Imam problem kada hocu da udjem u D particiju preko My computer i npr. pokusam da otvorim neku sliku komp se blokira (ukoci) . Dok iz total komandera sve otvara bez blokiranja i kocenja!
Hvala unapred za 

Gde su ti doktori jel hoce neko da mi pomogne???

za pocetak ako imas malwarebytes antimalware procisti racunar sa njim, moguce je da ti je neki malware usetao...

ako nadje nesto neka brise, restartuj racunar i javi se da vidimo sta cemo dalje ako nema promena...

da li ti izbacuje neku gresku?

Ukljucio sam ga ali nije nista nasao , ne izbacuje gresku! Sta da uradim sledece?

http://www.softpedia.com/progDownload/FixDrive-Download-108681.html

skini tool sa linka, pokreni, oznaci particiju koju ne mozes da otvoris i idi na FIX.

posle restartuj racunar i javi da li radi...   

Sada cu pokusati.

Kada kliknem na fix izbaci mi No changes were made to the system, as no problems were detected.
????? STA SADA

Probao si restartovati sistem pa pokusati ponovo sa FixDrive-om?
...on bi trebao resiti problem 

no...ajd ako si voljan da vidimo sta se nalazi sve na tvom kompu

Skini DDS Program na Desktop
http://download.bleepingcomputer.com/sUBs/dds.com

Pokreni DDS

Kad zavrsi, DDS ce otvoriti dva loga:
         1. DDS.txt
         2. Attach.txt
Oba izvestaja sacuvaj na Desktop.
Kopiraj mi DDS.txt a Attach.txt prikaci uz poruku.

DDS (Ver_10-10-21.02) - NTFSx86 
Run by Korisnik at  9:20:22,23 on sub 30.10.2010
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_22
Microsoft Windows XP Professional  5.1.2600.3.1250.381.1033.18.511.114 [GMT 2:00]

AV: ESET NOD32 Antivirus 4.0 *On-access scanning enabled* (Updated)   {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
c:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Korisnik\Desktop\dds.com

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.maxiwe.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Page_URL = hxxp://www.maxiwe.com/
mDefault_Page_URL = hxxp://www.maxiwe.com/
mDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.maxiwe.com/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.crawler.com/search/ie.aspx?tb_id=60327
mCustomizeSearch = hxxp://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
uURLSearchHooks: H - No File
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Windows Live pomagač za prijavljivanje: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [SpywareTerminatorUpdate] "c:\program files\spyware terminator\SpywareTerminatorUpdate.exe"
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [WinSys2] c:\windows\system32\winsys2.exe
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [tsnpstd3] c:\windows\tsnpstd3.exe
mRun: [snpstd3] c:\windows\vsnpstd3.exe
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Share-to-Web Namespace Daemon] c:\program files\hp\hp share-to-web\hpgs2wnd.exe
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dPolicies-explorer: ForceClassicControlPanel = 1 (0x1)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SEH: DVDIdleShell Class: {93994de8-8239-4655-b1d1-5f4e91300429} - c:\program files\dvd region-free\DVDShell.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\korisnik\applic~1\mozilla\firefox\profiles\wrtili34.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60327&qkw=
FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true);  // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true);  // Simplified

============= SERVICES / DRIVERS ===============

R? gupdate;
R? SCREAMINGBDRIVER;Screaming Bee Audio
S? ehdrv;ehdrv
S? ekrn;ESET Service
S? epfwtdir;epfwtdir
S? MBAMProtector;MBAMProtector
S? MBAMService;MBAMService
S? sp_rsdrv2;Spyware Terminator Driver 2
S? VCSVADHWSer;Avnex Virtual Audio Device (WDM)

=============== Created Last 30 ================

2010-10-29 22:27:20   --------   d-----w-   c:\program files\PowerFolder.com
2010-10-29 22:26:54   73728   ----a-w-   c:\windows\system32\javacpl.cpl
2010-10-29 22:26:54   472808   ----a-w-   c:\program files\mozilla firefox\plugins\npdeployJava1.dll
2010-10-29 22:26:53   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2010-10-29 22:12:14   --------   d-----w-   c:\docume~1\korisnik\applic~1\TeamViewer
2010-10-29 22:12:03   --------   d-----w-   c:\program files\TeamViewer
2010-10-28 16:11:23   --------   d-----w-   c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2010-10-28 12:49:58   14592   -c--a-w-   c:\windows\system32\dllcache\kbdhid.sys
2010-10-28 12:49:58   14592   ----a-w-   c:\windows\system32\drivers\kbdhid.sys
2010-10-07 11:10:51   12536   ----a-w-   c:\windows\system32\avgrsstx.dll.prepare
2010-10-07 09:58:56   --------   d-----w-   c:\program files\AVG

==================== Find3M  ====================

2010-09-18 10:23:26   974848   ----a-w-   c:\windows\system32\mfc42u.dll
2010-09-18 06:53:25   974848   ----a-w-   c:\windows\system32\mfc42.dll
2010-09-18 06:53:25   954368   ----a-w-   c:\windows\system32\mfc40.dll
2010-09-18 06:53:25   953856   ----a-w-   c:\windows\system32\mfc40u.dll
2010-09-09 14:16:31   667136   ----a-w-   c:\windows\system32\wininet.dll
2010-09-09 14:16:30   61952   ----a-w-   c:\windows\system32\tdc.ocx
2010-09-09 14:16:29   81920   ----a-w-   c:\windows\system32\ieencode.dll
2010-09-08 16:49:49   369664   ----a-w-   c:\windows\system32\html.iec
2010-09-01 11:51:14   285824   ----a-w-   c:\windows\system32\atmfd.dll
2010-08-31 13:42:52   1852800   ----a-w-   c:\windows\system32\win32k.sys
2010-08-27 08:02:29   119808   ----a-w-   c:\windows\system32\t2embed.dll
2010-08-27 05:57:43   99840   ----a-w-   c:\windows\system32\srvsvc.dll
2010-08-26 12:52:45   5120   ----a-w-   c:\windows\system32\xpsp4res.dll
2010-08-23 16:12:04   617472   ----a-w-   c:\windows\system32\comctl32.dll
2010-08-17 13:17:06   58880   ----a-w-   c:\windows\system32\spoolsv.exe
2010-08-16 08:45:00   590848   ----a-w-   c:\windows\system32\rpcrt4.dll

============= FINISH:  9:21:39,17 ===============

Idemo mi "dublje" ...
Pazljivo izprati sledece:

*  Skini Combofix program
Poseti ovu stranicu za download link i Uputstvo za koriscenje Combofix programa:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

*  Privremeno iskljuci svoj AntiVirus.
Poseti ovu stranicu za uputstvo:
http://www.bleepingcomputer.com/forums/topic114351.html

*  Pokreni Combofix!
Kad alat zavrsi skeniranje otvorice notepad sa izvestajem (log).
Kopiraj taj izvestaj ovde. (tipicna lokacija loga: C:\ComboFix.txt)

ComboFix 10-10-29.03 - Korisnik 30.10.2010  18:43:19.3.1 - x86
Running from: c:\documents and settings\Korisnik\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
AV: Spyware Terminator *On-access scanning enabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
.

(((((((((((((((((((((((((   Files Created from 2010-09-28 to 2010-10-30  )))))))))))))))))))))))))))))))
.

2010-10-29 22:27 . 2010-10-29 22:36   --------   d-----w-   c:\program files\PowerFolder.com
2010-10-29 22:27 . 2010-10-29 22:27   --------   d-----w-   c:\program files\Common Files\Java
2010-10-29 22:26 . 2010-10-29 22:26   472808   ----a-w-   c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2010-10-29 22:26 . 2010-10-29 22:26   73728   ----a-w-   c:\windows\system32\javacpl.cpl
2010-10-29 22:26 . 2010-10-29 22:26   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2010-10-29 22:26 . 2010-10-29 22:26   --------   d-----w-   c:\program files\Java
2010-10-29 22:12 . 2010-10-29 22:12   --------   d-----w-   c:\documents and settings\Korisnik\Application Data\TeamViewer
2010-10-29 22:12 . 2010-10-29 22:12   --------   d-----w-   c:\program files\TeamViewer
2010-10-28 16:11 . 2010-10-29 07:11   --------   d-----w-   c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-10-28 12:49 . 2008-04-13 22:09   14592   -c--a-w-   c:\windows\system32\dllcache\kbdhid.sys
2010-10-28 12:49 . 2008-04-13 22:09   14592   ----a-w-   c:\windows\system32\drivers\kbdhid.sys

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-18 10:23 . 2007-04-03 12:44   974848   ----a-w-   c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2008-04-14 09:41   974848   ----a-w-   c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2008-04-14 09:41   953856   ----a-w-   c:\windows\system32\mfc40u.dll
2010-09-18 06:53 . 2001-08-23 12:00   954368   ----a-w-   c:\windows\system32\mfc40.dll
2010-09-09 14:16 . 2008-04-14 09:42   667136   ----a-w-   c:\windows\system32\wininet.dll
2010-09-09 14:16 . 2008-04-14 09:41   61952   ----a-w-   c:\windows\system32\tdc.ocx
2010-09-09 14:16 . 2008-04-14 09:41   81920   ----a-w-   c:\windows\system32\ieencode.dll
2010-09-08 16:49 . 2008-04-14 04:07   369664   ----a-w-   c:\windows\system32\html.iec
2010-09-01 11:51 . 2008-04-14 09:39   285824   ----a-w-   c:\windows\system32\atmfd.dll
2010-08-31 13:42 . 2008-04-14 05:00   1852800   ----a-w-   c:\windows\system32\win32k.sys
2010-08-27 08:02 . 2008-04-14 09:42   119808   ----a-w-   c:\windows\system32\t2embed.dll
2010-08-27 05:57 . 2008-04-14 09:42   99840   ----a-w-   c:\windows\system32\srvsvc.dll
2010-08-26 13:39 . 2008-04-14 04:45   357248   ----a-w-   c:\windows\system32\drivers\srv.sys
2010-08-26 12:52 . 2010-02-26 18:05   5120   ----a-w-   c:\windows\system32\xpsp4res.dll
2010-08-23 16:12 . 2008-04-14 09:41   617472   ----a-w-   c:\windows\system32\comctl32.dll
2010-08-17 13:17 . 2008-04-14 09:42   58880   ----a-w-   c:\windows\system32\spoolsv.exe
2010-08-16 08:45 . 2008-04-14 09:42   590848   ----a-w-   c:\windows\system32\rpcrt4.dll
.

------- Sigcheck -------

[-] 2009-09-02 . 600D58665D16BFBB776EFEFB0E80532D . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((   SnapShot@2010-10-30_08.49.13   )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-10-30 11:21 . 2010-10-30 11:21   16384              c:\windows\Temp\Perflib_Perfdata_1f8.dat
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883840]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-03-25 3037696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"RTHDCPL"="RTHDCPL.EXE" [2007-11-22 16858112]
"WinSys2"="c:\windows\system32\winsys2.exe" [2009-05-18 208896]
"nwiz"="nwiz.exe" [2009-04-30 1657376]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-04-30 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-04-30 13750272]
"tsnpstd3"="c:\windows\tsnpstd3.exe" [2007-03-30 262144]
"snpstd3"="c:\windows\vsnpstd3.exe" [2006-09-18 843776]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-04-09 2029640]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-03-25 2166784]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 49152]
"Share-to-Web Namespace Daemon"="c:\program files\HP\HP Share-to-Web\hpgs2wnd.exe" [2002-04-17 69632]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="advpack.dll" [2008-04-14 99840]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\program files\DVD Region-Free\DVDShell.dll" [2003-10-29 49152]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\PowerFolder.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [21.12.2009 11:15 691696]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [9.4.2009 16:18 107256]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [9.4.2009 16:21 94360]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [26.3.2010 0:59 142592]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [9.4.2009 16:19 731840]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [26.2.2010 20:43 304464]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [26.2.2010 20:43 20952]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [3.2.2010 2:50 17792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [1.12.2009 16:49 34384]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - KFPYYKOW
*Deregistered* - kfpyykow
.
Contents of the 'Scheduled Tasks' folder

2010-10-29 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 21:26]

2010-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 21:26]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.maxiwe.com/
mStart Page = hxxp://www.maxiwe.com/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Korisnik\Application Data\Mozilla\Firefox\Profiles\wrtili34.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60327&qkw=
FF - plugin: c:\program files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true);  // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true);  // Simplified
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-10-30 18:51
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ... 

scanning hidden autostart entries ...

scanning hidden files ... 

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2010-10-30  18:54:20
ComboFix-quarantined-files.txt  2010-10-30 16:54
ComboFix2.txt  2010-10-30 09:50
ComboFix3.txt  2010-10-30 08:51

Pre-Run: 8.585.474.048 bytes free
Post-Run: 8.573.988.864 bytes free

- - End Of File - - 97CFE24B4BEBD7BB31ED54FD3CD23CA6

Start >> Run

Combofix /Uninstall

Ok


Restartuj racunar i reci mi da kako sad radi?
...........

Preuzmi ovaj program...pokreni ga i ocisti registry
http://www.wisecleaner.com/wiseregistrycleanerfree.html

Jos bih valjalo da racunar iskljucis fizicki iz struje,izvadis ram memoriju i ostavis je napolju nekih 6 minuta.
Vrati je nazad ...startuj racunar...

Umas brdo stavki koji ti se dizu sa sturtup-om...
pokreni ccleaner i sve to poiskljucuj
...ostavi ESET AntiVirus, CTFMON.EXE ,i Malwarebytes ( kod tebe je sa real time zastitom jel? )

Komp je cist...ako i dlaje zeza ...ja bih poceo od hard disk-a   

Ocistio sam registri kao sto si mi rekao i konacno radi kako treba.