MyCity » Ambulanta -> Arhiva Ambulante » Problem sa virusima...

Problem sa virusima...

Napisano na dan: 12.3.2010

Problem sa virusima...
Sledeća strana Pagination

Idi na vrh

Poslao: 12 Mar 2010 12:23
Idi na vrh
offline
  • Palve 
  • Novi MyCity građanin
  • Pridružio: 23 Jan 2009
  • Poruke: 17

U racunar sam ubacila zarazeni fles.Ukratko opis virusa je da sve foldere prevtvara u exe ( ovaj virus sam pokupila sa skoliskih racunara ).Na flesu su svi folderi bili dupilirani,oni iz kojih mogu da citam su bili pod znakom uzvika a drugi su bili sa ekstenzijom exe.Avira mi ih je sve prijavila,ali posto su mi trebali podaci ja ih nisam obrisala nego prenela u karantin,pa te foldere sa ! prebacila na komp,formatirala fles pa samo podatke iz tih foldera ponovo prebacila i na kraju ih izbrisala sa kompa.Da li postoji mogucnost da su virusi ostali na racunaru i kako da ih se resim a da ne obrisem podatke(to mi je jako vazno!). Hvala!

Poslao: 12 Mar 2010 12:33
Idi na vrh
offline
  • Pridružio: 04 Jan 2009
  • Poruke: 2168

Pozdrav.


Za početak isprati uputstvo... Arrow http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Poslao: 12 Mar 2010 14:24
Idi na vrh
offline
  • Palve 
  • Novi MyCity građanin
  • Pridružio: 23 Jan 2009
  • Poruke: 17

Ja se izvinjavam..previdela sam...



DDS (Ver_09-12-01.01) - NTFSx86
Run by Vasiljevic at 14:13:40.84 on Fri 03/12/2010
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_05
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.255.135 [GMT 1:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6}
FW: Avira Firewall *enabled* {11638345-E4FC-4BEE-BB73-EC754659C5F6}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Vasiljevic\Desktop\dds.scr

============== Pseudo HJT Report ===============

uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [Advanced SystemCare 3] "c:\program files\iobit\advanced systemcare 3\AWC.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_05\bin\jusched.exe"
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
LSP: c:\program files\avira\antivir desktop\avsda.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\vasilj~1\applic~1\mozilla\firefox\profiles\6c10v06z.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.rs
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

============= SERVICES / DRIVERS ===============

R1 avfwot;avfwot;c:\windows\system32\drivers\avfwot.sys [2010-2-25 97608]
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2010-2-25 11608]
R2 AntiVirFirewallService;Avira Firewall;c:\program files\avira\antivir desktop\avfwsvc.exe [2010-2-25 388865]
R2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\avira\antivir desktop\avmailc.exe [2010-2-25 194817]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2010-2-25 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-2-25 185089]
R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\avira\antivir desktop\avwebgrd.exe [2010-2-25 434945]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2010-2-25 56816]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-2-28 54752]
R3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\drivers\avfwim.sys [2010-2-25 69632]
R3 DstAud;DstAud;c:\windows\system32\drivers\DstAud.sys [2010-2-25 8901]
R3 DstVid;DstVid;c:\windows\system32\drivers\DstVid.sys [2010-2-25 11237]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\f:\ntglm7x.sys --> f:\NTGLM7X.sys [?]

=============== Created Last 30 ================

2010-03-11 11:52:38 0 d-----w- c:\docume~1\vasilj~1\applic~1\Crystal Player
2010-03-11 11:52:32 0 d-----w- c:\program files\Crystal Player
2010-03-11 11:33:34 0 d-----w- c:\program files\GNU
2010-03-09 09:54:37 0 d-s---w- c:\documents and settings\vasiljevic\UserData
2010-03-07 17:12:15 0 d-----w- c:\docume~1\vasilj~1\applic~1\Canneverbe_Limited
2010-03-04 16:28:43 3246 ----a-w- c:\windows\system32\wbem\Outlook_01cabbb7c15e9ff6.mof
2010-03-03 16:31:19 0 d-----w- c:\documents and settings\vasiljevic\dwhelper
2010-03-02 21:49:20 0 d-----w- C:\FPC
2010-02-28 21:05:44 54752 ----a-w- c:\windows\system32\drivers\fssfltr_tdi.sys
2010-02-28 20:48:42 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2010-02-28 20:48:14 0 d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-02-28 20:45:43 69632 ----a-w- c:\windows\system32\javacpl.cpl
2010-02-28 12:00:33 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-02-28 12:00:30 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-02-28 12:00:28 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-02-28 12:00:28 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-02-28 02:00:58 1374 ----a-w- c:\windows\imsins.BAK
2010-02-27 18:40:06 116 ----a-w- c:\windows\NeroDigital.ini
2010-02-27 13:30:43 0 d-----w- c:\program files\common files\Vbox
2010-02-27 13:30:34 16384 ----a-w- c:\windows\system32\FileOps.exe
2010-02-27 13:30:34 0 d-----w- c:\windows\system32\Adobe
2010-02-27 02:20:18 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-02-27 02:20:18 272128 ------w- c:\windows\system32\drivers\bthport.sys
2010-02-27 02:18:27 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-02-27 02:16:06 2145280 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-02-27 02:16:03 2023936 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-02-27 02:16:02 2066048 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2010-02-27 02:07:47 2560 ------w- c:\windows\system32\xpsp4res.dll
2010-02-27 02:00:34 0 d-----w- c:\windows\system32\PreInstall
2010-02-27 02:00:32 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-02-27 02:00:30 0 d--h--w- c:\windows\$hf_mig$
2010-02-26 06:47:00 0 d-sh--w- c:\documents and settings\all users\DRM
2010-02-26 06:46:34 0 d--h--w- c:\program files\WindowsUpdate
2010-02-26 06:45:51 0 d-----w- c:\program files\common files\MSSoap
2010-02-26 06:43:57 0 d-----w- c:\program files\Online Services
2010-02-26 06:43:47 0 d-----w- c:\program files\Messenger
2010-02-26 06:43:44 0 d-----w- c:\program files\MSN Gaming Zone
2010-02-26 06:43:11 0 d-----w- c:\program files\Windows NT
2010-02-25 22:43:56 0 d-----w- c:\program files\Avira
2010-02-25 22:43:56 0 d-----w- c:\docume~1\alluse~1\applic~1\Avira
2010-02-25 22:40:23 0 d-----w- c:\program files\Microsoft ActiveSync
2010-02-25 22:36:41 0 d-----w- c:\program files\common files\ODBC
2010-02-25 22:36:37 0 d-----w- c:\program files\common files\SpeechEngines
2010-02-25 22:36:08 0 d-----r- c:\documents and settings\all users\Documents
2010-02-25 22:26:20 0 d-----w- c:\program files\IObit
2010-02-25 22:26:20 0 d-----w- c:\docume~1\vasilj~1\applic~1\IObit
2010-02-25 22:24:06 0 d-----w- c:\program files\Microsoft
2010-02-25 22:23:48 0 d-----w- c:\program files\Windows Live SkyDrive
2010-02-25 22:16:04 0 d-----r- c:\program files\Skype
2010-02-25 22:13:57 0 d-----w- c:\program files\common files\Windows Live
2010-02-25 22:10:01 0 d-----w- c:\program files\Tech-7
2010-02-25 22:07:12 0 d-----w- c:\program files\GRETECH
2010-02-25 21:59:16 0 d-----w- c:\program files\Realtek Sound Manager
2010-02-25 21:59:14 0 d-----w- c:\program files\AvRack
2010-02-25 21:58:09 0 d-----w- c:\program files\Gigabyte

==================== Find3M ====================

2010-02-26 07:17:38 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-02-26 06:44:31 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2009-12-22 05:21:05 667136 ----a-w- c:\windows\system32\wininet.dll
2009-12-22 05:20:58 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-12-16 18:43:27 343040 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:08:23 33280 ----a-w- c:\windows\system32\csrsrv.dll

============= FINISH: 14:14:42.79 ===============




mycity.rs/must-login.png

mycity.rs/must-login.png

Poslao: 12 Mar 2010 16:25
Idi na vrh
offline
  • Pridružio: 04 Jan 2009
  • Poruke: 2168

Logovi deluju čisto...AV je uklonio malware.


Ako često prenosiš podatke sa raznih računara, trebalo bi da razmisliš o korišćenju nekih zaštita za USB uređaje, a o tome se možeš raspitati u delu foruma Zaštita od virusa.

http://www.mycity.rs/Zastita/

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa virusima...

Ko je trenutno na forumu
 

Ukupno su 1198 korisnika na forumu :: 50 registrovanih, 6 sakrivenih i 1142 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Boris90, cenejac111, cifra, DPera, draganca, DragoslavS, Duh sa sekirom, dushan, Džordžino, esx66, janbo, Još malo pa deda, Kibice, kolle.the.kid, Kubovac, laganini123, laki_bb, laurusri, Litostroton, maiden6657, marsovac 2, mercedesamg, Mercury, Mi lao shu, milanovic, Millennium, Milometer, Milos ZA, Miloš Popadić, Misirac, mrav pesadinac, mrvica78, nikoladim, operniki, proka89, Romibrat, royst33, stegonosa, Sumadija34, Tas011, Tragač, VJ, Vlad000, Vlada1389, Vladko, voja64, vukovi, x9, šumar bk2