Molim za proveru loga!

Molim za proveru loga!

offline
  • Pridružio: 26 Nov 2008
  • Poruke: 24

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:57:49 AM, on 12/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\asuskbservice.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Eagle USB ADSL Modem\Eagle Family USB ADSL\dslmon.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Goran\Desktop\BoxterBG\boxterbg.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: DSLMON.lnk = ?
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{69073B2B-9551-40A1-BE9B-743E4A69F076}: NameServer = 212.200.82.4 212.200.82.5
O17 - HKLM\System\CS1\Services\Tcpip\..\{69073B2B-9551-40A1-BE9B-743E4A69F076}: NameServer = 212.200.82.4 212.200.82.5
O17 - HKLM\System\CS2\Services\Tcpip\..\{69073B2B-9551-40A1-BE9B-743E4A69F076}: NameServer = 212.200.82.4 212.200.82.5
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: ASUSKeyboardService - ASUSTeK COMPUTER INC. - C:\WINDOWS\asuskbservice.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: %NVSVC.name% (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 4255 bytes


Komp mi se nakon jednog problema usporenosti u radu nakon kratke pauze opet ponasa cudno!Naime sada je u pitanju nesto drugaciji problem a sastoji se u tome sto ne moze da izdrzi konekciju na internetu duze od 15-20 minuta a ponekad se diskonektuje i nakon minut-dva...izbacuje onaj sivi prozor sa error.... send ili dont send tabom i nakon pritiska na jedan,diskonektuje se i prica ide iz pocetka!
To je postao pravi horor jer nista zivo ne mozes da uradis na netu,taman nesto krenes i on "resi"da se diskonektuje...
Molim vas ako mozete ikako da mi pomognete,unapred VELIKO HVALA!
Smile

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Pozzz,

* Klikni desnim tasterom na Kaspersky ikonicu ( ) u donjem, desnom uglu ekrana i izaberi Pause Protection.
* U prozoru koji se otvori, izaberi By User Request.

Napomena: Ne zaboravi da uključiš ovu opciju po završetku čišćenja.

------------------------------


Skini ComboFix sa jedne od sledecih adresa na Desktop:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://www.forospyware.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Startuj ga i ne diraj prozor programa dok skenira.
Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

offline
  • Pridružio: 26 Nov 2008
  • Poruke: 24

ComboFix 08-12-29.02 - Goran 2008-12-30 8:45:50.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.255.79 [GMT 1:00]
Running from: c:\documents and settings\Goran\Desktop\ComboFix.exe
AV: Kaspersky Anti-Virus *On-access scanning disabled* (Outdated)
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\npf.sys
c:\windows\system32\packet.dll
c:\windows\system32\wpcap.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_NPF


((((((((((((((((((((((((( Files Created from 2008-11-28 to 2008-12-30 )))))))))))))))))))))))))))))))
.

2008-12-26 13:26 . 2008-12-26 13:26 <DIR> d---s---- c:\documents and settings\Goran\UserData
2008-12-26 05:23 . 2008-12-26 05:23 268 --ah----- C:\sqmdata01.sqm
2008-12-26 05:23 . 2008-12-26 05:23 244 --ah----- C:\sqmnoopt01.sqm
2008-12-25 12:18 . 2008-12-25 12:18 268 --ah----- C:\sqmdata00.sqm
2008-12-25 12:18 . 2008-12-25 12:18 244 --ah----- C:\sqmnoopt00.sqm
2008-12-25 05:31 . 2008-12-26 13:25 <DIR> d-------- c:\documents and settings\Goran\Contacts
2008-12-25 05:29 . 2008-12-25 05:29 <DIR> d-------- c:\program files\MSN Messenger
2008-12-20 04:41 . 2008-12-20 04:41 230,432 --a------ C:\PA7302.DAT
2008-12-20 03:05 . 2008-12-30 08:36 <DIR> d-------- c:\documents and settings\Goran\Application Data\mIRC
2008-12-17 04:10 . 2008-12-17 04:10 <DIR> d-------- c:\documents and settings\Goran\Application Data\Yahoo!
2008-12-17 04:10 . 2008-12-17 04:10 <DIR> d-------- c:\documents and settings\All Users\Application Data\Yahoo! Companion
2008-12-17 04:07 . 2008-12-17 04:10 <DIR> d-------- c:\program files\Yahoo!
2008-12-17 04:07 . 2008-12-17 04:15 <DIR> d-------- c:\documents and settings\All Users\Application Data\Yahoo!
2008-12-17 02:40 . 2008-12-17 02:40 <DIR> d-------- c:\program files\Eagle USB ADSL Modem
2008-12-17 02:40 . 2002-05-09 15:12 155,648 --a------ c:\windows\system32\adadix32.dll
2008-12-17 02:40 . 2001-07-27 12:25 127,456 --a------ c:\windows\system32\IPDETECT.EXE
2008-12-17 02:40 . 2004-03-02 09:24 127,065 --a------ c:\windows\system32\drivers\adiusbaw.sys
2008-12-17 02:40 . 2002-05-29 11:22 32,768 --a------ c:\windows\adiras.exe
2008-12-17 02:40 . 2004-06-25 12:32 12,169 --a------ c:\windows\system32\drivers\adiusbaw.cat
2008-12-17 02:40 . 2008-12-17 02:41 154 --a------ c:\windows\adidsl.ini
2008-12-16 03:21 . 2008-12-16 03:21 <DIR> d-------- c:\program files\SAGEM
2008-12-15 12:28 . 2008-12-17 02:40 315 --a------ c:\windows\adiras.ini
2008-12-14 08:54 . 2008-12-14 08:54 <DIR> d-------- c:\windows\PixArt
2008-12-14 08:54 . 2004-08-04 00:56 90,624 --a------ c:\windows\system32\kswdmcap.ax
2008-12-14 08:54 . 2004-08-04 00:56 90,624 --a--c--- c:\windows\system32\dllcache\kswdmcap.ax
2008-12-14 08:54 . 2004-08-04 00:56 61,952 --a------ c:\windows\system32\kstvtune.ax
2008-12-14 08:54 . 2004-08-04 00:56 61,952 --a--c--- c:\windows\system32\dllcache\kstvtune.ax
2008-12-14 08:54 . 2004-08-04 00:56 53,760 --a------ c:\windows\system32\vfwwdm32.dll
2008-12-14 08:54 . 2004-08-04 00:56 53,760 --a--c--- c:\windows\system32\dllcache\vfwwdm32.dll
2008-12-14 08:54 . 2004-08-04 00:56 43,008 --a------ c:\windows\system32\ksxbar.ax
2008-12-14 08:54 . 2004-08-04 00:56 43,008 --a--c--- c:\windows\system32\dllcache\ksxbar.ax
2008-12-14 08:54 . 2004-08-04 00:56 28,672 --a------ c:\windows\system32\vidcap.ax
2008-12-14 08:54 . 2004-08-04 00:56 28,672 --a--c--- c:\windows\system32\dllcache\vidcap.ax
2008-12-13 23:24 . 2008-12-13 23:24 <DIR> d-------- c:\documents and settings\All Users\Application Data\Acronis
2008-12-13 23:15 . 2008-12-13 23:15 <DIR> d-------- c:\documents and settings\Goran\Application Data\PC Suite
2008-12-13 23:15 . 2008-12-13 23:15 <DIR> d-------- c:\documents and settings\Goran\Application Data\Nokia
2008-12-13 23:15 . 2008-12-13 23:15 <DIR> d-------- c:\documents and settings\All Users\Application Data\PC Suite
2008-12-13 23:14 . 2008-12-13 23:14 <DIR> d-------- c:\program files\DIFX
2008-12-13 23:14 . 2008-12-13 23:14 <DIR> d-------- c:\program files\Common Files\PCSuite
2008-12-13 23:14 . 2008-12-13 23:14 <DIR> d-------- c:\program files\Common Files\Nokia
2008-12-13 23:14 . 2008-08-26 09:26 18,816 --a------ c:\windows\system32\drivers\pccsmcfd.sys
2008-12-13 23:13 . 2008-12-25 05:29 <DIR> d----c--- c:\windows\system32\DRVSTORE
2008-12-13 23:13 . 2008-12-13 23:13 <DIR> d-------- c:\program files\PC Connectivity Solution
2008-12-13 23:13 . 2008-12-13 23:14 <DIR> d-------- c:\program files\Nokia
2008-12-13 23:13 . 2008-09-15 07:56 91,136 --a------ c:\windows\system32\nmwcdcls.dll
2008-12-13 23:12 . 2008-12-13 23:12 <DIR> d-------- c:\documents and settings\All Users\Application Data\Installations
2008-12-13 21:55 . 2008-12-13 21:55 <DIR> d-------- c:\program files\Ares
2008-12-13 17:42 . 2008-12-13 17:42 96,976 --a------ c:\windows\system32\drivers\klin.dat
2008-12-13 17:42 . 2008-12-13 17:42 87,855 --a------ c:\windows\system32\drivers\klick.dat
2008-12-13 17:41 . 2008-12-13 17:41 <DIR> d-------- c:\program files\Kaspersky Lab
2008-12-13 17:41 . 2008-12-30 08:50 <DIR> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2008-12-13 17:41 . 2008-12-30 08:49 670,240 --ahs---- c:\windows\system32\drivers\fidbox.dat
2008-12-13 17:41 . 2008-12-30 08:49 180,256 --ahs---- c:\windows\system32\drivers\fidbox2.dat
2008-12-13 17:41 . 2008-12-30 08:49 7,364 --ahs---- c:\windows\system32\drivers\fidbox.idx
2008-12-13 17:41 . 2008-12-30 08:49 2,744 --ahs---- c:\windows\system32\drivers\fidbox2.idx
2008-12-13 05:09 . 2008-12-26 06:16 194,534 --a------ c:\windows\ACD Wallpaper.bmp
2008-12-13 05:07 . 2008-12-13 05:07 <DIR> d-------- c:\program files\ACD Systems
2008-12-13 03:26 . 2008-12-13 03:26 <DIR> d-------- c:\documents and settings\Goran\Application Data\Media Player Classic
2008-12-13 02:53 . 2008-12-14 10:17 <DIR> d-------- c:\documents and settings\Goran\Application Data\Ahead
2008-12-13 02:42 . 2003-12-11 11:34 1,318,912 --------- c:\windows\UNNMP.exe
2008-12-13 02:42 . 2003-12-16 13:07 50,682 --------- c:\windows\UNNMP.cfg
2008-12-13 02:41 . 2003-11-27 07:44 1,339,392 --------- c:\windows\UNMRW.exe
2008-12-13 02:41 . 2003-12-16 13:07 29,671 --------- c:\windows\UNMRW.cfg
2008-12-13 02:41 . 2003-08-21 15:56 25,520 --------- c:\windows\system32\drivers\incdrm.sys
2008-12-13 02:40 . 2003-10-06 08:41 113,664 -ra------ c:\windows\system32\drivers\imagesrv.sys
2008-12-13 02:40 . 2003-10-06 08:41 5,632 -ra------ c:\windows\system32\drivers\imagedrv.sys
2008-12-13 02:39 . 2001-07-09 10:50 155,648 -ra------ c:\windows\system32\NeroCheck.exe
2008-12-13 02:38 . 2008-12-13 02:38 <DIR> d-------- c:\program files\Common Files\Ahead
2008-12-13 02:38 . 2008-12-13 02:42 <DIR> d-------- c:\program files\Ahead
2008-12-13 02:38 . 2008-12-13 02:38 <DIR> d-------- c:\documents and settings\All Users\Application Data\Ahead
2008-12-13 02:38 . 2003-12-11 11:34 1,318,912 --------- c:\windows\UNNeroVision.exe
2008-12-13 02:38 . 2001-07-06 13:41 569,344 -ra------ c:\windows\system32\imagr5.dll
2008-12-13 02:38 . 2001-07-06 11:44 544,768 -ra------ c:\windows\system32\imagx5.dll
2008-12-13 02:38 . 2001-07-06 17:24 283,920 -ra------ c:\windows\system32\ImagXpr5.dll
2008-12-13 02:38 . 2003-12-16 13:07 109,542 --------- c:\windows\UNNeroVision.cfg
2008-12-13 02:38 . 2001-06-26 07:15 38,912 -ra------ c:\windows\system32\picn20.dll
2008-12-13 02:38 . 2001-03-08 16:30 24,064 -ra------ c:\windows\system32\msxml3a.dll
2008-12-13 02:18 . 2008-12-13 02:18 <DIR> d-------- c:\program files\DVD Decrypter
2008-12-13 01:19 . 2008-12-13 01:19 <DIR> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-12-13 01:17 . 2008-12-13 01:17 <DIR> d-------- c:\program files\Nuclear Coffee
2008-12-13 01:15 . 2008-12-13 01:15 <DIR> d-------- c:\program files\Godlike Developers
2008-12-13 01:15 . 2008-12-13 01:45 <DIR> d-a------ c:\documents and settings\All Users\Application Data\TEMP
2008-12-13 01:11 . 2008-12-13 01:11 <DIR> d-------- c:\program files\Skype
2008-12-13 01:11 . 2008-12-13 01:11 <DIR> d-------- c:\program files\Common Files\Skype
2008-12-13 01:11 . 2008-12-25 11:36 <DIR> d-------- c:\documents and settings\Goran\Application Data\Skype
2008-12-13 01:10 . 2008-12-13 01:11 <DIR> d-------- c:\documents and settings\All Users\Application Data\Skype
2008-12-13 01:04 . 2008-12-13 04:59 <DIR> d-------- c:\program files\The KMPlayer
2008-12-13 01:00 . 2008-12-13 01:00 <DIR> d-------- c:\program files\Stardock
2008-12-13 01:00 . 2008-12-13 01:00 <DIR> d-------- c:\program files\Common Files\Stardock
2008-12-13 00:59 . 2008-12-13 00:59 <DIR> d-------- c:\windows\SHELLNEW
2008-12-13 00:59 . 2008-12-13 00:59 <DIR> d-------- c:\program files\Microsoft ActiveSync
2008-12-13 00:59 . 2003-06-18 17:31 17,920 --a------ c:\windows\system32\mdimon.dll
2008-12-13 00:59 . 2008-12-13 00:59 376 --a------ c:\windows\ODBC.INI
2008-12-13 00:50 . 2007-04-17 00:05 5,632,000 --a------ c:\windows\system32\RLVirtualCamera.ocx
2008-12-13 00:50 . 2007-03-19 16:00 31,616 --a------ c:\windows\system32\drivers\RLVrtAuCbl.sys
2008-12-13 00:48 . 2008-12-13 00:48 79 -r-hs---- c:\windows\CT4CET.bin
2008-12-13 00:47 . 2008-12-13 00:50 <DIR> d-------- c:\program files\Reallusion
2008-12-13 00:47 . 2008-12-13 00:47 <DIR> d-------- c:\program files\Common Files\Reallusion
2008-12-13 00:44 . 2008-12-13 00:44 <DIR> d-------- c:\windows\Album
2008-12-13 00:44 . 2008-12-13 00:44 <DIR> d-------- c:\program files\KYE
2008-12-13 00:44 . 2005-01-28 14:15 7,064 --a------ c:\windows\system32\WMVCORE.lib
2008-12-13 00:40 . 2008-12-13 00:40 <DIR> d-------- c:\program files\Common Files\iLook300
2008-12-13 00:40 . 2007-10-29 16:25 458,112 --a------ c:\windows\system32\drivers\PAC7302.SYS
2008-12-13 00:40 . 2007-05-17 15:50 129,024 --a------ c:\windows\system32\SP7302.AX
2008-12-13 00:40 . 2007-11-02 11:07 6,656 --a------ c:\windows\system32\CoInst_071029.dll
2008-12-13 00:40 . 2007-03-20 16:44 566 --a------ c:\windows\system32\SP7302.INI
2008-12-13 00:39 . 2008-12-17 02:39 <DIR> d--h----- c:\program files\InstallShield Installation Information
2008-12-13 00:39 . 2008-12-13 00:39 <DIR> d-------- c:\documents and settings\Goran\Application Data\InstallShield
2008-12-13 00:33 . 2008-12-13 00:33 <DIR> d-------- c:\program files\VideoLAN
2008-12-13 00:33 . 2008-12-13 00:33 <DIR> d-------- c:\documents and settings\Goran\Application Data\vlc
2008-12-13 00:18 . 2008-12-13 20:42 <DIR> d-------- c:\program files\Common Files\Adobe
2008-12-13 00:16 . 2008-12-13 22:35 <DIR> d-------- C:\PROGRAMI BEZ INSTALACIJE

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-27 01:34 --------- d-----w c:\program files\Nexus Radio
2008-12-20 00:46 --------- d-----w c:\program files\Opera
2008-12-17 01:40 29 ----a-w c:\windows\system32\drivers\adidsl.cfg
2008-12-12 22:35 --------- d-----w c:\program files\Real Alternative
2008-12-12 22:34 --------- d-----w c:\program files\K-Lite Codec Pack
2008-12-12 22:31 --------- d-----w c:\program files\DVD Shrink
2008-12-12 22:31 --------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2008-12-12 22:28 --------- d-----w c:\program files\VirtualDJ
2008-12-12 22:26 306,432 ----a-w c:\windows\system32\TuneUpDefragService.exe
2008-12-12 22:26 --------- d-----w c:\documents and settings\Goran\Application Data\TuneUp Software
2008-12-12 22:25 --------- d-----w c:\program files\TuneUp Utilities 2008
2008-12-12 22:25 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2008-12-12 22:25 --------- d-----w c:\documents and settings\All Users\Application Data\TuneUp Software
2008-12-12 22:23 --------- d-----w c:\program files\FastStone Image Viewer
2008-12-12 22:23 --------- d-----w c:\documents and settings\Goran\Application Data\FastStone
2008-12-12 22:20 --------- d-----w c:\program files\Lavasoft
2008-12-12 22:20 --------- d-----w c:\documents and settings\All Users\Application Data\Lavasoft
2008-12-12 22:17 96,320 ----a-w c:\windows\system32\drivers\snapman.sys
2008-12-12 22:17 30,688 ----a-w c:\windows\system32\drivers\tifsfilt.sys
2008-12-12 22:17 249,152 ----a-w c:\windows\system32\drivers\timntr.sys
2008-12-12 22:17 --------- d-----w c:\program files\Common Files\Acronis
2008-12-12 22:17 --------- d-----w c:\program files\Acronis
2008-12-12 21:59 --------- d-----w c:\program files\Common Files\InstallShield
2008-12-12 21:42 --------- d-----w c:\program files\microsoft frontpage
2008-11-24 14:32 57,344 ----a-w c:\windows\system32\ff_vfw.dll
2008-11-11 19:00 218,376 ----a-w c:\windows\system32\klogon.dll
2008-11-11 18:58 25,601 ----a-w c:\windows\system32\drivers\klopp.dat
2008-10-28 22:35 684,032 ----a-w c:\windows\system32\divx.dll
2008-09-25 08:03 81,920 ----a-w c:\windows\system32\dpl100.dll
2008-09-19 21:57 3,596,288 ----a-w c:\windows\system32\qt-dx331.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
2008-07-28 11:47 160496 --a------ c:\progra~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 319488]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-07-09 4136960]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]

c:\documents and settings\Goran\Start Menu\Programs\Startup\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2008-12-13 1642496]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
DSLMON.lnk - c:\program files\Eagle USB ADSL Modem\Eagle Family USB ADSL\dslmon.exe [2008-12-17 929889]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
"MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784]
R1 ANVIOCTL;ANVIOCTL;c:\windows\system32\DRIVERS\anvioctl.sys [2008-12-12 233816]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 PAC7302;iLook 300;c:\windows\system32\DRIVERS\PAC7302.SYS [2008-12-13 458112]
R3 ReallusionVirtualAudio;Reallusion Virtual Audio;c:\windows\system32\DRIVERS\RLVrtAuCbl.sys [2008-12-13 31616]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder

2008-12-26 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 15:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2008-12-30 08:50:18
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1052)
c:\windows\system32\COMRes.dll

- - - - - - - > 'lsass.exe'(1108-)
c:\windows\system32\relog_ap.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\windows\asuskbservice.exe
c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2008-12-30 8:52:14 - machine was rebooted
ComboFix-quarantined-files.txt 2008-12-30 07:52:10

Pre-Run: 24,785,256,448 bytes free
Post-Run: 24,747,180,032 bytes free

257







Odradio sam scan,pa da vidimo sta je dalje za ciniti...

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Da, li mozes da kazes koji je problem, ukoliko ga uopste ima?

offline
  • Pridružio: 26 Nov 2008
  • Poruke: 24

Vec sam u prvom obracanju napisao sta je problem,ali evo da ponovim....problem se sastoji u tome sto ne moze da izdrzi konekciju na internetu duze od 15-20 minuta a ponekad se diskonektuje i nakon minut-dva...izbacuje onaj sivi prozor sa error.... send report ili dont send report i nakon pritiska na jednu od datih opcija,diskonektuje se i prica ide iz pocetka! Moram opet da se konektujem i sve sto sam do tog momenta utadio propada...
To je postao pravi horor jer nista zivo ne mozes da odradis do kraja pa i ovo skeniranje koje ste mi nalozili sam morao da odradim iz dva puta,taman nesto krenes i on "resi"da se diskonektuje...

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Problem nije vezan za malwer.

Komp je cist.

Uradi jos ovo:

Klikni START a zatim RUN
U liniju za unos teksta ukucaj Combofix /u i klikni OK





Sačekaj da se proces deinstalacije završi

Gornja procedura će:
Obrisati sledeće:
ComboFix i njegove file-ove i foldere
VundoFix Backups folder, ako postoji
C:\Deckard folder, ako postoji
C:\OtMoveIt folder, ako postoji

Resetovati podešavanja sata na kompjuteru
Sakriti ekstenzije file-ova, ako je potrebno
Sakriti sistemske/skrivene file-ove/foldere, ako je potrebno
Resetovati System Restore



Pozdrav.

offline
  • Pridružio: 26 Nov 2008
  • Poruke: 24

Ok,hvala sto smo bar to onda reseno a videcu jos na par mesta sta mi je ciniti da resim ovaj dosadni problem...
Pozdravljam te helen1 i zelim ti srecnu i uspesnu novu 2009.godinu!
Naravno i svim ostalim facama na MyCity-u!!!
pozz!
Wink

p.s.
Kad budem ovo resio,zovem te na pice!
Smile)

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

BoxterBG ::

p.s.
Kad budem ovo resio,zovem te na pice!
Smile)


Resi sto pre, dok se ne vratim u Sombor na fax Ziveli

Ko je trenutno na forumu
 

Ukupno su 530 korisnika na forumu :: 29 registrovanih, 3 sakrivenih i 498 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: ajo baba, Ben Roj, Boris90, Chainsaw, darkojbn, Denaya, drimer, HrcAk47, Jeremiah, kunktator, mile23, Milometer, misa2, novator, opt1, pein, powSrb, Prašinar, proka89, radoznao, Romibrat, Shinobi, Sirius, Srle993, VJ, vlahale, zdrebac, šumar bk2, 79693