Virus na Laptopu

Virus na Laptopu

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1642

Prije mjesec dana sam reinstaliro sistem i do juce nisam imao nijedan antivirus,pa sam danas instalirao MSE,laptop mi sporo otvara stranice,kasni zvuk kad palim laptop,yt sjecka itd...
Na laptopu mi je instaliram Windows 7 Ultimate SP 1 32-bit

DDS


DDS (Ver_2012-10-19.01) - NTFS_x86
Internet Explorer: 9.0.8112.16421
Run by Luta at 7:26:00 on 2012-10-20
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2811.1663 [GMT -7:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\VistaSrv.exe
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WBVista.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Join Air\AssistantServices.exe
c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Motorola\Bluetooth\obexsrv.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Windows\system32\SearchIndexer.exe
c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = my.daemon-search.com
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} -
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} -
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
mRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtkNGUI.exe -s
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [NPSStartup] <no file>
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\motorola\bluetooth\btmiesend.htm
TCP: Interfaces\{11366DE8-0424-441A-B9F6-D8BEBE58401B} : NameServer = 212.200.246.8 213.133.3.5
SSODL: WebCheck - <orphaned>
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2012-10-20 12:18:08 -------- d-----w- c:\programdata\MCShield
2012-10-20 12:18:07 -------- d-----w- c:\program files\MCShield
2012-10-20 12:15:06 740784 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{687fc6b4-493e-46ce-9571-993ea8b52ae0}\gapaengine.dll
2012-10-20 12:14:59 6918632 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{75ffffac-735b-447c-b875-31d25afa6091}\mpengine.dll
2012-10-20 06:23:46 6918632 ------w- c:\programdata\microsoft\windows defender\definition updates\{faedd72b-3313-4199-92aa-97cb5f5468db}\mpengine.dll
2012-10-20 05:35:40 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-10-20 05:35:39 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-10-20 05:35:39 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-10-20 05:35:39 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-10-20 05:35:39 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-10-20 05:35:39 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-10-20 05:35:39 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-10-20 05:18:24 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2012-10-20 05:18:24 74240 ----a-w- c:\windows\system32\fsutil.exe
2012-10-20 05:18:24 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2012-10-20 05:18:24 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2012-10-20 05:18:24 1699328 ----a-w- c:\windows\system32\esent.dll
2012-10-20 05:18:24 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2012-10-20 05:18:24 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2012-10-20 05:18:24 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2012-10-20 05:17:40 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2012-10-20 05:17:40 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-10-19 14:42:09 -------- d-----w- c:\program files\TrueCafe
2012-10-19 14:38:15 -------- d-----w- c:\programdata\Remote
2012-10-19 14:18:01 740784 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2012-10-19 14:17:45 34128 ----a-w- c:\windows\system32\drivers\dfmirage.sys
2012-10-19 14:17:45 32976 ----a-w- c:\windows\system32\dfmirage.dll
2012-10-19 13:31:57 -------- d-----w- c:\users\luta\appdata\roaming\FastStone
2012-10-19 13:31:52 -------- d-----w- c:\program files\FastStone Photo Resizer
2012-10-19 12:29:46 -------- d-----w- c:\program files\Microsoft Security Client
2012-10-19 11:27:56 -------- d-----w- c:\program files\MSXML 4.0
2012-10-19 10:46:15 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-10-19 10:05:08 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-10-19 10:05:07 5120 ----a-w- c:\windows\system32\wmi.dll
2012-10-19 10:05:07 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-10-19 08:36:54 6918632 ------w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2012-10-19 07:53:21 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-10-19 07:53:21 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-10-18 17:04:27 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-10-18 15:12:24 369336 ----a-w- c:\windows\system32\drivers\cng.sys
2012-10-18 15:12:24 225280 ----a-w- c:\windows\system32\schannel.dll
2012-10-18 15:12:23 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-10-18 15:12:23 219136 ----a-w- c:\windows\system32\ncrypt.dll
2012-10-18 15:12:23 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-10-18 15:05:26 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-10-18 13:22:48 492032 ----a-w- c:\windows\system32\win32spl.dll
2012-10-18 13:22:48 317440 ----a-w- c:\windows\system32\spoolsv.exe
2012-10-18 13:22:46 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-10-18 13:22:46 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-10-18 13:22:29 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2012-10-18 13:22:29 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-10-18 13:22:29 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-10-18 13:22:26 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2012-10-18 13:22:24 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-10-18 13:20:25 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-10-18 13:20:24 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-10-18 13:20:23 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-10-18 13:20:23 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-10-18 13:20:23 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-18 13:14:48 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-18 13:14:48 1159680 ----a-w- c:\windows\system32\crypt32.dll
2012-10-18 13:14:48 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-18 13:13:30 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-10-18 13:13:16 75776 ----a-w- c:\windows\system32\psisrndr.ax
2012-10-18 13:13:16 465408 ----a-w- c:\windows\system32\psisdecd.dll
2012-10-18 13:13:14 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-10-18 13:13:08 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-10-18 13:13:08 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-10-18 13:12:58 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2012-10-18 13:05:41 67072 ----a-w- c:\windows\system32\packager.dll
2012-10-18 13:04:53 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
2012-10-18 13:04:51 400896 ----a-w- c:\windows\system32\srcore.dll
2012-10-18 13:04:44 534528 ----a-w- c:\windows\system32\EncDec.dll
2012-10-18 13:03:44 41984 ----a-w- c:\windows\system32\browcli.dll
2012-10-18 13:03:44 102912 ----a-w- c:\windows\system32\browser.dll
2012-10-18 13:03:35 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2012-10-18 13:03:09 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-10-18 13:03:01 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-10-18 13:02:56 850944 ----a-w- c:\windows\system32\sbe.dll
2012-10-18 13:02:56 642048 ----a-w- c:\windows\system32\CPFilters.dll
2012-10-18 13:02:55 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2012-10-18 13:02:48 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-10-18 12:59:11 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-10-18 12:59:07 2616320 ----a-w- c:\windows\explorer.exe
2012-10-18 12:56:36 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-10-18 12:56:36 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-18 12:55:59 2342400 ----a-w- c:\windows\system32\msi.dll
2012-10-18 12:55:48 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-10-18 12:49:54 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-10-18 12:49:36 769024 ----a-w- c:\windows\system32\localspl.dll
2012-10-18 12:49:27 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-10-18 12:48:05 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-10-18 12:47:20 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-10-18 12:47:20 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-10-18 12:47:12 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-10-18 12:42:01 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-10-18 12:39:23 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-10-18 12:08:16 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-10-18 12:03:51 -------- d-----w- C:\Fraps
2012-10-18 11:33:11 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-10-18 11:33:11 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-10-18 11:13:07 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-10-18 11:12:51 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-10-18 11:12:42 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-10-18 11:12:42 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-10-14 20:16:48 -------- d-----w- C:\Rainmeter
2012-10-14 14:12:57 -------- d-----w- c:\program files\NeoSmart Technologies
2012-10-14 14:00:03 57904 ----a-w- c:\windows\system32\wbload.dll
2012-10-14 14:00:01 42672 ----a-w- c:\windows\system32\wbsys.dll
2012-10-14 14:00:01 -------- d-----w- c:\program files\Stardock
2012-10-14 09:10:34 -------- d-----w- c:\users\luta\appdata\roaming\2K Sports
2012-10-14 08:26:48 -------- d-----w- c:\program files\2K Sports
2012-10-14 08:02:43 1414440 ----a-w- c:\windows\system32\ShellManager310E2D762.dll
2012-10-09 18:01:37 -------- d-----w- c:\users\luta\appdata\local\FLT
2012-10-09 18:01:37 -------- d-----w- c:\users\luta\appdata\local\2012
2012-10-09 17:52:13 -------- d--h--w- c:\windows\msdownld.tmp
2012-10-09 17:52:09 -------- d-----w- c:\windows\system32\directx
2012-09-24 13:48:17 -------- d-----w- c:\programdata\KONAMI
2012-09-21 11:04:24 -------- d-----w- c:\program files\Call of Duty
.
==================== Find3M ====================
.
2012-09-14 18:28:53 2048 ----a-w- c:\windows\system32\tzres.dll
2012-08-31 17:18:09 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-31 05:03:50 99272 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-08-31 05:03:50 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-30 13:18:00 65536 ----a-w- c:\windows\system32\frapsvid.dll
2012-08-24 06:59:17 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 06:47:12 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 06:43:58 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-20 17:40:31 169984 ----a-w- c:\windows\system32\winsrv.dll
2012-08-20 17:40:01 293376 ----a-w- c:\windows\system32\KernelBase.dll
2012-08-20 17:37:58 271360 ----a-w- c:\windows\system32\conhost.exe
2012-08-20 15:33:28 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-08-20 15:33:28 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 15:33:28 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 15:33:28 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-07-30 22:27:40 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-07-27 12:43:53 0 ----a-w- c:\windows\ativpsrm.bin
2012-07-27 12:38:47 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2012-07-27 12:22:10 409088 ----a-w- c:\windows\system32\systemcpl.dll
2012-07-27 12:22:10 13824 ----a-w- c:\windows\system32\slwga.dll
2012-07-27 12:22:06 811520 ----a-w- c:\windows\system32\user32.dll
.
============= FINISH: 7:33:04.31 ===============



https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Lijepo od tebe što si ispratio uputstvo i za 32-bitni sistem i za 64-bitni sistem iako ta tim nije bilo potrebe. Nažalost, virus koji si spomenuo ne vidim u postavljenim izvještajima kao ni bilo koju drugu vrstu malware-a i tvoj problem nije uzrokovan istim.

Ponovo pokreni OTL i klikni na dugme CleanUp.

Otvori temu u Windows forumu i tamo iznesi problem koji imaš.

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1642

Hvala vam @Sass Drake ja sam mislio da je virus u pitanju jer nisam imao antivirus mjesec dana,otvoriscu temu u Windows forumu

Ko je trenutno na forumu
 

Ukupno su 518 korisnika na forumu :: 16 registrovanih, 2 sakrivenih i 500 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: Denaya, DucicM, fijesta7, indja, ivan979, Lazarus, mcalic, mergus, Parker, Ripanjac, shaja1, suton, Van, yrraf, yufighter, 1107