MyCity » Ambulanta -> Arhiva Ambulante » Molim za proveru sumljivog fajla

Molim za proveru sumljivog fajla

Napisano na dan: 8.3.2012

Molim za proveru sumljivog fajla
Sledeća strana Pagination

Idi na vrh

Poslao: 08 Mar 2012 16:21
Idi na vrh
offline
  • Pridružio: 15 Feb 2011
  • Poruke: 112

Treba mi pomoc oko programa po imenu DVB Viewer 4.9 Pro. Prilikom instalacije nisam imao problem sa njim ali kad sam fajl postavio na virustotal dobio sam ovo:

Dvb Viewer 4.9

Ja ne primecujem da mi je racunar nesto usporen ili da nesto ne radi,jednostavno kao da je sve ok. Zanima me da li je ovo neki false positive ili je ipak nesto ozbiljnije?

Inace koristim mobilni bezicni net op Vip-a,onaj paket od 15gb. Od antivirusa imam Avast i MalwereBytes,firewall je Comodo.


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.7601.17514
Run by aca at 16:02:26 on 2012-03-08
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3198.1793 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: COMODO Defense+ *Disabled/Updated* {CE351521-78FA-2048-BB22-B68A4A5CA7EC}
FW: COMODO Firewall *Enabled* {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Windows\DAODx.exe
C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\DVBViewer\Remotes\starter.exe
C:\Program Files\DVBViewer\Remotes\ts_winlirc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Vip Komandni Centar\VipKomandniCentar.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\iolo\System Mechanic Professional\SMTrayNotify.exe
C:\Windows\system32\WUDFHost.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\aca\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - c:\program files\devicevm\browser configuration utility\AddressBarSearch.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
mRun: [HDAudDeck] c:\program files\via\viaudioi\vdeck\VDeck.exe -r
mRun: [DVBViewer Starter] c:\program files\dvbviewer\remotes\starter.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [BCU] "c:\program files\devicevm\browser configuration utility\BCU.exe"
mRun: [iolo Startup] "c:\program files\iolo\common\lib\ioloLManager.exe"
dRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /Manual
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
TCP: Interfaces\{C20ED4F1-53F7-4001-833F-E7DB7F19027B} : NameServer = 8.8.8.8 10.85.64.173
Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
IFEO: KeyTool.exe - "c:\windows\system32\wins.exe" /locked:KeyTool.exe
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-3-6 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-3-6 337880]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [2012-1-17 491816]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2011-12-19 39640]
R1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\ElRawDsk.sys [2012-3-7 20392]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-12-6 163328]
R2 AMD FUEL Service;AMD FUEL Service;c:\program files\ati technologies\ati.ace\fuel\Fuel.Service.exe [2011-12-5 291840]
R2 AODDriver4.01;AODDriver4.01;c:\program files\ati technologies\ati.ace\fuel\i386\aoddriver2.sys [2011-6-24 39424]
R2 AsSysCtrlService;ASUS System Control Service;c:\program files\asus\assysctrlservice\1.00.02\AsSysCtrlService.exe [2012-3-3 96896]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-3-6 20696]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-3-6 57688]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-3-7 44768]
R2 BCUService;Browser Configuration Utility Service;c:\program files\devicevm\browser configuration utility\BCUService.exe [2009-10-26 223464]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2012-3-7 722616]
R2 TeamViewer6;TeamViewer 6;c:\program files\teamviewer\version6\TeamViewer_Service.exe [2012-3-5 2228008]
R3 amdiox86;AMD IO Driver;c:\windows\system32\drivers\amdiox86.sys [2012-3-4 37944]
R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2011-12-6 9067008]
R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2011-12-6 264192]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-10-17 85520]
R3 MTSBDA;TechniSat SkyStar HD2;c:\windows\system32\drivers\MtsBda.sys [2012-2-1 265744]
R3 MtsHID;TechniSat Mantis BDA HID Driver;c:\windows\system32\drivers\MtsHID.sys [2012-2-1 23568]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-1-22 59904]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-1-22 139648]
R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2012-3-3 31288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2012-3-3 1127936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-11-25 311928]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2012-3-4 9216]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-3-3 15872]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2012-3-3 260640]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-3-3 52224]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2012-2-9 10064]
S4 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-3-7 500568]
S4 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2012-2-9 1529152]
.
=============== File Associations ===============
.
JSEFile=NOTEPAD.EXE %1
regfile=NOTEPAD.EXE %1
scrfile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1
.txt=GetDiz.Document
.
=============== Created Last 30 ================
.
.
==================== Find3M ====================
.
2012-03-07 12:32:05 74703 ----a-w- c:\windows\system32\mfc45.dll
2012-03-07 00:15:19 41184 ----a-w- c:\windows\avastSS.scr
2012-03-07 00:03:51 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-03-07 00:02:14 44376 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-03-07 00:01:48 57688 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-03-05 12:20:23 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-03-04 00:39:05 107065 ----a-w- c:\program files\Uninstall.exe
2012-03-03 18:57:53 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-03-03 18:57:53 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-03-03 16:35:59 152576 ----a-w- c:\windows\system32\msclmd.dll
2012-03-03 16:08:59 0 ----a-w- c:\windows\ativpsrm.bin
2012-03-03 15:39:16 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2012-03-03 15:39:16 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2012-02-23 08:18:36 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-09 13:13:28 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2012-02-09 13:13:18 21312 ----a-w- c:\windows\system32\authuitu.dll
2012-01-17 20:00:42 491816 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2012-01-14 03:35:54 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-01-06 10:51:24 29696 ----a-w- c:\windows\system32\iolobtdfg.exe
2012-01-06 10:51:16 11776 ----a-w- c:\windows\system32\smrgdf.exe
2012-01-06 10:29:06 2083464 ----a-w- c:\windows\system32\Incinerator32.dll
2012-01-04 08:58:41 442880 ----a-w- c:\windows\system32\ntshrui.dll
2011-12-30 16:02:54 21848 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2011-12-30 05:27:56 478720 ----a-w- c:\windows\system32\timedate.cpl
2011-12-19 17:59:14 39640 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2011-12-19 17:59:12 19600 ----a-w- c:\windows\system32\drivers\cmderd.sys
2011-12-19 17:58:58 33984 ----a-w- c:\windows\system32\cmdcsr.dll
2011-12-19 17:58:56 301224 ----a-w- c:\windows\system32\guard32.dll
2011-12-16 07:54:22 981504 ----a-w- c:\windows\system32\wininet.dll
2011-12-16 07:52:58 690688 ----a-w- c:\windows\system32\msvcrt.dll
2011-12-16 06:09:17 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-12-10 14:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
.
============= FINISH: 16:02:57.57 ===============




mycity.rs/must-login.png

mycity.rs/must-login.png





mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

Poslao: 08 Mar 2012 17:42
Idi na vrh
offline
  • Fil  Male
  • Legendarni građanin
  • Pridružio: 11 Jun 2009
  • Poruke: 16586

Računar ti je čist po pitanju malicioznih programa.


Exclamation Preporučujem ti da koristiš legalne verzije aplikacija. Detekcije, u ovom slučaju, se javljaju jer program nije preuzet sa legalnog izvora.


Idea Preporučujem ti da koristiš program MCShield za zaštitu USB memorijskih uređaja.

Program možeš preuzeti sa OVOG linka. Nakon instalacije programa, priključi USB memorijske uređaje, i oni će biti skenirani. Na kraju skeniranja ćeš dobiti izveštaj da je uređaj čist ili obaveštenje o uklonjenom malware-u.


Idea Takođe, poseti ovu temu da vidiš da li ti je pretraživač ranjiv i instaliraš ažurirane komponente
http://www.mycity.rs/Propusti-i-azuriranja/Testira.....anjiv.html

Poslao: 08 Mar 2012 18:38
Idi na vrh
offline
  • Pridružio: 15 Feb 2011
  • Poruke: 112

A sta nam je onda virustotal registrovao?
Hvala na pomoci.

Poslao: 08 Mar 2012 18:59
Idi na vrh
offline
  • Fil  Male
  • Legendarni građanin
  • Pridružio: 11 Jun 2009
  • Poruke: 16586

Da je fajl zapakovan sa jednim od sumnjivih pakera. No, to nije deo ove priče, budući da je računar čist.
Ako su potrebne dalje informacije, otvori temu ovde:
http://www.mycity.rs/Zastita/

Poslao: 08 Mar 2012 19:45
Idi na vrh
offline
  • Pridružio: 15 Feb 2011
  • Poruke: 112

Ok,hvala puno.

MyCity » Ambulanta -> Arhiva Ambulante » Molim za proveru sumljivog fajla

Ko je trenutno na forumu
 

Ukupno su 1239 korisnika na forumu :: 54 registrovanih, 10 sakrivenih i 1175 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., ajo baba, amaterSRB, Apok, armor, Atomski čoban, bladesu, bojank, Brana01, cinoeye, darcaud, djboj, Dorcolac, dragoljub11987, Futurama, goxin, Ivan Campo, JimmyNapoli, Kaplar2, Karla, kolle.the.kid, Kubovac, Lieutenant, Marko Marković, Metanoja, mgolub, milenko crazy north, milimoj, Milos ZA, moldway, Nemanja.M, ozzy, panzerwaffe, raketaš, raso7, Regrut Boskica, robertino, royst33, ruger357, sombrero, SR-3m, Srle993, stalja, suton, Tragač, VP6919, wolf431, wolverined4, Wrangler, zdrebac, Žrnov, žeks62, 1107