MyCity » Ambulanta -> Arhiva Ambulante » problem sa podizanje programa

problem sa podizanje programa

Napisano na dan: 24.2.2008

problem sa podizanje programa

Sledeća strana

Pagination

Odgovori

MAKEDONAC Poslao: 24 Feb 2008 13:33 Idi na vrh
offline MAKEDONAC Ugledni građanin Pridružio: 22 Avg 2006 Poruke: 425 Gde živiš: Kranj	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kompjuter mi se je sam restartirao i sada nece da pokrene nod32,cclener niti tune up probao sam da postavim HijackThis.exe nece da se pokrene probao sam da uđem u safe mode pa me ne spusti nece da se podigne ,ovako normalno radi dali je koji virus u pitanju ? Unapred hvala za odgovore . Dopuna: 24 Feb 2008 13:33 Dali neko ima ideju kako da resim slucaj.ili je preinstalacija jedini lek .

Profil

bobby Poslao: 24 Feb 2008 13:41 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Jesi li promenio ime HijackThis.exe u nesto drugo?

Profil

MAKEDONAC Poslao: 24 Feb 2008 13:48 Idi na vrh
offline MAKEDONAC Ugledni građanin Pridružio: 22 Avg 2006 Poruke: 425 Gde živiš: Kranj	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sada sam ga skinuo sa neta i probao da ga pokrenem i nece ,nisam nista menjao . Dopuna: 24 Feb 2008 13:45 bobby skeniram kom sa kaspersky onlain i nasao je nekoliko virusa ali nije do kraja zavrsio . Dopuna: 24 Feb 2008 13:48 Fora je u temu da nemogu da ucem u safe mode a niti da pokrenem anti virusan program, niti da pokrenem kom unazad par dana .

Profil

bobby Poslao: 24 Feb 2008 13:57 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Poenta je bas u tome da promenis ime programa. Procitaj, molim te, ono uputstvo izdvojeno u Ambulanti sa Vazno. Jos bolje, uradi sledece: Skini ComboFix sa jedne od sledecih adresa na Desktop: http://www.techsupportforum.com/sectools/sUBs/ComboFix.exe http://download.bleepingcomputer.com/sUBs/ComboFix.exe Promeni ime programa iz ComboFix.exe u recimo F1.exe. Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

MAKEDONAC Poslao: 24 Feb 2008 14:36 Idi na vrh
offline MAKEDONAC Ugledni građanin Pridružio: 22 Avg 2006 Poruke: 425 Gde živiš: Kranj	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 08-02-24.4 - vinko 2008-02-24 14:15:20.1 - NTFSx86 Running from: C:\Documents and Settings\vinko\Desktop\f1.exe WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . Unable to gain System Privileges ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\system32\drivers\down C:\WINDOWS\system32\drivers\down\100750.exe C:\WINDOWS\system32\drivers\down\101609.exe C:\WINDOWS\system32\drivers\down\102031.exe C:\WINDOWS\system32\drivers\down\103171.exe C:\WINDOWS\system32\drivers\down\105718.exe C:\WINDOWS\system32\drivers\down\106125.exe C:\WINDOWS\system32\drivers\down\106593.exe C:\WINDOWS\system32\drivers\down\109296.exe C:\WINDOWS\system32\drivers\down\110890.exe C:\WINDOWS\system32\drivers\down\111078.exe C:\WINDOWS\system32\drivers\down\111375.exe C:\WINDOWS\system32\drivers\down\111812.exe C:\WINDOWS\system32\drivers\down\111984.exe C:\WINDOWS\system32\drivers\down\112125.exe C:\WINDOWS\system32\drivers\down\113171.exe C:\WINDOWS\system32\drivers\down\115062.exe C:\WINDOWS\system32\drivers\down\115656.exe C:\WINDOWS\system32\drivers\down\115953.exe C:\WINDOWS\system32\drivers\down\118062.exe C:\WINDOWS\system32\drivers\down\118437.exe C:\WINDOWS\system32\drivers\down\119140.exe C:\WINDOWS\system32\drivers\down\121765.exe C:\WINDOWS\system32\drivers\down\121953.exe C:\WINDOWS\system32\drivers\down\129359.exe C:\WINDOWS\system32\drivers\down\131953.exe C:\WINDOWS\system32\drivers\down\132296.exe C:\WINDOWS\system32\drivers\down\132375.exe C:\WINDOWS\system32\drivers\down\133468.exe C:\WINDOWS\system32\drivers\down\134515.exe C:\WINDOWS\system32\drivers\down\136125.exe C:\WINDOWS\system32\drivers\down\136234.exe C:\WINDOWS\system32\drivers\down\138296.exe C:\WINDOWS\system32\drivers\down\138671.exe C:\WINDOWS\system32\drivers\down\139546.exe C:\WINDOWS\system32\drivers\down\141312.exe C:\WINDOWS\system32\drivers\down\143390.exe C:\WINDOWS\system32\drivers\down\145437.exe C:\WINDOWS\system32\drivers\down\146046.exe C:\WINDOWS\system32\drivers\down\146140.exe C:\WINDOWS\system32\drivers\down\148937.exe C:\WINDOWS\system32\drivers\down\151796.exe C:\WINDOWS\system32\drivers\down\152875.exe C:\WINDOWS\system32\drivers\down\154093.exe C:\WINDOWS\system32\drivers\down\162000.exe C:\WINDOWS\system32\drivers\down\163437.exe C:\WINDOWS\system32\drivers\down\165296.exe C:\WINDOWS\system32\drivers\down\170921.exe C:\WINDOWS\system32\drivers\down\172000.exe C:\WINDOWS\system32\drivers\down\173484.exe C:\WINDOWS\system32\drivers\down\178937.exe C:\WINDOWS\system32\drivers\down\180046.exe C:\WINDOWS\system32\drivers\down\180890.exe C:\WINDOWS\system32\drivers\down\181125.exe C:\WINDOWS\system32\drivers\down\184015.exe C:\WINDOWS\system32\drivers\down\188609.exe C:\WINDOWS\system32\drivers\down\196234.exe C:\WINDOWS\system32\drivers\down\219421.exe C:\WINDOWS\system32\drivers\down\236890.exe C:\WINDOWS\system32\drivers\down\243312.exe C:\WINDOWS\system32\drivers\down\258062.exe C:\WINDOWS\system32\drivers\down\283609.exe C:\WINDOWS\system32\drivers\down\331453.exe C:\WINDOWS\system32\drivers\down\363859.exe C:\WINDOWS\system32\drivers\down\374734.exe C:\WINDOWS\system32\drivers\down\37953.exe C:\WINDOWS\system32\drivers\down\38062.exe C:\WINDOWS\system32\drivers\down\38218.exe C:\WINDOWS\system32\drivers\down\38531.exe C:\WINDOWS\system32\drivers\down\38765.exe C:\WINDOWS\system32\drivers\down\38781.exe C:\WINDOWS\system32\drivers\down\388484.exe C:\WINDOWS\system32\drivers\down\39171.exe C:\WINDOWS\system32\drivers\down\39640.exe C:\WINDOWS\system32\drivers\down\40906.exe C:\WINDOWS\system32\drivers\down\41796.exe C:\WINDOWS\system32\drivers\down\439187.exe C:\WINDOWS\system32\drivers\down\44031.exe C:\WINDOWS\system32\drivers\down\45859.exe C:\WINDOWS\system32\drivers\down\47093.exe C:\WINDOWS\system32\drivers\down\47656.exe C:\WINDOWS\system32\drivers\down\48187.exe C:\WINDOWS\system32\drivers\down\48609.exe C:\WINDOWS\system32\drivers\down\49578.exe C:\WINDOWS\system32\drivers\down\49593.exe C:\WINDOWS\system32\drivers\down\49796.exe C:\WINDOWS\system32\drivers\down\51015.exe C:\WINDOWS\system32\drivers\down\51359.exe C:\WINDOWS\system32\drivers\down\53250.exe C:\WINDOWS\system32\drivers\down\53812.exe C:\WINDOWS\system32\drivers\down\54921.exe C:\WINDOWS\system32\drivers\down\65265.exe C:\WINDOWS\system32\drivers\down\66328.exe C:\WINDOWS\system32\drivers\down\68890.exe C:\WINDOWS\system32\drivers\down\69515.exe C:\WINDOWS\system32\drivers\down\69562.exe C:\WINDOWS\system32\drivers\down\71187.exe C:\WINDOWS\system32\drivers\down\72187.exe C:\WINDOWS\system32\drivers\down\72796.exe C:\WINDOWS\system32\drivers\down\73843.exe C:\WINDOWS\system32\drivers\down\77468.exe C:\WINDOWS\system32\drivers\down\77515.exe C:\WINDOWS\system32\drivers\down\83421.exe C:\WINDOWS\system32\drivers\down\84265.exe C:\WINDOWS\system32\drivers\down\84875.exe C:\WINDOWS\system32\drivers\down\86015.exe C:\WINDOWS\system32\drivers\down\88640.exe C:\WINDOWS\system32\drivers\down\90578.exe C:\WINDOWS\system32\drivers\down\92968.exe C:\WINDOWS\system32\drivers\down\93140.exe C:\WINDOWS\system32\drivers\down\94531.exe C:\WINDOWS\system32\drivers\down\94703.exe C:\WINDOWS\system32\drivers\down\95828.exe C:\WINDOWS\system32\drivers\down\96250.exe C:\WINDOWS\system32\drivers\down\96515.exe C:\WINDOWS\system32\drivers\down\96890.exe C:\WINDOWS\system32\drivers\down\98406.exe C:\WINDOWS\system32\drivers\down\98796.exe C:\WINDOWS\system32\drivers\down\99453.exe C:\WINDOWS\system32\drivers\hldrrr.exe C:\WINDOWS\system32\drivers\srosa.sys C:\WINDOWS\system32\install.exe C:\WINDOWS\system32\mdelk.exe C:\WINDOWS\system32\wintems.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\LEGACY_SROSA -------\srosa ((((((((((((((((((((((((( Files Created from 2008-01-24 to 2008-02-24 ))))))))))))))))))))))))))))))) . 2008-02-24 14:02 . 2008-02-24 14:02 90,980 --a------ C:\WINDOWS\system32\drivers\klin.dat 2008-02-24 14:02 . 2008-02-24 14:02 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat 2008-02-24 13:57 . 2008-02-24 13:57 <DIR> d-------- C:\Program Files\Kaspersky Lab 2008-02-24 13:54 . 2008-02-24 13:54 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files 2008-02-24 13:18 . 2008-02-24 13:18 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-02-24 13:18 . <DIR> C:\WINDOWS\LastGood.Tmp 2008-02-24 13:18 . 2008-02-24 13:57 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-02-24 13:17 . 2008-02-24 13:17 <DIR> d---s---- C:\Documents and Settings\vinko\UserData 2008-02-24 13:14 . 2008-02-24 13:14 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft 2008-02-24 13:14 . 2008-02-24 13:15 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg7 2008-02-24 12:57 . 2008-02-24 12:57 <DIR> d-------- C:\Program Files\CCleaner 2008-02-24 12:18 . 2008-02-24 12:18 306,432 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe 2008-02-24 12:12 . 2008-02-24 12:12 140,288 --a------ C:\WINDOWS\~GLC0000.TMP 2008-01-30 17:56 . 2008-01-30 17:56 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-02-24 13:16 24,344 ----a-w C:\WINDOWS\system32\drivers\klim5.sys 2008-02-24 12:28 --------- d-----w C:\Documents and Settings\vinko\Application Data\uTorrent 2008-02-24 12:14 --------- d-----w C:\Program Files\ESET 2008-02-24 11:54 --------- d-----w C:\Documents and Settings\vinko\Application Data\OpenOffice.org2 2008-02-24 11:12 140,288 ----a-w C:\WINDOWS\~GLC0000.TMP 2008-02-24 11:12 --------- d-----w C:\Program Files\TuneUp Utilities 2008 2008-02-24 11:06 --------- d-----w C:\Program Files\eMule 2008-02-22 17:57 --------- d-----w C:\Documents and Settings\vinko\Application Data\BSplayer Pro 2008-01-29 17:52 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-01-20 11:31 --------- d-----w C:\Program Files\IncrediGames 2008-01-20 11:31 --------- d-----w C:\Program Files\Common Files\Oberon Media 2007-12-26 16:50 --------- d-----w C:\Program Files\Octoshape Streaming Services 2007-12-26 16:03 --------- d-----w C:\Program Files\DVD Shrink 2007-12-26 16:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink 2007-12-26 13:37 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2007-12-26 13:13 --------- d-----w C:\Documents and Settings\vinko\Application Data\TuneUp Software 2007-12-26 13:13 --------- d-----w C:\Documents and Settings\All Users\Application Data\TuneUp Software 2007-12-26 13:11 --------- d-----w C:\Program Files\Windows Media Connect 2 2007-12-26 13:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage 2007-12-26 13:04 --------- d-----w C:\Program Files\Real 2007-12-26 13:04 --------- d-----w C:\Program Files\Common Files\xing shared 2007-12-26 13:04 --------- d-----w C:\Program Files\Common Files\Real 2007-12-26 13:03 --------- d-----w C:\Program Files\RichFX 2007-12-26 12:47 --------- d-----w C:\Program Files\uTorrent 2007-12-26 12:19 --------- d--h--w C:\Program Files\InstallShield Installation Information 2007-12-26 12:15 --------- d-----w C:\Program Files\IRXpress 2007-12-26 12:00 --------- d-----w C:\Program Files\Common Files\PCCamera 2007-12-26 11:59 --------- d-----w C:\Program Files\VideoCAM GF112 2007-12-26 11:29 --------- d-----w C:\Program Files\BitComet . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SweetIM"="C:\Program Files\Macrogaming\SweetIM\SweetIM.exe" [2007-10-14 18:09 103712] "IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-10-09 12:02 208946] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2005-02-16 08:04 753645] "SkinClock"="C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe" [2005-02-16 08:04 753645] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 05:56 15360] "msnmsgr"="~C:\Program Files\MSN Messenger\msnmsgr.exe" [ ] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" [2003-07-30 09:08 143360] "AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-24 14:17 218376] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 05:56 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableLUA"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] SecurityProviders schannel.dll, digest.dll [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Octoshape Streaming Services"="C:\Program Files\Octoshape Streaming Services\vinko\OctoshapeClient.exe" -inv:bootrun "msnmsgr"=~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" "TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot "SweetIM"=C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "C:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\uTorrent\\uTorrent.exe"= "C:\\Program Files\\Octoshape Streaming Services\\vinko\\OctoshapeClient.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "12637:TCP"= 12637:TCP:BitComet 12637 TCP "12637:UDP"= 12637:UDP:BitComet 12637 UDP Newly Created Service - AVP Newly Created Service - KL1 . ************************************************************************ catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-24 14:21:21 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ********************************************************************** . ------------------------ Other Running Processes ------------------------ . C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\PAStiSvc.exe C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\MSN Messenger\usnsvc.exe . ************************************************************************ . Completion time: 2008-02-24 14:22:47 - machine was rebooted ComboFix-quarantined-files.txt 2008-02-24 13:22:44 nadam se da sam uradio kako treba Dopuna: 24 Feb 2008 14:36 Logfile of HijackThis v1.99.1 Scan saved at 14:31:53, on 24.2.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Unable to get Internet Explorer version! Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Analog Devices\SoundMAX\SMTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Documents and Settings\vinko\Desktop\tra.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.najdi.si/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://spywarewarrior.com/files/HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [SkinClock] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing) O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O13 - DefaultPrefix: O13 - WWW Prefix: O13 - Home Prefix: O13 - Mosaic Prefix: O13 - FTP Prefix: O13 - Gopher Prefix: O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\ O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing) O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

Profil

bobby Poslao: 24 Feb 2008 15:10 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uradi sledeće: Preuzmi fajl gmer.zip sa ovog linka i sačuvaj na Desktop-u. Raspakuj ga u neki folder. Dupli klik na gmer.exe za početak: Izaberi Rootkit Tab na vrhu. Klikni na Scan. Kada je skeniranje završeno, klik na Copy dugme ispod - ovo će sačuvati to u Clipboard. Iskoristi opciju Paste u Notepad-u da bi to prebacio u tekst. Snimi taj tekst iz Notepada kao file1.txt. Ponovi ovo isto sa Autostart Tab-om. Snimi taj tekst iz Notepada kao file2.txt. Iskopiraj nam ovde sadrzaj ta dva fajla koja smo malopre snimili Ukoliko ne proradi iz prve, onda isto promeni ime GMER.EXE u nesto drugo.

Profil

MAKEDONAC Poslao: 24 Feb 2008 15:34 Idi na vrh
offline MAKEDONAC Ugledni građanin Pridružio: 22 Avg 2006 Poruke: 425 Gde živiš: Kranj	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! bobby nemogu da pokrenem ovaj program Dopuna: 24 Feb 2008 15:33 jednostavno ga nemogu podignuti napise mi nesto error 87 Dopuna: 24 Feb 2008 15:34 100% imam problem sa nekimjakim virusom niti jedan program nemogu podignuti ni u safe mode mi je pre uspelo uci posle toga kada sam skenirao sa onaj program .

Profil

bobby Poslao: 24 Feb 2008 15:38 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Za popravku SafeMode-a: http://www.techsupportforum.com/sectools/sUBs/SafeBootKeyRepair.exe Za popravku dozvola (privlegija) preuzeti FixPolicies.exe i sacuvati ga na Desktopu. Dvoklik na FixPolicies.exe. U prozoru koji ce se otvoriti, na donjoj paleti poslova kliknuti na Install button. Program ce kreirati novi folder sa imenom FixPolicies. Uci u novi folder, i onda dvoklik na sledeci fajl koji se nalazi u njemu: Fix_Policies.cmd Crni prozor ce se na trenutak otvoriti i onda zatvoriti. Restartovati kompjuter kako bi izmene bile prihvacene. Kada to odradis, pokreni ponovo ComboFix i postavi log. Pokreni i GMER i postavi logove kao sto sam ti gore napisao.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » problem sa podizanje programa

Ko je trenutno na forumu

Ukupno su 1124 korisnika na forumu :: 43 registrovanih, 6 sakrivenih i 1075 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., aleksmajstor, amaterSRB, babaroga, bokisha253, Boris Bosiljčić, Buzdovan, Denaya, djboj, DPera, dulleo, FOX, goxin, Hamannche, hologram, Karla, kjkszpj, laurusri, Lieutenant, mercedesamg, Mi lao shu, milenko crazy north, mrav pesadinac, Oscar, procesor, rasok, Ripanjac, RJ, rodoljub, royst33, ruma, sasa87, Sirius, Sićko, slonic_tonic, Srle993, ss10, theNedjeljko, Valter071, vaso1, Vlad000, YU-UKI, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by