Win32/OpenCandy

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

da li je ovo virus ili je nesto drugo,sad mi se pojavilo
evo slika

• 2Ovo se svidja korisnicima: nikola9896, mcrule
  
  Registruj se da bi pohvalio/la poruku!

Pozdrav, tvoja tema je izdvojena u poseban topic.

Postavi odgovarajuce logove po uputstvu:
[Link mogu videti samo ulogovani korisnici]

Neko od clanova AMF Tima ce pregledati logove i po potrebi dati instrukcije kako da isti i uklonis.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 12 Jul 2012 21:01

uzasno mi koci laptop evo izvjestaja


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by Luta at 18:30:58 on 2012-07-12
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1013.220 [GMT 2:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Luta\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = [Link mogu videti samo ulogovani korisnici]
mSearchAssistant =
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [SpeedConnectStartUp]
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
mRunOnce: [InnoSetupRegFile.0000000001] "c:\windows\is-H5O2P.exe" /REG /REGSVRMODE
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - [Link mogu videti samo ulogovani korisnici]
TCP: Interfaces\{6ED8DEA4-D65B-4C66-A4CA-CBA5725E08BF} : NameServer = 212.200.246.8 213.133.3.5
TCP: Interfaces\{F5A3423C-50F7-4A8C-A90B-48CFFE968F53} : DhcpNameServer = 192.168.1.254
Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2012-1-8 68208]
R3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2012-1-8 6766080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [2012-1-8 82768]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2012-1-8 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;"c:\program files\mozilla maintenance service\maintenanceservice.exe" --> c:\program files\mozilla maintenance service\maintenanceservice.exe [?]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2012-1-9 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2012-1-9 8576]
S3 PRODIGY;PRODIGY;c:\windows\system32\drivers\prodigy.sys [2012-3-28 32377]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2012-5-26 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2012-5-26 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2012-5-26 123648]
S4 UI Assistant Service;UI Assistant Service;c:\program files\join air\AssistantServices.exe [2012-1-8 252784]
.
=============== Created Last 30 ================
.
2012-07-12 15:26:01 -------- d-----w- c:\program files\CCleaner
2012-07-12 01:33:15 711240 ----a-w- c:\windows\is-H5O2P.exe
2012-07-11 02:12:54 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{ffa71e74-a496-41e7-947a-7f01cd4428d6}\offreg.dll
2012-07-11 02:11:04 6762896 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{ffa71e74-a496-41e7-947a-7f01cd4428d6}\mpengine.dll
2012-07-10 18:06:56 -------- d-----w- c:\users\luta\appdata\local\NokiaAccount
2012-07-10 18:01:53 -------- d-----w- c:\programdata\Nokia
2012-07-10 17:58:28 -------- d-----w- c:\programdata\NokiaInstallerCache
2012-07-10 14:41:05 -------- d-----w- c:\users\luta\appdata\local\SISContents
2012-07-09 10:37:47 -------- d-----w- c:\users\luta\appdata\roaming\USBSafelyRemove
2012-07-09 10:32:13 176128 ----a-w- c:\windows\system\FTD2XX.dll
2012-07-08 23:57:53 -------- d-----w- c:\program files\Laneware
2012-07-07 13:08:03 -------- d-----w- c:\program files\common files\xing shared
2012-07-07 13:07:23 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-07-07 13:07:23 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-07-05 21:33:25 -------- d-----w- c:\programdata\YTD Video Downloader
2012-07-05 14:13:40 -------- d-----w- c:\program files\Bench Software
2012-06-29 05:06:09 48648 ----a-w- c:\programdata\microsoft\ehome\packages\mceclientux\updateablemarkup-2\Markup.dll
2012-06-28 13:18:46 -------- d-----w- c:\programdata\YTD YouTube Downloader & Converter
2012-06-28 13:18:19 -------- d-----w- c:\program files\GreenTree Applications
2012-06-22 21:33:20 -------- d-----w- c:\users\luta\appdata\roaming\Qualys
2012-06-19 12:56:17 -------- d-----w- c:\users\luta\appdata\roaming\Canneverbe Limited
2012-06-19 12:56:17 -------- d-----w- c:\programdata\Canneverbe Limited
2012-06-15 08:46:51 -------- d-----w- c:\users\luta\appdata\local\Opera
2012-06-13 18:21:01 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2012-06-12 21:29:26 327168 ----a-w- c:\windows\IsUninst.exe
2012-06-12 21:29:16 -------- d-----w- c:\windows\_ISTMP1.DIR
.
==================== Find3M ====================
.
2012-07-03 11:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-09 11:13:14 4198712 ----a-w- c:\windows\uninst.exe
2012-06-02 22:12:32 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12:13 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19:42 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12:20 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-05-31 10:25:14 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-04-29 14:39:36 472808 ----a-w- c:\windows\system32\deployJava1.dll
.
============= FINISH: 18:32:19,95 ===============




[Link mogu videti samo ulogovani korisnici]


[Link mogu videti samo ulogovani korisnici]



[Link mogu videti samo ulogovani korisnici]



[Link mogu videti samo ulogovani korisnici]



[Link mogu videti samo ulogovani korisnici]



[Link mogu videti samo ulogovani korisnici]


a za GMER 1 ne moze

Dopuna: 12 Jul 2012 23:10

evo i GMER 1,prvo mi je laptop zakocio,ali sam ga uspio skenirak evo izvjestaja

[Link mogu videti samo ulogovani korisnici]

Dopuna: 13 Jul 2012 14:57

da li je ovo virus ili neka greska

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav, nikola9896

Tvoj racunar je cist sto se tice malware-a


Imas li i dalje nekih problema?


Na racunaru nemas instaliran Antivirus. Windows Defender nije antivirus, tako da nece zastititi racunar na pravi nacin. Ukoliko nemaš novaca ili ne želiš da ga izdvojiš za neki komercijalni AV program, na raspolaganju ti se nalaze kvalitetni besplatni AV programi poput Avast Free, AVG Free, Avira Free, Microsoft Security Essentials, Panda Cloud AV, itd.

Nemoj koristiti piratske verzije AV programa!!!


Imas Windows 7 bez Service Pack-a, preporucujem ti da apdejtujes sistem, o prednostima toga da ne pricam


Takođe, poseti ovu temu da vidiš da li ti je pretraživač ranjiv i instaliraš ažurirane komponente
[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

juce mi je kocio laptop uzasno kad reflesujem kocimi,i onda sam uradio clean system sa windows defender,i onda mi nije kocio,samo hocu da pitam koliko kosta licenca za kis 2012,za ove antiviruse,avast mi usporava laptop i avg,a panda i microsoft jos nisam probo,takodje sam koristio piratske verzije,da li je to uticalo na laptop,takodje hocu da obalim sistem laptopu i da instaliram SP1,a da li mi je ranjiv brovsver,da li cu ovdje da postavim,ili cu da otvorim novu temu,zasad nema nekih problema,poz THE

• 1Ovo se svidja korisniku: NIx Car
  
  Registruj se da bi pohvalio/la poruku!

Ovde zavrsavamo diskusiju, ako imas nesto da pitas u vezi zastitnih programa, uradi to u ovom forumu, a ako imas problema sa racunarom, tu je Windows forum

Poz