Provjera [2]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Forumasi,
Samo sam dosao da provjerim dal je sve ok, da se sta malicioznone nalazi na PC.
"Redovno posjecujte svog ljekara" i te fore, pa rekoh da neko, ako nije problem i ako se ima vremena, pogleda izvjestaj "ljekara specijaliste" Hvala.
____________________________________________________________
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer:
Run by User at 19:46:32 on 2013-06-30
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.2871.1966 [GMT 2:00]
.
AV: ESET Smart Security 6.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET Smart Security 6.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\Launch Manager\dsiwmis.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Launch Manager\LMutilps32.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Qualcomm Atheros\Ath_WlanAgent.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\explorer.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Launch Manager\LMworker.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\SearchIndexer.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
.
============== Pseudo HJT Report ===============
.
uProxyServer = 222.124.130.204:8080
uWinlogon: Shell = expstart.exe
uRun: [MCShield Monitor] c:\program files\mcshield\MCShieldRTM.exe
mRun: [IAStorIcon] c:\program files\intel\intel(r) rapid storage technology\IAStorIcon.exe
mRun: [LManager] c:\program files\launch manager\LManager.exe
mRun: [ETDCtrl] c:\program files\elantech\ETDCtrl.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2013-2-20 47568]
R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2013-2-20 171680]
R1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\drivers\EpfwLWF.sys [2013-1-10 46056]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\comodo\dragon\dragon_updater.exe [2013-6-4 2095752]
R2 DsiWMIService;Dritek WMI Service;c:\program files\launch manager\dsiwmis.exe [2011-3-31 352848]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2013-3-21 1341664]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\intel\intel(r) rapid storage technology\IAStorDataMgrSvc.exe [2013-6-15 13336]
R2 IconMan_R;IconMan_R;c:\program files\realtek\realtek usb 2.0 card reader\RIconMan.exe [2013-6-15 1816064]
R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\drivers\TurboB.sys [2009-11-2 14808]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2013-6-15 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;c:\program files\qualcomm atheros\Ath_WlanAgent.exe [2013-6-15 81536]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-2-27 132480]
R3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2011-1-17 350248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\drivers\ETD.sys [2012-10-5 285072]
S3 massfilter;MBB Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2013-6-15 9216]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2013-6-15 198800]
S3 TurboBoost;TurboBoost;c:\program files\intel\turboboost\TurboBoost.exe [2009-11-2 99728]
.
=============== Created Last 30 ================
.
2013-06-28 09:02:36 -------- d-----w- c:\program files\Foxit Software
2013-06-28 06:14:12 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-28 06:14:12 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-28 06:01:16 -------- d-----w- c:\users\user\appdata\local\Adobe
2013-06-28 05:51:16 -------- d-----w- c:\users\user\appdata\local\Macromedia
2013-06-27 16:57:04 -------- d-----w- c:\users\user\appdata\local\Microsoft_Corporation
2013-06-24 18:59:21 916480 ----a-w- c:\windows\expstart.exe
2013-06-24 18:59:00 2613248 ----a-w- c:\windows\explorer.backup.exe
2013-06-18 20:21:13 -------- d-----w- c:\users\user\appdata\roaming\TeamViewer
2013-06-17 17:59:40 -------- d-----w- c:\users\user\appdata\roaming\Qualys
2013-06-16 11:59:38 -------- d-----w- c:\users\user\appdata\local\MetaGeek,_LLC
2013-06-16 11:56:10 -------- d-----w- c:\users\user\appdata\roaming\KC Softwares
2013-06-16 11:49:45 -------- d-----w- c:\users\user\appdata\local\Mozilla
2013-06-16 05:38:19 -------- d-----w- c:\windows\Panther
2013-06-16 05:38:04 -------- d-sh--w- C:\Boot
2013-06-15 23:06:30 -------- d-----w- c:\windows\AutoKMS
2013-06-15 22:57:46 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2013-06-15 22:57:46 49472 ----a-w- c:\windows\system32\netfxperf.dll
2013-06-15 22:57:46 297808 ----a-w- c:\windows\system32\mscoree.dll
2013-06-15 22:57:46 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2013-06-15 22:57:46 1130824 ----a-w- c:\windows\system32\dfshim.dll
2013-06-15 22:50:27 -------- d-----w- c:\program files\Microsoft Synchronization Services
2013-06-15 22:50:11 -------- d-----w- c:\windows\PCHEALTH
2013-06-15 22:50:11 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2013-06-15 22:49:33 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2013-06-15 22:49:13 -------- d-----w- c:\program files\Microsoft Analysis Services
2013-06-15 22:48:48 -------- d-----w- c:\users\user\appdata\local\Microsoft Help
2013-06-15 22:16:42 -------- d-----w- c:\users\user\appdata\roaming\Foxit Software
2013-06-15 21:30:40 -------- d-----w- c:\users\user\appdata\roaming\ESET
2013-06-15 21:30:40 -------- d-----w- c:\users\user\appdata\local\ESET
2013-06-15 21:29:46 -------- d-----w- c:\program files\ESET
2013-06-15 21:28:55 -------- d-----w- c:\programdata\MCShield
2013-06-15 21:28:55 -------- d-----w- c:\program files\MCShield
2013-06-15 21:01:27 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-06-15 20:50:07 -------- d-----w- c:\users\user\appdata\local\Comodo
2013-06-15 20:50:04 47368 ----a-w- c:\windows\system32\certsentry.dll
2013-06-15 20:49:58 -------- d-----w- c:\program files\Comodo
2013-06-15 20:49:14 348160 ----a-w- c:\windows\system32\msvcr71.dll
2013-06-15 20:49:14 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2013-06-15 20:49:14 1060864 ----a-w- c:\windows\system32\mfc71.dll
2013-06-15 20:45:03 -------- d-----w- c:\programdata\mquadr.at
2013-06-15 20:44:44 9216 ----a-w- c:\windows\system32\drivers\massfilter.sys
2013-06-15 20:44:44 114688 ----a-w- c:\windows\system32\drivers\ZTEusbnet.sys
2013-06-15 20:44:44 105856 ----a-w- c:\windows\system32\drivers\ZTEusbser6k.sys
2013-06-15 20:44:44 105856 ----a-w- c:\windows\system32\drivers\ZTEusbnmea.sys
2013-06-15 20:44:44 105856 ----a-w- c:\windows\system32\drivers\ZTEusbmdm6k.sys
2013-06-15 20:44:41 23424 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2013-06-15 20:44:41 201168 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2013-06-15 20:44:41 103168 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2013-06-15 20:44:41 101120 ----a-w- c:\windows\system32\drivers\ewusbdev.sys
2013-06-15 20:44:37 -------- dc-h--w- c:\programdata\{2B56DE65-39C5-483B-B8BC-2CB3750BB1EF}
2013-06-15 20:44:35 -------- d-----w- c:\program files\Vip Komandni Centar
2013-06-15 20:44:10 -------- d-----w- c:\users\user\appdata\local\PackageAware
2013-06-15 20:40:59 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\setup.dll
2013-06-15 20:40:18 -------- d-----w- c:\users\user\appdata\roaming\Synaptics
2013-06-15 20:38:46 1033832 ----a-w- c:\windows\system32\drivers\rtl8192ce.sys
2013-06-15 20:38:45 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
2013-06-15 20:38:45 -------- d-----w- c:\program files\REALTEK PCIE Wireless LAN Driver
2013-06-15 20:36:30 -------- d-----w- c:\program files\Cisco
2013-06-15 20:35:53 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2013-06-15 20:35:04 2987520 ----a-w- c:\windows\system32\drivers\athr.sys
2013-06-15 20:35:04 -------- d-----w- c:\program files\Qualcomm Atheros
2013-06-15 20:33:24 -------- d-----w- c:\programdata\Qualcomm Atheros
2013-06-15 20:32:52 -------- d-----w- c:\program files\common files\Intel
2013-06-15 20:30:01 -------- d-----w- c:\program files\Synaptics
2013-06-15 20:29:06 -------- d-----w- c:\program files\Elantech
2013-06-15 20:27:34 -------- d-----w- c:\program files\Launch Manager
2013-06-15 20:27:01 -------- d-----w- c:\program files\Broadcom
2013-06-15 20:26:02 53248 ----a-w- c:\windows\system32\CSVer.dll
2013-06-15 20:25:19 -------- d-----w- c:\windows\system32\sda
2013-06-15 20:25:01 9888400 ----a-w- c:\windows\system32\RtsUStoricon.dll
2013-06-15 20:25:01 198800 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2013-06-15 20:25:00 314000 ----a-w- c:\windows\system32\RtsUStor.dll
2013-06-15 20:24:12 -------- d-----w- c:\program files\Acer
2013-06-15 20:22:16 -------- d-sh--w- c:\windows\Installer
2013-06-15 20:21:40 -------- d-----w- c:\program files\Realtek
2013-06-15 20:16:57 -------- d-----w- C:\Intel
2013-06-15 20:16:56 435736 ----a-w- c:\windows\system32\drivers\iaStor.sys
2013-06-15 19:52:08 -------- d-----w- c:\windows\system32\wbem\Performance
.
==================== Find3M ====================
.
.
============= FINISH: 19:46:42,84 ===============
______________________________________________________

[Link mogu videti samo ulogovani korisnici]

• 1Ovo se svidja korisniku: g[h]ost
  
  Registruj se da bi pohvalio/la poruku!

Deluje sve u redu, ako zelis dodatnu proveru odradi sledece:


Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.


Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);

Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Hvala argus , evo izvjestaja:

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

• 1Ovo se svidja korisniku: g[h]ost
  
  Registruj se da bi pohvalio/la poruku!

Mozes da pobrises alate, nema nista sporno.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

OK, hvala ti jos jednom.