molim za pomoc

2

molim za pomoc

offline
  • Pridružio: 31 Jan 2011
  • Poruke: 8

Napisano: 04 Feb 2011 11:00

USBNoRisk 2.7 (28 December 2010) by bobby

Started at 4.2.2011 10:56:13

Searching for connected USB Mass storage...
----------------------------------------
========================================

Searching for other storage...
----------------------------------------
C: {56eeeab9-3d52-11dd-917d-806d6172696f}
========================================


Scanning fixed storage...
----------------------------------------

No blocked files found on C:
No autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for 56eeeab9-3d52-11dd-917d-806d6172696f
No Desktop.ini files found on C:
----------------------------------------

autorun.inf found in Qoobox
----------------------------------------
Content of C:\QooBox\Quarantine\C\autorun.inf.vir
----------------------------------------
;BQ6X3KS1SJ9H719P3A27G850BUA2K7
[autorun]
open=wyCyDP.EXe
;4L86G05YZ91HA7R3S6D5O2FLH8G01PE7FD56QNR99ZJM75QMJ1FGMUM40Q4
;PVTTDLGD9Z5Q1MW6566MBXJ20X3HLX3N0I54B65U1577JV16X52U1IN22V
;V3B8UD0S3Z5A68HFV4698O30AK19S21MHY27JK0EA002R4018A7E72A74IO4U3BE7XR7M4HUZ9CSE
shell\open\command=wycyDp.exe
shell\open\dEfaULt=1
;45F27A231FC4BAE1D818015E0B40BDA78E830EEDB727D2C7BFC81571
;UJ0WC35KUAGD954KD2A
;371482O
----------------------------------------
========================================
Initial scan finished!
========================================


New device connected at 4.2.2011 10:56:53

Scanning for connected USB mass storage...
----------------------------------------

========================================
New drive connected, but USBNoRisk can't find it
========================================



New device connected at 4.2.2011 10:56:53

Scanning for connected USB mass storage...
----------------------------------------
G: {36b21241-6db9-11dd-91a5-cc0296ceacd7}
Added G:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on G:
----------------------------------------
No autorun.inf files found on G:
No mountpoint found for 36b21241-6db9-11dd-91a5-cc0296ceacd7
----------------------------------------

No Desktop.ini files found on G:
----------------------------------------

No mimics found on drive G:
----------------------------------------

.lnk/.pif/.com/.scr files found on drive G:
========================================

========================================

========================================
========================================

========================================


New device connected at 4.2.2011 10:56:56

Scanning for connected removable storage...
----------------------------------------

========================================

Scanning removable storage for files...
----------------------------------------
No blocked files found on G:
----------------------------------------
No autorun.inf files found on G:
No mountpoint found for 36b21241-6db9-11dd-91a5-cc0296ceacd7
----------------------------------------

No Desktop.ini files found on G:
----------------------------------------

No mimics found on drive G:
----------------------------------------

.lnk/.pif/.com/.scr files found on drive G:
========================================



New device connected at 4.2.2011 10:56:58

Scanning for connected USB mass storage...
----------------------------------------

========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on G:
----------------------------------------
No autorun.inf files found on G:
No mountpoint found for 36b21241-6db9-11dd-91a5-cc0296ceacd7
----------------------------------------

No Desktop.ini files found on G:
----------------------------------------

No mimics found on drive G:
----------------------------------------

.lnk/.pif/.com/.scr files found on drive G:
========================================

Processing script
----------------------------------------
36b21241-6db9-11dd-91a5-cc0296ceacd7
Drive letter for GUID: G:
SectionStart = 0
SectionEnd = 18
========================================

========================================
f_delete:
file "G:\aglerx.exe" deleted successfully
f_delete:
file "G:\duecqm.exe" deleted successfully
f_delete:
file "G:\bwapig.exe" deleted successfully
f_delete:
file "G:\zodvus.exe" deleted successfully
f_delete:
file "G:\lhysoc.exe" deleted successfully
f_delete:
file "G:\spavke.exe" deleted successfully
f_delete:
file "G:\npcrld.exe" deleted successfully
f_delete:
file "G:\nnlepd.exe" deleted successfully
f_delete:
file "G:\~WRL2730.tmp" deleted successfully
f_delete:
file "G:\dkdywh.exe" deleted successfully
f_delete:
file "G:\dymfzk.exe" deleted successfully
f_delete:
file "G:\ntykam.exe" deleted successfully
f_delete:
file "G:\diktyd.exe" deleted successfully
f_delete:
file "G:\okycti.exe" deleted successfully
f_delete:
file "G:\feroxf.exe" deleted successfully
----------------------------------------
Delete folder tree G:\RECYCLER:
----------------------------------------

Processing script
----------------------------------------
36b21241-6db9-11dd-91a5-cc0296ceacd7
Drive letter for GUID: G:
SectionStart = 0
SectionEnd = 18
f_delete: G:\aglerx.exe > File does not exist!
f_delete: G:\duecqm.exe > File does not exist!
f_delete: G:\bwapig.exe > File does not exist!
f_delete: G:\zodvus.exe > File does not exist!
f_delete: G:\lhysoc.exe > File does not exist!
f_delete: G:\spavke.exe > File does not exist!
f_delete: G:\npcrld.exe > File does not exist!
f_delete: G:\nnlepd.exe > File does not exist!
f_delete: G:\~WRL2730.tmp > File does not exist!
f_delete: G:\dkdywh.exe > File does not exist!
f_delete: G:\dymfzk.exe > File does not exist!
f_delete: G:\ntykam.exe > File does not exist!
f_delete: G:\diktyd.exe > File does not exist!
f_delete: G:\okycti.exe > File does not exist!
f_delete: G:\feroxf.exe > File does not exist!
----------------------------------------
Delete folder tree G:\RECYCLER:
----------------------------------------
File lock detected:
USBNoRisk cannot find what locked the file
Delete: G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe > Error!
Delete: G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini > Done!
Delete: G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 > Error!
Delete: G:\RECYCLER > Error!
Delete: G:\RECYCLER > Error!
----------------------------------------
Folder list for G:\:
----------------------------------------

d----   0   G:\Sasa   G:\Sasa
-ra--   1336632   G:\LaunchU3.exe   G:\LaunchU3.exe
d----   0   G:\NEOPOLIS   G:\NEOPOLIS
dra--   0   G:\RECYCLER   G:\RECYCLER
d----   0   G:\PODIZV~1   G:\Podizvodjaci
d----   0   G:\Petar   G:\Petar
d----   0   G:\Fun   G:\Fun
d----   0   G:\UGOVOR~1   G:\Ugovori o radu
d----   0   G:\ZAELEK~1   G:\Za elektrane
d----   0   G:\Miljan   G:\Miljan
--a--   25600   G:\GAMAMI~1.DOC   G:\Gama mid dopis.doc
d----   0   G:\DOKUME~1   G:\Dokumenti razni
d--h-   0   G:\System   G:\System
--a--   37376   G:\SLNEKR~1.DOC   G:\SL NEKRETNINE.doc
--a--   21504   G:\TRGOME~1.DOC   G:\TRGOMEN dopis.doc
--a--   43520   G:\UGOVOR~1.DOC   G:\Ugovor za nadzor.doc
d----   0   G:\JOVICA~1   G:\JOVICA - UGOVORI
--a--   33792   G:\OBAVEZ~1.DOC   G:\OBAVEZE NA GRADILIŠTU.doc
d----   0   G:\UGOVOR~1.10   G:\UGOVORI 24.05.10
--a--   37376   G:\SASA-R~1.XLS   G:\sasa-RAC-GRIL.xls
--a--   75264   G:\UGOPOS~1.DOC   G:\Ug o posl teh sar2.doc
d----   0   G:\ZAGRAĐE   G:\Zagrađe
d----   0   G:\Felix   G:\Felix
d----   0   G:\Muzika   G:\Muzika
-r-h-   474   G:\WINAMP~1.XML   G:\winamp_cache_0001.xml
d----   0   G:\DOCUME~1   G:\Documents

----------------------------------------

File lock detected:
USBNoRisk cannot find what locked the file
Delete: G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe > Error!
Delete: G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 > Error!
Delete: G:\RECYCLER > Error!
Delete: G:\RECYCLER > Error!
----------------------------------------
Folder list for G:\:
----------------------------------------

d----   0   G:\Sasa   G:\Sasa
-ra--   1336632   G:\LaunchU3.exe   G:\LaunchU3.exe
d----   0   G:\NEOPOLIS   G:\NEOPOLIS
dra--   0   G:\RECYCLER   G:\RECYCLER
d----   0   G:\PODIZV~1   G:\Podizvodjaci
d----   0   G:\Petar   G:\Petar
d----   0   G:\Fun   G:\Fun
d----   0   G:\UGOVOR~1   G:\Ugovori o radu
d----   0   G:\ZAELEK~1   G:\Za elektrane
d----   0   G:\Miljan   G:\Miljan
--a--   25600   G:\GAMAMI~1.DOC   G:\Gama mid dopis.doc
d----   0   G:\DOKUME~1   G:\Dokumenti razni
d--h-   0   G:\System   G:\System
--a--   37376   G:\SLNEKR~1.DOC   G:\SL NEKRETNINE.doc
--a--   21504   G:\TRGOME~1.DOC   G:\TRGOMEN dopis.doc
--a--   43520   G:\UGOVOR~1.DOC   G:\Ugovor za nadzor.doc
d----   0   G:\JOVICA~1   G:\JOVICA - UGOVORI
--a--   33792   G:\OBAVEZ~1.DOC   G:\OBAVEZE NA GRADILIŠTU.doc
d----   0   G:\UGOVOR~1.10   G:\UGOVORI 24.05.10
--a--   37376   G:\SASA-R~1.XLS   G:\sasa-RAC-GRIL.xls
--a--   75264   G:\UGOPOS~1.DOC   G:\Ug o posl teh sar2.doc
d----   0   G:\ZAGRAĐE   G:\Zagrađe
d----   0   G:\Felix   G:\Felix
d----   0   G:\Muzika   G:\Muzika
-r-h-   474   G:\WINAMP~1.XML   G:\winamp_cache_0001.xml
d----   0   G:\DOCUME~1   G:\Documents

----------------------------------------

========================================
Scan finished!
========================================

========================================
Removed G:
========================================


New device connected at 4.2.2011 10:57:19

Scanning for connected USB mass storage...
----------------------------------------
H: {541ad7b2-acaa-11dd-9207-001d60ece3a3}
Added H:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on H:
----------------------------------------
No autorun.inf files found on H:
No mountpoint found for 541ad7b2-acaa-11dd-9207-001d60ece3a3
----------------------------------------

No Desktop.ini files found on H:
----------------------------------------

No mimics found on drive H:
----------------------------------------

No .lnk/.pif/.com/.scr files found on drive H:
========================================

Processing script
----------------------------------------
========================================
Scan finished!
========================================


Processing script
----------------------------------------
========================================
Removed H:
========================================


New device connected at 4.2.2011 10:57:53

Scanning for connected USB mass storage...
----------------------------------------
E: {164219ae-48cf-11dd-9166-000fe2245485}
Added E:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on E:
----------------------------------------
No autorun.inf files found on E:
No mountpoint found for 164219ae-48cf-11dd-9166-000fe2245485
----------------------------------------

No Desktop.ini files found on E:
----------------------------------------

No mimics found on drive E:
----------------------------------------

No .lnk/.pif/.com/.scr files found on drive E:
========================================

Processing script
----------------------------------------
164219ae-48cf-11dd-9166-000fe2245485
Drive letter for GUID: E:
SectionStart = 19
SectionEnd = 31
f_delete: E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini > File does not exist!
f_delete:
delete file error: E:\Data ????.exe, The filename, directory name, or volume label syntax is incorrect.
f_delete:
file "E:\wjigwx.exe" deleted successfully
f_delete:
file "E:\hmpvqz.exe" deleted successfully
f_delete:
file "E:\rbdaln.exe" deleted successfully
f_delete:
file "E:\wwxrha.exe" deleted successfully
f_delete:
file "E:\hexwur.exe" deleted successfully
f_delete:
file "E:\cbccax.exe" deleted successfully
f_delete:
file "E:\imhrno.exe" deleted successfully
f_delete:
file "E:\zqowdm.exe" deleted successfully
----------------------------------------
Delete folder tree E:\RECYCLER:
----------------------------------------
Delete: E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 > Error!
Delete: E:\RECYCLER > Error!
Delete: E:\RECYCLER > Error!
----------------------------------------
Folder list for E:\:
----------------------------------------

--a--   26486824   E:\AVASTH~1.EXE   E:\Avast Home 4.8.1229.exe
--a--   28   E:\1.txt   E:\1.txt
-ra--   59392   E:\DATAĐŞ~1.EXE   E:\Data лила.exe
dra--   0   E:\RECYCLER   E:\RECYCLER

----------------------------------------

========================================
Scan finished!
========================================


Processing script
----------------------------------------
164219ae-48cf-11dd-9166-000fe2245485
Drive letter for GUID: E:
SectionStart = 19
SectionEnd = 31
f_delete: E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini > File does not exist!
f_delete:
delete file error: E:\Data ????.exe, The filename, directory name, or volume label syntax is incorrect.
f_delete: E:\wjigwx.exe > File does not exist!
f_delete: E:\hmpvqz.exe > File does not exist!
f_delete: E:\rbdaln.exe > File does not exist!
f_delete: E:\wwxrha.exe > File does not exist!
f_delete: E:\hexwur.exe > File does not exist!
f_delete: E:\cbccax.exe > File does not exist!
f_delete: E:\imhrno.exe > File does not exist!
f_delete: E:\zqowdm.exe > File does not exist!
----------------------------------------
Delete folder tree E:\RECYCLER:
----------------------------------------
Delete: E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 > Error!
Delete: E:\RECYCLER > Error!
Delete: E:\RECYCLER > Error!
----------------------------------------
Folder list for E:\:
----------------------------------------

--a--   26486824   E:\AVASTH~1.EXE   E:\Avast Home 4.8.1229.exe
--a--   28   E:\1.txt   E:\1.txt
-ra--   59392   E:\DATAĐŞ~1.EXE   E:\Data лила.exe
dra--   0   E:\RECYCLER   E:\RECYCLER

----------------------------------------

========================================
Removed E:
========================================

Dopuna: 04 Feb 2011 11:02

4.2.2011 11:00:05 > Scanning drive G: (RUZICA ~1 GB, FAT flash drive )...


> G:\RECYCLER
> G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013
> G:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe (MD5: 6fea133dac06f7835c2bd312584af59c)

>>> G:\recycler - Malware.Folder > Deleted. (11.02.04. 11.00 recycler.626599)


=> Malicious folders : 1/1 deleted.

4.2.2011 11:02:50 > Scanning drive E: (MILJAN ~490 MB, FAT flash drive )...


> E:\RECYCLER
> E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013

>>> E:\recycler - Malware.Folder > Deleted. (11.02.04. 11.02 recycler.191703)


=> Malicious folders : 1/1 deleted.

a jedan je cist

Dopuna: 04 Feb 2011 11:15

Malwarebytes' Anti-Malware 1.50.1.1100
malwarebytes.org

Verzija baze: 5673

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

4.2.2011 11:15:25
mbam-log-2011-02-04 (11-15-25).txt

Način skeniranja: Brzo skeniranje
Skeniranih objekata 143175
Proteklo vreme 6 minuta(e), 46 sekundi

Inficirani procesi u memoriji: 0
Inficirani moduli u memoriji: 0
Inficirani ključevi u registru: 10
Inficirane vrednosti u registru: 1
Inficirani podaci u registru: 0
Inficirane fascikle: 0
Inficirane datoteke: 6

Inficirani procesi u memoriji:
(Maliciozne stavke nisu pronađene)

Inficirani moduli u memoriji:
(Maliciozne stavke nisu pronađene)

Inficirani ključevi u registru:
HKEY_CLASSES_ROOT\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{F42228FB-E84E-479E-B922-FBBD096E792C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ThirdPartyInstaller (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ThirdPartyInstaller.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Inficirane vrednosti u registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3PopularScreensavers (Adware.MyWebSearch) -> Value: f3PopularScreensavers -> Quarantined and deleted successfully.

Inficirani podaci u registru:
(Maliciozne stavke nisu pronađene)

Inficirane fascikle:
(Maliciozne stavke nisu pronađene)

Inficirane datoteke:
c:\documents and settings\LANA\my documents\downloads\smileycentralpfsetup2.3.76.6.znman000.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\windows\system32\ub.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\WINDOWS\whiskas.scr (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\bdxpho.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\xltp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\TDSSplgx.dll (Rootkit.TDSS) -> Quarantined and deleted successfully.

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Postavi mi svez/novi DDS log.

offline
  • Pridružio: 31 Jan 2011
  • Poruke: 8

Napisano: 07 Feb 2011 11:46

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 18.6.2008 17:38:31
System Uptime: 7.2.2011 8:35:42 (3 hours ago)

Motherboard: ASUSTeK Computer INC. | | M2N-MX SE Plus
Processor: AMD Sempron(tm) Processor LE-1100 | AM2 | 1908/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 75 GiB total, 40,183 GiB free.
D: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Description: Nokia Phone
Device ID: ROOT\WPD\0000
Manufacturer: Nokia
Name: Nokia Phone
PNP Device ID: ROOT\WPD\0000
Service: WUDFRd

==== System Restore Points ===================

RP457: 24.9.2010 9:10:22 - Removed Nokia Connectivity Cable Driver
RP458: 24.9.2010 9:10:50 - Removed Nokia Flashing Cable Driver
RP459: 24.9.2010 9:11:19 - Removed Nokia Home Media Server
RP460: 24.9.2010 9:12:53 - Removed Nokia Map Loader.
RP461: 24.9.2010 9:16:50 - Removed Nokia Music.
RP462: 24.9.2010 9:19:00 - Removed Nokia Ovi Suite.
RP463: 24.9.2010 9:22:19 - Removed Nokia Photos.
RP464: 24.9.2010 9:23:58 - Removed Nokia Software Updater.
RP465: 24.9.2010 9:30:03 - Removed Samsung PC Studio
RP466: 13.10.2010 18:34:39 - Software Distribution Service 3.0
RP467: 4.11.2010 13:23:37 - Installed Kreditni Biro Klijent
RP468: 10.11.2010 16:03:09 - Software Distribution Service 3.0
RP469: 22.11.2010 12:30:32 - Installed ZWCAD 2010 English
RP470: 22.11.2010 12:31:36 - Installed ZWCAD 2010 English
RP471: 22.11.2010 12:45:52 - Printer Driver ZWCAD Virtual Eps Driver 1.0 Installed
RP472: 6.12.2010 15:34:04 - Removed Kreditni Biro Klijent
RP473: 15.12.2010 16:14:31 - Software Distribution Service 3.0
RP474: 12.1.2011 19:12:56 - Software Distribution Service 3.0
RP475: 21.1.2011 13:43:38 - avast! Free Antivirus Setup
RP476: 21.1.2011 13:45:22 - avast! Free Antivirus Setup
RP477: 21.1.2011 13:45:27 - avast! Free Antivirus Setup
RP478: 21.1.2011 13:49:38 - avast! Free Antivirus Setup
RP479: 31.1.2011 15:07:58 - ComboFix created restore point

==== Installed Programs ======================

ABBYY FineReader 8.0 Professional Edition
ACDSee Pro 2
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 10 ActiveX
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader 9.3.2
Adobe Setup
Adobe Shockwave Player 11.5
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
Advanced Registry Optimizer
Aerie - Spirit of the Forest
AutoCAD 2005 - English
Autodesk DWF Viewer
avast! Free Antivirus
Conduit Engine
Diner Dash Seasonal Snack Pack
Dr Lynch Grave Secrets
Dream Day Wedding Married in Manhattan
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB926239)
Hotfix for Windows XP (KB935448-)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118-)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
hp deskjet 5100
HP LaserJet P1000 series
HP Memories Disc
HP Photo and Imaging 2.0 - Deskjet Series
hp print screen utility
HPCarePackCore
HPCarePackProducts
hppMSRedist
hppusgP1000
HPSSupply
IncrediMail
K-Lite Mega Codec Pack 1.53
Magentic
MagicMap 1.0
Malwarebytes' Anti-Malware
MarketResearch
MCShield
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.7
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mobile Partner
MrvlUsgTracking
MSVC80_x86_v2
MSVC90_x86
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688-)
MSXML 6 Service Pack 2 (KB973686)
Nero 7 Lite v7.5.1.1
Nokia Ovi Content Copier
Nokia Ovi Content Copier 6.85.3011
Norton Security Scan
NVIDIA Drivers
PC Connectivity Solution
PDF Settings
Pegasus Imaging Corp. "The JPEG Wizard2"
Personal E-bank
Readiris Pro 9
Realtek High Definition Audio Driver
Samsung PC Studio
Scientific-Atlanta WebSTAR 2000 series Cable Modem
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows Media Player 6.4 (KB925398-)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358-)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896428-)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388-)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB918118-)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178-)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168-)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB937894)
Security Update for Windows XP (KB938127)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB941693)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944338-)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB945553)
Security Update for Windows XP (KB946026)
Security Update for Windows XP (KB946648-)
Security Update for Windows XP (KB948590)
Security Update for Windows XP (KB950749)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698-)
Security Update for Windows XP (KB951748-)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838-)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958470)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238-)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971032)
Security Update for Windows XP (KB971468-)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972260)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318-)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338-)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218-)
Security Update for Windows XP (KB980232)
SIM Card Editor V1.1
Skype Toolbars
Skype™ 4.2
SmarThru 4
SmarThru PC Fax
SmartTrust Personal 3.4.6
Treasure Match Bundle - 2 in 1
Ultra AutoCAD Tool
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB975364)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB925720)
Update for Windows XP (KB927891)
Update for Windows XP (KB930916)
Update for Windows XP (KB938828-)
Update for Windows XP (KB942763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
WebFldrs XP
Winamp
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
WinRAR arhiver
XML Paper Specification Shared Components Pack 1.0
ZWCAD 2010 English

==== Event Viewer Messages From Past Week ========

7.2.2011 9:58:09, error: SCardSvr [610] - Smart Card Reader 'CASTLES EZ100PU 1' rejected IOCTL GET_STATE: The device has been removed.
4.2.2011 11:18:45, error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
31.1.2011 9:07:59, error: Service Control Manager [7000] - The hpdj service failed to start due to the following error: The executable program that this service is configured to run in does not implement the service.
31.1.2011 15:24:46, error: Service Control Manager [7034] - The Smart Card service terminated unexpectedly. It has done this 1 time(s).
31.1.2011 14:27:55, error: atapi [9] - The device, \Device\Ide\IdePort2, did not respond within the timeout period.
31.1.2011 12:00:02, error: SCardSvr [610] - Smart Card Reader 'CASTLES EZ100PU 0' rejected IOCTL GET_STATE: The device has been removed.
2.2.2011 8:21:57, error: Print [19] - Sharing printer failed + 1722, Printer Samsung SCX-4x21 Series share name SamsungS.
1.2.2011 9:09:18, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: nod32drv
1.2.2011 9:09:15, error: Service Control Manager [7000] - The SSPORT service failed to start due to the following error: The system cannot find the file specified.
1.2.2011 9:09:15, error: Service Control Manager [7000] - The hpdj service failed to start due to the following error: The system cannot find the file specified.

==== End Of File ===========================

Dopuna: 07 Feb 2011 11:48

DDS (Ver_10-12-12.02) - NTFSx86
Run by LANA at 11:42:49,25 on pon 07.02.2011
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.2.1250.381.1033.18.895.307 [GMT 1:00]

AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\Smartscaps.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Program Files\MCShield\MCShieldTray.exe
C:\Program Files\SmartTrust\SmartTrust Personal\Csp\SmartCertmover.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\LANA\My Documents\Downloads\dds (1).com

============== Pseudo HJT Report ===============

uStart Page = mail.google.com/mail/?ui=2&shva=1#inbox
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13153&gct=&gc=1&q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5805.1910\swg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [IncrediMail] c:\program files\incredimail\bin\IncMail.exe /c
uRun: [Magentic] c:\progra~1\magentic\bin\Magentic.exe /c
uRun: [AROReminder] c:\program files\advanced registry optimizer\aro.exe -rem
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MCShield] c:\program files\mcshield\MCShieldRTM.exe
uRun: [MCShieldTray] c:\program files\mcshield\MCShieldTray.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SkyTel] SkyTel.EXE
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [hpbdfawep] c:\program files\hp\dfawep\bin\hpbdfawep.exe 1
mRun: [HP Software Update] "c:\program files\hewlett-packard\hp software update\HPWuSchd.exe"
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe
mRun: [DeviceDiscovery] c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui
dRun: [ctfmon.exe] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\autoca~1.lnk - c:\program files\common files\autodesk shared\acstart16.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\certif~1.lnk - c:\program files\smarttrust\smarttrust personal\csp\SmartCertmover.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {62789780-B744-11D0-986B-00609731A21D} - hxxp://mapa.urbel.com/beoinfo/ActiveX/mgaxctrl.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-1-21 294608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-1-21 17744]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2011-1-21 40384]
R3 EZUSB;EZUSB PC/SC Smart Card Reader;c:\windows\system32\drivers\ezusb.sys [2008-6-20 57356]
S1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys --> c:\windows\system32\drivers\nod32drv.sys [?]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2009-10-9 133104]
S2 SSPORT;SSPORT;\??\c:\windows\system32\drivers\ssport.sys --> c:\windows\system32\drivers\SSPORT.sys [?]

=============== File Associations ===============

.scr=AutoCADScriptFile

=============== Created Last 30 ================

2011-02-07 10:42:15 -------- d--h--w- c:\windows\PIF
2011-02-04 10:07:08 -------- d-----w- c:\docume~1\lana\applic~1\Malwarebytes
2011-02-04 10:06:52 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-02-04 10:06:51 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-02-04 10:06:48 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-02-04 10:06:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-02-04 09:59:14 -------- d-----w- c:\docume~1\lana\applic~1\MCShield
2011-02-04 09:59:13 -------- d-----w- c:\program files\MCShield
2011-02-03 09:29:57 -------- d-----w- C:\USBNoRisk
2011-01-31 14:09:19 -------- d-sha-r- C:\cmdcons
2011-01-31 14:07:37 98816 ----a-w- c:\windows\sed.exe
2011-01-31 14:07:37 89088 ----a-w- c:\windows\MBR.exe
2011-01-31 14:07:37 256512 ----a-w- c:\windows\PEV.exe
2011-01-31 14:07:37 161792 ----a-w- c:\windows\SWREG.exe
2011-01-21 12:49:43 38848 ----a-w- c:\windows\avastSS.scr

==================== Find3M ====================

2011-01-18 11:03:01 249856 ------w- c:\windows\Setup1.exe
2011-01-18 11:02:58 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-11-22 11:33:02 4096 ----a-w- c:\windows\system32\Ry4CoInst.dll

============= FINISH: 11:44:35,54 ===============

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Tvoj racunar je cist sto se malware-a tice.




Arrow

Potrebno je deinstalirati ComboFix:
klikni start (ili ), a zatim RUN.

Na Visti koristiti Start Search polje ukoliko Run nije dostupan.

U liniju za unos teksta ukucaj (iskopiraj) sledeće:

ComboFix /Uninstall

Primeti da postoji razmak između "ComboFix" i "/Uninstall".



a zatim klikni OK (ili pritisni Enter).


Sačekaj da se proces deinstalacije završi.




-----------------------------------------------------------------------------------




- Imas ostatke od prethodnog AntiVirusa (NOD32) u svom racunaru, pa je pozeljno da ih uklonis. Potrebno je da detaljno ispratis Uputstvo, ukoliko to zelis, sa ovog link-a: http://kb.eset.com/esetkb/index?page=content&id=SOLN2289 ;


- Pozeljno je da deinstaliras nepotrebne programe (one koje ne koristis), toolbar-ove i update-ujes programe koje koristis. Takodje, sredjivanjem startup-a i optimizacijom Windows-a, mozes drasticno poboljsati rad svog operativnog sistema. Ukoliko imas pitanja, vezano za tu temu, otvori novu temu u potforumu Windows: http://www.mycity.rs/Windows/ ;


- Preuzmi program ATF Cleaner i sačuvaj ga na Desktop.

Štikliraj Select All i nakon toga klikni na Empty Selected.
Kada se pojavi poruka Done Cleaning, zatvori program;


- Pozeljno je da resetujes System Restore (iskljucis pa ponovo ukljucis) prateci ovo Uputstvo: http://www.mycity.rs/Uputstva/Kako-iskljuciti-uklj.....Vista.html ;


- Imas samo jednu particiju na hdd-u koji koristis, sto je velika mana. Najvise zbog podataka koji bi bili bezbedniji da su na nesistemskoj particiji;


- Preporucujem ti da instaliras Service Pack 3 za Windows XP tj. update-ujes svoj Operativni Sistem. Necu govoriti o njegovim prednostima u odnosu na Service Pack 2. Te informacije mozes naci na MS-ovom sajtu. Uglavnom, MS je 13.jula 2010 prekinuo podrsku za Service Pack 2 koji je instaliran na tvom racunaru.

Sta to znaci? Pogledaj link: http://windows.microsoft.com/en-US/windows/help/what-does-end-of-support-mean;

**** Ukoliko se odlucis na ovaj korak (instaliranje SP3), preporucujem ti da prethodno uradis backup svih bitnih podataka.




-----------------------------------------------------------------------------------

offline
  • Pridružio: 31 Jan 2011
  • Poruke: 8

Hvala...sve je u redu sa kompom....nepotrebne toolbar-ove sam deinstalirao...programe koje koristim sam update-ovao...samo nikako da sprecim da mi mis tj kursor sam od sebe se krece...to mi stvara veliki problem pa mi preporuci sta jos trebam da uradim.
Unapred hvala.

offline
  • Pridružio: 02 Feb 2008
  • Poruke: 14018
  • Gde živiš: Nish

Ono sto ja mogu da ti predlozim je da probas drugi mis nakon cega bi znali da li je problem u misu ili operativnom sistemu.












goran9888 (AMF Tim)

Ko je trenutno na forumu
 

Ukupno su 991 korisnika na forumu :: 38 registrovanih, 9 sakrivenih i 944 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., aleksmajstor, Apok, bojank, Boris90, Brana01, bufanje, darkangel, Dimitrise93, FOX, Georgius, Kvazar, ladro, laurusri, ljuba, M1los, menges, mercedesamg, mihajlo.hrin, milenko crazy north, nemkea71, pacika, procesor, proka89, sasa87, Sirius, SlaKoj, srbijaiznadsvega, Srki94, Steeeefan, tmanda323, Valter071, voja64, YU-UKI, zdrebac, zillbg, Čivi, 79693