Odjednom problem :: Pc Klinika ~ Doktori za vas kompjuter

Toolbar

Pravilnik foruma

Burek marketing

Najčešća pitanja

Posetite Burek Prodavnicu

Zatvori

BUREK marketing

Burek :: Forumi :: > Tehnicki deo foruma > Pc Klinika ~ Doktori za vas kompjuter

Tema: Odjednom problem (Moderatori: enaB, chelavi1)

Trenutno vreme je: 27. Apr 2024, 10:13:26

Korisnici koji su trenutno na forumu 0 članova i 1 gost pregledaju ovu temu.

Napomena: Za sva pitanja u vezi kupovine novog hardware-a ili procene vrednosti i preporuke koristite - ovu temu!

Spyware,sta je,kako radi,kako se zastititi? :: Kako rade mreze :: Burek Anti-virus software review :: Index tema koje ne treba propustiti

Stranice:

Sve

Tema: Odjednom problem (Pročitano 3561 puta)

simic022

Poruka #10

24. Okt 2009, 14:09:16

Svakodnevni prolaznik

Opusten kao bakin klitoris!

Zodijak
Pol
Poruke	400

	Windows XP
	Opera 9.64

ComboFix 09-10-23.01 - Laza 10/24/2009 13:54.1.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2046.1300 [GMT 2:00]
Running from: c:\documents and settings\Laza\Desktop\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\center.exe

.
((((((((((((((((((((((((( Files Created from 2009-09-24 to 2009-10-24 )))))))))))))))))))))))))))))))
.

2009-10-24 11:35 . 2009-10-24 11:35   --------   d-----w-   C:\_OTM
2009-10-24 10:28 . 2009-10-24 10:28   --------   d-----w-   C:\rsit
2009-10-24 10:28 . 2009-10-24 10:28   --------   d-----w-   c:\program files\trend micro
2009-10-24 10:07 . 2000-08-20 22:00   1693968   ----a-w-   c:\windows\system32\VBA6.DLL
2009-10-23 08:35 . 2009-10-23 08:35   --------   d-----w-   c:\documents and settings\All Users\Application Data\2C2FD
2009-10-16 21:31 . 2009-10-16 21:39   980   ----a-w-   c:\windows\eReg.dat
2009-10-16 19:00 . 2009-06-29 11:59   142592   ----a-w-   c:\windows\system32\drivers\Rtenicxp.sys
2009-10-16 19:00 . 2009-06-10 02:34   73728   ----a-w-   c:\windows\system32\RtNicProp32.dll
2009-10-16 18:10 . 2009-10-18 06:11   --------   d-----w-   c:\program files\Warblade
2009-10-16 18:10 . 2009-10-16 18:10   --------   d-----w-   c:\program files\ReflexiveArcade
2009-10-16 16:36 . 2009-10-16 16:36   --------   d-----w-   C:\Team17
2009-10-16 15:02 . 2009-10-16 15:02   --------   d-----w-   c:\documents and settings\Laza\Application Data\Ubisoft
2009-10-16 15:01 . 2009-10-16 15:01   --------   d-----w-   c:\documents and settings\All Users\Application Data\Ubisoft
2009-10-16 14:54 . 2009-10-16 14:54   --------   d-----w-   c:\documents and settings\Laza\Application Data\InstallShield
2009-10-15 20:57 . 2009-10-15 20:57   581632   --sha-r-   c:\windows\plugin.dat
2009-10-14 10:02 . 2005-12-09 13:02   3051520   ------w-   c:\windows\UNNeroVision.exe
2009-10-14 10:02 . 2001-03-08 16:30   24064   ------w-   c:\windows\system32\msxml3a.dll
2009-10-14 10:01 . 2009-10-14 10:01   --------   d-----w-   c:\documents and settings\All Users\Application Data\Ahead
2009-10-14 10:01 . 2001-06-26 05:15   38912   ------w-   c:\windows\system32\picn20.dll
2009-10-14 10:01 . 2000-06-26 08:45   106496   ------w-   c:\windows\system32\TwnLib20.dll
2009-10-14 10:01 . 2009-10-14 10:02   --------   d-----w-   c:\program files\Ahead
2009-10-12 09:37 . 2009-10-12 17:00   --------   d-----w-   c:\program files\FriendBlasterPro
2009-10-12 09:37 . 2000-07-14 22:00   101888   ----a-w-   c:\windows\system32\VB6STKIT.DLL
2009-10-12 08:52 . 2009-10-12 08:56   --------   d-----w-   c:\documents and settings\Laza\FriendAdder.com
2009-10-10 15:15 . 2009-10-10 15:15   --------   d-----w-   c:\documents and settings\Laza\Application Data\dvdcss
2009-10-02 08:22 . 2009-10-02 08:22   --------   d-----w-   c:\program files\Microsoft
2009-10-02 08:13 . 2009-10-02 08:13   --------   d-----w-   c:\program files\Circle Developemnt
2009-09-30 20:41 . 2009-09-30 21:01   --------   d-----w-   c:\program files\Image-Line
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Publish Providers
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\NetMedia Providers
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Sony
2009-09-30 20:34 . 2009-10-01 08:43   --------   d-----w-   c:\program files\Vstplugins
2009-09-30 20:33 . 2009-09-30 20:33   --------   d-----w-   c:\program files\Sony
2009-09-28 20:31 . 2009-10-20 16:53   --------   d-----w-   c:\documents and settings\Laza\Local Settings\Application Data\WMTools Downloaded Files
2009-09-28 18:54 . 2009-09-28 18:54   --------   d-----w-   c:\program files\Windows Media Connect 2
2009-09-28 18:46 . 2009-09-28 18:46   --------   d-----w-   c:\program files\Steinberg
2009-09-28 18:46 . 2009-09-28 18:46   --------   d-----w-   c:\program files\Common Files\Digidesign
2009-09-28 18:46 . 2009-10-01 08:37   --------   d-----w-   c:\program files\Antares Audio Technologies
2009-09-28 18:46 . 2003-06-20 11:28   1777664   ----a-w-   c:\windows\system32\gdiplus.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-24 11:42 . 2009-02-18 13:10   --------   d-----w-   c:\program files\AIMP2
2009-10-24 09:42 . 2009-10-18 01:15   34816   ----a-w-   c:\documents and settings\Laza\Application Data\xcat.dll
2009-10-24 09:40 . 2009-03-18 03:48   --------   d-----w-   c:\program files\Counter-Strike
2009-10-23 16:16 . 2009-02-14 10:39   --------   d-----w-   c:\program files\Windows Live Safety Center
2009-10-21 20:38 . 2009-07-27 11:28   --------   d-----w-   c:\documents and settings\Laza\Application Data\VSO
2009-10-19 14:31 . 2009-02-04 18:14   --------   d-----w-   c:\documents and settings\Laza\Application Data\uTorrent
2009-10-18 16:40 . 2009-07-08 01:05   138184   ----a-w-   c:\windows\system32\drivers\PnkBstrK.sys
2009-10-18 16:39 . 2009-07-08 01:05   183112   ----a-w-   c:\windows\system32\PnkBstrB.exe
2009-10-18 14:05 . 2009-09-14 09:07   --------   d-----w-   c:\program files\Professional §©®ÎÞt v.3 Black
2009-10-17 22:30 . 2009-02-04 14:46   --------   d-----w-   c:\program files\Professional §©®ÎÞt v.4 Black
2009-10-17 15:02 . 2009-04-02 19:39   --------   d-----w-   c:\program files\Teamspeak2_RC2
2009-10-17 14:57 . 2009-04-02 19:39   --------   d-----w-   c:\documents and settings\Laza\Application Data\teamspeak2
2009-10-17 11:39 . 2009-02-04 14:56   25016   ----a-w-   c:\documents and settings\Laza\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-16 21:40 . 2004-07-17 08:36   12400   ----a-w-   c:\windows\system32\drivers\secdrv.sys
2009-10-16 21:39 . 2009-02-04 14:57   --------   d--h--w-   c:\program files\InstallShield Installation Information
2009-10-16 21:36 . 2009-03-01 16:23   --------   d-----w-   c:\program files\EA GAMES
2009-10-16 19:00 . 2009-02-04 14:58   --------   d-----w-   c:\program files\Realtek
2009-10-16 16:36 . 2009-02-04 14:38   --------   d-----w-   c:\program files\Common Files\InstallShield
2009-10-16 13:06 . 2009-05-13 17:36   --------   d-----w-   c:\program files\Secret Maryo Chronicles
2009-10-14 22:58 . 2009-02-05 10:55   --------   d-----w-   c:\documents and settings\Laza\Application Data\Ahead
2009-10-02 09:01 . 2009-02-04 18:14   --------   d-----w-   c:\program files\uTorrent
2009-10-02 08:23 . 2009-02-14 01:47   --------   d-----w-   c:\program files\Windows Live
2009-10-02 08:13 . 2009-06-19 00:59   --------   d-----w-   c:\program files\Messenger Plus! Live
2009-09-25 05:56 . 2004-08-03 21:56   662016   ----a-w-   c:\windows\system32\wininet.dll
2009-09-25 05:56 . 2004-08-03 21:56   81920   ----a-w-   c:\windows\system32\ieencode.dll
2009-09-24 19:41 . 2009-03-24 14:17   --------   d-----w-   c:\documents and settings\Laza\Application Data\Skype
2009-09-24 18:52 . 2009-03-29 17:31   --------   d-----w-   c:\documents and settings\Laza\Application Data\skypePM
2009-09-24 13:47 . 2009-02-06 10:50   --------   d-----w-   c:\program files\Common Files\Adobe
2009-09-23 19:36 . 2009-09-23 19:36   --------   d-----w-   c:\documents and settings\Laza\Application Data\ESET
2009-09-23 19:35 . 2009-02-04 14:36   --------   d-----w-   c:\documents and settings\All Users\Application Data\ESET
2009-09-23 16:38 . 2009-02-04 14:36   --------   d-----w-   c:\program files\ESET
2009-09-19 11:54 . 2009-09-19 11:54   411368   ----a-w-   c:\windows\system32\deploytk.dll
2009-09-19 11:54 . 2009-02-04 14:51   --------   d-----w-   c:\program files\Java
2009-09-18 11:50 . 2009-09-18 11:50   --------   d-----w-   c:\documents and settings\All Users\Application Data\21186
2009-09-16 18:59 . 2009-07-29 15:35   --------   d-----w-   c:\program files\Registry Easy
2009-09-16 18:58 . 2009-06-23 14:40   --------   d-----w-   c:\program files\URUSoft
2009-09-16 18:58 . 2009-03-29 19:19   --------   d-----w-   c:\program files\Acclaim
2009-09-16 18:57 . 2009-02-04 14:47   --------   d-----w-   c:\program files\Real
2009-09-16 18:45 . 2009-08-01 11:39   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2009-09-15 10:32 . 2009-09-15 10:32   --------   d-----w-   c:\documents and settings\All Users\Application Data\5280
2009-09-13 22:56 . 2009-09-13 22:56   --------   d-----w-   c:\program files\Jufsoft
2009-09-13 22:42 . 2009-09-13 22:42   --------   d-----w-   c:\documents and settings\Laza\Application Data\GHISLER
2009-09-11 19:17 . 2009-09-11 19:17   --------   d-----w-   c:\documents and settings\All Users\Application Data\216D
2009-09-11 14:33 . 2004-08-03 21:56   133632   ----a-w-   c:\windows\system32\msv1_0.dll
2009-09-10 12:54 . 2009-08-01 11:39   38224   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 12:53 . 2009-08-01 11:39   19160   ----a-w-   c:\windows\system32\drivers\mbam.sys
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\UC.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\RAR.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\PKZIP.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\PKUNZIP.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\NOCLOSE.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\LHA.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\ARJ.PIF
2009-09-08 15:42 . 2009-02-05 18:24   --------   d-----w-   c:\program files\Google
2009-09-04 20:45 . 2004-08-03 21:56   58880   ----a-w-   c:\windows\system32\msasn1.dll
2009-09-03 21:45 . 2009-09-03 21:45   --------   d-----w-   c:\program files\MSXML 4.0
2009-09-03 17:35 . 2009-09-03 17:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Teleca
2009-09-03 17:32 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Common Files\Teleca Shared
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\documents and settings\Laza\Application Data\Sony Ericsson
2009-09-03 17:31 . 2009-09-03 17:30   --------   d-----w-   c:\documents and settings\All Users\Application Data\Teleca
2009-09-03 17:31 . 2009-09-03 17:30   --------   d-----w-   c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Common Files\Sony Ericsson Shared
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Sony Ericsson
2009-08-31 19:24 . 2009-08-31 19:24   --------   d-----w-   c:\documents and settings\All Users\Application Data\AAB
2009-08-31 15:08 . 2009-08-31 15:08   --------   d-----w-   c:\documents and settings\All Users\Application Data\11177
2009-08-29 23:52 . 2009-08-29 23:52   --------   d-----w-   c:\documents and settings\All Users\Application Data\32242
2009-08-29 18:50 . 2009-08-29 18:50   --------   d-----w-   c:\documents and settings\All Users\Application Data\24138
2009-08-29 18:27 . 2009-08-29 18:27   --------   d-----w-   c:\documents and settings\All Users\Application Data\332DE
2009-08-27 12:54 . 2009-06-14 23:26   --------   d-----w-   c:\program files\FlashGet
2009-08-26 08:16 . 2004-08-03 21:56   247326   ----a-w-   c:\windows\system32\strmdll.dll
2009-08-05 09:11 . 2004-08-03 21:56   204800   ----a-w-   c:\windows\system32\mswebdvd.dll
2009-08-04 13:58 . 2004-08-03 20:18   2136064   ----a-w-   c:\windows\system32\ntoskrnl.exe
2009-08-04 13:13 . 2004-08-03 22:59   2015744   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2009-07-26 14:44 . 2009-07-26 14:44   48448   ----a-w-   c:\windows\system32\sirenacm.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2008-09-02 14:05   398776   ----a-w-   c:\program files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2009-03-18 4363504]
"Google Update"="c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-09-01 133104]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 6\PCSuite.exe" [2007-12-10 695808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-12-05 8523776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-12-05 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-09-19 149280]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-11 39792]
"WireLessKeyboard "="c:\program files\Multimedia Keyboard Only\PS2USBKbdDrv.exe" [2005-08-02 233472]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-03 36352]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"DAEMON Tools-1033"="c:\program files\D-Tools\daemon.exe" [2004-08-22 81920]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2008-07-01 1447168]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-12-05 1626112]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-10-09 17021440]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-08 1294336]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"e:\\eMuleIncoming\\eMule\\emule.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Professional §©®ÎÞt v.4 Black\\mirc.exe"=
"c:\\Program Files\\Counter-Strike\\hl.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\BearShare Applications\\BearShare\\BearShare.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Counter-Strike\\hlds.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Professional §©®ÎÞt v.3 Black\\mirc.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Dx9.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Dx10.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Launcher.exe"=
"e:\\EA GamesCommand and Conquer Generals\\Command & Conquer Generals Zero Hour\\game.dat"=

R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12/21/2007 8:21 AM 468224]
S2 RPCER;Remote Procedure Call (HNM);c:\program files\Common Files\ODBC\comp.exe --> c:\program files\Common Files\ODBC\comp.exe [?]
S3 iadusb;MT882;c:\windows\system32\drivers\glauiad.sys [2/5/2009 1:34 AM 30336]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [9/3/2009 7:33 PM 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [9/3/2009 7:34 PM 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [9/3/2009 7:34 PM 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [9/3/2009 7:34 PM 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [9/3/2009 7:34 PM 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [9/3/2009 7:34 PM 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [9/3/2009 7:34 PM 97704]
.
Contents of the 'Scheduled Tasks' folder

2009-10-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003Core.job
- c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-01 09:18]

2009-10-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003UA.job
- c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-01 09:18]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.bearshare.com/intl/
mStart Page = hxxp://www.yahoo.com/
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Laza\Application Data\Mozilla\Firefox\Profiles\hpjy3biq.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?fr=ffsp1&p=
FF - prefs.js: browser.startup.homepage - www.facebook.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=ffds1&p=
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-cookies - c:\documents and settings\Laza\Application Data\server.exe
HKCU-Run-Uniblue RegistryBooster 2 - c:\program files\Uniblue\RegistryBooster 2\RegistryBooster.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-24 14:04
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2009-10-24 14:07
ComboFix-quarantined-files.txt 2009-10-24 12:07

Pre-Run: 5,112,545,280 bytes free
Post-Run: 5,103,624,192 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 34F69BC71836DA1FF11B3DC287018568

IP sačuvana

My time is now!

Zatvori

ivicaspas

Poruka #11

24. Okt 2009, 14:24:37

Prijatelj foruma

Poznata licnost

MC- argus

Zodijak
Pol
Poruke	4467
Zastava

	Windows XP
	Mozilla Firefox 3.5.3
	HTC

Ugasi AV
Skini i raspakuj ovaj fajl na desktop i prevuci misem na ikonicu combofixa

Kad zavrsi postavi log.

Fajlovi prikačeni uz poruku (kliknite na slike za punu veličinu)

CFScript.zip (0.15 KB)

« Poslednja izmena: 24. Okt 2009, 14:24:55 od ivicaspas »

IP sačuvana

Zatvori

simic022

Poruka #12

24. Okt 2009, 16:58:15

Svakodnevni prolaznik

Opusten kao bakin klitoris!

Zodijak
Pol
Poruke	400

	Windows XP
	Opera 9.64

ComboFix 09-10-23.01 - Laza 10/24/2009 16:49.2.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2046.1428 [GMT 2:00]
Running from: c:\documents and settings\Laza\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Laza\Desktop\CFScript.txt
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

FILE ::
"c:\windows\plugin.dat"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\plugin.dat

.
((((((((((((((((((((((((( Files Created from 2009-09-24 to 2009-10-24 )))))))))))))))))))))))))))))))
.

2009-10-24 11:35 . 2009-10-24 11:35   --------   d-----w-   C:\_OTM
2009-10-24 10:28 . 2009-10-24 10:28   --------   d-----w-   C:\rsit
2009-10-24 10:28 . 2009-10-24 10:28   --------   d-----w-   c:\program files\trend micro
2009-10-24 10:07 . 2000-08-20 22:00   1693968   ----a-w-   c:\windows\system32\VBA6.DLL
2009-10-23 08:35 . 2009-10-23 08:35   --------   d-----w-   c:\documents and settings\All Users\Application Data\2C2FD
2009-10-16 21:31 . 2009-10-16 21:39   980   ----a-w-   c:\windows\eReg.dat
2009-10-16 19:00 . 2009-06-29 11:59   142592   ----a-w-   c:\windows\system32\drivers\Rtenicxp.sys
2009-10-16 19:00 . 2009-06-10 02:34   73728   ----a-w-   c:\windows\system32\RtNicProp32.dll
2009-10-16 18:10 . 2009-10-18 06:11   --------   d-----w-   c:\program files\Warblade
2009-10-16 18:10 . 2009-10-16 18:10   --------   d-----w-   c:\program files\ReflexiveArcade
2009-10-16 16:36 . 2009-10-16 16:36   --------   d-----w-   C:\Team17
2009-10-16 15:02 . 2009-10-16 15:02   --------   d-----w-   c:\documents and settings\Laza\Application Data\Ubisoft
2009-10-16 15:01 . 2009-10-16 15:01   --------   d-----w-   c:\documents and settings\All Users\Application Data\Ubisoft
2009-10-16 14:54 . 2009-10-16 14:54   --------   d-----w-   c:\documents and settings\Laza\Application Data\InstallShield
2009-10-14 10:02 . 2005-12-09 13:02   3051520   ------w-   c:\windows\UNNeroVision.exe
2009-10-14 10:02 . 2001-03-08 16:30   24064   ------w-   c:\windows\system32\msxml3a.dll
2009-10-14 10:01 . 2009-10-14 10:01   --------   d-----w-   c:\documents and settings\All Users\Application Data\Ahead
2009-10-14 10:01 . 2001-06-26 05:15   38912   ------w-   c:\windows\system32\picn20.dll
2009-10-14 10:01 . 2000-06-26 08:45   106496   ------w-   c:\windows\system32\TwnLib20.dll
2009-10-14 10:01 . 2009-10-14 10:02   --------   d-----w-   c:\program files\Ahead
2009-10-12 09:37 . 2009-10-12 17:00   --------   d-----w-   c:\program files\FriendBlasterPro
2009-10-12 09:37 . 2000-07-14 22:00   101888   ----a-w-   c:\windows\system32\VB6STKIT.DLL
2009-10-12 08:52 . 2009-10-12 08:56   --------   d-----w-   c:\documents and settings\Laza\FriendAdder.com
2009-10-10 15:15 . 2009-10-10 15:15   --------   d-----w-   c:\documents and settings\Laza\Application Data\dvdcss
2009-10-02 08:22 . 2009-10-02 08:22   --------   d-----w-   c:\program files\Microsoft
2009-10-02 08:13 . 2009-10-02 08:13   --------   d-----w-   c:\program files\Circle Developemnt
2009-09-30 20:41 . 2009-09-30 21:01   --------   d-----w-   c:\program files\Image-Line
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Publish Providers
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\NetMedia Providers
2009-09-30 20:35 . 2009-09-30 20:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Sony
2009-09-30 20:34 . 2009-10-01 08:43   --------   d-----w-   c:\program files\Vstplugins
2009-09-30 20:33 . 2009-09-30 20:33   --------   d-----w-   c:\program files\Sony
2009-09-28 20:31 . 2009-10-20 16:53   --------   d-----w-   c:\documents and settings\Laza\Local Settings\Application Data\WMTools Downloaded Files
2009-09-28 18:54 . 2009-09-28 18:54   --------   d-----w-   c:\program files\Windows Media Connect 2
2009-09-28 18:46 . 2009-09-28 18:46   --------   d-----w-   c:\program files\Steinberg
2009-09-28 18:46 . 2009-09-28 18:46   --------   d-----w-   c:\program files\Common Files\Digidesign
2009-09-28 18:46 . 2009-10-01 08:37   --------   d-----w-   c:\program files\Antares Audio Technologies
2009-09-28 18:46 . 2003-06-20 11:28   1777664   ----a-w-   c:\windows\system32\gdiplus.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-24 14:46 . 2009-02-18 13:10   --------   d-----w-   c:\program files\AIMP2
2009-10-24 09:42 . 2009-10-18 01:15   34816   ----a-w-   c:\documents and settings\Laza\Application Data\xcat.dll
2009-10-24 09:40 . 2009-03-18 03:48   --------   d-----w-   c:\program files\Counter-Strike
2009-10-23 16:16 . 2009-02-14 10:39   --------   d-----w-   c:\program files\Windows Live Safety Center
2009-10-21 20:38 . 2009-07-27 11:28   --------   d-----w-   c:\documents and settings\Laza\Application Data\VSO
2009-10-19 14:31 . 2009-02-04 18:14   --------   d-----w-   c:\documents and settings\Laza\Application Data\uTorrent
2009-10-18 16:40 . 2009-07-08 01:05   138184   ----a-w-   c:\windows\system32\drivers\PnkBstrK.sys
2009-10-18 16:39 . 2009-07-08 01:05   183112   ----a-w-   c:\windows\system32\PnkBstrB.exe
2009-10-18 14:05 . 2009-09-14 09:07   --------   d-----w-   c:\program files\Professional §©®ÎÞt v.3 Black
2009-10-17 22:30 . 2009-02-04 14:46   --------   d-----w-   c:\program files\Professional §©®ÎÞt v.4 Black
2009-10-17 15:02 . 2009-04-02 19:39   --------   d-----w-   c:\program files\Teamspeak2_RC2
2009-10-17 14:57 . 2009-04-02 19:39   --------   d-----w-   c:\documents and settings\Laza\Application Data\teamspeak2
2009-10-17 11:39 . 2009-02-04 14:56   25016   ----a-w-   c:\documents and settings\Laza\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-16 21:40 . 2004-07-17 08:36   12400   ----a-w-   c:\windows\system32\drivers\secdrv.sys
2009-10-16 21:39 . 2009-02-04 14:57   --------   d--h--w-   c:\program files\InstallShield Installation Information
2009-10-16 21:36 . 2009-03-01 16:23   --------   d-----w-   c:\program files\EA GAMES
2009-10-16 19:00 . 2009-02-04 14:58   --------   d-----w-   c:\program files\Realtek
2009-10-16 16:36 . 2009-02-04 14:38   --------   d-----w-   c:\program files\Common Files\InstallShield
2009-10-16 13:06 . 2009-05-13 17:36   --------   d-----w-   c:\program files\Secret Maryo Chronicles
2009-10-14 22:58 . 2009-02-05 10:55   --------   d-----w-   c:\documents and settings\Laza\Application Data\Ahead
2009-10-02 09:01 . 2009-02-04 18:14   --------   d-----w-   c:\program files\uTorrent
2009-10-02 08:23 . 2009-02-14 01:47   --------   d-----w-   c:\program files\Windows Live
2009-10-02 08:13 . 2009-06-19 00:59   --------   d-----w-   c:\program files\Messenger Plus! Live
2009-09-25 05:56 . 2004-08-03 21:56   662016   ------w-   c:\windows\system32\wininet.dll
2009-09-25 05:56 . 2004-08-03 21:56   81920   ----a-w-   c:\windows\system32\ieencode.dll
2009-09-24 19:41 . 2009-03-24 14:17   --------   d-----w-   c:\documents and settings\Laza\Application Data\Skype
2009-09-24 18:52 . 2009-03-29 17:31   --------   d-----w-   c:\documents and settings\Laza\Application Data\skypePM
2009-09-24 13:47 . 2009-02-06 10:50   --------   d-----w-   c:\program files\Common Files\Adobe
2009-09-23 19:36 . 2009-09-23 19:36   --------   d-----w-   c:\documents and settings\Laza\Application Data\ESET
2009-09-23 19:35 . 2009-02-04 14:36   --------   d-----w-   c:\documents and settings\All Users\Application Data\ESET
2009-09-23 16:38 . 2009-02-04 14:36   --------   d-----w-   c:\program files\ESET
2009-09-19 11:54 . 2009-09-19 11:54   411368   ----a-w-   c:\windows\system32\deploytk.dll
2009-09-19 11:54 . 2009-02-04 14:51   --------   d-----w-   c:\program files\Java
2009-09-18 11:50 . 2009-09-18 11:50   --------   d-----w-   c:\documents and settings\All Users\Application Data\21186
2009-09-16 18:59 . 2009-07-29 15:35   --------   d-----w-   c:\program files\Registry Easy
2009-09-16 18:58 . 2009-06-23 14:40   --------   d-----w-   c:\program files\URUSoft
2009-09-16 18:58 . 2009-03-29 19:19   --------   d-----w-   c:\program files\Acclaim
2009-09-16 18:57 . 2009-02-04 14:47   --------   d-----w-   c:\program files\Real
2009-09-16 18:45 . 2009-08-01 11:39   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2009-09-15 10:32 . 2009-09-15 10:32   --------   d-----w-   c:\documents and settings\All Users\Application Data\5280
2009-09-13 22:56 . 2009-09-13 22:56   --------   d-----w-   c:\program files\Jufsoft
2009-09-13 22:42 . 2009-09-13 22:42   --------   d-----w-   c:\documents and settings\Laza\Application Data\GHISLER
2009-09-11 19:17 . 2009-09-11 19:17   --------   d-----w-   c:\documents and settings\All Users\Application Data\216D
2009-09-11 14:33 . 2004-08-03 21:56   133632   ----a-w-   c:\windows\system32\msv1_0.dll
2009-09-10 12:54 . 2009-08-01 11:39   38224   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 12:53 . 2009-08-01 11:39   19160   ----a-w-   c:\windows\system32\drivers\mbam.sys
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\UC.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\RAR.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\PKZIP.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\PKUNZIP.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\NOCLOSE.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\LHA.PIF
2009-09-09 05:50 . 2009-09-13 22:42   545   ----a-w-   c:\windows\ARJ.PIF
2009-09-08 15:42 . 2009-02-05 18:24   --------   d-----w-   c:\program files\Google
2009-09-04 20:45 . 2004-08-03 21:56   58880   ----a-w-   c:\windows\system32\msasn1.dll
2009-09-03 21:45 . 2009-09-03 21:45   --------   d-----w-   c:\program files\MSXML 4.0
2009-09-03 17:35 . 2009-09-03 17:35   --------   d-----w-   c:\documents and settings\Laza\Application Data\Teleca
2009-09-03 17:32 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Common Files\Teleca Shared
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\documents and settings\Laza\Application Data\Sony Ericsson
2009-09-03 17:31 . 2009-09-03 17:30   --------   d-----w-   c:\documents and settings\All Users\Application Data\Teleca
2009-09-03 17:31 . 2009-09-03 17:30   --------   d-----w-   c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Common Files\Sony Ericsson Shared
2009-09-03 17:31 . 2009-09-03 17:31   --------   d-----w-   c:\program files\Sony Ericsson
2009-08-31 19:24 . 2009-08-31 19:24   --------   d-----w-   c:\documents and settings\All Users\Application Data\AAB
2009-08-31 15:08 . 2009-08-31 15:08   --------   d-----w-   c:\documents and settings\All Users\Application Data\11177
2009-08-29 23:52 . 2009-08-29 23:52   --------   d-----w-   c:\documents and settings\All Users\Application Data\32242
2009-08-29 18:50 . 2009-08-29 18:50   --------   d-----w-   c:\documents and settings\All Users\Application Data\24138
2009-08-29 18:27 . 2009-08-29 18:27   --------   d-----w-   c:\documents and settings\All Users\Application Data\332DE
2009-08-27 12:54 . 2009-06-14 23:26   --------   d-----w-   c:\program files\FlashGet
2009-08-26 08:16 . 2004-08-03 21:56   247326   ----a-w-   c:\windows\system32\strmdll.dll
2009-08-05 09:11 . 2004-08-03 21:56   204800   ----a-w-   c:\windows\system32\mswebdvd.dll
2009-08-04 13:58 . 2004-08-03 20:18   2136064   ------w-   c:\windows\system32\ntoskrnl.exe
2009-08-04 13:13 . 2004-08-03 22:59   2015744   ------w-   c:\windows\system32\ntkrnlpa.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2008-09-02 14:05   398776   ----a-w-   c:\program files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2009-03-18 4363504]
"Google Update"="c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-09-01 133104]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 6\PCSuite.exe" [2007-12-10 695808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-12-05 8523776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-12-05 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-09-19 149280]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-11 39792]
"WireLessKeyboard "="c:\program files\Multimedia Keyboard Only\PS2USBKbdDrv.exe" [2005-08-02 233472]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-03 36352]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"DAEMON Tools-1033"="c:\program files\D-Tools\daemon.exe" [2004-08-22 81920]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2008-07-01 1447168]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-12-05 1626112]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-10-09 17021440]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-08 1294336]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"e:\\eMuleIncoming\\eMule\\emule.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Professional §©®ÎÞt v.4 Black\\mirc.exe"=
"c:\\Program Files\\Counter-Strike\\hl.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\BearShare Applications\\BearShare\\BearShare.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Counter-Strike\\hlds.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Professional §©®ÎÞt v.3 Black\\mirc.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Dx9.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Dx10.exe"=
"e:\\UbisoftAssassin's Creed\\AssassinsCreed_Launcher.exe"=
"e:\\EA GamesCommand and Conquer Generals\\Command & Conquer Generals Zero Hour\\game.dat"=

R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12/21/2007 8:21 AM 468224]
S2 RPCER;Remote Procedure Call (HNM);c:\program files\Common Files\ODBC\comp.exe --> c:\program files\Common Files\ODBC\comp.exe [?]
S3 iadusb;MT882;c:\windows\system32\drivers\glauiad.sys [2/5/2009 1:34 AM 30336]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [9/3/2009 7:33 PM 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [9/3/2009 7:34 PM 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [9/3/2009 7:34 PM 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [9/3/2009 7:34 PM 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [9/3/2009 7:34 PM 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [9/3/2009 7:34 PM 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [9/3/2009 7:34 PM 97704]
.
Contents of the 'Scheduled Tasks' folder

2009-10-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003Core.job
- c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-01 09:18]

2009-10-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003UA.job
- c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-01 09:18]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.bearshare.com/intl/
mStart Page = hxxp://www.yahoo.com/
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Laza\Application Data\Mozilla\Firefox\Profiles\hpjy3biq.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?fr=ffsp1&p=
FF - prefs.js: browser.startup.homepage - www.facebook.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=ffds1&p=
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\documents and settings\Laza\Local Settings\Application Data\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-24 16:53
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2009-10-24 16:54
ComboFix-quarantined-files.txt 2009-10-24 14:54
ComboFix2.txt 2009-10-24 12:07

Pre-Run: 5,151,502,336 bytes free
Post-Run: 5,119,442,944 bytes free

- - End Of File - - 4ABABC9D1FB9B575C1329347130D992C

IP sačuvana

My time is now!

Zatvori

ivicaspas

Poruka #13

24. Okt 2009, 17:17:21

Prijatelj foruma

Poznata licnost

MC- argus

Zodijak
Pol
Poruke	4467
Zastava

	Windows XP
	Mozilla Firefox 3.5.3
	HTC

Stanje?

IP sačuvana

Zatvori

simic022

Poruka #14

24. Okt 2009, 17:49:48

Svakodnevni prolaznik

Opusten kao bakin klitoris!

Zodijak
Pol
Poruke	400

	Windows XP
	Opera 9.64

ok je sve, nema vise abc aplikacije, nego evo sad mi nesto komp koci, rekao sam vec, vidim po kucanju, lagu u csu, ne znam koji mu je,evo gledam sad izgleda da opera jako puno vuce resursa, ne znam zasto, nije pre tako ;s

« Poslednja izmena: 24. Okt 2009, 17:52:40 od simic022 »

IP sačuvana

My time is now!

Zatvori

ivicaspas

Poruka #15

24. Okt 2009, 18:00:05

Prijatelj foruma

Poznata licnost

MC- argus

Zodijak
Pol
Poruke	4467
Zastava

	Windows XP
	Mozilla Firefox 3.5.3
	HTC

Deinstaliraj Combofix.

Start/run/ kucaj Combofix /u enter

PC je cist

IP sačuvana

Zatvori

simic022

Poruka #16

24. Okt 2009, 18:03:24

Svakodnevni prolaznik

Opusten kao bakin klitoris!

Zodijak
Pol
Poruke	400

	Windows XP
	Opera 9.64

hvala

IP sačuvana

My time is now!

Zatvori

Stranice:

Sve

Burek :: Forumi :: > Tehnicki deo foruma > Pc Klinika ~ Doktori za vas kompjuter

Tema: Odjednom problem (Moderatori: enaB, chelavi1)

Trenutno vreme je: 27. Apr 2024, 10:13:26

Prebaci se na:

Oznake: dll gmer otvara simic022 run tekst ivica gdiplus not keylogger
installer kucam blog found spas Odjednom windows

Poslednji odgovor u temi napisan je pre više od 6 meseci.

Temu ne bi trebalo "iskopavati" osim u slučaju da imate nešto važno da dodate. Ako ipak želite napisati komentar, kliknite na dugme "Odgovori" u meniju iznad ove poruke. Postoje teme kod kojih su odgovori dobrodošli bez obzira na to koliko je vremena od prošlog prošlo. Npr. teme o određenom piscu, knjizi, muzičaru, glumcu i sl. Nemojte da vas ovaj spisak ograničava, ali nemojte ni pisati na teme koje su završena priča.

Forum Info: Banneri Foruma :: Burek Toolbar :: Burek Prodavnica :: Burek Quiz :: Najcesca pitanja :: Tim Foruma :: Prijava zloupotrebe

Izvori vesti: Blic :: Wikipedia :: Mondo :: Press :: Naša mreža :: Sportska Centrala :: Glas Javnosti :: Kurir :: Mikro :: B92 Sport :: RTS :: Danas

Prijatelji foruma: Triviador :: Domaci :: Morazzia :: TotalCar :: FTW.rs :: MojaPijaca :: Pojacalo :: 011info :: Burgos :: Alfaprevod

Pravne Informacije: Pravilnik Foruma :: Politika privatnosti :: Uslovi koriscenja :: O nama :: Marketing :: Kontakt :: Sitemap

All content on this website is property of "Burek.com" and, as such, they may not be used on other websites without written permission.