MyCity » Ambulanta -> Arhiva Ambulante » Prekid interneta zbog cfdrive32.exe i msvmiode.exe

Prekid interneta zbog cfdrive32.exe i msvmiode.exe

Napisano na dan: 8.10.2010
3

Prekid interneta zbog cfdrive32.exe i msvmiode.exe
Pagination Prethodna strana

Idi na vrh

Poslao: 09 Okt 2010 13:28
Idi na vrh
offline
  • Pridružio: 29 Nov 2009
  • Poruke: 77

Restartovo sam ga , malo se sporije diže ali ne detektuje za sada ništa!



Poslao: 09 Okt 2010 13:36
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Potrebno je deinstalirati ComboFix:
klikni start (ili ), a zatim RUN.

Na Visti koristiti Start Search polje ukoliko Run nije dostupan.

U liniju za unos teksta ukucaj (iskopiraj) sledeće:

ComboFix /Uninstall

Primeti da postoji razmak između "ComboFix" i "/Uninstall".



a zatim klikni OK (ili pritisni Enter).

Sačekaj da se proces deinstalacije završi.


..............................


Pokreni ponovo DDS i postavi mi DDS.txt log.

.



Poslao: 09 Okt 2010 13:43
Idi na vrh
offline
  • Pridružio: 29 Nov 2009
  • Poruke: 77

DDS (Ver_10-10-05.01) - NTFSx86
Run by KOKI at 13:42:18,57 on sub 09.10.2010
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_21
Microsoft Windows XP Professional 5.1.2600.2.1250.381.1033.18.511.191 [GMT 2:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Program Files\Reader\AcroRd32Info.exe
D:\My Documents\dds.scr
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe

============== Pseudo HJT Report ===============

uStart Page = [Link mogu videti samo ulogovani korisnici]
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [ctfmon.exe] c:\windows\system32\CTFMON.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [Link mogu videti samo ulogovani korisnici]
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\koki\applic~1\mozilla\firefox\profiles\x3kgijhn.default\
FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici]
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: d:\program files\reader\browser\nppdf32.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

============= SERVICES / DRIVERS ===============

R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2010-3-27 11608]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2010-3-27 135336]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-3-27 267432]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2010-3-27 60936]

=============== Created Last 30 ================

2010-10-09 10:22:10 -------- d-----w- C:\USBNoRisk
2010-09-25 07:35:34 9600 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-09-25 07:35:34 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-09-17 11:15:25 -------- d-sha-r- C:\cmdcons

==================== Find3M ====================

2010-07-17 03:00:04 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-17 00:42:29 73728 ----a-w- c:\windows\system32\javacpl.cpl

============= FINISH: 13:43:18,31 ===============

Poslao: 09 Okt 2010 13:48
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Ovde smo zavrsili, racunar je cist.

Ukoliko zelis mozes deinstairati Recovery Console (CF), ali ne mari da ostane.

[Link mogu videti samo ulogovani korisnici]

Poslao: 09 Okt 2010 13:52
Idi na vrh
offline
  • Pridružio: 29 Nov 2009
  • Poruke: 77

Neću, neka stoji za svaki slučaj.

Puno hvala! I nadam se da će sad biti OK! Pozdrav!

Poslao: 09 Okt 2010 14:21
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

I ja se nadam, pozdrav.

MyCity » Ambulanta -> Arhiva Ambulante » Prekid interneta zbog cfdrive32.exe i msvmiode.exe

Ko je trenutno na forumu
 

Ukupno su 1044 korisnika na forumu :: 74 registrovanih, 7 sakrivenih i 963 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, Apok, Arsenije, Asparagus, Bacac, bavar357, Bob.Rock, boromir, Bozjidar87, BWG, Car89, casual03, Cicumile, dak2, Dambi, Dannyboy, darcaud, Deki Duga Devetka, dolinalima, Dorcolac, Dragan1998, draganl, Dungorth, Electron, esko_hz, EVIDENTICAR, Fog of War, Goran_, ivan979, Jose, kaskadija, kingkong1947, ladro, Lazur_01, lima, Lotus, Makeitdrip, Marko Marković, mean_machine, Miki01, Milometer, mir, Mise, morava_01, museum, N.e.m.a.nj.a., nebidrag, nebkv, nick79, pein, PlayerOne, Prašinar, Prečanin30, proka89, raketaš, S-lash, Sančo, sap, Sir Budimir, sixpac, sovanova95, sslay, superwhy, tanakadzo, travisrise, Trimi68, varda, Vatreni Zmaj, vidra boy, Vlada1389, vladao75, wizzardone, zokizemun, Zorge