|
Napisano: 21 Mar 2010 23:21
izvinjavam se nisam citao....
sistem je 32 bitni
adsl
mycity.rs/must-login.png
DDS (Ver_10-03-17.01) - NTFSx86
Run by kiki at 22:58:06,93 on 21/03/2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.33.1033.18.1792.949 [GMT 1:00]
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\DAEMON Tools Lite\DTLiteShellHlp.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Windows\system32\taskhost.exe
C:\Users\kiki\AppData\Local\eSupport.com\biosagentplus_40.exe
C:\Windows\system32\lxdncoms.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Lexmark 2600 Series\lxdnMsdMon.exe
C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdnserv.exe
C:\Program Files\Lexmark 2600 Series\lxdnmon.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\kiki\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.fr/
BHO: Lexmark Barre d'outils: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Windows Live pomagac za prijavljivanje: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: Lexmark Barre d'outils: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [DAEMON Tools Lite] c:\program files\daemon tools lite\DTLite.exe -autorun
mRun: [ATICustomerCare] "c:\program files\ati\aticustomercare\ATICustomerCare.exe"
mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [lxdnmon.exe] "c:\program files\lexmark 2600 series\lxdnmon.exe"
mRun: [lxdnamon] "c:\program files\lexmark 2600 series\lxdnamon.exe"
mRun: [FaxCenterServer] "c:\program files\lexmark fax solutions\fm3032.exe" /s
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
================= FIREFOX ===================
FF - ProfilePath - c:\users\kiki\appdata\roaming\mozilla\firefox\profiles\hvcxhjqa.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - component: c:\users\kiki\appdata\roaming\mozilla\firefox\profiles\hvcxhjqa.default\extensions\dttoolbar@toolbarnet.com\components\DTToolbarFF.dll
---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
============= SERVICES / DRIVERS ===============
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-3-21 162640]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-3-21 19024]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-3-21 51792]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-3-21 40384]
R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?]
R2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [2009-4-28 94208]
R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-3-21 40384]
R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-3-21 40384]
RUnknown DrvAgent32;DrvAgent32; [x]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
=============== Created Last 30 ================
2010-03-21 21:17:15 0 d-----w- C:\SWSetup
2010-03-21 20:51:30 0 d-----w- c:\programdata\Lx_cats
2010-03-21 20:47:28 77304 ----a-w- c:\windows\system32\lxdnprpr.chm
2010-03-21 20:47:23 348160 ----a-w- c:\windows\system32\SETCC26.tmp
2010-03-21 20:45:18 45056 ----a-w- c:\windows\system32\LXF3PMON.DLL
2010-03-21 20:45:18 32768 ----a-w- c:\windows\system32\LXF3FXPU.DLL
2010-03-21 20:44:58 98345 ----a-w- c:\windows\system32\IMHOST32.DLL
2010-03-21 20:44:58 98304 ----a-w- c:\windows\system32\IM31XPNG.DEL
2010-03-21 20:44:58 69632 ----a-w- c:\windows\system32\IM31XTIF.DEL
2010-03-21 20:44:58 53248 ----a-w- c:\windows\system32\lxf3oem.dll
2010-03-21 20:44:58 49152 ----a-w- c:\windows\system32\IM31IMG.DIL
2010-03-21 20:44:58 339968 ----a-w- c:\windows\system32\IMGMAN32.DLL
2010-03-21 20:44:58 12288 ----a-w- c:\windows\system32\LXF3PMRC.DLL
2010-03-21 20:44:57 0 d-----w- c:\programdata\FaxCtr
2010-03-21 20:44:50 0 d-----w- c:\program files\Lexmark Fax Solutions
2010-03-21 20:43:50 0 d-----w- c:\program files\Abbyy FineReader 6.0 Sprint
2010-03-21 20:42:45 0 d-----w- c:\program files\Lexmark Toolbar
2010-03-21 20:41:58 0 d-----w- c:\program files\Lexmark 2600 Series
2010-03-21 20:23:22 0 d-----w- c:\program files\Lavalys
2010-03-21 18:26:40 0 d-----w- c:\program files\Conduit
2010-03-21 18:26:37 0 d-----w- c:\users\kiki\appdata\roaming\BSplayer Pro
2010-03-21 18:26:37 0 d-----w- c:\users\kiki\appdata\roaming\BSplayer
2010-03-21 18:26:36 0 d-----w- c:\program files\Webteh
2010-03-21 18:20:34 0 d-----w- c:\program files\MagicISO
2010-03-21 16:12:17 0 d-----w- c:\program files\G4box
2010-03-21 16:05:38 0 d-----w- c:\program files\Pacific Warriors
2010-03-21 13:57:01 0 d-----w- c:\program files\DAEMON Tools Lite
2010-03-21 12:30:34 0 d-----w- c:\program files\SystemRequirementsLab
2010-03-21 09:02:22 0 d-----w- C:\Westwood
2010-03-21 08:46:41 0 d-----w- c:\programdata\Adobe
2010-03-21 08:29:32 0 d-----w- c:\windows\system32\RTCOM
2010-03-21 08:28:51 0 d-----w- c:\program files\Realtek
2010-03-21 08:28:46 0 d--h--w- c:\program files\Temp
2010-03-21 07:40:53 0 d-----w- c:\windows\Panther
2010-03-21 00:35:27 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-03-21 00:35:12 0 d-----w- c:\programdata\Alwil Software
2010-03-21 00:12:46 0 d-----w- c:\program files\ATI Technologies
2010-03-21 00:12:44 0 d-----w- c:\program files\ATI
2010-03-21 00:09:43 0 d-----w- C:\ATI
2010-03-20 23:59:12 0 d-----w- c:\windows\sr-Latn-CS
2010-03-20 23:59:08 0 d-----w- c:\windows\system32\wbem\sr-Latn-CS
2010-03-20 23:59:08 0 d-----w- c:\windows\system32\drivers\sr-Latn-CS
2010-03-20 23:35:08 0 d-----w- c:\users\kiki\Tracing
2010-03-20 23:30:59 0 d-----w- c:\program files\Microsoft
2010-03-20 23:30:38 0 d-----w- c:\program files\Windows Live SkyDrive
2010-03-20 23:30:03 0 d-----w- c:\windows\PCHEALTH
2010-03-20 23:30:01 0 d-sh--w- c:\windows\Installer
2010-03-20 23:23:47 0 d-----w- c:\program files\DAEMON Tools Toolbar
2010-03-20 23:22:17 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-03-20 23:21:50 0 d-----w- c:\users\kiki\appdata\roaming\DAEMON Tools Lite
2010-03-20 23:21:48 0 d-----w- c:\programdata\DAEMON Tools Lite
2010-03-20 23:16:05 0 d-----w- c:\program files\common files\Windows Live
2010-03-20 22:58:19 257024 ----a-w- c:\windows\system32\msv1_0.dll
2010-03-20 22:58:15 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-03-20 22:55:44 713888 ----a-w- c:\windows\system32\PerfStringBackup.INI
2010-03-20 22:53:42 2048 ----a-w- c:\windows\system32\tzres.dll
2010-03-20 22:43:26 0 ----a-w- c:\windows\system32\atiicdxx.dat
2010-03-20 22:43:26 0 ----a-w- c:\windows\ativpsrm.bin
2010-03-20 22:43:02 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
==================== Find3M ====================
2010-03-13 04:54:34 1749536 ----a-w- c:\windows\system32\RtkPgExt.dll
2010-03-13 04:54:28 2649120 ----a-w- c:\windows\system32\RtkAPO.dll
2010-03-13 04:45:36 3036832 ----a-w- c:\windows\system32\drivers\RTKVHDA.sys
2010-02-26 10:20:12 1247776 ----a-w- c:\windows\RtlExUpd.dll
2010-01-18 23:29:31 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-01-18 23:29:31 85504 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-01-18 23:29:31 365568 ----a-w- c:\windows\system32\secproc_isv.dll
2010-01-18 23:29:30 369152 ----a-w- c:\windows\system32\secproc.dll
2010-01-18 23:28:33 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-01-18 23:28:33 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-18 23:28:30 320512 ----a-w- c:\windows\system32\RMActivate.exe
2010-01-18 23:28:30 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:41:57 174 --sha-w- c:\program files\desktop.ini
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 21:26:35 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
============= FINISH: 22:58:50,15 ===============
mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png
Dopuna: 22 Mar 2010 14:10
elizabeta1 ::uffffffff neznam sta da radim kompu vise,zasticen je sa kasperskim kis 8,pre par dana sam otisao popodne da kupim hleb kad sam se vratio kaspersky ugasen tj na pauzi a ikonice na ekranu su pretvorene u fascikle,koci sve kad otvorim mozilu ili explorer nebitno sve je na arapskom i nemogu da vratim ponistava sve komande,dvd rom nekad radi nekad ne usb cas radi jedan cas drugi cas treci,skeniram ga sa tri raz. anti virusa nista pocinje mis da ludi programi sta god instaliram odmah je na arapskom radio sam nesto napamet jer znam gde sta stoji ali nista neslusa.odem u bios obrisem windows formatiram hard sve nanovo cim pocne instalacija pokazuje neke fatal eror ubacim cd opet kao fale fajlovi na cd bootu,nekako dignem sistem ista stvar.odem u bios uzmem alat za bios hirens boot ma pokrene ga ali nema da ocita anti viruse sve ostalo ima pokusao sam sa jos par boot alata anti virusa ali taj virus koji je usao u bios neda da bios ocita anti virus grrrrrrrrrrrrrrr.cd rom nece da radi cim ubacim neki anti virus za bios niti hoce rezac da ga nareze,ima li iko ideju kako ovaj virus da isteram iz biosa
|
