Malware

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav.
Pozdrav.
Pre nekoliko dana kompijuter mi je radio uredno.Odjednom kad sam upalio kompijuter izbaci mi gresku koja glasi ovako :

Koristim 32-bitni sistem.

Windows - Unknown Disk Format
X Exception Processing Message c0000014 Parameters 75b6bf7c 4 75b6bf7c 75b6bf7c

Cancle Try Again Continue

Kad kliknem Try Again , ona mi to opet izbaci , kad idem X , onda mi to zatvori i ostane mi pozadina bez ikona , bez startnog menija , Prazna pozadina. Samo imam mis . Deskop slika je ista ko pre. Samo prazna. Sve klikcem , pokusavam ali nece nista . Moze pomoc?
LP

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav SpentaZ!














Ovde postoje neka pravila kojih se svi drzimo. Da bi smo mogli da ti pomognemo potrebno je da ostavis izvestaje dijagnostickih alata da pogledamo. Detaljno procitaj i isprati sve korake u Uputstvu sa ovog linka: http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html










goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Oprostite , i kod mene je isti slucaj , sve sam uradio kako ste naveli . evo Texta


ComboFix 11-08-19.02 - Panzalovic 08/20/2011 16:45:20.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1791.1134 [GMT -7:00]
Running from: c:\users\Panzalovic\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\windows\btc_client_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\geoiplist
c:\windows\geoiplist.rar
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\l1rezerv.exe
c:\windows\loader2.exe_ok
c:\windows\phoenix.rar
c:\windows\phoenix\kernels\phatk\__init__.py
c:\windows\phoenix\kernels\phatk\__init__.pyc
c:\windows\phoenix\kernels\phatk\BFIPatcher.py
c:\windows\phoenix\kernels\phatk\kernel.cl
c:\windows\phoenix\kernels\poclbm\__init__.py
c:\windows\phoenix\kernels\poclbm\__init__.pyc
c:\windows\phoenix\kernels\poclbm\BFIPatcher.py
c:\windows\phoenix\kernels\poclbm\kernel.cl
c:\windows\phoenix\phoenix.exe
c:\windows\proc_list1.log
c:\windows\rpcminer.rar
c:\windows\rpcminer\bitcoinminercuda_10.cubin
c:\windows\rpcminer\bitcoinminercuda_11.cubin
c:\windows\rpcminer\bitcoinminercuda_20.cubin
c:\windows\rpcminer\bitcoinmineropencl.cl
c:\windows\rpcminer\cudart32_32_16.dll
c:\windows\rpcminer\curllib.dll
c:\windows\rpcminer\libeay32.dll
c:\windows\rpcminer\libsasl.dll
c:\windows\rpcminer\openldap.dll
c:\windows\rpcminer\rpcminer-4way.exe
c:\windows\rpcminer\rpcminer-cpu.exe
c:\windows\rpcminer\rpcminer-cuda.exe
c:\windows\rpcminer\rpcminer-opencl.exe
c:\windows\rpcminer\ssleay32.dll
c:\windows\services32.exe
c:\windows\sysdriver32.exe
c:\windows\sysdriver32_.exe
c:\windows\system32\drivers\etc\HSTS~1
c:\windows\Temp\565277.exe
c:\windows\Temp\85882102-loader2.exe
c:\windows\ufa.rar
c:\windows\update.1\svchost.exe
c:\windows\update.2\svchost.exe
c:\windows\update.5.0\svchost.exe
c:\windows\update.tray-14-0\svchost.exe
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
c:\windows\winsetupapi.log
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_srvbtcclient
-------\Service_srviecheck
-------\Service_srvsysdriver32
-------\Service_wxpdrivers
.
.
((((((((((((((((((((((((( Files Created from 2011-07-20 to 2011-08-20 )))))))))))))))))))))))))))))))
.
.
2011-08-20 23:51 . 2011-08-20 23:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-08-20 02:21 . 2011-08-12 02:44 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BF549042-B56C-45CE-8942-4961221406D9}\mpengine.dll
2011-08-19 20:20 . 2011-08-19 20:20 -------- d--h--w- c:\windows\update.7.1
2011-08-19 19:10 . 2011-08-19 19:10 -------- d-----w- C:\$WINDOWS.~LS
2011-08-19 03:57 . 2011-08-19 04:16 -------- d-----w- c:\programdata\MFAData
2011-08-19 02:17 . 2011-08-19 02:17 -------- d-----w- c:\windows\ufa
2011-08-19 02:06 . 2011-08-19 02:06 -------- d-----w- c:\programdata\Symantec
2011-08-19 02:05 . 2011-08-19 19:31 -------- d-----w- c:\programdata\Norton
2011-08-19 02:02 . 2011-08-19 02:17 246272 ----a-w- c:\windows\unrar.exe
2011-08-19 02:00 . 2011-08-19 05:11 -------- d-----w- c:\windows\av_ico
2011-08-19 01:58 . 2011-08-20 23:36 -------- d--h--w- c:\windows\update.tray-14-0
2011-08-19 01:58 . 2011-08-19 05:11 -------- d--h--w- c:\windows\update.tray-14-0-lnk
2011-08-18 17:30 . 2011-08-18 17:30 -------- d-----w- c:\windows\system32\Adobe
2011-08-16 23:48 . 2011-08-16 23:48 -------- d-----w- c:\windows\system32\SPReview
2011-08-16 23:47 . 2011-08-16 23:47 -------- d-----w- c:\windows\system32\EventProviders
2011-08-14 20:19 . 2011-08-14 20:19 -------- d-----w- c:\programdata\NVIDIA
2011-08-14 15:41 . 2011-08-14 15:41 -------- d-----w- c:\program files\NVIDIA Corporation
2011-08-13 22:28 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-08-13 22:26 . 2010-11-20 12:29 101760 ----a-w- c:\windows\system32\consent.exe
2011-08-13 22:25 . 2010-11-20 12:21 318464 ----a-w- c:\windows\system32\WMPhoto.dll
2011-08-13 21:50 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-08-13 21:50 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-08-13 21:50 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-08-13 21:50 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-08-13 21:50 . 2011-03-25 02:57 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-08-13 21:50 . 2011-03-25 02:57 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-08-13 21:50 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-08-13 21:50 . 2011-03-11 05:39 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-08-13 21:50 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll
2011-08-13 21:50 . 2011-03-11 05:39 1211264 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-08-13 21:50 . 2011-03-11 05:39 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-08-13 21:49 . 2011-03-11 05:39 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2011-08-13 21:49 . 2011-03-11 05:38 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-08-13 21:49 . 2011-03-11 05:38 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-08-13 21:49 . 2011-03-11 05:38 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-08-13 21:49 . 2011-03-11 05:31 74240 ----a-w- c:\windows\system32\fsutil.exe
2011-08-13 18:27 . 2011-08-13 18:27 -------- d-----w- c:\windows\system32\Wat
2011-08-13 17:43 . 2011-08-13 17:43 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2011-08-13 02:03 . 2011-08-13 02:08 -------- d-----r- c:\program files\Skype
2011-08-13 02:03 . 2011-08-13 02:03 -------- d-----w- c:\programdata\Skype
2011-08-12 18:44 . 2011-08-12 18:44 -------- d-----w- c:\windows\Temp29546752-F3BB-E3E7-13A3-4E1889454556-Signatures
2011-08-12 05:57 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-08-12 05:57 . 2011-05-04 04:32 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-08-12 05:57 . 2011-05-04 04:32 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-08-12 05:57 . 2011-05-04 04:32 337408 ----a-w- c:\windows\system32\mssph.dll
2011-08-12 05:57 . 2011-05-04 04:32 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-08-12 05:57 . 2011-05-04 04:28 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-08-12 05:57 . 2011-05-04 04:28 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-08-12 05:57 . 2011-05-04 04:32 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-08-12 05:57 . 2011-05-04 04:28 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-08-12 05:57 . 2011-03-12 11:23 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-08-12 05:55 . 2011-04-29 02:46 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-08-12 05:55 . 2011-04-29 02:46 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-08-12 05:55 . 2011-04-29 02:46 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-08-12 05:55 . 2011-04-25 02:18 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-08-12 05:55 . 2011-02-18 05:39 31232 ----a-w- c:\windows\system32\prevhost.exe
2011-08-12 05:55 . 2011-02-25 05:34 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-12 05:55 . 2011-02-18 05:43 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-08-12 05:55 . 2011-06-23 04:33 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-08-12 05:54 . 2011-06-23 04:33 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-08-12 05:54 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-08-12 05:54 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-08-12 05:54 . 2011-02-19 06:30 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-08-12 05:54 . 2011-02-19 04:34 294912 ----a-w- c:\windows\system32\atmfd.dll
2011-08-12 05:54 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll
2011-08-12 05:54 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-08-12 05:54 . 2010-11-20 12:29 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-08-12 05:54 . 2010-11-20 11:56 107520 ----a-w- c:\windows\system32\cdd.dll
2011-08-12 05:53 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-08-12 05:53 . 2010-11-20 12:18 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2011-08-12 05:53 . 2011-07-09 02:30 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-08-12 05:53 . 2011-04-27 02:17 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-08-12 05:53 . 2011-04-27 02:17 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-08-12 05:53 . 2010-12-17 07:07 542208 ----a-w- c:\windows\system32\kerberos.dll
2011-08-12 05:53 . 2011-06-21 05:34 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-08-12 05:53 . 2010-11-20 12:29 187776 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2011-08-12 05:53 . 2011-05-03 04:30 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-08-12 05:50 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe
2011-08-12 05:49 . 2011-06-11 02:29 2334208 ----a-w- c:\windows\system32\win32k.sys
2011-08-12 05:47 . 2011-06-15 08:55 86016 ----a-w- c:\windows\system32\odbccu32.dll
2011-08-12 05:47 . 2011-06-15 08:55 81920 ----a-w- c:\windows\system32\odbccr32.dll
2011-08-12 05:47 . 2011-06-15 08:55 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2011-08-12 05:47 . 2011-06-15 08:55 122880 ----a-w- c:\windows\system32\odbccp32.dll
2011-08-12 05:47 . 2011-06-15 08:54 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2011-08-12 05:47 . 2011-06-15 08:55 163840 ----a-w- c:\windows\system32\odbctrac.dll
2011-08-12 05:47 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-08-12 05:47 . 2010-11-20 12:18 219136 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-08-12 05:46 . 2011-04-29 04:57 759296 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2011-08-12 05:46 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-08-12 05:46 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-08-12 05:45 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-08-12 05:45 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-08-12 05:45 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-08-12 05:44 . 2011-05-25 02:14 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-08-12 03:07 . 2011-08-12 02:19 -------- d-----w- c:\windows\Panther
2011-08-12 02:56 . 2011-08-12 02:27 -------- d-----w- C:\Windows.old
2011-08-12 02:54 . 2008-11-10 18:41 32656 ----a-w- c:\windows\system32\msonpmon.dll
2011-08-12 02:54 . 2006-10-27 02:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2011-08-12 02:53 . 2011-08-14 15:45 -------- d-----w- c:\program files\Microsoft Works
2011-08-12 02:51 . 2011-08-12 02:51 -------- d-----w- c:\windows\PCHEALTH
2011-08-12 02:51 . 2011-08-12 02:51 -------- d-----w- c:\program files\Microsoft.NET
2011-08-12 02:49 . 2011-08-12 02:49 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2011-08-12 02:48 . 2011-08-15 17:16 -------- d-----w- c:\programdata\Microsoft Help
2011-08-12 02:42 . 2011-08-19 18:55 -------- d-sh--w- c:\windows\Installer
2011-08-12 02:40 . 2010-04-04 05:55 600680 ----a-w- c:\windows\system32\nvuninst.exe
2011-08-12 02:40 . 2009-07-20 16:48 151552 ----a-w- c:\windows\system32\NVCOSMU.DLL
2011-08-12 02:40 . 2009-06-28 16:36 17920 ----a-w- c:\windows\system32\drivers\nvsmu.sys
2011-08-12 02:23 . 2011-08-20 23:43 -------- d-----w- c:\windows\system32\wbem\Performance
2011-08-12 02:19 . 2011-08-19 05:11 -------- d-----w- c:\users\Panzalovic
2011-07-23 15:38 . 2011-07-23 15:38 -------- d-----r- C:\MSOCache
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-16 23:56 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-07-29 17361032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-05-23 7514656]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
"DisableThumbnailCache"=dword:00000001
.
R2 ddservice;ddservice;c:\windows\update.7.1\svchostdriver.exe [2011-08-19 382464]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-25 54144]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-13 1343400]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S3 netr28;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28.sys [2009-07-13 530944]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-08-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2625110078-4147674666-1969940445-1000Core.job
- c:\users\Panzalovic\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-12 05:37]
.
2011-08-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2625110078-4147674666-1969940445-1000UA.job
- c:\users\Panzalovic\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-12 05:37]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-MSC - c:\program files\Microsoft Security Client\msseces.exe
HKLM-Run-wxpdrv - c:\windows\services32.exe
HKLM-Run-tray_ico - (no file)
HKLM-Run-tray_ico0 - c:\windows\update.tray-14-0\svchost.exe
HKLM-Run-tray_ico1 - (no file)
HKLM-Run-tray_ico2 - (no file)
HKLM-Run-tray_ico3 - (no file)
HKLM-Run-tray_ico4 - (no file)
HKLM-Run-l1rezerv.exe - c:\windows\l1rezerv.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-08-20 16:53:10
ComboFix-quarantined-files.txt 2011-08-20 23:53
.
Pre-Run: 38,860,824,576 bytes free
Post-Run: 38,406,434,816 bytes free
.
- - End Of File - - B4EE5841C84D8520BC2625CFCC7F62A3

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Za pocetaj procitaj pravila ovog dela foruma: http://www.mycity.rs/Ambulanta/Pravila-ovog-dela-foruma.html


Ne smes pisati u tudjoj temi - imas svoju temu;
Radi iskljucivo sta ti JA (ili neko od mojih kolega) pise u ovoj temi;
U suprotnom, ako ne zelis da postujes pravila; temu cemo zatvoriti.


----------------------------------------

ComboFix nije dijagnosticki alat kao ovi iz uputstva. To je jako mocan alat, koji nepravilnim rukovanjem, moze unistiti operativni sistem ili pak obrisati sve padatke sa hard diska. Pokrece se iskljucivo uz predlog, nadleznost i detaljno uputstvo helpera koji je expert u toj oblasti i zna sta radi.

Za ubuduce, ne pokreci ComboFix na svoju ruku!!!

----------------------------------------







Postavi mi u sledecoj poruci DDS, Attach, Gmer1, Gmer2 i Gmer3 (ili RR) izvestaje da pogledam. Kako to sve da odradis imas u ovom Uputstvu koje moras detaljno procitati (sve je jako prosto): http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html










goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 20 Avg 2011 17:53

.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 8.0.7601.17514
Run by Panzalovic at 17:28:24 on 2011-08-20
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1791.934 [GMT -7:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\Explorer.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Panzalovic\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\msfeedssync.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableSecureUIAPaths = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{18B2DFE5-2829-4D7F-9B7D-59410CC195A2} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{18B2DFE5-2829-4D7F-9B7D-59410CC195A2}\A796B6F6E6F66796364737 : DhcpNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\drivers\netr28.sys [2009-6-10 530944]
S2 ddservice;ddservice;c:\windows\update.7.1\svchostdriver.exe srv --> c:\windows\update.7.1\svchostdriver.exe srv [?]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 54144]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-8-13 52224]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-8-13 1343400]
.
=============== Created Last 30 ================
.
2011-08-20 23:52:23 -------- d-sh--w- C:\$RECYCLE.BIN
2011-08-20 23:36:45 -------- d-----w- c:\users\panzalovic\appdata\local\temp
2011-08-20 23:28:29 98816 ----a-w- c:\windows\sed.exe
2011-08-20 23:28:29 518144 ----a-w- c:\windows\SWREG.exe
2011-08-20 23:28:29 256000 ----a-w- c:\windows\PEV.exe
2011-08-20 23:28:29 208896 ----a-w- c:\windows\MBR.exe
2011-08-20 05:33:28 -------- d-----w- c:\users\panzalovic\appdata\local\ElevatedDiagnostics
2011-08-20 02:21:32 7152464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{bf549042-b56c-45ce-8942-4961221406d9}\mpengine.dll
2011-08-19 20:20:23 -------- d--h--w- c:\windows\update.7.1
2011-08-19 19:10:31 -------- d-----w- C:\$WINDOWS.~LS
2011-08-19 04:28:11 7152464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2011-08-19 03:57:33 -------- d-----w- c:\programdata\MFAData
2011-08-19 02:17:10 -------- d-----w- c:\windows\ufa
2011-08-19 02:06:06 -------- d-----w- c:\programdata\Symantec
2011-08-19 02:05:59 -------- d-----w- c:\programdata\Norton
2011-08-19 02:05:55 -------- d-----w- c:\programdata\NortonInstaller
2011-08-19 02:02:00 246272 ----a-w- c:\windows\unrar.exe
2011-08-19 02:00:41 -------- d-----w- c:\windows\av_ico
2011-08-19 01:58:37 -------- d--h--w- c:\windows\update.tray-14-0-lnk
2011-08-19 01:58:37 -------- d--h--w- c:\windows\update.tray-14-0
2011-08-18 17:30:43 -------- d-----w- c:\windows\system32\Adobe
2011-08-16 23:48:29 -------- d-----w- c:\windows\system32\SPReview
2011-08-16 23:47:33 -------- d-----w- c:\windows\system32\EventProviders
2011-08-14 15:41:02 -------- d-----w- c:\program files\NVIDIA Corporation
2011-08-13 22:28:04 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-08-13 22:26:59 464896 ----a-w- c:\windows\system32\scrptadm.dll
2011-08-13 22:25:59 98304 ----a-w- c:\windows\system32\fphc.dll
2011-08-13 21:50:05 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-08-13 21:50:05 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-08-13 21:50:05 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-08-13 21:50:04 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-08-13 21:50:04 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-08-13 21:50:04 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-08-13 21:50:04 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-08-13 21:50:02 1699328 ----a-w- c:\windows\system32\esent.dll
2011-08-13 21:50:02 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-08-13 21:50:01 1211264 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-08-13 21:50:01 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-08-13 21:49:59 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-08-13 21:49:59 74240 ----a-w- c:\windows\system32\fsutil.exe
2011-08-13 21:49:59 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-08-13 21:49:59 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-08-13 21:49:59 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2011-08-13 18:27:20 -------- d-----w- c:\windows\system32\Wat
2011-08-13 02:03:23 -------- d-----r- c:\program files\Skype
2011-08-12 18:44:36 -------- d-----w- c:\windows\Temp29546752-F3BB-E3E7-13A3-4E1889454556-Signatures
2011-08-12 05:57:07 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-08-12 05:57:07 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-08-12 05:57:06 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-08-12 05:57:06 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-08-12 05:57:06 337408 ----a-w- c:\windows\system32\mssph.dll
2011-08-12 05:57:06 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-08-12 05:57:06 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-08-12 05:57:05 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-08-12 05:57:05 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-08-12 05:57:02 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-08-12 05:55:14 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-08-12 05:55:14 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-08-12 05:55:14 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-08-12 05:55:12 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-08-12 05:55:08 31232 ----a-w- c:\windows\system32\prevhost.exe
2011-08-12 05:55:05 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-12 05:55:03 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-08-12 05:55:00 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-08-12 05:54:59 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-08-12 05:54:57 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-08-12 05:54:57 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-08-12 05:54:54 70656 ----a-w- c:\windows\system32\fontsub.dll
2011-08-12 05:54:54 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-08-12 05:54:54 294912 ----a-w- c:\windows\system32\atmfd.dll
2011-08-12 05:54:36 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-08-12 05:54:36 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-08-12 05:54:36 107520 ----a-w- c:\windows\system32\cdd.dll
2011-08-12 05:53:46 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-08-12 05:53:46 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2011-08-12 05:53:20 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-08-12 05:53:20 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-08-12 05:53:20 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-08-12 05:53:18 542208 ----a-w- c:\windows\system32\kerberos.dll
2011-08-12 05:53:05 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-08-12 05:53:04 187776 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2011-08-12 05:53:01 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-08-12 05:50:50 2616320 ----a-w- c:\windows\explorer.exe
2011-08-12 05:49:59 2334208 ----a-w- c:\windows\system32\win32k.sys
2011-08-12 05:47:22 94208 ----a-w- c:\program files\common files\system\ole db\msdaosp.dll
2011-08-12 05:47:22 86016 ----a-w- c:\windows\system32\odbccu32.dll
2011-08-12 05:47:22 81920 ----a-w- c:\windows\system32\odbccr32.dll
2011-08-12 05:47:22 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2011-08-12 05:47:22 122880 ----a-w- c:\windows\system32\odbccp32.dll
2011-08-12 05:47:21 163840 ----a-w- c:\windows\system32\odbctrac.dll
2011-08-12 05:47:02 219136 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-08-12 05:47:02 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-08-12 05:46:14 759296 ----a-w- c:\program files\common files\microsoft shared\vgx\VGX.dll
2011-08-12 05:46:11 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-08-12 05:46:10 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-08-12 05:45:56 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-08-12 05:45:50 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-08-12 05:45:50 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-08-12 05:44:43 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-08-12 05:37:45 -------- d-----w- c:\users\panzalovic\appdata\local\Google
2011-08-12 05:37:12 -------- d-----w- c:\users\panzalovic\appdata\local\Apps
2011-08-12 05:37:11 -------- d-----w- c:\users\panzalovic\appdata\local\Deployment
2011-08-12 03:07:18 -------- d-----w- c:\windows\Panther
2011-08-12 02:56:58 -------- d-----w- C:\Windows.old
2011-08-12 02:54:55 33104 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll
2011-08-12 02:54:55 32656 ----a-w- c:\windows\system32\msonpmon.dll
2011-08-12 02:51:43 -------- d-----w- c:\windows\PCHEALTH
2011-08-12 02:49:40 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2011-08-12 02:48:44 -------- d-----w- c:\users\panzalovic\appdata\local\Microsoft Help
2011-08-12 02:42:54 -------- d-sh--w- c:\windows\Installer
2011-08-12 02:40:20 600680 ----a-w- c:\windows\system32\nvuninst.exe
2011-08-12 02:40:17 17920 ----a-w- c:\windows\system32\drivers\nvsmu.sys
2011-08-12 02:40:17 151552 ----a-w- c:\windows\system32\NVCOSMU.DLL
2011-08-12 02:23:52 -------- d-----w- c:\windows\system32\wbem\Performance
2011-08-12 02:20:04 -------- d-----w- c:\users\panzalovic\appdata\local\VirtualStore
.
==================== Find3M ====================
.
2011-08-16 23:56:53 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-07-22 04:54:18 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-07-16 04:27:30 290816 ----a-w- c:\windows\system32\KernelBase.dll
2011-07-16 02:17:19 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-06-24 04:27:01 169984 ----a-w- c:\windows\system32\winsrv.dll
2011-06-24 04:22:20 271360 ----a-w- c:\windows\system32\conhost.exe
2011-06-21 05:28:33 981504 ----a-w- c:\windows\system32\wininet.dll
.
============= FINISH: 17:28:42.42 ===============

Dopuna: 20 Avg 2011 17:55

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 8/11/2011 7:19:47 PM
System Uptime: 8/20/2011 4:41:26 PM (1 hours ago)
.
Motherboard: Micro-Star International | | MS-1683
Processor: Celeron(R) Dual-Core CPU T3100 @ 1.90GHz | CPU 1 | 1900/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 59 GiB total, 35.818 GiB free.
D: is FIXED (NTFS) - 240 GiB total, 71.24 GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP17: 8/18/2011 2:36:47 PM - Installed Windows Media Player Firefox Plugin
RP18: 8/18/2011 7:51:18 PM - Windows Update
RP19: 8/18/2011 9:18:10 PM - Windows Update
RP20: 8/19/2011 11:56:26 AM - Windows Update
RP22: 8/20/2011 10:24:07 AM - Windows Modules Installer
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958-)
Adobe Shockwave Player 11.6
Click to Call with Skype
Google Chrome
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
NVIDIA Display Control Panel
NVIDIA Drivers
PVSonyDll
Realtek High Definition Audio Driver
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2509488-)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft Office 2007 System (KB2541012)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2541007)
Security Update for Microsoft Office Groove 2007 (KB2494047)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2535818-)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office Publisher 2007 (KB2284697)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Skype™ 5.5
swMSM
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678-)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2509470)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2586924)
Windows Media Player Firefox Plugin
.
==== Event Viewer Messages From Past Week ========
.
8/20/2011 4:51:10 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/20/2011 4:45:12 PM, Error: Service Control Manager [7034] - The ddservice service terminated unexpectedly. It has done this 1 time(s).
8/20/2011 4:30:30 PM, Error: Service Control Manager [7034] - The srvsysdriver32 service terminated unexpectedly. It has done this 1 time(s).
8/20/2011 4:28:15 PM, Error: Service Control Manager [7034] - The wxpdrivers service terminated unexpectedly. It has done this 1 time(s).
8/20/2011 4:28:15 PM, Error: Service Control Manager [7034] - The srviecheck service terminated unexpectedly. It has done this 1 time(s).
8/20/2011 4:28:15 PM, Error: Service Control Manager [7034] - The srvbtcclient service terminated unexpectedly. It has done this 1 time(s).
8/20/2011 2:43:49 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/20/2011 2:43:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
8/20/2011 2:43:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
8/20/2011 2:43:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
8/20/2011 2:43:38 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/20/2011 2:43:32 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
8/20/2011 2:43:24 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf
8/20/2011 2:43:21 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2011 2:43:21 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:21 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:21 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:21 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:20 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2011 2:43:20 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2011 2:43:20 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2011 2:43:20 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2011 2:43:20 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2011 10:23:59 AM, Error: volsnap [67] - The shadow copy of volume C: being created failed to install.
8/19/2011 12:04:12 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2518869).
8/19/2011 12:00:52 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Bus/Interconnect Error Processor ID: 0 The details view of this entry contains further information.
8/19/2011 11:59:46 AM, Error: Service Control Manager [7001] - The WinHTTP Web Proxy Auto-Discovery Service service depends on the DHCP Client service which failed to start because of the following error: The dependency service or group failed to start.
8/19/2011 11:57:39 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v2.0.50727_X86 service to connect.
8/19/2011 11:54:00 AM, Error: Service Control Manager [7000] - The Microsoft Antimalware Service service failed to start due to the following error: The system cannot find the file specified.
8/18/2011 9:24:22 PM, Error: ACPI [13] - : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.
8/18/2011 7:11:32 PM, Error: Service Control Manager [7023] - The Microsoft Antimalware Service service terminated with the following error: %%-2147017840
8/18/2011 7:11:32 PM, Error: Microsoft Antimalware [5101] -
8/18/2011 7:00:20 PM, Error: Service Control Manager [7000] - The Microsoft Network Inspection service failed to start due to the following error: The system cannot find the file specified.
8/18/2011 11:19:25 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache MpFilter NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf
8/16/2011 5:41:07 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Windows Internet Explorer 9 for Windows 7.
8/15/2011 10:14:02 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
8/15/2011 10:14:02 AM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Nemoj prikljucivati USB memorijske uredjaje dok ti to ne budem zatrazio.




Na tom racunaru si lose instalirao sistem, tj. nisi formatirao particiju pa ti je tu i stari Windows. Lokacija gde se nalazi stari Windows je: C:\Windows.old. Ovde imas Uputstvo kako ukloniti taj folder. Isprati ga (slikovito je prikazano): http://www.sevenforums.com/tutorials/19151-windows-old-folder-delete.html





Korak 1



Otvoriti Notepad i iskopirati sledeci tekst:

Folder::
c:\windows\update.7.1
c:\windows\ufa
c:\windows\av_ico
c:\windows\update.tray-14-0
c:\windows\update.tray-14-0-lnk

File::
c:\windows\unrar.exe

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
 @Denied: (Full) (Everyone)

Driver::
ddservice

Snimiti na Desktop fajl iz Notepada kao "CFScript"




Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici.
Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.




Korak 2

Potrebno je da instaliras Anti-Virus na sistem. Moj predlog ti je da koristis besplatan Anti-Virus ukoliko nemas licencu za komercijalnu verziju AV-a. Besplatni Anti-Virusi su: Avast, Avira, AVG, Panda Cloud, MSE, itd ... Odluci se za jedan.

Tema koja ti moze biti od pomoci je: Izbor besplatnog antivirusa











goran9888 (AMF Tim)