Možda tražite i:
Spybot - Search & Destroy 2 beta
Pomoc-Spybot Search&Destroy
promena velicine search bar-a u Firefoxu

MyCity » Ambulanta -> Arhiva Ambulante » Neradi search

Neradi search

Napisano na dan: 24.1.2008

Strana:
1
2
3

Neradi search

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3

Golas Poslao: 24 Jan 2008 17:45 Idi na vrh
offline Golas Novi MyCity građanin Pridružio: 24 Jan 2008 Poruke: 28 Gde živiš: Sombor-Novi Sad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of HijackThis v1.99.1 Scan saved at 17:39:27, on 24.1.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\LckFldService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\UEAgent\UEAgent.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Macrogaming\SweetIM\SweetIM.exe C:\WINDOWS\system32\wupeng.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\PC Connectivity Solution\NclBTHandler.exe C:\WINDOWS\system32\mdm.exe C:\Program Files\PeerWeb DC++\PeerWeb DC++.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe C:\Program Files\Ahead\nero\nero.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Nebojsa\Desktop\HijackThis.exe R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\AdobeR.exe O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [Winupdate Engine] C:\WINDOWS\system32\wupeng.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKCU\..\Run: [Vidalia] "C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe" O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - Global Startup: Bluetooth.lnk = ? O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\system32\LckFldService.exe O23 - Service: RadClock - Unknown owner - C:\Program Files\RadLinker\RadClock.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: UEAgent - SecureSynergy Pvt. Ltd. - C:\WINDOWS\UEAgent\UEAgent.exe O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe (file missing) Kada pokrenem search pojavi se samo onaj ker sa strane i plava pozadina ali jednostavno nema polja za pretragu.

Profil

bobby Poslao: 24 Jan 2008 17:50 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zdravo. Skini ComboFix sa jedne od sledecih adresa na Desktop: http://www.techsupportforum.com/sectools/sUBs/ComboFix.exe http://download.bleepingcomputer.com/sUBs/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

Golas Poslao: 24 Jan 2008 18:19 Idi na vrh
offline Golas Novi MyCity građanin Pridružio: 24 Jan 2008 Poruke: 28 Gde živiš: Sombor-Novi Sad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 08-01-23.2 - Nebojsa 2008-01-24 18:11:52.2 - [color=red][b]FAT32[/b][/color]x86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.508 [GMT 1:00] Running from: C:\Documents and Settings\Nebojsa\Desktop\ComboFix(2).exe [color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color] . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Previous Run ------- . C:\Documents and Settings\Nebojsa\My Documents\My Music\Strana\Katarina\Earth Wind & Fire\Desktop_.ini C:\Documents and Settings\Nebojsa\My Documents\My Music\Strana\Katarina\Laki jazz\Desktop_.ini C:\Documents and Settings\Nebojsa\My Documents\My Music\Strana\Katarina\Tracy Chapman\Desktop_.ini C:\Documents and Settings\Nebojsa\ravmonlog . ((((((((((((((((((((((((( Files Created from 2007-12-24 to 2008-01-24 ))))))))))))))))))))))))))))))) . 2008-01-24 18:07 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\Nircmd.exe 2008-01-22 23:47 . 2008-01-22 23:47 <DIR> d-------- C:\totalcmd 2008-01-22 23:47 . 2008-01-23 23:56 1,003 --a------ C:\WINDOWS\wincmd.ini 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\UC.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\RAR.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\PKZIP.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\PKUNZIP.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\NOCLOSE.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\LHA.PIF 2008-01-22 23:47 . 2007-09-14 07:02 545 --a------ C:\WINDOWS\ARJ.PIF 2008-01-22 23:09 . 2008-01-22 23:09 <DIR> d-------- C:\WINDOWS\UEAgent 2008-01-22 23:09 . 2008-01-22 23:09 <DIR> d-------- C:\Program Files\Common Files\PatchEasy 2008-01-22 23:09 . 2008-01-22 23:14 1,675,264 --a------ C:\WINDOWS\system32\codec4ue3dbs.dll 2008-01-21 17:32 . 2008-01-21 17:32 12,288 --a------ C:\WINDOWS\system32\wupeng.exe 2008-01-15 18:10 . 2008-01-15 18:11 <DIR> d-------- C:\WINDOWS\system32\URTTEMP 2008-01-15 13:11 . 2008-01-15 13:11 <DIR> d-------- C:\Program Files\Sony 2008-01-15 12:48 . 2008-01-15 12:48 <DIR> d-------- C:\Program Files\Sony Setup 2008-01-15 00:16 . 2008-01-15 00:16 <DIR> d-------- C:\Program Files\DAEMON Tools 2008-01-14 23:52 . 2008-01-14 23:52 <DIR> d--h----- C:\WINDOWS\PIF 2008-01-14 19:06 . 2008-01-14 19:06 <DIR> d-------- C:\Program Files\Synaptics 2008-01-14 18:45 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys 2008-01-14 18:45 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\dllcache\mouhid.sys 2008-01-13 18:33 . 2008-01-13 18:33 <DIR> d-------- C:\Program Files\DkZ Studio 2008-01-11 16:47 . 2007-03-08 00:51 129,784 --------- C:\WINDOWS\system32\pxafs.dll 2008-01-11 10:04 . 2008-01-11 10:05 <DIR> d-------- C:\Program Files\PeerWeb DC++ 2008-01-11 00:22 . 2008-01-11 00:22 <DIR> d-------- C:\Program Files\Morpheus 2008-01-10 23:46 . 2008-01-10 23:46 <DIR> d-------- C:\Program Files\BearShare Applications 2008-01-10 23:46 . 2006-11-12 11:39 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx 2008-01-10 19:48 . 2008-01-10 19:48 822,272 --a------ C:\WINDOWS\system32\drivers\BCMWL5.SYS . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-01-16 12:01 43,920 ----a-w C:\WINDOWS\AVI32HLM.DLL 2008-01-14 23:13 685,816 ----a-w C:\WINDOWS\system32\drivers\sptd.sys 2007-12-04 14:56 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys 2007-12-04 14:55 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys 2007-12-04 14:53 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys 2007-12-04 14:51 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys 2007-12-04 14:49 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys 2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe 2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr 2007-11-28 22:00 --------- d-----w C:\Program Files\uTorrent 2007-11-28 17:21 --------- d-----w C:\Program Files\Macrogaming 2007-11-14 07:26 450,560 ----a-w C:\WINDOWS\system32\dllcache\jscript.dll 2007-11-07 17:26 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2007-11-07 09:26 721,920 ----a-w C:\WINDOWS\system32\lsasrv.dll 2007-11-07 09:26 721,920 ------w C:\WINDOWS\system32\dllcache\lsasrv.dll 2007-10-30 17:20 360,064 ------w C:\WINDOWS\system32\dllcache\tcpip.sys 2007-10-30 10:16 3,058,688 ------w C:\WINDOWS\system32\dllcache\mshtml.dll 2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll 2007-10-29 22:43 1,287,680 ------w C:\WINDOWS\system32\dllcache\quartz.dll 2007-10-27 16:40 227,328 ----a-w C:\WINDOWS\system32\wmasf.dll 2007-10-27 16:40 227,328 ----a-w C:\WINDOWS\system32\dllcache\wmasf.dll 2007-10-26 03:36 8,454,656 ------w C:\WINDOWS\system32\dllcache\shell32.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="~C:\Program Files\MSN Messenger\MsnMsgr.exe" [ ] "OM2_Monitor"="C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [2007-09-11 18:43 95536] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-08-29 16:09 171464] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2007-08-04 16:45 716800] "PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2006-11-08 13:27 222208] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224] "SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 02:29 102400] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 00:56 15360] "PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-08-04 16:44 1634304] C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-02-15 16:16:02 581693] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{35B2861B-2B26-4691-9FF0-09083722C736}"= C:\PROGRA~1\RADLIN~1\RadExe.dll [2004-01-30 05:19 139264] [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] --a------ 2004-08-04 00:56 15360 C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup] --a------ 2007-08-04 16:44 249856 C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler] --a------ 2005-08-11 16:30 81920 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MalwareCrush] C:\Program Files\MalwareCrush\MalwareCrush.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] --a------ 2004-10-13 18:24 1694208 C:\Program Files\Messenger\MSMSGS.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck] --a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RavAV] C:\WINDOWS\AdobeR.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP] --a------ 2005-05-20 09:11 925696 C:\Program Files\Analog Devices\Core\smax4pnp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM] -ra------ 2007-10-14 18:09 103712 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] --a------ 2007-01-07 20:05 180269 C:\Program Files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vidalia] C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winupdate Engine] --a------ 2008-01-21 17:32 12288 C:\WINDOWS\system32\wupeng.exe R2 UEAgent;UEAgent;C:\WINDOWS\UEAgent\UEAgent.exe [2008-01-22 23:14] S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service;"C:\Program Files\MSN Messenger\usnsvc.exe" [2007-01-19 12:54] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{78b40236-c3ad-11dc-b864-001bd7bd484d}] \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe killVBS.vbs Newly Created Service - PROCEXP90 . ************************************************************************ catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-01-24 18:12:40 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Dopuna: 24 Jan 2008 18:19 Combo je odradio posao. Search radi. Hvala puno

Profil

bobby Poslao: 24 Jan 2008 18:23 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Racunar ti je jos uvek inficiran. Zapatio si infekciju koja se siri preko USB stickova (MP3 playera, prenosnih HD-ova itd). Imas li nesto od toga, ili si se mozda inficirao sa uredjaja pozajmljenog od nekoga? Pride toga, ima jos sumnjivih stvari na sistemu, ali zelim prvo da mi potvrdis da zelis da ovo ocistimo do kraja.

Profil

Golas Poslao: 24 Jan 2008 18:30 Idi na vrh
offline Golas Novi MyCity građanin Pridružio: 24 Jan 2008 Poruke: 28 Gde živiš: Sombor-Novi Sad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zelim da se sve ocisti. Cesto prenosim neke podatke sa kojecijih memory stickova.

Profil

bobby Poslao: 24 Jan 2008 18:39 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uploaduj mi na proveru sledeci fajl: C:\WINDOWS\system32\wupeng.exe Upload ces uraditi preko sledeceg obrasca: http://www.mycity.rs/ambulanta-upload.php Javi ovde u temi kada zavrsis upload. ----------------------------------------------------- Preuzmi program Flash_Disinfector. program se pokreće dvoklikom na Flash_Disinfector.exe kada se pojavi poruka sa obaveštenjem, potrebno je priključiti inficirane USB flash drive-ove (pri tome držati pritisnut taster Shift kako bi se izbegao autoplay) kliknuti na OK i sačekati da se proces završi kada se pojavi poruka Done !!, kliknuti na OK. Pokreni ovaj program po jednom za svaku potencijalno inficiranu prenosnu memoriju. ----------------------------------- Napravi nov HijackThis log i postavi ga na pregled. Dopuna: 24 Jan 2008 18:39 Jos jedan sumnjiv fajl za koji bih te zamolio da uploadujes na proveru: C:\WINDOWS\AVI32HLM.DLL Isto ga uploaduj preko obrasca ciju sam ti adresu dao gore.

Profil

Golas Poslao: 24 Jan 2008 18:45 Idi na vrh
offline Golas Novi MyCity građanin Pridružio: 24 Jan 2008 Poruke: 28 Gde živiš: Sombor-Novi Sad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uploadovano Dopuna: 24 Jan 2008 18:45 Logfile of HijackThis v1.99.1 Scan saved at 18:43, on 2008-01-24 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\LckFldService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\UEAgent\UEAgent.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\WgaTray.exe C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\PC Connectivity Solution\NclBTHandler.exe C:\WINDOWS\explorer.exe C:\Program Files\PeerWeb DC++\PeerWeb DC++.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Nebojsa\My Documents\Programi\Moji\HijackThis.exe R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\system32\LckFldService.exe O23 - Service: RadClock - Unknown owner - C:\Program Files\RadLinker\RadClock.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: UEAgent - SecureSynergy Pvt. Ltd. - C:\WINDOWS\UEAgent\UEAgent.exe O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe (file missing)

Profil

bobby Poslao: 24 Jan 2008 19:11 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! C:\WINDOWS\system32\wupeng.exe <-- trojanac C:\WINDOWS\AVI32HLM.DLL <-- nije pravi DLL, u pitanju su neki kriptovani podaci Trojanca je potrebno obrisati. Probaj obicno brisanje, pa ukoliko ne ide onda cemo traziti soluciju kako da ga obrisemo. Sto se tice onog AVI32HLM.DLL, ne bih znao sta da ti kazem. Znam zasigurno da nije DLL, ali ne mogu znati kojem programu pripada. Mozda pripada nekom legitimnom programu sa tvog kompa, pa bi brisanje mozda napravilo neku stetu. S druge strane, Google ne nalazi nigde vise na netu da je neko spominjao ovaj fajl. Ja bih ga ostavio gde jeste, posto sam po sebi nije opasan.

Profil

Golas Poslao: 24 Jan 2008 19:25 Idi na vrh
offline Golas Novi MyCity građanin Pridružio: 24 Jan 2008 Poruke: 28 Gde živiš: Sombor-Novi Sad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ne da se Ne mogu da ga obrisem Dopuna: 24 Jan 2008 19:25 Automatski mi se instalirao Malware crush 3.7. neprestano mi izbacuje da pronalazi 20 virusa, a ne mogu da se registrujem (jer mi win nije licenciran) i obrisem ih, niti da ga deaktiviram. Radio sam sve i u security center-u i u startup-u, ali se uvek aktivira nakon restarta. Ima li leka tome (osim promene win-a

Profil

bobby Poslao: 24 Jan 2008 19:32 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Daj novi HijackThis log. Izgleda da si upravo zapatio drugu infekciju.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Neradi search

Ko je trenutno na forumu

Ukupno su 933 korisnika na forumu :: 36 registrovanih, 5 sakrivenih i 892 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: bankulen, Ben Roj, bojank, BSD, djo97, doktor1964, DPera, draggan, DragoslavS, gorican, hyla, ivicasimo, Karla, Krvava Devetka, kybonacci, Lazarus, m0nstrum_, Mi lao shu, mikrimaus, milenko crazy north, moldway, Motocar, Nemanja.M, nemkea71, panzerwaffe, Parker, Sir Budimir, slonic_tonic, sombrero, SR-3m, Srki94, Srle993, tubular, vaso1, Wrangler, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by