Možda tražite i:
virus,virusi ili....
Nepobedivi virus VIRUT W32.CF
mbam i sas nasli viruse dali su to stvarno virusi?

MyCity » Ambulanta -> Arhiva Ambulante » Virus!

Virus!

Napisano na dan: 27.5.2009

Virus!

Sledeća strana

Pagination

Odgovori

jeja.dr Poslao: 27 Maj 2009 20:30 Idi na vrh
offline jeja.dr Novi MyCity građanin Pridružio: 27 Maj 2009 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:19:07, on 27.5.2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\RTHDCPL.EXE C:\PROGRA~1\LAUNCH~1\LManager.exe C:\Acer\Empowering Technology\ePower\ePower_DMC.exe C:\Acer\Empowering Technology\ePresentation\ePresentation.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Conexant\Adsl\dslstat.exe C:\Program Files\Conexant\Adsl\dslagent.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\igfxext.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\DOCUME~1\ACER\LOCALS~1\Temp\RtkBtMnt.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\ACER\Desktop\jelka\jeja.exe R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe O4 - HKLM\..\Run: [eLockMonitor] C:\Acer\Empowering Technology\eLock\Monitor\LaunchMonitor.exe O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [DSLSTATEXE] C:\Program Files\Conexant\Adsl\dslstat.exe icon O4 - HKLM\..\Run: [DSLAGENTEXE] C:\Program Files\Conexant\Adsl\dslagent.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [cdoosoft] C:\WINDOWS\system32\olhrwef.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Acer Empowering Technology.lnk = ? O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - [Link mogu videti samo ulogovani korisnici]\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [Link mogu videti samo ulogovani korisnici] O17 - HKLM\System\CCS\Services\Tcpip\..\{B3DC2A32-8FB5-489F-B0FC-8BECF5AC4BF4}: NameServer = 77.105.0.19 77.105.0.18 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: eLock Service (eLockService) - - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe -- End of file - 7002 b Jutros je kompijuter prijavio virus Win32:Rootkit-gen[Rtk] koji nisam mogla da obrisem i od tada ne mogu da otvorim disk C i D dvoklikom (ne prepoznaje program kojim treba da otvori), a kompijuter usporeno radi. Molim za pomoc Unapred hvala!

Profil

argus Poslao: 27 Maj 2009 21:40 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav. Preuzmi sUBs-ov ComboFix sa jedne od sledećih adresa na Desktop: Bleeping Computer . . . . . Geeks to Go! Klikni desnim tasterom na neki od linkova i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: zatvori pokrenute programe; deaktiviraj zaštitni softver (uputstvo); dvoklikom pokreni program ComboFix. U toku rada, ComboFix će:proveriti postoji li novija verzija programa: klikni Yes ako bude ponuđeno preuzimanje iste. prikazati DISCLAIMER OF WARRANTY ON SOFTWARE: klikni Yes kako bi proces bio nastavljen.ako Recovery Console nije instalirana, ponuditi instalaciju: prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja: prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta); na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu: klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All; klikni desnim tasterom miša na obeleženi tekst i izaberi Copy; klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste. Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt); Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Profil

jeja.dr Poslao: 27 Maj 2009 22:03 Idi na vrh
offline jeja.dr Novi MyCity građanin Pridružio: 27 Maj 2009 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 09-05-26.05 - ACER 27.05.2009 21:51.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.381.1033.18.1014.601 [GMT 2:00] Running from: c:\documents and settings\ACER\Desktop\ComboFix.exe AV: avast! antivirus 4.8.1335 [VPS 090526-0] On-access scanning disabled (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\autorun.inf c:\windows\system32\msconfig.exe D:\Autorun.inf . ((((((((((((((((((((((((( Files Created from 2009-04-27 to 2009-05-27 ))))))))))))))))))))))))))))))) . 2009-05-24 13:17 . 2009-05-24 13:20 -------- d-----w c:\program files\The KMPlayer 2009-05-24 11:56 . 2009-02-05 20:06 23152 ----a-w c:\windows\system32\drivers\aswRdr.sys 2009-05-24 11:56 . 2009-02-05 20:06 51376 ----a-w c:\windows\system32\drivers\aswTdi.sys 2009-05-24 11:56 . 2009-02-05 20:05 26944 ----a-w c:\windows\system32\drivers\aavmker4.sys 2009-05-24 11:56 . 2009-02-05 20:04 97480 ----a-w c:\windows\system32\AvastSS.scr 2009-05-24 11:56 . 2009-02-05 20:08 93296 ----a-w c:\windows\system32\drivers\aswmon.sys 2009-05-24 11:56 . 2009-02-05 20:08 94032 ----a-w c:\windows\system32\drivers\aswmon2.sys 2009-05-24 11:56 . 2009-02-05 20:07 114768 ----a-w c:\windows\system32\drivers\aswSP.sys 2009-05-24 11:56 . 2009-02-05 20:07 20560 ----a-w c:\windows\system32\drivers\aswFsBlk.sys 2009-05-24 11:56 . 2009-02-05 20:11 1256296 ----a-w c:\windows\system32\aswBoot.exe 2009-05-24 11:56 . 2003-03-18 19:20 1060864 ----a-w c:\windows\system32\MFC71.dll 2009-05-24 11:56 . 2009-05-24 11:56 -------- d-----w c:\program files\Alwil Software . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-05-24 13:35 . 2008-12-28 15:34 -------- d-----w c:\program files\JDownloader 2009-05-24 13:04 . 2008-10-31 15:27 -------- d-----w c:\program files\Mv2Player 2009-05-24 12:40 . 2008-10-13 09:13 -------- d-----w c:\program files\Launch Manager 2009-05-24 11:48 . 2008-10-31 15:29 -------- d-----w c:\program files\Yahoo! 2009-05-23 17:00 . 2008-11-25 18:16 -------- d-----w c:\documents and settings\ACER\Application Data\Skype 2009-05-22 22:06 . 2008-11-25 18:20 -------- d-----w c:\documents and settings\ACER\Application Data\skypePM 2009-03-27 15:02 . 2009-03-27 15:02 57344 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\50\5b902232-3c03e441-n\Decora-SSE.dll 2009-03-27 15:02 . 2009-03-27 15:02 24064 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\15\4e09eacf-5e9eb24c-n\Decora-D3D.dll 2009-03-27 15:02 . 2009-03-27 15:02 499712 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-37c59292-n\msvcp71.dll 2009-03-27 15:02 . 2009-03-27 15:02 499712 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-37c59292-n\jmc.dll 2009-03-27 15:02 . 2009-03-27 15:02 348160 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-37c59292-n\msvcr71.dll 2009-03-27 15:01 . 2009-03-27 15:01 57344 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\37\3976f065-64ea4c81-n\Decora-SSE.dll 2009-03-27 15:01 . 2009-03-27 15:01 24064 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\37\2c4a0065-4056767f-n\Decora-D3D.dll 2009-03-27 15:01 . 2009-03-27 15:01 315392 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-6ae05d7c-n\jogl.dll 2009-03-27 15:01 . 2009-03-27 15:01 20480 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-6ae05d7c-n\jogl_awt.dll 2009-03-27 15:01 . 2009-03-27 15:01 114688 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-6ae05d7c-n\jogl_cg.dll 2009-03-27 15:01 . 2009-03-27 15:01 20480 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\45\4f710eed-229a8c64-n\gluegen-rt.dll 2009-03-27 15:01 . 2009-03-27 15:01 503808 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\38\39ba6e6-399818f9-n\msvcp71.dll 2009-03-27 15:01 . 2009-03-27 15:01 499712 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\38\39ba6e6-399818f9-n\jmc.dll 2009-03-27 15:01 . 2009-03-27 15:01 348160 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\Deployment\cache\6.0\38\39ba6e6-399818f9-n\msvcr71.dll 2009-03-27 14:59 . 2009-03-27 14:59 152576 ----a-w c:\documents and settings\ACER\Application Data\Sun\Java\jre1.6.0_13\lzma.dll 2009-03-09 04:19 . 2008-11-18 11:46 410984 ----a-w c:\windows\system32\deploytk.dll 2009-03-06 14:44 . 2004-08-03 21:56 283648 ----a-w c:\windows\system32\pdh.dll . ------- Sigcheck ------- [-] 2004-11-28 13:36 8704 AB3D62010AF342203FFA60C2D94DBC68 c:\windows\system32\sfcfiles.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AzMixerSel"="c:\program files\Realtek\InstallShield\AzMixerSel.exe" [2005-06-11 53248] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-06-13 142104] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-06-13 162584] "Persistence"="c:\windows\system32\igfxpers.exe" [2007-06-13 138008] "LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-06-02 858632] "ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 475136] "Boot"="c:\acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 579584] "Acer ePresentation HPD"="c:\acer\Empowering Technology\ePresentation\ePresentation.exe" [2007-03-02 208896] "RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768] "DSLSTATEXE"="c:\program files\Conexant\Adsl\dslstat.exe" [2006-12-17 376832] "DSLAGENTEXE"="c:\program files\Conexant\Adsl\dslagent.exe" [2006-12-17 90112] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2007-05-28 16132608] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360] c:\documents and settings\ACER\Start Menu\Programs\Startup\ Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664] c:\documents and settings\All Users\Start Menu\Programs\Startup\ Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2008-10-13 45056] Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-4-1 568176] [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\K-Lite Codec Pack\\Media Player Classic\\mplayerc.exe"= "c:\\Program Files\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"= "c:\\WINDOWS\\system32\\java.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [24.5.2009 13:56 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [24.5.2009 13:56 20560] S3 AVPsys;AVPsys;\??\c:\windows\system32\drivers\cdaudio.sys --> c:\windows\system32\drivers\cdaudio.sys [?] . - - - - ORPHANS REMOVED - - - - HKLM-Run-eLockMonitor - c:\acer\Empowering Technology\eLock\Monitor\LaunchMonitor.exe SafeBoot-procexp90.Sys . ------- Supplementary Scan ------- . IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm FF - ProfilePath - c:\documents and settings\ACER\Application Data\Mozilla\Firefox\Profiles\fi7vrnvy.default\ FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici] FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll . ************************************************************************ catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [Link mogu videti samo ulogovani korisnici] Rootkit scan 2009-05-27 21:53 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2009-05-27 21:54 ComboFix-quarantined-files.txt 2009-05-27 19:54 Pre-Run: 34.993.311.744 bytes free Post-Run: 35.691.421.696 bytes free 134 --- E O F --- 2009-05-13 16:28

Profil

argus Poslao: 27 Maj 2009 23:16 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je stanje sada ? Ako imas usb stick kazi da i njega proverimo.

Profil

jeja.dr Poslao: 27 Maj 2009 23:26 Idi na vrh
offline jeja.dr Novi MyCity građanin Pridružio: 27 Maj 2009 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nema više problema, sada mogu da otvorim sve diskove koje nisam mogla i mnoooogo hvala Imam usb-ove i čekam dalje uputstvo...

Profil

argus Poslao: 27 Maj 2009 23:30 Idi na vrh
rip argus Anti Malware Fighter Rank 2 Pridružio: 27 Apr 2008 Poruke: 9160 Gde živiš: Prokuplje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! - Preuzmi USBNoRisk na Desktop i pokreni ga duplim klikom na ikonicu programa. - Sacekaj koji sekund dok program izvrsi inicijalno skeniranje. - Ubacuj sve USB memorijske uredjaje redom u USB slot i svaki zadrzi u slotu po 10 sekundi. - Ukoliko imas vise uredjaja za proveru, onda na parcetu papira zapisi kojim redom su ubacivani jer ce nam kasnije trebati taj podatak - Kada zavrsis sa svim uredjajima, klikni desno dugme misa na sred prozora programa i odaberi opciju Save log. To ce automatski otvoriti log u Notepadu. Iskopiraj nam taj log iz Notepada na forum. Objasnjenje: U USB memorijske uredjaje spadaju svi oni uredjaji koji po prikljucivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uredjaji itd. Napomena: Pregledacu ti log sutra posto je kasno a umoran sam poprilicno. Nemoj da koristis USB drajvove dok ne zavrsimo, pozdrav.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Virus!

Ko je trenutno na forumu

Ukupno su 2105 korisnika na forumu :: 125 registrovanih, 9 sakrivenih i 1971 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 15694 - dana 01 Feb 2026 12:23

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., advokat84, amaterSRB, Anunakiii, ArchaBasha, bankulen, Betta, bigfoot, BlekMen, bobo85, Bobrock1, branko87, Buzdovan, cakija, Car89, Cicumile, Clouseau, crnogorac, DeerHunter, Dejan_vw, deLacy, Denaya, DENIRO, desmeki, djonsule, djordje92sm, dradex, draganca, dulleo, Dzambas, DzigiNS, Dzoni2412, EVIDENTICAR, Fabius, fićo32, Gogi do, Goksi95, goran.vvv, GT, GveX, Hippolyte Mondain, Holy Saber, hyla, Istman, istokzapad, Jerry Drake, Jester, jodzula, Jomini, kaisarevic1, kaput21, king111, Kototamopeva, kovacicbozo, kovinacc, Kozara1, krkalon, Kubovac, kuntakinte, Laluvr, Lelemood, Levi, Ljusa, lukac, MarijaC84, Marko Marković, MaschinenPistole, mauglibn, max power, mačković, Michellefromrezistance, Miki 84, milanpb, milenko crazy north, milimoj, Millennium, Milos1389, miodrag, Mićko, Moldovan, mrvica78, nenad81, neutrino, Obrenovic, Otto Grunf, Pantelejmon, Panter, pedjolino76, Permaldar, Pero Petković, Petar25, Pilence, ping15, PlayerOne, R_038, radza1, read-only, Rebel Frank, redstar011, repac, Rok A Bit, royst33, ruma, S.Palestinac, sasics, sevenino, Sharpshooter, shota91, Sioux7674, sony771, Steeeefan, strelac07, tanakadzo, tubular, Underdog9, VanZan, VaRvArI 85, vathra, virked, Vlada1389, vobo, Volkcho, Vrač, VX1, wize

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by