MyCity » Ambulanta -> Arhiva Ambulante » Virusi na Laptopu

Virusi na Laptopu

Napisano na dan: 4.6.2012
3

Virusi na Laptopu
Pagination Prethodna strana

Idi na vrh

Poslao: 14 Jun 2012 13:51
Idi na vrh
offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Napisano: 14 Jun 2012 13:14

trazio sam po internetu,i nasao sam GMER,a za ovaj DDS nisam mogao da nadjem

Dopuna: 14 Jun 2012 13:51

DDS izvjestaj



.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by Luta at 13:21:26 on 2012-06-14
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1013.250 [GMT 2:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\MCShield\MCShieldRTM.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Luta\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Luta\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Join Air\UIMain.exe
C:\Program Files\Join Air\CMUpdater.exe
C:\Users\Luta\Downloads\m3zjbsxh.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mystart.incredibar.com/mb139?a=6R8vGPzSz6&i=26
mSearchAssistant =
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [SpeedConnectStartUp]
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: Interfaces\{6ED8DEA4-D65B-4C66-A4CA-CBA5725E08BF} : NameServer = 212.200.246.8 213.133.3.5
TCP: Interfaces\{F5A3423C-50F7-4A8C-A90B-48CFFE968F53} : DhcpNameServer = 192.168.1.254
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\luta\appdata\roaming\mozilla\firefox\profiles\iicjnqa0.default\
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredibar.com/mb139?a=6R8vGPzSz6&i=26
FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb139/?loc=IB_DS&a=6R8vGPzSz6&&i=26&search=
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\users\luta\appdata\local\google\update\1.3.21.111\npGoogleUpdate3.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6R8vGPzSz6&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - 6c4d8122000000000000000000000000
FF - user.js: extensions.incredibar_i.instlDay - 15502
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1418:26:34
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6R8vGPzSz6
FF - user.js: extensions.incredibar_i.upn2n - 92824517837456880
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10650
FF - user.js: extensions.incredibar_i.ppd - 27%5F4
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2012-1-8 68208]
R3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2012-1-8 6766080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [2012-1-8 82768]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2012-1-8 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-6-8 113120]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2012-5-26 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2012-5-26 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2012-5-26 123648]
.
=============== Created Last 30 ================
.
2012-06-13 18:21:01 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2012-06-12 21:29:26 327168 ----a-w- c:\windows\IsUninst.exe
2012-06-12 21:29:16 -------- d-----w- c:\windows\_ISTMP1.DIR
2012-06-12 06:38:39 6737808 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{da972507-4247-4d8c-ac6a-449d37c4f35b}\mpengine.dll
2012-06-11 16:20:12 -------- d-----w- c:\programdata\OptimizerPro
2012-06-11 16:20:06 -------- d-----w- c:\program files\Optimizer Pro
2012-06-11 16:17:13 -------- d-----w- c:\programdata\Bcool
2012-06-11 16:16:11 -------- d-----w- c:\programdata\InstallMate
2012-06-09 22:14:59 -------- d-----w- c:\users\luta\appdata\roaming\FastStone
2012-06-09 22:14:27 -------- d-----w- c:\program files\FastStone Photo Resizer
2012-06-09 13:17:41 57904 ------w- c:\windows\system32\wbload.dll
2012-06-09 13:17:39 42672 ------w- c:\windows\system32\wbsys.dll
2012-06-09 13:17:38 -------- d-----w- c:\program files\Stardock
2012-06-09 11:15:03 -------- d-----w- c:\users\luta\appdata\roaming\PC Cleaners
2012-06-09 11:15:00 -------- d-----w- c:\users\luta\appdata\roaming\PCPro
2012-06-09 11:14:59 4198712 ----a-w- c:\windows\uninst.exe
2012-06-09 11:14:56 -------- d-----w- c:\programdata\PC1Data
2012-06-09 10:45:40 48648 ----a-w- c:\programdata\microsoft\ehome\packages\mceclientux\updateablemarkup\Markup.dll
2012-06-08 23:16:24 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-08 23:16:14 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-08 23:16:07 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-08 23:16:07 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-08 11:31:41 -------- d-----w- c:\program files\Defraggler
2012-06-08 10:10:20 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-06-08 10:10:18 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2012-06-08 10:10:17 770384 ----a-w- c:\program files\mozilla firefox\msvcr100.dll
2012-06-08 10:10:17 421200 ----a-w- c:\program files\mozilla firefox\msvcp100.dll
2012-06-08 10:10:17 157600 ----a-w- c:\program files\mozilla firefox\maintenanceservice_installer.exe
2012-06-08 10:10:17 113120 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2012-06-07 20:46:46 -------- d-----w- c:\windows\system32\appmgmt
2012-06-07 19:47:39 -------- d-----w- c:\program files\common files\xing shared
2012-06-07 19:46:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-06-07 19:46:14 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-06-05 14:07:55 -------- d-----w- c:\users\luta\appdata\roaming\USB Drivers For Windows Vista Utility
2012-05-31 14:32:36 252952 ----a-w- c:\windows\system32\igfxsrvc.exe
2012-05-31 14:32:36 141848 ----a-w- c:\windows\system32\igfxtray.exe
2012-05-31 14:32:33 173080 ----a-w- c:\windows\system32\igfxext.exe
2012-05-31 14:32:33 150552 ----a-w- c:\windows\system32\igfxpers.exe
2012-05-31 14:32:32 672792 ----a-w- c:\windows\system32\igfxcfg.exe
2012-05-27 22:38:45 -------- d-----w- c:\windows\system32\directx
2012-05-26 19:56:39 123648 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2012-05-26 19:56:39 12288 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2012-05-26 19:56:39 12288 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2012-05-26 19:56:38 98432 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2012-05-26 19:56:38 14848 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2012-05-26 19:56:38 12416 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2012-05-26 19:56:38 12416 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2012-05-26 19:55:02 98560 ----a-w- c:\windows\system32\drivers\ss_bus.sys
2012-05-26 19:55:02 14848 ----a-w- c:\windows\system32\drivers\ss_mdfl.sys
2012-05-26 19:55:02 12416 ----a-w- c:\windows\system32\drivers\ss_cmnt.sys
2012-05-26 19:55:02 12416 ----a-w- c:\windows\system32\drivers\ss_cm.sys
2012-05-26 19:55:02 123776 ----a-w- c:\windows\system32\drivers\ss_mdm.sys
2012-05-26 19:55:02 12288 ----a-w- c:\windows\system32\drivers\ss_whnt.sys
2012-05-26 19:55:02 12288 ----a-w- c:\windows\system32\drivers\ss_wh.sys
2012-05-26 19:53:23 -------- d-----w- c:\programdata\Samsung
2012-05-23 20:47:59 624608 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2012-05-23 20:47:59 43488 ----a-w- c:\program files\mozilla firefox\mozglue.dll
2012-05-22 20:29:47 -------- d-----w- c:\users\luta\appdata\local\Djordje_Zeljic
.
==================== Find3M ====================
.
2012-04-29 14:39:36 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-02 04:46:44 3958128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-02 04:46:44 3902320 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-02 02:43:16 2342400 ----a-w- c:\windows\system32\win32k.sys
2012-03-30 10:29:05 1287024 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-03-22 19:12:12 4435968 ----a-w- c:\windows\system32\GPhotos.scr
2012-03-17 07:20:17 56688 ----a-w- c:\windows\system32\drivers\partmgr.sys
.
============= FINISH: 13:23:56,04 ===============




https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

GMER izvjestaj


https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png

Poslao: 14 Jun 2012 17:52
Idi na vrh
offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Nikola, logovi ne pokazuju tragove aktivnog malware-a a ni antivirusa.

Instaliraj neki antivirus. To je to. Ovaj problem nije prozurokovao neki malware.

MyCity » Ambulanta -> Arhiva Ambulante » Virusi na Laptopu

Ko je trenutno na forumu
 

Ukupno su 1259 korisnika na forumu :: 60 registrovanih, 6 sakrivenih i 1193 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, _Petar, A.R.Chafee.Jr., Aleksandar Tomić, aramis s, Atomski čoban, bokisha253, brundo65, BSD, Bubimir, cer, cinoeye, delrey, DPera, Excalibur13, flash12, Frunze, gmlale, HrcAk47, ivica976, JOntra, jukeboxer, Klecaviks, kokodakalo, Koridor, Kubovac, kunktator, ljuba, LUDI, Marko Marković, mercedesamg, Ne doznajem se u oružje, Nemanja.M, nemkea71, novator, nuke92, oldtimer, ozzy, pacika, pein, robert1979, rovac, sasa87, Shinobi, Sirius, SR-3m, Srki94, stegonosa, Toper, vladaa012, vladulns, vobo, voja64, wizzardone, Wrangler, yufighter, zeo, zixmix, zlaya011, šumar bk2