MyCity » Ambulanta -> Arhiva Ambulante » Pomoc problem sa IE

Pomoc problem sa IE

Napisano na dan: 16.7.2008

Strana:
1
2

Pomoc problem sa IE

Sledeća strana

Pagination

Odgovori

Strana:
1
2

marcco2 Poslao: 16 Jul 2008 22:23 Idi na vrh
offline marcco2 Novi MyCity građanin Pridružio: 16 Jul 2008 Poruke: 6	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kad god pokrenem neki sajt sa IE (probao verzije 6 i 7) pojavi mi se error i poruka The instruction at "0x028cc838" referenced memory at "0x00000001". The memory could not be written. Takodje ovo se ponekad desava i sa firefoxom. Sa online trend micro scanom sam nasao virus Trojan.Win32.BHO.eya ali AVG free i nod32 ga ne vide. Logfile of HijackThis v1.99.1 Scan saved at 22:10:32, on 7/16/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\Mixer.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\CursorXP\CursorXP.exe C:\WINDOWS\ATKKBService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\PeerGuardian2\pg2.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\MSN Messenger\livecall.exe C:\Documents and Settings\XP\Desktop\TR3.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: IE.Filter - {8B2AE9C0-1555-4C92-905A-531532F15698} - (no file) O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: DSLMON.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {33331111-1111-1111-1111-615111193427} - O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} (SopCore Control) - download.sopcast.com/download/SOPCORE.CAB O17 - HKLM\System\CCS\Services\Tcpip\..\{23E0C112-7608-4B13-AD57-AC4544C96768}: NameServer = 194.247.192.33 194.247.192.1 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: NVDESK32.DLL,avgrsstx.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE O23 - Service: FLEXlm License Manager - Unknown owner - C:\Program Files\Common Files\AliasWavefront Shared\licensing\etc\lmgrd.exe (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe

Profil

helen1 Poslao: 16 Jul 2008 23:00 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozzz, * Klikni desnim tasterom miša na AVG ikonicu ( ) u donjem, desnom uglu ekrana. * Kada se pokrene AVG Control Center, dvoklikni na AVG Resident Shield komponentu. * U prozoru koji se otvori, deštikliraj opciju Turn on AVG Resident Shield i klikni OK. Napomena: Ne zaboravi da uključiš ovu opciju po završetku čišćenja. ----------------------- Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

marcco2 Poslao: 17 Jul 2008 21:30 Idi na vrh
offline marcco2 Novi MyCity građanin Pridružio: 16 Jul 2008 Poruke: 6	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! evo sta kaze combo fix: ComboFix 08-07-15.4 - XP 2008-07-16 23:06:35.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.100 [GMT 2:00] Running from: C:\Documents and Settings\XP\Desktop\ComboFix.exe * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\Downloaded Program Files\setup.inf . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_{DEF85C80-216A-43AB-AF70-1665EDBE2780} -------\Service_{DEF85C80-216A-43ab-AF70-1665EDBE2780} ((((((((((((((((((((((((( Files Created from 2008-06-16 to 2008-07-16 ))))))))))))))))))))))))))))))) . 2008-07-15 23:22 . 2008-07-15 23:22 2,714 --a------ C:\WINDOWS\system32\tmp.reg 2008-07-15 20:19 . 2008-07-15 22:23 <DIR> d--h----- C:\$AVG8.VAULT$ 2008-07-15 19:16 . 2008-07-16 21:59 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg 2008-07-15 19:16 . 2008-07-15 19:16 <DIR> d-------- C:\Program Files\AVG 2008-07-15 19:16 . 2008-07-15 22:58 <DIR> d-------- C:\Documents and Settings\XP\Application Data\AVGTOOLBAR 2008-07-15 19:16 . 2008-07-15 19:16 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg8 2008-07-15 19:16 . 2008-07-15 19:16 96,520 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys 2008-07-15 19:16 . 2008-07-15 19:16 76,040 --a------ C:\WINDOWS\system32\drivers\avgtdix.sys 2008-07-15 19:16 . 2008-07-15 19:16 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll 2008-07-14 23:42 . 2007-04-24 16:30 60,273 --a------ C:\WINDOWS\system32\pthreadGC2.dll 2008-07-14 23:42 . 2008-03-28 18:41 7,680 --a------ C:\WINDOWS\system32\ff_vfw.dll 2008-07-14 23:42 . 2007-07-10 17:10 547 --a------ C:\WINDOWS\system32\ff_vfw.dll.manifest 2008-07-14 23:33 . 2008-07-14 23:33 230 --a------ C:\WINDOWS\system32\spupdsvc.inf 2008-07-14 23:29 . 2008-07-14 23:29 <DIR> d-------- C:\WINDOWS\FF5D0751E69211D499D00060B0A11DC1.TMP 2008-07-13 10:44 . 2008-07-13 10:44 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ESET 2008-07-13 09:09 . 2008-07-13 09:09 <DIR> d-------- C:\Program Files\Lavasoft 2008-07-13 09:09 . 2008-07-13 09:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-07-12 11:29 . 2001-08-23 10:00 68,608 --a------ C:\WINDOWS\system32\plugin.ocx 2008-07-12 11:29 . 2001-08-23 10:00 68,608 --a------ C:\WINDOWS\system32\dllcache\plugin.ocx 2008-07-12 11:00 . 2008-07-12 11:00 <DIR> d-------- C:\Documents and Settings\XP\.housecall6.6 2008-07-12 10:35 . 2008-07-12 10:35 <DIR> d-------- C:\Documents and Settings\XP\Application Data\IE7pro 2008-07-12 10:35 . 2006-06-19 15:18 20,480 --a------ C:\WINDOWS\system32\normaliz.dll 2008-07-12 10:35 . 2006-09-01 14:44 8,798 --a------ C:\WINDOWS\system32\icrav03.rat 2008-07-03 21:03 . 2008-07-03 21:03 268 --ah----- C:\sqmdata05.sqm 2008-07-03 21:03 . 2008-07-03 21:03 244 --ah----- C:\sqmnoopt05.sqm 2008-06-19 17:50 . 2008-06-19 17:50 268 --ah----- C:\sqmdata04.sqm 2008-06-19 17:50 . 2008-06-19 17:50 244 --ah----- C:\sqmnoopt04.sqm . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-07-16 21:07 --------- d-----w C:\Program Files\PeerGuardian2 2008-07-15 15:58 --------- d-----w C:\Documents and Settings\XP\Application Data\uTorrent 2008-07-14 21:42 --------- d-----w C:\Program Files\ffdshow 2008-07-14 21:31 --------- d-----w C:\Program Files\Norton SystemWorks 2008-07-14 21:31 --------- d-----w C:\Program Files\Common Files\Symantec Shared 2008-07-14 21:30 --------- d-----w C:\Program Files\Common Files\Macromedia 2008-07-14 21:29 --------- d-----w C:\Program Files\DivXCodec 2008-07-14 21:29 --------- d-----w C:\Program Files\DAP 2008-07-13 07:09 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2008-06-13 15:32 --------- d-----w C:\Documents and Settings\XP\Application Data\Talkback 2008-05-16 09:58 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe 2006-04-18 17:12 170,752 ----a-w C:\Documents and Settings\XP\Application Data\GDIPFONTCACHEV1.DAT 2002-04-07 06:46 81,920 ----a-w C:\Program Files\Euro Calculator.exe . ------- Sigcheck ------- 2002-08-29 01:58 332928 244a2f9816bc9b593957281ef577d976 C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys 2004-08-03 23:14 359040 9f4b36614a0fc234525ba224957de55c C:\WINDOWS\ServicePackFiles\i386\TCPIP.SYS 2007-11-04 01:42 359040 27a5959c94ee173a063ca06bd14f021a C:\WINDOWS\system32\dllcache\TCPIP.SYS 2007-11-04 01:42 359040 27a5959c94ee173a063ca06bd14f021a C:\WINDOWS\system32\drivers\TCPIP.SYS . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:56 15360] "CursorXP"="C:\Program Files\CursorXP\CursorXP.exe" [2002-06-18 22:53 66560] "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 12:54 5674352] "PeerGuardian"="C:\Program Files\PeerGuardian2\pg2.exe" [2005-09-18 18:40 1421824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-12-10 03:06 7311360] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-12-10 03:06 86016] "ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 06:03 221184] "OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 11:00 49152] "AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-07-15 19:16 1232152] "Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2004-01-14 02:10 409600] "C-Media Mixer"="Mixer.exe" [2001-11-14 19:08 1216512 C:\WINDOWS\mixer.exe] "nwiz"="nwiz.exe" [2005-12-10 03:06 1519616 C:\WINDOWS\system32\nwiz.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 00:56 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "RunNarrator"="Narrator.exe" [2004-08-04 00:56 53760 C:\WINDOWS\system32\narrator.exe] C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2003-01-23 16:11:08 110592] DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-04-19 19:36:42 839680] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=NVDESK32.DLL,avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.AP41"= APmpg4v1.dll "msacm.l3acma"= L3codecp.acm [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "nwiz"=nwiz.exe /install "NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit "NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "D:\\Download\\eMule0.47c\\emule.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\wincmd\\TOTALCMD.EXE"= "C:\\Program Files\\uTorrent\\uTorrent.exe"= "C:\\Program Files\\ABC\\abc.exe"= "D:\\Download\\Dc++\\DCPlusPlus.exe"= "C:\\Program Files\\SopCast\\adv\\SopAdver.exe"= "C:\\Program Files\\SopCast\\SopCast.exe"= "\\\\Xp\\c\\Program Files\\wincmd\\TOTALCMD.EXE"= "C:\\Program Files\\AVG\\AVG8\\avgemc.exe"= "C:\\Program Files\\AVG\\AVG8\\avgupd.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 R0 d346bus;d346bus;C:\WINDOWS\system32\DRIVERS\d346bus.sys [2004-03-12 22:41] R0 d346prt;d346prt;C:\WINDOWS\system32\Drivers\d346prt.sys [2004-03-12 22:41] R1 AvgLdx86;AVG Free AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-07-15 19:16] R2 avg8emc;AVG Free8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-07-15 19:16] R2 avg8wd;AVG Free8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-07-15 19:16] R2 AvgTdiX;AVG Free8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-07-15 19:16] R3 e4usbaw;USB ADSL2 WAN Adapter;C:\WINDOWS\system32\DRIVERS\e4usbaw.sys [2006-05-04 18:50] S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);C:\WINDOWS\system32\Drivers\e4ldr.sys [2006-03-02 19:25] S3 FLEXlm License Manager;FLEXlm License Manager;C:\Program Files\Common Files\AliasWavefront Shared\licensing\etc\lmgrd.exe [] S3 RockfireAnalogJoystickEnabler;Rockfire Analog Gamedevice driver;C:\WINDOWS\system32\drivers\RFTBtn.sys [] S3 S6U12BScanner;MUSTEK 1200 UB Still Image Device Service;C:\WINDOWS\system32\drivers\usbscan.sys [2004-08-03 22:58] S3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys [] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a86f5de0-985e-11d9-af45-83776d2ba323}] \Shell\AutoRun\command - I:\setup.exe /autorun \Shell\directx\command - I:\DirectX\dxsetup.exe \Shell\setup\command - I:\setup.exe . Contents of the 'Scheduled Tasks' folder "2008-07-11 15:15:00 C:\WINDOWS\Tasks\1-Click Maintenance.job" - C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe "2008-07-15 17:46:14 C:\WINDOWS\Tasks\Symantec NetDetect.job" - C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE . ************************************************************************ catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2008-07-16 23:11:58 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ********************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\system32\nview.dll . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\drivers\CDANTSRV.EXE C:\Program Files\Common Files\Microsoft Shared\VS7Debug\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\AVG\AVG8\avgrsx.exe C:\Program Files\AVG\AVG8\avgrsx.exe . ************************************************************************ . Completion time: 2008-07-16 23:18:12 - machine was rebooted ComboFix-quarantined-files.txt 2008-07-16 21:18:06 Pre-Run: 2,859,520,000 bytes free Post-Run: 2,783,252,480 bytes free 179 Dopuna: 17 Jul 2008 21:30 i sta sad da radim? i dalje se isto desava

Profil

helen1 Poslao: 17 Jul 2008 21:35 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Jel ti poznato cemu ti sluzi ovo: SopCore Control

Profil

marcco2 Poslao: 17 Jul 2008 21:37 Idi na vrh
offline marcco2 Novi MyCity građanin Pridružio: 16 Jul 2008 Poruke: 6	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! mozda za sopcast program za gledanje online tv

Profil

helen1 Poslao: 18 Jul 2008 12:38 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pokreni HJT i skeniraj ponovo. Potom cekiraj kvadratic ispred sledeceg reda: O16 - DPF: {33331111-1111-1111-1111-615111193427} - i klikni FIX CHECKED. Preuzmi ovaj fajl, sacuvaj ga na Desktop: https://www.mycity.rs/must-login.png dvoklik na fajl i odgovori YES. Postavi mi novi HJT log. I reci mi da li ima promena.

Profil

marcco2 Poslao: 18 Jul 2008 19:43 Idi na vrh
offline marcco2 Novi MyCity građanin Pridružio: 16 Jul 2008 Poruke: 6	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! isto se desava, da ne zaboravim da ne mogu da se konektujem na adsl preko shortcuta na desktopu, vec moram da idem u control panel pa network connections (naravno da sam pravio novi shortcut) evo novog loga Logfile of HijackThis v1.99.1 Scan saved at 19:27:04, on 7/18/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\Mixer.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\CursorXP\CursorXP.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\WINDOWS\System32\svchost.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Documents and Settings\XP\Desktop\TR3.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: DSLMON.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} (SopCore Control) - download.sopcast.com/download/SOPCORE.CAB O17 - HKLM\System\CCS\Services\Tcpip\..\{23E0C112-7608-4B13-AD57-AC4544C96768}: NameServer = 194.247.192.33 194.247.192.1 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: NVDESK32.DLL,avgrsstx.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE O23 - Service: FLEXlm License Manager - Unknown owner - C:\Program Files\Common Files\AliasWavefront Shared\licensing\etc\lmgrd.exe (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe HVALA

Profil

helen1 Poslao: 18 Jul 2008 19:51 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sve mi se vise cini da ovde nije na delu nikakav malwer. Postavi mi novi ComboFix log, da vidim jos nesto( naravno prvo privremeno iskljuci AVG, kao pre).

Profil

marcco2 Poslao: 18 Jul 2008 20:24 Idi na vrh
offline marcco2 Novi MyCity građanin Pridružio: 16 Jul 2008 Poruke: 6	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! combo fix ComboFix 08-07-15.4 - XP 2008-07-18 20:03:09.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.241 [GMT 2:00] Running from: C:\Documents and Settings\XP\Desktop\ComboFix.exe WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((( Files Created from 2008-06-18 to 2008-07-18 ))))))))))))))))))))))))))))))) . 2008-07-15 23:22 . 2008-07-15 23:22 2,714 --a------ C:\WINDOWS\system32\tmp.reg 2008-07-15 20:19 . 2008-07-15 22:23 <DIR> d--h----- C:\$AVG8.VAULT$ 2008-07-15 19:16 . 2008-07-18 19:45 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg 2008-07-15 19:16 . 2008-07-15 19:16 <DIR> d-------- C:\Program Files\AVG 2008-07-15 19:16 . 2008-07-15 22:58 <DIR> d-------- C:\Documents and Settings\XP\Application Data\AVGTOOLBAR 2008-07-15 19:16 . 2008-07-15 19:16 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg8 2008-07-15 19:16 . 2008-07-15 19:16 96,520 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys 2008-07-15 19:16 . 2008-07-15 19:16 76,040 --a------ C:\WINDOWS\system32\drivers\avgtdix.sys 2008-07-15 19:16 . 2008-07-15 19:16 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll 2008-07-14 23:42 . 2007-04-24 16:30 60,273 --a------ C:\WINDOWS\system32\pthreadGC2.dll 2008-07-14 23:42 . 2008-03-28 18:41 7,680 --a------ C:\WINDOWS\system32\ff_vfw.dll 2008-07-14 23:42 . 2007-07-10 17:10 547 --a------ C:\WINDOWS\system32\ff_vfw.dll.manifest 2008-07-14 23:33 . 2008-07-14 23:33 230 --a------ C:\WINDOWS\system32\spupdsvc.inf 2008-07-14 23:29 . 2008-07-14 23:29 <DIR> d-------- C:\WINDOWS\FF5D0751E69211D499D00060B0A11DC1.TMP 2008-07-13 10:44 . 2008-07-13 10:44 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ESET 2008-07-13 09:09 . 2008-07-13 09:09 <DIR> d-------- C:\Program Files\Lavasoft 2008-07-13 09:09 . 2008-07-13 09:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-07-12 11:29 . 2001-08-23 10:00 68,608 --a------ C:\WINDOWS\system32\plugin.ocx 2008-07-12 11:29 . 2001-08-23 10:00 68,608 --a------ C:\WINDOWS\system32\dllcache\plugin.ocx 2008-07-12 11:00 . 2008-07-12 11:00 <DIR> d-------- C:\Documents and Settings\XP\.housecall6.6 2008-07-12 10:35 . 2008-07-12 10:35 <DIR> d-------- C:\Documents and Settings\XP\Application Data\IE7pro 2008-07-12 10:35 . 2006-06-19 15:18 20,480 --a------ C:\WINDOWS\system32\normaliz.dll 2008-07-12 10:35 . 2006-09-01 14:44 8,798 --a------ C:\WINDOWS\system32\icrav03.rat 2008-07-03 21:03 . 2008-07-03 21:03 268 --ah----- C:\sqmdata05.sqm 2008-07-03 21:03 . 2008-07-03 21:03 244 --ah----- C:\sqmnoopt05.sqm 2008-06-19 17:50 . 2008-06-19 17:50 268 --ah----- C:\sqmdata04.sqm 2008-06-19 17:50 . 2008-06-19 17:50 244 --ah----- C:\sqmnoopt04.sqm . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-07-18 18:05 --------- d-----w C:\Program Files\PeerGuardian2 2008-07-15 15:58 --------- d-----w C:\Documents and Settings\XP\Application Data\uTorrent 2008-07-14 21:42 --------- d-----w C:\Program Files\ffdshow 2008-07-14 21:31 --------- d-----w C:\Program Files\Norton SystemWorks 2008-07-14 21:31 --------- d-----w C:\Program Files\Common Files\Symantec Shared 2008-07-14 21:30 --------- d-----w C:\Program Files\Common Files\Macromedia 2008-07-14 21:29 --------- d-----w C:\Program Files\DivXCodec 2008-07-14 21:29 --------- d-----w C:\Program Files\DAP 2008-07-13 07:09 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2008-06-13 15:32 --------- d-----w C:\Documents and Settings\XP\Application Data\Talkback 2008-05-16 09:58 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe 2006-04-18 17:12 170,752 ----a-w C:\Documents and Settings\XP\Application Data\GDIPFONTCACHEV1.DAT 2002-04-07 06:46 81,920 ----a-w C:\Program Files\Euro Calculator.exe . ------- Sigcheck ------- 2002-08-29 01:58 332928 244a2f9816bc9b593957281ef577d976 C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys 2004-08-03 23:14 359040 9f4b36614a0fc234525ba224957de55c C:\WINDOWS\ServicePackFiles\i386\TCPIP.SYS 2007-11-04 01:42 359040 27a5959c94ee173a063ca06bd14f021a C:\WINDOWS\system32\dllcache\TCPIP.SYS 2007-11-04 01:42 359040 27a5959c94ee173a063ca06bd14f021a C:\WINDOWS\system32\drivers\TCPIP.SYS . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:56 15360] "CursorXP"="C:\Program Files\CursorXP\CursorXP.exe" [2002-06-18 22:53 66560] "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 12:54 5674352] "PeerGuardian"="C:\Program Files\PeerGuardian2\pg2.exe" [2005-09-18 18:40 1421824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-12-10 03:06 7311360] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-12-10 03:06 86016] "ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 06:03 221184] "OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 11:00 49152] "AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-07-15 19:16 1232152] "Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2004-01-14 02:10 409600] "C-Media Mixer"="Mixer.exe" [2001-11-14 19:08 1216512 C:\WINDOWS\mixer.exe] "nwiz"="nwiz.exe" [2005-12-10 03:06 1519616 C:\WINDOWS\system32\nwiz.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 00:56 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "RunNarrator"="Narrator.exe" [2004-08-04 00:56 53760 C:\WINDOWS\system32\narrator.exe] C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2003-01-23 16:11:08 110592] DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-04-19 19:36:42 839680] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=NVDESK32.DLL,avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.AP41"= APmpg4v1.dll "msacm.l3acma"= L3codecp.acm [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "nwiz"=nwiz.exe /install "NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit "NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "D:\\Download\\eMule0.47c\\emule.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\wincmd\\TOTALCMD.EXE"= "C:\\Program Files\\uTorrent\\uTorrent.exe"= "C:\\Program Files\\ABC\\abc.exe"= "D:\\Download\\Dc++\\DCPlusPlus.exe"= "C:\\Program Files\\SopCast\\adv\\SopAdver.exe"= "C:\\Program Files\\SopCast\\SopCast.exe"= "\\\\Xp\\c\\Program Files\\wincmd\\TOTALCMD.EXE"= "C:\\Program Files\\AVG\\AVG8\\avgemc.exe"= "C:\\Program Files\\AVG\\AVG8\\avgupd.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 R0 d346bus;d346bus;C:\WINDOWS\system32\DRIVERS\d346bus.sys [2004-03-12 22:41] R0 d346prt;d346prt;C:\WINDOWS\system32\Drivers\d346prt.sys [2004-03-12 22:41] R1 AvgLdx86;AVG Free AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-07-15 19:16] R2 avg8emc;AVG Free8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-07-15 19:16] R2 avg8wd;AVG Free8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-07-15 19:16] R2 AvgTdiX;AVG Free8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-07-15 19:16] R3 e4usbaw;USB ADSL2 WAN Adapter;C:\WINDOWS\system32\DRIVERS\e4usbaw.sys [2006-05-04 18:50] S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);C:\WINDOWS\system32\Drivers\e4ldr.sys [2006-03-02 19:25] S3 FLEXlm License Manager;FLEXlm License Manager;C:\Program Files\Common Files\AliasWavefront Shared\licensing\etc\lmgrd.exe [] S3 RockfireAnalogJoystickEnabler;Rockfire Analog Gamedevice driver;C:\WINDOWS\system32\drivers\RFTBtn.sys [] S3 S6U12BScanner;MUSTEK 1200 UB Still Image Device Service;C:\WINDOWS\system32\drivers\usbscan.sys [2004-08-03 22:58] S3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys [] Newly Created Service - CATCHME Newly Created Service - PGFILTER . Contents of the 'Scheduled Tasks' folder "2008-07-11 15:15:00 C:\WINDOWS\Tasks\1-Click Maintenance.job" - C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe "2008-07-18 17:46:00 C:\WINDOWS\Tasks\Symantec NetDetect.job" - C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE . ************************************************************************ catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2008-07-18 20:05:28 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2008-07-18 20:07:28 ComboFix-quarantined-files.txt 2008-07-18 18:07:18 ComboFix2.txt 2008-07-16 21:18:13 Pre-Run: 2,676,011,008 bytes free Post-Run: 2,671,030,272 bytes free 150

Profil

helen1 Poslao: 18 Jul 2008 22:49 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Iskljuci AVG i uradi sledece: Otvoriti Notepad i iskopirati sledeci tekst: `DirLook:: C:\WINDOWS\FF5D0751E69211D499D00060B0A11DC1.TMP` Snimiti na Desktop fajl iz Notepada kao "CFScript" Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici. Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Pomoc problem sa IE

Ko je trenutno na forumu

Ukupno su 498 korisnika na forumu :: 7 registrovanih, 1 sakriven i 490 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: cikadeda, goxin, ILGromovnik, milenko crazy north, MilosKop, saputnik plavetnila, yuklll

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by