Padanje IE i FF

Padanje IE i FF

offline
  • goust  Male
  • Elitni građanin
  • Pridružio: 09 Apr 2005
  • Poruke: 1793

Sta god da pokusam da podignem na net (npr sliku na MC) ladno mi se iskljuci i IE I FF u trenutku kada lociram fajl za upload pritiskom na "Open"

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:16:58, on 8/28/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\msnlogs.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WZCBDL Service\WZCBDLS.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\Sasa\Desktop\TR3.exe\TR3.exe..exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60337
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60337
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENWW/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnlogm.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Open using &Advanced JPEG Compressor - C:\Program Files\Advanced JPEG Compressor\ajcieex.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{452B4B9D-8E42-4A95-A1E3-ED449F0CE1ED}: NameServer = 212.200.34.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{709CB5D1-1D55-4427-8B76-774C76E980BA}: NameServer = 212.200.34.4
O20 - AppInit_DLLs: interceptor.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (avp) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: WZCBDL Service (WZCBDLService) - D-Link - C:\Program Files\WZCBDL Service\WZCBDLS.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Sasa/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg

--
End of file - 6164 bytes

Dopuna: 28 Avg 2008 19:33

Uf nisam bio iskljucio FF. Evo novog loga


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:28:14, on 8/28/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\msnlogm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\msnlogs.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WZCBDL Service\WZCBDLS.exe
C:\Documents and Settings\Sasa\Desktop\TR3.exe\TR3.exe..exe
C:\WINDOWS\system32\WgaTray.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60337
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60337
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60337
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENWW/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnlogm.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Open using &Advanced JPEG Compressor - C:\Program Files\Advanced JPEG Compressor\ajcieex.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{709CB5D1-1D55-4427-8B76-774C76E980BA}: NameServer = 212.200.34.4
O20 - AppInit_DLLs: interceptor.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (avp) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: WZCBDL Service (WZCBDLService) - D-Link - C:\Program Files\WZCBDL Service\WZCBDLS.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Sasa/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg

--
End of file - 6035 bytes

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Poz...


Ništa problematično nema u logu (sem tog dodatka za MSN Messenger koji bi mogao praviti probleme pri deinstalaciji, a uz to je i veoma diskutabilne legitimnosti).



Preuzmi gmer.zip sa ovog linka i sačuvaj na Desktopu.
Raspakuj ga u neki folder.

Dupli klik na gmer.exe za početak: Izaberi Rootkit/Malware Tab na vrhu.
Klikni na Scan.
Kada je skeniranje završeno, klik na Copy dugme ispod - ovo će sačuvati rezultate skeniranja u Clipboard.
Iskoristi opciju Paste u Notepad-u da bi to prebacio u tekst. Snimi taj tekst iz Notepada kao file1.txt.
Ponovi ovo isto sa Autostart Tab-om. Snimi taj tekst iz Notepada kao file2.txt.


Iskoristi opciju Prikači fajl ispod polja za pisanje poruke na forumu, i prikači nam ovde ta dva fajla koja smo malopre snimili.

offline
  • goust  Male
  • Elitni građanin
  • Pridružio: 09 Apr 2005
  • Poruke: 1793

Nema sanse da to uradim. Po pokretanj gmer-a onako kako si mi rekao, neko vreme skenira Rootkit/Malware i onda jednostavno restartuje kompjuter. U medjuvremenu odradio sam online bitdefender scan, a rezultat je porazavajuci:


Scanned File


Status

C:\Program Files\Winamp\Plugins\dfx.audio.enhancer.v8.x.all-patch.exe


Infected with: Virtool.12100

C:\Program Files\Winamp\Plugins\dfx.audio.enhancer.v8.x.all-patch.exe


Disinfection failed

C:\Program Files\Winamp\Plugins\dfx.audio.enhancer.v8.x.all-patch.exe


Delete failed

C:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP200\A0058935.exe


Infected with: Trojan.Generic.495959

C:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP200\A0058935.exe


Deleted

C:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061616.exe


Infected with: Virtool.12100

C:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061616.exe


Disinfection failed

C:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061616.exe


Delete failed

D:\Sortirani softveri\Alati za slike i graficki softveri\MyFantasyMaker.5.0\MyFantasyMaker.exe


Infected with: Packer.PESpin.A

D:\Sortirani softveri\Alati za slike i graficki softveri\MyFantasyMaker.5.0\MyFantasyMaker.exe


Disinfection failed

D:\Sortirani softveri\Alati za slike i graficki softveri\MyFantasyMaker.5.0\MyFantasyMaker.exe


Deleted

D:\Sortirani softveri\Alati za slike i graficki softveri\PhotoCleanerPro\photo.cleaner.3.4.0.build.0391-patch.exe


Infected with: Virtool.9022

D:\Sortirani softveri\Alati za slike i graficki softveri\PhotoCleanerPro\photo.cleaner.3.4.0.build.0391-patch.exe


Deleted

D:\Sortirani softveri\Anti Malware\AntiTrojan\Trojan.Remover.v6.4.4-RES-Incl + patch\Patch.exe


Infected with: Trojan.Generic.256219

D:\Sortirani softveri\Anti Malware\AntiTrojan\Trojan.Remover.v6.4.4-RES-Incl + patch\Patch.exe


Deleted

D:\Sortirani softveri\Fontovi i alati za fontove\FontExpertSetup_vincente\(zabranjeno)ed EXE\snd.nfo.viewer.exe


Infected with: Trojan.Zlob.4302

D:\Sortirani softveri\Fontovi i alati za fontove\FontExpertSetup_vincente\(zabranjeno)ed EXE\snd.nfo.viewer.exe


Deleted

D:\Sortirani softveri\Internet softveri\GEPro\p.a.tch.exe


Infected with: Trojan.Generic.495959

D:\Sortirani softveri\Internet softveri\GEPro\p.a.tch.exe


Deleted

D:\Sortirani softveri\Internet softveri\msn recoredr\tiny.nfo.viewer.exe


Infected with: Trojan.Generic.242089

D:\Sortirani softveri\Internet softveri\msn recoredr\tiny.nfo.viewer.exe


Deleted

D:\Sortirani softveri\Muzicki alati i plejeri\BlazeVideo_HDTV_Player_2.5\blazevideo.hdtv.player.2.5-ismail.exe


Infected with: Trojan.Generic.271119

D:\Sortirani softveri\Muzicki alati i plejeri\BlazeVideo_HDTV_Player_2.5\blazevideo.hdtv.player.2.5-ismail.exe


Deleted

D:\Sortirani softveri\Muzicki alati i plejeri\mp3producer\keygen.exe


Infected with: Trojan.Packed.19285

D:\Sortirani softveri\Muzicki alati i plejeri\mp3producer\keygen.exe


Deleted

D:\Sortirani softveri\Operativni softveri\Alcohol_120_v1.9.5.3105_Retail.zip\patch_3105.exe


Infected with: Trojan.Packed.19884

D:\Sortirani softveri\Operativni softveri\Alcohol_120_v1.9.5.3105_Retail.zip\patch_3105.exe


Disinfection failed

D:\Sortirani softveri\Operativni softveri\Alcohol_120_v1.9.5.3105_Retail.zip\patch_3105.exe


Delete failed

D:\Sortirani softveri\Operativni softveri\hard disc sentinel_pro_setup\FWK-Patch.exe


Infected with: Backdoor.Generic.77798

D:\Sortirani softveri\Operativni softveri\hard disc sentinel_pro_setup\FWK-Patch.exe


Deleted

D:\Sortirani softveri\Optimizeri\PerfectDisk 7.0\RaxcoPerfectDisk7-Keygen.exe


Detected with: Dialer.Generic.18172

D:\Sortirani softveri\Optimizeri\PerfectDisk 7.0\RaxcoPerfectDisk7-Keygen.exe


Disinfection failed

D:\Sortirani softveri\Optimizeri\PerfectDisk 7.0\RaxcoPerfectDisk7-Keygen.exe


Deleted

D:\Sortirani softveri\Ostali nesortirani programi\Atomic_Alarm_Clock_v4.35\atomic.alarm.clock.4.35-patch.exe


Infected with: Trojan.Generic.296106

D:\Sortirani softveri\Ostali nesortirani programi\Atomic_Alarm_Clock_v4.35\atomic.alarm.clock.4.35-patch.exe


Deleted

D:\Sortirani softveri\Ostali nesortirani programi\TypingMaster\typing.master.pro.v7.0.0.744-ismail.exe


Infected with: Trojan.Generic.299978

D:\Sortirani softveri\Ostali nesortirani programi\TypingMaster\typing.master.pro.v7.0.0.744-ismail.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061618.exe


Infected with: Packer.PESpin.A

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061618.exe


Disinfection failed

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061618.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061619.exe


Infected with: Virtool.9022

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061619.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061621.exe


Infected with: Trojan.Generic.256219

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061621.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061622.exe


Infected with: Trojan.Zlob.4302

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061622.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061623.exe


Infected with: Trojan.Generic.495959

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061623.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061624.exe


Infected with: Trojan.Generic.242089

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061624.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061626.exe


Infected with: Trojan.Generic.271119

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061626.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061627.exe


Infected with: Trojan.Packed.19285

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061627.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061628.exe


Infected with: Trojan.Packed.19884

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061628.exe


Disinfection failed

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061628.exe


Delete failed

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061629.exe


Infected with: Backdoor.Generic.77798

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061629.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061631.exe


Detected with: Dialer.Generic.18172

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061631.exe


Disinfection failed

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061631.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061632.exe


Infected with: Trojan.Generic.296106

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061632.exe


Deleted

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061633.exe


Infected with: Trojan.Generic.299978

D:\System Volume Information\_restore{07AF86DD-E40B-451C-B2EB-71714E17683D}\RP202\A0061633.exe


Deleted

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Imaš zanimljivu kolekciju cr*ck-ova...




Preuzmi Dr.Web CureIt (~10 MB).
Restartuj kompjuter u Safe Mode (uputstvo za Safe Mode)

Dvoklikom pokreni cureit.exe, nakon čega će se pojaviti uvodni prozor - klikni Start

Pojaviće se obaveštenje o započinjanju uvodnog skeniranja - klikni OK

Sačekaj nekoliko minuta da Dr.Web CureIt izvrši Express Scan; ukoliko malware bude pronađen, klikom na taster Yes to All u prozoru koji se pojavi dozvoli programu da izvrši dezinfekciju

Klikni Options > Change settings F9; u prozoru koji će se otvoriti, dečekiraj opciju Heuristic Analysis a zatim klikni OK

U glavnom prozoru obeleži opciju Complete scan a zatim klikni i Dr.Web CureIt će započeti skeniranje

Ukoliko malware bude pronađen, klikom na taster Yes to All u prozoru koji se pojavi dozvoli programu da izvrši dezinfekciju

Kada skeniranje bude završeno, klikni Select all taster (ukoliko je dostupan), a zatim klikni Cure i,
u meniju koji se otvori, klikni Move incurable:


Po završetku procesa, klikni File > Save report list i sačuvaj log na Desktopu


Iskopiraj sadržaj Dr.Web CureIt loga u temu na forumu.

Ko je trenutno na forumu
 

Ukupno su 796 korisnika na forumu :: 43 registrovanih, 9 sakrivenih i 744 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Sale, A.R.Chafee.Jr., Bloody, caesar, comi991, djboj, dozorni, Dragan1998, dragoljub11987, dragon986, dukikan, flash12, FOX, Georgius, goxin, hyla, ivicasimo, Jovan Nenad, laki_bb, lelemud, MB120mm, mercedesamg, Mercury, Mixelotti, mnn2, Oluj2.1, RiV, rovac, royst33, sakota79, samsung, shone34, Sirius, slonic_tonic, suton, Tenk, Toni, Tragač, vlvl, vsn111, willie, zamtours, zixo