Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Molim za pomoc u vezi otklanjanja kul virusa

[es] :: Zaštita :: Molim za pomoc u vezi otklanjanja kul virusa
(Zaključana tema (lock), by Aleksandar Maletic)

[ Pregleda: 4329 | Odgovora: 11 ] > FB > Twit

Postavi temu

Autor
Pretraga teme: Traži
Markiranje Štampanje RSS

donhuan
nezaposlen
beograd

Član broj: 261274
Poruke: 2
*.adsl-a-7.sezampro.rs.



Profil

icon Molim za pomoc u vezi otklanjanja kul virusa02.06.2010. u 14:07 - pre 169 meseci
Pozdrav svima,i hvala unapred na pomoci,ovako,probao sam sa anvirum , nod32,avast,trojen remover,trojan elite,malvere bytes,nijedan ga cak ni ne detektuje a kamoli otklanja,pokusavao sam i u safe modu isto,radi se o sledecem virusu ako neko ima neko resenje pomagajte ljudi

W32/SmallTroj.VPCG, manifestuje se i tako sto ti zameni u navigacionom baru mozile umesto da te baci na google ,baci me na sledeci sajt http://www.searchqu.***, rado bih uradio neki low format,al ne mogu nista brisati iz odredjenih razloga mi mora ostati win,znaci moram ga nekako ocistiti

[Ovu poruku je menjao Goran Mijailovic dana 02.06.2010. u 18:59 GMT+1]
 
0

GORSHTAK
Ivan Matić

Član broj: 136182
Poruke: 285
*.aDSL.Verat.Net.



+5 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa02.06.2010. u 17:52 - pre 169 meseci
Kako si saznao koji je virus u pitanju, a da ga nijedan av ne otkriva?
Elem, jesi li probao ovako nešto, ne znam možeš li uopšte da priđeš guglu
http://kathywellerdesigns.com/...-step-expel-exploiters-google/
 
0

donhuan
nezaposlen
beograd

Član broj: 261274
Poruke: 2
*.adsl-a-1.sezampro.yu.



Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa02.06.2010. u 21:48 - pre 169 meseci
preko tog sajta koji su uprabo postavio,al mi je suvise rucno i opsirno objasnjenje ,pa sam zato mislio jel zna neko mozda jel postoji neki remover koji ka uspesno otklanja ,norman ga je jedini pronasao u skanu,ali mi je resetovao komp na famozni blue screen,sad cak i ne postoji kao instaliran,mislim na norman
 
0

magna86
Anti Malware Fighter

Član broj: 189287
Poruke: 557

Sajt: www.mycity.rs/Ambulanta


+16 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa03.06.2010. u 01:13 - pre 169 meseci
Skini ovaj program na Desktop
HitMan Pro (5,6 MB)
http://www.surfright.nl/en/downloads/
instaliraj ga,po potrebi neka odradi update,dozvoli mu da upload-uje primerke koje nadje i javi da li je sta nasao ili obrisao.

Ondak... Skini DDS Program na Desktop
http://download.bleepingcomputer.com/sUBs/dds.com

Dvoklikom pokreni dds.scr

Kad zavrsi, DDS ce otvoriti dva loga:
1. DDS.txt
2. Attach.txt

Oba izvestaja sacuvaj na Desktop.
Kopiraj mi DDS.txt
http://www.itfix.biz/images/Malware.JPG
 
0

Sun Tzung
Kamikovski Boris
Srpski Krstur

Član broj: 72747
Poruke: 5
*.dsl.bell.ca.



Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa13.09.2011. u 02:04 - pre 153 meseci
Postovanje,
dobio sam searchqu tj instalirao se kada sam skinuo neki program za gledanje TV preko neta. Trenutno mi je na racunaru Vista a nemam neku zelju da formatiram hdd. Pokusao bih neko resenje koje ne zahteva format diska. Tako da sam dobio i nesrecni toolbar koji apsolutno ne mogu da skinem iz firefoxa. Od antivirusa imam trenutno na njemu avg ali cini mi se da on nema tu sposobnost da ocisti to blago budi receno go*no. Tako da molim za pomoc prilikom odklanjanja ove napasti :)
 
0

Dashkes

Član broj: 90973
Poruke: 845



+27 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa13.09.2011. u 06:47 - pre 153 meseci
• Preuzmite i instalirajte program Malwarebytes` Anti-Malware
• Pokrenite ga i izvršite update (Update > Check for Updates) i po završetku potvrdite sa OK.
• Posle update-a odaberi Scanner, oznacite Perform full scan i pritisnite Scan.
• Kada se skeniranje završi pritisnite OK, pa Show Results da vidite izveštaj.
• Proverite da li su svi pronađeni fajlovi štiklirani (ako nisu selektujte ih), pritisnite Remove Selected i potvrdite sa OK.
• Program će vas upitati da restartujes računar i vi to potvrdite.
• Takođe posle ukljanjanje malware-a sa računara dobićete log fajl (izveštaj) koji ćete iskopirati ovde.

MBAM bi trebalo da izađe na kraj sa searchqu-om.
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa13.09.2011. u 09:34 - pre 153 meseci
Nece mbam da sredi to s***e.



Preuzmi OTL na desktop http://oldtimer.geekstogo.com/OTL.exe

Pokreni OTL i klikni na Run Scan

Kad se zavrsi skeniranje izvestaj ce biti prikazan u Notepadu.

Snimi izvestaj na desktop i prikaci ga uz poruku.
 
0

Sun Tzung
Kamikovski Boris
Srpski Krstur

Član broj: 72747
Poruke: 5
*.dsl.bell.ca.



Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa15.09.2011. u 00:00 - pre 153 meseci
Evo skenirao sam sa OTL i izvestaj izgleda ovako



OTL logfile created on: 9/13/2011 7:59:57 PM - Run 2
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\Boris Kamikovski\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.04 Gb Available Physical Memory | 51.95% Memory free
4.23 Gb Paging File | 2.64 Gb Available in Paging File | 62.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 67.30 Gb Total Space | 23.77 Gb Free Space | 35.32% Space Free | Partition Type: NTFS
Drive D: | 49.37 Gb Total Space | 3.45 Gb Free Space | 6.99% Space Free | Partition Type: NTFS
Drive E: | 106.44 Gb Total Space | 50.90 Gb Free Space | 47.82% Space Free | Partition Type: NTFS

Computer Name: ACERPC | User Name: Boris Kamikovski | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2011/09/13 19:49:44 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\Boris Kamikovski\Downloads\OTL.exe
PRC - [2011/09/12 19:56:59 | 002,076,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011/06/06 06:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/01/10 16:02:03 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2011/01/10 16:01:57 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgfws9.exe
PRC - [2011/01/10 16:01:56 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/07/27 17:22:49 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/27 17:22:44 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/27 17:20:29 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/01/25 15:31:29 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Boris Kamikovski\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2009/04/10 18:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/16 11:26:20 | 000,860,160 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008/10/16 10:54:34 | 000,466,944 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008/04/28 01:14:00 | 000,073,728 | ---- | M] (Software 2000 Limited) -- C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE
PRC - [2008/01/12 02:47:20 | 000,036,864 | ---- | M] (Dassault Systemes) -- C:\Program Files\Dassault Systemes\B205\intel_a\code\bin\CATSysDemon.exe
PRC - [2007/12/10 05:23:02 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/12/05 20:25:58 | 000,458,752 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2007/10/30 13:45:48 | 000,167,936 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2007/10/17 14:59:44 | 000,858,632 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2007/09/10 10:28:18 | 000,057,344 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2007/09/07 15:35:10 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007/09/06 07:02:04 | 000,393,216 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
PRC - [2007/08/29 05:35:38 | 000,323,584 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe
PRC - [2007/07/12 11:36:12 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007/07/12 11:36:10 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007/06/13 11:56:18 | 000,765,952 | R--- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNMTray.exe
PRC - [2007/06/13 11:54:36 | 000,135,168 | R--- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2007/05/28 20:29:00 | 004,472,832 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/04/25 11:34:30 | 000,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
PRC - [2007/04/25 11:33:36 | 000,457,216 | ---- | M] (HiTRUST) -- C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
PRC - [2007/04/23 04:53:48 | 000,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2006/11/24 07:57:54 | 000,107,008 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2011/08/13 10:46:03 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\4117485024b0f652b9fbb66ff5025896\System.Management.ni.dll
MOD - [2011/08/13 10:45:49 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\1cc11918d8dd561391bba05c61de7573\System.ServiceProcess.ni.dll
MOD - [2011/08/13 10:45:44 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c50d9d540acecdef29c31201e203a331\System.Windows.Forms.ni.dll
MOD - [2011/08/13 10:45:25 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d8d83838f9840bde901df516ba3de588\System.Drawing.ni.dll
MOD - [2011/08/13 10:45:23 | 011,804,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5aa9131000876de66160ff713b543d99\System.Web.ni.dll
MOD - [2011/08/13 10:45:14 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a6d889aa69fd51c100352f23c7cebd22\System.Runtime.Remoting.ni.dll
MOD - [2011/08/13 08:44:39 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\4c3cda96b8f12220da20f2f8d1b9439c\System.Xml.ni.dll
MOD - [2011/08/13 08:44:33 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29c6ef7f07d89496c72a1bbf718aed5d\System.Configuration.ni.dll
MOD - [2011/08/12 08:48:43 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll
MOD - [2011/08/12 08:48:37 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll
MOD - [2010/01/25 15:32:28 | 001,675,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2832.38383__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2010/01/25 15:32:28 | 000,245,760 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2832.38339__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2010/01/25 15:32:28 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2832.38395__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2010/01/25 15:32:28 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2832.38374__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2010/01/25 15:32:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2832.38360__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2010/01/25 15:32:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2791.32000__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2010/01/25 15:32:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2791.31999__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2010/01/25 15:32:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2791.32024__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2010/01/25 15:32:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2791.32011__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2010/01/25 15:32:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2791.32025__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2010/01/25 15:32:27 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2791.32002__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2010/01/25 15:32:27 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2791.31988__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2010/01/25 15:32:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2010/01/25 15:32:27 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2791.31986__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2010/01/25 15:32:27 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2791.32434__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2010/01/25 15:32:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2791.31992__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2010/01/25 15:32:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2791.32016__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2010/01/25 15:32:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2791.32007__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2010/01/25 15:32:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2791.31995__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2791.32006__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2791.32016__90ba9c70f846762e\DEM.OS.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2791.32015__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2791.32001__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2010/01/25 15:32:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2791.32029__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2010/01/25 15:32:26 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2791.32029__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2010/01/25 15:32:25 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2791.31987__90ba9c70f846762e\AEM.Foundation.dll
MOD - [2010/01/25 15:32:25 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2010/01/25 15:32:25 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2791.32006__90ba9c70f846762e\APM.Foundation.dll
MOD - [2010/01/25 15:32:25 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2791.32001__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2010/01/25 15:32:17 | 000,471,040 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2832.38367__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2010/01/25 15:32:17 | 000,102,400 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.2832.38618__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2010/01/25 15:32:17 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2832.38331__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2010/01/25 15:32:17 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2832.38616__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2010/01/25 15:32:17 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2791.31996__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2010/01/25 15:32:17 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2791.32008__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2010/01/25 15:32:17 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2832.38660__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2010/01/25 15:32:17 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2791.31993__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2010/01/25 15:32:17 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2791.32039__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2010/01/25 15:32:17 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2791.32009__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2010/01/25 15:32:17 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2832.38330__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2010/01/25 15:32:16 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.2832.38332__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2010/01/25 15:32:16 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.2832.38331__90ba9c70f846762e\APM.Server.dll
MOD - [2010/01/25 15:32:16 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.2832.38330__90ba9c70f846762e\AEM.Server.dll
MOD - [2010/01/25 15:32:16 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2791.32004__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2010/01/25 15:32:16 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.2832.38617__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2010/01/25 15:32:16 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2009/04/10 18:28:26 | 000,249,856 | ---- | M] () -- C:\Users\Boris Kamikovski\AppData\Local\obeqepijo.dll
MOD - [2009/01/15 22:28:00 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008/09/16 15:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007/12/10 05:23:10 | 000,028,672 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll
MOD - [2007/12/10 05:22:42 | 000,155,648 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll
MOD - [2007/12/10 05:22:28 | 003,420,160 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.View.dll
MOD - [2007/12/10 05:22:12 | 000,032,768 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll
MOD - [2007/08/29 05:35:12 | 000,057,344 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll
MOD - [2007/08/29 05:34:34 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll
MOD - [2007/07/24 05:39:40 | 000,208,896 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\SysHook.dll
MOD - [2007/06/13 11:56:36 | 000,249,856 | R--- | M] () -- C:\Acer\Empowering Technology\eNet\eNetPlugin.dll
MOD - [2007/05/24 04:53:32 | 000,679,936 | ---- | M] () -- C:\Acer\Empowering Technology\eLock\eLockCTL.dll
MOD - [2007/04/25 11:31:00 | 000,028,672 | ---- | M] () -- C:\Windows\System32\BatchCrypto.dll
MOD - [2007/04/25 11:30:44 | 000,063,488 | ---- | M] () -- C:\Windows\System32\ShowErrMsg.dll
MOD - [2007/04/11 11:42:40 | 000,307,200 | ---- | M] () -- C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
MOD - [2007/03/02 06:44:34 | 000,073,728 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
MOD - [2007/02/13 01:26:30 | 000,016,384 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll
MOD - [2003/06/07 17:30:08 | 000,057,344 | ---- | M] () -- C:\Program Files\Launch Manager\PowerUtl.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2011/06/06 06:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/03/09 11:03:35 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/01/10 16:01:57 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgfws9.exe -- (avgfws9)
SRV - [2010/07/27 17:22:44 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/07/27 17:22:39 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/01/27 07:00:52 | 000,079,360 | ---- | M] (SolidWorks) [On_Demand | Stopped] -- C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe -- (SolidWorks Licensing Service)
SRV - [2009/10/15 01:51:14 | 000,087,336 | ---- | M] (Dassault Systèmes SolidWorks Corp.) [On_Demand | Stopped] -- C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe -- (CoordinatorServiceHost)
SRV - [2008/10/16 11:26:20 | 000,860,160 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008/10/16 10:54:34 | 000,466,944 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008/01/18 18:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/12 02:47:20 | 000,036,864 | ---- | M] (Dassault Systemes) [Auto | Running] -- C:\Program Files\Dassault Systemes\B205\intel_a\code\bin\CATSysDemon.exe -- (BBDemon)
SRV - [2007/12/10 05:23:02 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/10/30 13:45:48 | 000,167,936 | ---- | M] (acer) [Auto | Running] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/09/10 10:28:18 | 000,057,344 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/07/12 11:36:12 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007/06/13 11:54:36 | 000,135,168 | R--- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/04/25 11:34:30 | 000,457,512 | ---- | M] (HiTRSUT) [Auto | Running] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)
SRV - [2007/04/23 04:53:48 | 000,024,576 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2006/11/24 07:57:54 | 000,107,008 | ---- | M] () [Auto | Running] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2005/09/23 02:01:16 | 002,799,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon80)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011/09/12 19:56:03 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/05/05 14:14:57 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/27 17:22:41 | 000,122,448 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSDriver.sys -- (AVGIDSDrivervtx)
DRV - [2010/07/27 17:22:41 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSFilter.sys -- (AVGIDSFiltervtx)
DRV - [2010/07/27 17:22:41 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSShim.sys -- (AVGIDSShimvtx)
DRV - [2010/07/27 17:22:41 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\AVGIDSvx.sys -- (AVGIDSErHrvtx)
DRV - [2010/07/27 17:20:32 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/19 17:56:03 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010/01/27 14:27:30 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/01/26 16:02:51 | 000,024,856 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2009/01/15 23:46:52 | 004,305,920 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/11/17 01:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)
DRV - [2007/11/30 10:51:34 | 000,015,392 | ---- | M] (Acer, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\int15.sys -- (int15)
DRV - [2007/08/08 12:26:06 | 002,226,688 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R)
DRV - [2007/08/02 19:17:26 | 001,749,376 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007/06/05 12:57:54 | 000,016,528 | ---- | M] (IBM) [Kernel | System | Running] -- C:\Windows\System32\drivers\LUM.sys -- (LUM)
DRV - [2007/05/02 07:52:00 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21)
DRV - [2006/11/28 20:44:52 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/11/02 03:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006/11/02 03:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2006/11/02 03:30:52 | 000,467,456 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.us.acer.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.us.acer.yahoo.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search...rms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: CLSID key missing. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/#hl=en&am...v=on.2,or.r_gc.r_pw.&cad=b|http://www.mozilla.org/en-US/firefox/customize/|https://addons.mozilla.org/en-US/firefox/browse/type:7|http://www.google.ca/firefox|about:blank"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}:5.0.22
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8153
FF - prefs.js..extensions.enabledItems: {F7FEE719-39D1-49E2-8270-50C78A092B0D}:1.9.1
FF - prefs.js..keyword.URL: "http://www.searchqu.com/web?sr...p;systemid=406&sr=0&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Boris Kamikovski\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Boris Kamikovski\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F7FEE719-39D1-49E2-8270-50C78A092B0D}: C:\Users\Boris Kamikovski\AppData\Local\{F7FEE719-39D1-49E2-8270-50C78A092B0D} [2011/09/11 21:58:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/12 19:55:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/12 19:51:32 | 000,000,000 | ---D | M]

[2011/09/03 22:15:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\Extensions
[2011/09/12 20:53:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\Firefox\Profiles\pmqv1v0p.default\extensions
[2010/07/28 05:48:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\Firefox\Profiles\pmqv1v0p.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/09/03 22:15:32 | 000,002,506 | ---- | M] () -- C:\Users\Boris Kamikovski\AppData\Roaming\Mozilla\Firefox\Profiles\pmqv1v0p.default\searchplugins\SearchResults.xml
[2011/09/12 20:53:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/08/30 21:24:46 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010/01/28 16:04:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}
[2011/09/11 21:58:38 | 000,000,000 | ---D | M] (XULRunner) -- C:\USERS\BORIS KAMIKOVSKI\APPDATA\LOCAL\{F7FEE719-39D1-49E2-8270-50C78A092B0D}
[2009/10/14 12:21:24 | 000,155,648 | ---- | M] (Dassault Systèmes SolidWorks Corp.) -- C:\Program Files\mozilla firefox\plugins\npEModelPlugin.dll
[2011/09/03 22:15:32 | 000,002,506 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml

Hosts file not found
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (Loader Class) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe (HiTRUST)
O4 - HKLM..\Run: [eRecoveryService] File not found
O4 - HKLM..\Run: [hpbdfawep] C:\Program Files\HP\Dfawep\bin\hpbdfawep.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [PLFSetL] C:\Windows\PLFSetL.exe (sonix)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Xtabica] C:\Users\Boris Kamikovski\AppData\Local\obeqepijo.dll ()
O4 - HKCU..\Run: [{78F61BF0-E78B-809F-C068-D4FF1B629BC6}] C:\Users\Boris Kamikovski\AppData\Roaming\Ypeseh\cyhue.exe ()
O4 - HKCU..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe File not found
O4 - HKCU..\Run: [Ckoqi] rundll32.exe "C:\Users\Boris Kamikovski\AppData\Local\NENl60.dll",Startup File not found
O4 - HKLM..\RunOnce: [*srvproxyfat.exe] C:\Windows\srvproxyfat.exe (My© Systems)
O4 - Startup: C:\Users\Boris Kamikovski\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SolidWorks Task Scheduler Engine.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6...tall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.5...tall-1_5_0_22-windows-i586.cab (Java Plug-in 1.5.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6...tall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6...tall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B6082D92-2DFE-4FDC-8902-F2E79EE97869}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\progra~1\wi371a~1\datamngr\datamngr.dll) -c:\Program Files\Windows iLivid Toolbar\Datamngr\datamngr.dll (Bandoo Media, inc)
O20 - AppInit_DLLs: (c:\progra~1\wi371a~1\datamngr\iebho.dll) -c:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Bandoo Media, inc)
O20 - AppInit_DLLs: (avgrsstx.dll) -C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\ACER02.bmp
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\ACER02.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{9eb0f8ee-0bf9-11df-9343-000000000000}\Shell\AutoRun\command - "" = H:\Toshiba\more4you.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011/09/13 19:13:45 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2011/09/13 19:11:30 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Roaming\Ypeseh
[2011/09/13 19:11:30 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Roaming\Nyivpu
[2011/09/13 19:01:20 | 000,208,384 | ---- | C] (My© Systems) -- C:\Windows\srvproxyfat.exe
[2011/09/11 21:58:38 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Local\{F7FEE719-39D1-49E2-8270-50C78A092B0D}
[2011/09/04 15:13:06 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Roaming\Malwarebytes
[2011/09/04 15:11:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/09/04 10:07:19 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Roaming\Bandoo
[2011/09/04 10:06:15 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2011/09/03 22:19:14 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Roaming\vlc
[2011/09/03 22:18:40 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Local\Ilivid Player
[2011/09/03 22:16:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\{94D867E5-DFF5-4374-ADEE-C3F5BE97F03A}
[2011/09/03 22:16:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLivid
[2011/09/03 22:16:09 | 000,000,000 | ---D | C] -- C:\Program Files\iLivid
[2011/09/03 22:15:32 | 000,000,000 | ---D | C] -- C:\Program Files\Windows iLivid Toolbar
[2011/09/03 22:15:11 | 000,000,000 | ---D | C] -- C:\Users\Boris Kamikovski\AppData\Local\PackageAware
[2011/08/30 21:24:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/08/28 10:28:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010/01/26 00:20:32 | 000,172,032 | ---- | C] ( ) -- C:\Windows\System32\rsnp2uvc.dll
[2010/01/26 00:20:32 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll
[2010/01/25 15:46:11 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2007/06/24 21:57:57 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011/09/13 20:03:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1453682198-2142463134-1841898679-1003UA.job
[2011/09/13 19:28:05 | 003,446,950 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/13 19:28:05 | 001,122,246 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/13 19:23:00 | 000,000,338 | ---- | M] () -- C:\Windows\tasks\HP WEP.job
[2011/09/13 19:20:57 | 000,000,000 | ---- | M] () -- C:\Users\Boris Kamikovski\AppData\Local\Akimikere.bin
[2011/09/13 19:17:55 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/09/13 19:03:21 | 000,661,248 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavifw.avm
[2011/09/13 19:03:20 | 085,926,274 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/09/13 19:01:20 | 000,208,384 | ---- | M] (My© Systems) -- C:\Windows\srvproxyfat.exe
[2011/09/13 19:00:56 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/13 19:00:56 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/13 19:00:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/13 19:00:38 | 2143,735,808 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/12 20:00:47 | 207,549,231 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/09/12 19:56:03 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/09/12 03:03:00 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1453682198-2142463134-1841898679-1003Core.job
[2011/09/11 21:58:40 | 000,000,120 | ---- | M] () -- C:\Users\Boris Kamikovski\AppData\Local\Sgacite.dat
[2011/09/04 12:39:56 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2011/09/04 10:27:53 | 000,002,377 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/09/03 22:16:24 | 000,000,828 | ---- | M] () -- C:\Users\Public\Desktop\iLivid Download Manager.lnk
[2011/09/02 20:42:31 | 000,000,754 | ---- | M] () -- C:\Users\Boris Kamikovski\Desktop\WINDICT.lnk
[2011/09/02 20:21:07 | 006,480,092 | ---- | M] () -- C:\Users\Boris Kamikovski\Desktop\AndroidUsersGuide-2.3.pdf
[2011/09/02 19:57:50 | 006,157,885 | ---- | M] () -- C:\Users\Boris Kamikovski\Desktop\samsung_nexus_s_ug.pdf
[2011/08/15 12:10:24 | 000,119,626 | ---- | M] () -- C:\Users\Boris Kamikovski\Desktop\SIN NUMB.pdf

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011/09/13 19:11:11 | 000,000,338 | ---- | C] () -- C:\Windows\tasks\HP WEP.job
[2011/09/11 21:58:41 | 000,000,000 | ---- | C] () -- C:\Users\Boris Kamikovski\AppData\Local\Akimikere.bin
[2011/09/11 21:58:40 | 000,000,120 | ---- | C] () -- C:\Users\Boris Kamikovski\AppData\Local\Sgacite.dat
[2011/09/04 12:39:56 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011/09/03 22:16:24 | 000,000,828 | ---- | C] () -- C:\Users\Public\Desktop\iLivid Download Manager.lnk
[2011/09/02 20:42:31 | 000,000,754 | ---- | C] () -- C:\Users\Boris Kamikovski\Desktop\WINDICT.lnk
[2011/09/02 20:21:07 | 006,480,092 | ---- | C] () -- C:\Users\Boris Kamikovski\Desktop\AndroidUsersGuide-2.3.pdf
[2011/09/02 19:57:49 | 006,157,885 | ---- | C] () -- C:\Users\Boris Kamikovski\Desktop\samsung_nexus_s_ug.pdf
[2011/08/30 21:24:34 | 000,002,377 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/08/15 12:10:24 | 000,119,626 | ---- | C] () -- C:\Users\Boris Kamikovski\Desktop\SIN NUMB.pdf
[2010/01/27 17:40:44 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/01/27 13:47:14 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/01/27 13:46:23 | 000,249,856 | ---- | C] () -- C:\Users\Boris Kamikovski\AppData\Local\obeqepijo.dll
[2010/01/27 13:46:17 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/01/27 13:46:17 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010/01/27 07:02:08 | 000,000,000 | ---- | C] () -- C:\Windows\eDrawingOfficeAutomator.INI
[2010/01/27 06:17:56 | 000,027,136 | ---- | C] () -- C:\Users\Boris Kamikovski\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/01/26 17:31:12 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/01/26 00:57:21 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2010/01/26 00:57:21 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2010/01/26 00:23:26 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/01/26 00:20:33 | 001,749,376 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2010/01/26 00:20:33 | 000,028,032 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2010/01/26 00:20:32 | 001,749,376 | ---- | C] () -- C:\Windows\System32\snp2uvc.sys
[2010/01/26 00:20:32 | 000,028,032 | ---- | C] () -- C:\Windows\System32\sncduvc.sys
[2010/01/26 00:20:32 | 000,000,131 | ---- | C] () -- C:\Windows\System32\PidList.ini
[2010/01/26 00:20:32 | 000,000,131 | ---- | C] () -- C:\Windows\PidList.ini
[2010/01/25 15:46:54 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2010/01/25 15:46:11 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2010/01/25 15:45:41 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2009/01/15 22:27:26 | 000,011,264 | ---- | C] () -- C:\Windows\System32\atimuixx.dll
[2008/10/29 17:13:34 | 000,180,720 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2008/02/20 18:44:36 | 000,065,536 | ---- | C] () -- C:\Windows\System32\HPPLVS.dll
[2008/02/07 05:05:18 | 000,163,840 | ---- | C] () -- C:\Windows\System32\hppatusg01.dll
[2007/08/21 15:46:34 | 000,059,160 | ---- | C] () -- C:\Windows\System32\zlib.dll
[2007/06/25 00:28:34 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/06/24 21:57:56 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/06/24 21:49:23 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007/06/24 21:30:07 | 000,001,132 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2007/04/25 11:33:22 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/04/25 11:32:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/04/25 11:32:46 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/04/25 11:31:00 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/04/25 11:30:52 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/04/25 11:30:44 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2007/04/18 05:19:21 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2007/04/18 05:19:21 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2007/04/18 05:19:21 | 000,000,042 | ---- | C] () -- C:\Windows\PreLaunch.ini
[2006/12/25 10:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/11/13 00:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,510,584 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:33:01 | 003,446,950 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 06:33:01 | 001,122,246 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:25:21 | 000,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001/12/26 19:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/04 02:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 19:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 01:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2011/09/03 20:49:56 | 000,021,197 | ---- | M] ()(C:\Users\Boris Kamikovski\Desktop\????? ?? 412 ?? 418 ??????.docx) -- C:\Users\Boris Kamikovski\Desktop\ivana od 412 do 418 strane.docx
[2011/09/03 20:49:55 | 000,021,197 | ---- | C] ()(C:\Users\Boris Kamikovski\Desktop\????? ?? 412 ?? 418 ??????.docx) -- C:\Users\Boris Kamikovski\Desktop\ivana od 412 do 418 strane.docx
[2011/09/03 18:58:39 | 000,023,763 | ---- | M] ()(C:\Users\Boris Kamikovski\Desktop\??????? ????? ??? ??? 402 407.docx) -- C:\Users\Boris Kamikovski\Desktop\Matrice ivana pri deo 402 407.docx
[2011/09/03 18:58:38 | 000,023,763 | ---- | C] ()(C:\Users\Boris Kamikovski\Desktop\??????? ????? ??? ??? 402 407.docx) -- C:\Users\Boris Kamikovski\Desktop\Matrice ivana pri deo 402 407.docx
[2011/07/22 15:38:53 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\彈ή
[2011/07/22 15:38:53 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\彈ή
[2011/07/10 11:43:45 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\賈IJ
[2011/07/10 11:43:45 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\賈IJ
[2011/06/29 14:07:19 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\舰̋
[2011/06/29 14:07:19 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\舰̋
[2011/06/29 06:41:09 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?A) -- C:\Windows\System32\⽀Ă
[2011/06/29 06:41:09 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?A) -- C:\Windows\System32\⽀Ă
[2011/04/20 05:33:19 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?l) -- C:\Windows\System32\ľ
[2011/04/20 05:33:19 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?l) -- C:\Windows\System32\ľ
[2011/04/16 06:43:32 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?L) -- C:\Windows\System32\Ł
[2011/04/16 06:43:32 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?L) -- C:\Windows\System32\Ł
[2011/04/15 05:26:54 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?o) -- C:\Windows\System32\⥈ŏ
[2011/04/15 05:26:54 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?o) -- C:\Windows\System32\⥈ŏ
[2011/04/12 14:17:18 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?H) -- C:\Windows\System32\⻸Ħ
[2011/04/12 14:17:18 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?H) -- C:\Windows\System32\⻸Ħ
[2011/04/05 17:01:04 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?E) -- C:\Windows\System32\⽘Ě
[2011/04/05 17:01:04 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?E) -- C:\Windows\System32\⽘Ě
[2011/03/30 05:35:46 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?c) -- C:\Windows\System32\⻸ĉ
[2011/03/30 05:35:46 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?c) -- C:\Windows\System32\⻸ĉ
[2011/03/23 06:24:58 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?G) -- C:\Windows\System32\⣠Ģ
[2011/03/23 06:24:58 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?G) -- C:\Windows\System32\⣠Ģ
[2011/03/21 06:23:21 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?t) -- C:\Windows\System32\ﴸť
[2011/03/21 06:23:21 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?t) -- C:\Windows\System32\ﴸť
[2011/03/18 06:30:50 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\峀A
[2011/03/18 06:30:50 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\峀A
[2011/03/09 15:59:57 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?Š) -- C:\Windows\System32\僸Š
[2011/03/09 15:59:57 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?Š) -- C:\Windows\System32\僸Š
[2011/02/18 13:03:39 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\���Ŋ
[2011/02/18 13:03:39 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\���Ŋ
[2011/01/31 07:00:48 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\䃈Ƨ
[2011/01/31 07:00:48 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\䃈Ƨ
[2011/01/25 06:46:15 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\秐ƛ
[2011/01/25 06:46:15 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\秐ƛ
[2011/01/18 06:41:43 | 000,000,036 | ---- | M] ()(C:\Windows\System32\??) -- C:\Windows\System32\뵈Ƹ
[2011/01/18 06:41:43 | 000,000,036 | ---- | C] ()(C:\Windows\System32\??) -- C:\Windows\System32\뵈Ƹ
[2011/01/17 06:21:23 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?T) -- C:\Windows\System32\ꀨŢ
[2011/01/17 06:21:23 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?T) -- C:\Windows\System32\ꀨŢ
[2011/01/12 06:39:37 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?N) -- C:\Windows\System32\匀Ń
[2011/01/12 06:39:37 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?N) -- C:\Windows\System32\匀Ń
[2011/01/11 06:37:47 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?h) -- C:\Windows\System32\ĥ
[2011/01/11 06:37:47 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?h) -- C:\Windows\System32\ĥ
[2010/07/13 15:26:07 | 000,246,938 | ---- | M] ()(C:\Users\Boris Kamikovski\Contacts\Documents\????? ?????.jpg) -- C:\Users\Boris Kamikovski\Contacts\Documents\Lična karta.jpg
[2010/07/13 14:24:13 | 000,246,938 | ---- | C] ()(C:\Users\Boris Kamikovski\Contacts\Documents\????? ?????.jpg) -- C:\Users\Boris Kamikovski\Contacts\Documents\Lična karta.jpg
[2010/03/11 11:46:06 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?c) -- C:\Windows\System32\쇀ĉ
[2010/03/11 11:46:06 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?c) -- C:\Windows\System32\쇀ĉ
[2010/02/17 10:46:45 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?s) -- C:\Windows\System32\魐ş
[2010/02/17 10:46:45 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?s) -- C:\Windows\System32\魐ş

< End of report >
 
0

Goran Mijailovic

Član broj: 12684
Poruke: 6907



+437 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa15.09.2011. u 00:30 - pre 153 meseci
Citat:
radi se o sledecem virusu ako neko ima neko resenje pomagajte ljudi

W32/SmallTroj.VPCG


Nasao sam ova uputstva za ciscenje
http://misterlifes.blogspot.co...-cleanremove-w32smalltroj.html
http://www.istanto.net/remove-w32smalltroj-vpcg.html
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa15.09.2011. u 07:13 - pre 153 meseci
@Sun Tzung


Pokreni OTL

U beli okvir prozora gde piše Custom Scans/Fixes iskopirati sledeći tekst:

Code:


:OTL
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..keyword.URL: "http://www.searchqu.com/web?sr...p;systemid=406&sr=0&q="
O2 - BHO: (Loader Class) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O33 - MountPoints2\{9eb0f8ee-0bf9-11df-9343-000000000000}\Shell\AutoRun\command - "" = H:\Toshiba\more4you.exe

:Commands
[EmptyTemp]
[resethosts]
[Reboot] 


Klikni taster Run Fix;


Da li je resen problem?
 
0

Sun Tzung
Kamikovski Boris
Srpski Krstur

Član broj: 72747
Poruke: 5
*.dsl.bell.ca.



Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa16.09.2011. u 00:56 - pre 153 meseci
Hmmmm delimicno, nemam vise njega kao glavnog alata za pretrazivanje tako da sada koristim google kao glavni pretrazivac i nalazim stranice, ali kada startujem u firefox novi tab opet mi se javi. Sta sada dalje da se radi?
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Molim za pomoc u vezi otklanjanja kul virusa16.09.2011. u 08:25 - pre 153 meseci
Ponovi isto sa ovom skriptom

Code:


:OTL
FF - prefs.js..extensions.enabledItems: {F7FEE719-39D1-49E2-8270-50C78A092B0D}:1.9.1
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: CLSID key missing. File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F7FEE719-39D1-49E2-8270-50C78A092B0D}: C:\Users\Boris Kamikovski\AppData\Local\{F7FEE719-39D1-49E2-8270-50C78A092B0D} [2011/09/11 21:58:38 | 000,000,000 | ---D | M]
[2011/09/11 21:58:38 | 000,000,000 | ---D | M] (XULRunner) -- C:\USERS\BORIS KAMIKOVSKI\APPDATA\LOCAL\{F7FEE719-39D1-49E2-8270-50C78A092B0D}
O2 - BHO: (Loader Class) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O20 - AppInit_DLLs: (c:\progra~1\wi371a~1\datamngr\datamngr.dll) -c:\Program Files\Windows iLivid Toolbar\Datamngr\datamngr.dll (Bandoo Media, inc)
O20 - AppInit_DLLs: (c:\progra~1\wi371a~1\datamngr\iebho.dll) -c:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Bandoo Media, inc)

:Files
C:\Users\Boris Kamikovski\AppData\Roaming\Bandoo
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLivid
C:\Program Files\iLivid
C:\Program Files\Windows iLivid Toolbar

:Commands
[EmptyTemp]
[Reboot]



Klikni taster Run Fix
 
0

[es] :: Zaštita :: Molim za pomoc u vezi otklanjanja kul virusa
(Zaključana tema (lock), by Aleksandar Maletic)

[ Pregleda: 4329 | Odgovora: 11 ] > FB > Twit

Postavi temu

Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.