MyCity » Ambulanta -> Arhiva Ambulante » Problem sa antivirusom

Problem sa antivirusom

Napisano na dan: 18.11.2012
1

Problem sa antivirusom
Sledeća strana Pagination

Idi na vrh

Poslao: 18 Nov 2012 00:35
Idi na vrh
offline
  • Pridružio: 12 Nov 2012
  • Poruke: 505
  • Gde živiš: Banja Luka

Imam antiviru aviru antivir personal i nemogu je izbrisati tj.nemogu naci na racunaru nigdje uninstall za nju a i skidao sam neke programe i nemogu preko njih da je izbrise ako oze pomoc?hvala unapred



Edit by magna86: Korigovan naslov teme.



Poslao: 18 Nov 2012 00:40
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3898
  • Gde živiš: Novi Sad,Klisa

Pozdrav ,bojan12342

isprati sledeće uputstvo:
[Link mogu videti samo ulogovani korisnici]
I dostavi logove u skladu sa tim uputstvom.

NIx Car(AMF Tim)



Poslao: 18 Nov 2012 01:09
Idi na vrh
offline
  • Pridružio: 12 Nov 2012
  • Poruke: 505
  • Gde živiš: Banja Luka

ovde da stavim logove?

Poslao: 18 Nov 2012 12:11
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3898
  • Gde živiš: Novi Sad,Klisa

Da,u ovoj temi postavi logove.

Poslao: 18 Nov 2012 17:15
Idi na vrh
offline
  • Pridružio: 12 Nov 2012
  • Poruke: 505
  • Gde živiš: Banja Luka

DDS (Ver_2012-11-07.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.5.1
Run by Bojan at 1:08:29 on 2012-11-18
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.350 [GMT 1:00]
.
AV: AVG Internet Security 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: AntiVir Desktop *Enabled/Outdated* {AD166499-45F9-482A-A743-FDD3350758C7}
FW: AVG Internet Security 2012 *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.exe
C:\WINDOWS\system32\PnkBstrA.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Bojan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = [Link mogu videti samo ulogovani korisnici]
uInternet Connection Wizard,ShellNext = iexplore
uSearchURL,(Default) = [Link mogu videti samo ulogovani korisnici]*http://www.yahoo.com
mSearchAssistant = ${SEARCH_URL_IE7}
uURLSearchHooks: uTorrentControl_v1 Toolbar: {49c795c2-604a-4d18-aeb1-b3eba27e5ea2} - c:\program files\utorrentcontrol_v1\prxtbuTor.dll
dURLSearchHooks: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - <orphaned>
mWinlogon: Userinit = Userinit.exe,
mWinlogon: SFCDisable = dword:4
BHO: uTorrentControl_v1 Toolbar: {49c795c2-604a-4d18-aeb1-b3eba27e5ea2} - c:\program files\utorrentcontrol_v1\prxtbuTor.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL
BHO: ChromeFrame BHO: {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - c:\program files\google\chrome\application\24.0.1312.14\npchrome_frame.dll
TB: uTorrentControl_v1 Toolbar: {49c795c2-604a-4d18-aeb1-b3eba27e5ea2} - c:\program files\utorrentcontrol_v1\prxtbuTor.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe" /MINIMIZED
mRun: [wmuser] c:\windows\system32\wmuser.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoActiveDesktop = dword:1
uPolicies-Explorer: EditLevel = dword:0
uPolicies-Explorer: NoCommonGroups = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
TCP: NameServer = 217.23.192.9 217.23.192.14
TCP: Interfaces\{2F52196D-8F70-4DA6-9157-3AC0C7C6CDFF} : DHCPNameServer = 217.23.192.9 217.23.192.14
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - c:\program files\google\chrome\application\24.0.1312.14\npchrome_frame.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
STS: ObjectDockShlExt Class - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - c:\program files\stardock\objectdockfree\ODMenu.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\bojan\application data\mozilla\firefox\profiles\but1f2l4.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage -
FF - plugin: c:\documents and settings\bojan\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\bojan\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\bojan\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1166636.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1167637.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1168638.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - plugin: c:\windows\system32\npwmsdrm.dll
.
============= SERVICES / DRIVERS ===============
.
R1 appdrv01;Application Driver (01);c:\windows\system32\drivers\appdrv01.sys [2012-7-10 2915944]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2012-3-4 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2012-3-4 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2012-3-4 66616]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-1-27 35088]
R2 PC Performer Manager;PC Performer Manager;c:\documents and settings\all users\application data\pc performer manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.exe [2012-11-12 2400800]
R2 Web Assistant Updater;Web Assistant Updater;c:\program files\web assistant\ExtensionUpdaterService.exe [2012-5-6 185856]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S2 srvstmode;Stable system processing;c:\windows\system32\stmode.exe [2011-8-15 1168384]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\drivers\teamviewervpn.sys [2011-9-3 25088]
.
=============== Created Last 30 ================
.
2012-11-14 19:03:04 35176 ----a-w- C:\backup.reg
2012-11-14 19:02:58 61440 ----a-w- c:\windows\system32\drivers\qdfxmuqi.sys
2012-11-14 00:44:47 -------- d-----w- c:\program files\uTorrentControl_v1
2012-11-14 00:44:05 -------- d-----w- c:\program files\uTorrent
2012-11-14 00:43:35 -------- d-----w- c:\documents and settings\bojan\application data\uTorrent
2012-11-13 23:32:11 -------- d-----w- C:\_OTL
2012-11-13 18:07:56 -------- d-----w- c:\program files\TeamViewer
2012-11-13 17:24:04 -------- d-----w- c:\documents and settings\bojan\local settings\application data\Help
2012-11-12 19:41:52 -------- d-----w- c:\documents and settings\bojan\application data\PerformerSoft
2012-11-12 19:41:24 -------- d-----w- c:\documents and settings\all users\application data\IBUpdaterService
2012-11-12 19:41:04 -------- d-----w- c:\documents and settings\all users\application data\PC Performer Manager
2012-11-12 19:40:00 -------- d-----w- c:\program files\Glarysoft Toolbar
2012-11-12 19:39:33 -------- d-----w- c:\documents and settings\bojan\application data\GlarySoft
2012-11-12 18:30:12 -------- d-----w- c:\documents and settings\bojan\local settings\application data\uTorrentControl_v2
2012-11-12 18:29:52 -------- d-----w- c:\program files\uTorrentControl_v2
2012-11-11 14:08:11 -------- d-----w- c:\documents and settings\all users\Kaspersky Lab Setup Files
2012-11-10 23:25:56 -------- d-----w- c:\program files\Defraggler
2012-11-10 17:56:53 -------- d-----w- c:\documents and settings\bojan\application data\TuneUp Software
2012-11-10 17:54:56 -------- d-----w- c:\documents and settings\all users\application data\TuneUp Software
2012-11-10 17:52:51 -------- d-sh--w- c:\documents and settings\all users\application data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-11-09 23:24:00 -------- d-----w- c:\program files\Ask.com
2012-11-09 23:22:04 -------- d-----w- c:\documents and settings\all users\application data\YTD Video Downloader
2012-11-09 23:21:58 -------- d-----w- c:\documents and settings\all users\application data\Ask
2012-11-09 23:20:26 -------- d-----w- c:\program files\GreenTree Applications
2012-11-08 14:42:52 -------- d-----w- c:\documents and settings\bojan\application data\QuickScan
2012-11-08 13:51:55 -------- d-----w- c:\documents and settings\bojan\application data\Geek Uninstaller
2012-11-07 16:40:59 80864 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2012-11-03 20:52:32 -------- d-----w- c:\documents and settings\all users\application data\Tarma Installer
2012-10-29 18:09:30 314973 ----a-w- c:\windows\system32\viwc.exe
2012-10-29 18:09:21 -------- d-----w- c:\program files\ViStart
2012-10-29 18:09:11 716800 ----a-w- c:\windows\logon.scr
2012-10-29 18:09:11 -------- d-----w- c:\program files\Vista Drive Icon
2012-10-29 15:04:09 -------- d-----w- C:\3590F75ABA9E485486C100C1A9D4FF06Z...ZZZZZZ.....Z
2012-10-29 14:38:15 -------- d-----w- C:\3590F75ABA9E485486C100C1A9D4FF06Z..Z.ZZ...Z.ZZ.Z
2012-10-26 20:54:12 -------- d-----w- C:\3590F75ABA9E485486C100C1A9D4FF06ZZZ..Z.....ZZZZZ
2012-10-26 20:29:37 -------- d-----w- c:\program files\CCleaner
2012-10-24 20:49:37 -------- d-----w- c:\documents and settings\bojan\application data\Need for Speed World
2012-10-24 17:25:48 -------- d-----w- c:\documents and settings\bojan\local settings\application data\Electronic_Arts_Inc
.
==================== Find3M ====================
.
2012-10-22 08:37:31 1866368 ----a-w- c:\windows\system32\win32k.sys
2012-10-02 18:04:21 58368 ----a-w- c:\windows\system32\synceng.dll
2012-09-23 13:00:39 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2012-09-02 13:17:40 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-09-02 13:17:40 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-08-31 19:27:08 479484 ----a-w- c:\documents and settings\all users\application data\1346438390.3668.bin
2012-08-31 19:25:56 35336 ----a-w- c:\documents and settings\all users\application data\1346438390.2960.bin
2012-08-31 19:22:22 56832 ----a-w- c:\documents and settings\all users\application data\1346438390.3384.bin
2012-08-31 19:22:22 12073 ----a-w- c:\documents and settings\all users\application data\1346438390.3972.bin
2012-08-24 13:53:22 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-21 13:33:26 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-21 12:58:09 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe
2008-04-14 03:42:30 60416 -csha-w- c:\windows\system32\dllcache\msimn.exe
.
============= FINISH: 1:10:15.48 ===============

[Link mogu videti samo ulogovani korisnici]

Poslao: 18 Nov 2012 19:14
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3898
  • Gde živiš: Novi Sad,Klisa

Fale ti GMER1,GMER2,GMER3 ili RootRepeal log

Poslao: 18 Nov 2012 21:24
Idi na vrh
offline
  • Pridružio: 12 Nov 2012
  • Poruke: 505
  • Gde živiš: Banja Luka

Napisano: 18 Nov 2012 20:43

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

Dopuna: 18 Nov 2012 21:24

evo stavio sam

Poslao: 19 Nov 2012 11:51
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3898
  • Gde živiš: Novi Sad,Klisa

Pošalji ovaj fajl:
c:\windows\system32\wmuser.exe

preko sledećeg linka:
[Link mogu videti samo ulogovani korisnici]

Javi se kad pošalješ.

Poslao: 19 Nov 2012 18:15
Idi na vrh
offline
  • Pridružio: 12 Nov 2012
  • Poruke: 505
  • Gde živiš: Banja Luka

Napisano: 19 Nov 2012 18:06

treba da odem u C disk pa onda da otvorim system32 i onda da nadjem wmuser.exe?

Dopuna: 19 Nov 2012 18:15

uploda sam fajl

Poslao: 20 Nov 2012 10:21
Idi na vrh
offline
  • Més que un club
  • Glavni vokal @ Harpun
  • Pridružio: 27 Feb 2009
  • Poruke: 3898
  • Gde živiš: Novi Sad,Klisa

Da li si ti na svom računaru instalirao neki keylogger? (ukoliko ne znaš šta je keylogger, poseti ovu temu )

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa antivirusom

Ko je trenutno na forumu
 

Ukupno su 1281 korisnika na forumu :: 165 registrovanih, 14 sakrivenih i 1102 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 33 bren, Alexa77, Apok, Arhiv, armor, Asteker, Avalon015, babaroga, bagor10, bankulen, Bivan, black sabah, Bobrock1, Bojan198527, boromir, bpvl, bukefal, BWG, Chainsaw, Cian, Cicumile, cojapop, comi_pfc, CrazyNorth, Crazzer, cyprus, Dannyboy, Darko_X, DeerHunter, dejanbenkovic, DENIRO, Desmond, dinamik, Django777, Doca, Dovla 1980, dovlafkcz, dragan_mig31, draganl, dragon_hv, Duh sa sekirom, dulleo, E_Kurir, eagle.rs, FileFinder, Frunze, geo.dule, Georgius, Gheljda, gorankuba, GORDI, grenadir, Hardenberg, Holy Saber, icemilos, ikan, IQ116, Jakonjveliki, Joksss, Još malo pa deda, karjatid, Kibice, kojot, lacko, Lazur_01, M74AB3, Manjane, markoni.slo, Martin543, mercedesamg, Metanoja, mexo, Mi lao shu, MiG-29M2, Milan Miscevic, milanstankovic087, milbos, milenko1980, milimoj, milivoje13, miljannis, Milo97, Milometer, Milos1389, Miskin1, MK10, moldway, mrav pesadinac, Mzee, Nele79, Nemanja.M, nenad81, nenorodjo, nevjerna beba, nextyamb, nikoladim, NMNJ, ObicanUser, oblivion, obsc, orjen, pablojepao, Paklenica, panzermilan45, Parker, Phalanx, Plavi Jadran, Povratak1912, Prašinar, precan, Prečanin30, Primus17, PrincipL, proka89, Puch300GD, RajkoB, rakivan, raptorsi, Ray1973, RD84, Regrut Boskica, romark, Romuluss, RS28, s0ne, SamostalniReferent, scout81, sekretar, shadower78, share00, skvara, sluga, Srle993, stegonosa, Strasni JA, strn, Su 57, Szigetwar, tamno.nebo, Tandrkalo, Tas011, tenkiasta71, theNedjeljko, toni061, TripleTwo, trutcina, Underwood, uruk, Vatreni Zmaj, Velizar Laro, vensla, vidra boy, Vlad000, vlahale, voja64, vojnik švejk, vuk77, wolf431, Yugol33, zil10, zokizemun, Zorge, Zrcalo, Živanski, Đole64