mozemo da proverimo jel imas viruse..
skini,update-uj pa skeniraj sa ovim programima
http://www.malwarebytes.org/mbam.php
http://www.spybot.com/en/download/
mogao bi i sa ovim programima da sredis HDD
http://www.iolo.com/downloads.aspx

(ovaj zadnji program se placa,ti skini verziju od 30 dana)

pa javi rezultate (jel su AM i AS nasli nesto,jel ti bolje radi komp posle SM..itd)
;)

da li je dovoljno skeniranje samo c: particije, jer mi je toliko sistem usporen, da skeniranje hddova bi bas potrajalo...
..a i virus ako imam, to je od usb memorije, koji se preneo samo prilikom windows prepoznavanja uredjaja,.. jer sa te memorije nista nisam skidao, niti aktivirao...

stvarno je cudno situacija... sistem zbog hddova (brzine prenosa, citanja/pisanja) je neverovatno usporen, a ako je sistem u mirovanju, nema nikakvih dodatnih (nezeljenih) aktivnosti... hocu reci, mislim da nije procesor opterecen nekim aktivnostima vec samo brizna citanja/pisanja je neverovatno spora.. kao da kontroleri nesto ne rade kako treba...

pa ako ti je lakse odradi sve iz safe moda..
samo uradi uppdate ovih programa iz normalnog moda (mozes to i iz safe moda with network..mada..)
skeniraj onu particiju gde se nalazi windows (mada ova dva progrma ce to brzo odraditi)
ovo nisu AntiVirus programi
jedan je AntiMalware (skenira sistemske processe,registry...)
a drugi je AntiSpaware program (pomocni programi pored AntiVirus-a)
odradi i full sa sistem mehanick programom...pa javi rezultate

a ako ti je preveliko mucenje sve ovo gore,uradi sledece:
(bilo bi bolje kad bi prvo ovo gore odradio)

Skines HiJackThis program sa ovog linka
http://www.majorgeeks.com/download5554.html
ubacis ga u folder na desktopu
Promenis naziv foldera i programa u bilo sta drugo (npr. elite.exe, ili icE.the.gAd.exe..kako god)
pokrenes program,izaberes opciju "Do a system scan and save the logfile"
na kraju skeniranja program ce izbaciti tekstualni log,ti taj log kopiraj ovde (copy / paste)


srecno

prvo, hvala ti sto si uopste odgovorio na moj post...

e sad, onaj anti-malware program je nasao jedan problem i resio ga...
...antispyware je nasao samo cookies i pobrisao ih... ali i dalje isti problem...

log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:03:09, on 9.11.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20733)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\MATLAB7\webserver\bin\win32\matlabserver.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\GIGABYTE\GEST\GEST.exe
C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\Program Files\GetRight\getright.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\GIGABYTE\GEST\GSvr.exe
C:\Program Files\Total Commander 7.0\TOTALCMD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Opera\Opera.exe
C:\HJT\HJT.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 72.247.116.10:80
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GEST] C:\Program Files\GIGABYTE\GEST\RUN.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: WordWeb Pro.lnk = C:\Program Files\WordWeb\wweb32.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\GEST\GSvr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLAB7\webserver\bin\win32\matlabserver.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe


meni se cini sve ok, ali je problem ostao.. tako da mi se cini da se ipak nesto desilo hdd ili biosu ili ploci ili ne znam cemu...
...dakle, citanje i pisanje po hdd je extremno sporo i zbog toga mi je ceo sistem neverovatno spor (ali neverovatno sporo)
imas li neki savet? ...i posto ovo izgleda nije virus, gde bih mogao postaviti pitanje za svoj problem?

da..hm...sto se tice HjT-a..ovo bi trebalo popraviti

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 72.247.116.10:80
O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file)

mada..ove stavke neprave problem... (neaktivni unosi,bitdefender toolbar i URL...ma bezveze...)
najverovatnije ti crkava HDD ili mozda zeza nesto BIOS...nedaj boze da maticna zeza... ...
pozajmi hard od druga pa vidi jel onda normalno radi komp ili jos bolje
testiraj hard disk sa hirenom..a u bios-u idi na load setup defaults (za svaki slucaj)
mozda ram mem zeza..sta znam (proveri ram i u bios-u)
temu bolje da postavis ovde (moderator ce me ispraviti ako gresim)
http://www.elitesecurity.org/f43-PC-Konfiguracije
ovde nije malware u pitanju,mozemo nastaviti sa testovima (da guramo dublje) mada mislim da nema potrebe za tim
dok netestiras komp...nemozes znati sta nevalja
jbga..srecno

Proveri za svaki slučaj da nije isključeno keširanje za hard disk kao i koji je režim prenosa podataka.
Device manager, IDE kontroler

hvala vam... otkrio sa problem, ipak je u promeni nacina transfera... ne znam kako, ali je odjednom postao PIO mode...

...moracu malo da potrazim po forumu o tome, ali mislim da ova prica nije za pod 'zastita', tako da moze biti zakljucana i obrisana..

jos jednom, hvala

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:49:04, on 9.11.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32ctfmon.exe
C:WINDOWSAGRSMMSG.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesUnlockerUnlockerAssistant.exe
C:WINDOWSnMtsk.exe
C:Program FilesBOINCboinctray.exe
C:Program FilesESETESET Smart Securityegui.exe
C:Program FilesWindows LiveMessengerMsnMsgr.Exe
C:Program FilesSkypePhoneSkype.exe
C:Program FilesBOINCboincmgr.exe
C:WINDOWSsystem32agrsmsvc.exe
C:Program FilesESETESET Smart Securityekrn.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesNVIDIA CorporationnTunenTuneService.exe
C:WINDOWSsystem32nvsvc32.exe
C:Program FilesSkypePlugin ManagerskypePM.exe
C:Program FilesWindows LiveMessengerusnsvc.exe
C:Program FilesWindows LiveMailwlmail.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLLoginProxy.exe
C:Program FilesRealRealPlayerRecordingManager.exe
C:Program FilesCommon FilesRealUpdate_OBrealsched.exe
C:Documents and SettingsSomboracDesktopMijkoDrkadzijaHiJackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page http://www.google.rs/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL http://go.microsoft.com/fwlink/?LinkIdi157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -
C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) -
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:Program
FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} -
C:Program FilesFlashGetjccatch.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer -
{3049C3E9-B461-4BC5-8870-4C09146192CA} - C:Program
FilesRealRealPlayerrpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper -
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program
FilesJavajre6binssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live pomagac za prijavljivanje -
{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesCommon
FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper -
{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program
FilesJavajre6binjp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -
C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} -
C:Program FilesFlashGetgetflash.dll
O4 - HKLM..Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE
C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE
C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 - HKLM..Run: [UnlockerAssistant] "C:Program
FilesUnlockerUnlockerAssistant.exe" -H
O4 - HKLM..Run: [nMTaskBarService] nMtsk.exe
O4 - HKLM..Run: [boinctray] "C:Program FilesBOINCboinctray.exe"
O4 - HKLM..Run: [egui] "C:Program FilesESETESET Smart
Securityegui.exe" /hide /waitservice
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [MsnMsgr] "C:Program FilesWindows
LiveMessengerMsnMsgr.Exe" /background
O4 - HKCU..Run: [Skype] "C:Program FilesSkypePhoneSkype.exe" /nosplash
/minimized
O4 - HKUSS-1-5-19..RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User
'LOCAL SERVICE')
O4 - HKUSS-1-5-20..RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User
'NETWORK SERVICE')
O4 - HKUSS-1-5-21-725345543-115176313-682003330-1004..Run: [ctfmon.exe]
C:WINDOWSsystem32CTFMON.EXE (User 'boinc_master')
O4 - HKUSS-1-5-21-725345543-115176313-682003330-1004..RunOnce: [nltide_2]
regsvr32 /s /n /i:U shell32 (User 'boinc_master')
O4 - HKUSS-1-5-18..Run: [ctfmon.exe] C:WINDOWSsystem32CTFMON.EXE (User
'SYSTEM')
O4 - HKUSS-1-5-18..RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User
'SYSTEM')
O4 - HKUS.DEFAULT..Run: [ctfmon.exe] C:WINDOWSsystem32CTFMON.EXE (User
'Default user')
O4 - HKUS.DEFAULT..RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User
'Default user')
O4 - Global Startup: BOINC Manager.lnk = C:Program FilesBOINCboincmgr.exe
O8 - Extra context menu item: &Download All with FlashGet - C:Program
FilesFlashGetjc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:Program
FilesFlashGetjc_link.htm
O9 - Extra button: Objavi ovo u blogu -
{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows
LiveWriterWriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Objavi ovo u blogu u okviru usluge Windows
Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program
FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} -
C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} -
C:Program FilesFlashGetFlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet -
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:Program
FilesFlashGetFlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} -
C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 -
{e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork
Diagnosticxpnetdiag.exe
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) -
http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.co...t/muweb_site.cab?1224860669500
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia....ockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere
Systems - C:WINDOWSsystem32agrsmsvc.exe
O23 - Service: BOINC - Space Sciences Laboratory - C:Program
FilesBOINCboinc.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:Program
FilesESETESET Smart SecurityEHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:Program FilesESETESET Smart
Securityekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun
Microsystems, Inc. - C:Program FilesJavajre6binjqs.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:Program
FilesNVIDIA CorporationnTunenTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation -
C:WINDOWSsystem32nvsvc32.exe

--
End of file - 7893 bytes

>
> __________ Information from ESET Smart Security, version of virus
> signature database 3597 (20081108) __________
>
> The message was checked by ESET Smart Security.
>
> http://www.eset.com
>
>

Mirko iskljuci privremeno AV
Klikni desni na ikonicu pored sata
Izabri AMON iz Threat Protection opcije
U desnom prozoru stikliraj File system monitor (AMON) enabled.

Skini ComboFix na desktop
Pokreni program i ne diraj prozor programa dok skenira, sledi uputstva
kad zavrsi postavi log (C:\ComboFix.txt) ovde na forum.

Trebao si da otvoris novu temu i malo da opises problem, sad sta je tu je.