facebook problem (tagovani linkovi,obavestenja)

facebook problem (tagovani linkovi,obavestenja)

offline
  • Pridružio: 15 Sep 2010
  • Poruke: 73
  • Gde živiš: Pancevo

jhoni01 ::Da li se i vama ovo pojavljuje, a da niste kliktali na to? Stigne mi po nekoliko obavestenja da je ta osoba podelila link, odem na njen profil, kad ono po nekoliko ovakvih linkova i isti tekst.
I pojavila mi se nekakva crna buba pored chat-a. Pise report bug. I kad kliknem na to pise "nepoznata greska".





Citirao sam samog sebe,jer sam stavio vec jednom pitanje u facebook malware...
Za svaki slucaj sam promenio mail i sifru na facebook-u.
U medjuvremenu su poceli i neki drugi linkovi da se pojavljuju ali sa istim tekstom. I dva puta mi je stizalo obavestenje da me ta osoba oznacila.
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_30
Run by Administrator at 18:50:35 on 2012-02-24
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uInternet Connection Wizard,ShellNext = hxxp://go.divx.com/postinstall/win/en-us
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Windows Live ??????? ?? ???????????: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Foxit Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
uRun: [MCShield] c:\program files\mcshield\MCShieldRTM.exe
uRun: [MCShieldTray] c:\program files\mcshield\MCShieldTray.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\administrator\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [DAEMON Tools Lite] "d:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
mRun: [PACTray] c:\windows\pixart\pap7501\PACTray.exe
mRun: [PAP7501_Monitor] c:\windows\pixart\pap7501\GUCI_AVS.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: DhcpNameServer = 87.250.33.21 87.250.33.22
TCP: Interfaces\{EE41DDDC-D758-439B-AD64-529EB8D592EE} : DhcpNameServer = 87.250.33.21 87.250.33.22
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - d:\program files\superantispyware\SASWINLO.DLL
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - d:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\application data\mozilla\firefox\profiles\s7obxc7k.default\
FF - prefs.js: browser.startup.homepage - google.rs
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\administrator\local settings\application data\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\5.0.61118.0\npctrlui.dll
FF - plugin: d:\program files\veetle\player\npvlc.dll
FF - plugin: d:\program files\veetle\plugins\npVeetle.dll
.
============= SERVICES / DRIVERS ===============
.
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? pwdrvio;pwdrvio
R? pwdspio;pwdspio
R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0
S? !SASCORE;SAS Core Service
S? aswFsBlk;aswFsBlk
S? aswSnx;aswSnx
S? aswSP;aswSP
S? avast! Antivirus;avast! Antivirus
S? dtsoftbus01;DAEMON Tools Virtual Bus Driver
S? GUCI_AVS;Generic USB Controller Interface (AVS)
S? SASDIFSV;SASDIFSV
S? SASKUTIL;SASKUTIL
.
=============== Created Last 30 ================
.
2012-02-22 23:35:26 5632 ----a-w- c:\windows\system32\ptpusb.dll
2012-02-22 23:35:25 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2012-02-22 23:35:25 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2012-02-22 23:35:24 159232 ----a-w- c:\windows\system32\ptpusd.dll
2012-02-22 12:23:53 -------- d-----w- c:\documents and settings\administrator\application data\Softland
2012-02-22 12:23:51 23376 ----a-w- c:\windows\system32\dopdfmn7.dll
2012-02-22 12:23:51 20816 ----a-w- c:\windows\system32\dopdfmi7.dll
2012-02-22 12:23:48 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2012-02-16 12:41:00 922184 ----a-w- c:\windows\system32\pwNative.exe
2012-02-16 12:40:58 16472 ------w- c:\windows\system32\pwdrvio.sys
2012-02-16 12:40:56 11104 ------w- c:\windows\system32\pwdspio.sys
2012-02-14 16:13:18 49152 ----a-r- c:\documents and settings\administrator\application data\microsoft\installer\{49cfd5d9-0556-4037-b7d6-e13ed4bea4c5}\editor_EC0AB585B2794A778BB564C403E43EE7.exe
2012-02-14 16:05:38 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-02-14 16:04:10 -------- d-----w- c:\documents and settings\administrator\application data\DAEMON Tools Lite
2012-02-14 16:03:59 -------- d-----w- c:\documents and settings\all users\application data\DAEMON Tools Lite
2012-02-07 11:40:05 -------- d-----w- C:\android-sdk-windows
2012-02-04 15:11:24 -------- d-----w- c:\documents and settings\administrator\application data\OpenOffice.org
2012-01-30 22:34:45 -------- d-----w- c:\documents and settings\administrator\application data\eXtremeSenses
.
==================== Find3M ====================
.
2012-02-18 11:16:52 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-24 12:36:03 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-12-24 12:36:02 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-12-23 15:53:49 10578 ----a-w- c:\windows\system32\drivers\hamachi.sys
2011-12-23 13:59:57 0 ----a-w- c:\windows\ativpsrm.bin
2011-12-10 14:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-29 02:28:28 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2011-11-29 02:28:28 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2011-11-29 02:28:28 45648 ------w- c:\windows\system32\drivers\PxHelp20.sys
2011-11-29 02:28:28 133616 ------w- c:\windows\system32\pxafs.dll
2011-11-29 02:28:28 126448 ------w- c:\windows\system32\pxinsi64.exe
2011-11-29 02:28:28 123888 ------w- c:\windows\system32\pxcpyi64.exe
2011-11-28 18:01:25 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 17:53:53 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
.
============= FINISH: 18:56:02.11 ===============


mycity.rs/must-login.png

mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Pozdrav jhoni01!








Koliko sam ja tebe razumeo, ti nisi otvarao tu objavu koju si dobio? Ako nisi, sve je u redu. Tvoj prijatelj, koji te je tag-ovao u tom obavestenju koje si dobio, ima zarazen pretrazivac pa se sa njegovog profila siri ta prevara - on toga mozda nije ni svestan. Popularna je vec par zadnjih meseci - sad je vec i lokalizovana (koristi se nas, maternji jeziku) i uveliko uzima maha. S'obzirom da ima uvek zanimljiv naslov, vecina korisnika Facebook-a klikne, instalira 'fake plugin', prikljuci se prevarenim korisnicima i tako se prevara dalje brzo siri.




Ako si otvarao maliciozni sajt Pogledajte svoju provalu i instalirao maliciozni plugin koji se trazi od tebe da instaliras ne bi li video 'provalu' koja i ne postoji, onda je potrebno da odradis sledece:



Arrow


Preuzmite program OTL sa donjeg linka na Desktop:


OTL download
Kliknite dati link - u prozoru koji se otvori, kliknite Save;
kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.


Dvoklikom pokrenite OTL;

kliknite Run Scan;

po završetku skeniranja, izveštaj (koji će biti automatski sačuvan na Desktop-u kao OTL.Txt) će se otvoriti u Notepad-u.


Priložite izveštaj OTL.Txt uz poruku korišćenjem opcije Prikači fajl.








goran9888 (AMF Tim)

offline
  • Pridružio: 15 Sep 2010
  • Poruke: 73
  • Gde živiš: Pancevo

Napisano: 25 Feb 2012 13:46

Sinoc sam morao da ugasim racunar,jer sam morao da idem negde... I pitao sam moje, da nije neko mozda od njih ulazio u facebook. Bila je moja sestra i pitao je da nije ona kliknula. I jeste GUZ - Glavom U Zid
I rekla mi je da je avast blokirao. tako da nije ni mogla da otvori tu stranicu. Sad vise nema prilazenja racunaru bez mog prisustva.
Evo izvestaja od OTL-a. E sad ne znam da li treba i extras log,ili samo otl? Sacuvao sam oba.


OTL logfile created on: 2/25/2012 12:57:43 PM - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.25 Gb Total Physical Memory | 0.68 Gb Available Physical Memory | 54.63% Memory free
2.98 Gb Paging File | 2.54 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 1920 3840 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19.53 Gb Total Space | 11.71 Gb Free Space | 59.92% Space Free | Partition Type: NTFS
Drive D: | 18.74 Gb Total Space | 9.58 Gb Free Space | 51.11% Space Free | Partition Type: NTFS

Computer Name: CHANGEME | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/25 12:53:05 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012/02/12 00:08:18 | 000,644,608 | ---- | M] (MyCity) -- C:\Program Files\MCShield\MCShieldRTM.exe
PRC - [2012/01/25 21:36:42 | 000,949,104 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2011/11/28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/11/28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- D:\Program Files\SuperAntiSpyware\SASCore.exe
PRC - [2009/06/09 10:53:20 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAP7501\PACTray.exe
PRC - [2008/04/14 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/12/10 15:55:26 | 000,323,584 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAP7501\GUCI_AVS.exe
PRC - [2007/01/01 22:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Program Files\Google\Google Talk\googletalk.exe


========== Modules (No Company Name) ==========

MOD - [2012/02/25 09:46:59 | 001,714,688 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12022500\algo.dll
MOD - [2012/02/24 17:32:21 | 001,714,688 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12022401\algo.dll
MOD - [2012/02/18 12:16:52 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2010/07/04 22:32:38 | 000,010,752 | ---- | M] () -- D:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2010/02/10 18:10:10 | 000,141,824 | ---- | M] () -- D:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011/11/28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/10/27 10:34:30 | 000,718,384 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- D:\Program Files\SuperAntiSpyware\SASCORE.EXE -- (!SASCORE)


========== Driver Services (SafeList) ==========

DRV - [2012/02/14 17:05:38 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012/01/18 15:55:56 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pwdrvio.sys -- (pwdrvio)
DRV - [2012/01/18 15:55:54 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pwdspio.sys -- (pwdspio)
DRV - [2011/12/23 16:53:49 | 000,010,578 | ---- | M] (Applied Networking Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2011/11/28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/11/28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/11/28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/11/28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/11/28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/11/28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/11/28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/08/17 12:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011/08/17 12:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/08/17 12:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011/08/17 12:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011/07/22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- D:\Program Files\SuperAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- D:\Program Files\SuperAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/02/11 08:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009/11/06 13:13:44 | 000,543,616 | ---- | M] (PixArt Imaging Incorporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GUCI_AVS.sys -- (GUCI_AVS) Generic USB Controller Interface (AVS)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2006/11/02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2002/09/15 20:20:00 | 000,064,128 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viaudio.sys -- (VIAudio) VIA AC'97 Audio Controller (WDM)
DRV - [2002/07/24 04:30:00 | 000,032,128 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.google.rs"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: D:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: D:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/12/23 15:07:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/12/23 15:44:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2011/12/23 16:18:04 | 000,000,000 | ---D | M]

[2011/12/23 18:49:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/12/23 15:09:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\extensions
[2011/12/23 15:09:15 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2011/12/24 14:31:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\s7obxc7k.default\extensions
[2011/12/23 15:44:38 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF

O1 HOSTS File: ([2008/04/14 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (Foxit Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Foxit Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [PACTray] C:\WINDOWS\PixArt\PAP7501\PACTray.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [PAP7501_Monitor] C:\WINDOWS\PixArt\PAP7501\GUCI_AVS.exe (PixArt Imaging Incorporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [MCShield Monitor] C:\Program Files\MCShield\MCShieldRTM.exe (MyCity)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 87.250.33.21 87.250.33.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EE41DDDC-D758-439B-AD64-529EB8D592EE}: DhcpNameServer = 87.250.33.21 87.250.33.22
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (D:\Program Files\SuperAntiSpyware\SASWINLO.DLL) - D:\Program Files\SuperAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - D:\Program Files\SuperAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/12/23 14:35:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/25 12:53:05 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/02/24 20:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/02/24 20:42:53 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/02/24 20:42:53 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/02/24 20:42:53 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/02/24 20:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\MCShield
[2012/02/24 20:34:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MCShield
[2012/02/24 20:32:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2012/02/24 18:42:11 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\dds.scr
[2012/02/23 00:35:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2012/02/23 00:35:25 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2012/02/23 00:35:24 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2012/02/22 13:23:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Softland
[2012/02/22 13:23:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Softland
[2012/02/22 13:23:51 | 000,023,376 | ---- | C] (Softland) -- C:\WINDOWS\System32\dopdfmn7.dll
[2012/02/22 13:23:51 | 000,020,816 | ---- | C] (Softland) -- C:\WINDOWS\System32\dopdfmi7.dll
[2012/02/22 13:23:48 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll
[2012/02/22 13:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\doPDF 7
[2012/02/16 13:40:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\MiniTool Partition Wizard Home Edition 7.1
[2012/02/14 17:21:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\nygreen.net
[2012/02/14 17:13:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Sports Interactive
[2012/02/14 17:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DAEMON Tools Lite
[2012/02/14 17:05:38 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012/02/14 17:04:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2012/02/14 17:03:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2012/02/12 23:43:36 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2012/02/12 21:07:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2012/02/12 21:07:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012/02/07 12:40:05 | 000,000,000 | ---D | C] -- C:\android-sdk-windows
[2012/02/07 12:23:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\.android
[2012/02/04 16:11:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\OpenOffice.org
[2012/02/04 16:09:36 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\OpenOffice.org 3.1
[2012/01/30 23:34:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\eXtremeSenses
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/02/25 13:01:02 | 000,001,010 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-1202660629-842925246-500UA.job
[2012/02/25 12:56:55 | 000,018,907 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\avast.JPG
[2012/02/25 12:53:27 | 000,455,376 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/02/25 12:53:27 | 000,075,350 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/02/25 12:53:05 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/02/25 12:48:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/02/25 12:48:44 | 1341,710,336 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/24 20:42:36 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/02/24 20:42:35 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2012/02/24 20:42:35 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/02/24 20:42:35 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/02/24 20:42:35 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012/02/24 20:34:42 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MCShield Real-Time Monitor.lnk
[2012/02/24 18:42:30 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\xz4s6u5g.exe
[2012/02/24 18:42:11 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\dds.scr
[2012/02/24 16:41:46 | 000,000,655 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012/02/24 13:10:51 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/02/24 00:01:03 | 000,000,958 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-1202660629-842925246-500Core.job
[2012/02/23 16:54:49 | 000,066,048 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/22 13:35:21 | 000,192,585 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\TPLINK.rs - Kako da instaliram TP-LINK router da radi sa Kablovskim Modemom (Dynamic & Static IP).pdf
[2012/02/21 19:58:08 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\MiniTool Partition Wizard Home Edition.lnk
[2012/02/21 14:06:45 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012/02/18 12:16:52 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/02/16 16:06:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2012/02/14 17:21:34 | 000,000,677 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FM Scout.lnk
[2012/02/14 17:13:45 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\DAEMON Tools Lite.lnk
[2012/02/14 17:13:14 | 000,001,893 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Football Manager 2006.lnk
[2012/02/14 17:05:38 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012/02/12 23:45:41 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Recuva.lnk
[2012/02/11 00:33:51 | 000,000,604 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\frd.lnk
[2012/02/07 14:17:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2012/02/05 12:31:29 | 000,110,992 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/02/04 17:46:27 | 000,000,901 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\OpenOffice.org 3.1.lnk
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/02/25 12:56:20 | 000,018,907 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\avast.JPG
[2012/02/24 20:34:42 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MCShield Real-Time Monitor.lnk
[2012/02/24 18:42:30 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\xz4s6u5g.exe
[2012/02/22 13:35:20 | 000,192,585 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\TPLINK.rs - Kako da instaliram TP-LINK router da radi sa Kablovskim Modemom (Dynamic & Static IP).pdf
[2012/02/22 13:23:51 | 000,007,549 | ---- | C] () -- C:\WINDOWS\System32\dopdf7.ctm
[2012/02/21 19:58:08 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\MiniTool Partition Wizard Home Edition.lnk
[2012/02/16 13:41:00 | 000,922,184 | ---- | C] () -- C:\WINDOWS\System32\pwNative.exe
[2012/02/16 13:40:58 | 000,016,472 | ---- | C] () -- C:\WINDOWS\System32\pwdrvio.sys
[2012/02/16 13:40:56 | 000,011,104 | ---- | C] () -- C:\WINDOWS\System32\pwdspio.sys
[2012/02/14 17:21:34 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FM Scout.lnk
[2012/02/14 17:13:45 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\DAEMON Tools Lite.lnk
[2012/02/14 17:13:14 | 000,001,893 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Football Manager 2006.lnk
[2012/02/12 23:45:41 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Recuva.lnk
[2012/02/11 00:33:51 | 000,000,604 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\frd.lnk
[2012/02/07 14:17:58 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2012/02/04 17:46:27 | 000,000,901 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\OpenOffice.org 3.1.lnk
[2011/12/30 01:23:13 | 000,083,482 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011/12/23 18:27:09 | 000,000,034 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2011/12/23 18:24:30 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\burnaware.ini
[2011/12/23 16:49:47 | 000,066,048 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/23 16:30:01 | 000,002,157 | ---- | C] () -- C:\WINDOWS\System32\GUCI_AVS.ini
[2011/12/23 15:24:44 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/12/23 15:22:09 | 000,110,992 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/12/23 15:15:04 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011/12/23 14:59:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2011/12/23 14:58:08 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2011/12/23 14:50:43 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll
[2011/12/23 14:49:03 | 000,000,016 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011/12/23 14:39:17 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/12/23 14:31:35 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

========== Files - Unicode (All) ==========
[2012/02/17 17:06:21 | 000,000,000 | ---D | M](C:\Documents and Settings\Administrator\My Documents\???? ???????? ????????) -- C:\Documents and Settings\Administrator\My Documents\Моје примљене датотеке
[2012/02/17 17:06:21 | 000,000,000 | ---D | C](C:\Documents and Settings\Administrator\My Documents\???? ???????? ????????) -- C:\Documents and Settings\Administrator\My Documents\Моје примљене датотеке

< End of report >





mycity.rs/must-login.png

Dopuna: 25 Feb 2012 13:50

U medjuvremenu sam se cuo sa drugaricom, njoj je ogranicen pristup fejsbuku, a njenoj sestri profil blokiran??? Ja sam sada usao u fejsbuk najnormalnije,i nestala je ona buba pored chat-a. Probao sam da udjem na profil takodje jedne drugarice. I pise stranica je nedostupna.

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Tvoj sistem je cist sto se malware-a tice.
Objasni sestri da ne klikce na takve i slicne objave jer je u pitanju prevara. S'obzirom da koristis Operu, koja trenutno nije podlozna ovoj vrsti prevare, ukoliko si i pokusavao da instaliras 'plugin' - nisi uspeo, jer taj 'plugin' ne radi na Operi.



Prati temu Facebook malware i budi u toku koji se malware siri putem ove drustvene mreze i na koji nacin: http://www.mycity.rs/Zastita/Facebook-malware.html



Arrow

Pokreni alat OTL i klikni na opciju CleanUp - time ce alat biti deinstaliran/uklonjen sa sistema.






offline
  • Pridružio: 15 Sep 2010
  • Poruke: 73
  • Gde živiš: Pancevo

Hvala vam puno! E sad samo jedno pitanje, stisnuo sam clean up, i kada je zavrsio proces, trazio je restart sistema,restartovao sam, ali ne znam da li je trebala ikonica da nestane posle deinstalacije. Ikonicu sam posle restarta rucno obrisao. Kako da proverim da je program obrisan?

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

jhoni01 ::Kako da proverim da je program obrisan?


Alat smo koristili samo za skeniranje tako da je obrisan onda kada si ga uklonio sa Destkop-a.










Pozdrav,
goran9888 (AMF Tim)

Ko je trenutno na forumu
 

Ukupno su 704 korisnika na forumu :: 21 registrovanih, 3 sakrivenih i 680 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., bankulen, darkangel, Drug pukovnik, Hektor, indja, Kinkou, kovinacc, Krusarac, Logic005, madza, Marko Marković, mercedesamg, Oluj2.1, piton, proka89, sizif, Sr.Stat., stug, vobo, zillbg