Problem sa tastaturom

Problem sa tastaturom

offline
  • Milos Pavlovic
  • System Administrator
  • Pridružio: 10 Dec 2011
  • Poruke: 559
  • Gde živiš: 127.0.0.1

Pozdrav

- Imam problem sa tastaturom trazio sam pomoc ali sam poslat ovde.
Evo teme.
- Problem se poceo ispoljavati pre jedno 7 dana
- Zastitni softver ne detektuje nista...
- Internet konekcija je SBB 10mb/s

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_32
Run by PsYhO at 21:24:24 on 2012-06-06
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3071.2035 [GMT 2:00]
.
AV: ESET NOD32 Antivirus 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\PsYhO\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PsYhO\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\msiexec.exe
C:\Users\PsYhO\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\PsYhO\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
dPolicies-explorer: NoResolveTrack = 1 (0x1)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{43F22780-7AD7-49BE-ACE6-2EB51823400D} : DhcpNameServer = 192.168.0.1
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\platform\puresp4.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\psyho\appdata\roaming\mozilla\firefox\profiles\ehc2ddi1.default\
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2012-6-3 242240]
R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2012-3-14 169080]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-4-4 63928]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2012-3-7 913144]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2012-3-14 103112]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-6-3 1262400]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2012-5-15 382272]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-6-10 139776]
R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [2012-6-3 335872]
R3 RTL85n86;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver;c:\windows\system32\drivers\RTL85n86.sys [2009-6-10 311808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-6-3 257696]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-6-3 129976]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-6-3 15872]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2012-6-3 27192]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-6-4 52224]
.
=============== Created Last 30 ================
.
2012-06-06 19:15:00 -------- d-----w- c:\program files\ESET
2012-06-06 19:08:14 6737808 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2012-06-06 19:08:09 6737808 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{00534a28-c8b8-414f-81b2-e4b7c12f6e15}\mpengine.dll
2012-06-06 00:14:05 -------- d-sh--w- C:\$RECYCLE.BIN
2012-06-06 00:05:03 98816 ----a-w- c:\windows\sed.exe
2012-06-06 00:05:03 518144 ----a-w- c:\windows\SWREG.exe
2012-06-06 00:05:03 256000 ----a-w- c:\windows\PEV.exe
2012-06-06 00:05:03 208896 ----a-w- c:\windows\MBR.exe
2012-06-05 12:58:47 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2012-06-05 12:58:47 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2012-06-05 12:58:47 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2012-06-05 12:58:47 192512 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2012-06-05 12:58:46 729088 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2012-06-05 12:58:46 188548 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2012-06-05 12:58:45 311428 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
2012-06-05 11:43:16 -------- d-----w- c:\windows\system32\SPReview
2012-06-05 11:42:27 -------- d-----w- c:\windows\system32\EventProviders
2012-06-05 11:29:52 -------- d-----w- c:\programdata\PassMark
2012-06-05 11:29:47 -------- d-----w- c:\program files\KeyboardTest
2012-06-04 18:57:58 245632 ----a-w- c:\windows\system32\drivers\volsnap.sys
2012-06-04 18:56:59 84992 ----a-w- c:\windows\system32\cmstp.exe
2012-06-04 18:55:59 1003520 ----a-w- c:\windows\system32\cryptui.dll
2012-06-04 18:09:52 1699328 ----a-w- c:\windows\system32\esent.dll
2012-06-03 19:34:02 -------- d-----w- c:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2012-06-03 19:31:56 -------- d-----w- c:\windows\system32\xlive
2012-06-03 19:31:56 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2012-06-03 19:31:07 -------- d-----w- c:\windows\6833245EDD86479A882A8360D62C8194.TMP
2012-06-03 18:20:23 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-06-03 18:20:23 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-06-03 18:01:41 -------- d-----w- c:\users\psyho\VirtualBox VMs
2012-06-03 17:56:53 -------- d-----w- c:\users\psyho\.VirtualBox
2012-06-03 17:54:14 158552 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2012-06-03 17:54:01 91992 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2012-06-03 17:52:52 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-06-03 17:52:46 -------- d-----w- c:\users\psyho\appdata\roaming\DAEMON Tools Lite
2012-06-03 17:52:44 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-06-03 17:52:21 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-06-03 16:54:52 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-06-03 16:54:52 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2012-06-03 16:54:52 1060864 ----a-w- c:\windows\system32\mfc71.dll
2012-06-03 16:54:31 -------- d-----w- c:\program files\ASIO4ALL v2
2012-06-03 16:54:23 225280 ----a-w- c:\windows\system32\rewire.dll
2012-06-03 16:54:23 -------- d-----w- c:\program files\VstPlugins
2012-06-03 16:54:16 1554944 ----a-w- c:\windows\system32\vorbis.acm
2012-06-03 16:54:13 -------- d-----w- c:\program files\Outsim
2012-06-03 16:51:48 -------- d-----w- c:\program files\Image-Line
2012-06-03 16:50:01 -------- d-----w- c:\users\psyho\appdata\local\VS Revo Group
2012-06-03 16:49:56 27192 ----a-w- c:\windows\system32\drivers\revoflt.sys
2012-06-03 16:49:54 -------- d-----w- c:\program files\VS Revo Group
2012-06-03 16:47:45 -------- d-----w- c:\program files\VirtualDJ
2012-06-03 16:45:12 -------- d-----w- c:\users\psyho\appdata\roaming\NVIDIA
2012-06-03 12:48:55 -------- d-----w- c:\windows\Panther
2012-06-03 12:48:30 -------- d-----w- c:\windows\system32\OEM
2012-06-03 11:40:59 5120 ----a-w- c:\windows\system32\wmi.dll
2012-06-03 11:40:59 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-06-03 11:40:59 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-06-03 11:40:59 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-06-03 11:37:11 -------- d-----w- c:\program files\Speccy
2012-06-03 11:32:59 1549312 ----a-w- c:\windows\system32\tquery.dll
2012-06-03 11:31:59 2616320 ----a-w- c:\windows\explorer.exe
2012-06-03 11:20:10 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2012-06-03 11:20:10 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-06-03 11:20:10 107520 ----a-w- c:\windows\system32\cdd.dll
2012-06-03 11:18:18 26672 ----a-w- c:\windows\system32\drivers\pnarp.sys
2012-06-03 11:18:14 27696 ----a-w- c:\windows\system32\drivers\purendis.sys
2012-06-03 11:18:13 -------- d-----w- c:\program files\common files\Pure Networks Shared
2012-06-03 11:17:57 -------- d-----w- c:\programdata\Pure Networks
2012-06-03 11:08:17 -------- d-----w- c:\program files\Pure Networks
2012-06-03 11:06:26 -------- d-----w- c:\programdata\Malwarebytes
2012-06-03 11:06:25 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-03 11:06:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-03 11:03:18 -------- d-----r- c:\program files\Skype
2012-06-03 10:57:07 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-06-03 10:53:24 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2012-06-03 10:42:50 175616 ----a-w- c:\windows\system32\unrar.dll
2012-06-03 10:42:47 -------- d-----w- c:\program files\K-Lite Codec Pack
2012-06-03 10:41:16 -------- d-----w- c:\program files\GRETECH
2012-06-03 10:32:20 -------- d-----w- c:\users\psyho\appdata\roaming\uTorrent
2012-06-03 10:32:20 -------- d-----w- c:\program files\uTorrent
2012-06-03 10:25:21 -------- d-----w- c:\windows\system32\Adobe
2012-06-03 10:25:06 476960 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-06-03 10:25:06 472864 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-03 10:24:22 -------- d-----w- c:\users\psyho\appdata\local\Adobe
2012-06-03 10:23:04 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-03 10:23:04 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-03 10:05:58 -------- d-----w- c:\users\psyho\appdata\local\ElevatedDiagnostics
2012-06-03 09:55:04 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-06-03 09:55:04 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-06-03 09:55:04 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-06-03 09:55:04 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys
2012-06-03 09:55:04 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-03 09:55:04 15872 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2012-06-03 09:55:04 134656 ----a-w- c:\windows\system32\rdpudd.dll
2012-06-03 09:54:30 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-06-03 09:54:30 57856 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-03 09:54:30 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-06-03 09:50:50 -------- d-----w- c:\users\psyho\appdata\local\Google
2012-06-03 09:49:52 -------- d-----w- c:\users\psyho\appdata\local\Apps
2012-06-03 09:49:51 -------- d-----w- c:\users\psyho\appdata\local\Deployment
2012-06-03 09:46:19 335872 ----a-w- c:\windows\system32\drivers\RTL8187.sys
2012-06-03 03:02:22 -------- d-sh--w- c:\windows\Installer
2012-06-03 03:02:09 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-06-03 03:02:09 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-06-03 03:02:09 3931456 ----a-w- c:\windows\system32\nvcpl.dll
2012-06-03 03:02:09 2759488 ----a-w- c:\windows\system32\nvsvc.dll
2012-06-03 03:02:09 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-06-03 03:00:54 -------- d-----w- C:\NVIDIA
2012-06-03 02:55:58 -------- d-----w- C:\Recovery
2012-05-22 13:08:34 104792 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2012-05-22 13:08:32 135512 ------w- c:\windows\system32\VBoxNetFltNobj.dll
2012-05-15 00:21:50 423744 ----a-w- c:\windows\system32\nvStreaming.exe
.
==================== Find3M ====================
.
2012-06-05 12:09:41 152576 ----a-w- c:\windows\system32\msclmd.dll
2012-05-15 10:26:00 883008 ----a-w- c:\windows\system32\nvgenco32.dll
2012-05-15 10:26:00 8105280 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-05-15 10:26:00 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-15 10:26:00 5982528 ----a-w- c:\windows\system32\nvcuda.dll
2012-05-15 10:26:00 2524992 ----a-w- c:\windows\system32\nvcuvid.dll
2012-05-15 10:26:00 2445120 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-05-15 10:26:00 2368832 ----a-w- c:\windows\system32\nvapi.dll
2012-05-15 10:26:00 19607872 ----a-w- c:\windows\system32\nvoglv32.dll
2012-05-15 10:26:00 17551680 ----a-w- c:\windows\system32\nvcompiler.dll
2012-05-15 10:26:00 15322432 ----a-w- c:\windows\system32\nvd3dum.dll
2012-05-15 10:26:00 11354944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-05-15 10:26:00 1000768 ----a-w- c:\windows\system32\nvdispco32.dll
2012-03-31 04:39:37 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-03-31 04:39:37 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 02:36:11 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-03-30 10:23:11 1291632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-03-17 07:27:18 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-03-14 06:40:02 169080 ----a-w- c:\windows\system32\drivers\eamonm.sys
2012-03-14 06:40:02 120152 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2012-03-14 06:40:02 103112 ----a-w- c:\windows\system32\drivers\epfwwfpr.sys
.
============= FINISH: 21:25:25.84 ===============

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

offline
  • Osvjedodžbeni spretnik munjarstva
  • Pridružio: 04 Jul 2011
  • Poruke: 5424
  • Gde živiš: Beograd

Pozdrav, Psyho93.


Exclamation Ubuduće, ne pokreći ComboFix na svoju ruku!!!
ComboFix nije dijagnosticki alat. To je jako mocan alat (koriste ga experti za uklanjanje malware-a), koji nepravilnim rukovanjem, moze unistiti operativni sistem ili pak obrisati sve padatke sa hard diska. Pokrece se iskljucivo uz predlog, nadleznost i detaljno uputstvo helpera koji je expert u toj oblasti (npr AMF Tim u Ambulanti) i zna sta radi.


Arrow Dostavi mi izveštaj koji se nalazi u:

C:\ComboFix.txt



Ivance95 (AMF Tim)

offline
  • Milos Pavlovic
  • System Administrator
  • Pridružio: 10 Dec 2011
  • Poruke: 559
  • Gde živiš: 127.0.0.1

evo


ComboFix 12-06-05.01 - PsYhO 06/06/2012 2:06.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3071.2356 [GMT 2:00]
Running from: c:\users\PsYhO\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-05-06 to 2012-06-06 )))))))))))))))))))))))))))))))
.
.
2012-06-06 00:12 . 2012-06-06 00:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-05 11:43 . 2012-06-05 11:43 -------- d-----w- c:\windows\system32\SPReview
2012-06-05 11:42 . 2012-06-05 11:42 -------- d-----w- c:\windows\system32\EventProviders
2012-06-05 11:29 . 2012-06-05 11:29 -------- d-----w- c:\programdata\PassMark
2012-06-05 11:29 . 2012-06-05 11:29 -------- d-----w- c:\program files\KeyboardTest
2012-06-04 18:57 . 2010-11-20 12:30 245632 ----a-w- c:\windows\system32\drivers\volsnap.sys
2012-06-04 18:56 . 2010-11-20 12:21 25600 ----a-w- c:\windows\system32\vpnikeapi.dll
2012-06-04 18:55 . 2010-11-20 12:18 1003520 ----a-w- c:\windows\system32\cryptui.dll
2012-06-04 18:09 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll
2012-06-04 12:30 . 2012-06-04 12:30 748336 ----a-w- c:\program files\Internet Explorer\iexplore.exe
2012-06-03 19:34 . 2012-06-03 19:34 -------- d-----w- c:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2012-06-03 19:31 . 2012-06-03 19:32 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2012-06-03 19:31 . 2012-06-03 19:31 -------- d-----w- c:\windows\system32\xlive
2012-06-03 19:31 . 2012-06-03 19:31 -------- d-----w- c:\windows\6833245EDD86479A882A8360D62C8194.TMP
2012-06-03 18:20 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-06-03 18:20 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-06-03 17:54 . 2012-05-22 13:08 158552 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2012-06-03 17:54 . 2012-05-22 13:08 91992 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2012-06-03 17:52 . 2012-06-03 17:52 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-06-03 17:52 . 2012-06-03 17:52 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-06-03 17:52 . 2012-06-03 19:20 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-06-03 16:54 . 2012-06-03 16:54 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-06-03 16:54 . 2012-06-03 16:54 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2012-06-03 16:54 . 2012-06-03 16:54 1060864 ----a-w- c:\windows\system32\mfc71.dll
2012-06-03 16:54 . 2012-06-03 16:54 -------- d-----w- c:\program files\ASIO4ALL v2
2012-06-03 16:54 . 2012-06-03 16:54 -------- d-----w- c:\program files\VstPlugins
2012-06-03 16:54 . 2006-06-20 08:56 225280 ----a-w- c:\windows\system32\rewire.dll
2012-06-03 16:54 . 2009-09-15 09:14 1554944 ----a-w- c:\windows\system32\vorbis.acm
2012-06-03 16:54 . 2012-06-03 16:54 -------- d-----w- c:\program files\Outsim
2012-06-03 16:51 . 2012-06-03 16:54 -------- d-----w- c:\program files\Image-Line
2012-06-03 16:49 . 2009-12-30 08:21 27192 ----a-w- c:\windows\system32\drivers\revoflt.sys
2012-06-03 16:49 . 2012-06-03 16:49 -------- d-----w- c:\program files\VS Revo Group
2012-06-03 16:47 . 2012-06-03 16:48 -------- d-----w- c:\program files\VirtualDJ
2012-06-03 12:48 . 2012-06-03 02:57 -------- d-----w- c:\windows\Panther
2012-06-03 12:48 . 2012-06-03 12:48 -------- d-----w- c:\windows\system32\OEM
2012-06-03 11:40 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-06-03 11:40 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-06-03 11:40 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-06-03 11:40 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-06-03 11:37 . 2012-06-03 11:37 -------- d-----w- c:\program files\Speccy
2012-06-03 11:32 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2012-06-03 11:31 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe
2012-06-03 11:20 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-06-03 11:20 . 2010-11-20 12:29 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2012-06-03 11:20 . 2010-11-20 11:56 107520 ----a-w- c:\windows\system32\cdd.dll
2012-06-03 11:18 . 2009-07-07 12:48 26672 ----a-w- c:\windows\system32\drivers\pnarp.sys
2012-06-03 11:18 . 2009-07-07 12:48 27696 ----a-w- c:\windows\system32\drivers\purendis.sys
2012-06-03 11:18 . 2012-06-03 11:18 -------- d-----w- c:\program files\Common Files\Pure Networks Shared
2012-06-03 11:17 . 2012-06-03 11:18 -------- d-----w- c:\programdata\Pure Networks
2012-06-03 11:08 . 2012-06-03 11:08 -------- d-----w- c:\program files\Pure Networks
2012-06-03 11:07 . 2012-06-03 18:56 -------- dc----w- c:\windows\system32\DRVSTORE
2012-06-03 11:06 . 2012-06-03 11:06 -------- d-----w- c:\programdata\Malwarebytes
2012-06-03 11:06 . 2012-06-03 11:06 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-03 11:06 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-03 11:05 . 2012-06-03 11:05 -------- d-----w- c:\program files\Common Files\Adobe
2012-06-03 11:03 . 2012-06-03 11:03 -------- d-----w- c:\program files\Common Files\Skype
2012-06-03 11:03 . 2012-06-03 11:03 -------- d-----r- c:\program files\Skype
2012-06-03 11:03 . 2012-06-03 11:03 -------- d-----w- c:\programdata\Skype
2012-06-03 11:02 . 2012-06-03 11:02 -------- d-----w- c:\program files\Common Files\Java
2012-06-03 11:01 . 2012-04-27 08:20 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-06-03 11:01 . 2012-04-24 22:32 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-06-03 11:01 . 2012-04-16 19:18 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-06-03 11:01 . 2012-06-03 11:01 -------- d-----w- c:\programdata\Avira
2012-06-03 11:01 . 2012-06-03 11:01 -------- d-----w- c:\program files\Avira
2012-06-03 11:01 . 2012-06-03 11:01 -------- d-----w- c:\program files\Java
2012-06-03 10:57 . 2012-05-14 23:43 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BAE0D72C-4F08-475F-BD1E-D62B7A9508D8}\mpengine.dll
2012-06-03 10:57 . 2012-02-23 08:18 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-06-03 10:42 . 2011-03-02 10:43 175616 ----a-w- c:\windows\system32\unrar.dll
2012-06-03 10:42 . 2012-06-03 10:42 -------- d-----w- c:\program files\K-Lite Codec Pack
2012-06-03 10:41 . 2012-06-03 10:41 -------- d-----w- c:\program files\GRETECH
2012-06-03 10:37 . 2012-06-03 10:37 -------- d-----w- c:\program files\ImgBurn
2012-06-03 10:32 . 2012-06-03 10:32 -------- d-----w- c:\program files\uTorrent
2012-06-03 10:25 . 2012-06-03 10:25 -------- d-----w- c:\windows\system32\Adobe
2012-06-03 10:25 . 2012-06-03 10:25 476960 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-06-03 10:25 . 2012-06-03 10:25 472864 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-03 10:24 . 2012-06-03 10:24 -------- d-----w- c:\program files\Common Files\Adobe AIR
2012-06-03 10:23 . 2012-06-03 10:23 -------- d-----w- c:\program files\Microsoft Silverlight
2012-06-03 10:23 . 2012-06-03 10:57 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-03 10:23 . 2012-06-03 10:57 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-03 10:23 . 2012-06-03 10:23 -------- d-----w- c:\windows\system32\Macromed
2012-06-03 10:20 . 2012-06-03 12:49 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-06-03 09:55 . 2012-02-17 05:34 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-06-03 09:55 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-06-03 09:55 . 2012-02-17 04:14 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-03 09:55 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-06-03 09:55 . 2010-11-20 10:24 134656 ----a-w- c:\windows\system32\rdpudd.dll
2012-06-03 09:55 . 2010-11-20 10:21 15872 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2012-06-03 09:55 . 2010-11-20 10:21 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys
2012-06-03 09:54 . 2012-01-25 05:44 57856 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-03 09:54 . 2012-01-25 05:44 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-06-03 09:54 . 2012-01-25 05:27 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-06-03 09:46 . 2008-06-27 01:40 335872 ----a-w- c:\windows\system32\drivers\RTL8187.sys
2012-06-03 03:02 . 2012-06-03 19:34 -------- d-sh--w- c:\windows\Installer
2012-06-03 03:02 . 2012-06-03 03:02 -------- d-----w- c:\users\UpdatusUser
2012-06-03 03:02 . 2012-06-05 20:06 -------- d-----w- c:\programdata\NVIDIA
2012-06-03 03:02 . 2012-05-15 09:28 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-06-03 03:02 . 2012-05-15 09:28 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-06-03 03:02 . 2012-05-15 09:28 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-06-03 03:02 . 2012-05-15 09:28 3931456 ----a-w- c:\windows\system32\nvcpl.dll
2012-06-03 03:02 . 2012-05-15 09:27 2759488 ----a-w- c:\windows\system32\nvsvc.dll
2012-06-03 03:00 . 2012-06-03 03:00 -------- d-----w- C:\NVIDIA
2012-06-03 02:57 . 2012-06-03 18:01 -------- d-----w- c:\users\PsYhO
2012-06-03 02:55 . 2012-06-03 02:55 -------- d-----w- C:\Recovery
2012-05-22 13:08 . 2012-05-22 13:08 104792 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2012-05-22 13:08 . 2012-05-22 13:08 135512 ------w- c:\windows\system32\VBoxNetFltNobj.dll
2012-05-15 00:21 . 2012-05-15 00:21 423744 ----a-w- c:\windows\system32\nvStreaming.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-05 12:09 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2012-05-15 10:26 . 2009-07-13 22:09 8105280 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-04-21 01:19 . 2012-06-03 10:53 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-05-03 17355912]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-08-18 7711264]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-05-01 348624]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]
"nmapp"="c:\program files\Pure Networks\Network Magic\nmapp.exe" [2012-06-03 472112]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-03 257696]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8187.sys [2008-06-27 335872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-05-22 104792]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-04-16 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-03 242240]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2012-05-01 86224]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 RTL85n86;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver;c:\windows\system32\DRIVERS\RTL85n86.sys [2009-07-13 311808]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - CPUZ135
*Deregistered* - cpuz135
.
Contents of the 'Scheduled Tasks' folder
.
2012-06-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-03 10:57]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2999213685-891336195-44863162-1000Core.job
- c:\users\PsYhO\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-03 10:22]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2999213685-891336195-44863162-1000UA.job
- c:\users\PsYhO\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-03 10:22]
.
.
------- Supplementary Scan -------
.
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\PsYhO\AppData\Roaming\Mozilla\Firefox\Profiles\ehc2ddi1.default\
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(4060)
c:\program files\Pure Networks\Network Magic\nmrsrc.dll
.
Completion time: 2012-06-06 02:14:57
ComboFix-quarantined-files.txt 2012-06-06 00:14
.
Pre-Run: 47,445,438,464 bytes free
Post-Run: 47,421,349,888 bytes free
.
- - End Of File - - E757AA6BF5C17983B8FB1730B6654DF6

offline
  • Osvjedodžbeni spretnik munjarstva
  • Pridružio: 04 Jul 2011
  • Poruke: 5424
  • Gde živiš: Beograd

Arrow Tvoj kompjuter je čist što se malware-a tiče.



Arrow Preporucujem da za zastitu USB memorijskih uredjaja koristis MCShield v2. Nema nikakve veze sa AntiVirus-om tj. nece ometati njegov rad a pokazao se kao jedan od najboljih vida zastite od malware-a koji se prenosi putem USB mem. uredjaja. Skines, instaliras, ubodes USB mem. uredjaj, izvrsi se skeniranje nakon cega dobijes obavestenje da je uredjaj cist (ukoliko je stvarno tako); ili dobijes log u kome vidis informacije o malware-u koji je nadjen i obrisan.


Home Page MCShield-a ::Anti-Malware Tool:: v2: http://amf.mycity.rs/mcshield/

Vise o MCShield-u mozes saznati u ovim temama:
v1: http://www.mycity.rs/MyCity-Laboratorija/MCShield.html
v2: http://www.mycity.rs/MyCity-Laboratorija/MCShield-v2.html




Arrow Obavezno poseti temu "Testirajte da li vam je pretrazivac ranjiv", procitaj i isprati link koji stoji u njoj.
Link do teme je: http://www.mycity.rs/Web-browseri/Testirajte-da-li.....anjiv.html


Ivance95 (AMF Tim)

offline
  • Milos Pavlovic
  • System Administrator
  • Pridružio: 10 Dec 2011
  • Poruke: 559
  • Gde živiš: 127.0.0.1

Da ali to i dalje ne resava moj problem.

offline
  • Osvjedodžbeni spretnik munjarstva
  • Pridružio: 04 Jul 2011
  • Poruke: 5424
  • Gde živiš: Beograd

Otvori temu sa opisom problema u Windows potforumu, neko od kolega će ti pružiti adekvatnu pomoć.


Ivance95 (AMF Tim)

Ko je trenutno na forumu
 

Ukupno su 728 korisnika na forumu :: 29 registrovanih, 2 sakrivenih i 697 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., babaroga, Bane san, BlackPhantom, Ctrl x, Dimitrise93, djboj, djo97, Djokislav, goxin, gzoki, Helket, Lucije Kvint, MB120mm, Mercury, Milan A. Nikolic, Mixelotti, Mlav, Panter, pein, repac, ruso, sabros, vdeki, VJ, Vlad000, Vlada1389, vukdra, Yellow Pinky