Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Pomoc oko zastite

[es] :: Zaštita :: Pomoc oko zastite
(Zaključana tema (lock), by Aleksandar Maletic)
Strane: 1 2 3 4

[ Pregleda: 15551 | Odgovora: 66 ] > FB > Twit

Postavi temu

Autor
Pretraga teme: Traži
Markiranje Štampanje RSS

Vodomar

Član broj: 145510
Poruke: 288



+37 Profil

icon Re: Pomoc oko zastite07.05.2012. u 14:46 - pre 146 meseci
@adjals ćao!

ovo je primer čistog mbam loga (Malwarebytes)

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.10.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
ZZZZZZZ :: EEEEEEE-PC [administrator]

10.4.2012 11:56:45
mbam-log-2012-04-10 (11-56-45).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 313620
Time elapsed: 27 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

što znači da kada očistite sa ovim programom "viškove" ponovite skeniranje sve dok ne dobijete rezultat kao moj.Naravno ispoštujte do kraja proceduru koju Vam je kolega preporučio.
Drugo,kada budete prelazili na drugi antivirus morate deinstalirati ESET tj. njegove zaostatke.ESET ima posebnu alatku koja se pokreće iz safe moda.
Treće da li ažurirate Windows?Kako je moguće da još imate Internet Explorer 6? Molim instalirajte IE8.
Zašto mbam prijavljuje FAT32 sistem?<to nije pitanje za vas već za kolege>
srećno :)
If you didn't go looking for it, don't install it. If you do install it, make sure you update it. And if
you no longer need it, remove it.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 12:38 - pre 146 meseci

Cao i pozz..
Skenirala sam ponovo preko Malware bytes i rezultat je ok. Instalirala sam DRWeb Cureit i skenirala sam jednom i posle ponovo kompletno skeniranje. Bilo je nekih Trojanaca, Adware ..neki su izleceni, a ono sto nije moglo da se izleci npr. Trojan MulDrop i Siggen izbrisala sam ih..Posle ponovnog skeniranja preko DRWeb ostalo je nesto sto mi nije jasno tj. na disku C onaj SwetIm sto mi je instaliran preko Eset-a pa pokazuje u iyvestaju pogresna putanja...Pokusala sam da nadjem putanju i da je skeniram, ali bezusepesno...Pa mi reci jel to ok..ili moram i dalje da nadjem tu putanju i da je skeniram da proverim ima li zaraye....Napomena: imam li kakve veze sa tim ono sto sam odcekirala u Malware bytes (bila je stavka i za SweetIM, da ybog toga ne moye da nadje putanju i ovaj SweetIm?

Evo sada cu pokusati da denistaliram ESet Nod 32, skinula sam aplikaciju, i pokusala da udjem u safe mode, ali nije hteo pc da mi prihvati, samo izlista i ponovo izbaci onaj prozor gde ponudi ulazak u safe mode, i normalni windows. Jel moze da se izvrsi deistalacija u normalnom widnowsu, jel kada kliknem na download Eset uninslal .exe i izaberem run da bih ga instalirala , otvori mi mali prozorcic u safe mode, jel mogu preko ovog prozora da odradim, deinstalciju? Pokusala sam ali pokazuje error na kraju.

Ovo mi stoji u safe modu, kada pokusam da se ulogujem i samo izlista stranu i ponovo vrati na pocetnu, i kada opet idem na safe mode i enter, isto
"We apologize for the inconvenience, but windows did not start successfully . A recent hardware or software change might have caused this . If your computer stopped responding restarted unexpectedly, or was automatically shut down to protect your files and folders, choose last known Good Configuration to revert to the most recent settings that worked. If a previous startup attempt was interrupted due to a power failure or because the power or reset buttos was pressed, or if you aren`t sure what caused the problem chose start windows normaly."

Napravila sam DrWeb Cureit u zip formatu, ali kako da ga upload-ujem ovde nemam opciju za upload?
A izvestaj mi je za Malware bytes ok...samo iygleda nije ga memorisao, pa skeinracu ponovo i prikacicu ga za koji trenutak
 
0

Dashkes

Član broj: 90973
Poruke: 845



+27 Profil

icon Re: Pomoc oko zastite08.05.2012. u 12:49 - pre 146 meseci
Upload-ujte ovde pa prikačite link.
Sve mi više liči da je taj ESET falš. Videćemo po logu sada. :)
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 13:21 - pre 146 meseci
Evo izvestaja za Malware Bytes
Sve je ok....Jel treba one stavke sto su u karantinu da izbrisem i odstranim potpuno ima nekih 48?
I Evo saljem zip fajl Drweb Cureit....
Malwarebytes Anti-Malware (Proba) 1.61.0.1400
www.malwarebytes.org

Verzija baze: v2012.05.08.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Administrator :: NN-B33A0C856812 [administrator]

Zaštita: Omogućena

8.5.2012 13:39:07
mbam-log-2012-05-08 (13-39-07).txt

Način skeniranja: Kompletno skeniranje
Omogućene opcije skeniranja: Memorija | Automatsko pokretanje | Registar | Datotečni sistem | Heuristika/Dodatno | Heuristika/Shuriken | PUP | PUM
Onemogućene opcije skeniranja: P2P
Skeniranih objekata 218110
Proteklo vreme 37 minuta(e), 45 sekundi

Detektovani procesi u memoriji: 0
(Maliciozne stavke nisu pronađene)

Detektovani moduli u memoriji: 0
(Maliciozne stavke nisu pronađene)

Detektovani ključevi u registru: 0
(Maliciozne stavke nisu pronađene)

Detektovane vrednosti u registru: 0
(Maliciozne stavke nisu pronađene)

Detektovani podaci u registru: 0
(Maliciozne stavke nisu pronađene)

Detektovane fascikle: 0
(Maliciozne stavke nisu pronađene)

Detektovane datoteke: 0
(Maliciozne stavke nisu pronađene)

(kraj)
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 13:25 - pre 146 meseci
I evo linka za DrWeb CureIt zip format.,..
Ovde ima ona stavka oko SweetIm koju nisam mogla naci i koja mi je sumnjiva....

http://ge.tt/2c3dTNH/v/0?c
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 13:30 - pre 146 meseci
Moguce. ko zna, mada mi je Eset Nod32 instalirao decko koji mi je menjao napajanje i uradio kompletnu reinstalaciju program, ne verujem da je namerno instalirao fals antivirus, mada ko zna....Sve je moguce..
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Pomoc oko zastite08.05.2012. u 13:34 - pre 146 meseci
Uradi ovako:

Preuzmi OTL na desktop http://oldtimer.geekstogo.com/OTL.exe

Dvoklikom pokreni OTL;

Klikni Run Scan;

Po završetku skeniranja, izveštaj ce se otvoriti u Notepad-u.

Prilozi log.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 14:01 - pre 146 meseci



Evo ovog izvestaja, za OTL.exe. Sorrz ya ovaj explorer 6, sada cu instalirati 8, inace ne koristim explorer pa nisam ni obratila paznju.


OTL logfile created on: 8.5.2012 14:42:44 - Run 1
OTL by OldTimer - Version 3.2.42.3 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000081A | Country: Serbia and Montenegro | Language: SRL | Date Format: d.M.yyyy

511,53 Mb Total Physical Memory | 55,98 Mb Available Physical Memory | 10,94% Memory free
1,16 Gb Paging File | 0,12 Gb Available in Paging File | 10,10% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 9,32 Gb Free Space | 47,73% Space Free | Partition Type: NTFS
Drive D: | 38,13 Gb Total Space | 23,50 Gb Free Space | 61,63% Space Free | Partition Type: FAT32
Drive E: | 18,65 Gb Total Space | 12,38 Gb Free Space | 66,36% Space Free | Partition Type: NTFS

Computer Name: NN-B33A0C856812 | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2012.05.08 14:41:45 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012.05.01 18:48:04 | 003,905,920 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2012.05.01 12:18:01 | 000,180,648 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe
PRC - [2012.04.28 04:07:02 | 001,224,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.04.04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.02.18 08:59:28 | 000,282,648 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\saUI.exe
PRC - [2012.02.16 14:53:22 | 000,635,808 | ---- | M] (Zbshareware Lab) -- C:\Program Files\USB Disk Security\USBGuard.exe
PRC - [2012.02.15 01:03:14 | 024,246,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Administrator\Application Data\Dropbox\bin\Dropbox.exe
PRC - [2012.01.13 12:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2010.12.09 12:45:58 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2010.01.15 14:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2003.05.05 09:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
PRC - [2002.12.31 14:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2002.09.20 17:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2012.05.08 14:35:12 | 000,052,736 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012.05.08 14:35:10 | 000,065,024 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012.05.06 16:38:27 | 000,117,760 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012.05.06 16:38:26 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2012.04.28 04:07:01 | 000,444,400 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\ppgooglenaclpluginchrome.dll
MOD - [2012.04.28 04:06:59 | 003,915,248 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\pdf.dll
MOD - [2012.04.28 04:05:34 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\avutil-51.dll
MOD - [2012.04.28 04:05:33 | 000,220,672 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\avformat-53.dll
MOD - [2012.04.28 04:05:32 | 001,747,456 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\avcodec-53.dll
MOD - [2012.04.28 03:09:18 | 008,743,584 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\gcswf32.dll
MOD - [2002.12.31 14:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2002.12.31 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012.05.05 14:44:32 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.04.24 21:48:54 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.02.29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.01.13 12:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2011.09.22 13:03:30 | 000,974,944 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2002.09.20 17:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - [2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.03.26 23:45:14 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2011.08.09 15:24:52 | 000,154,136 | ---- | M] (ESET) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2011.08.04 10:20:38 | 000,103,112 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2011.08.04 10:20:36 | 000,118,104 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2011.07.22 18:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.12 23:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.02.11 12:59:18 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32)
DRV - [2010.01.29 12:40:02 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2009.10.26 08:33:40 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2008.09.24 12:40:22 | 004,122,368 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008.04.14 02:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2007.06.18 14:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006.05.03 18:50:42 | 001,540,608 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2003.07.02 10:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1)
DRV - [2002.12.31 14:00:00 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear...searchTerms}&crg=4.0003002

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/...=aus&qkw=%s&tbid=60049
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://howzit.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-zw
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A6 70 B5 CE 36 00 CD 01 [binary data]
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={...c=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redir...6F-0BA5-4330-B3AC-7539279C2851
IE - HKCU\..\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}: "URL" = http://www.crawler.com/search/...w={searchTerms}&tbid=60049
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/Resu...rchSource=4&ctid=CT3156285
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear...searchTerms}&crg=4.0003002
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..browser.search.defaultthis.engineName: "AlphaMarket Customized Web Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "AlphaMarket Customized Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2922774&SearchSource=13"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..keyword.URL: "http://search.conduit.com/Resu...2774&SearchSource=2&q="
FF - prefs.js..network.proxy.backup.ftp: "79.9.190.134"
FF - prefs.js..network.proxy.backup.ftp_port: 8090
FF - prefs.js..network.proxy.backup.socks: "79.9.190.134"
FF - prefs.js..network.proxy.backup.socks_port: 8090
FF - prefs.js..network.proxy.backup.ssl: "79.9.190.134"
FF - prefs.js..network.proxy.backup.ssl_port: 8090
FF - prefs.js..network.proxy.ftp: "79.9.190.134"
FF - prefs.js..network.proxy.ftp_port: 8090
FF - prefs.js..network.proxy.http: "79.9.190.134"
FF - prefs.js..network.proxy.http_port: 8090
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "79.9.190.134"
FF - prefs.js..network.proxy.socks_port: 8090
FF - prefs.js..network.proxy.ssl: "79.9.190.134"
FF - prefs.js..network.proxy.ssl_port: 8090
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.conduit.com/Resu...chSource=3&q={searchTerms}"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2922774&SearchSource=13"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\firefox\ [2012.05.06 14:45:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012.03.24 21:52:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.04.24 21:48:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.11 23:37:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2002.01.01 02:41:25 | 000,000,000 | ---D | M]

[2002.01.01 02:31:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012.05.06 15:50:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions
[2012.05.06 01:59:15 | 000,000,000 | ---D | M] (AlphaMarket Community Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{018da686-db92-473a-bacb-fe006e046644}
[2012.04.06 00:38:47 | 000,000,000 | ---D | M] (AddThis) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
[2012.04.22 12:22:16 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012.04.26 21:15:30 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012.04.24 21:49:12 | 000,000,000 | ---D | M] (TheGiftBar Community Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{efc46a17-82ed-46ea-b94a-a08c86bb4fbe}
[2012.05.06 15:50:50 | 000,000,000 | ---D | M] ("I Want This") -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\[email protected]
[2012.04.19 17:31:23 | 000,000,000 | ---D | M] (Dictionary Switcher) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\[email protected]
[2012.05.06 15:50:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\staged
[2012.04.28 14:31:23 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\[email protected]
[2012.04.28 14:31:23 | 000,002,324 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\askcom.xml
[2012.01.31 18:13:32 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\conduit.xml
[2012.05.06 14:15:06 | 000,003,933 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\sweetim.xml
[2012.03.12 13:16:36 | 000,001,492 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\web-search-powered-by-google.xml
[2012.05.03 17:57:53 | 000,002,103 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\wot-safe-search.xml
[2012.05.05 14:04:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.10 19:54:04 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.04.30 22:33:33 | 000,048,215 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\{3E9BB2A7-62CA-4EFA-A4E6-F6F6168A652D}.XPI
[2012.03.09 06:51:05 | 000,413,408 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\{C45C406E-AB73-11D8-BE73-000A95BE3B12}.XPI
[2012.04.22 12:35:47 | 000,075,325 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\[email protected]
[2012.03.12 13:11:47 | 000,207,020 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\[email protected]
[2012.04.04 15:32:37 | 000,024,227 | R--- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\[email protected]
[2012.03.12 13:24:56 | 000,075,861 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PUNTJ7Q9.DEFAULT\EXTENSIONS\[email protected]
[2012.05.06 14:45:44 | 000,000,000 | ---D | M] (Crawler Toolbar) -- C:\PROGRAM FILES\CRAWLER\FIREFOX
[2012.03.24 21:52:18 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2012.04.24 21:48:54 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.03.17 19:21:52 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2007.07.26 13:05:16 | 000,001,329 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.bak
[2007.07.26 13:05:16 | 000,001,329 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.xml
[2012.03.17 19:21:52 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Conduit (Enabled)
CHR - default_search_provider: search_url = http://search.conduit.com/Resu...chSource=49&ctid=CT3156285
CHR - default_search_provider: suggest_url = http://search.conduit.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.168\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Google Translate = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.3.1_0\
CHR - Extension: SEO Webmaster = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aecgdcflhcipeadlanejdjkegbckcllk\1.0_0\
CHR - Extension: Text URL Linker = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aegfbpchoheaflicfmggkmlmcccpjpgd\1.2.3_0\
CHR - Extension: Website and SEO Analysis = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ajkomeiemllejmopbbjjngpmmikfedad\1.1.2_0\
CHR - Extension: Awesome Screenshot: Capture & Annotate = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.3.4_0\
CHR - Extension: WOT = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.2.13_0\
CHR - Extension: Webpage Screenshot = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\5.4.8.3_0\
CHR - Extension: Alexa Traffic Rank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel\1.1.0_0\
CHR - Extension: Weebly - Website Builder = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb\1.0.4_0\
CHR - Extension: Screen Capture (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cpngackimfmofbokmjmljamhdncknpmg\5.0.4_0\
CHR - Extension: Screen Shot = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\deododdhljppcmgjcjocekbekbnaeibl\0.1_0\
CHR - Extension: SEO Site Tools = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\diahigjngdnkdgajdbpjdeomopbpkjjc\2.91_0\
CHR - Extension: PageRank Detector = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ehmpbkffphncmdoohmjhmcngghekgbnf\2.4.1_0\
CHR - Extension: AddToAny - Share, Bookmark = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffpgijchhhkhnokafdeklpllijgnbche\2.2.2_0\
CHR - Extension: SiteAdvisor = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: Google Analytics Opt-out Add-on (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh\0.9.0_0\
CHR - Extension: Create Link = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gcmghdmnkfdbncmnmlkkglmnnhagajbm\0.1.0_0\
CHR - Extension: Andrew@ChromeFans = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn\4.7.6_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: TheGiftBar = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jlekgbnpliiooolaecbflcnddofbpaae\2.3.4.2_0\
CHR - Extension: WordPress Stats = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kfkplpbeijhlpnlccijpjpggabgmbopg\2.0.7_0\
CHR - Extension: Copy Link Text = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lhdokmjpoambonhlpgcodobebebjdeil\0.5.1_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0\
CHR - Extension: Spark@PageRankStatus = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lndiecnlfaibiffoeijpjnblnmdlcpog\1.0.2_0\
CHR - Extension: Google Input Tools (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mclkkofklkfljcocdinagocijmpgbhab\1.2.1.0_0\
CHR - Extension: AutoPager Chrome = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mmgagnmbebdebebbcleklifnobamjonh\0.7.1.4_0\
CHR - Extension: SEO Button by Tarry = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nngpnhamefdgmpehoffkbabfihlmdlhk\1.2.8.2_0\
CHR - Extension: SEO for Chrome = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oangcciaeihlfmhppegpdceadpfaoclj\0.9.5_0\
CHR - Extension: Traffic Rank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oipgijiceofkdddeceikmdjledafnehk\1.0_0\
CHR - Extension: Google Quick Scroll = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc\1.82_0\
CHR - Extension: Black & Gray = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\opngpggidjbhmmlapgcmcedfgblofagi\1.1.2_0\
CHR - Extension: WebStore developer = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pdehhmojflfecajmhhcgjbfkcilnnbml\1.0.2.1_0\
CHR - Extension: Blog This! = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pengoopmcjnbflcjbmoeodbmoflcgjlk\0.2_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: PageRank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pneoplpmnpjoioldpodoljacigkahohc\2.1.2_0\
CHR - Extension: Website SEO Analysis and Reviews = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pogddddicfmodhknddnpmpamknembkhb\1.2_0\
CHR - Extension: Google Translate = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.3.1_0\
CHR - Extension: SEO Webmaster = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aecgdcflhcipeadlanejdjkegbckcllk\1.0_0\
CHR - Extension: Text URL Linker = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aegfbpchoheaflicfmggkmlmcccpjpgd\1.2.3_0\
CHR - Extension: Website and SEO Analysis = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ajkomeiemllejmopbbjjngpmmikfedad\1.1.2_0\
CHR - Extension: Awesome Screenshot: Capture & Annotate = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.3.4_0\
CHR - Extension: WOT = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.2.13_0\
CHR - Extension: Webpage Screenshot = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\5.4.8.3_0\
CHR - Extension: Alexa Traffic Rank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel\1.1.0_0\
CHR - Extension: Weebly - Website Builder = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb\1.0.4_0\
CHR - Extension: Screen Capture (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cpngackimfmofbokmjmljamhdncknpmg\5.0.4_0\
CHR - Extension: Screen Shot = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\deododdhljppcmgjcjocekbekbnaeibl\0.1_0\
CHR - Extension: SEO Site Tools = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\diahigjngdnkdgajdbpjdeomopbpkjjc\2.91_0\
CHR - Extension: PageRank Detector = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ehmpbkffphncmdoohmjhmcngghekgbnf\2.4.1_0\
CHR - Extension: AddToAny - Share, Bookmark = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffpgijchhhkhnokafdeklpllijgnbche\2.2.2_0\
CHR - Extension: SiteAdvisor = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: Google Analytics Opt-out Add-on (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh\0.9.0_0\
CHR - Extension: Create Link = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gcmghdmnkfdbncmnmlkkglmnnhagajbm\0.1.0_0\
CHR - Extension: Andrew@ChromeFans = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn\4.7.6_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: TheGiftBar = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jlekgbnpliiooolaecbflcnddofbpaae\2.3.4.2_0\
CHR - Extension: WordPress Stats = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kfkplpbeijhlpnlccijpjpggabgmbopg\2.0.7_0\
CHR - Extension: Copy Link Text = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lhdokmjpoambonhlpgcodobebebjdeil\0.5.1_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0\
CHR - Extension: Spark@PageRankStatus = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lndiecnlfaibiffoeijpjnblnmdlcpog\1.0.2_0\
CHR - Extension: Google Input Tools (by Google) = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mclkkofklkfljcocdinagocijmpgbhab\1.2.1.0_0\
CHR - Extension: AutoPager Chrome = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mmgagnmbebdebebbcleklifnobamjonh\0.7.1.4_0\
CHR - Extension: SEO Button by Tarry = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nngpnhamefdgmpehoffkbabfihlmdlhk\1.2.8.2_0\
CHR - Extension: SEO for Chrome = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oangcciaeihlfmhppegpdceadpfaoclj\0.9.5_0\
CHR - Extension: Traffic Rank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oipgijiceofkdddeceikmdjledafnehk\1.0_0\
CHR - Extension: Google Quick Scroll = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc\1.82_0\
CHR - Extension: Black & Gray = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\opngpggidjbhmmlapgcmcedfgblofagi\1.1.2_0\
CHR - Extension: WebStore developer = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pdehhmojflfecajmhhcgjbfkcilnnbml\1.0.2.1_0\
CHR - Extension: Blog This! = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pengoopmcjnbflcjbmoeodbmoflcgjlk\0.2_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: PageRank = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pneoplpmnpjoioldpodoljacigkahohc\2.1.2_0\
CHR - Extension: Website SEO Analysis and Reviews = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pogddddicfmodhknddnpmpamknembkhb\1.2_0\

O1 HOSTS File: ([2012.04.05 02:48:14 | 000,000,761 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe (Zbshareware Lab)
O4 - HKLM..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe (Zbshareware Lab)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [chromium] C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Dropbox.lnk = C:\Documents and Settings\Administrator\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 159
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: bancaintesabeograd.com ([online] https in Trusted sites)
O16 - DPF: {73848533-39E1-49F1-9363-28054268C094} https://online.bancaintesabeograd.com/RetailDLL/FSINT9.dll (FileInterface Class)
O16 - DPF: {76326493-E84F-4D4B-939C-1E07B50037F2} https://online.bancaintesabeograd.com/RetailDLL/SGCMSCCD.DLL (ProxyModule Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5D6A7446-5E3A-4114-A70D-F547B419083B}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002.01.01 01:34:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\aUtoPlaY\cOmmAnD - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\AutoRun\command - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\eXpLore\CommaNd - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\Open\Command - "" = G:\spwgr.pif
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2012.05.08 14:42:02 | 000,595,456 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.05.07 21:38:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\DoctorWeb
[2012.05.07 12:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2012.05.07 12:00:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.05.07 12:00:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012.05.07 12:00:14 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.05.07 12:00:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.05.06 16:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2012.05.06 16:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
[2012.05.06 16:32:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2012.05.06 16:32:37 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012.05.06 14:29:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Zbshareware Lab
[2012.05.06 14:14:40 | 000,000,000 | ---D | C] -- C:\Program Files\SweetIM
[2012.05.06 14:14:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SweetIM
[2012.05.06 14:13:04 | 001,263,344 | ---- | C] (ESET) -- C:\Documents and Settings\Administrator\Desktop\eset_nod32_antivirus_live_installer.exe
[2012.05.06 11:04:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Pictures
[2012.05.05 10:14:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\AbiWord Word Processor
[2012.05.04 22:23:31 | 000,110,592 | ---- | C] (InstantDigitalProducts.com) -- C:\Documents and Settings\Administrator\Desktop\ArticleRewriter.exe
[2012.05.02 11:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\FreeFileViewer
[2012.05.02 11:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FreeFileViewer
[2012.05.02 11:34:22 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2012.05.02 11:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2012.05.02 11:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\GRETECH
[2012.04.30 21:12:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Article Submitter 4Pro
[2012.04.30 21:12:13 | 000,000,000 | ---D | C] -- C:\Program Files\Article Submitter 4Pro
[2012.04.28 12:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\Hotlist-Search Buzz
[2012.04.28 12:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hotlist-Search Buzz
[2012.04.26 03:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Arthur_A._Evseev_(artevse
[2012.04.26 03:47:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Article Tool Chest
[2012.04.26 03:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\ArticleToolChest
[2012.04.25 18:32:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hotlist-Theme-Buzz
[2012.04.25 18:32:17 | 000,000,000 | ---D | C] -- C:\Program Files\Hotlist-Theme-Buzz
[2012.04.25 17:51:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\ubot
[2012.04.25 17:50:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Xenocode
[2012.04.24 21:48:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012.04.24 21:48:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2012.04.21 11:49:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Easy Auto Spinner
[2012.04.21 11:49:23 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Auto Spinner
[2012.04.21 11:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Spin Writer Pro
[2012.04.21 11:45:20 | 000,000,000 | ---D | C] -- C:\Program Files\Spin Writer Pro
[2012.04.20 20:15:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\FileTypeAssistant
[2012.04.20 20:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Free Text Pad
[2012.04.20 20:11:05 | 000,000,000 | ---D | C] -- C:\Program Files\Free Text Pad
[2012.04.20 20:05:20 | 000,000,000 | ---D | C] -- C:\Program Files\File Type Assistant
[2012.04.20 20:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\FreeFileViewer
[2012.04.20 19:48:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
[2012.04.20 19:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012.04.19 18:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\AbiSuite
[2012.04.19 18:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\AbiWord
[2012.04.19 13:42:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Article sender
[2012.04.19 13:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\Article sender
[2012.04.19 13:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Easy Homepage Creator V.2.0 DEMO
[2012.04.19 13:14:28 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Homepage Creator V.2.0 DEMO
[2012.04.19 13:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\mresreg
[2012.04.19 13:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Meine HomepageFIX2012 Seiten
[2012.04.19 13:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mein HomepageFIX2012 Backup
[2012.04.19 13:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HomepageFIX2012
[2012.04.19 13:08:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\IN-MEDIAKG
[2012.04.19 13:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Meine HomepageFIX2012 Projekte
[2012.04.19 13:08:36 | 000,000,000 | ---D | C] -- C:\Program Files\HomepageFIX2012
[2012.04.19 13:08:02 | 000,000,000 | ---D | C] -- C:\Program Files\mresreg
[2012.04.18 17:53:47 | 000,000,000 | ---D | C] -- C:\Program Files\tinySpell
[2012.04.18 17:53:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\tinySpell
[2012.04.10 19:52:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Skype
[2012.04.10 19:52:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2012.04.10 19:52:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2012.05.08 14:44:04 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.05.08 14:41:45 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012.05.08 14:32:41 | 000,000,394 | ---- | M] () -- C:\WINDOWS\tasks\FreeFileViewerUpdateChecker.job
[2012.05.08 14:32:33 | 000,000,410 | ---- | M] () -- C:\WINDOWS\tasks\ProgramUpdateCheck.job
[2012.05.08 14:32:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.05.08 14:32:19 | 536,449,024 | -HS- | M] () -- C:\hiberfil.sys
[2012.05.08 14:23:03 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1788223648-1644491937-500UA.job
[2012.05.08 12:23:09 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1788223648-1644491937-500Core.job
[2012.05.07 12:00:17 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012.05.07 12:00:17 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012.05.06 19:48:33 | 004,456,448 | ---- | M] () -- C:\Documents and Settings\Administrator\NTUSER.bak
[2012.05.06 16:32:43 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012.05.06 14:50:26 | 000,441,392 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.05.06 14:50:26 | 000,071,328 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.05.06 14:28:08 | 000,000,763 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\USB Disk Security.lnk
[2012.05.06 14:28:08 | 000,000,745 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\USB Disk Security.lnk
[2012.05.06 14:13:14 | 001,263,344 | ---- | M] (ESET) -- C:\Documents and Settings\Administrator\Desktop\eset_nod32_antivirus_live_installer.exe
[2012.05.06 11:28:35 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Easy Auto Spinner.lnk
[2012.05.06 11:27:46 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Spin Writer Pro.lnk
[2012.05.05 14:44:32 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.05.05 14:44:32 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.05.05 13:48:15 | 005,966,984 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\HSS-2.52-install-plain-380-mi2.exe
[2012.05.05 13:36:20 | 000,004,507 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.05.05 13:33:37 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012.05.05 11:59:45 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.05.02 13:40:17 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2012.05.02 11:43:32 | 000,134,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.05.02 11:36:14 | 000,000,772 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FreeFileViewer.lnk
[2012.05.02 11:36:14 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\FreeFileViewer.lnk
[2012.05.01 12:22:19 | 000,002,344 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2012.05.01 12:22:19 | 000,002,322 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.04.30 22:32:28 | 000,000,099 | ---- | M] () -- C:\WINDOWS\ANS2000.INI
[2012.04.30 22:32:25 | 000,000,020 | -H-- | M] () -- C:\WINDOWS\akebook.ini
[2012.04.30 22:32:25 | 000,000,004 | -H-- | M] () -- C:\WINDOWS\a3kebook.ini
[2012.04.30 21:12:15 | 000,001,664 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Article Submitter 4Pro .lnk
[2012.04.30 21:12:15 | 000,001,646 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Article Submitter 4Pro .lnk
[2012.04.30 01:25:27 | 001,767,541 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Article-Backup-2012-04-30_01-25-23-.zip
[2012.04.30 01:09:45 | 000,001,633 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Hotlist-Search Buzz.lnk
[2012.04.30 01:09:45 | 000,001,615 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Hotlist-Search Buzz.lnk
[2012.04.26 03:47:31 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Article Tool Chest.lnk
[2012.04.26 03:47:31 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Article Tool Chest.lnk
[2012.04.26 02:42:46 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012.04.26 02:42:46 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012.04.25 18:32:18 | 000,001,626 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Hotlist-Theme-Buzz.lnk
[2012.04.25 18:32:18 | 000,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Hotlist-Theme-Buzz.lnk
[2012.04.25 18:31:03 | 000,000,679 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Shortcut to 7z920.exe.lnk
[2012.04.25 17:46:16 | 000,000,821 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Wise Registry Cleaner.lnk
[2012.04.25 17:46:16 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Wise Registry Cleaner.lnk
[2012.04.22 20:10:35 | 000,002,495 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Office Excel 2003.lnk
[2012.04.20 20:11:07 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Free Text Pad.lnk
[2012.04.19 18:55:48 | 000,000,976 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Shortcut to abiword-setup-2.9.2.lnk
[2012.04.19 14:01:58 | 000,000,206 | ---- | M] () -- C:\WINDOWS\EurekaLog.ini
[2012.04.19 13:42:31 | 000,001,555 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Article sender.lnk
[2012.04.19 13:14:35 | 000,001,735 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Easy Homepage Creator DEMO.lnk
[2012.04.19 13:12:12 | 000,000,991 | ---- | M] () -- C:\WINDOWS\page.ini
[2012.04.19 13:12:12 | 000,000,140 | ---- | M] () -- C:\WINDOWS\page.kon
[2012.04.19 13:08:49 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\HomepageFIX 2012.lnk
[2012.04.17 18:21:36 | 000,000,020 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\New WinRAR archive.rar
[2012.04.16 13:33:58 | 000,002,497 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Microsoft Office Word 2003.lnk
[2012.04.15 11:57:59 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012.04.09 11:16:10 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.04.08 23:29:35 | 000,001,052 | ---- | M] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Dropbox.lnk
[2012.04.08 23:29:35 | 000,001,052 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Dropbox.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012.05.07 12:00:17 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012.05.07 12:00:17 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012.05.06 16:32:43 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012.05.06 14:28:08 | 000,000,763 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\USB Disk Security.lnk
[2012.05.05 13:47:20 | 005,966,984 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\HSS-2.52-install-plain-380-mi2.exe
[2012.05.02 11:36:22 | 000,000,394 | ---- | C] () -- C:\WINDOWS\tasks\FreeFileViewerUpdateChecker.job
[2012.05.01 12:18:10 | 000,001,052 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1788223648-1644491937-500UA.job
[2012.05.01 12:18:06 | 000,001,000 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1788223648-1644491937-500Core.job
[2012.04.30 22:32:25 | 000,000,099 | ---- | C] () -- C:\WINDOWS\ANS2000.INI
[2012.04.30 22:32:25 | 000,000,020 | -H-- | C] () -- C:\WINDOWS\akebook.ini
[2012.04.30 22:32:25 | 000,000,004 | -H-- | C] () -- C:\WINDOWS\a3kebook.ini
[2012.04.30 21:12:15 | 000,001,664 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Article Submitter 4Pro .lnk
[2012.04.30 21:12:15 | 000,001,646 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Article Submitter 4Pro .lnk
[2012.04.30 01:25:26 | 001,767,541 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Article-Backup-2012-04-30_01-25-23-.zip
[2012.04.28 12:29:25 | 000,001,633 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Hotlist-Search Buzz.lnk
[2012.04.28 12:29:25 | 000,001,615 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Hotlist-Search Buzz.lnk
[2012.04.26 03:47:31 | 000,000,728 | ----
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Pomoc oko zastite08.05.2012. u 14:31 - pre 146 meseci
Deinstaliraj:

McAfee Security Scan
USB Disk Security

Da sam na tvom mestu, ja bih i taj Google Chrome kompletno izbrisao i instalirao ponovo, znaci deinstalacija i brisanje njegovog foldera. ne znma tacno gde se nalazi, ne koristim ga. Ako neko ima informaciju neka javi, znaci kompletno brisanje Chrome.

Umesto USB Disk Security-a koji nista ne stiti, osim sto jede memoriju, instaliraj ovaj program http://amf.mycity.rs/mcshield/


Idemo dalje:


Pokreni OTL

U beli okvir prozora gde piše Custom Scans/Fixes iskopiraj sledeci tekst:

Code:
:OTL
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear...searchTerms}&crg=4.0003002
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redir...6F-0BA5-4330-B3AC-7539279C2851
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/Resu...rchSource=4&ctid=CT3156285
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear...searchTerms}&crg=4.0003002
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..browser.search.defaultthis.engineName: "AlphaMarket Customized Web Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "AlphaMarket Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2922774&SearchSource=13"
FF - prefs.js..keyword.URL: "http://search.conduit.com/Resu...2774&SearchSource=2&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.conduit.com/Resu...chSource=3&q={searchTerms}"
[2012.05.06 01:59:15 | 000,000,000 | ---D | M] (AlphaMarket Community Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{018da686-db92-473a-bacb-fe006e046644}
[2012.04.24 21:49:12 | 000,000,000 | ---D | M] (TheGiftBar Community Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\{efc46a17-82ed-46ea-b94a-a08c86bb4fbe}
[2012.04.28 14:31:23 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\extensions\[email protected]
[2012.01.31 18:13:32 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\conduit.xml
[2012.05.06 14:15:06 | 000,003,933 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\puntj7q9.default\searchplugins\sweetim.xml
CHR - default_search_provider: Conduit (Enabled)
CHR - default_search_provider: search_url = http://search.conduit.com/Resu...chSource=49&ctid=CT3156285
CHR - default_search_provider: suggest_url = http://search.conduit.com/
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\aUtoPlaY\cOmmAnD - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\AutoRun\command - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\eXpLore\CommaNd - "" = G:\spwgr.pif
O33 - MountPoints2\{ef055801-fe4a-11d5-bddc-00112f3399d1}\Shell\Open\Command - "" = G:\spwgr.pif

:Commands
[purity]
[emptytemp]
[resethosts]
[Reboot]


Klikni taster Run Fix;

Log koji dobiješ iskopiraj ovde u poruci.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 16:02 - pre 146 meseci
Sada cu ovo odraditi, ali pokusavam da deinstaliram USB Disk security. Isla sam preko Control Panela pa Add or remove program and windows components i pronasla USB Disk Security i isla na remove ali ne prihvata, po kliku na remove ostaje ponovo u Add or remove program and windows components.

Ovo mi izlazi obavestenje.

" uninstall has detected that USB DIsk security is currently runing. Please close all instancess of it now , then click ok to continue, or Cencel to exit."

Ima li USB Disk security moyda isto neku apllikaciju za deinstalciju?

MC Shield sam instalirala.
 
0

Aleksandar Maletic
System administrator

Moderator
Član broj: 235887
Poruke: 1138
77.243.22.*



+89 Profil

icon Re: Pomoc oko zastite08.05.2012. u 16:36 - pre 146 meseci
USB Disk Security nije hteo da se deinstalira jer je i dalje aktivan među procesima.
Prisni Ctrl+Shift+Esc, kada ti se otvori Task Manager selektuj karticu Processes.
Pronađi na listi proces, selektuj ga i klikni na End Process. Sada pokušaj da deinstaliraš program ponovo.
A wolf is weaker than a lion and a tiger, but doesn't play in the circus.
 
0

kristi1

Član broj: 151211
Poruke: 2012
*.dynamic.isp.telekom.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Pomoc oko zastite08.05.2012. u 16:51 - pre 146 meseci
Imas ga i u startup-u, tu ga iskljuci.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 19:53 - pre 146 meseci
U start-u nece isla sam na Uninstall i klik pojavila mi se ikonica sa pitanjem

Are you sure you want to completely remove USB disk security and all of its component?

kliknula sam yes

i onda je izasla drugi prozor u kome stoji tekst i zuti znak opasnosti

" uninstall has detected that USB Disk security is currently runing. Please close all instancess of it now , then click ok to continue, or Cencel to exit."

Kliknula sam ok, ali ne reaguje samo zatreperi a na censel reaguje
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 20:03 - pre 146 meseci
U task menageru...postoji USBGuard.exe stavka jel to treba da se oznaci i ide na End process? Zauzima samo 770 k memorije nesto mnogo malo,pa nisam sigurna jel je to USB DIsk security da ne iskljucim nesto pogresno?
 
0

Vodomar

Član broj: 145510
Poruke: 288



+37 Profil

icon Re: Pomoc oko zastite08.05.2012. u 20:32 - pre 146 meseci
da gasi to
If you didn't go looking for it, don't install it. If you do install it, make sure you update it. And if
you no longer need it, remove it.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 20:49 - pre 146 meseci
Ovaj proyor mi izlazi sa zutim ynakom opasnosti kada oynacim USBGuard.exe i kliknem na end process

WARNING: Terminating a process can cause udnesired results induding loss of data and system instability. The process will not bi given the chance to save its state or data before it is terminated.
Are you sure you want to terminate the process?
i stoji ponudjena oopcija yes ili no


Jel ovo treba da se pojavi ili je neki problem?
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 20:58 - pre 146 meseci
Iskljucila sam USB DIsk Security nista se nije desilo, nikkavo obavestenje mi nije iyaslo, ynaci da je sve ok.
Sada mi racunar stiti ovaj MC Shield. Sada cu pokrenuti OTL. i ubaciti onaj tekst.
 
0

Vodomar

Član broj: 145510
Poruke: 288



+37 Profil

icon Re: Pomoc oko zastite08.05.2012. u 21:18 - pre 146 meseci
Molim te trenutno nemoj ništa da instaliraš samo očisti komp i deinstaliraj te programe.Posebno ukloni USB disk i ESET.Vidi da li ti sada radi ESET-ov link za deinstalaciju iz start menija ili kontrol panela - ako ne radi vidi da li možeš sada ući u safe mod.
kada sve to deinstaliraš(usb,eset,mcafee...) prati kako ti se ponaša komp.tvoji problemi ne potiču od nekog jakog malware-a koliko od kombinacije neuskladjenog softvera na mašini i nepažljivog surfovanja.zato polako sa instaliranjem programa-prati kako ti reaguje komp.







[Ovu poruku je menjao Vodomar dana 08.05.2012. u 22:37 GMT+1]
If you didn't go looking for it, don't install it. If you do install it, make sure you update it. And if
you no longer need it, remove it.
 
0

Obavestenje

Član broj: 302186
Poruke: 22
*.adsl.verat.net.



+10 Profil

icon Re: Pomoc oko zastite08.05.2012. u 22:56 - pre 146 meseci
Probaj da skeniras kompjuter sa Kaspersky TDSSKiller a instalacija je besplatna.
 
0

adjals

Član broj: 171330
Poruke: 34
*.adsl.eunet.rs.



+2 Profil

icon Re: Pomoc oko zastite08.05.2012. u 23:59 - pre 146 meseci
Eset , Mcaffe i UsbDisk security je instaliran pre jedno mesec, mesec ipo dana kada sam menjala napajanje na racunaru, i instalirao ih je decko koji mi je menjao napajanje i completno vrsio reinstalaciju celog programa. I kada mi je stigao racunar posle popravke, instaliran je bio Chrome i SKype koji nije hteo raditi, ali nisam pridavala tome znacaj, zato sto sam smatrala da je verovatno nije dovrsio lepo instalaciju, pa sam
to obrisala i instalirala ponovo Chrome i SKype.

Probala sam malo pre da Pokrenem OTL i ubacila sam onaj tekst, ali dosta dugo skeniranje vrsi, preko 2h i na kraju se pojavi Not responding i ne moye da odradi do kraja skeniranje.
Da li da odradim ovo skeniranje, i koliko ono otprilike moye da traje?

Ok. USB Disk sam dinstalirala, Nod ne moze iz Control panela i Start menija, kada se klikne na Uninstall ne reaguje uopste. Znaci i Mcafe da deinstaliram.
 
0

[es] :: Zaštita :: Pomoc oko zastite
(Zaključana tema (lock), by Aleksandar Maletic)
Strane: 1 2 3 4

[ Pregleda: 15551 | Odgovora: 66 ] > FB > Twit

Postavi temu

Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.