MyCity » Ambulanta -> Arhiva Ambulante » Provera racunara da li je zarazen

Provera racunara da li je zarazen

Napisano na dan: 17.6.2011

Provera racunara da li je zarazen

Sledeća strana

Pagination

Odgovori

serviser1 Poslao: 17 Jun 2011 09:29 Idi na vrh
offline serviser1 Građanin Pridružio: 19 Feb 2011 Poruke: 99	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Ja trenutno nemam nikakvih problema sa radom racunara...ali po savetu @goran9888 prihvatio sam da odradim logove i da mu postavim da pogleda... Hvala unapred . DDS (Ver_2011-06-12.02) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24 Run by User at 8:45:34 on 2011-06-17 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3071.1876 [GMT 2:00] . AV: Microsoft Security Essentials Enabled/Updated {108DAC43-C256-20B7-BB05-914135DA5160} SP: Microsoft Security Essentials Enabled/Updated {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender Disabled/Outdated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork c:\xampp\apache\bin\apache.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\FileZilla Server\FileZilla Server.exe C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE c:\xampp\mysql\bin\mysqld.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\sppsvc.exe C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\xampp\apache\bin\apache.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Real\realplayer\Update\realsched.exe C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe C:\Users\User\Local Settings\Apps\F.lux\flux.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Stardock\ObjectDockPlus2\ObjectDock.exe C:\Program Files\Stardock\ObjectDockPlus2\ObjectDockTray.exe C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe C:\Windows\system32\SearchIndexer.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\rundll32.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://mystart.incredimail.com BHO: FileServeManager: {00000001-ab3b-4334-9da2-ec6b2a02afc6} - c:\program files\fileserve manager\FileServeBHO.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll uRun: [F.lux] "c:\users\user\local settings\apps\f.lux\flux.exe" /noshow uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun mRun: [RtHDVCpl] RtHDVCpl.exe mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot StartupFolder: c:\users\user\appdata\roaming\micros~1\windows\startm~1\programs\startup\stardo~1.lnk - c:\program files\stardock\objectdockplus2\ObjectDock.exe mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: Download with FileServe Manager - c:\program files\fileserve manager\GetUrl.htm IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{7F8B5821-113C-4601-BCB2-7A3D5C8E9BE5} : DhcpNameServer = 89.216.1.1 89.216.1.35 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F} : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\1636B6F6679636 : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\1636B6F6679636 : DhcpNameServer = 192.168.2.1 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\74F67616 : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\74F67616 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\847453230337 : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\847453230337 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\A6564735075656460294144402230282053545E492 : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{B5941270-CD6A-41E3-A8EA-98DC97DA264F}\A6564735075656460294144402230282053545E492 : DhcpNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\user\appdata\roaming\mozilla\firefox\profiles\ch7xjrvg.default\ FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll FF - plugin: c:\program files\veetle\player\npvlc.dll FF - plugin: c:\program files\veetle\plugins\npVeetle.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll FF - plugin: c:\users\user\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\users\user\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll . ============= SERVICES / DRIVERS =============== . R1 cdrblock;cdrblock;c:\windows\system32\drivers\cdrblock.sys [2009-9-18 20864] R1 cdrport;cdrport;c:\windows\system32\drivers\cdrport.sys [2009-9-18 4608] R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 165264] R1 MpKsl33df774a;MpKsl33df774a;c:\programdata\microsoft\microsoft antimalware\definition updates\{29e21642-2cda-4995-8f28-3e2e9c4d8e9c}\MpKsl33df774a.sys [2011-6-17 28752] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656] R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128] R2 Apache2.2;Apache2.2;c:\xampp\apache\bin\apache.exe [2008-12-10 24636] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-10-3 366640] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2011\TuneUpUtilitiesService32.exe [2011-6-6 1524544] R3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2009-9-3 97536] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-10-3 22712] R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2010-3-25 43392] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 54144] R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\antimalware\NisSrv.exe [2010-11-11 206360] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-5-22 167936] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [2011-2-10 10064] S2 FlexService;Remote Connections Service;"c:\program files\rapidbit\cisvc.exe" --> c:\program files\rapidbit\cisvc.exe [?] S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2009-9-8 133104] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-2-26 15872] S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [2007-4-23 83208] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-2-26 52224] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 14336] . =============== Created Last 30 ================ . 2011-06-17 06:40:31 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{29e21642-2cda-4995-8f28-3e2e9c4d8e9c}\MpKsl33df774a.sys 2011-06-16 21:59:47 -------- d-----w- c:\users\user\appdata\local\{61F18DD1-1488-4A67-B419-9C7B4EB01C35} 2011-06-16 13:47:05 6962000 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{29e21642-2cda-4995-8f28-3e2e9c4d8e9c}\mpengine.dll 2011-06-16 07:36:03 -------- d-----w- c:\program files\mIRC 2011-06-15 20:29:40 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-06-15 20:29:39 141104 ----a-w- c:\program files\internet explorer\sqmapi.dll 2011-06-15 20:29:38 1797632 ----a-w- c:\windows\system32\jscript9.dll 2011-06-15 12:49:15 -------- d-----w- c:\program files\TuneUp Utilities 2011 2011-06-15 12:48:11 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} 2011-06-15 07:07:40 311808 ----a-w- c:\windows\system32\drivers\srv.sys 2011-06-15 07:07:40 310272 ----a-w- c:\windows\system32\drivers\srv2.sys 2011-06-15 07:07:40 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys 2011-06-15 07:07:39 338944 ----a-w- c:\windows\system32\drivers\afd.sys 2011-06-15 07:07:39 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-06-15 07:07:37 571904 ----a-w- c:\windows\system32\oleaut32.dll 2011-06-15 07:07:26 741376 ----a-w- c:\windows\system32\inetcomm.dll 2011-06-15 07:07:25 161792 ----a-w- c:\windows\system32\d3d10_1.dll 2011-06-15 07:07:21 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys 2011-06-15 07:07:21 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2011-06-15 07:07:21 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-06-14 10:54:32 -------- d-----w- c:\users\user\appdata\local\{33FCD0BE-E975-47DC-BD99-43DBD03D1E4F} 2011-06-12 21:29:43 -------- d-----w- c:\users\user\appdata\local\{B73DCB16-71FA-4F9A-8168-2835FFE5E237} 2011-06-11 19:21:08 -------- d-----w- c:\users\user\appdata\local\{8E4F14C3-AFF2-4041-BB14-5D08E3947A53} 2011-06-10 21:19:58 -------- d-----w- c:\users\user\appdata\local\{BD16C957-58EA-4EE0-99D7-1C99F6D78285} 2011-06-07 10:17:40 -------- d-----w- c:\users\user\appdata\local\{96BC1190-095B-43CA-AB90-A158A0324391} 2011-06-06 20:54:35 -------- d-----w- c:\users\user\appdata\local\{88881708-340D-49DB-BA06-D5D805CF6EB2} 2011-06-06 20:53:51 -------- d-----w- c:\programdata\Skype Extras 2011-06-03 19:47:16 -------- d-----w- c:\users\user\appdata\local\{6ADB8A20-9569-41E2-901B-5A26C9DD7C22} 2011-05-31 20:37:24 -------- d-----w- c:\users\user\appdata\local\{968E0D8F-A40D-4D71-BCEF-7B72830E4E7D} 2011-05-29 21:23:18 -------- d-----w- c:\users\user\appdata\local\{03127B9E-C578-4EEE-8050-B04EAF9C4D7B} 2011-05-29 17:53:11 -------- d-----w- c:\users\user\appdata\roaming\go 2011-05-29 17:53:05 -------- d-----w- c:\programdata\Easybits GO 2011-05-28 17:14:55 -------- d-----w- c:\users\user\appdata\local\Opera 2011-05-28 17:10:20 -------- d-----w- c:\program files\Nightly 2011-05-27 21:14:44 -------- d-----w- c:\users\user\appdata\local\{F5600C6D-172F-4F5B-A6CA-B315CBC6C107} 2011-05-26 21:49:04 -------- d-----w- c:\users\user\appdata\local\{555D03E5-3199-4CE2-BBED-3FC24953F63C} 2011-05-25 07:15:02 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys 2011-05-20 21:54:14 -------- d-----w- c:\users\user\appdata\local\{67A9DAC5-BE3A-4503-AB1F-AF50BBCD4CED} 2011-05-20 17:59:54 439632 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{2d3e3829-9017-42a2-bbe2-49d986dc4818}\gapaengine.dll 2011-05-19 21:26:38 -------- d-----w- c:\users\user\appdata\local\{A888FDE7-2424-4CEC-AFDD-20A18F59ADFB} . ==================== Find3M ==================== . 2011-06-06 16:29:10 31552 ----a-w- c:\windows\system32\TURegOpt.exe 2011-06-06 16:24:08 21312 ----a-w- c:\windows\system32\authuitu.dll 2011-06-06 16:23:58 29504 ----a-w- c:\windows\system32\uxtuneup.dll 2011-05-29 07:11:30 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-05-29 07:11:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-05-22 08:35:31 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-04-22 11:35:38 499712 ----a-w- c:\windows\system32\msvcp71.dll 2011-04-22 11:35:38 348160 ----a-w- c:\windows\system32\msvcr71.dll 2011-04-21 11:10:36 44784 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys 2011-04-21 11:10:34 162544 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2011-04-09 06:02:25 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe 2011-04-09 06:02:25 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-04-09 05:56:38 123904 ----a-w- c:\windows\system32\poqexec.exe 2011-03-25 02:58:37 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys 2011-03-25 02:58:07 284672 ----a-w- c:\windows\system32\drivers\usbport.sys 2011-03-25 02:58:06 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2011-03-25 02:57:58 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys 2011-03-25 02:57:58 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys 2011-03-25 02:57:53 5888 ----a-w- c:\windows\system32\drivers\usbd.sys . ============= FINISH: 8:46:59.49 =============== mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png

Profil

1l padr1n0 Poslao: 18 Jun 2011 15:05 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav serviser1! Preuzmi program SystemLook sa ovog ili ovog linka na Desktop; Dvoklikom pokreni SystemLook; - U beli okvir prozora iskopirati sledeći tekst: `:file C:\Windows\System32\drivers\reyxt.sys C:\Windows\System32\drivers\glcik.sys :service kyisujp vwhmofye` Klikni taster Look; Po završetku rada programa priloži uz poruku file SystemLook.txt koji će se nalaziti na Desktop-u korišćenjem opcije Prikači Fajl. Preuzmi instalaciju za program Malwarebytes Anti-Malware sa sledećeg linka: http://www.besttechie.net/tools/mbam-setup.exe Dvoklikom pokreni instalaciju - na samom kraju procesa, proveri da su obeležene opcije: Update Malwarebytes' Anti-Malware; Launch Malwarebytes Anti-Malware; a zatim klikni Finish. Nakon završenog ažuriranja program će se pokrenuti. Izaberi opciju Perform Quick Scan i klikni Scan. Po završetku procesa klikni OK, Show Results: u listi detektovanog malware-a, obeleži sve stavke i klikni Remove Selected. Po završetku procesa, logfile će se otvoriti u Notepad-u; iskopiraj ga u temu na forumu. Ukoliko program zatraži restart kako bi se završio proces čišćenja, obavezno ga dozvoliti. Napomena: ako dođe do restarta na kraju procesa čišćenja, logfile će biti dostupan na Logs kartici (obeleži ga i klikni Open). goran9888 (AMF Tim)

Profil

serviser1 Poslao: 18 Jun 2011 20:05 Idi na vrh
offline serviser1 Građanin Pridružio: 19 Feb 2011 Poruke: 99	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Malwarebytes' Anti-Malware 1.51.0.1200 malwarebytes.org Database version: 6886 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 6/18/2011 8:04:41 PM mbam-log-2011-06-18 (20-04-41).txt Scan type: Quick scan Objects scanned: 157792 Time elapsed: 5 minute(s), 11 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) mycity.rs/must-login.png

Profil

1l padr1n0 Poslao: 18 Jun 2011 20:26 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi The Avenger na Desktop. Raspakuj arhivu u neki folder Dvoklikom pokreni avenger.exe Iskopiraj tekst koji se nalazi unutar Kod polja u (beli) prozor programa: `Drivers to delete: kyisujp vwhmofye Files to delete: C:\Windows\System32\drivers\reyxt.sys C:\Windows\System32\drivers\glcik.sys` Klikni Execute, a zatim Yes u sledeća dva prozora koji će se otvoriti Kompjuter će se restartovati (u određenim slučajevima: dva puta) i započeti će proces čišćenja/skeniranja Kada proces bude završen, logfile C:\avenger.txt će se otvoriti u Notepad-u Iskopiraj sadržaj dobijenog loga u temu na forumu.

Profil

serviser1 Poslao: 18 Jun 2011 21:09 Idi na vrh
offline serviser1 Građanin Pridružio: 19 Feb 2011 Poruke: 99	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of The Avenger Version 2.0, (c) by Swandog46 swandog46.geekstogo.com Platform: Windows Vista ***************** Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger *************** Beginning to process script file: Rootkit scan active. No rootkits found! Driver "kyisujp" deleted successfully. Driver "vwhmofye" deleted successfully. Error: file "C:\Windows\System32\drivers\reyxt.sys" not found! Deletion of file "C:\Windows\System32\drivers\reyxt.sys" failed! Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND) --> the object does not exist Error: file "C:\Windows\System32\drivers\glcik.sys" not found! Deletion of file "C:\Windows\System32\drivers\glcik.sys" failed! Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND) --> the object does not exist Completed script processing. ***************** Finished! Terminate.

Profil

1l padr1n0 Poslao: 19 Jun 2011 06:45 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Tvoj racunar je cist sto se malware-a tice. Koriscene aplikacije u slucaju mozes obrisati. Takodje obrisi karantin Avenger-a koji se nalazi u root-u C diska (obrisi folder C:\Avenger).

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Provera racunara da li je zarazen

Ko je trenutno na forumu

Ukupno su 523 korisnika na forumu :: 11 registrovanih, 2 sakrivenih i 510 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: bigfoot, bobomicek, Dorcolac, Lazarus, mnn2, pirke96, repac, Sumadija34, suton, vlad the impaler, zziko

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by