|
Ovako, pre nekoliko dana ess mi je pronasao dosta gamadi pa bih ipak zeleo jednu proveru ( da znam da li da formatiram pc ili ne  ) evo loga :
DDS (Ver_10-10-21.02) - NTFSx86
Run by Amar at 9:05:09.05 on Thu 10/28/2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2048.1345 [GMT 2:00]
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Users\Amar\Downloads\dds (1).scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.mydtzone.com/startpage
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: ZaMRadio Toolbar: {d761e944-2372-486a-a545-9cff5c03cd9d} - c:\program files\zamradio\tbZaMR.dll
uURLSearchHooks: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSof1.dll
mURLSearchHooks: ZaMRadio Toolbar: {d761e944-2372-486a-a545-9cff5c03cd9d} - c:\program files\zamradio\tbZaMR.dll
mURLSearchHooks: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSof1.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSof1.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: ZaMRadio Toolbar: {d761e944-2372-486a-a545-9cff5c03cd9d} - c:\program files\zamradio\tbZaMR.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: ZaMRadio Toolbar: {d761e944-2372-486a-a545-9cff5c03cd9d} - c:\program files\zamradio\tbZaMR.dll
TB: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSof1.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe"
uRun: [AdobeBridge]
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
StartupFolder: c:\users\amar\appdata\roaming\micros~1\windows\startm~1\programs\startup\gamera~1.lnk - c:\users\amar\appdata\roaming\gameranger\gameranger\GameRanger.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49}
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
================= FIREFOX ===================
FF - ProfilePath - c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.daemon-search.com/startpage
FF - component: c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
FF - component: c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
FF - component: c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\FFExternalAlert.dll
FF - component: c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\RadioWMPCore.dll
FF - component: c:\users\amar\appdata\roaming\mozilla\firefox\profiles\jla85jgf.default\extensions\dttoolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\rayv\rayv\plugins\nprayvplugin.dll
---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
============= SERVICES / DRIVERS ===============
R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [2010-5-18 20072]
R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-7-29 136632]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2010-8-12 810144]
R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2010-7-29 41336]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2010-3-4 277536]
R3 WFLR6654;WinFast TV2000 XP Expert (FM1216MK3);c:\windows\system32\drivers\wfeaglxt.sys [2009-10-21 433920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-5-16 133104]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 WatAdminSvc;WatAdminSvc;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-18 1343400]
=============== Created Last 30 ================
2010-10-27 11:17:28 -------- d-----w- c:\users\amar\appdata\roaming\Malwarebytes
2010-10-27 11:17:15 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-27 11:17:14 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-27 11:17:14 -------- d-----w- c:\progra~2\Malwarebytes
2010-10-27 11:17:13 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-10-26 18:34:36 -------- d-----w- c:\users\amar\appdata\roaming\Adobe Mini Bridge CS5
2010-10-26 18:34:35 -------- d-----w- c:\users\amar\appdata\roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-10-26 18:30:13 -------- d-----w- c:\progra~2\regid.1986-12.com.adobe
2010-10-26 18:13:54 -------- d-----w- c:\users\amar\appdata\local\Adobe
2010-10-26 18:03:17 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-10-26 18:03:17 417792 ----a-w- c:\windows\system32\msdri.dll
2010-10-26 18:03:17 204288 ----a-w- c:\windows\system32\MSNP.ax
2010-10-26 18:03:17 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2010-10-26 18:02:57 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2010-10-26 09:15:54 6146896 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{a9e8cf44-5a53-41f8-a0be-7ca49413fdf6}\mpengine.dll
2010-10-24 17:47:26 -------- d-----w- c:\users\amar\appdata\roaming\Ashampoo
2010-10-24 17:41:56 -------- d-----w- c:\users\amar\appdata\local\ashampoo
2010-10-24 17:41:56 -------- d-----w- c:\progra~2\ashampoo
2010-10-24 17:41:47 -------- d-----w- c:\program files\Ashampoo
2010-10-17 13:50:19 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-10-17 13:50:10 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-10-17 13:49:45 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-10-17 13:49:39 -------- d-----w- c:\users\amar\appdata\roaming\DAEMON Tools Lite
2010-10-17 13:49:36 -------- d-----w- c:\progra~2\DAEMON Tools Lite
2010-10-17 13:43:17 2829 ----a-w- c:\windows\War3Unin.pif
2010-10-17 13:43:17 139264 ----a-w- c:\windows\War3Unin.exe
2010-10-17 13:39:14 -------- d-----w- C:\Warcraft III
2010-10-17 13:00:57 -------- d-----w- c:\users\amar\appdata\roaming\GameRanger
2010-10-17 12:47:29 -------- d-----w- c:\users\amar\appdata\roaming\RayV
2010-10-17 12:47:27 -------- d-----w- c:\program files\RayV
2010-10-13 08:05:17 164864 ----a-w- c:\program files\windows media player\wmplayer.exe
2010-10-13 08:05:17 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-10-13 08:03:44 224256 ----a-w- c:\windows\system32\schannel.dll
2010-10-13 08:02:43 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-10-13 08:02:43 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-10-13 08:02:02 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-10-13 08:02:02 308736 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-10-13 08:02:02 168448 ----a-w- c:\windows\system32\srvsvc.dll
2010-10-13 08:02:02 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-10-13 08:01:43 4247040 ----a-w- c:\program files\windows nt\accessories\wordpad.exe
2010-10-13 08:01:42 1413632 ----a-w- c:\windows\system32\ole32.dll
2010-10-13 08:01:09 530432 ----a-w- c:\windows\system32\comctl32.dll
2010-10-13 08:00:22 2327552 ----a-w- c:\windows\system32\win32k.sys
2010-10-13 07:59:33 363520 ----a-w- c:\windows\system32\StructuredQuery.dll
2010-10-13 07:58:21 109056 ----a-w- c:\windows\system32\t2embed.dll
2010-10-12 19:08:52 -------- d-----w- c:\progra~2\Blizzard Entertainment
2010-10-11 13:51:32 719832 ----a-w- c:\program files\mozilla firefox\mozcpp19.dll
2010-10-11 13:51:32 16856 ----a-w- c:\program files\mozilla firefox\plugin-container.exe
2010-10-10 20:39:37 -------- d-----w- c:\program files\Softonic-Eng7
2010-09-29 19:43:24 190976 ----a-w- c:\windows\system32\drivers\ks.sys
2010-09-29 19:43:24 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2010-09-29 10:00:54 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-29 10:00:49 13312 ----a-w- c:\program files\internet explorer\iecompat.dll
==================== Find3M ====================
2010-10-19 09:41:44 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-09-08 04:30:04 978432 ----a-w- c:\windows\system32\wininet.dll
2010-09-08 04:28:15 44544 ----a-w- c:\windows\system32\licmgr10.dll
2010-09-08 03:22:31 386048 ----a-w- c:\windows\system32\html.iec
2010-09-08 02:48:16 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-21 05:36:33 738816 ----a-w- c:\windows\system32\wmpmde.dll
2010-08-21 05:32:37 316928 ----a-w- c:\windows\system32\spoolsv.exe
============= FINISH: 9:05:40.23 ===============
https://www.mycity.rs/must-login.png
https://www.mycity.rs/must-login.png
https://www.mycity.rs/must-login.png
https://www.mycity.rs/must-login.png
|
