW64\PnkBstrB.exe PRC - [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2012.02.18 14:59:59 \| 000,924,632 \| ---- \| M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2012.01.03 14:10:42 \| 000,063,928 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011.11.28 19:01:24 \| 003,744,552 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2011.11.28 19:01:23 \| 000,044,768 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2011.10.15 09:53:00 \| 002,253,120 \| ---- \| M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011.10.15 00:54:40 \| 000,381,248 \| ---- \| M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ========== Modules (No Company Name) ========== MOD - [2012.02.18 14:59:59 \| 001,911,768 \| ---- \| M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2012.02.03 06:47:47 \| 008,527,008 \| ---- \| M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll MOD - [2011.10.15 00:54:26 \| 000,265,536 \| ---- \| M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll MOD - [2010.01.21 00:34:10 \| 008,793,952 \| ---- \| M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll MOD - [2010.01.09 19:18:18 \| 004,254,560 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ========== Win32 Services (SafeList) ========== SRV:64bit: - [2011.11.28 19:01:23 \| 000,044,768 \| ---- \| M] (AVAST Software) [Auto \| Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV:64bit: - [2010.09.22 18:10:10 \| 000,057,184 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV:64bit: - [2009.07.14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009.07.14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2007.04.19 15:43:56 \| 000,566,192 \| ---- \| M] ( ) [Auto \| Running] -- C:\Windows\SysNative\lxczcoms.exe -- (lxcz_device) SRV - [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () [Auto \| Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB) SRV - [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () [Auto \| Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2012.01.03 14:10:42 \| 000,063,928 \| ---- \| M] (Adobe Systems Incorporated) [Auto \| Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011.10.15 09:53:00 \| 002,253,120 \| ---- \| M] (NVIDIA Corporation) [Auto \| Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011.10.15 00:54:40 \| 000,381,248 \| ---- \| M] (NVIDIA Corporation) [Auto \| Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2010.03.18 12:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.06.10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2007.04.19 15:43:42 \| 000,537,520 \| ---- \| M] ( ) [Auto \| Running] -- C:\Windows\SysWow64\lxczcoms.exe -- (lxcz_device) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.01.01 01:04:11 \| 000,279,616 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011.12.31 23:45:48 \| 000,530,488 \| ---- \| M] () [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:64bit: - [2011.11.28 18:54:06 \| 000,591,192 \| ---- \| M] (AVAST Software) [File_System \| System \| Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx) DRV:64bit: - [2011.11.28 18:53:58 \| 000,304,472 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP) DRV:64bit: - [2011.11.28 18:52:22 \| 000,042,328 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr) DRV:64bit: - [2011.11.28 18:52:20 \| 000,058,712 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi) DRV:64bit: - [2011.11.28 18:52:11 \| 000,066,904 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt) DRV:64bit: - [2011.11.28 18:51:53 \| 000,024,408 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk) DRV:64bit: - [2011.10.14 13:57:00 \| 000,088,480 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:64bit: - [2011.10.14 13:56:57 \| 000,046,400 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:64bit: - [2011.07.08 00:21:28 \| 000,174,184 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2011.05.13 15:37:54 \| 000,048,488 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:64bit: - [2011.03.11 07:41:12 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:41:12 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.20 14:33:35 \| 000,078,720 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 12:07:05 \| 000,059,392 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.20 12:03:42 \| 000,020,992 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2010.08.04 14:17:14 \| 001,342,064 \| ---- \| M] (VIA Technologies, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV:64bit: - [2009.11.27 08:47:56 \| 000,067,072 \| ---- \| M] (Atheros Communications, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) DRV:64bit: - [2009.10.25 17:29:44 \| 000,023,552 \| ---- \| M] (Flint Incorporation) [Kernel \| System \| Stopped] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk) DRV:64bit: - [2009.07.14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2009.07.14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [Link mogu videti samo ulogovani korisnici]{searchTerms}&f=4 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Link mogu videti samo ulogovani korisnici] [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = astroburn-search.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 73 A3 28 66 14 7E CC 01 [binary data] IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search Results" FF - prefs.js..browser.search.order.1: "Search Results" FF - prefs.js..browser.search.suggest.enabled: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://tr.v9.com/sof/sof_1318748372_459292" FF - user.js..browser.startup.homepage: "http://tr.v9.com/sof/sof_1318748372_459292" FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.11.29 12:13:19 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.02.18 15:00:00 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.01.14 16:38:50 \| 000,000,000 \| ---D \| M] [2011.11.03 14:54:44 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Extensions [2012.02.17 00:57:51 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions [2012.01.11 17:16:17 \| 000,000,000 \| ---D \| M] (uTorrentBar Community Toolbar) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2011.11.11 17:38:05 \| 000,000,000 \| ---D \| M] (My Web Search) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions\m3ffxtbr@mywebsearch.com [2011.12.31 23:40:40 \| 000,002,059 \| ---- \| M] () -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\searchplugins\absearch-search.xml [2012.02.04 08:56:50 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2012.02.18 15:00:00 \| 000,134,104 \| ---- \| M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2011.10.03 04:06:04 \| 000,476,904 \| ---- \| M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011.07.11 22:48:12 \| 000,012,800 \| ---- \| M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012.02.18 14:59:57 \| 000,002,252 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2011.10.01 06:48:26 \| 000,002,046 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml [2011.11.03 12:57:39 \| 000,002,515 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\SearchResults.xml [2012.02.18 14:59:57 \| 000,002,040 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== O1 HOSTS File: ([2009.06.10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (no name) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - No CLSID value found. O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - No CLSID value found. O4:64bit: - HKLM..\Run: [lxczbmgr.exe] C:\Program Files (x86)\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKCU..\Run: [AdobeBridge] File not found O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Link mogu videti samo ulogovani korisnici] (Shockwave Flash Object) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Link mogu videti samo ulogovani korisnici] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{412DD422-28C6-4648-8F09-A294F1C6E8DC}: DhcpNameServer = 89.216.1.40 89.216.1.50 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\ms-help - No CLSID value found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{3a69b012-ea0a-11e0-b23b-6c626df7de4a}\Shell - "" = AutoRun O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012.02.20 00:40:57 \| 000,583,680 \| ---- \| C] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe [2012.02.19 09:00:29 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Desktop\vasa [2012.02.18 22:39:10 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2012.02.18 22:37:10 \| 001,452,648 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420102.dll [2012.02.18 22:37:10 \| 000,174,184 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2012.02.18 22:37:10 \| 000,029,288 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2012.02.18 22:37:08 \| 024,796,992 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2012.02.18 22:37:08 \| 024,742,720 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2012.02.18 22:37:08 \| 018,871,616 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2012.02.18 22:37:08 \| 017,248,576 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2012.02.18 22:37:08 \| 015,693,120 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2012.02.18 22:37:08 \| 013,205,312 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2012.02.18 22:37:08 \| 007,581,504 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2012.02.18 22:37:08 \| 005,578,560 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2012.02.18 22:37:08 \| 002,808,128 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2012.02.18 22:37:08 \| 002,542,912 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2012.02.18 22:37:08 \| 002,401,088 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2012.02.18 22:37:08 \| 002,232,128 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2012.02.18 22:37:08 \| 002,099,520 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2012.02.18 22:37:08 \| 000,068,928 \| ---- \| C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2012.02.18 22:37:08 \| 000,061,248 \| ---- \| C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2012.02.18 22:08:39 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Documents\Battlefield 3 [2012.02.15 23:16:48 \| 000,096,256 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012.02.15 23:16:48 \| 000,072,704 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012.02.15 23:16:46 \| 002,308,096 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2012.02.15 23:16:46 \| 000,237,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012.02.15 23:16:46 \| 000,231,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012.02.15 23:16:46 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2012.02.15 23:16:45 \| 000,818,688 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.02.15 23:16:45 \| 000,716,800 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.02.15 23:16:45 \| 000,248,320 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012.02.15 23:16:44 \| 001,427,456 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2012.02.15 23:16:43 \| 001,493,504 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2012.02.15 07:40:07 \| 000,509,952 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll [2012.02.15 07:40:00 \| 000,515,584 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl [2012.02.15 07:40:00 \| 000,478,720 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl [2012.02.15 07:39:36 \| 000,634,880 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll [2012.02.12 15:24:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Desktop\zara [2012.02.09 14:59:18 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Paint.NET [2012.02.09 14:58:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\AppData\Local\Paint.NET [2012.02.03 06:47:43 \| 000,000,000 \| ---D \| C] -- C:\Windows\SysNative\Macromed [2012.01.30 18:56:18 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\AppData\Roaming\Skype [2012.01.30 18:55:59 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Skype [2012.01.25 18:56:42 \| 001,447,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2012.01.25 18:56:41 \| 000,395,776 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll [2012.01.25 18:56:41 \| 000,314,880 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll [2012.01.25 18:56:41 \| 000,136,192 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll [2012.01.25 18:56:41 \| 000,029,184 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll [2012.01.25 18:56:41 \| 000,028,160 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll [2012.01.04 16:14:35 \| 000,643,072 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczpmui.dll [2012.01.04 16:14:35 \| 000,413,696 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczinpa.dll [2012.01.04 16:14:35 \| 000,397,312 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxcziesc.dll [2012.01.04 16:14:34 \| 001,224,704 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczserv.dll [2012.01.04 16:14:34 \| 000,991,232 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczusb1.dll [2012.01.04 16:14:34 \| 000,696,320 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczhbn3.dll [2012.01.04 16:14:34 \| 000,684,032 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcomc.dll [2012.01.04 16:14:34 \| 000,585,728 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczlmpm.dll [2012.01.04 16:14:34 \| 000,537,520 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcoms.exe [2012.01.04 16:14:34 \| 000,421,888 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcomm.dll [2012.01.04 16:14:34 \| 000,385,968 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczih.exe [2012.01.04 16:14:34 \| 000,381,872 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcfg.exe [2012.01.04 16:14:34 \| 000,181,168 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczppls.exe [2012.01.04 16:14:34 \| 000,163,840 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczprox.dll [2012.01.04 16:14:34 \| 000,094,208 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczpplc.dll [2 C:\Windows\SysWow64\.tmp files -> C:\Windows\SysWow64\.tmp -> ] [1 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.02.20 00:41:01 \| 000,583,680 \| ---- \| M] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe [2012.02.20 00:37:18 \| 000,014,192 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.02.20 00:37:18 \| 000,014,192 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.02.20 00:36:32 \| 000,727,202 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.02.20 00:36:32 \| 000,616,866 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2012.02.20 00:36:32 \| 000,106,048 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2012.02.20 00:36:00 \| 000,000,914 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.02.20 00:32:16 \| 000,000,910 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.02.20 00:31:58 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2012.02.20 00:31:57 \| 3220,578,304 \| -HS- \| M] () -- C:\hiberfil.sys [2012.02.18 18:27:42 \| 028,120,992 \| ---- \| M] () -- C:\Users\Sandra & Milos\Desktop\SDV_0713.MP4 [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.02.18 16:37:14 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.02.17 00:46:18 \| 004,971,608 \| ---- \| M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.02.15 11:18:40 \| 000,414,368 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2 C:\Windows\SysWow64\.tmp files -> C:\Windows\SysWow64\.tmp -> ] [1 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files Created - No Company Name ========== [2012.02.18 18:26:54 \| 028,120,992 \| ---- \| C] () -- C:\Users\Sandra & Milos\Desktop\SDV_0713.MP4 [2012.02.18 16:37:13 \| 000,189,248 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.02.18 16:37:13 \| 000,189,248 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.02.17 23:58:50 \| 002,580,552 \| R--- \| C] () -- C:\Windows\SysWow64\pbsvc.exe [2012.02.09 15:00:00 \| 000,001,188 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk [2012.01.04 16:15:11 \| 000,000,213 \| ---- \| C] () -- C:\Windows\Lexstat.ini [2012.01.04 16:14:35 \| 000,413,696 \| ---- \| C] () -- C:\Windows\SysWow64\lxczutil.dll [2012.01.04 16:14:35 \| 000,274,432 \| ---- \| C] () -- C:\Windows\SysWow64\LXCZinst.dll [2011.11.04 14:19:24 \| 000,000,132 \| ---- \| C] () -- C:\Users\Sandra & Milos\AppData\Roaming\Adobe BMP Format CS5 Prefs [2011.10.19 22:35:05 \| 000,005,632 \| ---- \| C] () -- C:\Users\Sandra & Milos\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.10.15 00:54:52 \| 000,321,856 \| ---- \| C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.10.14 09:20:45 \| 000,763,706 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.10.03 21:47:48 \| 000,000,010 \| ---- \| C] () -- C:\Windows\popcinfo.dat ========== Alternate Data Streams ========== @Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:1CE11B51 < End of report > avast extras.txt fajl [Link mogu videti samo ulogovani korisnici]

Profil

Fil Poslao: 20 Feb 2012 03:00 Idi na vrh
offline Fil Legendarni građanin Pridružio: 11 Jun 2009 Poruke: 16586	1Ovo se svidja korisniku: mcrule Registruj se da bi pohvalio/la poruku! Pozdrav, Ne priključuj USB memorijske uređaje dok ti to ne zatražim. Ponovo pokreni program OTL dvoklikom na ikonicu; U beli okvir prozora gde piše Custom Scans/Fixes iskopiraj sledeći tekst: :OTL IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=bf1&s={searchTerms}&f=4 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.searchqu.com/406 [binary data] FF - prefs.js..browser.startup.homepage: "http://tr.v9.com/sof/sof_1318748372_459292" FF - user.js..browser.startup.homepage: "http://tr.v9.com/sof/sof_1318748372_459292" [2011.11.11 17:38:05 \| 000,000,000 \| ---D \| M] (My Web Search) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions\m3ffxtbr@mywebsearch.com [2011.12.31 23:40:40 \| 000,002,059 \| ---- \| M] () -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\searchplugins\absearch-search.xml [2011.10.01 06:48:26 \| 000,002,046 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found. O33 - MountPoints2\{3a69b012-ea0a-11e0-b23b-6c626df7de4a}\Shell - "" = AutoRun :files C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\searchplugins\absearch-search.xml C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions\m3ffxtbr@mywebsearch.com C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml :Commands [purity] [EmptyTemp] [Reboot] Klikni na dugme Run Fix; Izveštaj (Log) koji dobiješ iskopiraj ovde u poruci. Okači i svež OTL izveštaj po uputstvu za otvaranje teme Preuzmi instalaciju za program Malwarebytes Anti-Malware sa sledećeg linka: [Link mogu videti samo ulogovani korisnici] Dvoklikom pokreni instalaciju - na samom kraju procesa, proveri da su obeležene opcije: Update Malwarebytes' Anti-Malware; Launch Malwarebytes Anti-Malware; a zatim klikni Finish. Nakon završenog ažuriranja program će se pokrenuti. Izaberi opciju Perform Quick Scan i klikni Scan. Po završetku procesa klikni OK, Show Results: u listi detektovanog malware-a, obeleži sve stavke i klikni Remove Selected. Po završetku procesa, logfile će se otvoriti u Notepad-u; iskopiraj ga u temu na forumu. Ukoliko program zatraži restart kako bi se završio proces čišćenja, obavezno ga dozvoliti. Napomena: ako dođe do restarta na kraju procesa čišćenja, logfile će biti dostupan na Logs kartici (obeleži ga i klikni Open). Napiši i kakvo je stanje sa računarom.

Profil

Mishale2 Poslao: 20 Feb 2012 08:09 Idi na vrh
offline Mishale2 Novi MyCity građanin Milos Stevanovic Pridružio: 12 Avg 2010 Poruke: 12 Gde živiš: Leskovac	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 20 Feb 2012 8:00 -------------------------posle Run Fix---------------------------------------------- Files\Folders moved on Reboot... C:\Users\Sandra & Milos\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. File\Folder C:\Users\Sandra & Milos\AppData\Local\Mozilla\Firefox\Profiles\3u8x4dmr.default\Cache\_CACHE_001_ not found! File\Folder C:\Users\Sandra & Milos\AppData\Local\Mozilla\Firefox\Profiles\3u8x4dmr.default\Cache\_CACHE_002_ not found! File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot. Registry entries deleted on Reboot... --------------------------novi OTL file-------------------------------------------------- OTL logfile created on: 20.2.2012 7:44:01 - Run 2 OTL by OldTimer - Version 3.2.33.0 Folder = C:\Users\Sandra & Milos\Desktop 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 0000241a \| Country: Srbija \| Language: SRM \| Date Format: d.M.yyyy 4,00 Gb Total Physical Memory \| 2,93 Gb Available Physical Memory \| 73,35% Memory free 8,00 Gb Paging File \| 6,94 Gb Available in Paging File \| 86,77% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 195,21 Gb Total Space \| 156,21 Gb Free Space \| 80,02% Space Free \| Partition Type: NTFS Drive D: \| 292,97 Gb Total Space \| 252,64 Gb Free Space \| 86,24% Space Free \| Partition Type: NTFS Drive E: \| 292,97 Gb Total Space \| 180,56 Gb Free Space \| 61,63% Space Free \| Partition Type: NTFS Drive F: \| 150,26 Gb Total Space \| 123,76 Gb Free Space \| 82,36% Space Free \| Partition Type: NTFS Drive G: \| 3,00 Gb Total Space \| 0,00 Gb Free Space \| 0,00% Space Free \| Partition Type: UDF Drive I: \| 5,58 Gb Total Space \| 0,00 Gb Free Space \| 0,00% Space Free \| Partition Type: UDF Computer Name: STEVANOVIC-PC \| User Name: Sandra & Milos \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.02.20 00:41:01 \| 000,583,680 \| ---- \| M] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe PRC - [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWOW64\PnkBstrB.exe PRC - [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2012.01.03 14:10:46 \| 000,035,736 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe PRC - [2012.01.03 14:10:42 \| 000,063,928 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011.11.28 19:01:24 \| 003,744,552 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2011.11.28 19:01:23 \| 000,044,768 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2011.11.10 10:17:04 \| 003,514,176 \| ---- \| M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe PRC - [2011.10.15 09:53:00 \| 002,253,120 \| ---- \| M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011.10.15 00:54:40 \| 000,381,248 \| ---- \| M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2009.04.27 15:20:02 \| 000,074,408 \| ---- \| M] (Lexmark International, Inc.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmgr.exe PRC - [2009.04.27 15:19:38 \| 000,058,024 \| ---- \| M] (Lexmark International, Inc.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmon.exe ========== Modules (No Company Name) ========== ========== Win32 Services (SafeList) ========== SRV:64bit: - [2011.11.28 19:01:23 \| 000,044,768 \| ---- \| M] (AVAST Software) [Auto \| Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV:64bit: - [2010.09.22 18:10:10 \| 000,057,184 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV:64bit: - [2009.07.14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009.07.14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2007.04.19 15:43:56 \| 000,566,192 \| ---- \| M] ( ) [Auto \| Running] -- C:\Windows\SysNative\lxczcoms.exe -- (lxcz_device) SRV - [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () [Auto \| Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB) SRV - [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () [Auto \| Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2012.01.03 14:10:42 \| 000,063,928 \| ---- \| M] (Adobe Systems Incorporated) [Auto \| Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011.10.15 09:53:00 \| 002,253,120 \| ---- \| M] (NVIDIA Corporation) [Auto \| Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011.10.15 00:54:40 \| 000,381,248 \| ---- \| M] (NVIDIA Corporation) [Auto \| Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2010.03.18 12:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.06.10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2007.04.19 15:43:42 \| 000,537,520 \| ---- \| M] ( ) [Auto \| Running] -- C:\Windows\SysWow64\lxczcoms.exe -- (lxcz_device) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.01.01 01:04:11 \| 000,279,616 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011.12.31 23:45:48 \| 000,530,488 \| ---- \| M] () [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:64bit: - [2011.11.28 18:54:06 \| 000,591,192 \| ---- \| M] (AVAST Software) [File_System \| System \| Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx) DRV:64bit: - [2011.11.28 18:53:58 \| 000,304,472 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP) DRV:64bit: - [2011.11.28 18:52:22 \| 000,042,328 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr) DRV:64bit: - [2011.11.28 18:52:20 \| 000,058,712 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi) DRV:64bit: - [2011.11.28 18:52:11 \| 000,066,904 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt) DRV:64bit: - [2011.11.28 18:51:53 \| 000,024,408 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk) DRV:64bit: - [2011.10.14 13:57:00 \| 000,088,480 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:64bit: - [2011.10.14 13:56:57 \| 000,046,400 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:64bit: - [2011.07.08 00:21:28 \| 000,174,184 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2011.05.13 15:37:54 \| 000,048,488 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:64bit: - [2011.03.11 07:41:12 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:41:12 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.20 14:33:35 \| 000,078,720 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 12:07:05 \| 000,059,392 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.20 12:03:42 \| 000,020,992 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2010.08.04 14:17:14 \| 001,342,064 \| ---- \| M] (VIA Technologies, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV:64bit: - [2009.11.27 08:47:56 \| 000,067,072 \| ---- \| M] (Atheros Communications, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) DRV:64bit: - [2009.10.25 17:29:44 \| 000,023,552 \| ---- \| M] (Flint Incorporation) [Kernel \| System \| Stopped] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk) DRV:64bit: - [2009.07.14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2009.07.14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = astroburn-search.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 73 A3 28 66 14 7E CC 01 [binary data] IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search Results" FF - prefs.js..browser.search.order.1: "Search Results" FF - prefs.js..browser.search.suggest.enabled: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "" FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.11.29 12:13:19 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.02.18 15:00:00 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.01.14 16:38:50 \| 000,000,000 \| ---D \| M] [2011.11.03 14:54:44 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Extensions [2012.02.20 07:19:24 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions [2012.01.11 17:16:17 \| 000,000,000 \| ---D \| M] (uTorrentBar Community Toolbar) -- C:\Users\Sandra & Milos\AppData\Roaming\Mozilla\Firefox\Profiles\3u8x4dmr.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2012.02.04 08:56:50 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2012.02.18 15:00:00 \| 000,134,104 \| ---- \| M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2011.10.03 04:06:04 \| 000,476,904 \| ---- \| M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011.07.11 22:48:12 \| 000,012,800 \| ---- \| M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012.02.18 14:59:57 \| 000,002,252 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2011.11.03 12:57:39 \| 000,002,515 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\SearchResults.xml [2012.02.18 14:59:57 \| 000,002,040 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== O1 HOSTS File: ([2009.06.10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (no name) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - No CLSID value found. O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - No CLSID value found. O4:64bit: - HKLM..\Run: [lxczbmgr.exe] C:\Program Files (x86)\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKCU..\Run: [AdobeBridge] File not found O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Link mogu videti samo ulogovani korisnici] (Shockwave Flash Object) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Link mogu videti samo ulogovani korisnici] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{412DD422-28C6-4648-8F09-A294F1C6E8DC}: DhcpNameServer = 89.216.1.40 89.216.1.50 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\ms-help - No CLSID value found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012.02.20 07:19:21 \| 000,000,000 \| ---D \| C] -- C:\_OTL [2012.02.20 00:40:57 \| 000,583,680 \| ---- \| C] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe [2012.02.19 09:00:29 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Desktop\vasa [2012.02.18 22:39:10 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2012.02.18 22:37:10 \| 001,452,648 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420102.dll [2012.02.18 22:37:10 \| 000,174,184 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2012.02.18 22:37:10 \| 000,029,288 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2012.02.18 22:37:08 \| 024,796,992 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2012.02.18 22:37:08 \| 024,742,720 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2012.02.18 22:37:08 \| 018,871,616 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2012.02.18 22:37:08 \| 017,248,576 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2012.02.18 22:37:08 \| 015,693,120 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2012.02.18 22:37:08 \| 013,205,312 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2012.02.18 22:37:08 \| 007,581,504 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2012.02.18 22:37:08 \| 005,578,560 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2012.02.18 22:37:08 \| 002,808,128 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2012.02.18 22:37:08 \| 002,542,912 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2012.02.18 22:37:08 \| 002,401,088 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2012.02.18 22:37:08 \| 002,232,128 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2012.02.18 22:37:08 \| 002,099,520 \| ---- \| C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2012.02.18 22:37:08 \| 000,068,928 \| ---- \| C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2012.02.18 22:37:08 \| 000,061,248 \| ---- \| C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2012.02.18 22:08:39 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Documents\Battlefield 3 [2012.02.15 23:16:48 \| 000,096,256 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012.02.15 23:16:48 \| 000,072,704 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012.02.15 23:16:46 \| 002,308,096 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2012.02.15 23:16:46 \| 000,237,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012.02.15 23:16:46 \| 000,231,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012.02.15 23:16:46 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2012.02.15 23:16:45 \| 000,818,688 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.02.15 23:16:45 \| 000,716,800 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.02.15 23:16:45 \| 000,248,320 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012.02.15 23:16:44 \| 001,427,456 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2012.02.15 23:16:43 \| 001,493,504 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2012.02.15 07:40:07 \| 000,509,952 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll [2012.02.15 07:40:00 \| 000,515,584 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl [2012.02.15 07:40:00 \| 000,478,720 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl [2012.02.15 07:39:36 \| 000,634,880 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll [2012.02.12 15:24:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\Desktop\zara [2012.02.09 14:59:18 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Paint.NET [2012.02.09 14:58:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\AppData\Local\Paint.NET [2012.02.03 06:47:43 \| 000,000,000 \| ---D \| C] -- C:\Windows\SysNative\Macromed [2012.01.30 18:56:18 \| 000,000,000 \| ---D \| C] -- C:\Users\Sandra & Milos\AppData\Roaming\Skype [2012.01.30 18:55:59 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Skype [2012.01.25 18:56:42 \| 001,447,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2012.01.25 18:56:41 \| 000,395,776 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll [2012.01.25 18:56:41 \| 000,314,880 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll [2012.01.25 18:56:41 \| 000,136,192 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll [2012.01.25 18:56:41 \| 000,029,184 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll [2012.01.25 18:56:41 \| 000,028,160 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll [2012.01.04 16:14:35 \| 000,643,072 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczpmui.dll [2012.01.04 16:14:35 \| 000,413,696 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczinpa.dll [2012.01.04 16:14:35 \| 000,397,312 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxcziesc.dll [2012.01.04 16:14:34 \| 001,224,704 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczserv.dll [2012.01.04 16:14:34 \| 000,991,232 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczusb1.dll [2012.01.04 16:14:34 \| 000,696,320 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczhbn3.dll [2012.01.04 16:14:34 \| 000,684,032 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcomc.dll [2012.01.04 16:14:34 \| 000,585,728 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczlmpm.dll [2012.01.04 16:14:34 \| 000,537,520 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcoms.exe [2012.01.04 16:14:34 \| 000,421,888 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcomm.dll [2012.01.04 16:14:34 \| 000,385,968 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczih.exe [2012.01.04 16:14:34 \| 000,381,872 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczcfg.exe [2012.01.04 16:14:34 \| 000,181,168 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczppls.exe [2012.01.04 16:14:34 \| 000,163,840 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczprox.dll [2012.01.04 16:14:34 \| 000,094,208 \| ---- \| C] ( ) -- C:\Windows\SysWow64\lxczpplc.dll ========== Files - Modified Within 30 Days ========== [2012.02.20 07:36:00 \| 000,000,914 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.02.20 07:36:00 \| 000,000,910 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.02.20 07:30:03 \| 000,014,192 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.02.20 07:30:03 \| 000,014,192 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.02.20 07:29:09 \| 000,727,202 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.02.20 07:29:09 \| 000,616,866 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2012.02.20 07:29:09 \| 000,106,048 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2012.02.20 07:24:44 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2012.02.20 07:24:41 \| 3220,578,304 \| -HS- \| M] () -- C:\hiberfil.sys [2012.02.20 00:41:01 \| 000,583,680 \| ---- \| M] (OldTimer Tools) -- C:\Users\Sandra & Milos\Desktop\OTL.exe [2012.02.18 18:27:42 \| 028,120,992 \| ---- \| M] () -- C:\Users\Sandra & Milos\Desktop\SDV_0713.MP4 [2012.02.18 16:37:26 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.02.18 16:37:14 \| 000,189,248 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.02.17 00:46:18 \| 004,971,608 \| ---- \| M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.02.15 11:18:40 \| 000,414,368 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl ========== Files Created - No Company Name ========== [2012.02.18 18:26:54 \| 028,120,992 \| ---- \| C] () -- C:\Users\Sandra & Milos\Desktop\SDV_0713.MP4 [2012.02.18 16:37:13 \| 000,189,248 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.02.18 16:37:13 \| 000,189,248 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012.02.18 16:37:08 \| 000,075,136 \| ---- \| C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.02.17 23:58:50 \| 002,580,552 \| R--- \| C] () -- C:\Windows\SysWow64\pbsvc.exe [2012.02.09 15:00:00 \| 000,001,188 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk [2012.01.04 16:15:11 \| 000,000,213 \| ---- \| C] () -- C:\Windows\Lexstat.ini [2012.01.04 16:14:35 \| 000,413,696 \| ---- \| C] () -- C:\Windows\SysWow64\lxczutil.dll [2012.01.04 16:14:35 \| 000,274,432 \| ---- \| C] () -- C:\Windows\SysWow64\LXCZinst.dll [2011.11.04 14:19:24 \| 000,000,132 \| ---- \| C] () -- C:\Users\Sandra & Milos\AppData\Roaming\Adobe BMP Format CS5 Prefs [2011.10.19 22:35:05 \| 000,005,632 \| ---- \| C] () -- C:\Users\Sandra & Milos\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.10.15 00:54:52 \| 000,321,856 \| ---- \| C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.10.14 09:20:45 \| 000,763,706 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.10.03 21:47:48 \| 000,000,010 \| ---- \| C] () -- C:\Windows\popcinfo.dat ========== Alternate Data Streams ========== @Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:1CE11B51 < End of report > -------------------------Izvestaj Malwarebytes------------------------------- Malwarebytes Anti-Malware (Trial) 1.60.1.1000 [Link mogu videti samo ulogovani korisnici] Database version: v2012.02.20.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Sandra & Milos :: STEVANOVIC-PC [administrator] Protection: Enabled 20.2.2012 7:53:16 mbam-log-2012-02-20 (07-53-16).txt Scan type: Quick scan Scan options enabled: Memory \| Startup \| Registry \| File System \| Heuristics/Extra \| Heuristics/Shuriken \| PUP \| PUM Scan options disabled: P2P Objects scanned: 197859 Time elapsed: 2 minute(s), 12 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 11 HKCR\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKLM\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 9 C:\Program Files (x86)\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\FunWebProducts\Installr (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\FunWebProducts\Installr\1.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\FunWebProducts\Installr\1.bin\chrome (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\FunWebProducts\ScreenSaver (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\FunWebProducts\ScreenSaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\MyWebSearch\bar (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Program Files (x86)\MyWebSearch\bar\Settings (Adware.MyWebSearch) -> Quarantined and deleted successfully. Files Detected: 1 C:\Program Files (x86)\MyWebSearch\bar\Settings\s_pid.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully. (end) Dopuna: 20 Feb 2012 8:09 Brze mi sad podize sistem, ali pokretanje mozile i dalje dugo traje

Profil

Fil Poslao: 20 Feb 2012 11:56 Idi na vrh
offline Fil Legendarni građanin Pridružio: 11 Jun 2009 Poruke: 16586	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi USBNoRisk na Desktop i pokreni ga dvostrukim klikom na ikonicu programa. - Sačekaj par sekundi dok program izvrši uvodno skeniranje. - Ubacuj redom sve USB memorijske uređaje u USB slot i svaki zadrži u slotu po 10 sekundi. Ukoliko imaš više uređaja za proveru, onda na parčetu papira vodi evidenciju kojim redom su ubacivani, jer će nam kasnije trebati taj podatak. - Kada završiš sa svim uređajima, klikni desni taster miša na sred prozora programa i odaberi opciju Save scrambled log. To će automatski otvoriti log u Notepadu. Iskopiraj nam taj log iz Notepada na forum. Objašnjenje: u USB memorijske uređaje spadaju svi oni uređaji koji po priključivanju na računar dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uređaji itd.

Profil

Mishale2 Poslao: 20 Feb 2012 13:38 Idi na vrh
offline Mishale2 Novi MyCity građanin Milos Stevanovic Pridružio: 12 Avg 2010 Poruke: 12 Gde živiš: Leskovac	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! USBNoRisk 2.7 (28 December 2010) by bobby Started at 20.2.2012 13:36:54 Searching for connected USB Mass storage... ---------------------------------------- ======================================== Searching for other storage... ---------------------------------------- C: {3834e8c6-ea58-11e0-970e-806e6f6e6963} D: {3834e8c7-ea58-11e0-970e-806e6f6e6963} E: {3834e8c8-ea58-11e0-970e-806e6f6e6963} F: {3834e8c9-ea58-11e0-970e-806e6f6e6963} ======================================== Scanning fixed storage... ---------------------------------------- No blocked files found on C: No autorun.inf files found on C: No mountpoint found for C: No mountpoint found for 3834e8c6-ea58-11e0-970e-806e6f6e6963 No Desktop.ini files found on C: ---------------------------------------- No blocked files found on D: No autorun.inf files found on D: No mountpoint found for D: No mountpoint found for 3834e8c7-ea58-11e0-970e-806e6f6e6963 No Desktop.ini files found on D: ---------------------------------------- No blocked files found on E: No autorun.inf files found on E: No mountpoint found for E: No mountpoint found for 3834e8c8-ea58-11e0-970e-806e6f6e6963 No Desktop.ini files found on E: ---------------------------------------- No blocked files found on F: No autorun.inf files found on F: No mountpoint found for F: No mountpoint found for 3834e8c9-ea58-11e0-970e-806e6f6e6963 No Desktop.ini files found on F: ---------------------------------------- ======================================== Initial scan finished! ======================================== New device connected at 20.2.2012 13:37:03 Scanning for connected USB mass storage... ---------------------------------------- H: {0774f690-ed05-11e0-af19-6c626df7de4a} Added H: ======================================== Scanning USB mass storage for files... ---------------------------------------- No blocked files found on H: ---------------------------------------- No autorun.inf files found on H: Sanitized mountpoint for 0774f690-ed05-11e0-af19-6c626df7de4a ---------------------------------------- No Desktop.ini files found on H: ---------------------------------------- No mimics found on drive H: ---------------------------------------- No .lnk/.pif/.com/.scr files found on drive H: ======================================== ======================================== Removed H: ========================================

Profil

Fil Poslao: 20 Feb 2012 15:33 Idi na vrh
offline Fil Legendarni građanin Pridružio: 11 Jun 2009 Poruke: 16586	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napravi nov folder na Desktopu - otvori avast (dvoklik na ikonicu u system trayu ili na ikonicu na Desktopu) i klikni na Održavanje pa zatim na Virusni kovčeg. - na tastaturi pritisni taster CTRL i slovo A (u isto vreme) kako bi označio sve što je avast pronašao i smestio u kovčeg. - klikni desnim tasterom miša na jedan od tih selektovanih objekata. Pojaviće se padajući meni u kom treba odabrati opciju raspakuj - na Desktopu izaberi folder koji si napravio. neophodno je napraviti ZIP ili RAR arhivu od tog foldera, kako bi nam poslao te uzorke na analizu (ukoliko ne znaš kako se prave ZIP ili RAR arhive, pročitaj deo (2) na sledećem linku [Link mogu videti samo ulogovani korisnici] ) - Kreiranu ZIP ili RAR arhivu je neophodno poslati preko sledeće forme: [Link mogu videti samo ulogovani korisnici]

Profil

Mishale2 Poslao: 20 Feb 2012 17:03 Idi na vrh
offline Mishale2 Novi MyCity građanin Milos Stevanovic Pridružio: 12 Avg 2010 Poruke: 12 Gde živiš: Leskovac	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Upload-ovao sam fajl

Profil

Fil Poslao: 20 Feb 2012 19:08 Idi na vrh
offline Fil Legendarni građanin Pridružio: 11 Jun 2009 Poruke: 16586	1Ovo se svidja korisniku: TwinHeadedEagle Registruj se da bi pohvalio/la poruku! Hvala na uploadu karantina. Dobro si uradio. Tvoj računar je čist što se tiče malware-a Ponovo pokreni OTL i klikni na opciju CleanUp. Neophodno je isključiti i ponovo uključiti System Restore. To možeš uraditi po sledećem uputstvu: [Link mogu videti samo ulogovani korisnici] Možeš obrisati i USBNoRisk. Preporučujem ti da koristiš program MCShield za zaštitu USB memorijskih uređaja. Program možeš preuzeti sa OVOG linka. Nakon instalacije programa, priključi USB memorijske uređaje, i oni će biti skenirani. Na kraju skeniranja ćeš dobiti izveštaj da je uređaj čist ili obaveštenje o uklonjenom malware-u. Takođe, poseti ovu temu da vidiš da li ti je pretraživač ranjiv i instaliraš ažurirane komponente [Link mogu videti samo ulogovani korisnici] ------------------------------- Što se tiče problema sa Firefoxom, otvori temu ovde: [Link mogu videti samo ulogovani korisnici] ... ako ne pomogne sledeće: Otvori Mozilla Firefox, klikni na meni Tools i odaberi Add-ons. Na tabovima Extensions i Plugins onemogući (disable) sve nepotrebne ekstenzije i pluginove (i one za koje ne znaš čemu služe). Testiraj da li se Firefox brže pokreće. - Ukoliko se pokreće, aktiviraj jednu po jednu ekstenziju/plugin dok ne shvatiš koja pravi problem, - Ukoliko nema promena, otvori temu u potforumu Web browseri (dao sam ti link).

Profil

Mishale2 Poslao: 20 Feb 2012 19:55 Idi na vrh
offline Mishale2 Novi MyCity građanin Milos Stevanovic Pridružio: 12 Avg 2010 Poruke: 12 Gde živiš: Leskovac	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala puno na pomoci druze

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa radom racunara

Ko je trenutno na forumu

Ukupno su 1027 korisnika na forumu :: 91 registrovanih, 4 sakrivenih i 932 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., Abebe Bikila, acatomic, Akiro, ALEXV, alternator, Apok, ArchaBasha, Avalon015, babaroga, BaneM75, Bloody, bobomicek, bobrothers, Bojan198527, bojan313, bojcistv, Bubimir, Car89, ccoogg123, Chainsaw, chitach, cifra, CirKhan, cvrle312, dak2, Dambi, Dejan_vw, Denaya, DENIRO, Djokkinen, doktor097, dovlafkcz, draganca, dulleo, E_Kurir, Feller, FileFinder, g_g, Gadafi1111, Gitzherai, grunff2, Igritelj, ikan, IQ116, Jakonjveliki, jodzula, Jomini, Kiki98TZ, Kubovac, Libertas, majstro, mat, mercedesamg, Mercury, Miki01, Miki281, milbos, milenko crazy north, mir, monomah, Naj-Turs, Natuzzi, neutrino, OldKresoje, opt1, Pale2025, pandur, Pangea, pirke96, Poof, Prašinar, Pururin, RajkoB, raketaš, Rebel Frank, Romuluss, rovac, samo opusteno, shajone, Srna, troki1971, Velizar Laro, vobo, vuksa72, zeka013, zoran ns, Zoran1959, Zorge, Zrcalo, 787

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by