MyCity » Ambulanta -> Arhiva Ambulante » Nesto mi jede memoriju na sistemskom drajvu

Nesto mi jede memoriju na sistemskom drajvu

Napisano na dan: 16.7.2011

Nesto mi jede memoriju na sistemskom drajvu

Sledeća strana

Pagination

Odgovori

kravman89 Poslao: 16 Jul 2011 17:37 Idi na vrh
offline kravman89 Građanin Pridružio: 29 Sep 2010 Poruke: 138	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Sinoc kada sa ostavio komp da skida filmove i sl sa web-a, imao sam oko 8 giga slobodne memorije na c: Danas u system tray-u mi je iskocila ikonica kako nemam vise slobodnog mesta na c:, i ostalo je slobodno nekih 2,2 megabajta. Morao sam da obrisem i preselim neke fajlove kako bi imao dovljno mesta. Ubedjen sam da mi nesto jede memoriju. A sa vremena na vreme se cuje, obicno kada sam u chrome exploreru, neka muzika... Posedujem nod32, ali on nista nije prijavio. Posedujem t3 (valjda) konekciju..300 KB/s dds.txt DDS (Ver_2011-07-14.01) - NTFS_x86 Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_26 Run by Administrator at 8:19:43 on 2011-07-30 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1253 [GMT -7:00] . AV: ESET NOD32 Antivirus 3.0 Enabled/Outdated {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ============== Running Processes ================ . C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\WINDOWS\system32\rserver30\RServer3.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe C:\Program Files\TightVNC\WinVNC.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\rserver30\FamItrfc.Exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\VVSN\VVSN.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\802.11 Wireless LAN\802.11g Wireless CardBus & PCI Adapter HW.15 V.1.00\WlanCU.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\Program Files\MiPony\MiPony.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Nero\Nero8\Nero Burning Rom\nero.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService . ============== Pseudo HJT Report =============== . uStart Page = hxxp://start.jdownloader.com/ mWinlogon: TaskMan = c:\documents and settings\administrator\ydwzro.exe BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: FGCatchUrl: {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - c:\program files\flashget\jccatch.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: kikin Plugin: {E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll BHO: FlashGet GetFlash Class: {F156768E-81EF-470C-9057-481BA8380DBA} - c:\program files\flashget\getflash.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [RTHDCPL] RTHDCPL.EXE mRun: [WinVNC] "c:\program files\tightvnc\WinVNC.exe" -servicehelper mRun: [VVSN] c:\program files\vvsn\VVSN.exe mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\magicd~1.lnk - c:\program files\magicdisc\MagicDisc.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wirele~1.lnk - c:\program files\802.11 wireless lan\802.11g wireless cardbus & pci adapter hw.15 v.1.00\WlanCU.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm IE: Download with Mipony - c:\program files\mipony\browser\IEContext.htm IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1275070238156 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab TCP: NameServer = 109.122.98.116 109.122.98.117 TCP: Interfaces\{0573EEAA-C7BF-4501-BA11-8735B19D1A91} : NameServer = 109.122.98.116,109.122.98.117 TCP: Interfaces\{0573EEAA-C7BF-4501-BA11-8735B19D1A91} : DHCPNameServer = 109.122.98.116 109.122.98.117 TCP: Interfaces\{0F9B9E8C-8946-499C-904D-2EF9CD1AD205} : DHCPNameServer = 109.122.98.116 109.122.98.117 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: ipp - <Clsid value has no data> Handler: msdaipp - <Clsid value has no data> SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\program files\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install IFEO: Your Image File Name Here without a path - ntsd -d . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\administrator\application data\mozilla\firefox\profiles\nsfnfqi8.default\ FF - prefs.js: browser.startup.homepage - hxxp://start.jdownloader.com/ FF - plugin: c:\documents and settings\administrator\local settings\application data\google\update\1.3.21.57\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll . ============= SERVICES / DRIVERS =============== . R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-2-20 35168] R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [2009-10-9 46304] R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/07/22 09:10:48];c:\program files\cyberlink\powerdvd10\navfilter\000.fcl [2010-3-13 87536] R2 ekrn;Eset Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2009-10-7 472280] R2 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [2009-10-9 1242504] R2 StarWindServiceAE;StarWind AE Service;c:\program files\alcohol soft\alcohol 120\starwind\StarWindServiceAE.exe [2007-5-28 275968] R2 TeamViewer6;TeamViewer 6;c:\program files\teamviewer\version6\TeamViewer_Service.exe [2011-7-25 2337144] R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2010-5-9 38656] R3 KoneFltr;ROCCAT Kone;c:\windows\system32\drivers\Kone.sys [2011-1-24 13056] R3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2009-10-9 3328] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-6-21 1691480] . =============== Created Last 30 ================ . 2011-07-30 12:08:22 -------- d-----w- c:\program files\Windows Media Connect 2 2011-07-30 01:03:38 -------- d-----w- c:\documents and settings\administrator\application data\kikin 2011-07-30 01:03:37 -------- d-----w- c:\program files\kikin 2011-07-27 02:16:31 724169 ----a-w- c:\windows\RON 2010 ENGLISH DL Uninstaller.exe 2011-07-27 02:12:17 -------- d-----w- c:\program files\Rulers Of Nations 2011-07-27 02:12:17 -------- d-----w- c:\program files\common files\Thraex Software 2011-07-26 12:15:35 476904 ----a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll 2011-07-26 12:15:35 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-07-26 01:20:28 -------- d-----w- c:\documents and settings\administrator\application data\TeamViewer 2011-07-26 01:20:22 -------- d-----w- c:\program files\TeamViewer 2011-07-25 12:17:11 -------- d-----w- c:\documents and settings\administrator\application data\Mipony 2011-07-25 12:17:02 -------- d-----w- c:\program files\MiPony 2011-07-25 11:57:42 -------- d-----w- c:\program files\JDownloader 2011-07-09 12:09:06 -------- d-----w- c:\documents and settings\administrator\application data\BITS 2011-07-09 12:09:05 -------- d-----w- c:\documents and settings\administrator\application data\FlashGet 2011-07-09 12:08:56 -------- d-----w- c:\documents and settings\administrator\application data\FlashGetBHO 2011-07-09 12:08:53 -------- d-----w- c:\program files\FlashGet Network 2011-07-09 11:49:38 -------- d-----w- c:\documents and settings\all users\application data\Electronic Arts 2011-07-09 11:40:46 -------- d-----w- c:\documents and settings\administrator\application data\NVIDIA 2011-07-09 11:40:44 -------- d-sh--w- c:\documents and settings\all users\application data\DSS 2011-07-09 11:35:14 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2011-07-09 11:35:14 138056 ----a-w- c:\documents and settings\administrator\application data\PnkBstrK.sys 2011-07-09 11:34:40 189248 ----a-w- c:\windows\system32\PnkBstrB.exe 2011-07-09 11:34:39 75064 ----a-w- c:\windows\system32\PnkBstrA.exe 2011-07-09 11:34:37 2601752 ----a-w- c:\windows\system32\pbsvc_moh.exe 2011-07-09 11:34:23 -------- d-----w- c:\windows\system32\LogFiles 2011-07-09 11:26:08 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll 2011-07-09 11:26:08 528216 ----a-w- c:\windows\system32\XAudio2_6.dll 2011-07-09 11:26:08 238936 ----a-w- c:\windows\system32\xactengine3_6.dll 2011-07-09 11:26:07 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll 2011-07-08 22:49:31 -------- d-----w- c:\documents and settings\administrator\application data\DMCache 2011-07-08 22:14:16 -------- d-----w- c:\program files\Lavalys 2011-07-08 22:10:51 -------- d-----w- c:\documents and settings\administrator\local settings\application data\Google 2011-07-07 09:16:22 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll 2011-07-07 09:16:21 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll 2011-07-07 09:16:21 781272 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll 2011-07-07 09:16:21 719832 ----a-w- c:\program files\mozilla firefox\mozcpp19.dll 2011-07-07 09:16:21 465880 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll 2011-07-07 09:16:21 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll 2011-07-07 09:16:21 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll 2011-07-07 09:16:21 1850328 ----a-w- c:\program files\mozilla firefox\mozjs.dll 2011-07-07 09:16:21 16856 ----a-w- c:\program files\mozilla firefox\plugin-container.exe 2011-07-07 09:16:21 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll . ==================== Find3M ==================== . 2011-07-29 22:06:43 252080 ----a-w- c:\windows\system32\nvdrsdb0.bin 2011-07-29 22:06:43 1 ----a-w- c:\windows\system32\nvdrssel.bin 2011-07-29 22:06:40 252080 ----a-w- c:\windows\system32\nvdrsdb1.bin 2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys 2011-05-04 09:25:49 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll . ============= FINISH: 8:20:01.32 =============== mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png I malo procesljajte ako vas ne mrzi da vidite dal je sve u redu...pri paljenju kompa mi iskacu neki silni prozori (4 komada)...mislim zivciraju me...neto tipa pojavio se neki error pa da li hocu da posaljem izvestaj send ili don send...i slicno...

Profil

1l padr1n0 Poslao: 16 Jul 2011 17:44 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav kravman89! U toku resavanja slucaja, zamolio bih te da se pridrzavas sledeceg: Detaljno citati moja uputstva ( ili uputstva kolega koji ce me zamenjivati) i raditi iskljucivo po njima; Ne traziti istovremeno pomoc na drugom mestu; Nemoj koristiti druge programe za uklanjanje malware-a, osim onih za koje budes dobio uputstvo; U toku intervencije ne koristiti USB memorijske uredjaje, dok to ne budem zatrazio; Ukoliko ne odgovorim u roku od 48h, osvezi temu novim post-om; Ukoliko se ne javis u roku od 5 dana, zatvoricemo slucaj. Za vise informacija o pravilima Ambulante MyCity foruma: LINK ------------------------------------------------------------------------------------- Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop: Bleeping Computer Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: deaktiviraj zaštitni softver (uputstvo); zatvori pokrenute programe; dvoklikom pokreni program ComboFix; u prozoru koji se otvori klikni "I Agree". U toku rada, ComboFix će:proveriti postoji li novija verzija programa: klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju: obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja: prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta); na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu: klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All; klikni desnim tasterom miša na obeleženi tekst i izaberi Copy; klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste. Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt); Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku. goran9888 (AMF Tim)

Profil

kravman89 Poslao: 16 Jul 2011 18:20 Idi na vrh
offline kravman89 Građanin Pridružio: 29 Sep 2010 Poruke: 138	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kada sam pokrenuo combo fix izasao mi je "blues screen of death"...u drugom slucaju je nesto on obrisao neke .exe aplikacije... evo loga pa sami vidite...samo da kazem da mi sada komp sljaka mnogo bolje...tj. brze! ComboFix 11-07-15.03 - Administrator 07/30/2011 9:14.1.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1461 [GMT -7:00] Running from: c:\documents and settings\Administrator\My Documents\Downloads\ComboFix.exe AV: ESET NOD32 Antivirus 3.0 Enabled/Outdated {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\Administrator\ctfmon.exe c:\program files\VVSN c:\program files\VVSN\vvsn.cfg c:\program files\VVSN\VVSN.exe c:\windows\jestertb.dll . . ((((((((((((((((((((((((( Files Created from 2011-06-28 to 2011-07-30 ))))))))))))))))))))))))))))))) . . 2011-07-30 12:08 . 2011-07-30 12:08 -------- d-----w- c:\program files\Windows Media Connect 2 2011-07-30 12:07 . 2011-07-30 12:07 -------- d-----w- c:\windows\system32\drivers\UMDF 2011-07-30 01:03 . 2011-07-30 01:03 -------- d-----w- c:\documents and settings\Administrator\Application Data\kikin 2011-07-30 01:03 . 2011-07-30 01:03 -------- d-----w- c:\program files\kikin 2011-07-27 02:16 . 2011-07-27 02:17 724169 ----a-w- c:\windows\RON 2010 ENGLISH DL Uninstaller.exe 2011-07-27 02:12 . 2011-07-27 17:34 -------- d-----w- c:\program files\Rulers Of Nations 2011-07-27 02:12 . 2011-07-27 02:12 -------- d-----w- c:\program files\Common Files\Thraex Software 2011-07-26 12:16 . 2011-07-26 12:16 -------- d-----w- c:\program files\Common Files\Java 2011-07-26 12:15 . 2011-05-04 11:52 476904 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll 2011-07-26 12:15 . 2011-05-04 11:52 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-07-26 01:20 . 2011-07-26 01:20 -------- d-----w- c:\documents and settings\Administrator\Application Data\TeamViewer 2011-07-26 01:20 . 2011-07-26 01:20 -------- d-----w- c:\program files\TeamViewer 2011-07-25 12:17 . 2011-07-30 16:03 -------- d-----w- c:\documents and settings\Administrator\Application Data\Mipony 2011-07-25 12:17 . 2011-07-25 12:17 -------- d-----w- c:\program files\MiPony 2011-07-25 11:57 . 2011-07-30 01:21 -------- d-----w- c:\program files\JDownloader 2011-07-09 12:09 . 2011-07-09 12:20 -------- d-----w- c:\documents and settings\Administrator\Application Data\BITS 2011-07-09 12:09 . 2011-07-09 12:09 -------- d-----w- c:\documents and settings\Administrator\Application Data\FlashGet 2011-07-09 12:08 . 2011-07-09 12:08 -------- d-----w- c:\program files\FlashGet Network 2011-07-09 11:49 . 2011-07-09 11:49 -------- d-----w- c:\documents and settings\All Users\Application Data\Electronic Arts 2011-07-09 11:40 . 2011-07-09 11:40 -------- d-----w- c:\documents and settings\Administrator\Application Data\NVIDIA 2011-07-09 11:40 . 2011-07-09 11:40 -------- d-sh--w- c:\documents and settings\All Users\Application Data\DSS 2011-07-09 11:35 . 2011-07-09 12:13 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2011-07-09 11:35 . 2011-07-09 12:13 138056 ----a-w- c:\documents and settings\Administrator\Application Data\PnkBstrK.sys 2011-07-09 11:34 . 2011-07-09 12:13 189248 ----a-w- c:\windows\system32\PnkBstrB.exe 2011-07-09 11:34 . 2011-07-09 11:34 75064 ----a-w- c:\windows\system32\PnkBstrA.exe 2011-07-09 11:34 . 2010-09-16 07:13 2601752 ----a-w- c:\windows\system32\pbsvc_moh.exe 2011-07-09 11:34 . 2011-07-30 12:07 -------- d-----w- c:\windows\system32\LogFiles 2011-07-09 11:26 . 2010-02-04 17:01 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll 2011-07-09 11:26 . 2010-02-04 17:01 528216 ----a-w- c:\windows\system32\XAudio2_6.dll 2011-07-09 11:26 . 2010-02-04 17:01 238936 ----a-w- c:\windows\system32\xactengine3_6.dll 2011-07-09 11:26 . 2010-02-04 17:01 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll 2011-07-08 22:49 . 2011-07-08 23:25 -------- d-----w- c:\documents and settings\Administrator\Application Data\DMCache 2011-07-08 22:14 . 2011-07-08 22:14 -------- d-----w- c:\program files\Lavalys 2011-07-08 22:10 . 2011-07-08 22:12 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Google 2011-07-07 09:16 . 2011-06-16 04:17 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll 2011-07-07 09:16 . 2011-06-16 04:17 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll 2011-07-07 09:16 . 2011-06-16 04:17 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll 2011-07-07 09:16 . 2011-06-16 04:17 719832 ----a-w- c:\program files\Mozilla Firefox\mozcpp19.dll 2011-07-07 09:16 . 2011-06-16 04:17 465880 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll 2011-07-07 09:16 . 2011-06-16 04:17 1850328 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll 2011-07-07 09:16 . 2011-06-16 04:17 16856 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe 2011-07-07 09:16 . 2011-06-16 04:17 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll 2011-07-07 09:16 . 2010-01-01 08:00 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll 2011-07-07 09:16 . 2010-01-01 08:00 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-06-02 14:02 . 2008-04-14 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys 2011-05-04 09:25 . 2010-06-01 16:02 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-05-02 15:31 . 2010-05-09 06:33 692736 ----a-w- c:\windows\system32\inetcomm.dll 2011-06-16 04:17 . 2011-07-07 09:16 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}] 2010-04-13 15:30 766640 ----a-w- c:\program files\kikin\ie_kikin.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080] "RTHDCPL"="RTHDCPL.EXE" [2010-06-09 19552872] "WinVNC"="c:\program files\TightVNC\WinVNC.exe" [2009-03-05 585728] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-01-08 111208] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-01-08 13880424] "nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2010-11-04 1753192] . c:\documents and settings\Administrator\Start Menu\Programs\Startup\ MagicDisc.lnk - c:\program files\MagicDisc\MagicDisc.exe [2010-7-22 576000] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ Wireless Configuration Utility HW.15.lnk - c:\program files\802.11 Wireless LAN\802.11g Wireless CardBus & PCI Adapter HW.15 V.1.00\WlanCU.exe [2005-9-11 622592] . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2010-09-21 18:37 932288 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-12-22 08:57 35760 -c--a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion] 2010-03-13 19:58 75048 ------w- c:\program files\CyberLink\Shared Files\brs.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] 2005-11-08 22:00 128920 ----a-w- c:\program files\DAEMON Tools\daemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2011-07-08 22:10 136176 ----atw- c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor] 2006-10-27 07:47 31016 -c--a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] 2007-12-14 02:10 1688872 ----a-w- c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2009-11-12 23:33 141600 ----a-w- c:\program files\iTunes\iTunesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kone] 2009-09-16 01:02 180224 ----a-w- c:\program files\ROCCAT\Kone Mouse\KoneHID.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] 2007-12-03 21:21 2213160 -c--a-w- c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2007-03-01 21:57 153136 -c--a-w- c:\program files\Common Files\Nero\Lib\NeroCheck.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD8LanguageShortcut] 2007-12-14 18:36 50472 ------w- c:\program files\CyberLink\PowerDVD8\Language\Language.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-11 06:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10] 2010-02-03 07:08 87336 ------w- c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2011-04-08 19:59 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2009-07-01 16:37 37888 ----a-w- c:\program files\Winamp\winampa.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Nero BackItUp Scheduler 3"=2 (0x2) "lanmanworkstation"=2 (0x2) "LanmanServer"=2 (0x2) "JavaQuickStarterService"=2 (0x2) "iPod Service"=3 (0x3) "Bonjour Service"=2 (0x2) "Apple Mobile Device"=2 (0x2) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\rserver30\\rserver3.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\TightVNC\\WinVNC.exe"= "c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"= "e:\\strongold2\\Stronghold2.exe"= "d:\\Counter Strike 1.6 v48\\hl.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"= "c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"= "c:\\Program Files\\FlashGet\\FlashGet.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 "5900:TCP"= 5900:TCP:androidvnc . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [5/12/2010 5:40 PM 721904] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2/20/2008 11:11 AM 35168] R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [10/9/2009 2:00 PM 46304] R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/07/22 09:10];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [3/13/2010 12:58 PM 87536] R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [10/7/2009 9:16 AM 472280] R2 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [10/9/2009 2:00 PM 1242504] R2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [7/25/2011 6:20 PM 2337144] R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [5/9/2010 12:05 AM 38656] R3 KoneFltr;ROCCAT Kone;c:\windows\system32\drivers\Kone.sys [1/24/2011 12:32 PM 13056] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [6/21/2010 4:33 PM 1691480] . Contents of the 'Scheduled Tasks' folder . 2011-07-25 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 19:34] . 2011-07-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1214440339-790525478-682003330-500Core.job - c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-07-08 22:10] . 2011-07-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1214440339-790525478-682003330-500UA.job - c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-07-08 22:10] . . ------- Supplementary Scan ------- . uStart Page = hxxp://start.jdownloader.com/ IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm IE: Download with Mipony - file://c:\program files\MiPony\Browser\IEContext.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: {{0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll TCP: DhcpNameServer = 109.122.98.116 109.122.98.117 TCP: Interfaces\{0573EEAA-C7BF-4501-BA11-8735B19D1A91}: NameServer = 109.122.98.116,109.122.98.117 FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\nsfnfqi8.default\ FF - prefs.js: browser.startup.homepage - hxxp://start.jdownloader.com/ . - - - - ORPHANS REMOVED - - - - . HKLM-Run-VVSN - c:\program files\VVSN\VVSN.exe MSConfigStartUp-egui - c:\program files\ESET\ESET Smart Security\egui.exe . . . ************************************************************************ . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2011-07-30 09:18 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************ . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}] "ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(948-) c:\windows\SYSTEM32\Wireless\WirelessGina.DLL . Completion time: 2011-07-30 09:18:56 ComboFix-quarantined-files.txt 2011-07-30 16:18 . Pre-Run: 6,596,857,856 bytes free Post-Run: 7,316,402,176 bytes free . - - End Of File - - 7213E40A20E710B999265434E525147E

Profil

1l padr1n0 Poslao: 16 Jul 2011 18:45 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Jos uvek nemoj da ubadas USB memorijske uredjaje; Koristis staru verziju Anti-Virusa - ili instaliraj novu verziju NOD-a (ukoliko imas licencu za isti; ili trial time varijantu jer AV nije besplatan; nikako nemoj koristiti krekovane security pakete), ili instaliraj jedan besplatan AV tipa Avast, Avira, AVG, Panda Cloud, MSE, itd ... Preuzmi program SystemLook sa ovog ili ovog linka na Desktop; Dvoklikom pokreni SystemLook; - U beli okvir prozora iskopirati sledeći tekst: `:file c:\documents and settings\administrator\ydwzro.exe` Klikni taster Look; Po završetku rada programa priloži uz poruku file SystemLook.txt koji će se nalaziti na Desktop-u korišćenjem opcije Prikači Fajl. Preuzmi instalaciju za program Malwarebytes Anti-Malware sa sledećeg linka: http://www.besttechie.net/tools/mbam-setup.exe Dvoklikom pokreni instalaciju - na samom kraju procesa, proveri da su obeležene opcije: Update Malwarebytes' Anti-Malware; Launch Malwarebytes Anti-Malware; a zatim klikni Finish. Nakon završenog ažuriranja program će se pokrenuti. Izaberi opciju Perform Quick Scan i klikni Scan. Po završetku procesa klikni OK, Show Results: u listi detektovanog malware-a, obeleži sve stavke i klikni Remove Selected. Po završetku procesa, logfile će se otvoriti u Notepad-u; iskopiraj ga u temu na forumu. Ukoliko program zatraži restart kako bi se završio proces čišćenja, obavezno ga dozvoliti. Napomena: ako dođe do restarta na kraju procesa čišćenja, logfile će biti dostupan na Logs kartici (obeleži ga i klikni Open). goran9888 (AMF Tim)

Profil

kravman89 Poslao: 16 Jul 2011 19:04 Idi na vrh
offline kravman89 Građanin Pridružio: 29 Sep 2010 Poruke: 138	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: mycity.rs/must-login.png a za ovaj malware, rekao je da nije pronasao nista.. evo log: Malwarebytes' Anti-Malware 1.51.1.1800 malwarebytes.org Database version: 7162 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 7/30/2011 10:02:54 AM mbam-log-2011-07-30 (10-02-54).txt Scan type: Quick scan Objects scanned: 148164 Time elapsed: 1 minute(s), 54 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)

Profil

1l padr1n0 Poslao: 16 Jul 2011 19:44 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	1Ovo se svidja korisniku: Springfield Registruj se da bi pohvalio/la poruku! - Preuzmi USBNoRisk na Desktop i pokreni ga duplim klikom na ikonicu programa. - Sacekaj koji sekund dok program izvrsi inicijalno skeniranje. - Ubacuj sve USB memorijske uredjaje redom u USB slot i svaki zadrzi u slotu po 10 sekundi. - Ukoliko imas vise uredjaja za proveru, onda na parcetu papira zapisi kojim redom su ubacivani jer ce nam kasnije trebati taj podatak - Kada zavrsis sa svim uredjajima, klikni desno dugme misa na sred prozora programa i odaberi opciju Save scrambled log. To ce automatski otvoriti log u Notepadu. Iskopiraj nam taj log iz Notepada na forum. Objasnjenje: U USB memorijske uredjaje spadaju svi oni uredjaji koji po prikljucivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uredjaji itd. goran9888 (AMF Tim)

Profil

kravman89 Poslao: 17 Jul 2011 20:27 Idi na vrh
offline kravman89 Građanin Pridružio: 29 Sep 2010 Poruke: 138	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 17 Jul 2011 20:00 Izvini Gorane, nisam bio kuci par dana, evo sad sam stigao sa puta. Za 5 minuta cu krenuti u proveru sa usb uredjajima. Jel se tu racuna i mis? znam da sam instalirao neke drajvere za njega (roccat kone)? Dopuna: 17 Jul 2011 20:24 USBNoRisk 2.7 (28 December 2010) by bobby Started at 7/31/2011 11:21:46 AM Searching for connected USB Mass storage... ---------------------------------------- ======================================== Searching for other storage... ---------------------------------------- E: {f704efef-5af5-11df-93a8-806d6172696f} D: {f704eff0-5af5-11df-93a8-806d6172696f} C: {f704eff2-5af5-11df-93a8-806d6172696f} ======================================== Scanning fixed storage... ---------------------------------------- No blocked files found on C: No autorun.inf files found on C: No mountpoint found for C: No mountpoint found for f704eff2-5af5-11df-93a8-806d6172696f No Desktop.ini files found on C: ---------------------------------------- No blocked files found on D: No autorun.inf files found on D: No mountpoint found for D: No mountpoint found for f704eff0-5af5-11df-93a8-806d6172696f No Desktop.ini files found on D: ---------------------------------------- No blocked files found on E: No autorun.inf files found on E: No mountpoint found for E: No mountpoint found for f704efef-5af5-11df-93a8-806d6172696f No Desktop.ini files found on E: ---------------------------------------- ======================================== Initial scan finished! ======================================== New device connected at 7/31/2011 11:22:58 AM Scanning for connected USB mass storage... ---------------------------------------- J: {952433f1-0379-11e0-b46b-001d6036435b} Added J: ======================================== Scanning USB mass storage for files... ---------------------------------------- No blocked files found on J: ---------------------------------------- No autorun.inf files found on J: ---------------------------------------- No Desktop.ini files found on J: ---------------------------------------- No mimics found on drive J: ---------------------------------------- No .lnk/.pif/.com/.scr files found on drive J: ======================================== ======================================== Removed J: ======================================== New device connected at 7/31/2011 11:24:00 AM Scanning for connected USB mass storage... ---------------------------------------- ======================================== New drive connected, but USBNoRisk can't find it ======================================== New device connected at 7/31/2011 11:24:28 AM Scanning for connected removable storage... ---------------------------------------- J: {5e75e872-8b34-11df-a4b2-001d6036435b} Added J: ======================================== Scanning removable storage for files... ---------------------------------------- No blocked files found on J: ---------------------------------------- No autorun.inf files found on J: No mountpoint found for 5e75e872-8b34-11df-a4b2-001d6036435b ---------------------------------------- No Desktop.ini files found on J: ---------------------------------------- No mimics found on drive J: ---------------------------------------- No .lnk/.pif/.com/.scr files found on drive J: ======================================== ======================================== Removed J: ======================================== Dopuna: 17 Jul 2011 20:27 Ako mozes samo da mi objasnis kako da pokrenem radmin server,zato sto imam neki osecaj da ga ovaj nod blokira. Nabavio sam nov nod32 eset 5, i poukljucivao sam sve moguce zastite..e sad verovatno treba da dodam izuzetak i tako to, ali nesto nece... Nikada ranije nisam imao problem sa radminom jer koristim licenciranu verziju. A mnogo mi znaci. Hvala.

Profil

1l padr1n0 Poslao: 17 Jul 2011 22:03 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	1Ovo se svidja korisniku: ThePhilosopher Registruj se da bi pohvalio/la poruku! Tvoj racunar je cist sto se malware-a tice. Potrebno je deinstalirati ComboFix: klikni start (ili ), a zatim RUN. Na Visti koristiti Start Search polje ukoliko Run nije dostupan. U liniju za unos teksta ukucaj (iskopiraj) sledeće: ComboFix /Uninstall Primeti da postoji razmak između "ComboFix" i "/Uninstall". a zatim klikni OK (ili pritisni Enter). Sačekaj da se proces deinstalacije završi. Preuzmi TFC (Temp File Cleaner) i sacuvaj ga na Desktop. Dvoklikom pokreni program i klikni na dugme Start da bi dozvolio programu da otpocne skeniranje. Kada program zavrsi skeniranje,mozda ce zatraziti da restartujes racunar. Dozvoli mu. Napomena: Kada zavrsis sa ciscenjem temp fajlova,program mozes obrisati ili ga sacuvati za kasniju upotrebu. --------------------------------------------------------- - Koristis Adobe Reader 9.3 koji je stara a ujedno i kriticna verzija ovog PDF citaca zbog propusta u sigurnosti. Svakako ti predlazem da instaliras najnoviju verziju (Reader X(10.1.0)) ili predjes na alternativu tipa Foxit Reader, Nitro PDF Reader, itd ...; - Poseti temu "Testirajte da li vam je pretrazivac ranjiv", procitaj i isprati link koji stoji u njoj. Bilo koji dodatak da je obelezen za nadogradnju, bilo bi pozeljno nadograditi ga na najnoviju verziju. Link do teme je: http://www.mycity.rs/Web-browseri/Testirajte-da-li.....anjiv.html - Preporucujem da za zastitu USB memorijskih uredjaja koristis MCShield. Nema nikakve veze sa AntiVirus-om tj. nece ometati njegov rad a pokazao se kao jedan od najboljih vida zastite od malware-a koji se prenosi putem USB mem. uredjaja. Skines, instaliras, ubodes USB mem. uredjaj, izvrsi se skeniranje nakon cega dobijes obavestenje da je uredjaj cist (ukoliko je stvarno tako); ili dobijes log u kome vidis informacije o malware-u koji je nadjen i obrisan. Home Page MCShield-a: http://amf.mycity.rs/programs/mc/mcshield/ Vise o MCShield-u mozes saznati u ovoj temi: http://www.mycity.rs/Antispyware-programi/MCShield.html - Sto se tice problema sa Radmin-om, otvori temu u odgovarajucem potforumu i iznesi svoj problem pa cemo pokusati da resimo. Ovde, u Ambulanti, resavamo samo probleme sa malware-om.

Profil

kravman89 Poslao: 17 Jul 2011 22:39 Idi na vrh
offline kravman89 Građanin Pridružio: 29 Sep 2010 Poruke: 138	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala puno na pomoci. Potrudicu se da odrzavam cist Win.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Nesto mi jede memoriju na sistemskom drajvu

Ko je trenutno na forumu

Ukupno su 854 korisnika na forumu :: 7 registrovanih, 1 sakriven i 846 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., ALBION101, Boris90, gorantrojka, Marko Marković, Maschinekalibar, suton

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by