Problem

1

Problem

offline
  • Mladen Lukić
  • Pridružio: 02 Apr 2009
  • Poruke: 1450
  • Gde živiš: Arilje

E ovako problem sa mojim kompjuterom je sledeci… kada upalim kompjuter ima ono ucitavanje kao pise iznad Windows XP I dole zeleno ono kao ide… e meni to koci uvek I onda moram kompjuter da iskljucim iz struje… I onda da udjem I tu imam da biram ono Safe mode I ono Normal mode ili kako vec ja odem normal mod opet isto ucitavanje samo bez kocenja… e zbog toga ne mogu da odradim gmer jer se onda restart kompjuter(je li to normalno kod gmera???) I onda opet pocinje ono kocenje kod ucitavanja… Nisam siguran da lie j ovo za ambulanta forum ali evo… pa moderatori neka premeste… I da kompjuter je pod garancijom nosio sam ga na popravku I kod njih lepo radi a I meni ponekad radi lepo npr. Kad sam isao na more I posle se vratim I upalim komp I ono radi bez problema sledece paljenje isti problem…E sada evo ovog RootRepeal: A evo I DDS-a:



DDS (Ver_09-07-30.01) - NTFSx86
Run by Korisnik at 13:38:04,26 on ned 13.09.2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1268 [GMT 2:00]

AV: ESET Smart Security 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\713xRMT.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\documents and settings\korisnik\local settings\application data\sgjvbmy.exe
C:\Program Files\PixelView\ADTVScheduleAgent.exe
C:\Program Files\honestech\honestech TVR\scheduleTV.exe
C:\Program Files\Xfire\Xfire.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Hamachi\hamachi.exe
C:\Program Files\iWin Games\iWinTrusted.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
C:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\WgaTray.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Documents and Settings\Korisnik\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.rs/
mDefault_Page_URL = hxxp://www.yahoo.com
mStart Page = hxxp://www.yahoo.com
uInternet Connection Wizard,ShellNext = iexplore
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll
uURLSearchHooks: Free Lunch Design Toolbar: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - c:\program files\free_lunch_design\tbFre1.dll
uURLSearchHooks: iWin Toolbar: {ce0c2586-da36-452b-acdb-320d9bcb19bf} - c:\program files\iwin\tbiWi1.dll
uURLSearchHooks: Local Strike Toolbar: {2c650b7d-aa32-4798-af1a-fd8ef806d89f} - c:\program files\local_strike\tbLoc1.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: Local Strike Toolbar: {2c650b7d-aa32-4798-af1a-fd8ef806d89f} - c:\program files\local_strike\tbLoc1.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: Free Lunch Design Toolbar: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - c:\program files\free_lunch_design\tbFre1.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: IEHlprObj Class: {8ca5ed52-f3fb-4414-a105-2e3491156990} - c:\program files\iwin games\iWinGamesHookIE.dll
BHO: Windows Live pomagac za prijavljivanje: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll
BHO: iWin Toolbar: {ce0c2586-da36-452b-acdb-320d9bcb19bf} - c:\program files\iwin\tbiWi1.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: EpsonToolBandKicker Class: {e99421fb-68dd-40f0-b4ac-b7027cae2f1a} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
BHO: Ask Toolbar BHO: {f0d4b231-da4b-4daf-81e4-dfee4931a4aa} - c:\program files\asksbar\bar\1.bin\ASKSBAR.DLL
TB: EPSON Web-To-Page: {ee5d279f-081b-4404-994d-c6b60aaeba6d} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Ask Toolbar: {f0d4b239-da4b-4daf-81e4-dfee4931a4aa} - c:\program files\asksbar\bar\1.bin\ASKSBAR.DLL
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: ToggleEN Toolbar: {038cb5c7-48ea-4af9-94e0-a1646542e62b} - c:\program files\toggleen\tbTog1.dll
TB: Free Lunch Design Toolbar: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - c:\program files\free_lunch_design\tbFre1.dll
TB: iWin Toolbar: {ce0c2586-da36-452b-acdb-320d9bcb19bf} - c:\program files\iwin\tbiWi1.dll
TB: Local Strike Toolbar: {2c650b7d-aa32-4798-af1a-fd8ef806d89f} - c:\program files\local_strike\tbLoc1.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\daemon.exe" -autorun
uRun: [EA Core] c:\program files\electronic arts\eadm\Core.exe -silent
uRun: [nodenable] c:\program files\eset\nodenable.exe /s
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [AnumanLive] c:\documents and settings\korisnik\application data\anuman interactive\anumanlive\AnumanLive.exe
uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [sgjvbmy] "c:\documents and settings\korisnik\local settings\application data\sgjvbmy.exe" sgjvbmy
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB5; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; Embedded Web Browser from: http://bsalsa.com/; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)" -"http://igreonline.info/view/1123/Vanzemaljske-otmice/Alien-Abduction"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [TV Card Remote Control Device Monitor] c:\windows\713xRMT.exe
mRun: [BDRegion] c:\program files\cyberlink\shared files\brs.exe
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [TrueImageMonitor.exe] c:\program files\acronis\trueimagehome\TrueImageMonitor.exe
mRun: [AcronisTimounterMonitor] c:\program files\acronis\trueimagehome\TimounterMonitor.exe
mRun: [Acronis Scheduler2 Service] "c:\program files\common files\acronis\schedule2\schedhlp.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [AtiPTA] atiptaxx.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [NPSStartup]
mRun: [tsnpstd3] c:\windows\tsnpstd3.exe
mRun: [snpstd3] c:\windows\vsnpstd3.exe
dRunOnce: [nltide_2] regsvr32 /s /n /i:U shell32
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
StartupFolder: c:\docume~1\korisnik\startm~1\programs\startup\hamachi.lnk - c:\program files\hamachi\hamachi.exe
StartupFolder: c:\docume~1\korisnik\startm~1\programs\startup\xfire.lnk - c:\program files\xfire\Xfire.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\pixelv~1.lnk - c:\program files\pixelview\ADTVScheduleAgent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\schedu~1.lnk - c:\program files\honestech\honestech tvr\scheduleTV.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\tvexpe~1.lnk - c:\program files\pixelview\ADTVScheduleAgent.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
LSA: Authentication Packages = msv1_0 relog_ap

================= FIREFOX ===================

FF - ProfilePath -
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

============= SERVICES / DRIVERS ===============

R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [2008-7-4 143360]
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};{95808DC4-FA4A-4C74-92FE-5B863F82066B};c:\program files\cyberlink\powerdvd\000.fcl [2007-11-3 41456]
R2 ekrn;Eset Service;c:\program files\eset\eset smart security\ekrn.exe [2007-12-21 468224]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-8-29 54752]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-8-11 233472]
R2 HamachiService;Hamachi Service;c:\program files\hamachi\hamachi.exe [2009-8-28 625952]
R2 iWinTrusted;iWinTrusted;c:\program files\iwin games\iWinTrusted.exe [2009-6-4 78104]
R2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656]
R3 3xHybrid;SAA713x TV Card Service;c:\windows\system32\drivers\3xHybrid.sys [2008-9-8 907520]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [2008-9-1 36864]
R3 bbcap;bbcap;c:\windows\system32\drivers\bbcap.sys [2009-8-23 4096]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-8-11 36608]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [2009-6-30 17792]
S2 713xTVCard;SAA7130 TV Card;c:\windows\system32\drivers\SAA713x.sys [2008-8-13 289280]
S2 WDMTVTuner;Universal WDM TV Tuner;c:\windows\system32\drivers\WDMTuner.sys [2008-8-13 26880]
S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\d:\everestultimateedition4.50.1436\kerneld.wnt --> d:\everestultimateedition4.50.1436\kerneld.wnt [?]
S3 fsssvc;Usluga Windows Live Porodicna bezbednost;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 PIXMCV;JVC Communication PIX-MCV Driver;c:\windows\system32\drivers\pixmcvc.sys [2008-9-20 32000]
S3 PIXMCVA;JVC PIX-MCV Audio Capture;c:\windows\system32\drivers\pixmcva.sys [2008-9-20 28057]
S3 PIXMCVV;JVC PIX-MCV Video Capture;c:\windows\system32\drivers\pixmcvv.sys [2008-9-20 21081]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2009-8-11 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2009-8-11 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2009-8-11 121856]

=============== Created Last 30 ================

2009-09-09 15:19 54,156 a---h--- c:\windows\QTFont.qfn
2009-09-09 15:19 1,409 a------- c:\windows\QTFont.for
2009-09-09 15:14 <DIR> --d----- c:\program files\common files\Autodesk Shared
2009-09-09 15:14 <DIR> --d----- c:\program files\Autodesk
2009-09-09 13:48 1,846,632 a------- c:\windows\system32\D3DCompiler_41.dll
2009-09-09 13:48 453,456 a------- c:\windows\system32\d3dx10_41.dll
2009-09-09 13:48 4,178,264 a------- c:\windows\system32\D3DX9_41.dll
2009-09-09 13:48 517,448 a------- c:\windows\system32\XAudio2_4.dll
2009-09-09 13:48 69,448 a------- c:\windows\system32\XAPOFX1_3.dll
2009-09-09 13:48 235,352 a------- c:\windows\system32\xactengine3_4.dll
2009-09-09 13:48 22,360 a------- c:\windows\system32\X3DAudio1_6.dll
2009-09-06 15:19 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Test Drive Unlimited
2009-09-06 14:49 <DIR> --d----- c:\windows\Cache
2009-09-04 22:26 <DIR> --d----- c:\windows\system32\NtmsData
2009-09-01 10:42 <DIR> --d----- c:\docume~1\korisnik\applic~1\GOL_byHasbro
2009-09-01 10:41 <DIR> --d----- c:\program files\Yahoo! Games
2009-08-31 22:24 <DIR> --d----- c:\docume~1\korisnik\applic~1\Xfire
2009-08-31 22:24 <DIR> --d----- c:\program files\Xfire
2009-08-29 21:37 12,160 ac------ c:\windows\system32\dllcache\mouhid.sys
2009-08-29 21:37 12,160 a------- c:\windows\system32\drivers\mouhid.sys
2009-08-29 18:24 <DIR> --d----- c:\program files\SCREEN2EXE
2009-08-29 02:03 <DIR> --d----- c:\documents and settings\korisnik\Tracing
2009-08-29 02:02 54,752 a------- c:\windows\system32\drivers\fssfltr_tdi.sys
2009-08-29 02:01 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
2009-08-29 02:00 <DIR> --d----- c:\program files\Microsoft
2009-08-29 02:00 <DIR> --d----- c:\program files\Windows Live SkyDrive
2009-08-29 01:58 <DIR> --d----- c:\program files\common files\Windows Live
2009-08-28 02:58 25,280 a------- c:\windows\system32\drivers\hamachi.sys
2009-08-28 02:58 <DIR> --d----- c:\program files\Hamachi
2009-08-23 23:07 31 a------- c:\windows\system32\bbcap.err
2009-08-23 23:02 <DIR> --d----- c:\docume~1\korisnik\applic~1\Blueberry
2009-08-23 23:02 30,720 a------- c:\windows\system32\bbcap.dll
2009-08-23 23:02 4,608 a------- c:\windows\system32\bbchlp.dll
2009-08-23 23:02 4,096 a------- c:\windows\system32\drivers\bbcap.sys
2009-08-23 23:02 <DIR> --d----- c:\docume~1\korisnik\applic~1\LogSys
2009-08-23 23:02 <DIR> --d----- c:\docume~1\alluse~1\applic~1\LogSys
2009-08-23 23:02 <DIR> --d----- c:\program files\common files\Blueberry Software
2009-08-23 23:02 <DIR> --d----- c:\program files\Blueberry Software
2009-08-22 23:20 <DIR> --d----- c:\docume~1\korisnik\applic~1\SPORE
2009-08-21 11:54 <DIR> --d----- c:\docume~1\korisnik\applic~1\Activision
2009-08-21 11:54 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Activision
2009-08-21 11:48 <DIR> --d----- c:\program files\Activision

==================== Find3M ====================

2009-08-29 18:23 104 a------- c:\program files\Gestionnaire de fichiers Sony Ericsson.lnk
2009-08-13 21:54 41,872 a------- c:\windows\system32\xfcodec.dll
2009-07-26 16:44 48,448 a------- c:\windows\system32\sirenacm.dll
2009-07-10 12:35 307,048 a------- c:\windows\WLXPGSS.SCR
2009-02-23 19:21 15,206 a------- c:\program files\typingmaster.htm
2008-10-11 07:08 22,328 a------- c:\docume~1\korisnik\applic~1\PnkBstrK.sys
2008-09-01 17:52 16,384 a--sh--- c:\windows\system32\config\systemprofile\cookies\index.dat
2008-09-01 17:52 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\index.dat
2008-09-01 17:52 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008090120080902\index.dat
2008-09-01 17:52 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\index.dat

============= FINISH: 13:38:19,39 ===============




Attach.txt : https://www.mycity.rs/must-login.png


RootRepeal: https://www.mycity.rs/must-login.png

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Pozdrav...





Arrow Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.




Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix.

U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste.
prikazati DISCLAIMER OF WARRANTY ON SOFTWARE:
klikni Yes kako bi proces bio nastavljen.
ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.
postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.
po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.


Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.


Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

offline
  • Mladen Lukić
  • Pridružio: 02 Apr 2009
  • Poruke: 1450
  • Gde živiš: Arilje

E drBora sry izgleda da sam resio problem danas je se normalno upalio(neko mi iskljucio automatski update windowsa a da nisam primetio... i sad radi videcu sutra kad ga budem ponovo palio...

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Prethodno uputstvo si dobio zato što vidim malware u logovima (sam problem koji si opisao verovatno nema veze sa istim).

offline
  • Mladen Lukić
  • Pridružio: 02 Apr 2009
  • Poruke: 1450
  • Gde živiš: Arilje

ponovo mise nije normalno upalio omg bre sta da radim bas sam glup??? Razz znaci treba onaj ComboFix da odradim je li???

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Da, ali skini novu verziju i nju koristi.

offline
  • Mladen Lukić
  • Pridružio: 02 Apr 2009
  • Poruke: 1450
  • Gde živiš: Arilje

a odakle da je skinem ja sam skinuo sa ovog tvog linka i sve mi odradi i restartuje komp ali opet onaj restart kad moram iz struje da ga vadim Razz i onda se pojavi ovo

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Obrišeš verziju koju imaš, a zatim skineš novu sa linka datog u uputstvu.


Ako si to već uradio, jesi li dobio logfile?

offline
  • Mladen Lukić
  • Pridružio: 02 Apr 2009
  • Poruke: 1450
  • Gde živiš: Arilje

Logfile da gledam gde??? Sve sam odradio ponovo deinstall onu i instalaciju ponovnu sa tvog linka iz prethodne poruke i opet scaniram i opet moram na struju Very Happy (stalno se nasmejem kod ovoga)... i opet isto ona ikonica kao MY computer u njoj sve isto kao my computer samo mu nije naziv my computer nego ComboFix... sta da radim sad to za log mi nije jasno sta je to uopste logfile??? mozda izgledam malo glup ali uvek gledam da zakomplikujem Razz

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Citat:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);


Ako ga nema, postavi svež DDS log (DDS.txt).

Ko je trenutno na forumu
 

Ukupno su 1222 korisnika na forumu :: 39 registrovanih, 6 sakrivenih i 1177 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Bobrock1, Botovac, Brana01, CikaKURE, Dimitrije Paunovic, dragon986, dushan, Georgius, herrDule, ILGromovnik, Kubovac, kuntalo, Leonov, lord sir giga, Lošmi, Magistar78, Mcdado, mercedesamg, milenko crazy north, milutin134, mrvica78, nebkv, oldtimer, panonski mornar, Parker, raptorsi, srbijaiznadsvega, Srle993, ss10, Stoilkovic, Sumadija34, suton, tmanda323, vasa.93, vladulns, voja64, Volkhov-M, Zandar