Memo kartica i virus

Memo kartica i virus

offline
  • Pridružio: 30 Jul 2009
  • Poruke: 233

Problem počinje od mog pokušaja da sa memorijske kartice povratim oštećene slike. Isprobavajući razne programe nakupila sam više kojekakvih virusa i nakon skeniranja avastom koji je kao sve očistio odustala od pokušaja da vratim slike. Htela sam da formatiram karticu ali to više ne mogu napiše nešto kao windous ne može da završi formatiranje,

Evo dole log od dds-a i ako sam dobro razumela ovde treba da iskopiram to isto:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16635 BrowserJavaVersion: 10.25.2
Run by Mi Ringeri at 20:37:35 on 2013-07-24
Microsoft Windows 7 Professional 6.1.7601.1.1250.381.1033.18.1014.88 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Windows\system32\schtasks.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Mi Ringeri\Downloads\t8vm9rhr.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.bing.com
uDefault_Search_URL = hxxp://www.google.com/ie
uProxyServer = hxxp=127.0.0.1:8555
uProxyOverride = 127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896;<local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - c:\program files\windows live\companion\companioncore.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil32_11_7_700_224_ActiveX.exe -update activex
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [SMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"
mRun: [RTHDVCPL] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [AlcWzrd] ALCWZRD.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: Free YouTube Download - c:\program files\common files\dvdvideosoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files\common files\dvdvideosoft\plugins\freeytmp3downloader.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{03BF19EB-F95A-44E6-A69B-1524ABD34123} : DHCPNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\28.0.1500.72\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\mi ringeri\appdata\roaming\mozilla\firefox\profiles\9frnyzl1.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=512435&p=
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\mi ringeri\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\mi ringeri\appdata\local\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\users\mi ringeri\appdata\roaming\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\users\mi ringeri\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\users\mi ringeri\appdata\roaming\mozilla\plugins\npo1d.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_224.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-2-28 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-2-28 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-11-12 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-11-12 369584]
R1 Ext2Fsd;Linux ext2 file system driver;c:\windows\system32\drivers\ext2fsd.sys [2012-12-8 686872]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-11-12 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-11-12 66336]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-4-23 22856]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2012-11-13 39272]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2013-3-24 12400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-26 14848]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-11-26 49664]
.
=============== Created Last 30 ================
.
2013-07-23 20:59:57 7143960 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{f1c93dd0-1d05-4254-b3b5-7594cc11618d}\mpengine.dll
2013-07-22 20:23:20 -------- d-----w- c:\users\mi ringeri\appdata\local\{0730BE40-B9B9-4463-8369-BC803866FF72}
2013-07-22 19:52:56 -------- d-----w- c:\program files\Photoshine
2013-07-21 22:28:13 -------- d-----w- c:\program files\MSXML 4.0
2013-07-20 23:59:45 -------- d-----w- c:\program files\Photo Recovery
2013-07-20 23:24:22 249856 ------w- c:\windows\Setup1.exe
2013-07-20 23:24:11 73216 ----a-w- c:\windows\ST6UNST.EXE
2013-07-20 21:44:27 82432 ----a-w- c:\windows\system32\msxml4r.dll
2013-07-20 21:44:25 44544 ----a-w- c:\windows\system32\msxml4a.dll
2013-07-20 21:44:22 -------- d-----w- c:\program files\Convar
2013-07-20 21:44:21 44544 ----a-w- c:\windows\system32\Gif89.dll
2013-07-20 21:44:21 28672 ----a-w- c:\windows\system32\DartWeb.oca
2013-07-20 21:43:55 217088 ----a-w- c:\windows\system32\DartSock.dll
2013-07-20 21:43:52 118784 ----a-w- c:\windows\system32\DartWeb.dll
2013-07-20 21:43:48 516784 ----a-r- c:\windows\system32\XceedCry.dll
2013-07-20 21:43:43 140488 ----a-w- c:\windows\system32\COMDLG32.OCX
2013-07-20 21:43:32 89360 ----a-w- c:\windows\system32\VB5DB.DLL
2013-07-20 21:42:00 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2013-07-20 21:41:59 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2013-07-20 21:41:58 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2013-07-20 21:41:58 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2013-07-20 21:41:54 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2013-07-20 21:41:49 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2013-07-20 21:41:49 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2013-07-20 21:17:07 -------- d-----w- c:\program files\PhotoRescue PC
2013-07-20 21:06:04 -------- d-----w- c:\users\mi ringeri\appdata\local\{540F7201-1C65-45DA-A48F-0D2506DAE076}
2013-07-16 20:49:15 -------- d-----w- c:\users\mi ringeri\appdata\local\{E6A66A91-9050-4A42-B78A-5F1AA79BC281}
2013-07-12 19:06:00 -------- d--h--w- c:\users\mi ringeri\InstallAnywhere
2013-07-12 12:42:18 6129024 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-07-12 12:42:18 6129024 ----a-w- c:\program files\mozilla firefox\browser\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-07-11 21:30:02 -------- d-----w- c:\users\mi ringeri\appdata\local\{8D0A6B62-A582-4A7B-AB9B-B845755CF29A}
2013-07-11 12:24:09 1247744 ----a-w- c:\windows\system32\DWrite.dll
2013-07-11 12:24:04 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-07-11 12:24:01 509440 ----a-w- c:\windows\system32\qedit.dll
2013-07-11 12:23:58 1620480 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-07-11 12:23:50 936448 ----a-w- c:\program files\common files\microsoft shared\ink\journal.dll
2013-07-11 12:23:49 988672 ----a-w- c:\program files\windows journal\JNTFiltr.dll
2013-07-11 12:23:49 969216 ----a-w- c:\program files\windows journal\JNWDRV.dll
2013-07-11 12:23:47 1221632 ----a-w- c:\program files\windows journal\NBDoc.DLL
2013-07-11 12:23:21 680960 ----a-w- c:\program files\windows defender\MpSvc.dll
2013-07-11 12:23:20 392704 ----a-w- c:\program files\windows defender\MpClient.dll
2013-07-11 12:23:19 224768 ----a-w- c:\program files\windows defender\MpCommu.dll
2013-07-09 17:41:33 -------- d-----w- c:\users\mi ringeri\appdata\local\{2E3647C4-73EA-4565-AC47-2AB7418941AB}
2013-07-04 14:53:22 -------- d-----w- c:\users\mi ringeri\appdata\local\{C4504213-2C61-4DE0-8B6C-3674505AE6F8}
2013-07-03 22:39:35 -------- d-----w- c:\users\mi ringeri\appdata\local\{66C53179-C961-469D-B8C6-DC606F046DB3}
2013-07-02 21:45:07 -------- d-----w- c:\users\mi ringeri\appdata\local\{E7994A0B-EC07-48BC-A4D7-4B56E5A770BE}
2013-07-02 21:10:31 -------- d-----w- c:\users\mi ringeri\appdata\local\Pokki
2013-06-29 18:19:36 -------- d-----w- c:\users\mi ringeri\appdata\local\{3E40BE2D-B8F7-47D2-BB7E-1C96FE216636}
2013-06-29 08:58:15 -------- d-----w- c:\users\mi ringeri\New folder
2013-06-27 21:28:41 163328 ----a-w- c:\windows\system32\FlashPlayerUpdateService.exe
2013-06-26 22:12:52 -------- d-----w- c:\windows\system32\Hotspot Shield
2013-06-26 20:02:37 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
.
==================== Find3M ====================
.
2013-07-02 21:32:16 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-07-02 21:32:15 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-26 20:01:39 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-06-26 20:01:39 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-06-22 06:43:14 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-22 06:43:13 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-11 23:43:37 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-06-11 23:43:00 2877440 ----a-w- c:\windows\system32\jscript9.dll
2013-06-11 23:42:58 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-06-11 23:42:58 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-06-11 22:51:45 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-06-07 02:37:52 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-13 04:45:55 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-05-13 04:45:55 1160192 ----a-w- c:\windows\system32\crypt32.dll
2013-05-13 04:45:55 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-05-13 03:08:10 903168 ----a-w- c:\windows\system32\certutil.exe
2013-05-13 03:08:06 43008 ----a-w- c:\windows\system32\certenc.dll
2013-05-10 03:20:54 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-05-09 08:59:10 61680 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-05-09 08:59:10 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59:09 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:58:37 41664 ----a-w- c:\windows\avastSS.scr
2013-05-08 05:38:00 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-05-06 05:06:47 3968872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-05-06 05:06:47 3913576 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-02 00:06:08 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-26 04:55:21 492544 ----a-w- c:\windows\system32\win32spl.dll
2013-04-25 23:30:32 1505280 ----a-w- c:\windows\system32\d3d11.dll
.
============= FINISH: 20:42:47,99 ===============

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi MCShield sa sljedeće adrese:

http://www.mcshield.net/download/MCShield-Setup.exe

Instaliraj MCShield i sačekaj da se završi uvodno skeniranje.

Kad se završi uvodno skeniranje, ubacuj sve USB memorijske uređaje redom u USB port i svaki zadrži u portu dok MCShield ne izbaci poruku da je skeniranje završeno. Ukoliko imaš više USB uređaja, zabilježi negdje kojim su redom ubacivani.

Objašnjenje: U USB memorijske uređaje spadaju svi oni uređaji koji po priključivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uređaji itd.

Idi na Start -> All Programs -> MCShield -> Logs -> AllScans

Otvoriće ti se izvještaj u Notepad-u čiji sadržaj treba da postaviš u poruku

offline
  • Pridružio: 30 Jul 2009
  • Poruke: 233

Napisano: 25 Jul 2013 0:04

Nakon ovog F drajva kada ubacim sledeci nista se ne desava.
Evo ovog do sada skeniranog (F je ta problematicna memo kartica)
>>> MCShield AllScans.txt <<<



MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


24.7.2013 23:57:23 > Drive C: - scan started (no label ~61 GB, NTFS HDD )...



=> The drive is clean.


24.7.2013 23:57:24 > Drive D: - scan started (podaci ~70 GB, NTFS HDD )...



=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


24.7.2013 23:57:39 > Drive F: - scan started (no label ~961 MB, FAT flash drive )...



=> The drive is clean.

Dopuna: 25 Jul 2013 0:09

Kada prikacim telefon Koji takodje ima memo karticu on ne reaguje, nakon toga tj uporedio sa njim prikacim tj ubacim gps njega odmah skenira i izbaci obavestenje:
MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:05:56 > Disk F: - skeniranje započeto (bez oznake ~50 MB, FAT flash disk )...



=> Disk je čist.

Dopuna: 25 Jul 2013 0:38

Evo konacno pregledah sve i ovo bi trebalo da je log svih /bogami je imalo nekoliko, samo kartica koju ne mogu da formatiram nema nista
>>> MCShield AllScans.txt <<<



MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


24.7.2013 23:57:23 > Drive C: - scan started (no label ~61 GB, NTFS HDD )...



=> The drive is clean.


24.7.2013 23:57:24 > Drive D: - scan started (podaci ~70 GB, NTFS HDD )...



=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


24.7.2013 23:57:39 > Drive F: - scan started (no label ~961 MB, FAT flash drive )...



=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:05:56 > Disk F: - skeniranje započeto (bez oznake ~50 MB, FAT flash disk )...



=> Disk je čist.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:10:01 > Disk F: - skeniranje započeto (bez oznake ~952 MB, FAT flash disk )...



=> Disk je čist.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:14:25 > Disk F: - skeniranje započeto (KINGSTON ~30508 MB, FAT32 flash disk )...

>>> F:\autorun.inf > Legitimna datoteka.


---> Napomena: paranoidni način rada je omogućen.


>>> F:\autorun.inf - Malware > Obrisano. (13.07.25. 00.22 autorun.inf.799160; MD5: 7d7a735c2266ba3cde25e3f9e4cb3bad)

> Resetovanje atributa: F:\urDrive < Uspešno.


=> Malicioznih datoteka : 1/1 obrisano.
=> Skrivenih fascikli : 1/1 otkriveno.

____________________________________________

::::: Trajanje skeniranja: 8min 8sek :::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:23:24 > Disk F: - skeniranje započeto (MILANKA-2 ~1922 MB, FAT32 flash disk )...



---> Napomena: paranoidni način rada je omogućen.


>>> F:\(1) p - Malware > Obrisano. (13.07.25. 00.23 (1) p.524777; MD5: d41d8cd98f00b204e9800998ecf8427e)


=> Malicioznih datoteka : 1/1 obrisano.

____________________________________________

::::: Trajanje skeniranja: 6sek ::::::::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:24:18 > Disk F: - skeniranje započeto (bez oznake ~3896 MB, FAT32 flash disk )...



---> Napomena: paranoidni način rada je omogućen.


>>> F:\Unlocker1.9.2.exe - Malware > Obrisano. (13.07.25. 00.27 Unlocker1.9.2.exe.11852; MD5: 1e02d6aa4a199448719113ae3926afb2)


=> Malicioznih datoteka : 1/1 obrisano.

____________________________________________

::::: Trajanje skeniranja: 2min 57sek ::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:28:14 > Disk F: - skeniranje započeto (bez oznake ~3832 MB, FAT32 flash disk )...



---> Napomena: paranoidni način rada je omogućen.


>>> F:\CADspan_plugin_for_Google_SketchUp8-2.12 (14-09).exe - Malware > Obrisano. (13.07.25. 00.28 CADspan_plugin_for_Google_SketchUp8-2.12 (14-09).exe.283428; MD5: bc0b065a6464deb50be1f62ad1328902)


=> Malicioznih datoteka : 1/1 obrisano.

____________________________________________

::::: Trajanje skeniranja: 5sek ::::::::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:28:48 > Disk F: - skeniranje započeto (bez oznake ~487 MB, FAT flash disk )...



=> Disk je čist.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:31:56 > Disk H: - skeniranje započeto (bez oznake ~988 MB, FAT flash disk )...



=> Disk je čist.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 2.7.4.23 / DB: 2013.7.23.1 / Windows 7 <<<


25.7.2013 0:33:46 > Disk F: - skeniranje započeto (PHONE CARD ~1876 MB, FAT flash disk )...



=> Disk je čist.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

U postavljenim izvještajima ne vidim tragove aktivne infekcije.


Arrow

Ponovo pokreni AdwCleaner
Klikni na dugme Uninstall i pričekaj da se postupak deinstalacije završi.


DDS, GMER i njhivoe izvještaje možreš ručno obrisati.

MCShield zadrži na sistemu jer će te on čuvati od infekcija koje se prenose putem USB diskova.



Arrow

Posjeti temu Testirajte da li vam je pretraživač ranjiv, pročitaj i isprati link koji stoji u njoj.



Arrow

Što se tiče kartice, problem sa formatiranje nije uzrokovan malicioznim programom. Otvori temu u
http://www.mycity.rs/Storage-hardware/

i tamo opiši problem koj iimaš sa memorijskom karticom.

offline
  • Pridružio: 30 Jul 2009
  • Poruke: 233

Napisano: 25 Jul 2013 1:28

Hvala na pomoci. Nastavak sledi.

Dopuna: 25 Jul 2013 12:56

Može li jedno pitanje: kada ponovo ubacim fleš na kome je registrovao virus dok ga skenira izbacuje mi ovo obaveštenje:Nemojte prekidati skeniranje: disk je inficiran. Kada završi izbaci obaveštenje da je disk čist tj clean. U čemu je problem? Bolje rečeno ima li ga?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ako kaže da je disk čist, to znači da MCS nije našao malware na tom disku.

offline
  • Pridružio: 30 Jul 2009
  • Poruke: 233

Napisano: 25 Jul 2013 13:00

Tj piše sledeće: malver nije detektovan

Dopuna: 25 Jul 2013 13:02

Da li on ipak postoji iako nije detektovan?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Napisano: 25 Jul 2013 13:02

Rečenica ti sve kaže. Sva tvoja buduća pitanja u vezi MCShielda postavi u njegovoj temi:

http://www.mycity.rs/MyCity-Laboratorija/MCShield-v2.html

Dopuna: 25 Jul 2013 13:03

Citat:Da li on ipak postoji iako nije detektovan?

99% da ne postoji malware koji se prenosi putem USB diskova. Razz

Ko je trenutno na forumu
 

Ukupno su 687 korisnika na forumu :: 29 registrovanih, 5 sakrivenih i 653 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: amstel2, Arhiv, Bane san, Battlehammer, brundo65, Cirkon, crnitrn, Ctrl x, djo97, dragoljub11987, dragon986, dule clio, gorozup, GreenMan, ILGromovnik, m0nstrum_, Malizian-50, Miskohd, nemkea71, Outis, sabros, scimitar19, Snorks, Toni, vasa.93, wolverined4, yufighter, zixmix, zlaya011