molim provjeru

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

U zadnje vrijeme računar mi "zakuje" bez nekog pravila ili najave.

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 11:06:30, on 8.5.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PC Tools Firewall Plus\FWService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
C:\Program Files\TP-LINK\TWCU\TWCU.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
C:\Program Files\WinRoll\winroll.exe
C:\Program Files\Azureus\Azureus.exe
C:\Program Files\DU Meter\DUMeter.exe
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\Program Files\DU Meter\DUMeterSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\tracert.exe
C:\WINDOWS\system32\wuauclt.exe
D:\programi\sorry.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = defaulthomepage.info/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = defaulthomepage.info
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [00PCTFW] "C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" -s
O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe"
O4 - HKCU\..\Run: [WinRoll] C:\Program Files\WinRoll\winroll.exe
O4 - HKCU\..\Run: [Azureus] C:\Program Files\Azureus\Azureus.exe
O4 - HKCU\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP Premium\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP Premium\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Pošalji u OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Po&šalji u OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C:\Program Files\DU Meter\DUMeterSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - Unknown owner - C:\Program Files\PC Tools Firewall Plus\FWService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

--
End of file - 7148 bytes




ComboFix 08-05-01.3 - Petar 2008-05-08 11:14:44.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.381.1033.18.420 [GMT 2:00]
Running from: C:\Documents and Settings\Petar\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\Packet.dll
C:\WINDOWS\system32\pthreadVC.dll
C:\WINDOWS\system32\vtUonnkI.dll
C:\WINDOWS\system32\WanPacket.dll
C:\WINDOWS\system32\wpcap.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF


((((((((((((((((((((((((( Files Created from 2008-04-08 to 2008-05-08 )))))))))))))))))))))))))))))))
.

2008-05-07 22:15 . 2008-05-07 22:18 <DIR> d-------- C:\Program Files\DietSuccess
2008-05-07 12:03 . 2008-05-07 12:24 <DIR> d-------- C:\Program Files\EWB512
2008-05-07 12:03 . 2008-05-07 12:03 216,064 --a------ C:\WINDOWS\iun3405.exe
2008-05-07 08:34 . 2008-05-07 08:51 <DIR> d-------- C:\Scenes
2008-05-07 08:33 . 2008-05-07 08:37 <DIR> d-------- C:\KD
2008-05-07 08:33 . 2004-11-18 11:49 24,786 --a------ C:\WINDOWS\system32\drivers\eusk2par.sys
2008-05-04 22:54 . 2008-05-04 22:54 <DIR> d-------- C:\Program Files\DU Meter
2008-05-04 22:54 . 2008-05-04 22:54 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Hagel Technologies
2008-05-04 22:29 . 2008-05-04 22:29 268 --ah----- C:\sqmdata09.sqm
2008-05-04 22:29 . 2008-05-04 22:29 244 --ah----- C:\sqmnoopt09.sqm
2008-05-04 13:32 . 2008-05-04 13:32 <DIR> d-------- C:\Program Files\TP-LINK
2008-05-04 13:31 . 2008-05-04 13:31 <DIR> d-------- C:\temp
2008-05-04 12:05 . 2008-05-04 12:05 268 --ah----- C:\sqmdata08.sqm
2008-05-04 12:05 . 2008-05-04 12:05 244 --ah----- C:\sqmnoopt08.sqm
2008-05-04 11:15 . 2008-05-04 22:44 <DIR> d-------- C:\Program Files\uTorrent
2008-05-03 23:13 . 2008-05-03 23:14 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-05-03 22:12 . 2008-05-03 22:12 268 --ah----- C:\sqmdata07.sqm
2008-05-03 22:12 . 2008-05-03 22:12 244 --ah----- C:\sqmnoopt07.sqm
2008-05-03 22:04 . 2008-05-03 22:04 <DIR> d-------- C:\Program Files\Poster Forge
2008-05-03 21:30 . 2008-05-03 21:30 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\vlc
2008-05-03 21:25 . 2008-05-03 21:25 <DIR> d-------- C:\Program Files\VideoLAN
2008-05-03 17:40 . 2008-05-03 17:40 36 --a------ C:\WINDOWS\system32\ccv.dat
2008-05-03 17:39 . 2008-05-03 17:40 <DIR> d-------- C:\Program Files\Currency Converter
2008-05-03 16:58 . 2008-05-03 16:58 268 --ah----- C:\sqmdata06.sqm
2008-05-03 16:58 . 2008-05-03 16:58 244 --ah----- C:\sqmnoopt06.sqm
2008-05-03 16:37 . 2008-05-03 16:37 126,976 --a------ C:\WINDOWS\system32\UAService7.exe
2008-05-03 16:32 . 2008-05-03 16:32 <DIR> d-------- C:\Program Files\GameShadow
2008-05-03 16:31 . 2008-05-03 16:31 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-05-03 16:29 . 2008-05-03 16:57 <DIR> d-------- C:\Program Files\Championship Manager 5
2008-05-03 10:49 . 2007-02-06 17:06 544,640 -ra------ C:\WINDOWS\system32\drivers\ar5211.sys
2008-05-03 10:48 . 2008-05-03 10:48 268 --ah----- C:\sqmdata05.sqm
2008-05-03 10:48 . 2008-05-03 10:48 244 --ah----- C:\sqmnoopt05.sqm
2008-05-03 10:45 . 2008-05-03 10:45 268 --ah----- C:\sqmdata04.sqm
2008-05-03 10:45 . 2008-05-03 10:45 244 --ah----- C:\sqmnoopt04.sqm
2008-05-02 23:53 . 2008-05-02 23:53 268 --ah----- C:\sqmdata03.sqm
2008-05-02 23:53 . 2008-05-02 23:53 244 --ah----- C:\sqmnoopt03.sqm
2008-05-02 11:38 . 2008-05-02 11:38 268 --ah----- C:\sqmdata02.sqm
2008-05-02 11:38 . 2008-05-02 11:38 244 --ah----- C:\sqmnoopt02.sqm
2008-05-01 23:58 . 2008-05-01 23:58 268 --ah----- C:\sqmdata01.sqm
2008-05-01 23:58 . 2008-05-01 23:58 244 --ah----- C:\sqmnoopt01.sqm
2008-05-01 18:46 . 2008-05-01 18:46 268 --ah----- C:\sqmdata00.sqm
2008-05-01 18:46 . 2008-05-01 18:46 244 --ah----- C:\sqmnoopt00.sqm
2008-05-01 00:21 . 2008-05-01 00:21 <DIR> d-------- C:\Program Files\WinRoll
2008-05-01 00:20 . 2008-05-04 23:56 <DIR> d-------- C:\Program Files\Quiz .NET 2007
2008-05-01 00:17 . 2008-05-01 00:17 <DIR> d-------- C:\INFO
2008-05-01 00:16 . 2008-05-01 00:16 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\atitray
2008-05-01 00:15 . 2008-05-01 00:15 <DIR> d-------- C:\Program Files\Ray Adams
2008-04-30 09:41 . 2008-04-30 09:46 <DIR> d-------- C:\Documents and Settings\Petar\Contacts
2008-04-30 09:40 . 2008-04-30 09:40 <DIR> d-------- C:\Program Files\MSN Messenger
2008-04-29 20:07 . 2008-04-29 20:07 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\Uniblue
2008-04-26 22:28 . 2008-04-26 22:33 <DIR> d-------- C:\SharpE
2008-04-26 21:55 . 2008-04-26 21:55 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\PCToolsFirewallPlus
2008-04-26 21:53 . 2008-04-26 21:53 <DIR> d-------- C:\Program Files\Common Files\PC Tools
2008-04-26 21:53 . 2008-03-12 09:30 159,896 --a------ C:\WINDOWS\system32\drivers\pctfw2.sys
2008-04-26 21:53 . 2008-02-25 16:38 93,440 --a------ C:\WINDOWS\system32\drivers\pctfw.sys
2008-04-26 21:53 . 2008-02-21 08:56 40,856 --a------ C:\WINDOWS\system32\drivers\pctmp.sys
2008-04-26 21:53 . 2008-02-21 08:56 18,328 --a------ C:\WINDOWS\system32\drivers\pctssipc.sys
2008-04-26 21:52 . 2008-05-02 15:46 <DIR> d-------- C:\Program Files\PC Tools Firewall Plus
2008-04-25 18:25 . 2008-04-25 18:25 <DIR> d-------- C:\WINDOWS\system32\ACE
2008-04-20 12:51 . 2008-04-20 12:51 <DIR> d-------- C:\WINDOWS\ASUSInstAll
2008-04-20 12:51 . 2008-04-20 12:53 13,327 --a------ C:\WINDOWS\Ascd_tmp.ini
2008-04-20 12:50 . 2004-04-26 17:26 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2008-04-18 19:53 . 2008-04-18 19:53 335 --a------ C:\WINDOWS\nsreg.dat
2008-04-18 19:52 . 2008-04-18 19:52 <DIR> d-------- C:\Program Files\mozilla.org
2008-04-18 19:52 . 2008-04-18 19:52 118,784 --a------ C:\WINDOWS\SeaMonkeyUninstall.exe
2008-04-18 19:52 . 2008-04-18 19:52 118,784 --a------ C:\WINDOWS\GREUninstall.exe
2008-04-18 19:52 . 2008-04-18 19:52 8,618 --a------ C:\WINDOWS\mozver.dat
2008-04-16 21:26 . 2008-04-16 21:26 <DIR> d-------- C:\WINDOWS\system32\avsplugin
2008-04-16 21:26 . 2008-04-16 21:26 <DIR> d-------- C:\Program Files\Smallvideosoft
2008-04-16 21:26 . 2007-04-19 15:15 7,277,568 --a------ C:\WINDOWS\system32\3gpcore.dll
2008-04-16 21:26 . 2004-05-26 20:37 719,872 --a------ C:\WINDOWS\system32\devil.dll
2008-04-16 21:26 . 2006-10-17 22:29 487,479 --a------ C:\WINDOWS\system32\SkinMagic.dll
2008-04-16 21:26 . 2006-12-31 10:16 313,344 --a------ C:\WINDOWS\system32\avisynth.dll
2008-04-16 15:33 . 2008-04-16 15:33 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\ATI
2008-04-16 15:28 . 2008-04-16 15:29 <DIR> d-------- C:\Program Files\ATI Technologies
2008-04-16 15:28 . 2006-05-03 11:57 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2008-04-16 15:27 . 2008-04-16 15:27 <DIR> d-------- C:\ATI
2008-04-14 21:28 . 2008-04-14 21:28 <DIR> d-------- C:\Documents and Settings\Petar\Application Data\Ulead Systems
2008-04-14 21:28 . 2008-04-28 11:39 558 --ah----- C:\WINDOWS\system32\ws073247.ocx
2008-04-14 21:28 . 2008-04-28 11:39 558 --ah----- C:\os357577.bin
2008-04-14 21:23 . 2008-04-14 21:23 <DIR> d-------- C:\WINDOWS\Vbox
2008-04-14 21:23 . 2008-04-14 21:23 <DIR> d-------- C:\WINDOWS\Noslip
2008-04-14 21:23 . 2008-05-04 22:46 <DIR> d-------- C:\Program Files\Ulead Systems
2008-04-14 21:23 . 2008-05-04 22:45 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Ulead Systems
2008-04-14 21:18 . 2008-04-14 21:18 <DIR> d-------- C:\Program Files\YouTube Downloader 3000
2008-04-13 16:47 . 2004-08-03 23:08 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys
2008-04-12 14:57 . 2008-04-26 22:37 <DIR> d-------- C:\Program Files\Softick
2008-04-12 12:55 . 2008-04-16 22:27 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2008-04-12 12:26 . 2008-04-12 12:26 <DIR> dr-h----- C:\Documents and Settings\Petar\Application Data\SecuROM
2008-04-12 12:26 . 2008-04-12 12:26 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2008-04-12 12:25 . 2008-04-12 12:25 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-04-12 12:14 . 2008-04-12 12:14 <DIR> d-------- C:\Program Files\Electronic Arts
2008-04-12 00:22 . 2008-04-12 00:22 2,320,384 --a------ C:\WINDOWS\system32\TUKernel.exe
2008-04-12 00:13 . 2008-04-28 13:10 <DIR> d--h----- C:\WINDOWS\Icons
2008-04-10 12:01 . 2008-04-10 12:01 <DIR> d-------- C:\Program Files\ImTOO
2008-04-08 23:20 . 2008-05-04 22:51 <DIR> d-------- C:\Program Files\Drawing Hand
2008-04-08 23:20 . 1998-02-06 22:37 299,520 --a------ C:\WINDOWS\uninst.exe
2008-04-08 23:20 . 2008-05-04 22:50 404 --a------ C:\WINDOWS\DrawingHand.ini
2008-04-08 23:20 . 2008-04-08 23:20 0 --a------ C:\WINDOWS\PROTOCOL.INI
2008-04-08 23:09 . 2008-04-08 23:09 <DIR> d-------- C:\Documents and Settings\Petar\WINDOWS
2008-04-08 23:05 . 2008-04-19 11:44 104 --a------ C:\WINDOWS\ArtStudio.INI
2008-04-08 23:04 . 2008-05-04 23:05 <DIR> d-------- C:\Program Files\ArtStudio - Standard Edition
2008-04-08 23:03 . 2008-04-08 23:03 2,209,976 --------- C:\WINDOWS\artstudiostdsetuptrial.exe
2008-04-08 23:03 . 2008-04-08 23:03 61,952 --------- C:\WINDOWS\cals.exe
2008-04-08 17:11 . 2008-04-08 17:11 <DIR> d-------- C:\Program Files\Pixarra
2008-04-08 11:09 . 2008-04-22 21:26 783,644 --a------ C:\Documents and Settings\Petar\Application Data\NMM-MetaData.db

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-08 09:21 --------- d-----w C:\Documents and Settings\Petar\Application Data\Azureus
2008-05-08 09:19 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-05-08 09:04 --------- d-----w C:\Program Files\Mozilla Firefox 3 Beta 5
2008-05-07 06:30 --------- d-----w C:\Program Files\AIMP2
2008-05-06 10:17 --------- d-----w C:\Program Files\Azureus
2008-05-04 20:52 --------- d-----w C:\Program Files\DAP Premium
2008-05-04 20:45 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-04 19:04 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-05-04 11:32 21,275 ----a-w C:\WINDOWS\system32\drivers\AegisP.sys
2008-05-04 09:10 --------- d-----w C:\Documents and Settings\Petar\Application Data\skypePM
2008-05-04 09:10 --------- d-----w C:\Documents and Settings\Petar\Application Data\Skype
2008-05-03 15:27 --------- d-----w C:\Program Files\DVB-S PowerInstall
2008-04-28 10:32 --------- d-----w C:\Program Files\Winamp
2008-04-28 10:26 --------- d-----w C:\Program Files\Nokia
2008-04-28 10:26 --------- d-----w C:\Program Files\Common Files\Nokia
2008-04-28 10:25 --------- d-----w C:\Program Files\NSS
2008-04-26 19:41 --------- d-----w C:\Program Files\Picasa2
2008-04-24 10:29 --------- d-----w C:\Program Files\Spyware Doctor
2008-04-24 10:07 --------- d-----w C:\Program Files\MPEG2_Decoders
2008-04-24 10:07 --------- d-----w C:\Program Files\MagicISO
2008-04-22 08:43 --------- d-----w C:\Program Files\Windows Desktop Search
2008-04-20 10:58 --------- d-----w C:\Program Files\Analog Devices
2008-04-18 17:52 --------- d-----w C:\Documents and Settings\Petar\Application Data\PC Suite
2008-04-16 13:28 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-04-16 13:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-04-15 19:55 --------- d-----w C:\Program Files\Google
2008-04-13 14:05 --------- d-----w C:\Documents and Settings\Petar\Application Data\BSplayer Pro
2008-04-11 22:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-04-08 09:12 --------- d-----w C:\Documents and Settings\Petar\Application Data\Nokia
2008-04-07 21:00 --------- d-----w C:\Documents and Settings\Petar\Application Data\Nokia Multimedia Player
2008-04-07 20:59 0 ---ha-w C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-04-07 20:59 0 ---ha-w C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2008-04-07 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\PC Suite
2008-04-07 20:57 --------- d-----w C:\Program Files\PC Connectivity Solution
2008-04-07 20:57 --------- d-----w C:\Program Files\DIFX
2008-04-07 20:57 --------- d-----w C:\Program Files\Common Files\PCSuite
2008-04-07 20:29 --------- d-----w C:\Program Files\MSXML 6.0
2008-04-07 20:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\Nokia
2008-04-07 20:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Installations
2008-04-06 16:04 --------- d-----w C:\Program Files\Common Files\Autodesk Shared
2008-04-06 16:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Autodesk
2008-04-06 15:45 --------- d-----w C:\Program Files\ProgDVB
2008-04-06 13:46 --------- d-----w C:\Program Files\Autodesk
2008-04-06 13:31 --------- d-----w C:\Program Files\Webteh
2008-04-05 23:18 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2008-04-05 23:18 --------- d-----w C:\Program Files\Skype
2008-04-05 23:18 --------- d-----w C:\Program Files\Common Files\Skype
2008-04-05 23:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype
2008-04-05 22:46 --------- d-----w C:\Documents and Settings\Petar\Application Data\PC Tools
2008-04-05 22:45 --------- d-----w C:\Program Files\Java
2008-04-05 22:01 --------- d-----w C:\Program Files\ffdshow
2008-04-05 19:43 --------- d-----w C:\Program Files\MSBuild
2008-04-05 19:43 --------- d-----w C:\Program Files\Microsoft Works
2008-04-05 17:35 737,280 ----a-w C:\WINDOWS\iun6002.exe
2008-04-05 17:35 --------- d-----w C:\Program Files\FireTune
2008-04-05 17:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Azureus
2008-04-05 17:13 --------- d-----w C:\Program Files\Common Files\Java
2008-04-05 17:07 155,995 ----a-w C:\WINDOWS\java\Packages\IJDVHVR7.ZIP
2008-04-05 16:03 --------- d-----w C:\Program Files\FLVPlayer
2008-04-05 16:01 --------- d-----w C:\Program Files\TuneUp Utilities 2007
2008-04-05 16:01 --------- d-----w C:\Documents and Settings\Petar\Application Data\TuneUp Software
2008-04-05 15:59 --------- d-----w C:\Program Files\Foxit Software
2008-04-05 15:55 --------- d-----w C:\Program Files\Common Files\Ahead
2008-04-05 15:55 --------- d-----w C:\Program Files\Ahead
2008-04-05 15:38 4,608 ----a-w C:\WINDOWS\system32\w95inf32.dll
2008-04-05 15:38 2,272 ----a-w C:\WINDOWS\system32\w95inf16.dll
2008-04-05 14:43 --------- d-----w C:\Program Files\DVBViewerTE
2008-04-05 14:08 --------- d-----w C:\Program Files\Your Uninstaller 2006
2008-04-05 14:07 --------- d-----w C:\Documents and Settings\Petar\Application Data\URSoft
2008-04-05 13:54 --------- d-----w C:\Program Files\TechniSat DVB
2008-04-05 13:16 2,560 ----a-w C:\WINDOWS\_MSRSTRT.EXE
2008-04-05 12:46 --------- d-----w C:\Program Files\Alwil Software
2008-04-05 12:43 --------- d-----w C:\Program Files\Passware
2008-04-05 12:01 --------- d-----w C:\Program Files\Driver-Soft
2008-04-05 11:33 --------- d-----w C:\Program Files\Stardock
2008-04-05 11:22 --------- d-----w C:\Program Files\microsoft frontpage
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:56 15360]
"AtiTrayTools"="C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe" [2007-05-22 11:04 521128]
"WinRoll"="C:\Program Files\WinRoll\winroll.exe" [2004-04-06 18:00 15360]
"Azureus"="C:\Program Files\Azureus\Azureus.exe" [2008-04-05 19:32 254976]
"DU Meter"="C:\Program Files\DU Meter\DUMeter.exe" [2007-10-15 15:19 2582288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 11:11 925696]
"00PCTFW"="C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" [2008-03-28 14:37 2598808]
"TWCU"="C:\Program Files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 16:12 364544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:56 15360]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2008-02-26 03:23 443968]
"PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-11-09 17:15 1634304]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Currency Converter"="C:\Program Files\Currency Converter\Currency-Converter.exe" hmw
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
"PCSuiteTrayApplication"=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe"=
"C:\\Program Files\\Azureus\\Azureus.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\Autodesk\\3ds Max 9\\3dsmax.exe"=
"C:\\Program Files\\Autodesk\\Backburner\\monitor.exe"=
"C:\\Program Files\\Autodesk\\Backburner\\manager.exe"=
"C:\\Program Files\\Autodesk\\Backburner\\server.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31]
R1 atitray;atitray;C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys [2007-05-22 11:04]
R1 pctfw2;pctfw2;C:\WINDOWS\system32\drivers\pctfw2.sys [2008-03-12 09:30]
R1 pctmp;PC Tools Firewall Memory Protection Driver;C:\WINDOWS\system32\drivers\pctmp.sys [2008-02-21 08:56]
R1 pctssipc;PC Tools Security Suite IPC Driver;C:\WINDOWS\system32\drivers\pctssipc.sys [2008-02-21 08:56]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35]
R2 DUMeterSvc;DU Meter Service;C:\Program Files\DU Meter\DUMeterSvc.exe [2007-10-15 15:19]
R2 UxTuneUp;TuneUp Design Expansion;C:\WINDOWS\System32\svchost.exe [2004-08-04 00:56]
R3 SKYNET;TechniSat DVB-PC TV Star PCI;C:\WINDOWS\system32\DRIVERS\SkyNET.SYS [2005-09-29 12:28]
S1 Cinemsup;Cinemsup;C:\WINDOWS\system32\drivers\cinemsup.sys []
S1 eusk2par;EUTRON SmartKey Parallel Driver;C:\WINDOWS\system32\Drivers\eusk2par.sys [2004-11-18 11:49]
S3 upperdev;upperdev;C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2007-11-29 10:39]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service;"C:\Program Files\MSN Messenger\usnsvc.exe" [2007-01-19 12:54]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4d25e348-1491-11dd-aa8d-0017319b95e3}]
\Shell\AutoRun\command - F:\.\Start.exe

.
Contents of the 'Scheduled Tasks' folder
"2008-05-02 15:16:25 C:\WINDOWS\Tasks\1-Click Maintenance.job"
- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
.
**************************************************************************

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2008-05-08 11:19:59
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DUMeterSvc]
"ImagePath"="C:\Program Files\DU Meter\DUMeterSvc.exe /startedbyscm:E1F6D4BE-40E33354-DUMeterService"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\explorer.exe
-> C:\Program Files\Ray Adams\ATI Tray Tools\raphook.dll
-> C:\Program Files\WinRoll\winroll.dll
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\ati2evxx.exe
C:\Program Files\PC Tools Firewall Plus\FWService.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\tracert.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
C:\WINDOWS\system32\ping.exe
.
**************************************************************************
.
Completion time: 2008-05-08 11:25:09 - machine was rebooted
ComboFix-quarantined-files.txt 2008-05-08 09:25:03

Pre-Run: 55,697,080,320 bytes free
Post-Run: 55,660,834,816 bytes free

324

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Poz...


Uploaduj sledeći file: C:\WINDOWS\cals.exe

preko ovog linka: http://www.mycity.rs/ambulanta-upload.php



-------------------------------------------------------------------------------------




Preuzmi fajl gmer.zip sa ovog linka i sačuvaj na Desktop-u.
Raspakuj ga u neki folder.

Dupli klik na gmer.exe za početak: Izaberi Rootkit/Malware Tab na vrhu.
Klikni na Scan.
Kada je skeniranje završeno, klik na Copy dugme ispod - ovo će sačuvati to u Clipboard.
Iskoristi opciju Paste u Notepad-u da bi to prebacio u tekst. Snimi taj tekst iz Notepada kao file1.txt.
Ponovi ovo isto sa Autostart Tab-om. Snimi taj tekst iz Notepada kao file2.txt.


Priloži te snimljene file-ove uz poruku (opcija Prikači fajl).

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

cals.exe je uploadovan
file1 i file2 prikačeni
mycity.rs/must-login.png

mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ako nije problem da skineš nekih 15 MB, onda odradi sledeće...



Preuzmi Norman Malware Cleaner na Desktop.

Uraditi sledeće:
Restartovati kompjuter u Safe Mode (uputstvo)
Dvoklikom pokrenuti Norman_Malware_Cleaner.exe
Kliknuti Accept da bi prešli na sledeći ekran
Pokrenuti skeniranje klikom na Start Scan i sačekati da se završi
Ukoliko se pojavi upit o restartovanju kompjutera:

Kliknuti Yes
Nakon restarta, skeniranje/čišćenje će biti nastavljeno
Kada proces bude završen, zatvoriti program klikom na Quit
Uz iduću poruku priložiti logfile NFix_datum_vreme.log koji se nalazi na Desktopu

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

evo ga



Norman Malware Cleaner
Copyright © 1990 - 2008, Norman ASA. Built 2008/05/06 19:09:25

Norman Scanner Engine Version: 5.92.04
Nvcbin.def Version: 5.92.00, Date: 2008/05/06 19:09:25, Variants: 1618141

Running pre-scan cleanup routine:
Operating System: Microsoft Windows XP Professional 5.1.2600(Safe mode) Service Pack 2
Logged on user: LOGIC-813C1381D\Petar

Set registry value: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLS = "C0 3F 7F 02 00 00 00 00 00 00 00 00 00 00 00 00 50 04 00 00 " -> ""
Removed registry value: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -> DisableRegistryTools = 0x00000000

Scan started: 08/05/2008 21:59:24


Scanning running processes and process memory...

Number of processes/threads found: 511
Number of processes/threads scanned: 511
Number of processes/threads not scanned: 0
Number of infected processes/threads terminated: 0
Total scanning time: 24s


Scanning file system...

Scanning: C:\*.*

C:\Documents and Settings\Petar\My Documents\Azureus Downloads\MagicISO Maker 5.4.256.rar/CMT (Error whilst scanning file: I/O Error)

C:\Documents and Settings\Petar\My Documents\Azureus Downloads\Pixarra TwistedBrush Pro Studio 15.0 + (zabranjeno) [App][www.zonatorrent.com].rar/CMT (Error whilst scanning file: I/O Error)

C:\Documents and Settings\Petar\My Documents\java\Collapse.rar/CMT (Error whilst scanning file: I/O Error)

C:\WINDOWS\cals.exe (Infected with W32/Smalltroj.CYPA)
Deleted file

C:\WINDOWS\Temp\_avast4_\unp170484227.tmp/unknown0 (Error whilst scanning file: I/O Error)

C:\WINDOWS\Temp\_avast4_\unp65024908.tmp/unknown0 (Error whilst scanning file: I/O Error)

C:\WINDOWS\Temp\_avast4_\unp78203195.tmp/unknown0 (Error whilst scanning file: I/O Error)

C:\WINDOWS\Temp\_avast4_\unp97046337.tmp/unknown0 (Error whilst scanning file: I/O Error)

Scanning: D:\*.*

D:\MakeInst.v9.5.1.0.Multilingual.Incl.Keymaker-CORE\keygen.exe (Infected with W32/Delf.BTTA)
Deleted file

D:\novi programi\GIF..Demon..xx..Animator.rar/GIF...Demonxx...Animator\(zabranjeno)\e_ugifani505.exe (Infected with W32/GrayBird.LVX)
Deleted file

D:\novi programi\BS Player Pro 2.0\Keygen.exe (Infected with W32/Delf.AXEZ)
Deleted file

D:\novi programi\Hacking Tools\Hack\MD5Cryptor.rar/CMT (Error whilst scanning file: I/O Error)

D:\novi programi\Hacking Tools\Hack\SUB7_Trojan.rar/SUB7_Trojan\sub7legends.zip/ICQMAPI.dll (Infected with W32/SubSeven.ADQ)
Deleted file

D:\novi programi\idman505\(zabranjeno).rar/IDMan.exe (Infected with W32/PCClient.FIF)
Deleted file

D:\novi programi\programi za instalaciju\Anyplace control\Anyplace 1 + (zabranjeno)\(zabranjeno)\apc_Admin.exe (Infected with W32/GrayBird.KDW)
Deleted file

D:\novi programi\programi za instalaciju\Anyplace control\Anyplace 2 + (zabranjeno)\(zabranjeno)\apc_Admin.exe (Infected with W32/GrayBird.KDW)
Deleted file

D:\novi programi\StarForce Tutorial\sfdrvrem.zip/sfdrvrem.exe (Infected with W32/Agent.DBPS)
Deleted file

D:\novi programi\StarForce Tutorial\sfdrvrem.zip (Empty archive after cleaning)
Deleted file

D:\novi programi\TheArtOfReversing.free.pdf.on.serbian\Casovi\Cas10\cr-cdl41.pepack10.exe (Infected with W32/Smalltroj.CPQQ)
Deleted file

D:\novi programi\TheArtOfReversing.free.pdf.on.serbian\Casovi\Cas10\Genesis.ReCrypt80.exe (Infected with W32/Smalltroj.CWCO)
Deleted file

D:\novi programi\TheArtOfReversing.free.pdf.on.serbian\Casovi\Cas12\NAG-Crypto.rar/CMT (Error whilst scanning file: I/O Error)

D:\novi programi\TM\typing.master.pro.v7.0.0.736-ismail.exe (Infected with W32/Smalltroj.dam)
Deleted file

D:\novi programi\Trainers\Quake4PLUS5Trainer.rar/RR (Error whilst scanning file: I/O Error)

D:\programi\Alcohol\Alcohol 120% v1.9.5.3105 + (zabranjeno)\betamasterpatch.rar/betamasterpatch\Alcohol 120% 1.9.5.3105 Retail Patch - BetaMaster\patch_3105.exe (Infected with W32/Malware.CGOV)
Deleted file

D:\programi\Alcohol\Alcohol 120% v1.9.5.3105 + (zabranjeno)\betamasterpatch.rar (Empty archive after cleaning)
Deleted file

D:\programi\Alcohol\Alcohol 120% v1.9.5.3105 + (zabranjeno)\betamasterpatch\Alcohol 120% 1.9.5.3105 Retail Patch - BetaMaster\patch_3105.exe (Infected with W32/Malware.CGOV)
Deleted file

D:\programi\Nero 8 Ultra Edition\Installation\Data\32E35AAD.cab/unknown43 (Error whilst scanning file: I/O Error)

D:\programi\Nero 8 Ultra Edition\Installation\Data\32E35AAD.cab/unknown44 (Error whilst scanning file: I/O Error)

D:\programi\Nero 8 Ultra Edition\Installation\Data\B28518DF.cab/unknown40 (Error whilst scanning file: I/O Error)

D:\programi\Nero 8 Ultra Edition\Installation\Data\B28518DF.cab/unknown41 (Error whilst scanning file: I/O Error)

D:\programi\Nero 8 Ultra Edition\Installation\Data\E4060BF5.cab/unknown0/unknown0 (Error whilst scanning file: I/O Error)
D:\programi\Nero 8 Ultra Edition\Installation\Data\E4060BF5.cab/unknown0 (Possible archive bomb)

D:\programi\NOKIA The best of\Games\Funmobile[1][1][1].Sim.Town.v1.0.0.Java..zip/Funmobile[1].Sim.Town.v1.0.0.Java.Retail.SymbianOS7-ANiMeX.rar/CMT (Error whilst scanning file: I/O Error)

D:\programi\NOKIA The best of\Software\Ultra Mp3 1_45 S60.zip/Ultra Mp3 1_45 S60/UltraMP3.V1.45.S60.sis (Error whilst scanning file: I/O Error)

D:\programi\NOKIA The best of\Themes\charismabyed0446.sis (Error whilst scanning file: I/O Error)

D:\programi\WinACE, WinRAR, & WinZip 8 (Fully Working Plus (zabranjeno)s)\Card Captor Sakura - Volume 02 [MangaReactor].rar/CMT (Error whilst scanning file: I/O Error)

D:\programi\WinACE, WinRAR, & WinZip 8 (Fully Working Plus (zabranjeno)s)\Card Captor Sakura - Volume 02 [MangaReactor].rar/RR (Error whilst scanning file: I/O Error)

D:\System Volume Information\_RESTO~3\RP60\A0029361.exe (Infected with W32/Smalltroj.CPQQ)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004044.exe (Infected with W32/Delf.BTTA)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004045.exe (Infected with W32/Delf.AXEZ)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004046.exe (Infected with W32/GrayBird.KDW)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004047.exe (Infected with W32/GrayBird.KDW)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004048.exe (Infected with W32/Smalltroj.CPQQ)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004049.exe (Infected with W32/Smalltroj.CWCO)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004050.exe (Infected with W32/Smalltroj.dam)
Deleted file

D:\System Volume Information\_RESTO~4\RP2\A0004051.exe (Infected with W32/Malware.CGOV)
Deleted file

Scanning: c:\System Volume Information\*.*

c:\System Volume Information\_RESTO~1\RP2\A0004043.exe (Infected with W32/Smalltroj.CYPA)
Deleted file

Scanning: d:\System Volume Information\*.*


Running post-scan cleanup routine:

Number of files found: 262301
Number of archives unpacked: 6658
Number of files scanned: 262260
Number of files not scanned: 41
Number of files skipped due to exclude list: 0
Number of infected files found: 27
Number of infected files repaired/deleted: 26
Number of infections removed: 26
Total scanning time: 2h 22m 17s

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Dve stvari...


1. Kompjuter ti je sada verovatno čist. U svakom slučaju, bio ili ne bio čist, ova priča se ovde završava.


2. Ako pogledaš log koji si postavio, biće ti jasno kako si doveo kompjuter u stanje u kome je bio.


Cra*k-ovi, Hacking Tools, TheArtOfReversing...



/LOCK