MyCity » Ambulanta -> Arhiva Ambulante » Problem sa vurusima

Problem sa vurusima

Napisano na dan: 30.8.2013

Strana:
1
2

Problem sa vurusima

Sledeća strana

Pagination

Odgovori

Strana:
1
2

adelita Poslao: 30 Avg 2013 18:27 Idi na vrh
offline adelita Građanin Pridružio: 02 Okt 2007 Poruke: 50	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav svima, Imam problem, kada uklucim browser Mozillu firefox i Google Chrome non stop mi se pojavljuje neki Malicius URL BLOCKED Infection Details Infection Details URL: hxxp://3qozz.exclusive-rewards.ciropract... Process: C:\Program Files (x86)\Mozilla Firefox\f... Infection: URL:Mal Skenirala sam kompjuter sa antivirusnom programom Avastom i tada mi pokazuje da je pronazdeno nekoliko virusa, tada ih izbrisem medjutim nista, opet se pojavluje na scan. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16448 BrowserJavaVersion: 10.25.2 Run by Home at 17:59:56 on 2013-08-30 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3932.1874 [GMT 2:00] . AV: avast! Internet Security Enabled/Updated {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Internet Security Enabled/Updated {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender Enabled/Outdated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: avast! Internet Security Enabled {131692B0-0864-D491-4E21-3A3A1D8BBB47} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\System32\igfxtray.exe C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE C:\Windows\system32\taskeng.exe C:\Windows\system32\taskhost.exe C:\ProgramData\CloudSoft\OptimizerPro\OptimizerPro.exe C:\ProgramData\BrowserDefender\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe C:\ProgramData\IBUpdaterService\ibsvc.exe C:\ProgramData\BrowserDefender\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\SysWOW64\PnkBstrB.exe C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://search.babylon.com/?babsrc=HP_ss_sps&mntrId=0C6616E543842A62&affID=119781&tsp=4938 mStart Page = hxxp://websearch.just-browse.info/ mWinlogon: Userinit = userinit.exe BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Home\AppData\Roaming\Complitly\Complitly.dll BHO: hosts: {11111111-1111-1111-1111-110311531182} - C:\Program Files (x86)\hosts\hosts-bho.dll BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL BHO: SpecialSavings.Addon: {bb184e6d-26d1-461a-9226-b93ca8da2af9} - BHO: delta Helper Object: {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll TB: Delta Toolbar: {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaTlbr.dll mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot dRun: [SearchProtect] \SearchProtect\bin\cltmng.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll TCP: NameServer = 192.168.178.1 TCP: Interfaces\{C7729D02-C616-4023-907D-38E25970CB3D} : DHCPNameServer = 192.168.178.1 TCP: Interfaces\{C7729D02-C616-4023-907D-38E25970CB3D}\75C414E4D2030323436454934303634393 : DHCPNameServer = 192.168.178.1 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll AppInit_DLLs= c:\progra~3\browse~2\261519~1.190\{c16c1~1\browse~1.dll c:\progra~2\savesh~1\sprote~1.dll SSODL: WebCheck - <orphaned> SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Home\AppData\Roaming\Complitly\64\Complitly64.dll x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Notify: igfxcui - igfxdev.dll x64-SSODL: WebCheck - <orphaned> x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll FF - ExtSQL: 2013-07-11 01:23; {b442f4c0-c292-4998-aabe-48608a73ba75}; C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{b442f4c0-c292-4998-aabe-48608a73ba75} FF - ExtSQL: 2013-07-11 01:23; {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}; C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi FF - ExtSQL: 2013-08-10 21:25; 05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com; C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com FF - ExtSQL: !HIDDEN! 2012-12-08 16:24; statuswinks@StatusWinks; C:\Users\Home\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks FF - ExtSQL: !HIDDEN! 2013-03-02 16:04; speedanalysis@SpeedAnalysis.com; C:\Users\Home\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com . ============= SERVICES / DRIVERS =============== . R0 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2012-10-24 22600] R0 aswNdis;avast! Firewall NDIS Filter Service;C:\Windows\System32\drivers\aswNdis.sys [2012-10-23 12368] R0 aswNdis2;avast! Firewall Core Firewall Service;C:\Windows\System32\drivers\aswNdis2.sys [2012-10-23 270824] R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-5-29 65336] R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-5-29 189936] R1 aswFW;avast! TDI Firewall driver;C:\Windows\System32\drivers\aswFW.sys [2012-10-23 131232] R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-10-23 1030952] R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-10-23 378944] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-2-25 283200] R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-10-23 33400] R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-10-23 80816] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-5-29 46808] R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-5-29 137960] R2 BrowserDefendert;BrowserDefendert;C:\ProgramData\BrowserDefender\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2013-8-2 2847696] R2 IBUpdaterService;Updater Service;C:\ProgramData\IBUpdaterService\ibsvc.exe [2012-12-4 605208] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448] R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-10-21 161560] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608] R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-10-21 363800] R3 b57xdbd;Broadcom xD Picture Bus Driver Service;C:\Windows\System32\drivers\b57xdbd.sys [2011-11-4 68648] R3 b57xdmp;Broadcom xD Picture vstorp client drv;C:\Windows\System32\drivers\b57xdmp.sys [2011-11-4 19496] R3 bScsiMSa;bScsiMSa;C:\Windows\System32\drivers\bScsiMSa.sys [2011-9-2 51752] R3 bScsiSDa;bScsiSDa;C:\Windows\System32\drivers\bScsiSDa.sys [2012-5-3 81928] R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-10-20 331264] R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2012-1-19 435240] R3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2012-10-20 22800] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168] S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992] S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2013-4-7 31800] S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960] S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2011-4-12 34816] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248] . =============== Created Last 30 ================ . 2013-08-27 15:12:33 -------- d-----w- C:\Users\Home\AppData\Roaming\LolClient 2013-08-27 12:05:55 467984 ----a-w- C:\Windows\SysWow64\d3dx10_39.dll 2013-08-27 12:05:55 1493528 ----a-w- C:\Windows\SysWow64\D3DCompiler_39.dll 2013-08-27 12:05:53 3851784 ----a-w- C:\Windows\SysWow64\D3DX9_39.dll 2013-08-27 12:05:35 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin 2013-08-27 12:05:33 -------- d-----w- C:\Riot Games 2013-08-27 11:56:26 -------- d-----w- C:\Users\Home\AppData\Local\PMB Files 2013-08-27 11:56:22 -------- d-----w- C:\ProgramData\PMB Files 2013-08-27 11:56:13 -------- d-----w- C:\Program Files (x86)\Pando Networks 2013-08-27 11:55:46 -------- d-----w- C:\Users\Home\AppData\Roaming\Riot Games 2013-08-20 13:40:59 -------- d-----w- C:\Windows\CD95F661A5C444F5A6AAECDD91C240DB.TMP 2013-08-20 13:37:21 -------- d-----w- C:\ProgramData\4shared Desktop 2013-08-19 22:04:17 -------- d-----w- C:\ProgramData\StarApp 2013-08-19 22:02:59 -------- d-----w- C:\Program Files (x86)\SaveShare 2013-08-17 23:49:14 -------- d-----w- C:\Program Files (x86)\Counter-Strike 1.6 2013-08-10 19:25:53 -------- d-----w- C:\Program Files (x86)\hosts 2013-08-10 18:26:31 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-08-10 17:56:02 -------- d-----w- C:\Program Files (x86)\CS-RELOAD Final Edition . ==================== Find3M ==================== . 2013-08-30 13:26:01 151552 ----a-w- C:\Windows\KMSEmulator.exe 2013-08-20 20:15:43 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-08-20 20:15:43 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-08-10 18:26:21 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll 2013-08-10 18:26:21 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2013-07-06 08:33:34 98304 ----a-w- C:\Windows\SysWow64\CmdLineExt.dll 2013-06-27 21:04:38 189936 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2013-06-27 21:04:38 1030952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys . ============= FINISH: 18:00:26,34 =============== mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 30 Avg 2013 18:40 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Korak 1. Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop Dvoklikom pokreni program. Klikni na dugme [Scan] i pricekaj da program zavrsi. Klikni na dugme [Clean] Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu. Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem. Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl" Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt Korak 2. Preuzmi program GMER sa donjeg linka na Desktop: GMER download Klikni dati link; Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Dvoklikom pokrenite GMER. Sačekaj da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, klikni No; klikni Scan i sačekaj da skeniranje bude završeno; klikni Save ... - izveštaj sačuvaj na Desktop (pod nazivom Gmer1); klikni desnim tasterom u prozor programa Gmer i odaberi Options > 3rd party - klikni Scan; po završetku skeniranja klikni Save ... - izveštaj sačuvaj na Desktop (pod nazivom Gmer2); klikni taster >>> i odaberi Autostart karticu; po završetku kratkotrajnog skeniranja, klikni Copy; otvori Notepad i u njega postavi kopirani tekst - izveštaj sačuvaj na Desktop (pod nazivom Gmer3); Slikoviti prikaz postupka Priloži sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

Profil

adelita Poslao: 30 Avg 2013 19:51 Idi na vrh
offline adelita Građanin Pridružio: 02 Okt 2007 Poruke: 50	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 30 Avg 2013 19:58 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Za sada izgleda u redu, no da izvrsimo jos jednu proveru. Takodje, mozes li da uslikas ili bar da napises ovde nazive svih detekcija koje je Avast prijavio. Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop: Bleeping Computer Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: deaktiviraj zaštitni softver (uputstvo); zatvori pokrenute programe; dvoklikom pokreni program ComboFix; u prozoru koji se otvori klikni "I Agree". U toku rada, ComboFix će:proveriti postoji li novija verzija programa: klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju: obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja: prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta); na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu: klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All; klikni desnim tasterom miša na obeleženi tekst i izaberi Copy; klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste. Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt); Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku; Nemoj kliktati u okviru ComboFix prozora dok radi jer to može usporiti rad alata; Nemoj ponovo pokretati ComboFix na svoju ruku - javi se u temi bilo kakav problem da imaš tokom prvog pokretanja alata; Ako nakon restarta dobijaš grešku prilikom startovanja pojedinih programa da su označeni za brisanje (Illegal operation attempted on a registry key that has been marked for deletion), onda ponovo restartuj sistem i to ce rešiti problem.

Profil

adelita Poslao: 30 Avg 2013 20:17 Idi na vrh
offline adelita Građanin Pridružio: 02 Okt 2007 Poruke: 50	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 13-08-30.01 - Home 30.08.2013 20:08:14.1.2 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3932.1942 [GMT 2:00] Running from: c:\users\Home\Desktop\ComboFix.exe AV: avast! Internet Security Disabled/Updated {2B2D1395-420B-D5C9-657E-930FE358FC3C} FW: avast! Internet Security Disabled {131692B0-0864-D491-4E21-3A3A1D8BBB47} SP: avast! Internet Security Disabled/Updated {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender Enabled/Outdated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\SaveShare c:\program files (x86)\SaveShare\sprotector.dll c:\program files (x86)\SaveShare\uninstall.exe C:\text.txt D:\install.exe . . ((((((((((((((((((((((((( Files Created from 2013-07-28 to 2013-08-30 ))))))))))))))))))))))))))))))) . . 2013-08-30 18:13 . 2013-08-30 18:13 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-08-30 17:02 . 2013-08-30 17:04 -------- d-----w- C:\AdwCleaner 2013-08-27 15:12 . 2013-08-27 15:12 -------- d-----w- c:\users\Home\AppData\Roaming\LolClient 2013-08-27 12:05 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll 2013-08-27 12:05 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll 2013-08-27 12:05 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll 2013-08-27 12:05 . 2013-08-27 12:05 -------- d-sh--w- c:\windows\SysWow64\AI_RecycleBin 2013-08-27 12:05 . 2013-08-27 12:05 -------- d-----w- C:\Riot Games 2013-08-27 11:56 . 2013-08-27 15:52 -------- d-----w- c:\users\Home\AppData\Local\PMB Files 2013-08-27 11:56 . 2013-08-27 15:52 -------- d-----w- c:\programdata\PMB Files 2013-08-27 11:56 . 2013-08-27 11:56 -------- d-----w- c:\program files (x86)\Pando Networks 2013-08-27 11:55 . 2013-08-27 11:56 -------- d-----w- c:\users\Home\AppData\Roaming\Riot Games 2013-08-20 13:40 . 2013-08-20 13:41 -------- d-----w- c:\windows\CD95F661A5C444F5A6AAECDD91C240DB.TMP 2013-08-20 13:37 . 2013-08-20 13:37 -------- d-----w- c:\programdata\4shared Desktop 2013-08-17 23:49 . 2013-08-27 10:48 -------- d-----w- c:\program files (x86)\Counter-Strike 1.6 2013-08-10 19:25 . 2013-08-10 19:26 -------- d-----w- c:\program files (x86)\hosts 2013-08-10 18:27 . 2013-08-10 18:27 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-08-10 18:26 . 2013-08-10 18:26 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-08-10 18:26 . 2013-08-10 18:26 -------- d-----w- c:\program files (x86)\Java 2013-08-10 17:56 . 2013-08-17 23:41 -------- d-----w- c:\program files (x86)\CS-RELOAD Final Edition . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-30 17:07 . 2012-10-31 16:26 151552 ----a-w- c:\windows\KMSEmulator.exe 2013-08-20 20:15 . 2012-10-23 19:03 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-08-20 20:15 . 2012-10-23 19:03 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-08-10 18:26 . 2013-05-03 15:31 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-08-10 18:26 . 2013-05-03 15:31 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-07-06 08:33 . 2013-07-06 08:33 98304 ----a-w- c:\windows\SysWow64\CmdLineExt.dll 2013-06-27 21:04 . 2013-05-29 16:29 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 21:04 . 2012-10-23 15:17 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 21:04 . 2012-10-23 15:17 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816] "TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-12-24 295072] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE;c:\users\Home\Desktop\CS\PBDownforce.sys;c:\users\Home\Desktop\CS\PBDownforce.sys [x] R3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE;c:\users\Home\Desktop\CS\Test.sys;c:\users\Home\Desktop\CS\Test.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x] S0 aswKbd;aswKbd; [x] S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x] S0 aswNdis2;avast! Firewall Core Firewall Service; [x] S0 aswRvrt;aswRvrt; [x] S0 aswVmm;aswVmm; [x] S1 aswFW;avast! TDI Firewall driver; [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x] S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x] S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x] S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x] S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x] S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x] S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x] S3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x] . . --- Other Services/Drivers In Memory --- . NewlyCreated - KXLDIPOW Deregistered - kxldipow . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-08-22 13:55 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe . Contents of the 'Scheduled Tasks' folder . 2013-08-30 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-23 20:15] . 2013-08-30 c:\windows\Tasks\AutoKMS.job - c:\windows\AutoKMS\AutoKMS.exe [2012-11-01 19:00] . 2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-15 14:34] . 2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-15 14:34] . 2013-08-30 c:\windows\Tasks\{8DF8F1D7-10DB-41A9-B9E0-2058F647D207}.job - c:\programdata\CloudSoft\OptimizerPro\OptimizerPro.exe [2013-01-12 19:53] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-02-20 398616] "Persistence"="c:\windows\system32\igfxpers.exe" [2012-02-20 440600] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-02-20 170264] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com mStart Page = hxxp://www.google.com mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.178.1 FF - ProfilePath - c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - ExtSQL: 2013-07-11 01:23; {b442f4c0-c292-4998-aabe-48608a73ba75}; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{b442f4c0-c292-4998-aabe-48608a73ba75} FF - ExtSQL: 2013-07-11 01:23; {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi FF - ExtSQL: 2013-08-10 21:25; 05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com FF - ExtSQL: !HIDDEN! 2012-12-08 16:24; statuswinks@StatusWinks; c:\users\Home\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks FF - ExtSQL: !HIDDEN! 2013-03-02 16:04; speedanalysis@SpeedAnalysis.com; c:\users\Home\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com . - - - - ORPHANS REMOVED - - - - . Wow6432Node-HKU-Default-Run-SearchProtect - \SearchProtect\bin\cltmng.exe HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-Network Play System (Patching) - c:\program files (x86)\Electronic Arts\Network Play System\NPSPatch.isu AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe AddRemove-The Sims - c:\program files (x86)\Maxis\The Sims\Uninst.isu AddRemove-{875AF52D-FB16-8B5B-9CA3-65597423103D} - c:\progra~3\INSTAL~1\{B9EA2~1\Setup.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-448369867-836560375-4160285859-1000\Software\SecuROM\License information] "datasecu"=hex:75,0d,bc,dc,99,8d,05,00,f8,33,07,76,0b,54,26,f8,b3,1f,4f,15,92, 2a,b7,a3,c5,38,3f,a9,8d,91,99,08,9c,f8,b1,f0,cd,61,8f,41,35,37,30,55,6e,ac,\ "rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.1] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.1\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.2] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-08-30 20:15:07 ComboFix-quarantined-files.txt 2013-08-30 18:15 . Pre-Run: 69.243.719.680 bytes free Post-Run: 68.773.142.528 bytes free . - - End Of File - - D1196E73418BC9BBAD77491608F30751 A36C5E4F47E84449FF07ED3517B43A31

Profil

TwinHeadedEagle Poslao: 30 Avg 2013 21:32 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Otvoriti Notepad i iskopirati sledeci tekst: Firefox:: FF - ExtSQL: 2013-08-10 21:25; 05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com FF - ExtSQL: !HIDDEN! 2012-12-08 16:24; statuswinks@StatusWinks; c:\users\Home\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks FF - ExtSQL: !HIDDEN! 2013-03-02 16:04; speedanalysis@SpeedAnalysis.com; c:\users\Home\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com File:: c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com c:\users\Home\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks c:\users\Home\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com ClearJavaCache:: Snimiti na Desktop fajl iz Notepada kao "CFScript" Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici. Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja. Nakon ovoga, kazi mi kakvo je sada stanje?

Profil

adelita Poslao: 30 Avg 2013 22:39 Idi na vrh
offline adelita Građanin Pridružio: 02 Okt 2007 Poruke: 50	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 30 Avg 2013 22:09 ComboFix 13-08-30.02 - Home 30.08.2013 21:52:26.3.2 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3932.2129 [GMT 2:00] Running from: c:\users\Home\Desktop\ComboFix.exe Command switches used :: c:\users\Home\Desktop\CFScript AV: avast! Internet Security Disabled/Updated {2B2D1395-420B-D5C9-657E-930FE358FC3C} FW: avast! Internet Security Disabled {131692B0-0864-D491-4E21-3A3A1D8BBB47} SP: avast! Internet Security Disabled/Updated {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender Enabled/Outdated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\users\Home\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com" "c:\users\Home\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks" "c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com" . . ((((((((((((((((((((((((( Files Created from 2013-07-28 to 2013-08-30 ))))))))))))))))))))))))))))))) . . 2013-08-30 19:56 . 2013-08-30 19:56 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-08-30 17:02 . 2013-08-30 17:04 -------- d-----w- C:\AdwCleaner 2013-08-27 15:12 . 2013-08-27 15:12 -------- d-----w- c:\users\Home\AppData\Roaming\LolClient 2013-08-27 12:05 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll 2013-08-27 12:05 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll 2013-08-27 12:05 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll 2013-08-27 12:05 . 2013-08-27 12:05 -------- d-sh--w- c:\windows\SysWow64\AI_RecycleBin 2013-08-27 12:05 . 2013-08-27 12:05 -------- d-----w- C:\Riot Games 2013-08-27 11:56 . 2013-08-27 15:52 -------- d-----w- c:\users\Home\AppData\Local\PMB Files 2013-08-27 11:56 . 2013-08-27 15:52 -------- d-----w- c:\programdata\PMB Files 2013-08-27 11:56 . 2013-08-27 11:56 -------- d-----w- c:\program files (x86)\Pando Networks 2013-08-27 11:55 . 2013-08-27 11:56 -------- d-----w- c:\users\Home\AppData\Roaming\Riot Games 2013-08-20 13:40 . 2013-08-20 13:41 -------- d-----w- c:\windows\CD95F661A5C444F5A6AAECDD91C240DB.TMP 2013-08-20 13:37 . 2013-08-20 13:37 -------- d-----w- c:\programdata\4shared Desktop 2013-08-17 23:49 . 2013-08-27 10:48 -------- d-----w- c:\program files (x86)\Counter-Strike 1.6 2013-08-10 19:25 . 2013-08-10 19:26 -------- d-----w- c:\program files (x86)\hosts 2013-08-10 18:27 . 2013-08-10 18:27 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-08-10 18:26 . 2013-08-10 18:26 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-08-10 18:26 . 2013-08-10 18:26 -------- d-----w- c:\program files (x86)\Java 2013-08-10 17:56 . 2013-08-17 23:41 -------- d-----w- c:\program files (x86)\CS-RELOAD Final Edition . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-30 18:29 . 2012-10-31 16:26 151552 ----a-w- c:\windows\KMSEmulator.exe 2013-08-20 20:15 . 2012-10-23 19:03 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-08-20 20:15 . 2012-10-23 19:03 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-08-10 18:26 . 2013-05-03 15:31 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-08-10 18:26 . 2013-05-03 15:31 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-07-06 08:33 . 2013-07-06 08:33 98304 ----a-w- c:\windows\SysWow64\CmdLineExt.dll 2013-06-27 21:04 . 2013-05-29 16:29 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 21:04 . 2012-10-23 15:17 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 21:04 . 2012-10-23 15:17 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816] "TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-12-24 295072] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE;c:\users\Home\Desktop\CS\PBDownforce.sys;c:\users\Home\Desktop\CS\PBDownforce.sys [x] R3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE;c:\users\Home\Desktop\CS\Test.sys;c:\users\Home\Desktop\CS\Test.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x] S0 aswKbd;aswKbd; [x] S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x] S0 aswNdis2;avast! Firewall Core Firewall Service; [x] S0 aswRvrt;aswRvrt; [x] S0 aswVmm;aswVmm; [x] S1 aswFW;avast! TDI Firewall driver; [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x] S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x] S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x] S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x] S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x] S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x] S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x] S3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-08-22 13:55 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe . Contents of the 'Scheduled Tasks' folder . 2013-08-30 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-23 20:15] . 2013-08-30 c:\windows\Tasks\AutoKMS.job - c:\windows\AutoKMS\AutoKMS.exe [2012-11-01 19:00] . 2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-15 14:34] . 2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-15 14:34] . 2013-08-30 c:\windows\Tasks\{8DF8F1D7-10DB-41A9-B9E0-2058F647D207}.job - c:\programdata\CloudSoft\OptimizerPro\OptimizerPro.exe [2013-01-12 19:53] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-02-20 398616] "Persistence"="c:\windows\system32\igfxpers.exe" [2012-02-20 440600] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-02-20 170264] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com mStart Page = hxxp://www.google.com mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.178.1 FF - ProfilePath - c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - ExtSQL: 2013-07-11 01:23; {b442f4c0-c292-4998-aabe-48608a73ba75}; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{b442f4c0-c292-4998-aabe-48608a73ba75} FF - ExtSQL: 2013-07-11 01:23; {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi FF - ExtSQL: 2013-08-10 21:25; 05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com; c:\users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\msmq2oxw.default\extensions\05dd836e-2cbd-4204-9ff3-2f8a8665967d@a8876730-fb0c-4057-a2fc-f9c09d438e81.com . - - - - ORPHANS REMOVED - - - - . AddRemove-Network Play System (Patching) - c:\program files (x86)\Electronic Arts\Network Play System\NPSPatch.isu AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe AddRemove-The Sims - c:\program files (x86)\Maxis\The Sims\Uninst.isu AddRemove-{875AF52D-FB16-8B5B-9CA3-65597423103D} - c:\progra~3\INSTAL~1\{B9EA2~1\Setup.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-448369867-836560375-4160285859-1000\Software\SecuROM\License information] "datasecu"=hex:75,0d,bc,dc,99,8d,05,00,f8,33,07,76,0b,54,26,f8,b3,1f,4f,15,92, 2a,b7,a3,c5,38,3f,a9,8d,91,99,08,9c,f8,b1,f0,cd,61,8f,41,35,37,30,55,6e,ac,\ "rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.1] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.1\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.2] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-08-30 21:58:11 ComboFix-quarantined-files.txt 2013-08-30 19:58 ComboFix2.txt 2013-08-30 19:49 ComboFix3.txt 2013-08-30 18:15 . Pre-Run: 68.847.583.232 bytes free Post-Run: 68.785.664.000 bytes free . - - End Of File - - BA0251C019B0BF1FFAE363CE1AC146D3 A36C5E4F47E84449FF07ED3517B43A31 Sada cu da restartujem kompjuter i da proverim dali je u redu Hvala Vam puno Dopuna: 30 Avg 2013 22:39 Otvorila sam Mozillu i opet onu poruku koju mi pokazuje iz antivirusa Malicius URL BLOCKED Infection Details i kada hocu da otvrorim you tube odma me prefrluje na ovu sledecu stranu.. http://s.mgkaxjfwfc.com/s73bc5wskpmgwwcowokg0w0os4 Da ne bi trebala da napravim unistal na mozillu, no isto mi se dogadja i sa Google Chome , a sada sam otvorila explorer mislim da radi ok. Pozdrav, Adelita Ilic

Profil

TwinHeadedEagle Poslao: 30 Avg 2013 22:41 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kasno je sada, nastavicemo sutra...

Profil

adelita Poslao: 30 Avg 2013 22:45 Idi na vrh
offline adelita Građanin Pridružio: 02 Okt 2007 Poruke: 50	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ok, nema problema

Profil

TwinHeadedEagle Poslao: 31 Avg 2013 08:12 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! E ovako, da malo dublje pogledamo u Firefox i Chrome... Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop. zatvori browser i ostale pokrenute programe; deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ; dvoklikom pokreni zoek.exe; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sledeći tekst: `filesrcm; startupall; skipfix-iedefaults; firefoxlook; chromelook;` Klikni na dugme i pričekaj da se skeniranje završi. zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadrzaj tog loga u poruku.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa vurusima

Ko je trenutno na forumu

Ukupno su 1082 korisnika na forumu :: 36 registrovanih, 8 sakrivenih i 1038 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., ArchaBasha, babaroga, bata19801, Bickoooo, dankisha, dekan.m, Dogma21, draganl, Dukelander, FOX, Goran 0000, goxin, hyla, Jeremiah, Kotarle, Krusarac, kybonacci, Lieutenant, Litostroton, Mcdado, mercedesamg, Mercury, MiroslavD, mkukoleca, operniki, pacika, panzerwaffe, pein, raketaš, RILE-NS, sabros, Sass Drake, stegonosa, Vatreni Zmaj, velisa andjelic

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by