Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Provera HiJack This loga

[es] :: Zaštita :: Provera HiJack This loga

[ Pregleda: 2385 | Odgovora: 7 ] > FB > Twit

Postavi temu Odgovori

Autor
Pretraga teme: Traži
Markiranje Štampanje RSS

ivi1985
Smed.Palanka

Član broj: 87788
Poruke: 25
*.dynamic.isp.telekom.rs.



+8 Profil

icon Provera HiJack This loga29.08.2010. u 18:34 - pre 166 meseci
Zamolio bih ako mozete da proverite ovaj log i sta je potrebno obrisati:



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:11, on 29.8.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TrustPort\Antivirus\bin\avcom.exe
C:\Program Files (x86)\Common Files\TrustPort\bin\tptray.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

O4 - HKLM\..\Run: [AntivirusCommunicatorAgent] "C:\Program Files (x86)\TrustPort\Antivirus\bin\avcom.exe"
O4 - HKLM\..\Run: [TrustPortTray] "C:\Program Files (x86)\Common Files\TrustPort\Bin\tptray.exe"
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: TrustPort Antivirus On-Access Scanner Agent (avas_service) - TrustPort, a.s. - C:\Program Files (x86)\TrustPort\Antivirus\bin\avas.exe
O23 - Service: TrustPort Antivirus Management Agent (avmgma_service) - TrustPort, a.s. - C:\Program Files (x86)\TrustPort\Antivirus\bin\avmgma.exe
O23 - Service: TrustPort Antivirus Service Scanner Provider (avss_service) - TrustPort, a.s. - C:\Program Files (x86)\TrustPort\Antivirus\bin\avss.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrustPort Personal GTW (gozer) - TrustPort, a.s. - C:\Program Files (x86)\TrustPort\Antivirus\bin\gozer.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TrustPort Personal Firewall Daemon (tppfdmn) - Unknown owner - C:\Program Files (x86)\TrustPort\Personal Firewall\bin\tppfdmn.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: TrustPort DataShredder Wipe Service (wipesrv) - TrustPort, a.s. - C:\Program Files (x86)\TrustPort\DataShredder\bin\wipesrv.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 4422 bytes


[Ovu poruku je menjao ivi1985 dana 29.08.2010. u 20:46 GMT+1]
 
Odgovor na temu

goran9888

Član broj: 171536
Poruke: 235
79.101.230.*



+18 Profil

icon Re: Provera HiJack This loga29.08.2010. u 23:23 - pre 166 meseci
-Download-uj sledeci program na Desktop: http://www.pchelpforum.com/downloads1/PCHFSA/pchfsa.exe
-Pokreni dvoklikom program (fajl: pchfsa.exe)
-Klikni na dugme Analyze, da pokrenes dijagnostiku sistema
-Na zavrsetku procesa otvorice se prozor sa log-om; klik na Save da sacuvas log
-Logovi se nalaze na Desktopu u folderu PCHF System Analyzer
-Okaci mi HTML log-ove (dva log-a) iz foldera PCHF System Analyzer/HTML u sledecoj poruci.
 
Odgovor na temu

ivi1985
Smed.Palanka

Član broj: 87788
Poruke: 25
*.dynamic.isp.telekom.rs.



+8 Profil

icon Re: Provera HiJack This loga30.08.2010. u 13:36 - pre 166 meseci
Ne mogu da pokrenem ovaj program stalno mi izbacuje ovo:


Prikačeni fajlovi
Untitled.jpg Untitled.jpg - 25.08k
 
Odgovor na temu

goran9888

Član broj: 171536
Poruke: 235
217.16.130.*



+18 Profil

icon Re: Provera HiJack This loga30.08.2010. u 13:55 - pre 166 meseci
Ok, precicemo na proverenu alternativu.


- Skini sledeci program na Desktop: http://oldtimer.geekstogo.com/OTL.exe
- Dvoklikom pokreni OTL sa Desktop-a
- Klik na Run Scan
- Nakon zavresenog skeniranja izvestaj ce se otvoriti u Notepad-u. Prekopiraj mi sadrzaj tog izvestaja u sledecoj poruci.
 
Odgovor na temu

ivi1985
Smed.Palanka

Član broj: 87788
Poruke: 25
*.dynamic.isp.telekom.rs.



+8 Profil

icon Re: Provera HiJack This loga30.08.2010. u 14:10 - pre 166 meseci
Evo izvestaja:


OTL logfile created on: 30.8.2010 15:05:00 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Users\Zoran\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000241a | Country: Srbija | Language: SRM | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 64,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 45,13 Gb Total Space | 26,84 Gb Free Space | 59,48% Space Free | Partition Type: NTFS
Drive D: | 15,93 Gb Total Space | 14,96 Gb Free Space | 93,92% Space Free | Partition Type: NTFS
Drive E: | 4,21 Gb Total Space | 1,15 Gb Free Space | 27,39% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ZORAN-PC
Current User Name: Zoran
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010.08.30 15:04:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Zoran\Desktop\OTL.exe
PRC - [2010.08.24 01:01:47 | 000,972,856 | ---- | M] (Google Inc.) -- C:\Users\Zoran\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010.08.23 11:01:20 | 000,307,528 | ---- | M] () -- C:\Program Files (x86)\TrustPort\Personal Firewall\Bin\tppfdmn.exe
PRC - [2010.08.23 11:01:08 | 000,344,608 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avmgma.exe
PRC - [2010.08.23 10:56:26 | 000,203,320 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\DataShredder\Bin\wipesrv.exe
PRC - [2010.08.23 10:56:18 | 000,809,528 | ---- | M] () -- C:\Program Files (x86)\Common Files\TrustPort\bin\tptray.exe
PRC - [2010.08.23 10:55:50 | 000,379,448 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\Antivirus\bin\gozer.exe
PRC - [2010.08.23 10:55:34 | 000,231,992 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avss.exe
PRC - [2010.08.23 10:55:26 | 000,653,880 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avcom.exe
PRC - [2010.08.23 10:55:22 | 000,387,640 | ---- | M] (TrustPort, a.s.) -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avas.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010.08.30 15:04:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Zoran\Desktop\OTL.exe
MOD - [2009.07.24 11:06:41 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16400_none_4209f94e2b866170\comctl32.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV:64bit: - [2010.07.29 22:27:24 | 002,287,488 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV:64bit: - [2010.01.29 23:18:20 | 000,357,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009.07.14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009.07.14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010.08.23 11:01:20 | 000,307,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\TrustPort\Personal Firewall\bin\tppfdmn.exe -- (tppfdmn)
SRV - [2010.08.23 11:01:08 | 000,344,608 | ---- | M] (TrustPort, a.s.) [Auto | Running] -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avmgma.exe -- (avmgma_service)
SRV - [2010.08.23 10:56:26 | 000,203,320 | ---- | M] (TrustPort, a.s.) [Auto | Running] -- C:\Program Files (x86)\TrustPort\DataShredder\Bin\wipesrv.exe -- (wipesrv)
SRV - [2010.08.23 10:55:50 | 000,379,448 | ---- | M] (TrustPort, a.s.) [On_Demand | Running] -- C:\Program Files (x86)\TrustPort\Antivirus\bin\gozer.exe -- (gozer)
SRV - [2010.08.23 10:55:34 | 000,231,992 | ---- | M] (TrustPort, a.s.) [On_Demand | Running] -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avss.exe -- (avss_service)
SRV - [2010.08.23 10:55:22 | 000,387,640 | ---- | M] (TrustPort, a.s.) [On_Demand | Running] -- C:\Program Files (x86)\TrustPort\Antivirus\bin\avas.exe -- (avas_service)
SRV - [2010.03.18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\vmnetadapter.sys -- (VMnetAdapter)
DRV:64bit: - File not found [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\Prot6Flt.sys -- (Prot6Flt)
DRV:64bit: - File not found [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\bdfsfltr.sys -- (bdfsfltr)
DRV:64bit: - [2010.08.23 11:01:58 | 000,036,776 | ---- | M] (TrustPort, a.s.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tpsec.sys -- (tpsec)
DRV:64bit: - [2010.08.23 11:00:36 | 000,049,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tdifw.sys -- (tdifw)
DRV:64bit: - [2010.08.23 11:00:32 | 000,047,672 | ---- | M] (TrustPort, a.s.) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\avasdmft.sys -- (avasdmft) TrustPort Antivirus On-Access Scanner (W2K/XP)
DRV:64bit: - [2009.11.10 13:53:16 | 000,058,384 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2009.11.10 13:53:00 | 000,056,336 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009.07.14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009.07.14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009.07.14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009.07.14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.19 00:17:08 | 000,034,152 | R--- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GearAspiWDM)
DRV:64bit: - [2009.03.01 23:05:32 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2007.06.25 09:42:22 | 000,108,072 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV:64bit: - [2007.04.09 10:09:46 | 000,012,288 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2010.08.23 11:00:42 | 000,031,800 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TrustPort\Personal Firewall\Bin\tppfhook.sys -- (TPPFHOOK)
DRV - [2010.08.23 11:00:36 | 000,019,000 | ---- | M] () [Kernel | System | Running] -- C:\Program Files (x86)\TrustPort\Personal Firewall\Bin\tdimapper.sys -- (tdimapper)
DRV - [2010.08.23 11:00:34 | 000,018,488 | ---- | M] () [Kernel | System | Running] -- C:\Program Files (x86)\TrustPort\DataShredder\Bin\dsio.sys -- (dsio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E0 A9 AE 80 55 3D CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2010.08.10 19:46:02 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [AntivirusCommunicatorAgent] C:\Program Files (x86)\TrustPort\Antivirus\bin\avcom.exe (TrustPort, a.s.)
O4 - HKLM..\Run: [TrustPortTray] C:\Program Files (x86)\Common Files\TrustPort\Bin\tptray.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6...tall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6...tall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6...tall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6...tall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.0.1
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corp.)
O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010.08.30 15:04:41 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Zoran\Desktop\OTL.exe
[2010.08.29 13:26:19 | 000,000,000 | ---D | C] -- C:\Users\Zoran\Documents\PCHand Media Converter
[2010.08.26 16:39:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010.08.26 16:13:44 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Roaming\Windows Live Writer
[2010.08.26 16:13:44 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Local\Windows Live Writer
[2010.08.26 16:13:44 | 000,000,000 | ---D | C] -- C:\Users\Zoran\Documents\My Weblog Posts
[2010.08.26 16:12:15 | 000,000,000 | ---D | C] -- C:\Users\Zoran\Tracing
[2010.08.26 15:49:05 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2010.08.26 15:49:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2010.08.26 15:49:05 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2010.08.26 15:49:05 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2010.08.26 15:49:04 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2010.08.26 15:49:04 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2010.08.26 15:49:04 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2010.08.26 15:47:49 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Local\Windows Live
[2010.08.25 15:55:20 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010.08.24 13:12:38 | 000,047,672 | ---- | C] (TrustPort, a.s.) -- C:\Windows\SysNative\drivers\avasdmft.sys
[2010.08.24 13:12:34 | 000,036,776 | ---- | C] (TrustPort, a.s.) -- C:\Windows\SysNative\drivers\tpsec.sys
[2010.08.22 21:46:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TrustPort
[2010.08.21 19:24:52 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2010.08.21 19:00:42 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Roaming\IObit
[2010.08.21 19:00:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2010.08.20 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TrustPort
[2010.08.20 13:52:03 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Local\ElevatedDiagnostics
[2010.08.18 15:33:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2010.08.18 14:26:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSSOAP
[2010.08.18 14:26:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MSSoap
[2010.08.16 17:34:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.08.16 17:34:08 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.08.16 17:28:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.08.16 17:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.08.16 16:23:33 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010.08.16 16:23:33 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010.08.16 16:23:33 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010.08.16 16:23:33 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010.08.11 20:14:03 | 000,000,000 | ---D | C] -- C:\Windows\FltMgr
[2010.08.11 13:43:55 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.08.11 13:43:54 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010.08.11 13:43:53 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010.08.11 13:43:48 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.08.11 13:43:47 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.08.11 13:43:47 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.08.11 13:43:47 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.08.11 13:43:47 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.08.11 13:43:47 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.08.11 13:43:39 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.08.11 13:43:39 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.08.11 13:43:37 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.08.10 20:06:33 | 000,000,000 | ---D | C] -- C:\Users\Zoran\Documents\Magic Briefcase
[2010.08.10 19:42:04 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Capicom.dll
[2010.08.10 16:46:42 | 000,107,368 | R--- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2010.08.10 16:46:41 | 000,126,312 | R--- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\GEARAspi64.dll
[2010.08.10 16:46:41 | 000,034,152 | R--- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2010.08.09 22:02:09 | 001,864,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2010.08.09 21:59:51 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.08.09 17:05:23 | 002,851,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll.backup
[2010.08.09 17:05:21 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeservice.dll.backup
[2010.08.09 17:05:15 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll.backup
[2010.08.09 17:05:11 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll.backup
[2010.08.09 17:05:00 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxtheme.dll.backup
[2010.08.07 14:19:08 | 000,000,000 | ---D | C] -- C:\Users\Zoran\AppData\Roaming\Feedreader
[2010.08.07 14:19:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FeedReader30
[2010.08.03 14:54:59 | 028,655,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shell32.dll.stp
[2010.08.03 10:27:06 | 000,281,360 | ---- | C] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2010.08.03 10:27:04 | 000,356,592 | ---- | C] (COMODO) -- C:\Windows\SysNative\guard64.dll
[2010.08.03 10:26:34 | 000,020,864 | ---- | C] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010.08.30 15:06:40 | 002,359,296 | ---- | M] () -- C:\Users\Zoran\NTUSER.DAT
[2010.08.30 15:04:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Zoran\Desktop\OTL.exe
[2010.08.30 14:25:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.08.30 12:47:33 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.08.30 12:47:33 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.08.30 12:42:41 | 000,000,328 | -H-- | M] () -- C:\Windows\tasks\TrustPort Updater.job
[2010.08.30 12:42:28 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.08.30 12:42:28 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.08.30 12:42:23 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.08.30 12:42:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.08.30 12:41:18 | 004,580,891 | -H-- | M] () -- C:\Users\Zoran\AppData\Local\IconCache.db
[2010.08.29 11:18:00 | 000,000,412 | ---- | M] () -- C:\Windows\tasks\AWC Update.job
[2010.08.23 11:01:58 | 000,036,776 | ---- | M] (TrustPort, a.s.) -- C:\Windows\SysNative\drivers\tpsec.sys
[2010.08.23 11:00:36 | 000,049,208 | ---- | M] () -- C:\Windows\SysNative\drivers\tdifw.sys
[2010.08.23 11:00:32 | 000,047,672 | ---- | M] (TrustPort, a.s.) -- C:\Windows\SysNative\drivers\avasdmft.sys
[2010.08.21 19:00:48 | 000,001,254 | ---- | M] () -- C:\Users\Zoran\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare.lnk
[2010.08.20 14:56:03 | 000,019,683 | ---- | M] () -- C:\Users\Zoran\Documents\Untitled 1.odt
[2010.08.18 17:12:24 | 000,000,632 | RHS- | M] () -- C:\Users\Zoran\ntuser.pol
[2010.08.16 19:32:50 | 000,065,776 | ---- | M] () -- C:\Users\Zoran\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.08.15 16:23:19 | 000,547,185 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010.08.14 13:53:09 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.08.14 13:53:09 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.08.13 18:51:06 | 000,734,810 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010.08.12 17:55:17 | 000,356,592 | ---- | M] (COMODO) -- C:\Windows\SysNative\guard64.dll
[2010.08.12 17:55:13 | 000,281,360 | ---- | M] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2010.08.12 17:55:08 | 000,020,864 | ---- | M] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2010.08.11 20:32:11 | 000,008,627 | ---- | M] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2010.08.11 20:14:03 | 000,000,572 | ---- | M] () -- C:\Windows\win.ini
[2010.08.11 16:12:34 | 000,301,136 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.08.10 19:46:02 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010.08.09 22:14:50 | 000,025,214 | ---- | M] () -- C:\Windows\Icon_5.ico
[2010.08.09 21:33:40 | 000,025,214 | ---- | M] () -- C:\Windows\Icon_4.ico
[2010.08.09 18:31:34 | 000,025,214 | ---- | M] () -- C:\Windows\Icon_3.ico
[2010.08.09 17:34:05 | 000,025,214 | ---- | M] () -- C:\Windows\Icon_2.ico
[2010.08.09 17:05:11 | 002,755,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2010.08.09 17:04:55 | 000,025,214 | ---- | M] () -- C:\Windows\Icon_1.ico
[2010.08.01 18:59:57 | 001,137,934 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\Cat.DB
[2010.07.31 21:41:56 | 000,001,155 | ---- | M] () -- C:\Users\Zoran\Application Data\Microsoft\Internet Explorer\Quick Launch\BS.Player FREE.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010.08.30 12:40:48 | 000,000,328 | -H-- | C] () -- C:\Windows\tasks\TrustPort Updater.job
[2010.08.24 13:12:38 | 000,049,208 | ---- | C] () -- C:\Windows\SysNative\drivers\tdifw.sys
[2010.08.21 19:03:54 | 000,000,412 | ---- | C] () -- C:\Windows\tasks\AWC Update.job
[2010.08.21 19:03:53 | 000,000,400 | ---- | C] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.08.21 19:00:48 | 000,001,254 | ---- | C] () -- C:\Users\Zoran\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare.lnk
[2010.08.20 14:56:01 | 000,019,683 | ---- | C] () -- C:\Users\Zoran\Documents\Untitled 1.odt
[2010.08.18 17:10:24 | 000,000,632 | RHS- | C] () -- C:\Users\Zoran\ntuser.pol
[2010.08.13 18:51:06 | 000,734,810 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010.08.11 21:55:30 | 000,547,185 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010.08.11 20:32:11 | 000,008,627 | ---- | C] () -- C:\Windows\SysWow64\PAV_FOG.OPC
[2010.08.09 22:14:50 | 000,025,214 | ---- | C] () -- C:\Windows\Icon_5.ico
[2010.08.09 21:33:40 | 000,025,214 | ---- | C] () -- C:\Windows\Icon_4.ico
[2010.08.09 18:31:34 | 000,025,214 | ---- | C] () -- C:\Windows\Icon_3.ico
[2010.08.09 17:34:05 | 000,025,214 | ---- | C] () -- C:\Windows\Icon_2.ico
[2010.08.09 17:04:55 | 000,025,214 | ---- | C] () -- C:\Windows\Icon_1.ico
[2010.08.09 17:04:53 | 000,111,104 | ---- | C] () -- C:\Windows\SysWow64\Uharc.exe
[2010.08.09 17:04:53 | 000,008,636 | ---- | C] () -- C:\Windows\SysWow64\modifype.exe
[2009.08.02 18:41:58 | 000,000,035 | ---- | C] () -- C:\Windows\SysWow64\ELopesoft.DLL
[2009.08.02 18:41:30 | 000,000,020 | ---- | C] () -- C:\Windows\SysWow64\sysdate82.ini
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2010.07.16 21:50:43 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms
[2010.07.16 21:50:43 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms
[2010.07.16 21:50:43 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms
[2010.07.16 21:50:43 | 000,262,144 | ---- | M] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\坝Gꊮ䘉
[2010.07.16 21:50:43 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TM.blf) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TM.blf
[2010.07.16 21:50:43 | 000,005,120 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\坝Gꊮ䘉.LOG1
[2010.07.16 21:50:42 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms
[2010.07.16 21:50:42 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TM.blf) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed31-9112-11df-ad7d-00e04d2e5018}.TM.blf
[2010.07.16 21:50:41 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms
[2010.07.16 21:50:41 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms
[2010.07.16 21:50:41 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000002.regtrans-ms
[2010.07.16 21:50:41 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TMContainer00000000000000000001.regtrans-ms
[2010.07.16 21:50:41 | 000,262,144 | ---- | C] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\坝Gꊮ䘉
[2010.07.16 21:50:41 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TM.blf) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TM.blf
[2010.07.16 21:50:41 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\?G??{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TM.blf) -- C:\Windows\SysWow64\坝Gꊮ䘉{33d7ed2a-9112-11df-ad7d-00e04d2e5018}.TM.blf
[2010.07.16 21:50:41 | 000,005,120 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\坝Gꊮ䘉.LOG1
[2010.07.16 21:50:41 | 000,000,000 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\坝Gꊮ䘉.LOG2
[2010.07.16 21:50:41 | 000,000,000 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\坝Gꊮ䘉.LOG2
< End of report >
 
Odgovor na temu

goran9888

Član broj: 171536
Poruke: 235
*.dynamic.isp.telekom.rs.



+18 Profil

icon Re: Provera HiJack This loga30.08.2010. u 17:08 - pre 166 meseci
Racunar ti je cist sto se malware-a tice.

-Da li imas nekih konkretnih problema sa racunarom?
 
Odgovor na temu

ivi1985
Smed.Palanka

Član broj: 87788
Poruke: 25
*.dynamic.isp.telekom.rs.



+8 Profil

icon Re: Provera HiJack This loga30.08.2010. u 17:45 - pre 166 meseci
Ne, nemam nikakvih problema, samo sam zeleo da dobijem potvrdu da je sve ok od vas koji ste maheri u ovoj oblasti.

Da li bi trebalo, eventualno, da obrisem nesto sa racunara, nesto sto nije potrebno.

@goran9888
hvala za trud koji si ulozio ,
 
Odgovor na temu

Aleksandar Maletic
System administrator

Moderator
Član broj: 235887
Poruke: 1138
*.mbb.telenor.rs.



+89 Profil

icon Re: Provera HiJack This loga30.08.2010. u 18:42 - pre 166 meseci
1.) Skrati Startup listu sto vise, deinstaliraj razne toolbar-ove i bespotrebne programe, odradi defragment hard diska...
2.) Skini CCleaner http://download.cnet.com/ccleaner/?tag=mncol , ocisti pomocu njega history i neupotrebljive registry kljuceve...
3.) Ne preteruj sa gomilom zastitnih programa, uz antivirus i firewall ti je sasvim dovoljan dodatak Malwarebytes' Anti-Malware-a, nista vise...
A wolf is weaker than a lion and a tiger, but doesn't play in the circus.
 
Odgovor na temu

[es] :: Zaštita :: Provera HiJack This loga

[ Pregleda: 2385 | Odgovora: 7 ] > FB > Twit

Postavi temu Odgovori

Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.