Poslao: 17 Nov 2011 16:53
|
offline
- thenelly84
- Novi MyCity građanin
- Pridružio: 17 Nov 2011
- Poruke: 17
|
Veliki pozdrav,timu koji ima vreme za nase probleme.Dakle od skoro je poceo racunar non stop mi blokira,reinstalirao sam sistem ali nema pomoci,kad podize sistem isto se desi da ukoci 2 do 3 puta i onda problem prestane sve dok ne pocne da radi malo duze,onda problem postane isti.Zamolio bih vas za vasu strucnu pomoc.Inace to je pocelo od pre mesec dana i koristim adsl 4mb.
GMER 1.0.15.15641 - gmer.net
Autostart scan 2011-11-17 04:34:29
Windows 5.1.2600 Service Pack 3
HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems@Windows = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon@Userinit = C:\WINDOWS\system32\userinit.exe,
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ >>>
AtiExtEvent@DLLName = Ati2evxx.dll
dimsntfy@DLLName = %SystemRoot%\System32\dimsntfy.dll
WgaLogon@DLLName = WgaLogon.dll
HKLM\SYSTEM\CurrentControlSet\Services\ >>>
AdvancedSystemCareService@ = C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
Ati HotKey Poller@ = %SystemRoot%\system32\Ati2evxx.exe
IMFservice@ = C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
STacSV@ = c:\program files\idt\v114_ecs_d_6207.2v7_6099.8xp_g2.0v_rc_sdc\wdm\STacSV.exe
wlidsvc@ = "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>>
@SystemTraySysTray.Exe = SysTray.Exe
@IObit Malware Fighter"C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart = "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
@facemoods"C:\Program Files\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I = "C:\Program Files\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
HKCU\Software\Microsoft\Windows\CurrentVersion\Run >>>
@CTFMON.EXEC:\WINDOWS\system32\ctfmon.exe = C:\WINDOWS\system32\ctfmon.exe
@BitTorrent"C:\Program Files\BitTorrent\BitTorrent.exe" = "C:\Program Files\BitTorrent\BitTorrent.exe"
@BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
@DAEMON Tools Lite"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
@Skype"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad@WPDShServiceObj = C:\WINDOWS\system32\wpdshserviceobj.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved >>>
@{42071714-76d4-11d1-8b24-00a0c9068ff3} /*Display Panning CPL Extension*/(null) =
@{07C45BB1-4A8C-4642-A1F5-237E7215FF66} /*IE Microsoft BrowserBand*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{1C1EDB47-CE22-4bbb-B608-77B48F83C823} /*IE Fade Task*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{205D7A97-F16D-4691-86EF-F3075DCCA57D} /*IE Menu Desk Bar*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3028902F-6374-48b2-8DC6-9725E775B926} /*IE AutoComplete*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{30D02401-6A81-11d0-8274-00C04FD5AE38} /*IE Search Band*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3C374A40-BAE4-11CF-BF7D-00AA006946EE} /*Microsoft Url History Service*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3DC7A020-0ACD-11CF-A9BB-00AA004AE837} /*The Internet*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{43886CD5-6529-41c4-A707-7B3C92C05E68} /*IE Navigation Bar*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{44C76ECD-F7FA-411c-9929-1B77BA77F524} /*IE Menu Site*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{4B78D326-D922-44f9-AF2A-07805C2A3560} /*IE Menu Band*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{6038EF75-ABFC-4e59-AB6F-12D397F6568D} /*IE Microsoft History AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{692F0339-CBAA-47e6-B5B5-3B84DB604E87} /*Extensions Manager Folder*/C:\WINDOWS\system32\extmgr.dll = C:\WINDOWS\system32\extmgr.dll
@{6B4ECC4F-16D1-4474-94AB-5A763F2A54AE} /*IE Tracking Shell Menu*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{6CF48EF8-44CD-45d2-8832-A16EA016311B} /*IE IShellFolderBand*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{73CFD649-CD48-4fd8-A272-2070EA56526B} /*IE BandProxy*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{7BD29E00-76C1-11CF-9DD0-00A0C9034933} /*Temporary Internet Files*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{7BD29E01-76C1-11CF-9DD0-00A0C9034933} /*Temporary Internet Files*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{871C5380-42A0-1069-A2EA-08002B30309D} /*Internet Name Space*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{98FF6D4B-6387-4b0a-8FBD-C5C4BB17B4F8} /*IE MRU AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{9A096BB5-9DC3-4D1C-8526-C3CBF991EA4E} /*IE RSS Feeder Folder*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{9D958C62-3954-4b44-8FAB-C4670C1DB4C2} /*IE Microsoft Shell Folder AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{B31C5FAE-961F-415b-BAF0-E697A5178B94} /*IE Microsoft Multiple AutoComplete List Container*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{BC476F4C-D9D7-4100-8D4E-E043F6DEC409} /*Microsoft Browser Architecture*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{BFAD62EE-9D54-4b2a-BF3B-76F90697BD2A} /*IE Shell Rebar BandSite*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{CFBFAE00-17A6-11D0-99CB-00C04FD64497} /*Microsoft Url Search Hook*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{E6EE9AAC-F76B-4947-8260-A9F136138E11} /*IE Shell Band Site Menu*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{E7E4BC40-E76A-11CE-A9BB-00AA004AE837} /*Shell DocObject Viewer*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{F2CF5485-4E02-4f68-819C-B92DE9277049} /*&Links*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{F83DAC1C-9BB9-4f2b-B619-09819DA81B0E} /*IE Registry Tree Options Utility*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} /*IE User Assist*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FBF23B40-E3F0-101B-8488-00AA003E56F8} /*InternetShortcut*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FDE7673D-2E19-4145-8376-BBD58C4BC7BA} /*IE Custom MRU AutoCompleted List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FF393560-C2A7-11CF-BFF4-444553540000} /*History*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} /*Set Program Access and Defaults*/ /*file not found*/ = /*file not found*/
@{35786D3C-B075-49b9-88DD-029876E11C01} /*Portable Devices*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{D6791A63-E7E2-4fee-BF52-5DED8E86E9B8} /*Portable Devices Menu*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{596AB062-B4D2-4215-9F74-E9109B0A8153} /*Previous Versions Property Page*/%SystemRoot%\system32\twext.dll = %SystemRoot%\system32\twext.dll
@{9DB7A13C-F208-4981-8353-73CC61AE2783} /*Previous Versions*/%SystemRoot%\system32\twext.dll = %SystemRoot%\system32\twext.dll
@{87D62D94-71B3-4b9a-9489-5FE6850DC73E} /*Avi Properties Handler*/(null) =
@{c5a40261-cd64-4ccf-84cb-c394da41d590} /*Video Thumbnail Extractor*/ /*file not found*/ = /*file not found*/
@{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} /*Autoplay for SlideShow*/(null) =
@{143A62C8-C33B-11D1-84FE-00C04FA34A14} /*Microsoft Agent Character Property Sheet Handler*/ /*file not found*/ = /*file not found*/
@{23170F69-40C1-278A-1000-000100020000} /*7-Zip Shell Extension*/C:\Program Files\7-Zip\7-zip.dll = C:\Program Files\7-Zip\7-zip.dll
@{B41DB860-8EE4-11D2-9906-E49FADC173CA} /*WinRAR shell extension*/C:\Program Files\WinRAR\rarext.dll = C:\Program Files\WinRAR\rarext.dll
@{e82a2d71-5b2f-43a0-97b8-81be15854de8} /*ShellLink for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} /*Shell Icon Handler for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{5E2121EE-0300-11D4-8D3B-444553540000} /*Catalyst Context Menu extension*/C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll = C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
@{872A9397-E0D6-4e28-B64D-52B8D0A7EA35} /*Display CPL Extension*/C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamaxx.dll = C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamaxx.dll
@{45670FA8-ED97-4F44-BC93-305082590BFB} /*Microsoft.XPS.Shell.Metadata.1*/%SystemRoot%\System32\XPSSHHDR.DLL = %SystemRoot%\System32\XPSSHHDR.DLL
@{44121072-A222-48f2-A58A-6D9AD51EBBE9} /*Microsoft.XPS.Shell.Thumbnail.1*/%SystemRoot%\System32\XPSSHHDR.DLL = %SystemRoot%\System32\XPSSHHDR.DLL
@{B327765E-D724-4347-8B16-78AE18552FC3} /*NeroDigitalIconHandler*/C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll = C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll
@{7F1CF152-04F8-453A-B34C-E609530A9DC8} /*NeroDigitalPropSheetHandler*/C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll = C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll
@{2F844462-7CB8-489C-828C-32A6422506AF} /*PfMenu*/C:\Program Files\IObit\Protected Folder\PfShellExtension.dll = C:\Program Files\IObit\Protected Folder\PfShellExtension.dll
HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ >>>
7-Zip@{23170F69-40C1-278A-1000-000100020000} = C:\Program Files\7-Zip\7-zip.dll
Advanced SystemCare@{7C8D3E6A-13A6-4D8F-BF77-D267D0F9AC21} = C:\Program Files\IObit\Advanced SystemCare 4\ASCv4ExtMenu.dll
IObit Malware Fighter@{0BB81440-5F42-4480-A5F7-770A6F439FC8} = C:\Program Files\IObit\IObit Malware Fighter\IMFShellExt.dll
PfMenu@{2F844462-7CB8-489C-828C-32A6422506AF} = C:\Program Files\IObit\Protected Folder\PfShellExtension.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll
HKLM\Software\Classes\*\shellex\ContextMenuHandlers@{EB4D3CFE-E2AA-4C6E-B2FE-2A749F95D208} = C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll
HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ >>>
7-Zip@{23170F69-40C1-278A-1000-000100020000} = C:\Program Files\7-Zip\7-zip.dll
Advanced SystemCare@{7C8D3E6A-13A6-4D8F-BF77-D267D0F9AC21} = C:\Program Files\IObit\Advanced SystemCare 4\ASCv4ExtMenu.dll
IObit Malware Fighter@{0BB81440-5F42-4480-A5F7-770A6F439FC8} = C:\Program Files\IObit\IObit Malware Fighter\IMFShellExt.dll
PfMenu@{2F844462-7CB8-489C-828C-32A6422506AF} = C:\Program Files\IObit\Protected Folder\PfShellExtension.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll
HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ >>>
IObit Malware Fighter@{0BB81440-5F42-4480-A5F7-770A6F439FC8} = C:\Program Files\IObit\IObit Malware Fighter\IMFShellExt.dll
PfMenu@{2F844462-7CB8-489C-828C-32A6422506AF} = C:\Program Files\IObit\Protected Folder\PfShellExtension.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll
HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers@{EB4D3CFE-E2AA-4C6E-B2FE-2A749F95D208} = C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects >>>
@{18DF081C-E8AD-4283-A596-FA578C2EBDC3}C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
@{64182481-4F71-486b-A045-B233BD0DA8FC}C:\Program Files\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll = C:\Program Files\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll
@{9030D464-4C02-4ABF-8ECC-5164760863C6}C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
@{DBC80044-A445-435b-BC74-9C25C1C588A9}C:\Program Files\Java\jre6\bin\jp2ssv.dll = C:\Program Files\Java\jre6\bin\jp2ssv.dll
@{E7E6F031-17CE-4C07-BC86-EABFE594F69C}C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll = C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
@{FF4E1D1D-705B-4379-AB33-22D98C1ABF55}C:\Program Files\SocialExtras\socialx.dll = C:\Program Files\SocialExtras\socialx.dll
HKLM\Software\Microsoft\Internet Explorer\Main >>>
@Default_Page_URLhttp://go.microsoft.com/fwlink/?LinkId=69157 = go.microsoft.com/fwlink/?LinkId=69157
@Start Pagehttp://go.microsoft.com/fwlink/?LinkId=69157 = go.microsoft.com/fwlink/?LinkId=69157
HKCU\Software\Microsoft\Internet Explorer\Main@Start Page = start.facemoods.com/?a=ddr
HKLM\Software\Classes\PROTOCOLS\Handler\ >>>
dvd@CLSID = C:\WINDOWS\system32\msvidctl.dll
its@CLSID = C:\WINDOWS\system32\itss.dll
mhtml@CLSID = %SystemRoot%\system32\inetcomm.dll
ms-its@CLSID = C:\WINDOWS\system32\itss.dll
tv@CLSID = C:\WINDOWS\system32\msvidctl.dll
HKLM\Software\Classes\PROTOCOLS\Handler\wia@CLSID = C:\WINDOWS\system32\wiascr.dll
---- EOF - GMER 1.0.15 ----
mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png
mycity.rs/must-login.png
|
|
|
|
|
Poslao: 17 Nov 2011 22:47
|
offline
- thenelly84
- Novi MyCity građanin
- Pridružio: 17 Nov 2011
- Poruke: 17
|
Napisano: 17 Nov 2011 17:28
error desava se
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13
Run by Administrator at 5:20:18 on 2011-11-17
Microsoft Windows XP Professional 5.1.2600.3.1252.61.1033.18.2047.1367 [GMT 11:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
c:\program files\idt\v114_ecs_d_6207.2v7_6099.8xp_g2.0v_rc_sdc\wdm\STacSV.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\IObit\IObit Malware Fighter\IMF.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.facemoods.com/?a=ddr
uWindow Title = IE
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
mSearchAssistant = hxxp://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: Social Extras Plugin: {ff4e1d1d-705b-4379-ab33-22d98c1abf55} - c:\program files\socialextras\socialx.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [BitTorrent] "c:\program files\bittorrent\BitTorrent.exe"
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
mRun: [SystemTray] SysTray.Exe
mRun: [IObit Malware Fighter] "c:\program files\iobit\iobit malware fighter\IMF.exe" /autostart
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [NewUser] c:\windows\lastxp\NewUser.cmd
uPolicies-explorer: NoSMHelp = 1 (0x1)
uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
dPolicies-explorer: NoSMHelp = 1 (0x1)
dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9E6BDF2A-0CD3-4D53-BBC6-7C4C9CD9F2FC} : DhcpNameServer = 192.168.1.1
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\administrator\application data\mozilla\firefox\profiles\r10q8wsu.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2418376&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - PageRage Customized Web Search
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2418376&q=
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-11-2 232512]
R2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\iobit\advanced systemcare 4\ASCService.exe [2011-11-2 328536]
R2 IMFservice;IMF Service;c:\program files\iobit\iobit malware fighter\IMFsrv.exe [2011-11-10 820568]
R2 PfFilter;PfFilter;c:\program files\iobit\protected folder\pffilter.sys [2011-11-10 140848]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2011-11-2 101392]
R3 FileMonitor;FileMonitor;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\FileMonitor.sys [2011-11-10 239472]
R3 RegFilter;RegFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\RegFilter.sys [2011-11-10 30368]
R3 UrlFilter;UrlFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\UrlFilter.sys [2011-11-10 16208]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2011-11-4 137472]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2011-11-4 8576]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-14 14336]
.
=============== Created Last 30 ================
.
2011-11-16 17:08:02 20480 ----a-w- c:\windows\system32\HideCMD.exe
2011-11-16 01:34:50 -------- d-----w- c:\program files\common files\Bitdefender
2011-11-15 16:22:47 -------- d-----w- c:\users\administrator\application data\facemoods.com
2011-11-15 04:50:45 -------- d-----w- c:\program files\JDownloader
2011-11-14 00:09:52 -------- d-----r- c:\program files\Skype
2011-11-13 00:46:04 -------- d-----w- c:\users\administrator\application data\Sony Online Entertainment
2011-11-13 00:46:03 -------- d-----w- c:\users\administrator\local settings\application data\SCE
2011-11-13 00:44:58 -------- d-----w- c:\program files\Sony Online Entertainment
2011-11-12 03:26:32 -------- d-----w- c:\program files\SocialExtras
2011-11-12 03:03:41 -------- d-----w- c:\program files\Conduit
2011-11-12 03:03:39 -------- d-----w- c:\users\administrator\local settings\application data\Conduit
2011-11-12 03:03:25 -------- d-----w- c:\users\all users\application data\Tarma Installer
2011-11-11 21:15:35 -------- d-----w- c:\program files\Email Sender Deluxe
2011-11-11 20:49:04 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2011-11-11 18:00:00 -------- d-----w- c:\users\administrator\application data\GetRightToGo
2011-11-10 18:28:40 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-11-10 16:46:35 -------- d-----w- c:\users\administrator\local settings\application data\Skyrim
2011-11-10 16:16:34 -------- d-----w- c:\users\administrator\local settings\application data\Chromium
2011-11-10 15:48:28 -------- d-----w- c:\users\all users\application data\Rockstar Games
2011-11-10 15:46:46 -------- d-----w- c:\program files\Rockstar Games
2011-11-10 04:32:46 -------- d-----w- c:\users\all users\application data\IObit
2011-11-10 04:01:26 -------- d-----w- c:\windows\system32\winrm
2011-11-10 04:01:26 -------- d-----w- c:\windows\system32\GroupPolicy
2011-11-10 04:01:18 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-11-08 19:42:46 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-07 23:25:58 -------- d-----w- c:\users\administrator\local settings\application data\Temp
2011-11-07 23:25:58 -------- d-----w- c:\users\administrator\local settings\application data\Adobe
2011-11-07 20:27:26 -------- d-----w- c:\program files\MSXML 6.0
2011-11-07 20:26:41 35892 ----a-w- c:\windows\system32\SER9PL.sys
2011-11-07 20:26:41 26719 ----a-w- c:\windows\system32\SERSPL.VXD
2011-11-07 17:15:02 -------- d-----w- c:\users\administrator\local settings\application data\Identities
2011-11-06 16:59:43 -------- d-----w- c:\users\administrator\local settings\application data\DFX
2011-11-06 16:59:06 -------- d-----w- c:\users\all users\application data\DFX
2011-11-06 16:59:04 -------- d-----w- c:\program files\DFX
2011-11-06 16:59:04 -------- d-----w- c:\program files\common files\DFX
2011-11-05 15:11:04 -------- d-----w- c:\users\administrator\application data\Xilisoft
2011-11-05 15:10:32 -------- d-----w- c:\program files\Xilisoft
2011-11-04 21:24:50 -------- d-----w- c:\users\administrator\local settings\application data\Ahead
2011-11-04 21:23:26 -------- d-----w- c:\program files\Nero
2011-11-03 21:47:49 -------- d-----w- c:\users\all users\application data\Nokia
2011-11-03 21:46:06 -------- d-----w- c:\program files\PC Connectivity Solution
2011-11-03 21:45:51 8576 ----a-w- c:\windows\system32\drivers\nmwcdnsuc.sys
2011-11-03 21:45:51 137472 ----a-w- c:\windows\system32\drivers\nmwcdnsu.sys
2011-11-03 21:45:50 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerfltj.sys
2011-11-03 21:45:50 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerflt.sys
2011-11-03 21:45:49 23168 ----a-w- c:\windows\system32\drivers\ccdcmbo.sys
2011-11-03 21:45:48 18176 ----a-w- c:\windows\system32\drivers\ccdcmb.sys
2011-11-02 15:04:16 99840 ------w- c:\windows\system32\dllcache\srvsvc.dll
2011-11-02 15:04:14 75776 ------w- c:\windows\system32\dllcache\strmfilt.dll
2011-11-02 15:04:14 265728 ------w- c:\windows\system32\dllcache\http.sys
2011-11-02 15:04:14 25088 ------w- c:\windows\system32\dllcache\httpapi.dll
2011-11-02 11:46:46 -------- d-----w- c:\program files\MSXML 4.0
.
==================== Find3M ====================
.
2011-11-02 04:34:53 32768 ----a-w- c:\windows\~DF6EEE.tmp
2011-11-01 18:09:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-11-01 17:59:39 0 ----a-w- c:\windows\ativpsrm.bin
2011-11-01 17:55:45 295 ----a-w- c:\windows\system32\StartAU.cmd
2011-11-01 17:48:56 40 ----a-w- c:\users\administrator\SetupS.reg
2011-11-01 17:48:56 0 ----a-w- c:\users\administrator\SetupS.cmd
2011-11-01 17:48:49 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-01 17:48:49 410984 ----a-w- c:\windows\system32\deploytk.dll
2011-10-10 14:21:17 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-28 07:05:47 599552 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 00:41:20 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 00:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 00:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-06 13:25:11 1867904 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 5:20:32.28 ===============
Dopuna: 17 Nov 2011 22:47
Jel moze odgovor please?
|
|
|
|
Poslao: 17 Nov 2011 23:38
|
offline
- diarno
- Anti Malware Fighter
Rank 2
- Pridružio: 15 Jun 2007
- Poruke: 5572
|
Naravno da moze. Problem nije u malicioznom softveru, jer istog nema. Cenim da je problem prilagodjena i nasminkana verzija Operativnog sistema.
|
|
|
|
Poslao: 18 Nov 2011 01:01
|
offline
- thenelly84
- Novi MyCity građanin
- Pridružio: 17 Nov 2011
- Poruke: 17
|
Napisano: 18 Nov 2011 0:13
Ali isti slucaj je i sa windows 7,sve isto radi i isto ponasa?Kada skeniram ceo racunar,anti malware mi pronadje jedan virus uvek u c:windows/system32.worms ali ne znam da li da ga obrisem posto moj drug kaze da bi windows posle toga bio ostecen?Mada taj problem je od skoro poceo pre toga nisam imao taj problem,danam mi je pronadjen jos jedan u temp...
Dopuna: 18 Nov 2011 1:01
Taj worms se nalazi naravno u windows last xp v.22 u samoj instalaciji ali mi do sad nije predstavljao problem.Dolazi mi da uzmem novu maticnu i resim problem,valjda...
|
|
|
|
Poslao: 18 Nov 2011 15:30
|
offline
- diarno
- Anti Malware Fighter
Rank 2
- Pridružio: 15 Jun 2007
- Poruke: 5572
|
thenelly84 ::Napisano: 18 Nov 2011 0:13
Ali isti slucaj je i sa windows 7,sve isto radi i isto ponasa?Kada skeniram ceo racunar,anti malware mi pronadje jedan virus uvek u c:windows/system32.worms ali ne znam da li da ga obrisem posto moj drug kaze da bi windows posle toga bio ostecen?Mada taj problem je od skoro poceo pre toga nisam imao taj problem,danam mi je pronadjen jos jedan u temp...
Dopuna: 18 Nov 2011 1:01
Taj worms se nalazi naravno u windows last xp v.22 u samoj instalaciji ali mi do sad nije predstavljao problem.Dolazi mi da uzmem novu maticnu i resim problem,valjda...
Nije problem do maticne.. Mozes eventualno da proveris da nisu naduti kondezatori na istoj. Mada oni izazivaju naglo gasenje, "zamrzavanje" racunara. Al opet proveri.
Kako se zove taj "worm" Kako ga Antivirus klasifikuje?
Otvori temu u windows forumu i iznesi precizno simptome i probleme. Cist si sto se tice virusa.
Pozdrav,
|
|
|
|
Poslao: 18 Nov 2011 16:05
|
offline
- thenelly84
- Novi MyCity građanin
- Pridružio: 17 Nov 2011
- Poruke: 17
|
Napisano: 18 Nov 2011 15:52
Pozdrav i jos jednom da se zahvalim sto imate vremena da nas saslusate
Virus se zove trojan generic ali ne verujem da on pravi problem na kompu,mislio sam da je prvo ram ali kad im zamenim mesta racunar,ne zeli da se upali sve dok ne pogodis pravo mesto pa sam iz tog raloga poceo da mislim da je mozda maticna.Stvarno ne znam koji je problem,inace bih mu zamenio ceo deo i bar resio problem.Koliko sam ja video kondenzatori jos uvek normalno izgledju kao kad su kupljeni.
Dopuna: 18 Nov 2011 15:57
Banalno je zbog toga sto on koci na neke glupe stvari recimo internet koji mu ram ne zauzima nista ili ne opterecuje graficku toliko a na igre retko kad skoro i nikad,to je ono sto me stvarno cudi pa sam iz tog razloga poceo da sumnjam na neki nedektovani virus posto sam skidao neke sumnjive programe koje nisam trebao,a antivirus retko kad koristim zbog rama jer ove danasnje igre su prezahtevne za igranje.
Dopuna: 18 Nov 2011 16:05
Znas da je problem windows uopste nije problem(da ga zamenim)ali fora je sto se on isto ponasa na bilo kom windowsu su isti simptomi...
|
|
|
|