Virus na Laptopu

Virus na Laptopu

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1643

Prije mjesec dana sam reinstaliro sistem i do juce nisam imao nijedan antivirus,pa sam danas instalirao MSE,laptop mi sporo otvara stranice,kasni zvuk kad palim laptop,yt sjecka itd...
Na laptopu mi je instaliram Windows 7 Ultimate SP 1 32-bit

DDS


DDS (Ver_2012-10-19.01) - NTFS_x86
Internet Explorer: 9.0.8112.16421
Run by Luta at 7:26:00 on 2012-10-20
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2811.1663 [GMT -7:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\VistaSrv.exe
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WBVista.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Join Air\AssistantServices.exe
c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Motorola\Bluetooth\obexsrv.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Windows\system32\SearchIndexer.exe
c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = my.daemon-search.com
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} -
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} -
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
mRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtkNGUI.exe -s
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [NPSStartup] <no file>
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\motorola\bluetooth\btmiesend.htm
TCP: Interfaces\{11366DE8-0424-441A-B9F6-D8BEBE58401B} : NameServer = 212.200.246.8 213.133.3.5
SSODL: WebCheck - <orphaned>
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2012-10-20 12:18:08 -------- d-----w- c:\programdata\MCShield
2012-10-20 12:18:07 -------- d-----w- c:\program files\MCShield
2012-10-20 12:15:06 740784 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{687fc6b4-493e-46ce-9571-993ea8b52ae0}\gapaengine.dll
2012-10-20 12:14:59 6918632 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{75ffffac-735b-447c-b875-31d25afa6091}\mpengine.dll
2012-10-20 06:23:46 6918632 ------w- c:\programdata\microsoft\windows defender\definition updates\{faedd72b-3313-4199-92aa-97cb5f5468db}\mpengine.dll
2012-10-20 05:35:40 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-10-20 05:35:39 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-10-20 05:35:39 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-10-20 05:35:39 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-10-20 05:35:39 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-10-20 05:35:39 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-10-20 05:35:39 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-10-20 05:18:24 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2012-10-20 05:18:24 74240 ----a-w- c:\windows\system32\fsutil.exe
2012-10-20 05:18:24 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2012-10-20 05:18:24 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2012-10-20 05:18:24 1699328 ----a-w- c:\windows\system32\esent.dll
2012-10-20 05:18:24 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2012-10-20 05:18:24 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2012-10-20 05:18:24 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2012-10-20 05:17:40 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2012-10-20 05:17:40 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-10-19 14:42:09 -------- d-----w- c:\program files\TrueCafe
2012-10-19 14:38:15 -------- d-----w- c:\programdata\Remote
2012-10-19 14:18:01 740784 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2012-10-19 14:17:45 34128 ----a-w- c:\windows\system32\drivers\dfmirage.sys
2012-10-19 14:17:45 32976 ----a-w- c:\windows\system32\dfmirage.dll
2012-10-19 13:31:57 -------- d-----w- c:\users\luta\appdata\roaming\FastStone
2012-10-19 13:31:52 -------- d-----w- c:\program files\FastStone Photo Resizer
2012-10-19 12:29:46 -------- d-----w- c:\program files\Microsoft Security Client
2012-10-19 11:27:56 -------- d-----w- c:\program files\MSXML 4.0
2012-10-19 10:46:15 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-10-19 10:05:08 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-10-19 10:05:07 5120 ----a-w- c:\windows\system32\wmi.dll
2012-10-19 10:05:07 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-10-19 08:36:54 6918632 ------w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2012-10-19 07:53:21 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-10-19 07:53:21 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-10-18 17:04:27 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-10-18 15:12:24 369336 ----a-w- c:\windows\system32\drivers\cng.sys
2012-10-18 15:12:24 225280 ----a-w- c:\windows\system32\schannel.dll
2012-10-18 15:12:23 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-10-18 15:12:23 219136 ----a-w- c:\windows\system32\ncrypt.dll
2012-10-18 15:12:23 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-10-18 15:05:26 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-10-18 13:22:48 492032 ----a-w- c:\windows\system32\win32spl.dll
2012-10-18 13:22:48 317440 ----a-w- c:\windows\system32\spoolsv.exe
2012-10-18 13:22:46 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-10-18 13:22:46 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-10-18 13:22:29 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2012-10-18 13:22:29 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-10-18 13:22:29 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-10-18 13:22:26 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2012-10-18 13:22:24 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-10-18 13:20:25 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-10-18 13:20:24 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-10-18 13:20:23 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-10-18 13:20:23 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-10-18 13:20:23 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-18 13:14:48 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-18 13:14:48 1159680 ----a-w- c:\windows\system32\crypt32.dll
2012-10-18 13:14:48 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-18 13:13:30 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-10-18 13:13:16 75776 ----a-w- c:\windows\system32\psisrndr.ax
2012-10-18 13:13:16 465408 ----a-w- c:\windows\system32\psisdecd.dll
2012-10-18 13:13:14 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-10-18 13:13:08 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-10-18 13:13:08 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-10-18 13:12:58 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2012-10-18 13:05:41 67072 ----a-w- c:\windows\system32\packager.dll
2012-10-18 13:04:53 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
2012-10-18 13:04:51 400896 ----a-w- c:\windows\system32\srcore.dll
2012-10-18 13:04:44 534528 ----a-w- c:\windows\system32\EncDec.dll
2012-10-18 13:03:44 41984 ----a-w- c:\windows\system32\browcli.dll
2012-10-18 13:03:44 102912 ----a-w- c:\windows\system32\browser.dll
2012-10-18 13:03:35 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2012-10-18 13:03:09 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-10-18 13:03:01 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-10-18 13:02:56 850944 ----a-w- c:\windows\system32\sbe.dll
2012-10-18 13:02:56 642048 ----a-w- c:\windows\system32\CPFilters.dll
2012-10-18 13:02:55 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2012-10-18 13:02:48 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-10-18 12:59:11 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-10-18 12:59:07 2616320 ----a-w- c:\windows\explorer.exe
2012-10-18 12:56:36 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-10-18 12:56:36 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-18 12:55:59 2342400 ----a-w- c:\windows\system32\msi.dll
2012-10-18 12:55:48 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-10-18 12:49:54 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-10-18 12:49:36 769024 ----a-w- c:\windows\system32\localspl.dll
2012-10-18 12:49:27 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-10-18 12:48:05 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-10-18 12:47:20 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-10-18 12:47:20 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-10-18 12:47:12 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-10-18 12:42:01 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-10-18 12:39:23 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-10-18 12:08:16 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-10-18 12:03:51 -------- d-----w- C:\Fraps
2012-10-18 11:33:11 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-10-18 11:33:11 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-10-18 11:13:07 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-10-18 11:12:51 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-10-18 11:12:42 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-10-18 11:12:42 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-10-14 20:16:48 -------- d-----w- C:\Rainmeter
2012-10-14 14:12:57 -------- d-----w- c:\program files\NeoSmart Technologies
2012-10-14 14:00:03 57904 ----a-w- c:\windows\system32\wbload.dll
2012-10-14 14:00:01 42672 ----a-w- c:\windows\system32\wbsys.dll
2012-10-14 14:00:01 -------- d-----w- c:\program files\Stardock
2012-10-14 09:10:34 -------- d-----w- c:\users\luta\appdata\roaming\2K Sports
2012-10-14 08:26:48 -------- d-----w- c:\program files\2K Sports
2012-10-14 08:02:43 1414440 ----a-w- c:\windows\system32\ShellManager310E2D762.dll
2012-10-09 18:01:37 -------- d-----w- c:\users\luta\appdata\local\FLT
2012-10-09 18:01:37 -------- d-----w- c:\users\luta\appdata\local\2012
2012-10-09 17:52:13 -------- d--h--w- c:\windows\msdownld.tmp
2012-10-09 17:52:09 -------- d-----w- c:\windows\system32\directx
2012-09-24 13:48:17 -------- d-----w- c:\programdata\KONAMI
2012-09-21 11:04:24 -------- d-----w- c:\program files\Call of Duty
.
==================== Find3M ====================
.
2012-09-14 18:28:53 2048 ----a-w- c:\windows\system32\tzres.dll
2012-08-31 17:18:09 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-31 05:03:50 99272 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-08-31 05:03:50 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-30 13:18:00 65536 ----a-w- c:\windows\system32\frapsvid.dll
2012-08-24 06:59:17 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 06:47:12 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 06:43:58 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-20 17:40:31 169984 ----a-w- c:\windows\system32\winsrv.dll
2012-08-20 17:40:01 293376 ----a-w- c:\windows\system32\KernelBase.dll
2012-08-20 17:37:58 271360 ----a-w- c:\windows\system32\conhost.exe
2012-08-20 15:33:28 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-08-20 15:33:28 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 15:33:28 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 15:33:28 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-07-30 22:27:40 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-07-27 12:43:53 0 ----a-w- c:\windows\ativpsrm.bin
2012-07-27 12:38:47 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2012-07-27 12:22:10 409088 ----a-w- c:\windows\system32\systemcpl.dll
2012-07-27 12:22:10 13824 ----a-w- c:\windows\system32\slwga.dll
2012-07-27 12:22:06 811520 ----a-w- c:\windows\system32\user32.dll
.
============= FINISH: 7:33:04.31 ===============



https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Lijepo od tebe što si ispratio uputstvo i za 32-bitni sistem i za 64-bitni sistem iako ta tim nije bilo potrebe. Nažalost, virus koji si spomenuo ne vidim u postavljenim izvještajima kao ni bilo koju drugu vrstu malware-a i tvoj problem nije uzrokovan istim.

Ponovo pokreni OTL i klikni na dugme CleanUp.

Otvori temu u Windows forumu i tamo iznesi problem koji imaš.

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1643

Hvala vam @Sass Drake ja sam mislio da je virus u pitanju jer nisam imao antivirus mjesec dana,otvoriscu temu u Windows forumu

Ko je trenutno na forumu
 

Ukupno su 840 korisnika na forumu :: 52 registrovanih, 11 sakrivenih i 777 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., ALBION101, AleksSE, aramis s, Arsenije, Ben Roj, Bluper, branko7, Bubili, cavatina, Dannyboy, darios, Denaya, doklevise, Dorcolac, Drug pukovnik, Duh sa sekirom, Frunze, Georgius, goxin, ikan, ivica976, kokan0905, kuntalo, Leonov, MB120mm, mercedesamg, Miskohd, Mitraljeta, mnn2, naki011, ostoja, panzerwaffe, Parker, pceklic, pein, promajauglavi, raketaš, raptorsi, sakota79, Sale1423, Steeeefan, stegonosa, stokssone, suton, torlak 1, vathra, voja64, vranjanac29, zastavnik, zixmix, Zoca