Možda tražite i:
Drug ima puno virusa na kompjuteru
Laptop pun virusa
Puno problema sa virusima

MyCity » Ambulanta -> Arhiva Ambulante » u pomooooc, puno virusa

u pomooooc, puno virusa

Napisano na dan: 4.12.2008

u pomooooc, puno virusa

Sledeća strana

Pagination

Odgovori

_milena_ns Poslao: 04 Dec 2008 20:09 Idi na vrh
offline _milena_ns Novi MyCity građanin Pridružio: 04 Dec 2008 Poruke: 8	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pri pokretanju racunara stalno mi se pojavljuje ovo C:\WINDOWS\system32\killVBS.vbs C:\PROGRA~1\INSTAL~1\{5f3d1~1\setup.exe C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsbar.dll Pokretala sam NOD32 i Spybot koji mi prikazu viruse, ocistim, ali nece sve, a ovo se i dalje pokazuje. Ne razumem se u racunare, pa bih molila za pomoc. unapred hvala... Logfile of HijackThis v1.99.1 Scan saved at 19:40:29, on 4.12.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\acs.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\notepad.exe C:\Documents and Settings\Erdevik\Desktop\FG5.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\wscript.exe C:\WINDOWS\system32\killVBS.vbs O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [DaemonTools_WhenUSave_Installer] C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL,S O4 - HKLM\..\RunOnce: [CCDECODE0] rundll32.exe streamci,StreamingDeviceSetup {562370a8-f8dd-11d2-bc64-00a0c95ec22e},GLOBAL,{07DAD660-22F1-11d1-A9F4-00C04FBBDE8F},C:\WINDOWS\INF\CCDECODE.inf,CCDECODE.Interface.Install O4 - HKLM\..\RunOnce: [nabtsfec0] rundll32.exe streamci,StreamingDeviceSetup {07DAD662-22F1-11d1-A9F4-00C04FBBDE8F},GLOBAL,{07DAD660-22F1-11d1-A9F4-00C04FBBDE8F},C:\WINDOWS\INF\nabtsfec.inf,NABTSFEC.Interface.Install O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~1\INSTAL~1\{5F3D1~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{5F3D1~1\reboot.ini O4 - HKLM\..\RunOnce: [WSTCODEC0] rundll32.exe streamci,StreamingDeviceSetup {70BC06E0-5666-11d3-A184-00105AEF9F33},GLOBAL,{07DAD660-22F1-11d1-A9F4-00C04FBBDE8F},C:\WINDOWS\INF\WSTCODEC.inf,WSTCODEC.Interface.Install O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: SmartShopper - Compare product prices - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEBF} - C:\Program Files\SmartShopper\Bin\2.5.0\SmrtShpr.dll O9 - Extra button: SmartShopper - Compare travel rates - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - C:\Program Files\SmartShopper\Bin\2.5.0\SmrtShpr.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{4E2CCE43-9DC9-4E6D-826C-45C9F9BAB36F}: NameServer = 212.200.112.1 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Unknown owner - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (file missing) O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

Profil

dr_Bora Poslao: 04 Dec 2008 20:17 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav... Potrebno je privremeno isključiti TeaTimer: Pokrenite Spybot S&D Kliknite Mode stavku u meniju Odaberite Advance Mode Na traci levo kliknite na Tools Kliknite na Resident Destiklirajte Resident Tea-Timer Zatvorite Spybot S&D Restartujte kompjuter. - Zatim skinuti program sa ovog linka na Desktop. - Pokrenuti ga dvoklikom i ispratiti uputstva. Nemojte zaboraviti da ponovo ukljucite ove opcije kada zavrsimo ciscenje. ------------------------------------------------------------------------------------- Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

_milena_ns Poslao: 04 Dec 2008 22:28 Idi na vrh
offline _milena_ns Novi MyCity građanin Pridružio: 04 Dec 2008 Poruke: 8	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Evo, uradila sam sve kako si rekao... I sta dalje? ComboFix 08-12-03.04 - Erdevik 2008-12-04 22:07:36.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1033.18.34 [GMT 1:00] Running from: c:\documents and settings\Erdevik\Desktop\ComboFix.exe * Created a new restore point * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\program files\MyWebSearch . ((((((((((((((((((((((((( Files Created from 2008-11-04 to 2008-12-04 ))))))))))))))))))))))))))))))) . 2008-12-04 19:33 . 2008-12-04 19:34 <DIR> d-------- C:\cm 2008-12-04 18:38 . 2004-06-24 17:34 75,829 -ra------ c:\windows\system32\drivers\wf2kvcap.sys 2008-12-03 21:33 . 2008-12-03 21:34 121 --a------ C:\ZACALC.CLC 2008-12-03 21:33 . 2008-12-03 21:34 1 --a------ C:\ZACALC.TRA 2008-12-03 21:24 . 2008-12-03 21:24 <DIR> d-------- C:\TMP 2008-12-03 21:24 . 2008-12-03 21:24 <DIR> d-------- C:\MOJAPOD 2008-11-30 02:28 . 2008-11-30 02:30 <DIR> d-------- c:\documents and settings\All Users\Application Data\FarmFrenzy2 2008-11-19 03:33 . 2008-11-19 03:33 <DIR> d-------- c:\documents and settings\Erdevik\Application Data\skypePM 2008-11-19 03:33 . 2008-11-19 03:33 56 --ah----- c:\windows\system32\ezsidmv.dat 2008-11-19 03:29 . 2008-11-19 03:51 <DIR> d-------- c:\documents and settings\Erdevik\Application Data\Skype 2008-11-19 03:28 . 2008-11-19 03:29 <DIR> d-------- c:\program files\Skype 2008-11-19 03:28 . 2008-11-19 03:28 <DIR> d-------- c:\program files\Common Files\Skype 2008-11-19 03:28 . 2008-11-19 03:29 <DIR> d-------- c:\documents and settings\All Users\Application Data\Skype 2008-11-17 17:01 . 2008-11-29 00:52 <DIR> d-------- C:\Instalacije igrica 2008-11-15 01:29 . 2008-11-15 01:29 <DIR> d-------- c:\documents and settings\All Users\Application Data\Oberon Games 2008-11-14 03:36 . 2008-11-14 03:37 1,851,544 --a------ c:\program files\install_flash_player.exe 2008-11-13 00:56 . 2008-11-13 00:56 <DIR> d-------- c:\program files\ReflexiveArcade 2008-11-12 23:38 . 2008-11-12 23:38 <DIR> d-------- c:\windows\Turtle Odyssey 3-in-1 2008-11-12 00:10 . 2008-11-16 03:49 <DIR> d-------- C:\games . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-03 06:23 --------- d-----w c:\documents and settings\Erdevik\Application Data\Babylon 2008-11-14 01:21 --------- d-----w c:\documents and settings\Erdevik\Application Data\PlayFirst 2008-11-14 01:21 --------- d-----w c:\documents and settings\All Users\Application Data\PlayFirst 2008-11-11 21:31 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP 2008-11-05 00:56 --------- d--h--w c:\program files\InstallShield Installation Information 2008-11-05 00:48 --------- d-----w c:\program files\Common Files\InstallShield 2008-10-20 02:46 774,144 ----a-w c:\program files\RngInterstitial.dll 2008-10-20 02:46 --------- d-----w c:\program files\Real 2008-10-20 02:46 --------- d-----w c:\program files\Common Files\Real 2008-10-20 02:33 --------- d-----w c:\documents and settings\Erdevik\Application Data\vlc 2008-10-20 02:30 --------- d-----w c:\program files\VideoLAN 2008-10-20 02:28 --------- d-----w c:\documents and settings\All Users\Application Data\Winferno 2008-10-20 02:25 --------- d-----w c:\program files\Winferno 2008-10-20 02:22 --------- d-----w c:\program files\SmartShopper 2008-10-20 02:22 --------- d-----w c:\documents and settings\Erdevik\Application Data\SmartShopper 2008-10-16 14:47 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2008-10-10 20:50 --------- d-----w c:\program files\Google 2008-10-10 00:25 --------- d-----w c:\program files\Yahoo! 2008-09-12 22:17 2,560 ----a-w c:\windows\_MSRSTRT.EXE 2008-08-03 18:34 81,920 ----a-w c:\documents and settings\Erdevik\Application Data\ezpinst.exe 2008-08-03 18:34 47,360 ----a-w c:\documents and settings\Erdevik\Application Data\pcouffin.sys . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "NvMediaCenter"="c:\windows\system32\NVMCTRAY.DLL" [2003-05-02 49152] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2008-08-18 1832272] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "TWCU"="c:\program files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 364544] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-07-01 1447168] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016] "Babylon Client"="c:\program files\Babylon\Babylon-Pro\Babylon.exe" [2007-09-11 2663480] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 39792] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2003-05-02 4640768] "nwiz"="nwiz.exe" [2003-05-02 c:\windows\system32\nwiz.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "WSTCODEC0"="streamci" [X] "GrpConv"="grpconv -o" [X] c:\documents and settings\All Users\Start Menu\Programs\Startup\ Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2007-10-27 39792] Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2007-05-10 738968] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.avis"= ff_acm.acm "msacm.divxa32"= msaud32_divx.acm [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] --a------ 2006-11-12 11:48 157592 c:\program files\DAEMON Tools\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "WinDefend"=2 (0x2) "RichVideo"=2 (0x2) "gusvc"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-07-01 34312] R2 BT848;WinFast TV2000 XP WDM Video Capture;c:\windows\system32\drivers\wf2kvcap.sys [2008-12-04 75829] R2 ekrn;Eset Service;"c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe" [2008-07-01 468224] S2 tv2ktunr;WinFast TV2000 XP WDM TVTuner;c:\windows\system32\drivers\wf2ktunr.sys [] S2 Tv2kXbar;WinFast TV2000 XP WDM Crossbar;c:\windows\system32\drivers\wf2kxbar.sys [] S3 WFIOCTL;WFIOCTL;\??\c:\program files\WinFast\WFTVFM\WFIOCTL.SYS [] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{69351f2e-534f-11dd-b36f-bc3a860ef6ee}] \Shell\Auto\command - I:\Autorun.exe \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Autorun.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{69351f34-534f-11dd-b36f-bc3a860ef6ee}] \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe killVBS.vbs [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9dd80a22-6e97-11dd-b3a9-000c6e38a5ad}] \Shell\AutoOpen\command - .\MSOCache\90000804-6000-11D3-8CFE-0150048383C9\KB915865.exe \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C9\KB915865.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b19b88bf-d657-11dc-b296-a2114dee86ed}] \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe killVBS.vbs [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0459bbf-ae73-11dc-b247-83c9e7578d72}] \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe killVBS.vbs [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c8da2c0b-ec9f-11dc-b2be-ed6a562818ed}] \Shell\AutoOpen\command - .\MSOCache\90000804-6000-11D3-8CFE-0150048383C9\KB915865.exe \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C9\KB915865.exe Newly Created Service - PROCEXP90 . Contents of the 'Scheduled Tasks' folder 2008-10-20 c:\windows\Tasks\rpc.job - c:\program files\Winferno\RegistryPowerCleaner\RegPowerClean.exe [2007-04-12 14:24] . - - - - ORPHANS REMOVED - - - - HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe HKCU-Run-Uniblue RegistryBooster 2009 - c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe HKLM-Run-RemoteControl - c:\program files\CyberLink\PowerDVD\PDVDServ.exe HKLM-Run-QuickTime Task - c:\program files\QuickTime\qttask.exe HKLM-Run-LanguageShortcut - c:\program files\CyberLink\PowerDVD\Language\Language.exe HKLM-Run-DaemonTools_WhenUSave_Installer - c:\program files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe HKLM-RunOnce-<NO NAME> - (no file) MSConfigStartUp-AVP - c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe MSConfigStartUp-DaemonTools_WhenUSave_Installer - c:\program files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe MSConfigStartUp-My Web Search Bar - c:\progra~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL MSConfigStartUp-Uniblue RegistryBooster 2009 - c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe . ------- Supplementary Scan ------- . uStart Page = IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - {BCEB373D-A35A-4200-BD43-8586CD9DFAE7} - c:\program files\SmartShopper\Bin\2.5.0\SmrtShpr.dll TCP: {4E2CCE43-9DC9-4E6D-826C-45C9F9BAB36F} = 212.200.112.1 FireFox -: Profile - c:\documents and settings\Erdevik\Application Data\Mozilla\Firefox\Profiles\e7es4hpw.default\ FireFox -: prefs.js - STARTUP.HOMEPAGE - google.com FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava11.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava12.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava13.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava14.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava32.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjpi160.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npoji610.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\npgcplug.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\npracplug.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\NPTURNMED.dll FF -: plugin - c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll FF -: plugin - c:\program files\VistaCodecPack\rm\browser\plugins\nppl3260.dll FF -: plugin - c:\program files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll . . ------- File Associations ------- . regfile\shell\edit\command=%SystemRoot%\system32\NOTEPAD.EXE %1 . ************************************************************************ catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2008-12-04 22:10:55 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2008-12-04 22:13:50 ComboFix-quarantined-files.txt 2008-12-04 21:13:47 Pre-Run: 10.889.867.264 bytes free Post-Run: 10,887,794,688 bytes free 189 --- E O F --- 2007-09-19 13:27:01

Profil

dr_Bora Poslao: 04 Dec 2008 23:32 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Otvoriti Notepad i iskopirati sledeci tekst: File:: c:\windows\Tasks\rpc.job Folder:: c:\documents and settings\All Users\Application Data\Winferno c:\program files\Winferno c:\program files\SmartShopper c:\documents and settings\Erdevik\Application Data\SmartShopper Registry:: [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{69351f34-534f-11dd-b36f-bc3a860ef6ee}] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9dd80a22-6e97-11dd-b3a9-000c6e38a5ad}] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b19b88bf-d657-11dc-b296-a2114dee86ed}] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0459bbf-ae73-11dc-b247-83c9e7578d72}] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c8da2c0b-ec9f-11dc-b2be-ed6a562818ed}] IE: {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - {BCEB373D-A35A-4200-BD43-8586CD9DFAE7} - c:\program files\SmartShopper\Bin\2.5.0\SmrtShpr.dll Snimiti na Desktop fajl iz Notepada kao "CFScript" Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici. Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.

Profil

_milena_ns Poslao: 05 Dec 2008 00:14 Idi na vrh
offline _milena_ns Novi MyCity građanin Pridružio: 04 Dec 2008 Poruke: 8	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uradjeno sve.... Nadam se da je ok sad... ComboFix 08-12-03.04 - Erdevik 2008-12-04 23:53:49.3 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1033.18.57 [GMT 1:00] Running from: c:\documents and settings\Erdevik\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\Erdevik\Desktop\CFScript.txt * Created a new restore point * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! FILE :: c:\windows\Tasks\rpc.job . ((((((((((((((((((((((((( Files Created from 2008-11-04 to 2008-12-04 ))))))))))))))))))))))))))))))) . 2008-12-04 19:33 . 2008-12-04 19:34 <DIR> d-------- C:\cm 2008-12-04 18:38 . 2004-06-24 17:34 75,829 -ra------ c:\windows\system32\drivers\wf2kvcap.sys 2008-12-03 21:33 . 2008-12-03 21:34 121 --a------ C:\ZACALC.CLC 2008-12-03 21:33 . 2008-12-03 21:34 1 --a------ C:\ZACALC.TRA 2008-12-03 21:24 . 2008-12-03 21:24 <DIR> d-------- C:\TMP 2008-12-03 21:24 . 2008-12-03 21:24 <DIR> d-------- C:\MOJAPOD 2008-11-30 02:28 . 2008-11-30 02:30 <DIR> d-------- c:\documents and settings\All Users\Application Data\FarmFrenzy2 2008-11-19 03:33 . 2008-11-19 03:33 <DIR> d-------- c:\documents and settings\Erdevik\Application Data\skypePM 2008-11-19 03:33 . 2008-11-19 03:33 56 --ah----- c:\windows\system32\ezsidmv.dat 2008-11-19 03:29 . 2008-11-19 03:51 <DIR> d-------- c:\documents and settings\Erdevik\Application Data\Skype 2008-11-19 03:28 . 2008-11-19 03:29 <DIR> d-------- c:\program files\Skype 2008-11-19 03:28 . 2008-11-19 03:28 <DIR> d-------- c:\program files\Common Files\Skype 2008-11-19 03:28 . 2008-11-19 03:29 <DIR> d-------- c:\documents and settings\All Users\Application Data\Skype 2008-11-17 17:01 . 2008-11-29 00:52 <DIR> d-------- C:\Instalacije igrica 2008-11-15 01:29 . 2008-11-15 01:29 <DIR> d-------- c:\documents and settings\All Users\Application Data\Oberon Games 2008-11-14 03:36 . 2008-11-14 03:37 1,851,544 --a------ c:\program files\install_flash_player.exe 2008-11-13 00:56 . 2008-11-13 00:56 <DIR> d-------- c:\program files\ReflexiveArcade 2008-11-12 23:38 . 2008-11-12 23:38 <DIR> d-------- c:\windows\Turtle Odyssey 3-in-1 2008-11-12 00:10 . 2008-11-16 03:49 <DIR> d-------- C:\games . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-03 06:23 --------- d-----w c:\documents and settings\Erdevik\Application Data\Babylon 2008-11-14 01:21 --------- d-----w c:\documents and settings\Erdevik\Application Data\PlayFirst 2008-11-14 01:21 --------- d-----w c:\documents and settings\All Users\Application Data\PlayFirst 2008-11-11 21:31 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP 2008-11-05 00:56 --------- d--h--w c:\program files\InstallShield Installation Information 2008-11-05 00:48 --------- d-----w c:\program files\Common Files\InstallShield 2008-10-20 02:46 774,144 ----a-w c:\program files\RngInterstitial.dll 2008-10-20 02:46 --------- d-----w c:\program files\Real 2008-10-20 02:46 --------- d-----w c:\program files\Common Files\Real 2008-10-20 02:33 --------- d-----w c:\documents and settings\Erdevik\Application Data\vlc 2008-10-20 02:30 --------- d-----w c:\program files\VideoLAN 2008-10-16 14:47 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2008-10-10 20:50 --------- d-----w c:\program files\Google 2008-10-10 00:25 --------- d-----w c:\program files\Yahoo! 2008-09-12 22:17 2,560 ----a-w c:\windows\_MSRSTRT.EXE 2008-08-03 18:34 81,920 ----a-w c:\documents and settings\Erdevik\Application Data\ezpinst.exe 2008-08-03 18:34 47,360 ----a-w c:\documents and settings\Erdevik\Application Data\pcouffin.sys . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "NvMediaCenter"="c:\windows\system32\NVMCTRAY.DLL" [2003-05-02 49152] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2008-08-18 1832272] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "TWCU"="c:\program files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 364544] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-07-01 1447168] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016] "Babylon Client"="c:\program files\Babylon\Babylon-Pro\Babylon.exe" [2007-09-11 2663480] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 39792] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2003-05-02 4640768] "nwiz"="nwiz.exe" [2003-05-02 c:\windows\system32\nwiz.exe] c:\documents and settings\All Users\Start Menu\Programs\Startup\ Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2007-10-27 39792] Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2007-05-10 738968] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.avis"= ff_acm.acm "msacm.divxa32"= msaud32_divx.acm [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] --a------ 2006-11-12 11:48 157592 c:\program files\DAEMON Tools\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "WinDefend"=2 (0x2) "RichVideo"=2 (0x2) "gusvc"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-07-01 34312] R2 BT848;WinFast TV2000 XP WDM Video Capture;c:\windows\system32\drivers\wf2kvcap.sys [2008-12-04 75829] R2 ekrn;Eset Service;"c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe" [2008-07-01 468224] S2 tv2ktunr;WinFast TV2000 XP WDM TVTuner;c:\windows\system32\drivers\wf2ktunr.sys [] S2 Tv2kXbar;WinFast TV2000 XP WDM Crossbar;c:\windows\system32\drivers\wf2kxbar.sys [] S3 WFIOCTL;WFIOCTL;\??\c:\program files\WinFast\WFTVFM\WFIOCTL.SYS [] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{69351f2e-534f-11dd-b36f-bc3a860ef6ee}] \Shell\Auto\command - I:\Autorun.exe \Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Autorun.exe . . ------- Supplementary Scan ------- . uStart Page = IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - {BCEB373D-A35A-4200-BD43-8586CD9DFAE7} - c:\program files\SmartShopper\Bin\2.5.0\SmrtShpr.dll TCP: {4E2CCE43-9DC9-4E6D-826C-45C9F9BAB36F} = 212.200.112.1 FireFox -: Profile - c:\documents and settings\Erdevik\Application Data\Mozilla\Firefox\Profiles\e7es4hpw.default\ FireFox -: prefs.js - STARTUP.HOMEPAGE - google.com FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava11.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava12.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava13.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava14.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjava32.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npjpi160.dll FF -: plugin - c:\program files\Java\jre1.6.0\bin\npoji610.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\npgcplug.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\npracplug.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\NPTURNMED.dll FF -: plugin - c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll FF -: plugin - c:\program files\VistaCodecPack\rm\browser\plugins\nppl3260.dll FF -: plugin - c:\program files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll . ************************************************************************ catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2008-12-04 23:57:43 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2008-12-05 0:00:49 ComboFix-quarantined-files.txt 2008-12-04 23:00:45 ComboFix2.txt 2008-12-04 22:43:48 ComboFix3.txt 2008-12-04 21:13:52 Pre-Run: 10.866.847.744 bytes free Post-Run: 10,855,071,744 bytes free 149 --- E O F --- 2007-09-19 13:27:01

Profil

dr_Bora Poslao: 05 Dec 2008 15:04 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje?

Profil

_milena_ns Poslao: 05 Dec 2008 15:19 Idi na vrh
offline _milena_ns Novi MyCity građanin Pridružio: 04 Dec 2008 Poruke: 8	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sad je sve ok, hvala puno na izdvojenom vremenu...

Profil

dr_Bora Poslao: 05 Dec 2008 17:32 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uradi sledeće: Klikni START a zatim RUN U liniju za unos teksta ukucaj Combofix /u i klikni OK Sačekaj da se proces deinstalacije završi Gornja procedura će: Obrisati sledeće: ComboFix i njegove file-ove i foldere VundoFix Backups folder, ako postoji C:\Deckard folder, ako postoji C:\OtMoveIt folder, ako postoji Resetovati podešavanja sata na kompjuteru Sakriti ekstenzije file-ova, ako je potrebno Sakriti sistemske/skrivene file-ove/foldere, ako je potrebno Resetovati System Restore To je sve.

Profil

_milena_ns Poslao: 05 Dec 2008 19:38 Idi na vrh
offline _milena_ns Novi MyCity građanin Pridružio: 04 Dec 2008 Poruke: 8	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ok. Hvala jos jednom.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » u pomooooc, puno virusa

Ko je trenutno na forumu

Ukupno su 860 korisnika na forumu :: 44 registrovanih, 6 sakrivenih i 810 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., ajo baba, amaterSRB, Bloody, cenejac111, dane007, Dannyboy, Djokislav, DonRumataEstorski, Duh sa sekirom, dushan, flash12, FOX, Georgius, gorican, Griffon vulture, ikan, Ivica1102, jackreacher011011, Karla, Komentator, Krvava Devetka, kybonacci, Marko Marković, Milometer, Mlav, mocnijogurt, nebojsag, nemkea71, nextyamb, operniki, opt1, powSrb, raptorsi, RJ, Srle993, stegonosa, Trpe Grozni, Tvrtko I, vathra, W123, yufighter, ZetaMan

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by