Virusi na Laptopu

3

Virusi na Laptopu

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Napisano: 14 Jun 2012 13:14

trazio sam po internetu,i nasao sam GMER,a za ovaj DDS nisam mogao da nadjem

Dopuna: 14 Jun 2012 13:51

DDS izvjestaj



.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by Luta at 13:21:26 on 2012-06-14
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1013.250 [GMT 2:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Luta\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Join Air\UIMain.exe
C:\Program Files\Join Air\CMUpdater.exe
C:\Users\Luta\Downloads\m3zjbsxh.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mystart.incredibar.com/mb139?a=6R8vGPzSz6&i=26
mSearchAssistant =
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [SpeedConnectStartUp]
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: Interfaces\{6ED8DEA4-D65B-4C66-A4CA-CBA5725E08BF} : NameServer = 212.200.246.8 213.133.3.5
TCP: Interfaces\{F5A3423C-50F7-4A8C-A90B-48CFFE968F53} : DhcpNameServer = 192.168.1.254
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\luta\appdata\roaming\mozilla\firefox\profiles\iicjnqa0.default\
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredibar.com/mb139?a=6R8vGPzSz6&i=26
FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8vGPzSz6&&i=26&search=
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\users\luta\appdata\local\google\update\1.3.21.111\npGoogleUpdate3.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6R8vGPzSz6&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - 6c4d8122000000000000000000000000
FF - user.js: extensions.incredibar_i.instlDay - 15502
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1418:26:34
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6R8vGPzSz6
FF - user.js: extensions.incredibar_i.upn2n - 92824517837456880
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10650
FF - user.js: extensions.incredibar_i.ppd - 27%5F4
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2012-1-8 68208]
R3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2012-1-8 6766080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [2012-1-8 82768]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2012-1-8 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-6-8 113120]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2012-5-26 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2012-5-26 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2012-5-26 123648]
.
=============== Created Last 30 ================
.
2012-06-13 18:21:01 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2012-06-12 21:29:26 327168 ----a-w- c:\windows\IsUninst.exe
2012-06-12 21:29:16 -------- d-----w- c:\windows\_ISTMP1.DIR
2012-06-12 06:38:39 6737808 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{da972507-4247-4d8c-ac6a-449d37c4f35b}\mpengine.dll
2012-06-11 16:20:12 -------- d-----w- c:\programdata\OptimizerPro
2012-06-11 16:20:06 -------- d-----w- c:\program files\Optimizer Pro
2012-06-11 16:17:13 -------- d-----w- c:\programdata\Bcool
2012-06-11 16:16:11 -------- d-----w- c:\programdata\InstallMate
2012-06-09 22:14:59 -------- d-----w- c:\users\luta\appdata\roaming\FastStone
2012-06-09 22:14:27 -------- d-----w- c:\program files\FastStone Photo Resizer
2012-06-09 13:17:41 57904 ------w- c:\windows\system32\wbload.dll
2012-06-09 13:17:39 42672 ------w- c:\windows\system32\wbsys.dll
2012-06-09 13:17:38 -------- d-----w- c:\program files\Stardock
2012-06-09 11:15:03 -------- d-----w- c:\users\luta\appdata\roaming\PC Cleaners
2012-06-09 11:15:00 -------- d-----w- c:\users\luta\appdata\roaming\PCPro
2012-06-09 11:14:59 4198712 ----a-w- c:\windows\uninst.exe
2012-06-09 11:14:56 -------- d-----w- c:\programdata\PC1Data
2012-06-09 10:45:40 48648 ----a-w- c:\programdata\microsoft\ehome\packages\mceclientux\updateablemarkup\Markup.dll
2012-06-08 23:16:24 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-08 23:16:14 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-08 23:16:07 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-08 23:16:07 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-08 11:31:41 -------- d-----w- c:\program files\Defraggler
2012-06-08 10:10:20 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-06-08 10:10:18 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2012-06-08 10:10:17 770384 ----a-w- c:\program files\mozilla firefox\msvcr100.dll
2012-06-08 10:10:17 421200 ----a-w- c:\program files\mozilla firefox\msvcp100.dll
2012-06-08 10:10:17 157600 ----a-w- c:\program files\mozilla firefox\maintenanceservice_installer.exe
2012-06-08 10:10:17 113120 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2012-06-07 20:46:46 -------- d-----w- c:\windows\system32\appmgmt
2012-06-07 19:47:39 -------- d-----w- c:\program files\common files\xing shared
2012-06-07 19:46:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-06-07 19:46:14 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-06-05 14:07:55 -------- d-----w- c:\users\luta\appdata\roaming\USB Drivers For Windows Vista Utility
2012-05-31 14:32:36 252952 ----a-w- c:\windows\system32\igfxsrvc.exe
2012-05-31 14:32:36 141848 ----a-w- c:\windows\system32\igfxtray.exe
2012-05-31 14:32:33 173080 ----a-w- c:\windows\system32\igfxext.exe
2012-05-31 14:32:33 150552 ----a-w- c:\windows\system32\igfxpers.exe
2012-05-31 14:32:32 672792 ----a-w- c:\windows\system32\igfxcfg.exe
2012-05-27 22:38:45 -------- d-----w- c:\windows\system32\directx
2012-05-26 19:56:39 123648 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2012-05-26 19:56:39 12288 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2012-05-26 19:56:39 12288 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2012-05-26 19:56:38 98432 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2012-05-26 19:56:38 14848 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2012-05-26 19:56:38 12416 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2012-05-26 19:56:38 12416 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2012-05-26 19:55:02 98560 ----a-w- c:\windows\system32\drivers\ss_bus.sys
2012-05-26 19:55:02 14848 ----a-w- c:\windows\system32\drivers\ss_mdfl.sys
2012-05-26 19:55:02 12416 ----a-w- c:\windows\system32\drivers\ss_cmnt.sys
2012-05-26 19:55:02 12416 ----a-w- c:\windows\system32\drivers\ss_cm.sys
2012-05-26 19:55:02 123776 ----a-w- c:\windows\system32\drivers\ss_mdm.sys
2012-05-26 19:55:02 12288 ----a-w- c:\windows\system32\drivers\ss_whnt.sys
2012-05-26 19:55:02 12288 ----a-w- c:\windows\system32\drivers\ss_wh.sys
2012-05-26 19:53:23 -------- d-----w- c:\programdata\Samsung
2012-05-23 20:47:59 624608 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2012-05-23 20:47:59 43488 ----a-w- c:\program files\mozilla firefox\mozglue.dll
2012-05-22 20:29:47 -------- d-----w- c:\users\luta\appdata\local\Djordje_Zeljic
.
==================== Find3M ====================
.
2012-04-29 14:39:36 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-02 04:46:44 3958128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-02 04:46:44 3902320 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-02 02:43:16 2342400 ----a-w- c:\windows\system32\win32k.sys
2012-03-30 10:29:05 1287024 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-03-22 19:12:12 4435968 ----a-w- c:\windows\system32\GPhotos.scr
2012-03-17 07:20:17 56688 ----a-w- c:\windows\system32\drivers\partmgr.sys
.
============= FINISH: 13:23:56,04 ===============




https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

GMER izvjestaj


https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6104

Nikola, logovi ne pokazuju tragove aktivnog malware-a a ni antivirusa.

Instaliraj neki antivirus. To je to. Ovaj problem nije prozurokovao neki malware.

Ko je trenutno na forumu
 

Ukupno su 1102 korisnika na forumu :: 52 registrovanih, 10 sakrivenih i 1040 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Rade, A.R.Chafee.Jr., AleksSE, aramis s, bojank, Boris90, cenejac111, Darkoniii_94, DENIRO, Djordje29, djordje92sm, Dogma21, dolinalima, draganca, DragoslavS, Frunze, Georgius, hyla, Još malo pa deda, Korida, Kubovac, kybonacci, Logic005, Marko Marković, mercedesamg, Mercury, mile23, Mile80, milenko crazy north, milimoj, musa, nazgul75, nebojsag, Nemanja.M, nenad81, nextyamb, operniki, Pohovani_00, Prašinar, raptorsi, Romibrat, rovac, royst33, solic, styg, suponik, user96, vathra, Vatreni Zmaj, voja64, zdrebac, zillbg