Poslao: 30 Mar 2010 19:55
|
offline
- Pridružio: 17 Jul 2008
- Poruke: 41
- Gde živiš: Pirot/Nis
|
Napisano: 30 Mar 2010 0:37
Dobro vece,
Evo ovako,mislim da je problem poceo kad je blokirao racunar prilikom igranja igre,nisam siguran.Desava se to da se pojavljuje upozorenje kad startujem programe,,winamp,opera;windovss live; ...:
The procedure ...exscepthandler4 common...dinamic...msvcrt.dll , kad pritisnem OK programi krenu i pokaze se novo upozorenje : The procedre .... release@@yaxpa W@z ....ndr.dll;kad odes na ok nastavi daradi i koci i izgubio je zvuk .
Reinstalirao sam zvucnu i vratio se zvuk,a posle reinstaliranja winampa i opere idalje izlazi upozorenje.Potom mi je preko fleske usao trojanac koji sam izbrisao.Pokusao sam sa skidanjem sa interneta msvcrt ali nista,probao sam i preko cc klinera i registry boost-a .Skeniranjem NOD-om ne pokazuje nista.
Koristim (kablovsku)Adsl konekciju(1500/128-).
Unapred hvala Marko
DDS (Ver_10-03-17.01) - NTFSx86
Run by Administrator at 23:45:37.60 on Mon 03/29/2010
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1496 [GMT 2:00]
============== Running Processes ===============
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
svchost.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Administrator\Desktop\dds.com
============== Pseudo HJT Report ===============
uStart Page = hxxp://ww.google.com/
uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\tbVuze.dll
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: RadioBar Toolbar: {5b291e6c-9a74-4034-971b-a4b007a0b315} - c:\program files\radiobar\toolbar.ni.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_06\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.5.4723.1820\swg.dll
BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\tbVuze.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\tbVuze.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: RadioBar Toolbar: {5b291e6c-9a74-4034-971b-a4b007a0b315} - c:\program files\radiobar\toolbar.ni.dll
TB: {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [nod32kui] "c:\program files\eset\nod32kui.exe" /WAITSERVICE
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
uPolicies-explorer: NoResolveTrack = 1 (0x1)
uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-explorer: NoDesktopCleanupWizard = 1 (0x1)
dPolicies-explorer: NoSMHelp = 1 (0x1)
dPolicies-explorer: ForceClassicControlPanel = 1 (0x1)
dPolicies-explorer: NoResolveTrack = 1 (0x1)
dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: Prevedi sa Di recnikom - c:\program files\di recnik\diie.htm
IE: Translate with Di dictionary -
IE: Çàêà÷àòü ÂÑÅ ïðè ïîìîùè Download Master
IE: Çàêà÷àòü ïðè ïîìîùè Download Master
IE: Ïåðåäàòü íà óäàëåííóþ çàêà÷êó DM
IE: {8DAE90AD-4583-4977-9DD4-4360F7A45C74}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_06\bin\ssv.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
LSP: c:\windows\system32\imon.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {4D7B2856-A25A-4FB1-A837-7FC64CE2195B} = 212.200.88.252,212.200.88.250
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: toolbarchrome - {718733BC-AD64-4e5f-AC18-A85FBD75D54D} - c:\program files\radiobar\toolbar.ni.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
============= SERVICES / DRIVERS ===============
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [2010-3-24 13696]
R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [2010-3-26 15424]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-3-26 54752]
R2 NOD32krn;NOD32 Kernel Service;c:\program files\eset\nod32krn.exe [2010-3-26 552064]
R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-4-16 689416]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-3-26 135664]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-3-24 1684736]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-4-16 894216]
=============== Created Last 30 ================
2010-03-29 18:24:19 0 d-----w- c:\windows\afreeCodecVT
2010-03-29 15:34:15 0 d-----w- c:\program files\common files\Nokia
2010-03-29 15:33:47 13312 ----a-w- c:\windows\system32\drivers\nmwcdcj.sys
2010-03-29 15:33:46 13312 ----a-w- c:\windows\system32\drivers\nmwcdcm.sys
2010-03-29 15:33:45 8704 ----a-w- c:\windows\system32\drivers\nmwcdc.sys
2010-03-29 15:33:44 4608 ----a-w- c:\windows\system32\nmwcdlog.dll
2010-03-29 15:33:44 30720 ----a-w- c:\windows\system32\nmwcdcocls.dll
2010-03-29 15:33:43 127488 ----a-w- c:\windows\system32\drivers\nmwcd.sys
2010-03-29 15:33:34 50688 ----a-w- c:\windows\system32\nmwcdcls.dll
2010-03-29 15:33:20 0 d-----w- c:\docume~1\alluse~1\applic~1\Downloaded Installations
2010-03-29 15:32:50 0 d-----w- c:\program files\common files\PCSuite
2010-03-29 15:32:49 0 d-----w- c:\program files\Nokia
2010-03-29 15:32:46 0 d-----w- c:\windows\Downloaded Installations
2010-03-29 14:48:35 553 ----a-w- c:\windows\USetup.iss
2010-03-28 23:25:24 0 d-----w- c:\docume~1\admini~1\applic~1\RadioBar
2010-03-28 23:25:21 0 d-----w- c:\program files\RadioBar
2010-03-28 16:21:41 0 d-----w- c:\program files\Qtracker
2010-03-28 15:56:21 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-03-28 15:54:55 22328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-03-28 15:54:54 22328 ----a-w- c:\docume~1\admini~1\applic~1\PnkBstrK.sys
2010-03-28 15:54:39 103736 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-03-28 15:54:38 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-03-28 15:54:37 669184 ----a-w- c:\windows\system32\pbsvc.exe
2010-03-28 15:54:37 0 d-----w- c:\windows\system32\LogFiles
2010-03-28 15:54:27 0 dc-h--w- c:\docume~1\alluse~1\applic~1\{0151C9FC-719D-4459-B1E2-4685CC6E62A8}
2010-03-28 14:55:00 0 d-----w- c:\program files\PowerISO
2010-03-28 13:40:12 23 ----a-w- c:\windows\BlendSettings.ini
2010-03-28 10:19:48 0 d-----w- c:\program files\Webteh
2010-03-27 08:58:30 0 d-----w- c:\program files\DAEMON Tools Toolbar
2010-03-27 08:57:56 0 d-----w- c:\program files\DAEMON Tools Lite
2010-03-27 00:08:01 69 ----a-w- c:\windows\NeroDigital.ini
2010-03-26 18:54:24 0 d-----w- c:\documents and settings\administrator\Tracing
2010-03-26 18:50:28 0 d-----w- c:\program files\Microsoft Office Outlook Connector
2010-03-26 18:50:14 54752 ----a-w- c:\windows\system32\drivers\fssfltr_tdi.sys
2010-03-26 18:48:46 0 d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-03-26 18:46:42 0 d-----w- c:\program files\Microsoft
2010-03-26 18:46:22 0 d-----w- c:\program files\Windows Live SkyDrive
2010-03-26 18:24:47 0 d-----w- c:\program files\common files\Windows Live
2010-03-26 18:19:27 0 d-----w- c:\documents and settings\administrator\Contacts
2010-03-26 17:56:42 0 d-----w- c:\program files\common files\ATI Technologies
2010-03-26 17:55:37 593920 ------w- c:\windows\system32\ati2sgag.exe
2010-03-26 17:53:55 311296 ----a-r- c:\windows\system32\atiiiexx.dll
2010-03-26 17:53:48 7167 ----a-r- c:\windows\system32\atifglpf.xml
2010-03-26 17:53:48 446464 ----a-r- c:\windows\system32\ATIDEMGX.dll
2010-03-26 17:53:44 887724 ----a-r- c:\windows\system32\ativva6x.dat
2010-03-26 17:53:44 3 ----a-r- c:\windows\system32\ativva5x.dat
2010-03-26 17:53:44 197654 ----a-r- c:\windows\system32\atiicdxx.dat
2010-03-26 17:11:54 10 ----a-w- c:\windows\WININIT.INI
2010-03-26 17:10:04 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-26 15:45:09 0 d-----w- c:\docume~1\alluse~1\applic~1\Azureus
2010-03-26 15:45:06 0 d-----w- c:\docume~1\admini~1\applic~1\Azureus
2010-03-26 15:44:44 0 d-----w- c:\program files\Vuze
2010-03-26 15:44:42 0 d-----w- c:\program files\Conduit
2010-03-26 15:44:40 0 d-----w- c:\program files\Vuze_Remote
2010-03-26 12:55:25 512096 ----a-w- c:\windows\system32\drivers\amon.sys
2010-03-26 12:55:25 298104 ----a-w- c:\windows\system32\imon.dll
2010-03-26 12:55:25 15424 ----a-w- c:\windows\system32\drivers\nod32drv.sys
2010-03-26 12:55:00 0 d-----w- c:\program files\ESET
2010-03-26 12:50:04 0 d-----w- c:\program files\valve
2010-03-26 12:45:33 0 d-----w- c:\program files\%temp&
2010-03-26 03:23:57 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2010-03-26 02:57:08 19072 ----a-w- c:\windows\system32\drivers\PS2.sys
2010-03-25 17:25:36 0 d-----w- c:\windows\pss
2010-03-25 09:40:08 0 d-----w- c:\docume~1\admini~1\applic~1\Ubisoft
2010-03-24 22:30:27 0 d-----w- c:\docume~1\alluse~1\applic~1\Merscom
2010-03-24 22:30:27 0 d-----w- c:\docume~1\admini~1\applic~1\Merscom
2010-03-24 22:18:58 0 d-----w- c:\docume~1\admini~1\applic~1\Uniblue
2010-03-24 22:17:39 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-03-24 22:17:26 0 d-----w- c:\docume~1\admini~1\applic~1\DAEMON Tools Lite
2010-03-24 22:17:23 0 d-----w- c:\docume~1\alluse~1\applic~1\DAEMON Tools Lite
2010-03-24 19:30:33 0 d-----w- C:\Downloads
2010-03-24 19:30:25 0 d-----w- c:\docume~1\admini~1\applic~1\Download Master
2010-03-24 17:32:53 0 d-----w- c:\program files\Microsoft WSE
2010-03-24 17:31:29 0 d-----w- c:\program files\MSXML 6.0
2010-03-24 17:29:15 377965 ----a-r- C:\txtsetup.sif
2010-03-24 17:29:15 260288 ----a-r- C:\$LDR$
2010-03-24 17:28:52 0 d-----w- c:\windows\setup.pss
2010-03-24 14:22:30 0 d-----w- c:\windows\Lhsp
2010-03-24 14:22:27 0 d-----w- c:\windows\speech
2010-03-24 14:22:25 685056 ----a-w- c:\windows\system32\rtl60.bpl
2010-03-24 14:22:25 22016 ----a-w- c:\windows\system32\Borlndmm.dll
2010-03-24 14:22:25 1497088 ----a-w- c:\windows\system32\cc3260mt.dll
2010-03-24 14:22:25 148992 ----a-w- c:\windows\system32\adortl60.bpl
2010-03-24 14:22:25 1412608 ----a-w- c:\windows\system32\cc3260.dll
2010-03-24 14:22:25 1326080 ----a-w- c:\windows\system32\vcl60.bpl
2010-03-24 14:22:23 0 d-----w- c:\program files\Di recnik
2010-03-24 14:21:24 376 ----a-w- c:\windows\ODBC.INI
2010-03-24 14:21:20 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-03-24 14:20:44 0 d-----w- c:\program files\Microsoft ActiveSync
2010-03-24 14:20:17 0 d-----w- c:\windows\SHELLNEW
2010-03-24 14:01:04 0 d-----w- c:\docume~1\admini~1\applic~1\Malwarebytes
2010-03-24 14:01:01 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-24 14:01:00 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-03-24 14:01:00 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-03-24 14:01:00 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2010-03-24 13:54:45 129520 ------w- c:\windows\system32\pxafs.dll
2010-03-24 13:53:41 0 d-----w- c:\windows\SxsCaPendDel
2010-03-24 13:53:13 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-03-24 13:53:13 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-03-24 13:53:09 0 d-----w- c:\program files\QuickTime Alternative
2010-03-24 13:52:29 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2010-03-24 13:52:29 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2010-03-24 13:52:16 0 d-----w- c:\windows\system32\IOSUBSYS
2010-03-24 13:50:22 0 d-----w- c:\program files\Spybot - Search & Destroy
2010-03-24 13:50:22 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2010-03-24 13:48:44 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-03-24 13:46:13 0 d-----r- c:\program files\Skype
2010-03-24 13:42:01 236 ----a-w- c:\program files\common files\dx.reg
2010-03-24 11:56:42 0 d-----w- c:\program files\common files\ODBC
2010-03-24 11:56:18 0 d-----r- c:\documents and settings\all users\Documents
2010-03-24 11:25:59 0 d-----w- c:\program files\Realtek
2010-03-24 11:25:04 0 d-----w- c:\program files\Driver
2010-03-24 11:24:19 0 d-----w- c:\program files\AMD
2010-03-24 11:19:10 0 d-----w- c:\program files\ATI Technologies
2010-03-24 11:15:50 0 d-----w- c:\docume~1\admini~1\applic~1\URSoft
2010-03-24 11:15:50 0 d-----w- c:\docume~1\admini~1\applic~1\Desktopicon
2010-03-24 11:13:27 0 d-----w- c:\program files\The KMPlayer
2010-03-24 11:13:26 0 d-----w- c:\program files\CoreCodec
2010-03-24 11:13:24 0 d-----w- c:\program files\Combined Community Codec Pack
2010-03-24 11:12:46 0 d-----w- c:\program files\Nero
2010-03-24 11:12:46 0 d-----w- c:\docume~1\alluse~1\applic~1\Nero
2010-03-24 11:12:37 0 d-----w- c:\program files\CCleaner
2010-03-24 11:12:35 0 d-----w- c:\program files\Your Uninstaller 2008
2010-03-24 11:12:34 0 d-----w- c:\program files\Unlocker
2010-03-24 11:12:00 0 d-----w- c:\program files\Raxco
2010-03-24 11:07:42 0 d-sh--w- c:\documents and settings\all users\DRM
2010-03-24 11:07:10 0 d-----w- c:\program files\common files\MSSoap
2010-03-24 11:06:05 0 d-----w- c:\program files\Windows Media Connect 2
==================== Find3M ====================
2010-03-26 03:14:28 143360 ----a-w- c:\windows\system32\drivers\Rtenicxp.sys
2010-03-26 03:13:49 831488 ----a-w- c:\windows\RtlExUpd.dll
2010-03-24 13:42:01 2937 ----a-w- c:\windows\system32\unins000.dat
2010-03-24 13:41:55 716153 ----a-w- c:\windows\system32\unins000.exe
2010-03-24 11:06:55 21640 ----a-w- c:\windows\system32\emptyregdb.dat
============= FINISH: 23:45:47.31 ===============
mycity.rs/must-login.png
Dopuna: 30 Mar 2010 0:54
Neznam dali je vazno,ali da vam kazem da su mi igre instalirane u d;\
Dopuna: 30 Mar 2010 19:55
Samo da pitam ,vidim da drugima odgovarqate na teme, pa me interesuje dali ste zaboravili na mene ???
|
|
|
|
Poslao: 30 Mar 2010 22:53
|
offline
- Bogdan-Tc
- Anti Malware Fighter
Rank 1
- Pridružio: 04 Jan 2009
- Poruke: 2168
|
Pozdrav.
Nismo zaboravili na tebe i izvini na čekanju.
Kažeš da si preko USB uređaja zakačio trojanca.
Ako ti je taj USB uređaj pri ruci kao i ostali uređaji ako ih imaš, a koji spadaju u ovu katergoriju, isprati sledeće uputstvo...
- Preuzmi USBNoRisk na Desktop i pokreni ga duplim klikom na ikonicu programa.
- Sacekaj koji sekund dok program izvrsi inicijalno skeniranje.
- Ubacuj sve USB memorijske uredjaje redom u USB slot i svaki zadrzi u slotu po 10 sekundi.
- Ukoliko imas vise uredjaja za proveru, onda na parcetu papira zapisi kojim redom su ubacivani jer ce nam kasnije trebati taj podatak
- Kada zavrsis sa svim uredjajima, klikni desno dugme misa na sred prozora programa i odaberi opciju Save log. To ce automatski otvoriti log u Notepadu. Iskopiraj nam taj log iz Notepada na forum.
Objasnjenje: U USB memorijske uredjaje spadaju svi oni uredjaji koji po prikljucivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uredjaji itd.
|
|
|
|
Poslao: 31 Mar 2010 01:18
|
offline
- Pridružio: 17 Jul 2008
- Poruke: 41
- Gde živiš: Pirot/Nis
|
samo da dodam
dok sam cekao da mi se javite deinstalirao sam directX 10,koji sam skinuo sa neta i instalirao directX 9oc.Desava se sledece: Opera i WLMsng. vise ne zezaju dok prilikom starta winamp-a izlazi samo ovo drugo upozorenje "The procedre .... release@@yaxpa W@z ....ndr.dll;
zatim sam malwarebyter,som proso i ocitstio ovo :
Inficirani kljuèevi u registru:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{8ecc055d-047f-11d1-a537-0000f8753ed1} (Trojan.Agent) -> Quarantined and deleted successfully.
a,ovo je NOD-ov log od ciscenja odmah prilikom stavljanja fleske:
Time Module Object Name Threat Action User Information
3/29/2010 17:26:06 PM AMON file H:\Autorun.inf Win32/PSW.OnLineGames.NNU trojan deleted NT AUTHORITY\SYSTEM Event occurred at an attempt to access the file by the application: C:\WINDOWS\System32\svchost.exe.
Drugo da napomenem da tu flasku ne koristim,a ovo je log mog telefona
Started at 3/31/2010 12:40:38 AM
Searching for connected USB Mass storage...
----------------------------------------
========================================
Searching for other storage...
----------------------------------------
D: {47d42b2f-3738-11df-8fd6-806d6172696f}
C: {47d42b31-3738-11df-8fd6-806d6172696f}
========================================
Scanning fixed storage...
----------------------------------------
No blocked files found on C:
No Autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for 47d42b31-3738-11df-8fd6-806d6172696f
No Desktop.ini files found on C:
----------------------------------------
No blocked files found on D:
No Autorun.inf files found on D:
No mountpoint found for D:
No mountpoint found for 47d42b2f-3738-11df-8fd6-806d6172696f
No Desktop.ini files found on D:
----------------------------------------
========================================
Initial scan finished!
========================================
USBNoRisk 2.5 (26 July 2009) by bobby
Started at 3/31/2010 12:40:38 AM
Searching for connected USB Mass storage...
----------------------------------------
========================================
Searching for other storage...
----------------------------------------
D: {47d42b2f-3738-11df-8fd6-806d6172696f}
C: {47d42b31-3738-11df-8fd6-806d6172696f}
========================================
Scanning fixed storage...
----------------------------------------
No blocked files found on C:
No Autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for 47d42b31-3738-11df-8fd6-806d6172696f
No Desktop.ini files found on C:
----------------------------------------
No blocked files found on D:
No Autorun.inf files found on D:
No mountpoint found for D:
No mountpoint found for 47d42b2f-3738-11df-8fd6-806d6172696f
No Desktop.ini files found on D:
----------------------------------------
========================================
Initial scan finished!
=Sta dalje=======================================
|
|
|
|
Poslao: 31 Mar 2010 02:47
|
offline
- Bogdan-Tc
- Anti Malware Fighter
Rank 1
- Pridružio: 04 Jan 2009
- Poruke: 2168
|
1. Nisi odradio kako treba po uputstvu za USBNoRisk.
Uradio si samo uvodno skeniranje.
Ili nisi priključio nikakav uređaj ili nisi sačekao desetak sekundi da USBNoRisk odradi skeniranje priključenog uređaja.
Možeš li malo da pojasniš ovo:
Citat:a,ovo je NOD-ov log od ciscenja odmah prilikom stavljanja fleske: Citat:Drugo da napomenem da tu flasku ne koristim,a ovo je log mog telefona
Ako ga ne koristiš, otkud ti onda log od Nod-a za taj USB uređaj?
Meni je potrebno da napraviš USBNoRisk log uređaja koje imaš.
|
|
|
|
Poslao: 31 Mar 2010 03:07
|
offline
- Pridružio: 17 Jul 2008
- Poruke: 41
- Gde živiš: Pirot/Nis
|
Pa ovako,to je fleska koju je moj drug koristio kod mene,a log je od tad,jer je nod odmah prijavio. sto se tice tel.loga uuradio sam kako treba ,evo probacu opet...
nije htelo,verovatnozato ste nemam memorijsku u telefonu,vec skidam sa neta direktno u tel.
pozz
|
|
|
|
|
|