MyCity » Ambulanta -> Arhiva Ambulante » Virus ili nesto drugo?

Virus ili nesto drugo?

Napisano na dan: 23.9.2011

Virus ili nesto drugo?
Sledeća strana Pagination

Idi na vrh

Poslao: 23 Sep 2011 15:14
Idi na vrh
offline
  • UCZ 
  • Građanin
  • Pridružio: 04 Mar 2007
  • Poruke: 119

Pozdrav ljudi.

Imam problem koji pocinje da nervira.Desi mi se da pri gledaju nekog klipa sa youtjuba kompjuter jednostavno zakuca, na minut-dva. Slika ne ide kao da se zamrzne, i ne mogu da kliknem ni na sta(ali mogu da pomeram misa), ali zvuk ide.I tako minut-dva, i onda opet za 10 minuta, kod nekog drugog klipa.Pretpostavljam da je neki virus, ali sam skenirao kompjuter, i nije nasao virus, i uradio sam defragmentaciju i opet isto.

Poslao: 23 Sep 2011 15:26
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3896
  • Gde živiš: Novi Sad,Klisa

Pozdrav UCZ



u ovom potforumu postoje odredjena pravila koja bi trebao da proceitas pre otvaranja teme.

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

zamolio bih te da ih procitas i da shodno tome postavis odgovarajuce logove





NIx Car (AMF Tim)

Poslao: 23 Sep 2011 19:08
Idi na vrh
offline
  • UCZ 
  • Građanin
  • Pridružio: 04 Mar 2007
  • Poruke: 119

Desi mi se da pri gledaju nekog klipa sa youtuba kompjuter jednostavno zakuca, na minut-dva. Slika ne ide kao da se zamrzne, i ne mogu da kliknem ni na sta(ali mogu da pomeram misa), ali zvuk ide.I tako minut-dva, i onda opet za 10 minuta, kod nekog drugog klipa.Pretpostavljam da je neki virus, ali sam skenirao kompjuter, i nije nasao virus, i uradio sam defragmentaciju i opet isto.
Pocelo je pre nekih nedelju dana.
Raspolzem Telekomovim internetom(ADSL) 4mb brzina konekcije.

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by CZ at 15:46:13 on 2011-09-23
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.555 [GMT 2:00]
.
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Bandoo\Bandoo.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://start.facemoods.com/?a=vsl&s={searchTerms}&f=4
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~3\office12\GRA8E1~1.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: BandooIEPlugin Class: {eb5cee80-030a-4ed8-8e20-454e9c68380f} - c:\program files\bandoo\plugins\ie\ieplugin.dll
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\cz\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{FE22B680-FB31-43A4-B527-F3504BC3FF46} : DhcpNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~3\office12\GR99D3~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
AppInit_DLLs: c:\progra~1\bandoo\bndhook.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~3\office12\GRA8E1~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\cz\application data\mozilla\firefox\profiles\9ihm67hr.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://vshare.toolbarhome.com/search.aspx?srch=ku&q=
FF - plugin: c:\documents and settings\cz\local settings\application data\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\windows\system32\tvuax\npTVUAx.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2011-5-27 11608]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-2-25 218688]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2011-5-27 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2011-5-27 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-5-27 66616]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-5-25 366152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-5-25 22216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-4-29 136176]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-2-8 1691480]
S3 cpuz134;cpuz134;c:\program files\cpuid\pc wizard 2010\pcwiz_x32.sys [2011-6-7 20328]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-4-29 136176]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-09-22 15:36:19 -------- d-----w- c:\documents and settings\cz\application data\Disk Cleaner
2011-09-22 15:36:14 -------- d-----w- c:\program files\Disk Cleaner
2011-09-20 01:03:44 -------- d-----w- c:\windows\SxsCaPendDel
2011-09-18 12:31:53 -------- d-----w- c:\program files\Nero
2011-09-18 12:31:41 -------- d-----w- c:\documents and settings\all users\application data\Nero
2011-09-16 22:41:15 -------- d-----w- c:\documents and settings\cz\application data\Bandoo
2011-09-16 22:38:23 -------- d-----w- c:\documents and settings\all users\application data\Bandoo
2011-09-16 22:38:16 -------- d-----w- c:\documents and settings\cz\local settings\application data\Ilivid Player
2011-09-16 22:37:47 -------- d-----w- c:\program files\Bandoo
2011-09-16 22:36:28 -------- dc-h--w- c:\documents and settings\all users\application data\{94D867E5-DFF5-4374-ADEE-C3F5BE97F03A}
2011-09-16 22:36:14 -------- d-----w- c:\program files\iLivid
2011-09-16 22:35:21 -------- d-----w- c:\documents and settings\cz\local settings\application data\PackageAware
2011-09-12 18:53:34 -------- d-----w- c:\program files\KONAMI
2011-09-12 18:53:34 -------- d-----w- c:\documents and settings\all users\application data\KONAMI
2011-09-12 18:12:33 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2011-09-12 18:12:33 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2011-09-05 17:04:56 183696 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2011-09-09 09:11:14 599552 ----a-w- c:\windows\system32\crypt32.dll
2011-09-08 10:48:33 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-31 15:00:50 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-15 13:29:35 457856 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-07-04 10:32:29 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys
.
============= FINISH: 15:46:34,87 ===============


mycity.rs/must-login.png


mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

Poslao: 25 Sep 2011 00:36
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3896
  • Gde živiš: Novi Sad,Klisa

Na tvom racunaru nemas aktivinih tragova malwarea.

Otvori novu temu u windows potforumu i tamo se izjasni sa svojim problemom,posto ovde resavamo probleme koji su iskljucivo vezani za malware



MyCity » Ambulanta -> Arhiva Ambulante » Virus ili nesto drugo?

Ko je trenutno na forumu
 

Ukupno su 821 korisnika na forumu :: 28 registrovanih, 5 sakrivenih i 788 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., ALBION101, alkatraz080, Andrija357, arsa, Bogoslov, cenejac111, cikadeda, danilopu, Drug pukovnik, ILGromovnik, ivan1973, Krusarac, Lieutenant, MB120mm, mercedesamg, MiroslavD, Miskohd, Najax, S2M, sakota79, Sirius, Snorks, Toni, vasa.93, vlvl, W123, Yellow Pinky