nema tona na youtjubu a radio može

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 28 Jan 2012 20:51

Neznam šta da vam kazem, dok sam radio oko ovih logova antivirus mi je nešta ugasilo kao i mcshild.


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_30
Run by Vladan at 20:33:16 on 2012-01-28
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.289 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\MCShield\MCShieldTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\D-Link\Bluetooth Software\BTTray.exe
svchost.exe
C:\Program Files\D-Link\Bluetooth Software\bin\btwdins.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Documents and Settings\Vladan\My Documents\Downloads\ipjqs2lf.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vladan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.facemoods.com/?a=ddrnw
uSearchAssistant =
mSearchAssistant = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [MCShield] c:\program files\mcshield\MCShieldRTM.exe
uRun: [MCShieldTray] c:\program files\mcshield\MCShieldTray.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [<NO NAME>]
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\d-link\bluetooth software\BTTray.exe
mPolicies-system: EnableSecureUIAPaths = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\d-link\bluetooth software\btsendto_ie_ctx.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9A9DA7AA-5954-410F-BA11-7CC00D0A2505} : DhcpNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Hosts: 127.0.0.2
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\vladan\application data\mozilla\firefox\profiles\oc38iv22.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?babsrc=HP_Prot
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=109130&babsrc=adbartrp&mntrId=205cf23d0000000000000001295006e2&q=
FF - plugin: c:\documents and settings\vladan\application data\mozilla\firefox\profiles\oc38iv22.default\extensions\{7d2fb79e-e58c-4db5-a36f-ac1c73967f4d}\plugins\npqbc.dll
FF - plugin: c:\documents and settings\vladan\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\5.0.61118.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npvsharetvplg.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.BabylonToolbar_i.id - 205cf23d0000000000000001295006e2
FF - user.js: extensions.BabylonToolbar_i.hardId - 205cf23d0000000000000001295006e2
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15349
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.170:39:52
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=109130
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
============= SERVICES / DRIVERS ===============
.
R0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2012-1-21 50312]
R0 EUBKMON;EUBKMON;c:\windows\system32\drivers\EUBKMON.sys [2012-1-21 43784]
R0 fasttrak;fasttrak;c:\windows\system32\drivers\Fasttrak.sys [2011-6-1 73088]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-1 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-6-1 314456]
R1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2012-1-21 16008]
R1 EUFDDISK;EUFDDISK;c:\windows\system32\drivers\EuFdDisk.sys [2012-1-21 185864]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\program files\hwinfo32\HWiNFO32.SYS [2011-12-14 21624]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-6-1 20568]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-7-21 44768]
S2 EaseUS Agent;EaseUS Agent;c:\program files\easeus\todo backup\bin\agent.exe --> c:\program files\easeus\todo backup\bin\Agent.exe [?]
S2 Guard Agent;Guard Agent;c:\program files\easeus\todo backup\bin\guardagent.exe --> c:\program files\easeus\todo backup\bin\GuardAgent.exe [?]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2012-1-27 13192]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2012-1-27 8456]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;\??\c:\program files\msi\live update 5\msibios32_100507.sys --> c:\program files\msi\live update 5\msibios32_100507.sys [?]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4;\??\c:\program files\msi\live update 5\ntiolib.sys --> c:\program files\msi\live update 5\NTIOLib.sys [?]
S4 0113731313089885mcinstcleanup;McAfee Application Installer Cleanup (0113731313089885);c:\docume~1\vladan\locals~1\temp\011373~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service --> c:\docume~1\vladan\locals~1\temp\011373~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service [?]
.
=============== Created Last 30 ================
.
2012-01-27 16:51:57 19840 -c--a-w- c:\windows\system32\EuEpmGdi.dll
2012-01-27 16:51:56 86408 -c--a-w- c:\windows\system32\setupempdrv03.exe
2012-01-27 16:51:56 8456 -c--a-w- c:\windows\system32\EuGdiDrv.sys
2012-01-27 16:51:56 2469760 -c--a-w- c:\windows\system32\BootMan.exe
2012-01-27 16:51:56 13192 -c--a-w- c:\windows\system32\epmntdrv.sys
2012-01-23 13:06:36 -------- dc----w- c:\documents and settings\vladan\local settings\application data\WWinCasino
2012-01-21 11:09:54 -------- dcsh--w- C:\BOOT
2012-01-21 11:09:31 -------- dc----w- C:\My Backups
2012-01-21 11:09:08 185864 -c--a-w- c:\windows\system32\drivers\EuFdDisk.sys
2012-01-21 11:09:07 16008 -c--a-w- c:\windows\system32\drivers\eudskacs.sys
2012-01-21 11:09:06 50312 -c--a-w- c:\windows\system32\drivers\eubakup.sys
2012-01-21 11:09:04 43784 -c--a-w- c:\windows\system32\drivers\EUBKMON.sys
2012-01-21 11:05:15 20616 -c--a-w- c:\windows\system32\fbnative.exe
2012-01-21 11:04:00 -------- dc----w- c:\program files\EaseUS
2012-01-20 17:32:17 74240 -c--a-w- c:\windows\system32\usbui.dll
2012-01-20 17:32:17 74240 -c--a-w- c:\windows\system32\dllcache\usbui.dll
2012-01-20 14:50:24 -------- dc----w- c:\documents and settings\vladan\local settings\application data\AskToolbar
2012-01-20 14:50:13 -------- dc----w- c:\documents and settings\vladan\local settings\application data\APN
2012-01-20 14:46:56 -------- dc----w- c:\program files\The KMPlayer
2012-01-20 14:45:00 -------- dc----w- c:\documents and settings\vladan\application data\Canneverbe Limited
2012-01-20 14:45:00 -------- dc----w- c:\documents and settings\all users\application data\Canneverbe Limited
2012-01-20 14:44:44 5504 -c--a-w- c:\windows\system32\drivers\StarOpen.sys
2012-01-20 13:47:37 0 -c--a-w- c:\windows\ativpsrm.bin
2012-01-20 13:43:29 69715 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2012-01-20 13:43:29 5632 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2012-01-20 13:43:29 32768 -c--a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2012-01-20 13:43:29 266240 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2012-01-20 13:43:29 192512 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2012-01-20 13:43:28 729088 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2012-01-20 13:43:28 311428 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
2012-01-20 13:43:28 188548 -c--a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2012-01-20 12:51:16 -------- dc----w- C:\ATI
2012-01-18 12:43:12 73728 -c--a-w- c:\windows\system32\javacpl.cpl
2012-01-18 12:43:12 476904 -c--a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll
2012-01-18 12:26:14 -------- dc----w- c:\documents and settings\vladan\local settings\application data\Solid State Networks
2012-01-14 13:37:11 479232 -c--a-w- c:\program files\mozilla firefox\msvcm80.dll
2012-01-14 13:37:11 43992 -c--a-w- c:\program files\mozilla firefox\mozutils.dll
2012-01-14 13:37:10 626688 -c--a-w- c:\program files\mozilla firefox\msvcr80.dll
2012-01-14 13:37:10 548864 -c--a-w- c:\program files\mozilla firefox\msvcp80.dll
2012-01-14 13:33:06 -------- dc----w- c:\documents and settings\vladan\application data\facemoods.com
2012-01-13 21:05:26 -------- dc----w- c:\program files\facemoods.com
2012-01-07 16:11:41 20464 -c--a-w- c:\windows\system32\drivers\mbam.sys
2012-01-03 13:10:44 182672 -c--a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2012-01-03 13:10:44 182672 -c--a-w- c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2012-01-28 14:35:13 414368 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-18 12:42:49 472808 -c--a-w- c:\windows\system32\deployJava1.dll
2011-11-28 18:01:25 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 17:53:53 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-25 21:57:19 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 13:25:32 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-18 12:35:08 60416 -c--a-w- c:\windows\system32\packager.exe
2011-11-16 14:21:44 354816 -c--a-w- c:\windows\system32\winhttp.dll
2011-11-16 14:21:44 152064 -c--a-w- c:\windows\system32\schannel.dll
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 -c--a-w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 -c----w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 -c--a-w- c:\windows\system32\html.iec
2011-11-03 15:28:36 386048 -c--a-w- c:\windows\system32\qdvd.dll
2011-11-03 15:28:36 1292288 ----a-w- c:\windows\system32\quartz.dll
2011-11-01 16:07:10 1288704 ----a-w- c:\windows\system32\ole32.dll
.
============= FINISH: 20:35:10,39 ===============





https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

Dopuna: 29 Jan 2012 0:55

A problem sa zvukom na yutjubu pre je nastao.

Dopuna: 29 Jan 2012 1:30

• 1Ovo se svidja korisniku: mcrule
  
  Registruj se da bi pohvalio/la poruku!

Pozdrav.




Tvoji izveštaji deluju čisto, tj. na računaru nemaš aktivnog malware-a.









Hvala što veruješ AMF timu.
Ivance95

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 03 Feb 2012 15:34

Možete li mi preporučiti ComboFix da isprobamo sa njim.
Jednom samo koristio ga i pomogaomi je a bilisu slični problemi.

Dopuna: 03 Feb 2012 21:18

----------------------------------------------------------------------------------

• 2Ovo se svidja korisnicima: ThePhilosopher, mcrule
  
  Registruj se da bi pohvalio/la poruku!

Pozdrav šemahenry23.



Preporuku za ComboFix neces dobiti jer nema potrebe pokretati ga na tvom sistemu. U pitanju nije dijagnosticki alat, niti alat koji ce ubrzati rad tvog sistema. ComboFix je jako mocan alat koji koristimo za uklanjanje malware-a (koji na tvom sistemu ne postoji). Nepravilnim rukovanjem ovim alatom moze se unistiti operativni sistem ili pak obrisati svi podaci sa hard diska. Pokrece se iskljucivo uz predlog, nadleznost i detaljno uputstvo helpera koji je expert u toj oblasti i zna sta radi.