MyCity » Ambulanta -> Arhiva Ambulante » kako da očistim komp od virusa

kako da očistim komp od virusa

Napisano na dan: 30.4.2009

Strana:
1
2
3
4

kako da očistim komp od virusa

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3
4

mala mu Poslao: 30 Apr 2009 10:34 Idi na vrh
offline mala mu Novi MyCity građanin Pridružio: 30 Apr 2009 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:12:24, on 30.4.2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\AxBx\VirusKeeper 2009 Pro Probeversion\VirusKeeper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\AxBx\VirusKeeper 2009 Pro Probeversion\vk_service.exe C:\Program Files\Avira\AntiVir Desktop\avmailc.exe C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE C:\Program Files\AxBx\VirusKeeper 2009 Pro Probeversion\vk_watchop.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Pomoc za prijavu - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2009 Pro Probeversion\VirusKeeper.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Common Files\Microsoft Shared\Encarta Researcher\EROPROJ.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{EB53D65C-8E67-4EE7-A30A-40C5F10EBFF2}: NameServer = 77.238.208.3 77.238.208.4 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Avira Firewall (AntiVirFirewallService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: VirusKeeper antivirus/antispyware (vkservice) - AxBx - C:\Program Files\AxBx\VirusKeeper 2009 Pro Probeversion\vk_service.exe -- End of file - 4696 bytes

Profil

argus Poslao: 30 Apr 2009 10:43 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zdravo. Klikni desnim tasterom na Avira ikonicu ( ) u donjem, desnom uglu ekrana i deštikliraj AntiVir Guard Enable. Napomena: Ne zaboravi da uključiš ovu opciju po završetku čišćenja. -------------------- Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

mala mu Poslao: 30 Apr 2009 10:49 Idi na vrh
offline mala mu Novi MyCity građanin Pridružio: 30 Apr 2009 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ja več imam kombofiks na kompu jel mogu opet njega da pokrenem.

Profil

argus Poslao: 30 Apr 2009 10:57 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ne mozes, skini najnoviju verziju i odakle ti combofix, je si vec pokretala.

Profil

mala mu Poslao: 30 Apr 2009 11:11 Idi na vrh
offline mala mu Novi MyCity građanin Pridružio: 30 Apr 2009 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 30 Apr 2009 11:02 evo skinula sam novu verziju i završila.ComboFix 09-04-29.03 - Administrator 30.04.2009 10:53.6 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.510.180 [GMT 2:00] Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe AV: AntiVir Desktop On-access scanning disabled (Updated) AV: VirusKeeper 2009 Pro antivirus On-access scanning disabled (Updated) FW: Avira Firewall disabled * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2009-05-28 to 2009-4-30 ))))))))))))))))))))))))))))))) . 2009-04-29 16:32 . 2009-04-29 16:32 -------- d-----w c:\program files\Dino and Aliens Demo 2009-04-28 11:23 . 2009-04-28 11:23 -------- d-----w c:\documents and settings\Administrator\Application Data\Avira 2009-04-28 10:40 . 2009-03-24 14:08 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys 2009-04-28 10:40 . 2009-03-24 12:51 97480 ----a-w c:\windows\system32\drivers\avfwot.sys 2009-04-28 10:40 . 2009-02-24 11:06 69632 ----a-w c:\windows\system32\drivers\avfwim.sys 2009-04-28 10:39 . 2009-04-28 10:39 -------- d-----w c:\program files\Avira 2009-04-28 10:39 . 2009-04-28 10:40 -------- d-----w c:\documents and settings\All Users\Application Data\Avira 2009-04-27 21:11 . 2009-04-29 16:55 -------- d-----w c:\program files\GameTop.com 2009-04-27 20:30 . 2006-08-27 17:57 569344 ----a-w c:\windows\system32\snapapi32.dll 2009-04-27 19:25 . 2009-04-28 17:32 -------- d-----w c:\program files\AxBx 2009-04-23 20:30 . 2009-04-23 20:30 -------- d-----w c:\documents and settings\Administrator\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 2009-04-23 20:28 . 2009-04-23 20:28 -------- d-----w c:\program files\Common Files\Adobe AIR 2009-04-21 19:53 . 2009-04-21 19:53 -------- d-----w c:\program files\Trend Micro 2009-04-21 18:03 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys 2009-04-21 18:03 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys 2009-04-21 18:03 . 2009-04-21 18:03 -------- d-----w c:\program files\Malwarebytes' Anti-Malware 2009-04-18 08:41 . 2008-08-20 17:58 9072 ------w c:\windows\system32\drivers\cdr4_xp.sys 2009-04-18 08:41 . 2008-08-20 17:58 9200 ------w c:\windows\system32\drivers\cdralw2k.sys 2009-04-18 08:41 . 2008-08-20 17:58 129520 ------w c:\windows\system32\pxafs.dll 2009-04-17 19:38 . 2009-04-17 19:38 -------- d-----w c:\documents and settings\Administrator\Local Settings\Application Data\WMTools Downloaded Files 2009-04-17 19:30 . 2009-04-17 19:30 -------- d-----w c:\program files\Chicken Invaders 1,2,3,4 Collection 2009-04-16 08:16 . 2009-04-16 08:16 -------- d-----w c:\program files\Activision 2009-04-03 16:00 . 2009-04-29 13:42 -------- d-----w c:\windows\Turtle Odyssey 3-in-1 2009-04-03 16:00 . 2009-04-03 16:01 -------- d-----w c:\program files\Turtle Odyssey 3-in-1 2009-04-01 12:24 . 2009-04-01 12:24 -------- d-----w c:\documents and settings\All Users\Application Data\InterAction studios 2009-03-31 21:09 . 2009-03-31 21:13 171520 ----a-w c:\windows\system32\cncs32.dll 2009-03-31 21:09 . 2009-03-31 21:09 -------- d-----w c:\windows\mar-2-20 2009-03-31 21:06 . 2009-03-31 21:06 -------- d-----w c:\program files\7-Zip 2009-03-31 20:50 . 2009-04-19 19:45 -------- d-----w c:\program files\Turtle Odyssey 2 2009-03-31 20:49 . 2009-04-19 19:01 -------- d-----w c:\program files\Chicken Invaders 3 Christmas Edition 2009-03-31 20:48 . 2009-04-19 19:01 -------- d-----w c:\program files\Chicken Invaders 2 2009-03-31 20:47 . 2009-03-31 20:47 -------- d-----w c:\program files\ReflexiveArcade 2009-03-31 20:23 . 2009-04-30 07:53 -------- d-----w c:\documents and settings\Administrator\Tracing 2009-03-31 20:18 . 2009-03-31 20:18 -------- d-----w c:\program files\Microsoft 2009-03-31 20:17 . 2009-03-31 20:17 -------- d-----w c:\program files\Windows Live SkyDrive 2009-03-31 20:16 . 2009-03-31 20:18 -------- d-----w c:\program files\Windows Live 2009-03-31 20:05 . 2009-03-31 20:05 -------- d-----w c:\program files\Common Files\Windows Live . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-04-19 19:00 . 2007-02-20 08:02 -------- d-----w c:\program files\Winamp 2009-04-18 10:06 . 2007-02-19 17:47 -------- d--h--w c:\program files\InstallShield Installation Information 2009-04-16 08:16 . 2007-02-19 17:47 -------- d-----w c:\program files\Common Files\InstallShield 2009-04-11 16:05 . 2009-03-02 13:34 -------- d-----w c:\program files\TuneUp Utilities 2009 2009-03-31 20:20 . 2007-02-19 14:50 70656 ----a-w c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-03-30 14:26 . 2009-03-30 14:26 -------- d-----w c:\program files\uTorrent 2009-03-29 18:16 . 2009-03-08 16:12 -------- d-----w c:\program files\Net-Games.biz 2009-03-27 20:50 . 2008-12-15 18:51 -------- d-----w c:\program files\Common Files\Adobe 2009-03-18 15:02 . 2009-03-18 15:02 56 ---ha-w c:\windows\system32\ezsidmv.dat 2009-03-18 15:01 . 2009-03-18 15:01 -------- d-----w c:\program files\Common Files\Skype 2009-03-18 15:01 . 2009-03-18 15:00 -------- d-----r c:\program files\Skype 2009-03-18 14:27 . 2009-03-18 14:27 0 ----a-w c:\windows\nsreg.dat 2009-03-08 10:48 . 2009-03-08 10:48 -------- d-----w c:\program files\Yahoo! 2009-03-02 13:34 . 2009-03-02 13:34 603904 ----a-w c:\windows\system32\TUProgSt.exe 2009-03-02 13:34 . 2009-03-02 13:34 362240 ----a-w c:\windows\system32\TuneUpDefragService.exe 2009-02-06 16:52 . 2009-02-06 16:52 49504 ----a-w c:\windows\system32\sirenacm.dll . ((((((((((((((((((((((((((((( SnapShot@2009-04-19_19.36.30 ))))))))))))))))))))))))))))))))))))))))) . + 2007-11-07 00:19 . 2007-11-07 00:19 54272 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll + 2008-07-29 06:05 . 2008-07-29 06:05 62976 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll + 2008-07-29 06:05 . 2008-07-29 06:05 46080 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll + 2008-07-29 06:05 . 2008-07-29 06:05 46592 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll + 2008-07-29 06:05 . 2008-07-29 06:05 64512 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll + 2008-07-29 06:05 . 2008-07-29 06:05 66048 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll + 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll + 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll + 2008-07-29 06:05 . 2008-07-29 06:05 56832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll + 2008-07-29 06:05 . 2008-07-29 06:05 66560 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll + 2008-07-29 06:05 . 2008-07-29 06:05 39936 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll + 2008-07-29 06:05 . 2008-07-29 06:05 38912 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll + 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll + 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll + 2007-02-19 14:36 . 2001-08-23 12:00 19429 c:\windows\system32\MsDtc\Trace\msdtcvtr.bat - 2009-03-18 16:12 . 2009-03-18 16:12 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe + 2009-03-18 16:12 . 2009-04-23 20:29 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe + 2009-04-28 10:40 . 2009-02-13 10:50 28376 c:\windows\system32\drivers\ssmdrv.sys + 2009-04-28 10:40 . 2009-03-30 08:33 96104 c:\windows\system32\drivers\avipbb.sys + 2009-04-28 10:40 . 2009-02-13 10:29 22360 c:\windows\system32\drivers\avgntmgr.sys + 2009-04-28 10:40 . 2009-02-13 10:17 45416 c:\windows\system32\drivers\avgntdd.sys + 2009-04-19 20:31 . 2009-04-19 20:31 80395 c:\windows\Installer\{AA2F01CE-E5C0-4228-BD4C-A45402FFD423}\MsblIco.Exe + 2008-07-29 06:05 . 2008-07-29 06:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll + 2008-07-29 06:05 . 2008-07-29 06:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll + 2008-07-29 01:54 . 2008-07-29 01:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll + 2008-07-29 06:05 . 2008-07-29 06:05 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll + 2008-07-29 06:05 . 2008-07-29 06:05 3783672 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll + 2008-07-29 06:05 . 2008-07-29 06:05 3768312 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "VirusKeeper"="c:\program files\AxBx\VirusKeeper 2009 Pro Probeversion\VirusKeeper.exe" [2009-04-17 3932552] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360] HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32 "MIDI1"= SYNCOR11.DLL [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, snapapi32.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Documents and Settings\\Administrator\\Desktop\\KDX by DeluXe™\\KDXClient.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys [2009-03-24 97480] S2 AntiVirFirewallService;Avira Firewall;c:\program files\Avira\AntiVir Desktop\avfwsvc.exe [2009-03-24 388865] S2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\Avira\AntiVir Desktop\avmailc.exe [2009-04-17 194817] S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289] S2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2009-02-12 432897] S2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\System32\TUProgSt.exe [2009-03-02 603904] S2 vkservice;VirusKeeper antivirus/antispyware;c:\program files\AxBx\VirusKeeper 2009 Pro Probeversion\vk_service.exe [2008-09-26 1119584] S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys [2009-02-24 69632] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contents of the 'Scheduled Tasks' folder 2009-04-30 c:\windows\Tasks\1-Click Maintenance.job - c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-11-20 15:28] . . ------- Supplementary Scan ------- . IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll TCP: {EB53D65C-8E67-4EE7-A30A-40C5F10EBFF2} = 77.238.208.3 77.238.208.4 FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\irc10qdg.default\ FF - prefs.js: browser.startup.homepage - hxxp://google.ba/ FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\irc10qdg.default\extensions\{8a6264b5-a8f2-494b-8f37-cf898a763e42}\components\FFAlert.dll FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll ---- FIREFOX POLICIES ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 . ************************************************************************ catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2009-04-30 10:54 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'lsass.exe'(1144) c:\program files\Avira\AntiVir Desktop\avsda.dll - - - - - - - > 'explorer.exe'(3364) c:\windows\system32\msi.dll . Completion time: 2009-04-30 10:56 ComboFix-quarantined-files.txt 2009-04-30 08:56 ComboFix2.txt 2009-04-27 08:07 ComboFix3.txt 2009-04-20 20:39 ComboFix4.txt 2009-04-19 19:37 ComboFix5.txt 2009-04-30 08:52 Pre-Run: 27.804.303.360 bytes free Post-Run: 27.844.489.216 bytes free 184 hvala Dopuna: 30 Apr 2009 11:05 ja sam probala sve što sam mogla da nađem i na kraju sam se odlučila za prijavu na forum.hvala na pomoći. nadam se da nisam do sad nešto zeznula. Dopuna: 30 Apr 2009 11:11 argus ::Ne mozes, skini najnoviju verziju i odakle ti combofix, je si vec pokretala. jesam pokretala sam ga prije 10-15 dana kad su se pojavili prvi problemi

Profil

argus Poslao: 30 Apr 2009 11:31 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Moraces malo da sacekas posto imam obaveze, ali ne brini sredicemo komp.

Profil

mala mu Poslao: 30 Apr 2009 11:46 Idi na vrh
offline mala mu Novi MyCity građanin Pridružio: 30 Apr 2009 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 30 Apr 2009 11:36 već sam se zabrinula da si zaboravljena ok hvala nije problem sa čekanjem. kad se bude moglo. Dopuna: 30 Apr 2009 11:46 već sam se zabrinula da sam zaboravljena ok hvala nije problem sa čekanjem. kad se bude moglo.

Profil

argus Poslao: 30 Apr 2009 12:07 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pronadji ovaj fajl c:\windows\system32\snapapi32.dll I posalji ga preko ovog linka na proveru http://www.mycity.rs/ambulanta-upload.php

Profil

mala mu Poslao: 30 Apr 2009 12:20 Idi na vrh
offline mala mu Novi MyCity građanin Pridružio: 30 Apr 2009 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! argus ::Pronadji ovaj fajl c:\windows\system32\snapapi32.dll I posalji ga preko ovog linka na proveru mycity.rs/ambulanta-upload.php poslala sam.rečeno mi je da javim.

Profil

bobby Poslao: 30 Apr 2009 12:26 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Poslala si pogresan fajl. Pokusaj ponovo.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » kako da očistim komp od virusa

Ko je trenutno na forumu

Ukupno su 1072 korisnika na forumu :: 42 registrovanih, 4 sakrivenih i 1026 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: ajo baba, Bobrock1, Bojan85, bokisha253, comi_pfc, Denaya, Dimitrije Paunovic, djuradj, Dorcolac, dragan_mig31, dragoljub11987, Excalibur13, Fog of War, Frunze, Georgius, Ilija Cvorovic, karevski, Koridor, Kubovac, Lieutenant, Marko Marković, Mile80, milenko crazy north, mnn2, nebkv, nemkea71, nenad81, ozzy, Panter, Parker, Shinobi, Simon simonović, Sirius, Stanlio, theNedjeljko, Tvrtko I, vathra, vukovi, W123, YU-UKI, Zerajic, Žrnov

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by