MyCity » Ambulanta -> Arhiva Ambulante » Problem

Problem

Napisano na dan: 6.10.2009

Problem

Sledeća strana

Pagination

Odgovori

z.stojanovska Poslao: 06 Okt 2009 21:30 Idi na vrh
offline z.stojanovska Novi MyCity građanin Pridružio: 26 Mar 2008 Poruke: 25 Gde živiš: Skopje,Macedonia	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 06 Okt 2009 21:27 Poceli su se pojavljivati crni prozorcici za C:\ 32.exe i nestaju brzo prilikom instaliranja nekog softvera. Ne mogu ni procitati sta pise. Ne mogu ni stampati . lampica trepce. Stampac je stalno "ready" i nista ne stampa. Nista ne pomaze ni instalacija ni deinstalacija. Mozda neki virus.. DDS (Ver_09-09-29.01) - NTFSx86 Run by Zaki at 21:13:42,98 on 06.10.2009 Internet Explorer: 6.0.2900.2180 Microsoft Windows XP Professional 5.1.2600.2.1251.389.1033.18.511.161 [GMT 2:00] AV: AVG Anti-Virus Free On-access scanning enabled (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: Norton AntiVirus disabled {990F9400-4CEE-43EA-A83A-D013ADD8EA6E} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\Program Files\Ahead\InCD\InCDsrv.exe svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files\Spyware Terminator\sp_rsser.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Ahead\InCD\InCD.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe C:\Program Files\T-Mobile\web'n'walk Manager\DataCardMonitor.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\vsnppro.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\BitComet\BitComet.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Common Files\VideoMate\ComproRemote.exe C:\Program Files\Common Files\VideoMate\ComproScheduler.exe C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe C:\Program Files\OpenOffice.org 3\program\soffice.exe C:\Program Files\OpenOffice.org 3\program\soffice.bin C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Zaki\My Documents\Downloads\dds(2).scr ============== Pseudo HJT Report =============== uStart Page = hxxp://my.safeappsoftware.com/ uSearch Page = hxxp://www.google.com uSearch Bar = hxxp://www.google.com/ie mDefault_Search_URL = hxxp://www.google.com/ie mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html uInternet Connection Wizard,ShellNext = iexplore uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://www.google.com/ie uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll uURLSearchHooks: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll BHO: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll BHO: SKbarBHO: {0f233d99-b03a-4c4d-8cab-d14ace8671ad} - c:\program files\searchkut\deskbar\deskbar.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - c:\program files\bitcomet\tools\BitCometBHO_1.2.8.7.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll BHO: Yahoo! IE Suggest: {5a263cf7-56a6-4d68-a8cf-345be45bc911} - c:\program files\yahoo!\searchsuggest\YSearchSuggest.dll BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll TB: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File EB: {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - No File EB: &Research: {ff059e31-cc5a-4e2e-bf3b-96e929d65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [MsnMsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background uRun: [BitComet] "c:\program files\bitcomet\BitComet.exe" /tray uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized mRun: [Ulead AutoDetector v2] c:\program files\common files\ulead systems\autodetector\monitor.exe mRun: [USRpdA] c:\windows\system32\usrmlnka.exe runservices \device\3cpipe-USRpdA mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe mRun: [InCD] c:\program files\ahead\incd\InCD.exe mRun: [SoundMan] SOUNDMAN.EXE mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe" mRun: [AudioDeck] c:\program files\via\viaudioi\sbadeck\ADeck.exe 1 mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [DataCardMonitor] c:\program files\t-mobile\web'n'walk manager\DataCardMonitor.exe mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE mRun: [snppro] c:\windows\vsnppro.exe mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe StartupFolder: c:\docume~1\zaki\startm~1\programs\startup\needfo~1.lnk - c:\program files\ea games\need for speed undercover\support\EAregister.exe StartupFolder: c:\docume~1\zaki\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe StartupFolder: c:\docume~1\zaki\startm~1\programs\startup\pictur~1.lnk - c:\program files\sony\sony picture utility\volumewatcher\SPUVolumeWatcher.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compro~2.lnk - c:\program files\common files\videomate\ComproRemote.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compro~1.lnk - c:\program files\common files\videomate\ComproScheduler.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\tweakyc.lnk - c:\program files\videomate\compropvr 2\TweakYC.exe IE: &D&ownload &with BitComet - c:\program files\bitcomet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\program files\bitcomet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\program files\bitcomet\BitComet.exe/AddAllLink.htm IE: Add to Windows &Live Favorites - favorites.live.com/quickadd.aspx IE: Crawler Search - tbr:iemenu IE: Dodaj u zastitu od reklama - c:\program files\kaspersky lab\kaspersky internet security 2009\ie_banner_deny.htm IE: E&xport to Microsoft Excel IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://c:\program files\bitcomet\tools\BitCometBHO_1.2.8.7.dll/206 IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\ssv.dll IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} - hxxp://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/Agatha%20Christie/Images/stg_drm.ocx DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204 DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} - hxxp://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} - hxxp://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Agatha%20Christie/Images/armhelper.ocx DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} - hxxp://zone.msn.com/binframework/v10/StProxy.cab55579.cab DPF: {FF3C5A9F-5A99-4930-80E8-4709194C2AD3} - hxxp://zone.msn.com/bingame/zpagames/ZPA_Backgammon.cab64162.cab TCP: {FBDC7B82-148E-4916-AACF-62E95DA2B0F0} = 217.16.69.3 217.16.68.166 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: avgrsstarter - avgrsstx.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll LSA: Authentication Packages = msv1_0 nwprovau ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\zaki\applic~1\mozilla\firefox\profiles\v260plp4.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.live.com/results.aspx?FORM=IEFM1&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://my.safeappsoftware.com/\|http://www.yahoo.com/ FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?FORM=IEFM1&q= FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll FF - plugin: c:\program files\microsoft\office live\npOLW.dll FF - plugin: c:\program files\mozilla firefox\plugins\npmusicn.dll FF - plugin: c:\program files\opera75\program\plugins\npdsplay.dll FF - plugin: c:\program files\opera75\program\plugins\NPOFFICE.DLL FF - plugin: c:\program files\opera75\program\plugins\npwmsdrm.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll ============= SERVICES / DRIVERS =============== R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-4-5 335240] R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-4-5 27784] R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-4-5 108552] R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-11-10 141312] R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-8-16 908056] R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-8-16 297752] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-6-22 55152] R2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656] R3 NFilter;NFilter Miniport;c:\windows\system32\drivers\nfilter.sys [2009-1-2 17408] R3 PhTVTune;VideoMate TV Tuner;c:\windows\system32\drivers\PhTVTune.sys [2006-1-16 19840] S3 fsssvc;Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2009-2-6 533360] S3 s716bus;Sony Ericsson Device 716 driver (WDM);c:\windows\system32\drivers\s716bus.sys [2008-3-1 83208] S3 s716mdfl;Sony Ericsson Device 716 USB WMC Modem Filter;c:\windows\system32\drivers\s716mdfl.sys [2008-3-1 15112] S3 s716mdm;Sony Ericsson Device 716 USB WMC Modem Driver;c:\windows\system32\drivers\s716mdm.sys [2008-3-1 108552] S3 s716mgmt;Sony Ericsson Device 716 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s716mgmt.sys [2008-3-1 100360] S3 s716nd5;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (NDIS);c:\windows\system32\drivers\s716nd5.sys [2008-3-1 23176] S3 s716obex;Sony Ericsson Device 716 USB WMC OBEX Interface;c:\windows\system32\drivers\s716obex.sys [2008-3-1 98568] S3 s716unic;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (WDM);c:\windows\system32\drivers\s716unic.sys [2008-3-1 98952] S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [2008-3-1 81832] S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [2008-3-1 13864] S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [2008-3-1 107304] S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [2008-3-1 99112] S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [2008-3-1 21928] S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [2008-3-1 97320] S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [2008-3-1 97704] S3 SNPPRO;USB PC Camera (snppro);c:\windows\system32\drivers\snppro.sys [2009-6-24 8664448] =============== Created Last 30 ================ 2009-10-06 21:06 <DIR> --d-h--- c:\windows\PIF 2009-10-06 20:55 <DIR> --d----- c:\windows\system32\wbem\Repository 2009-10-06 17:18 78,931 a------- c:\windows\hpfins05.dat 2009-10-06 17:18 1,395 -------- c:\windows\hpfmdl05.dat 2009-10-06 13:55 <DIR> --d----- c:\program files\Disk Cleaner 2009-09-25 15:50 22,328 a------- c:\windows\system32\drivers\PnkBstrK.sys 2009-09-25 15:50 22,328 a------- c:\docume~1\zaki\applic~1\PnkBstrK.sys 2009-09-25 15:49 107,832 a------- c:\windows\system32\PnkBstrB.exe 2009-09-25 15:49 2,337,865 a------- c:\windows\system32\pbsvc.exe 2009-09-25 15:49 66,872 a------- c:\windows\system32\PnkBstrA.exe 2009-09-24 16:09 389,120 a------- c:\windows\system32\DiskCleanerLM.ocx 2009-09-24 16:07 389,120 a------- c:\windows\system32\RegistryHelperLM.ocx ==================== Find3M ==================== 2009-08-16 20:30 11,952 a------- c:\windows\system32\avgrsstx.dll 2009-08-16 20:30 335,240 a------- c:\windows\system32\drivers\avgldx86.sys 2009-05-16 15:41 283,952 a------- c:\program files\npmusicn.dll 2008-11-09 12:17 165 a------- c:\docume~1\alluse~1\applic~1\service.dat ============= FINISH: 21:14:09,28 =============== Dopuna: 06 Okt 2009 21:30 mycity.rs/must-login.png

Profil

dr_Bora Poslao: 06 Okt 2009 22:14 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav... Nedostaju Gmer logovi - isprati ostatak uputstva.

Profil

z.stojanovska Poslao: 07 Okt 2009 08:49 Idi na vrh
offline z.stojanovska Novi MyCity građanin Pridružio: 26 Mar 2008 Poruke: 25 Gde živiš: Skopje,Macedonia	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Znam mucim se time. Na kraju skeniranja pojavio se dva puta not responding i jos neka poruka da se nesto nije moglo skenirati. Evo opet probam i dopisacu to sto Windows warning dopise.

Profil

dr_Bora Poslao: 07 Okt 2009 16:19 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ako Gmer neće da radi, iskoristi RootRepeal za skeniranje (uputstvo je odmah nakon uputstva za Gmer).

Profil

z.stojanovska Poslao: 09 Okt 2009 22:35 Idi na vrh
offline z.stojanovska Novi MyCity građanin Pridružio: 26 Mar 2008 Poruke: 25 Gde živiš: Skopje,Macedonia	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Sada nece n da se deinstalira( ni u safe mod-u) ni nanovo instalira printer HP 3900 mycity.rs/must-login.png

Profil

dr_Bora Poslao: 09 Okt 2009 22:47 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pažljivo isprati sledeće uputstvo. Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop: Bleeping Computer Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: deaktiviraj zaštitni softver (uputstvo); zatvori pokrenute programe; dvoklikom pokreni program ComboFix. U toku rada, ComboFix će:proveriti postoji li novija verzija programa: klikni Yes ako bude ponuđeno preuzimanje iste. prikazati DISCLAIMER OF WARRANTY ON SOFTWARE: klikni Yes kako bi proces bio nastavljen.ako Recovery Console nije instalirana, ponuditi instalaciju: obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja: prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta); na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu: klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All; klikni desnim tasterom miša na obeleženi tekst i izaberi Copy; klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste. Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt); Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Profil

z.stojanovska Poslao: 10 Okt 2009 11:13 Idi na vrh
offline z.stojanovska Novi MyCity građanin Pridružio: 26 Mar 2008 Poruke: 25 Gde živiš: Skopje,Macedonia	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 10 Okt 2009 1:22 mycity.rs/must-login.png ComboFix 09-10-08.04 - Zaki 10.10.2009 0:31.3.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1251.389.1033.18.511.226 [GMT 2:00] Running from: c:\documents and settings\Zaki\Desktop\ComboFix.exe AV: AVG Anti-Virus Free On-access scanning disabled (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: Norton AntiVirus disabled {990F9400-4CEE-43EA-A83A-D013ADD8EA6E} WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\Zaki\Application Data\Desktopicon c:\documents and settings\Zaki\Application Data\Desktopicon\config.ini c:\documents and settings\Zaki\Application Data\Desktopicon\eBayShortcuts.exe c:\windows\Fonts\#aaifnt.ttf c:\windows\Installer\2c12c9.msi c:\windows\Installer\3d843.msi c:\windows\Installer\WMEncoder.msi c:\windows\system32\ntos.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NWCWORKSTATION -------\Service_NWCWorkstation ((((((((((((((((((((((((( Files Created from 2009-09-09 to 2009-10-09 ))))))))))))))))))))))))))))))) . 2009-10-09 22:20 . 2009-10-09 17:38 -------- d-----w- C:\32788R22FWJFW 2009-10-09 18:47 . 2008-05-08 18:52 18816 ----a-w- c:\windows\system32\drivers\tcpipBM.sys 2009-10-09 18:47 . 2008-05-08 17:43 471040 ----a-w- c:\windows\system32\bmnet.dll 2009-10-09 18:47 . 2008-05-08 17:42 719360 ----a-w- c:\windows\system32\bmutil.dll 2009-10-09 18:47 . 2008-05-08 17:42 270336 ----a-w- c:\windows\system32\bminstall.dll 2009-10-09 18:47 . 2008-05-08 17:42 126976 ----a-w- c:\windows\system32\bmdumpd.bin 2009-10-09 16:49 . 2009-10-09 16:49 -------- d-----w- c:\windows\system32\wbem\Repository 2009-10-09 16:48 . 2009-10-09 16:48 -------- d-----w- c:\program files\Common Files\Java 2009-10-06 15:18 . 2009-10-09 19:04 78163 ----a-w- c:\windows\hpfins05.dat 2009-10-06 15:18 . 2005-05-24 01:19 1395 ------w- c:\windows\hpfmdl05.dat 2009-10-06 11:55 . 2009-10-09 16:48 -------- d-----w- c:\program files\Disk Cleaner 2009-09-25 13:51 . 2009-09-25 13:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Ubisoft 2009-09-25 13:50 . 2009-09-25 13:50 22328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2009-09-25 13:49 . 2009-09-25 13:49 107832 ----a-w- c:\windows\system32\PnkBstrB.exe 2009-09-25 13:49 . 2009-09-25 13:49 66872 ----a-w- c:\windows\system32\PnkBstrA.exe 2009-09-25 13:49 . 2009-09-25 13:49 2337865 ----a-w- c:\windows\system32\pbsvc.exe 2009-09-25 13:35 . 2009-09-25 13:35 -------- d-----w- c:\program files\Ubisoft . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-10-09 22:26 . 2008-01-09 12:09 -------- d-----w- c:\program files\BitComet 2009-10-09 22:15 . 2008-04-30 22:42 -------- d-----w- c:\documents and settings\Zaki\Application Data\Skype 2009-10-09 18:45 . 2006-01-16 18:34 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-10-09 16:56 . 2008-11-10 20:43 -------- d-----w- c:\documents and settings\Zaki\Application Data\Spyware Terminator 2009-10-09 16:55 . 2008-11-10 20:43 -------- d-----w- c:\program files\Spyware Terminator 2009-10-09 16:54 . 2008-03-13 20:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater 2009-10-09 16:23 . 2008-04-30 22:44 -------- d-----w- c:\documents and settings\Zaki\Application Data\skypePM 2009-10-08 11:09 . 2008-11-10 20:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator 2009-10-07 17:57 . 2008-05-16 10:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Disk Cleaner 2009-10-07 17:57 . 2008-10-12 15:05 -------- d-----w- c:\program files\Java 2009-10-06 15:15 . 2006-01-16 19:59 120216 ----a-w- c:\documents and settings\Zaki\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-10-06 11:55 . 2008-05-16 10:25 -------- d-----w- c:\documents and settings\All Users\Application Data\Registry Helper 2009-09-25 13:50 . 2009-09-25 13:50 22328 ----a-w- c:\documents and settings\Zaki\Application Data\PnkBstrK.sys 2009-08-19 08:54 . 2009-08-19 08:53 -------- d-----w- c:\program files\Jhoos 2009-08-16 18:30 . 2009-04-05 20:36 11952 ----a-w- c:\windows\system32\avgrsstx.dll 2009-08-16 18:30 . 2009-04-05 20:36 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2009-08-16 18:30 . 2009-04-05 20:36 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2009-05-16 13:41 . 2009-05-16 13:41 283952 ----a-w- c:\program files\npmusicn.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{038cb5c7-48ea-4af9-94e0-a1646542e62b}"= "c:\program files\ToggleEN\tbTog1.dll" [2009-08-23 2215960] [HKEY_CLASSES_ROOT\clsid\{038cb5c7-48ea-4af9-94e0-a1646542e62b}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{038cb5c7-48ea-4af9-94e0-a1646542e62b}] 2009-08-23 20:11 2215960 ----a-w- c:\program files\ToggleEN\tbTog1.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0F233D99-B03A-4c4d-8CAB-D14ACE8671AD}] 2007-09-21 11:09 548864 ----a-w- c:\program files\Searchkut\Deskbar\deskbar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{038cb5c7-48ea-4af9-94e0-a1646542e62b}"= "c:\program files\ToggleEN\tbTog1.dll" [2009-08-23 2215960] [HKEY_CLASSES_ROOT\clsid\{038cb5c7-48ea-4af9-94e0-a1646542e62b}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{038CB5C7-48EA-4AF9-94E0-A1646542E62B}"= "c:\program files\ToggleEN\tbTog1.dll" [2009-08-23 2215960] [HKEY_CLASSES_ROOT\clsid\{038cb5c7-48ea-4af9-94e0-a1646542e62b}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-03-13 68856] "MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408] "BitComet"="c:\program files\BitComet\BitComet.exe" [2008-12-03 2514744] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-05-26 24264488] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Ulead AutoDetector v2"="c:\program files\Common Files\Ulead Systems\AutoDetector\monitor.exe" [2004-08-27 90112] "USRpdA"="c:\windows\SYSTEM32\USRmlnkA.exe" [2001-08-23 77891] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 49152] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "InCD"="c:\program files\Ahead\InCD\InCD.exe" [2004-09-13 1450096] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-02-01 136600] "SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-11-10 1783808] "AudioDeck"="c:\program files\VIA\VIAudioi\SBADeck\ADeck.exe" [2006-11-02 528384] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696] "AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-10-09 2023704] "PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-03-15 180224] "SoundMan"="SOUNDMAN.EXE" - c:\windows\SOUNDMAN.EXE [2003-12-19 65024] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-04 44544] c:\documents and settings\Zaki\Start Menu\Programs\Startup\ Need for SpeedT Undercover Registration.lnk - c:\program files\EA GAMES\Need for Speed Undercover\Support\EAregister.exe [2008-10-22 4369408] OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-4 393216] Picture Motion Browser Media Check Tool.lnk - c:\program files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe [2008-6-10 344064] c:\documents and settings\All Users\Start Menu\Programs\Startup\ ComproRemote.lnk - c:\program files\Common Files\VideoMate\ComproRemote.exe [2006-1-16 139264] ComproScheduler.lnk - c:\program files\Common Files\VideoMate\ComproScheduler.exe [2006-1-16 65536] TweakYC.lnk - c:\program files\VideoMate\ComproPVR 2\TweakYC.exe [2006-1-16 516096] [HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au] "NoAutoUpdate"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2009-08-16 18:30 11952 ----a-w- c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk \0sprestrt [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 nwprovau [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\English\\setup.exe"= "c:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 2009\\Serbian\\setup.exe"= "c:\\Program Files\\AVG\\AVG8\\avgemc.exe"= "c:\\Program Files\\AVG\\AVG8\\avgupd.exe"= "c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\Ubisoft\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Game.exe"= "c:\\Program Files\\Ubisoft\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Launcher.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "10172:TCP"= 10172:TCP:BitComet 10172 TCP "10172:UDP"= 10172:UDP:BitComet 10172 UDP R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [05.04.2009 22:36 335240] R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [05.04.2009 22:36 108552] R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [10.11.2008 22:43 141312] R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [16.08.2009 20:30 908056] R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [16.08.2009 20:29 297752] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [22.06.2009 19:03 55152] R3 NFilter;NFilter Miniport;c:\windows\system32\drivers\nfilter.sys [02.01.2009 17:32 17408] R3 PhTVTune;VideoMate TV Tuner;c:\windows\system32\drivers\PhTVTune.sys [16.01.2006 20:44 19840] S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [06.02.2009 18:08 533360] S3 s716bus;Sony Ericsson Device 716 driver (WDM);c:\windows\system32\drivers\s716bus.sys [01.03.2008 18:20 83208] S3 s716mdfl;Sony Ericsson Device 716 USB WMC Modem Filter;c:\windows\system32\drivers\s716mdfl.sys [01.03.2008 18:20 15112] S3 s716mdm;Sony Ericsson Device 716 USB WMC Modem Driver;c:\windows\system32\drivers\s716mdm.sys [01.03.2008 18:20 108552] S3 s716mgmt;Sony Ericsson Device 716 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s716mgmt.sys [01.03.2008 18:20 100360] S3 s716nd5;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (NDIS);c:\windows\system32\drivers\s716nd5.sys [01.03.2008 18:20 23176] S3 s716obex;Sony Ericsson Device 716 USB WMC OBEX Interface;c:\windows\system32\drivers\s716obex.sys [01.03.2008 18:20 98568] S3 s716unic;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (WDM);c:\windows\system32\drivers\s716unic.sys [01.03.2008 18:20 98952] S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [01.03.2008 18:20 81832] S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [01.03.2008 18:20 13864] S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [01.03.2008 18:20 107304] S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [01.03.2008 18:20 99112] S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [01.03.2008 18:20 21928] S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [01.03.2008 18:20 97320] S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [01.03.2008 18:20 97704] . Contents of the 'Scheduled Tasks' folder 2009-10-09 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 18:30] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.yahoo.com/ uSearch Page = hxxp://www.google.com uSearch Bar = hxxp://www.google.com/ie mDefault_Search_URL = hxxp://www.google.com/ie mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/http://www.yahoo.com/ext/search/search.html uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = .local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://www.google.com/ie IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm IE: Add to Windows &Live Favorites - favorites.live.com/quickadd.aspx IE: Crawler Search - tbr:iemenu IE: Dodaj u zastitu od reklama - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\Zaki\Application Data\Mozilla\Firefox\Profiles\v260plp4.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.live.com/results.aspx?FORM=IEFM1&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://my.safeappsoftware.com/\|http://www.yahoo.com/ FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?FORM=IEFM1&q= FF - component: c:\program files\AVG\AVG8\Firefox\components\avgssff.dll FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npmusicn.dll FF - plugin: c:\program files\Opera75\Program\Plugins\NPOFFICE.DLL FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll . - - - - ORPHANS REMOVED - - - - SafeBoot-AVG Anti-Spyware Driver SafeBoot-AVG Anti-Spyware Guard *********************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2009-10-10 00:52 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... HKLM\Software\Microsoft\Windows\CurrentVersion\Run AudioDeck = c:\program files\VIA\VIAudioi\SBADeck\ADeck.exe 1???????????????????????????????????????????????? scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-484763869-1659004503-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . ------------------------ Other Running Processes ------------------------ . c:\program files\Ahead\InCD\InCDsrv.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Java\jre6\bin\jqs.exe c:\windows\system32\PnkBstrA.exe c:\windows\system32\PnkBstrB.exe c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files\AVG\AVG8\avgrsx.exe c:\progra~1\AVG\AVG8\avgnsx.exe c:\program files\Spyware Terminator\sp_rsser.exe c:\program files\AVG\AVG8\avgcsrvx.exe c:\windows\system32\wscntfy.exe c:\windows\system32\WgaTray.exe c:\program files\OpenOffice.org 3\program\soffice.exe c:\program files\OpenOffice.org 3\program\soffice.bin c:\program files\Skype\Plugin Manager\skypePM.exe . ************************************************************************* . Completion time: 2009-10-09 1:01 - machine was rebooted ComboFix-quarantined-files.txt 2009-10-09 23:01 ComboFix2.txt 2008-11-09 15:56 Pre-Run: 11.431.870.464 bytes free Post-Run: 13.580.300.288 bytes free 251 --- E O F --- 2008-03-21 06:31 Dopuna: 10 Okt 2009 11:13 Ok treba li jos nesto da se uradi?

Profil

dr_Bora Poslao: 10 Okt 2009 22:23 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ne treba. Ovo izgleda čisto. Potrebno je deinstalirati ComboFix: klikni start (ili ), a zatim RUN. Na Visti koristiti Start Search polje ukoliko Run nije dostupan. U liniju za unos teksta ukucaj (iskopiraj) sledeće: combofix /u Primeti da postoji razmak između "ComboFix" i "/u". a zatim klikni OK (ili pritisni Enter). Sačekaj da se proces deinstalacije završi. Za probleme sa printerom otvori temu u forumu Windows.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem

Ko je trenutno na forumu

Ukupno su 1257 korisnika na forumu :: 54 registrovanih, 9 sakrivenih i 1194 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 8u47, airsuba, Alibaba1981, amonsrb, Apok, aramis s, bagor10, Bobrock1, bokisha253, Boris Bosiljčić, celik, cemix, cifra, dankisha, Darko001, darkstar101, dejina811, DonRumataEstorski, flash12, Georgius, GORDI, goxin, HrcAk47, ILGromovnik, ivicasimo, JOntra, kikisp, kjkszpj, Koridor, KOV, krkalon, Krvava Devetka, kybonacci, Litostroton, LUDI, MB120mm, mercedesamg, Mercury, mikrimaus, moldway, nextyamb, Parker, raso7, Reinhardt, Shinobi, slonic_tonic, Stoilkovic, vathra, wizzardone, wolverined4, YugoSlav, Zaledjeni, zixmix, 1107

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by