MyCity » Ambulanta -> Arhiva Ambulante » može li neko da pogleda?

može li neko da pogleda?

Napisano na dan: 2.1.2008

može li neko da pogleda?

Sledeća strana

Pagination

Odgovori

3baljac Poslao: 02 Jan 2008 15:04 Idi na vrh
offline 3baljac Novi MyCity građanin Pridružio: 02 Jan 2008 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: pozdrav svima,pošto sam novi na ovom forumu a eto nisam stigao da pročitam vaša pravila unaprijed vas molim da me razumete ako nisam na pravom mestu.naime otkrio sam u task manageru 2 sumnjiva servisa pa ne znam o čem se tu radi(wazufn.exe i nrpfijo.exe),sumnjam na trojance ili sličnu gamad.ako treba prikačiću hijack this file. mycity.rs/must-login.png

Profil

nikoola Poslao: 02 Jan 2008 15:19 Idi na vrh
offline nikoola Legendarni građanin Pridružio: 12 Jan 2004 Poruke: 9661 Gde živiš: Čačak	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Taj log treba da postavis drugacije, odnosno da text iskopiras ovde. Evo kako treba da izgleda. http://www.mycity.rs/Ambulanta/Wirelles-problem-ili.html

Profil

3baljac Poslao: 02 Jan 2008 17:20 Idi na vrh
offline 3baljac Novi MyCity građanin Pridružio: 02 Jan 2008 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! hvala šta si našao vremena da pogledaš,pokušaću ponovo.sorry. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:43:04, on 2.1.2008 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Boot mode: Normal Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\winlogon.exe C:\Windows\System32\svchost.exe C:\Windows\system32\Ati2evxx.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\Ati2evxx.exe D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\svcntaux.exe D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\swdsvc.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\SDTrayApp.exe D:\PROGRA~3\TRISNA~1\SSI\SYSENF~1.EXE D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe D:\PROGRAM FILES-PROGRAMI\avast\ashMaiSv.exe D:\PROGRAM FILES-PROGRAMI\avast\ashWebSv.exe C:\Program Files\Windows Defender\MSASCui.exe D:\PROGRAM FILES-PROGRAMI\antidialer\T-Com Antidialer.exe D:\PROGRAM FILES-PROGRAMI\avast\ashDisp.exe D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe C:\Program Files\Windows Sidebar\sidebar.exe D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE D:\PROGRAM FILES-PROGRAMI\ad aware 2007\Ad-Watch2007.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\conime.exe C:\Windows\system32\wuauclt.exe C:\Windows\Explorer.exe C:\Program Files\hijack this\HijackThis.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.hr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = mile R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitcth.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O4 - HKLM\..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [tcomantidialerrun] d:\program files-programi\antidialer\T-Com Antidialer.exe O4 - HKLM\..\Run: [Ad-Watch] D:\PROGRAM FILES-PROGRAMI\ad aware 2007\Ad-Watch2007.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\avast\ashDisp.exe O4 - HKLM\..\Run: [SDTray] "D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\SDTrayApp.exe" O4 - HKLM\..\Run: [ThreatFire] D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user') O4 - .DEFAULT User Startup: HKCU1.cmd (User 'Default user') O8 - Extra context menu item: &Download by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Append to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Do&wnload selected by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\OFFICE~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Pročešljaj s LeechGet - file://J:\mobilno\LeechGet\LeechGet 2006\\Parser.html O8 - Extra context menu item: Skini s LeechGet - file://J:\mobilno\LeechGet\LeechGet 2006\\AddUrl.html O8 - Extra context menu item: Skini s LeechGet Čarobnjakom - file://J:\mobilno\LeechGet\LeechGet 2006\\Wizard.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\OFFICE~1\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O13 - Gopher Prefix: O17 - HKLM\System\CCS\Services\Tcpip\..\{8BED813B-B917-4334-AFA8-E29F6874BDA9}: NameServer = 161.53.114.145 161.53.114.135 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashWebSv.exe O23 - Service: Diskeeper - Diskeeper Corporation - D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - D:\PROGRAM FILES-PROGRAMI\Spyware Doctor\swdsvc.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SysEnforce - Unknown owner - D:\PROGRA~3\TRISNA~1\SSI\SYSENF~1.EXE O23 - Service: ThreatFire - PC Tools - D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 12028 bytes

Profil

dr_Bora Poslao: 03 Jan 2008 01:34 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav... Procesi koje pominješ nisu vidljivi u ovom logu. Uradi sledeće: promeni naziv file-a programa HijackThis i naziv foldera u kome se program nalazi. Znači, preimenuj folder: C:\Program Files\hijack this\ u C:\Program Files\tr3\ i preimenuj exe file programa iz ''HijackThis.exe'' u ''tr3.exe''. Znači, sadašnja putanja je: C:\Program Files\hijack this\HijackThis.exe a treba da bude C:\Program Files\tr3\tr3.exe Nakon toga postavi novi log. Takođe, odradi pretragu za sledećim file-om: HKCU1.cmd Ako ga pronađeš, pošalji mi ga preko sledećeg linka: http://www.mycity.rs/ambulanta-upload.php

Profil

3baljac Poslao: 03 Jan 2008 09:48 Idi na vrh
offline 3baljac Novi MyCity građanin Pridružio: 02 Jan 2008 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! evo nakon nešto muke šaljem novi log,valjda je to ok.HKCU1.cmd zasad ne vidim al naći ću ga.(također ne znam šta je to gopher prefix?) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:36:38, on 3.1.2008 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Boot mode: Normal Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\winlogon.exe C:\Windows\System32\svchost.exe C:\Windows\system32\Ati2evxx.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\Ati2evxx.exe D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe C:\Windows\system32\Dwm.exe C:\Program Files\Windows Defender\MSASCui.exe D:\PROGRAM FILES-PROGRAMI\antidialer\T-Com Antidialer.exe D:\PROGRAM FILES-PROGRAMI\avast\ashDisp.exe D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe C:\Program Files\Windows Sidebar\sidebar.exe D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\TeaTimer.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe D:\PROGRAM FILES-PROGRAMI\avast\ashMaiSv.exe D:\PROGRAM FILES-PROGRAMI\avast\ashWebSv.exe C:\Program Files\Windows Sidebar\sidebar.exe D:\PROGRAM FILES-PROGRAMI\ad aware 2007\Ad-Watch2007.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Windows\system32\conime.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Windows Media Player\wmplayer.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Windows\explorer.exe D:\PROGRAM FILES-PROGRAMI\opera\Opera.exe C:\Windows\Explorer.exe C:\Windows\system32\taskeng.exe C:\Program Files\tr3\tr3.exe.exe C:\Windows\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.hr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = mile R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitcth.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O4 - HKLM\..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [tcomantidialerrun] d:\program files-programi\antidialer\T-Com Antidialer.exe O4 - HKLM\..\Run: [Ad-Watch] D:\PROGRAM FILES-PROGRAMI\ad aware 2007\Ad-Watch2007.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\avast\ashDisp.exe O4 - HKLM\..\Run: [ThreatFire] D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user') O4 - .DEFAULT User Startup: HKCU1.cmd (User 'Default user') O8 - Extra context menu item: &Download by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Append to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Do&wnload selected by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\OFFICE~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\OFFICE~1\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O13 - Gopher Prefix: O17 - HKLM\System\CCS\Services\Tcpip\..\{8BED813B-B917-4334-AFA8-E29F6874BDA9}: NameServer = 161.53.114.145 161.53.114.135 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashWebSv.exe O23 - Service: Diskeeper - Diskeeper Corporation - D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NRPFIJO - Unknown owner - C:\Users\mile\AppData\Local\Temp\NRPFIJO.exe (file missing) O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SysEnforce - Unknown owner - D:\PROGRA~1\SSI\SYSENF~1.EXE O23 - Service: ThreatFire - PC Tools - D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 11273 bytes

Profil

dr_Bora Poslao: 03 Jan 2008 11:30 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Potrebno je da isključiš sav sigurnosni softver koji koristiš pre idućih koraka. Ukoliko nešto slučajno ostane aktivno, možda će ti prijaviti neke promene u registru - prihvati ih. Spybot S&D's Teatimer Pokrenite Spybot S&D Kliknite Mode stavku u meniju Odaberite Advance Mode Na traci levo kliknite na Tools Kliknite na Resident Destiklirajte Resident Tea-Timer Zatvorite Spybot S&D Restartujte kompjuter. Nemojte zaboraviti da ponovo ukljucite ove opcije kada zavrsimo ciscenje. AdWatch Pokrenite AdAware. Kliknite na AdWatch. Kliknite na Tools and Preferences. Destiklirajte Active i Automatic. Nemojte zaboraviti da ponovo ukljucite ove opcije kada zavrsimo ciscenje. Windows Defender ThreatFire System Spyware Interrogator (SSI) avast ------------------------------------------------------------------------------------- Pokreni HT, skeniraj i čekiraj sledeću liniju: O23 - Service: NRPFIJO - Unknown owner - C:\Users\mile\AppData\Local\Temp\NRPFIJO.exe (file missing) Klikni Fix Checked. ------------------------------------------------------------------------------------- Skini ComboFix sa jedne od sledecih adresa: http://www.techsupportforum.com/sectools/sUBs/ComboFix.exe http://download.bleepingcomputer.com/sUBs/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log koji ces nam ovde iskopirati.

Profil

3baljac Poslao: 03 Jan 2008 22:25 Idi na vrh
offline 3baljac Novi MyCity građanin Pridružio: 02 Jan 2008 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! evo sve uradio kako je bora rekao,uspio maknuti nrpfijoostao hkcu1.cmd,pokrenuo combo fix ali ništa se ne dešava već 45 min.na ekranu poruka "out of memory",zasad samo ht log dok ne završi combo Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:12:51, on 3.1.2008 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Boot mode: Normal Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\Ati2evxx.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe C:\Windows\system32\Ati2evxx.exe D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe D:\PROGRA~1\SSI\SYSENF~1.EXE D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe D:\PROGRAM FILES-PROGRAMI\antidialer\T-Com Antidialer.exe D:\PROGRAM FILES-PROGRAMI\avast\ashDisp.exe D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\cmd.exe C:\ComboFix\swreg.cfexe C:\Windows\system32\svchost.exe D:\PROGRAM FILES-PROGRAMI\opera\Opera.exe C:\Program Files\tr3\tr3.exe.exe C:\Windows\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.hr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = mile R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitcth.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\PROGRAM FILES-PROGRAMI\adobe cs3\/Adobe Contribute CS3/contributeieplugin.dll O4 - HKLM\..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [tcomantidialerrun] d:\program files-programi\antidialer\T-Com Antidialer.exe O4 - HKLM\..\Run: [Ad-Watch] D:\PROGRAM FILES-PROGRAMI\ad aware 2007\Ad-Watch2007.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\avast\ashDisp.exe O4 - HKLM\..\Run: [ThreatFire] D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFTray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "D:\PROGRAM FILES-PROGRAMI\nokia pc suite\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user') O4 - .DEFAULT User Startup: HKCU1.cmd (User 'Default user') O8 - Extra context menu item: &Download by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Append to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\PROGRAM FILES-PROGRAMI\adobe cs3\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Do&wnload selected by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://D:\PROGRAM FILES-PROGRAMI\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\OFFICE~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\PROGRAM FILES-PROGRAMI\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\OFFICE~1\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SPYBOT~1\SDHelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - D:\PROGRAM FILES-PROGRAMI\ad aware 2007\aawservice.exe O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\aswUpdSv.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - D:\PROGRAM FILES-PROGRAMI\avast\ashWebSv.exe O23 - Service: Diskeeper - Diskeeper Corporation - D:\PROGRAM FILES-PROGRAMI\diskeeper\DkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\PROGRAM FILES-PROGRAMI\Spybot - Search & Destroy\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SysEnforce - Unknown owner - D:\PROGRA~1\SSI\SYSENF~1.EXE O23 - Service: ThreatFire - PC Tools - D:\PROGRAM FILES-PROGRAMI\ThreatFire\TFService.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 10396 bytes

Profil

dr_Bora Poslao: 03 Jan 2008 22:47 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix se izgleda ''zaglavio''. Moraćemo bez njega... Pokreni HT, skeniraj i čekiraj sledeću liniju: O4 - .DEFAULT User Startup: HKCU1.cmd (User 'Default user') Klikni Fix Checked. Restartuj PC, postavi svež HT log i reci mi da li primetiš neke konkretne probleme. Takođe, kakvu konekciju koristiš? Dial-up?

Profil

3baljac Poslao: 05 Jan 2008 21:39 Idi na vrh
offline 3baljac Novi MyCity građanin Pridružio: 02 Jan 2008 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! napravio sve,hkcu1.cmd se ne miče

Profil

dr_Bora Poslao: 06 Jan 2008 01:40 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Treba da ispratiš moje prethodno uputstvo ali da prethodno isključiš sav sigurnosni softver koji koristiš (kao što sam već i naglasio).

Profil

MyCity » Ambulanta -> Arhiva Ambulante » može li neko da pogleda?

Ko je trenutno na forumu

Ukupno su 736 korisnika na forumu :: 8 registrovanih, 1 sakriven i 727 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: cikadeda, Koridor, Marko Marković, marsovac 2, milenko crazy north, Milos82, Mixelotti, slonic_tonic

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by