Avast prijavljuje viruse komp usporen

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

[Link mogu videti samo ulogovani korisnici]



aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-08 13:46:58
-----------------------------
13:46:58.265 OS Version: Windows 5.1.2600 Service Pack 3
13:46:58.281 Number of processors: 2 586 0x1C0A
13:46:58.281 ComputerName: NIKOLA-339D18AA UserName: nikola
13:47:02.203 Initialize success
13:47:10.812 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
13:47:10.859 Disk 0 Vendor: Hitachi_HTS545025B9A300 PB2OC60F Size: 238475MB BusType: 3
13:47:10.859 Disk 0 MBR read error 0
13:47:10.859 Disk 0 MBR scan
13:47:10.875 Disk 0 unknown MBR code
13:47:10.875 MBR BIOS signature not found 0
13:47:10.875 Disk 0 scanning sectors +488376000
13:47:10.875 Disk 0 scanning C:\WINDOWS\system32\drivers
13:47:18.609 Service scanning
13:47:20.046 Disk 0 trace - called modules:
13:47:20.078 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spck.sys >>UNKNOWN [0x8718a938]<<
13:47:20.078 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x870baab8]
13:47:20.078 3 CLASSPNP.SYS[f75f2fd7] -> nt!IofCallDriver -> \Device\00000069[0x8713c9e8]
13:47:20.078 5 ACPI.sys[f737e620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x87127940]
13:47:20.093 Scan finished successfully
13:47:35.609 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\nikola\Desktop\MBR.dat"
13:47:35.609 The log file has been saved successfully to "C:\Documents and Settings\nikola\Desktop\aswMBR.txt"




Malwarebytes' Anti-Malware 1.51.0.1200
[Link mogu videti samo ulogovani korisnici]

Database version: 6796

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/8/2011 1:59:11 PM
mbam-log-2011-06-08 (13-59-11).txt

Scan type: Quick scan
Objects scanned: 151793
Time elapsed: 7 minute(s), 51 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\WINDOWS\system32\drivers\AtapiDrv.sys (Rootkit.Agent) -> Quarantined and deleted successfully.



USBNoRisk 2.7 (28 December 2010) by bobby

Started at 6/8/2011 2:05:46 PM

Searching for connected USB Mass storage...
----------------------------------------
========================================

Searching for other storage...
----------------------------------------
C: {bb0efd6f-6e10-11e0-adf3-806d6172696f}
========================================


Scanning fixed storage...
----------------------------------------

No blocked files found on C:
No autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for bb0efd6f-6e10-11e0-adf3-806d6172696f
No Desktop.ini files found on C:
----------------------------------------

========================================
Initial scan finished!
========================================


New device connected at 6/8/2011 2:06:06 PM

Scanning for connected USB mass storage...
----------------------------------------
G: {fb0096ba-6e87-11e0-b9c7-0026c7d283b2}
Added G:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on G:
----------------------------------------
No autorun.inf files found on G:
No mountpoint found for fb0096ba-6e87-11e0-b9c7-0026c7d283b2
----------------------------------------

No Desktop.ini files found on G:
----------------------------------------

No mimics found on drive G:
----------------------------------------

No .lnk/.pif/.com/.scr files found on drive G:
========================================

========================================
Removed G:
========================================


New device connected at 6/8/2011 2:07:18 PM

Scanning for connected USB mass storage...
----------------------------------------
E: {49502a79-906f-11e0-ba1e-0026c7d283b2}
Added E:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on E:
----------------------------------------
No autorun.inf files found on E:
No mountpoint found for 49502a79-906f-11e0-ba1e-0026c7d283b2
----------------------------------------

No Desktop.ini files found on E:
----------------------------------------

No mimics found on drive E:
----------------------------------------

.lnk/.pif/.com/.scr files found on drive E:
========================================

========================================
Removed E:
========================================


New device connected at 6/8/2011 2:09:25 PM

Scanning for connected USB mass storage...
----------------------------------------
E: {858d77ba-906b-11e0-ba1d-0026c7d283b2}
Added E:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on E:
----------------------------------------
No autorun.inf files found on E:
No mountpoint found for 858d77ba-906b-11e0-ba1d-0026c7d283b2
----------------------------------------

No Desktop.ini files found on E:
----------------------------------------

No mimics found on drive E:
----------------------------------------

No .lnk/.pif/.com/.scr files found on drive E:
========================================

========================================
Removed E:
========================================



Racunar je sad skroz ok ne primjecujem nikakvo usporavanje sistema sve radi super. Hvala Gorane na pomoci i tebi Nikola.

• 1Ovo se svidja korisniku: Springfield
  
  Registruj se da bi pohvalio/la poruku!

Ovo uradi samo za uredjaj koji si prikljucio drugi po redu u proslom skeniranju

- Pokrenuti USBNoRisk i sačekati da izvrši inicijalno skeniranje.

- Po završetku inicijalnog skeniranja priključiti USB memorijski uređaj.

- Kliknuti na karticu Script;

U beli okvir prozora iskopirati sledeći tekst:

{49502a79-906f-11e0-ba1e-0026c7d283b2}
folder_list:%DRIVE%
no_sh:

- Izvršiti komandu klikom na taster Run Script;



Po izvršenju komande USBNoRisk će se automatski vratiti na karticu Monitor;

- Uraditi desni klik unutar belog okvira prozora i odabrati opciju Save Scrambled Log;

Otvoriće se prozor Notepad_a sa tekstom koji je potrebno iskopirati ovde u poruci.





Ponovo ćemo koristiti program The Avenger.

Dvoklikom pokreni avenger.exe

Iskopiraj tekst koji se nalazi unutar Kod polja u (beli) prozor programa:

Files to delete:
c:\windows\pss\0dtz2fv.exeStartup
c:\windows\pss\0p0fvb6.exeStartup
c:\windows\pss\1grsnde.exeStartup
c:\windows\pss\5jfabg8.exeStartup
c:\windows\pss\5ukk6w0.exeStartup
c:\windows\pss\6a81xst.exeStartup
c:\windows\pss\6kfbb2h.exeStartup
c:\windows\pss\70nidep.exeStartup
c:\windows\pss\9euu81g.exeStartup
c:\windows\pss\a86cxtt2zav.exeStartup
c:\windows\pss\brx66o81alm.exeStartup
c:\windows\pss\e6u81g2hi.exeStartup
c:\windows\pss\g3iiduupggb.exeStartup
c:\windows\pss\i1efk86w.exeStartup
c:\windows\pss\i1y97081w.exeStartup
c:\windows\pss\k0lhh2ndez.exeStartup
c:\windows\pss\kfl66c87.exeStartup
c:\windows\pss\kkaq1h70.exeStartup
c:\windows\pss\lccxoojaavm.exeStartup
c:\windows\pss\vo1efk86w81.exeStartup
c:\windows\pss\oz0fg6w81.exeStartup
c:\windows\pss\q6sntjzu.exeStartup
c:\windows\pss\qgw1n70jff.exeStartup
c:\windows\pss\rhidtupfgb.exeStartup
c:\windows\pss\rw81i3upfg.exeStartup
c:\windows\pss\vrr2xyjo86a.exeStartup
c:\windows\pss\ty81kvwrx6.exeStartup
c:\windows\pss\w70xtoo6a.exeStartup
c:\windows\pss\w8dijppql.exeStartup
c:\windows\pss\xcdyoppql.exeStartup
c:\windows\pss\y7081g91sdt.exeStartup
c:\windows\pss\zulbbrx60z.exeStartup
c:\windows\pss\zva3w1ni1pp.exeStartup


Obeleži kvadratiće ispred sledećih opcija:
Scan for rootkits
Automatically disable any rootkits found

Klikni Execute, a zatim Yes u sledeća dva prozora koji će se otvoriti

Kompjuter će se restartovati (u određenim slučajevima: dva puta) i započeti će proces čišćenja/skeniranja

Kada proces bude završen, logfile C:\avenger.txt će se otvoriti u Notepad-u

Iskopiraj sadržaj dobijenog loga u temu na forumu.




Preuzmi Kaspersky Lab-ov TDSSKiller sa sledece adrese na Desktop:


TDSSKiller

Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili slicnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sacuvati file, odaberi Desktop i klikni Save.


Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
preimenuj TDSSKiller.exe u MyCity.exe;
dvoklikom pokreni program MyCity.exe;
klik na dugme Start Scan.

Ukoliko maliciozni (malicious) objekti budu pronadjeni, uveri se da je za njih odabrana akcija "Cure" (primer) i klikni Continue, a zatim klikni Reboot Now.



Okaci mi sadrzaj log-a sa sledece lokacije:
C:\TDSSKiller_verzija programa_DD.MM.GG_HH.MM.SS.txt
(DD-dan, MM-mesec, GG-godina, HH-sat, MM-minut, SS-sekunda; datum i vreme kada je log napravljen)





goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

USBNoRisk 2.7 (28 December 2010) by bobby

Started at 6/8/2011 3:24:58 PM

Searching for connected USB Mass storage...
----------------------------------------
========================================

Searching for other storage...
----------------------------------------
C: {bb0efd6f-6e10-11e0-adf3-806d6172696f}
========================================


Scanning fixed storage...
----------------------------------------

No blocked files found on C:
No autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for bb0efd6f-6e10-11e0-adf3-806d6172696f
No Desktop.ini files found on C:
----------------------------------------

========================================
Initial scan finished!
========================================


New device connected at 6/8/2011 3:25:35 PM

Scanning for connected USB mass storage...
----------------------------------------
E: {49502a79-906f-11e0-ba1e-0026c7d283b2}
Added E:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on E:
----------------------------------------
No autorun.inf files found on E:
No mountpoint found for 49502a79-906f-11e0-ba1e-0026c7d283b2
----------------------------------------

No Desktop.ini files found on E:
----------------------------------------

No mimics found on drive E:
----------------------------------------

.lnk/.pif/.com/.scr files found on drive E:
========================================


Processing script
----------------------------------------
49502a79-906f-11e0-ba1e-0026c7d283b2
Drive letter for GUID: E:
SectionStart = 0
SectionEnd = 2
----------------------------------------
Folder list for E:\:
----------------------------------------

d----   0   E:\Exel   E:\Exel
-----   378914   E:\KRIPTO~1.PDF   E:\Kriptografija.pdf
d----   0   E:\MOJISA~1   E:\moji sajtovi sa neta
d----   0   E:\Jquery   E:\Jquery
--a--   949614   E:\MAJA_M~1.RAR   E:\Maja_Medenica_Domaci4.rar
d----   0   E:\COUNTE~1   E:\counter strike
d----   0   E:\Galerija   E:\Galerija
--a--   75348   E:\KRIPTO~1.DOC   E:\Kriptografija seminarski.docx
--a--   2938443   E:\GINA-C~1.GIF   E:\gina-carano.gif





Logfile of The Avenger Version 2.0, (c) by Swandog46
[Link mogu videti samo ulogovani korisnici]

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "c:\windows\pss\0dtz2fv.exeStartup" deleted successfully.
File "c:\windows\pss\0p0fvb6.exeStartup" deleted successfully.
File "c:\windows\pss\1grsnde.exeStartup" deleted successfully.
File "c:\windows\pss\5jfabg8.exeStartup" deleted successfully.
File "c:\windows\pss\5ukk6w0.exeStartup" deleted successfully.
File "c:\windows\pss\6a81xst.exeStartup" deleted successfully.
File "c:\windows\pss\6kfbb2h.exeStartup" deleted successfully.
File "c:\windows\pss\70nidep.exeStartup" deleted successfully.
File "c:\windows\pss\9euu81g.exeStartup" deleted successfully.
File "c:\windows\pss\a86cxtt2zav.exeStartup" deleted successfully.
File "c:\windows\pss\brx66o81alm.exeStartup" deleted successfully.
File "c:\windows\pss\e6u81g2hi.exeStartup" deleted successfully.
File "c:\windows\pss\g3iiduupggb.exeStartup" deleted successfully.
File "c:\windows\pss\i1efk86w.exeStartup" deleted successfully.
File "c:\windows\pss\i1y97081w.exeStartup" deleted successfully.
File "c:\windows\pss\k0lhh2ndez.exeStartup" deleted successfully.
File "c:\windows\pss\kfl66c87.exeStartup" deleted successfully.
File "c:\windows\pss\kkaq1h70.exeStartup" deleted successfully.
File "c:\windows\pss\lccxoojaavm.exeStartup" deleted successfully.

Error: file "c:\windows\pss\vo1efk86w81.exeStartup" not found!
Deletion of file "c:\windows\pss\vo1efk86w81.exeStartup" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

File "c:\windows\pss\oz0fg6w81.exeStartup" deleted successfully.
File "c:\windows\pss\q6sntjzu.exeStartup" deleted successfully.
File "c:\windows\pss\qgw1n70jff.exeStartup" deleted successfully.
File "c:\windows\pss\rhidtupfgb.exeStartup" deleted successfully.
File "c:\windows\pss\rw81i3upfg.exeStartup" deleted successfully.
File "c:\windows\pss\vrr2xyjo86a.exeStartup" deleted successfully.
File "c:\windows\pss\ty81kvwrx6.exeStartup" deleted successfully.
File "c:\windows\pss\w70xtoo6a.exeStartup" deleted successfully.
File "c:\windows\pss\w8dijppql.exeStartup" deleted successfully.
File "c:\windows\pss\xcdyoppql.exeStartup" deleted successfully.
File "c:\windows\pss\y7081g91sdt.exeStartup" deleted successfully.
File "c:\windows\pss\zulbbrx60z.exeStartup" deleted successfully.
File "c:\windows\pss\zva3w1ni1pp.exeStartup" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.



2011/06/08 15:35:26.0437 2760 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24
2011/06/08 15:35:26.0796 2760 ================================================================================
2011/06/08 15:35:26.0796 2760 SystemInfo:
2011/06/08 15:35:26.0796 2760
2011/06/08 15:35:26.0796 2760 OS Version: 5.1.2600 ServicePack: 3.0
2011/06/08 15:35:26.0796 2760 Product type: Workstation
2011/06/08 15:35:26.0796 2760 ComputerName: NIKOLA-339D18AA
2011/06/08 15:35:26.0796 2760 UserName: nikola
2011/06/08 15:35:26.0796 2760 Windows directory: C:\WINDOWS
2011/06/08 15:35:26.0796 2760 System windows directory: C:\WINDOWS
2011/06/08 15:35:26.0796 2760 Processor architecture: Intel x86
2011/06/08 15:35:26.0796 2760 Number of processors: 2
2011/06/08 15:35:26.0796 2760 Page size: 0x1000
2011/06/08 15:35:26.0796 2760 Boot type: Normal boot
2011/06/08 15:35:26.0796 2760 ================================================================================
2011/06/08 15:35:28.0640 2760 Initialize success
2011/06/08 15:35:59.0093 1412 ================================================================================
2011/06/08 15:35:59.0093 1412 Scan started
2011/06/08 15:35:59.0093 1412 Mode: Manual;
2011/06/08 15:35:59.0093 1412 ================================================================================
2011/06/08 15:36:00.0468 1412 Aavmker4 (3f6884eff406238d39aaa892218f1df7) C:\WINDOWS\system32\drivers\Aavmker4.sys
2011/06/08 15:36:03.0812 1412 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/06/08 15:36:04.0984 1412 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2011/06/08 15:36:07.0312 1412 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/06/08 15:36:08.0468 1412 AFD (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
2011/06/08 15:36:14.0671 1412 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
2011/06/08 15:36:21.0328 1412 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011/06/08 15:36:22.0609 1412 aswMon2 (c2181ef6b54752273a0759a968c59279) C:\WINDOWS\system32\drivers\aswMon2.sys
2011/06/08 15:36:23.0828 1412 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\WINDOWS\system32\drivers\aswRdr.sys
2011/06/08 15:36:25.0468 1412 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\WINDOWS\system32\drivers\aswSnx.sys
2011/06/08 15:36:27.0468 1412 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\WINDOWS\system32\drivers\aswSP.sys
2011/06/08 15:36:29.0234 1412 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\WINDOWS\system32\drivers\aswTdi.sys
2011/06/08 15:36:30.0687 1412 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/06/08 15:36:32.0343 1412 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/06/08 15:36:35.0687 1412 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/06/08 15:36:37.0218 1412 audstub (d9f724aa26c010a217c97606b160ed68-) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/06/08 15:36:38.0296 1412 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/06/08 15:36:40.0468 1412 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/06/08 15:36:41.0218 1412 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/06/08 15:36:43.0859 1412 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/06/08 15:36:44.0750 1412 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/06/08 15:36:45.0421 1412 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/06/08 15:36:46.0718 1412 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2011/06/08 15:36:48.0015 1412 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2011/06/08 15:36:51.0406 1412 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/06/08 15:36:52.0453 1412 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
2011/06/08 15:36:53.0859 1412 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
2011/06/08 15:36:55.0000 1412 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/06/08 15:36:56.0531 1412 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/06/08 15:36:58.0062 1412 drmkaud (8f5fcff8e8848afac920905fbd9d33c8-) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/06/08 15:36:58.0796 1412 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/06/08 15:36:59.0437 1412 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2011/06/08 15:37:00.0078 1412 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
2011/06/08 15:37:00.0718 1412 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/06/08 15:37:01.0453 1412 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/06/08 15:37:02.0468 1412 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/06/08 15:37:03.0093 1412 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/06/08 15:37:03.0718 1412 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/06/08 15:37:04.0468 1412 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/06/08 15:37:05.0140 1412 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/06/08 15:37:06.0406 1412 HTTP (f80a415ef82cd06ffaf0d971528ead38-) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/06/08 15:37:08.0593 1412 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/06/08 15:37:09.0875 1412 ialm (601c76224d741fe70afc4298c0a04213) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
2011/06/08 15:37:11.0015 1412 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/06/08 15:37:13.0062 1412 IntcAzAudAddService (f574d00ab0319d8ab38fff0739c8659b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/06/08 15:37:17.0218 1412 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/06/08 15:37:17.0875 1412 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/06/08 15:37:18.0593 1412 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/06/08 15:37:19.0250 1412 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/06/08 15:37:19.0953 1412 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/06/08 15:37:20.0609 1412 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/06/08 15:37:21.0296 1412 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/06/08 15:37:22.0015 1412 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/06/08 15:37:22.0687 1412 Kbdclass (463c1ec80cd17420a542b7f36a36f128-) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/06/08 15:37:23.0359 1412 kmixer (692bcf44383d056aed41b045a323d378-) C:\WINDOWS\system32\drivers\kmixer.sys
2011/06/08 15:37:24.0328 1412 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/06/08 15:37:25.0140 1412 L1c (5767bac5a2c4688a18f580efb3a0e081) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
2011/06/08 15:37:26.0718 1412 massfilter (09721f2c56681a83c93ecdfab8b102a9) C:\WINDOWS\system32\drivers\massfilter.sys
2011/06/08 15:37:27.0343 1412 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\WINDOWS\system32\drivers\mbam.sys
2011/06/08 15:37:28.0031 1412 MBAMSwissArmy (b309912717c29fc67e1ba4730a82b6dd) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011/06/08 15:37:28.0703 1412 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/06/08 15:37:29.0343 1412 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
2011/06/08 15:37:29.0984 1412 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
2011/06/08 15:37:31.0125 1412 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/06/08 15:37:32.0171 1412 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/06/08 15:37:32.0781 1412 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/06/08 15:37:33.0968 1412 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/06/08 15:37:34.0578 1412 MRxSmb (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/06/08 15:37:35.0187 1412 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/06/08 15:37:35.0765 1412 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/06/08 15:37:36.0328 1412 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/06/08 15:37:37.0125 1412 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/06/08 15:37:37.0953 1412 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/06/08 15:37:38.0515 1412 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/06/08 15:37:39.0171 1412 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/06/08 15:37:39.0765 1412 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/06/08 15:37:40.0375 1412 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/06/08 15:37:40.0984 1412 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/06/08 15:37:41.0578 1412 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/06/08 15:37:42.0171 1412 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/06/08 15:37:42.0765 1412 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/06/08 15:37:43.0343 1412 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/06/08 15:37:43.0921 1412 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/06/08 15:37:44.0515 1412 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/06/08 15:37:45.0296 1412 NETw5x32 (3bdc90d9b12b685944f2b0896af5413c) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
2011/06/08 15:37:46.0390 1412 NETwNx32 (b523d4d55aa6f15e4c4de1a6107cd149) C:\WINDOWS\system32\DRIVERS\NETwNx32.sys
2011/06/08 15:37:47.0265 1412 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/06/08 15:37:47.0953 1412 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/06/08 15:37:48.0640 1412 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/06/08 15:37:49.0281 1412 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/06/08 15:37:49.0921 1412 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/06/08 15:37:50.0578 1412 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
2011/06/08 15:37:51.0218 1412 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/06/08 15:37:51.0859 1412 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/06/08 15:37:52.0500 1412 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/06/08 15:37:53.0828 1412 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/06/08 15:37:54.0500 1412 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/06/08 15:37:58.0937 1412 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/06/08 15:37:59.0609 1412 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/06/08 15:38:00.0250 1412 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/06/08 15:38:00.0875 1412 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
2011/06/08 15:38:04.0484 1412 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/06/08 15:38:05.0140 1412 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/06/08 15:38:05.0828 1412 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/06/08 15:38:06.0468 1412 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/06/08 15:38:07.0109 1412 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/06/08 15:38:07.0734 1412 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/06/08 15:38:08.0390 1412 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/06/08 15:38:09.0062 1412 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/06/08 15:38:09.0750 1412 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/06/08 15:38:10.0562 1412 S6000KNT (efa699f02df6c4c58ea0bd81ba1a23bd) C:\WINDOWS\system32\Drivers\S6000KNT.sys
2011/06/08 15:38:11.0375 1412 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/06/08 15:38:12.0046 1412 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
2011/06/08 15:38:12.0703 1412 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/06/08 15:38:13.0953 1412 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/06/08 15:38:15.0171 1412 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/06/08 15:38:15.0875 1412 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
2011/06/08 15:38:16.0531 1412 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/06/08 15:38:17.0187 1412 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/06/08 15:38:17.0875 1412 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/06/08 15:38:18.0515 1412 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/06/08 15:38:19.0156 1412 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/06/08 15:38:22.0218 1412 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/06/08 15:38:22.0906 1412 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/06/08 15:38:23.0562 1412 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/06/08 15:38:24.0359 1412 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/06/08 15:38:25.0062 1412 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/06/08 15:38:26.0406 1412 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/06/08 15:38:27.0734 1412 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/06/08 15:38:28.0375 1412 usbccgp (173f317ce0db8e21322e71b7e60a27e8-) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/06/08 15:38:29.0000 1412 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/06/08 15:38:29.0734 1412 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/06/08 15:38:30.0421 1412 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/06/08 15:38:31.0093 1412 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/06/08 15:38:31.0765 1412 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
2011/06/08 15:38:32.0390 1412 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/06/08 15:38:33.0656 1412 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/06/08 15:38:34.0328 1412 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/06/08 15:38:35.0562 1412 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/06/08 15:38:36.0562 1412 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
2011/06/08 15:38:37.0234 1412 WSTCODEC (c98b39829c2bbd34e454150633c62c78-) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/06/08 15:38:37.0953 1412 ZTEusbmdm6k (616b411bfc0e9f535a436759f19b79d8-) C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
2011/06/08 15:38:38.0578 1412 ZTEusbnmea (616b411bfc0e9f535a436759f19b79d8-) C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
2011/06/08 15:38:39.0234 1412 ZTEusbser6k (616b411bfc0e9f535a436759f19b79d8-) C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
2011/06/08 15:38:39.0328 1412 MBR (0x1B8-) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
2011/06/08 15:38:39.0546 1412 MBR (0x1B8-) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR2
2011/06/08 15:38:39.0562 1412 ================================================================================
2011/06/08 15:38:39.0562 1412 Scan finished
2011/06/08 15:38:39.0562 1412 ================================================================================
2011/06/08 15:38:39.0578 2216 Detected object count: 0
2011/06/08 15:38:39.0578 2216 Actual detected object count: 0
2011/06/08 15:38:48.0484 1556 Deinitialize success

• 1Ovo se svidja korisniku: Springfield
  
  Registruj se da bi pohvalio/la poruku!

Rucno obrisi fajl: c:\windows\pss\o1efk86w81.exeStartup




Tvoj racunar je cist sto se malware-a tice.







Potrebno je deinstalirati ComboFix:
klikni start (ili ), a zatim RUN.

Na Visti koristiti Start Search polje ukoliko Run nije dostupan.

U liniju za unos teksta ukucaj (iskopiraj) sledeće:

ComboFix /Uninstall

Primeti da postoji razmak između "ComboFix" i "/Uninstall".



a zatim klikni OK (ili pritisni Enter).

Sačekaj da se proces deinstalacije završi.




Ostale koriscene programe mozes izbrisati.
Takodje obrisi karantin Avengera koji se nalazi na sledecoj lokaciji: C:\Avenger




Preuzmi program ATF Cleaner i sačuvaj ga na Desktop.

Štikliraj Select All i nakon toga klikni na Empty Selected.
Kada se pojavi poruka Done Cleaning, zatvori program.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Sve zavrseno hvala puno...