[bobby] Ne apdejtuje antiviruse

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Problem je u tome što ne mogu da apdejtujem Kasperskog, krene i izbaci poruku da je greška u definicijama. Isto se ponaša i sa BitDefenderom i NOD-om. Naravno svaki sam probao posebno, nisam imao instalirane antiviruse u isto vreme. Takođe ne radi apdejt ni Malwarebytes-u.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:29:00, on 4/12/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Opera 10 Preview\opera.exe
C:\Documents and Settings\Bojan\Desktop\New Folder\TR3.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,\s,
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: wbsys.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 4495 bytes

Proskenirao sam sa Malwarebytes i nađe mi ovo, ali ne može da ih počisti ni nakon restarta:
Malwarebytes' Anti-Malware 1.33
Database version: 1654
Windows 5.1.2600 Service Pack 2

4/12/2009 04:16:06
mbam-log-2009-04-12 (04-15-57).txt

Scan type: Full Scan (C:\
Objects scanned: 89406
Time elapsed: 25 minute(s), 9 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\passthru (Backdoor.Bot) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\passthru (Backdoor.Bot) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\passthru (Backdoor.Bot) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\Drivers\ndisio.sys (Backdoor.Bot) -> No action taken.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

* Klikni desnim tasterom na Kaspersky ikonicu ( ) u donjem, desnom uglu ekrana i izaberi Pause Protection.
* U prozoru koji se otvori, izaberi By User Request.

Napomena: Ne zaboravi da uključiš ovu opciju po završetku čišćenja.


Skini ComboFix sa jedne od sledecih adresa na Desktop:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://www.forospyware.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Startuj ga i ne diraj prozor programa dok skenira.
Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

ComboFix 09-04-12.02 - Bojan 2009-04-12 15:58.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.767.548 [GMT 2:00]
Running from: c:\documents and settings\Bojan\Desktop\ComboFix.exe
AV: BitDefender Antivirus *On-access scanning disabled* (Outdated)
AV: Kaspersky Internet Security *On-access scanning disabled* (Outdated)
FW: BitDefender Firewall *disabled*
FW: Kaspersky Internet Security *disabled*

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\ovfsth.sys
c:\windows\system32\drivers\ovfsthewxjyrijlfkiacxdicptabwgvrsiutow.sys
c:\windows\system32\ovfsthpcwksjqhelkupmpruyncxialopqaxskx.dll
c:\windows\system32\ovfsthpndyqtbjonsnmburcqyinxjrncxfghss.dll
c:\windows\system32\ovfsthqopojdbphfbelmtyapdevnnuqnakorsg.dll
c:\windows\system32\ovfsthuvuewfjwbcdbohxovcephxdbijcgqlfc.dat
c:\windows\system32\ovfsthyfqmwawbwsqefrviewbmxcmobfovbkhx.dat
D:\resycled
E:\resycled
F:\resycled

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_ovfsthbaxxtituerfvpwivnymtnqwmkdsbmvko
-------\Legacy_WMISYS
-------\Service_Passthru


((((((((((((((((((((((((( Files Created from 2009-03-12 to 2009-04-12 )))))))))))))))))))))))))))))))
.

2009-04-12 01:12 . 2009-04-12 01:12 96976 ----a-w c:\windows\system32\drivers\klin.dat
2009-04-12 01:12 . 2009-04-12 01:12 87855 ----a-w c:\windows\system32\drivers\klick.dat
2009-04-11 23:31 . 2009-04-11 23:31 850 ----a-w c:\windows\system32\ProductTweaks.xml
2009-04-11 23:31 . 2009-04-11 23:31 385 ----a-w c:\windows\system32\user_gensett.xml
2009-04-11 23:30 . 2009-04-11 23:30 121 ----a-w c:\windows\bdagent.INI
2009-04-11 22:46 . 2009-04-11 23:53 81984 ----a-w c:\windows\system32\bdod.bin
2009-04-11 22:38 . 2009-04-11 22:38 -------- d-----w c:\windows\system32\tmp000041f9
2009-04-11 22:28 . 2009-04-11 22:38 -------- d-----w c:\documents and settings\All Users\Application Data\BitDefender
2009-04-11 15:48 . 2009-04-11 15:48 -------- d-----w c:\windows\Sun
2009-04-10 23:01 . 2009-04-10 23:01 -------- d-----w C:\vcs5BGEffects
2009-04-09 22:30 . 2009-04-09 22:30 -------- d-----w c:\windows\system32\URTTEMP
2009-04-08 22:23 . 2009-04-08 22:23 0 ----a-w c:\windows\nsreg.dat
2009-04-06 17:15 . 2009-04-06 17:15 -------- d-----w c:\documents and settings\Bojan\Application Data\Desktopicon
2009-04-02 20:07 . 2004-08-03 22:56 21504 -c--a-w c:\windows\system32\dllcache\hidserv.dll
2009-04-02 20:07 . 2004-08-03 22:56 21504 ----a-w c:\windows\system32\hidserv.dll
2009-04-02 20:07 . 2004-08-03 20:58 14848 -c--a-w c:\windows\system32\dllcache\kbdhid.sys
2009-04-02 20:07 . 2004-08-03 20:58 14848 ----a-w c:\windows\system32\drivers\kbdhid.sys
2009-04-02 20:07 . 2001-08-17 11:48 12160 -c--a-w c:\windows\system32\dllcache\mouhid.sys
2009-04-02 20:07 . 2001-08-17 11:48 12160 ----a-w c:\windows\system32\drivers\mouhid.sys
2009-04-01 16:27 . 2009-04-01 16:27 -------- d-----w c:\documents and settings\Bojan\Application Data\gtk-2.0
2009-04-01 16:05 . 2009-04-01 16:05 -------- d-----w c:\documents and settings\Bojan\Application Data\PCF-VLC
2009-04-01 15:49 . 2009-04-01 15:49 -------- d-----w c:\documents and settings\Bojan\Application Data\Participatory Culture Foundation
2009-03-31 22:08 . 2009-03-31 22:08 73728 ----a-w c:\windows\system32\javacpl.cpl
2009-03-31 22:08 . 2009-03-31 22:08 410984 ----a-w c:\windows\system32\deploytk.dll
2009-03-27 23:08 . 2009-03-27 23:11 89 ----a-w c:\windows\FD30904.DAT
2009-03-25 22:39 . 1999-03-25 22:00 101888 ----a-w c:\windows\system32\Vb6stkit.dll
2009-03-25 22:39 . 2004-03-08 23:00 260880 ----a-w c:\windows\system32\msflxgrd.ocx
2009-03-25 22:39 . 2004-03-08 23:00 212240 ----a-w c:\windows\system32\richtx32.ocx
2009-03-25 22:39 . 2004-03-08 23:00 124688 ----a-w c:\windows\system32\MSWINSCK.OCX
2009-03-25 22:39 . 2004-02-22 23:00 1386496 ----a-w c:\windows\system32\MSVBVM60.DLL
2009-03-25 22:39 . 2009-01-08 10:34 198456 ----a-w c:\windows\system32\MCI32.OCX
2009-03-25 22:39 . 2004-03-08 23:00 1081616 ----a-w c:\windows\system32\MSCOMCTL.OCX
2009-03-25 22:16 . 2009-03-25 22:18 249856 ------w c:\windows\Setup1.exe
2009-03-25 22:14 . 2009-03-25 22:14 1335 ----a-w c:\windows\ST6UNST.001
2009-03-24 23:44 . 2009-03-24 23:44 -------- d-----w c:\documents and settings\Bojan\Application Data\Reallusion
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\documents and settings\All Users\Application Data\InstallShield
2009-03-24 23:40 . 2007-05-23 17:28 5627904 ----a-w c:\windows\system32\RLVirDev.ocx
2009-03-24 23:40 . 2006-05-16 10:58 73728 ----a-w c:\windows\system32\ISUSPM.cpl
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\documents and settings\Bojan\Application Data\InstallShield
2009-03-24 23:23 . 2009-03-25 22:18 73216 ----a-w c:\windows\ST6UNST.EXE
2009-03-24 23:23 . 2009-03-24 23:23 330 ----a-w c:\windows\ST6UNST.000
2009-03-21 18:36 . 2009-03-21 19:02 -------- d-----w c:\documents and settings\Bojan\Application Data\Web Page Maker V2
2009-03-21 14:38 . 2005-08-23 13:54 388608 ----a-w c:\windows\system32\3DABM8U.OCX
2009-03-21 14:38 . 1998-03-13 10:06 389120 ----a-w c:\windows\system32\Atx32.ocx
2009-03-21 14:38 . 1997-11-11 15:10 28160 ----a-w c:\windows\system32\ATX32OLE.DLL
2009-03-21 14:38 . 1997-10-24 15:19 78336 ----a-w c:\windows\system32\ATX32PIC.DLL
2009-03-21 14:38 . 1997-03-21 09:51 346112 ----a-w c:\windows\system32\PPRO100.DLL
2009-03-21 14:38 . 2009-03-21 14:59 -------- d-----w C:\WebSite X5
2009-03-21 14:38 . 1997-03-21 14:05 154528 ----a-w c:\windows\system32\PPRO100.OCX
2009-03-21 14:36 . 2006-02-03 07:23 142336 ----a-w c:\windows\system32\iwpsetup.exe
2009-03-21 14:36 . 1998-03-04 20:32 237568 ----a-w c:\windows\system32\CompPl32.dll
2009-03-21 14:36 . 1997-11-05 19:03 90624 ----a-w c:\windows\system32\CPWCTL32.OCX
2009-03-21 14:36 . 1997-01-16 12:42 6114 ----a-w c:\windows\system32\SHELLLNK.TLB
2009-03-21 14:36 . 1997-01-15 23:00 29696 ----a-w c:\windows\system32\VB5STKIT.DLL
2009-03-21 02:22 . 2009-03-21 02:22 0 ----a-w c:\windows\WB.ini
2009-03-20 22:15 . 2009-03-20 22:15 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-03-20 21:35 . 2009-03-20 21:48 -------- d-----w c:\documents and settings\Bojan\Application Data\Nokia
2009-03-20 21:35 . 2009-03-20 21:35 -------- d-----w c:\documents and settings\Bojan\Application Data\PC Suite
2009-03-20 21:35 . 2009-03-20 21:35 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-03-20 21:34 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-03-20 21:34 . 2008-09-15 06:56 659968 ----a-w c:\windows\system32\nmwcdcocls.dll
2009-03-20 21:34 . 2008-09-15 06:56 17664 ----a-w c:\windows\system32\drivers\ccdcmb.sys
2009-03-20 21:34 . 2008-09-15 06:29 1112288 ----a-w c:\windows\system32\wdfcoinstaller01007.dll
2009-03-20 21:33 . 2008-02-01 14:17 90624 ----a-w c:\windows\system32\nmwcdcls.dll
2009-03-20 21:32 . 2009-03-20 22:15 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-03-18 17:41 . 2009-03-18 17:41 -------- d-----w C:\SA D
2009-03-17 23:54 . 2009-03-17 23:55 -------- d-----w C:\ZA REZANJE
2009-03-15 05:53 . 2009-03-15 05:53 -------- d-----w c:\documents and settings\Bojan\Application Data\CadSoft
2009-03-15 03:50 . 2009-03-15 03:50 -------- d-----w c:\documents and settings\Bojan\Application Data\Canneverbe_Limited

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-12 14:05 . 2009-03-01 21:00 -------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-04-12 14:05 . 2009-03-01 21:00 426016 --sha-w c:\windows\system32\drivers\fidbox2.dat
2009-04-12 14:05 . 2009-03-01 21:00 5680 --sha-w c:\windows\system32\drivers\fidbox2.idx
2009-04-12 14:02 . 2009-03-01 21:00 2924576 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-04-12 14:02 . 2009-03-01 21:00 27072 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-04-12 13:52 . 2009-03-02 23:42 -------- d-----w c:\documents and settings\Bojan\Application Data\Skype
2009-04-12 12:42 . 2009-03-02 23:47 -------- d-----w c:\documents and settings\Bojan\Application Data\skypePM
2009-04-12 01:11 . 2009-04-12 01:11 -------- d-----w c:\program files\Kaspersky Lab
2009-04-12 01:05 . 2009-04-12 00:33 -------- d-----w c:\program files\WebCopier Pro
2009-04-11 22:28 . 2009-04-11 22:27 -------- d-----w c:\program files\Common Files\BitDefender
2009-04-11 14:52 . 2009-03-07 02:21 114048 ----a-w c:\windows\system32\drivers\snapman.sys
2009-04-11 14:52 . 2009-04-11 14:52 -------- d-----w c:\program files\Common Files\Acronis
2009-04-11 14:52 . 2009-04-11 14:52 -------- d-----w c:\program files\Acronis
2009-04-10 23:01 . 2009-04-10 22:40 -------- d-----w c:\program files\AV Vcs 6.0 DIAMOND
2009-04-09 22:35 . 2009-04-09 22:35 -------- d-----w c:\program files\FENG3
2009-04-09 21:47 . 2009-04-09 21:47 -------- d-----w c:\program files\WinPic
2009-04-06 17:15 . 2009-04-06 17:15 -------- d-----w c:\program files\VDOWNLOADER
2009-04-05 01:27 . 2009-03-21 21:10 -------- d-----w c:\program files\vanBasco's Karaoke Player
2009-04-03 16:40 . 2009-03-25 22:19 -------- d-----w c:\program files\Tablic
2009-03-31 22:08 . 2009-03-31 22:08 -------- d-----w c:\program files\Java
2009-03-27 23:12 . 2009-03-27 23:08 -------- d-----w c:\program files\FrontDesigner30
2009-03-27 00:51 . 2009-02-28 14:13 -------- d-----w c:\documents and settings\Bojan\Application Data\Thinstall
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\program files\Reallusion
2009-03-24 23:40 . 2009-03-02 18:42 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-24 23:40 . 2009-02-28 13:21 -------- d-----w c:\program files\Common Files\InstallShield
2009-03-21 18:36 . 2009-03-02 22:52 -------- d-----w c:\documents and settings\Bojan\Application Data\Web Page Maker
2009-03-21 03:32 . 2009-03-21 03:32 -------- d-----w c:\program files\Ashampoo
2009-03-21 02:06 . 2009-03-20 21:33 -------- d-----w c:\program files\Nokia
2009-03-20 21:34 . 2009-03-20 21:34 -------- d-----w c:\program files\DIFX
2009-03-20 21:34 . 2009-03-20 21:34 -------- d-----w c:\program files\PC Connectivity Solution
2009-03-19 01:03 . 2009-03-04 02:42 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-03-15 15:04 . 2009-03-15 15:04 -------- d-----w c:\program files\Bytescout XLS Viewer
2009-03-15 05:53 . 2009-03-15 05:53 -------- d-----w c:\program files\EAGLE-5.2.0
2009-03-15 03:41 . 2009-03-15 03:41 -------- d-----w c:\program files\CDBurnerXP
2009-03-13 03:46 . 2009-03-13 03:46 -------- d-----w c:\program files\Opera 10 Preview
2009-03-10 18:51 . 2009-03-10 18:51 -------- d-----w c:\program files\KONAMI
2009-03-10 18:37 . 2009-03-10 18:37 -------- d-----w c:\documents and settings\All Users\Application Data\KONAMI
2009-03-10 18:18 . 2009-03-10 18:18 -------- d-----w c:\program files\Alcohol Soft
2009-03-10 18:15 . 2009-03-10 18:15 717296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-03-10 00:29 . 2009-03-10 00:27 -------- d-----w c:\documents and settings\Bojan\Application Data\Teleca
2009-03-10 00:27 . 2009-03-10 00:27 -------- d-----w c:\documents and settings\Bojan\Application Data\Sony Ericsson
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\documents and settings\All Users\Application Data\Teleca
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Common Files\Sony Ericsson Shared
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Common Files\Teleca Shared
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Sony Ericsson
2009-03-08 13:45 . 2009-03-08 13:45 -------- d-----w c:\program files\Godlike Developers
2009-03-07 15:39 . 2009-03-02 23:22 -------- d-----w c:\program files\AVI MPEG RM WMV Splitter
2009-03-07 05:31 . 2009-03-07 05:31 -------- d-----w c:\program files\Video Thumbnails Maker
2009-03-07 03:31 . 2009-02-28 12:50 22748 ----a-w c:\windows\system32\emptyregdb.dat
2009-03-07 02:21 . 2009-03-07 02:21 30688 ----a-w c:\windows\system32\drivers\tifsfilt.sys
2009-03-07 02:21 . 2009-03-07 02:21 249152 ----a-w c:\windows\system32\drivers\timntr.sys
2009-03-07 02:01 . 2009-03-07 02:01 -------- d-----w c:\program files\ACD Systems
2009-03-07 01:40 . 2009-03-07 01:35 -------- d-----w c:\documents and settings\Bojan\Application Data\Audacity
2009-03-07 01:34 . 2009-03-07 01:34 -------- d-----w c:\program files\Audacity
2009-03-07 01:33 . 2009-03-07 01:33 -------- d-----w c:\program files\Audacity 1.3 Beta (Unicode)
2009-03-07 01:13 . 2009-03-07 01:13 -------- d-----w c:\documents and settings\Bojan\Application Data\OpenOffice.org
2009-03-07 01:11 . 2009-03-07 01:11 -------- d-----w c:\program files\OpenOffice.org 3
2009-03-07 00:03 . 2009-02-28 17:00 -------- d-----w c:\program files\Nero
2009-03-06 23:59 . 2009-03-06 23:59 -------- d-----w c:\documents and settings\All Users\Application Data\Macrovision
2009-03-06 23:59 . 2009-03-06 23:59 -------- d-----w c:\program files\Common Files\Adobe Systems Shared
2009-03-06 23:59 . 2009-03-02 23:33 -------- d-----w c:\program files\Common Files\Adobe
2009-03-05 23:32 . 2009-03-05 23:32 -------- d-----w c:\program files\New Wave Concepts
2009-03-05 23:16 . 2009-03-05 23:16 -------- d-----w c:\program files\DVD Decrypter
2009-03-05 01:17 . 2009-03-02 23:00 -------- d-----w c:\program files\Unlocker
2009-03-04 03:27 . 2009-03-04 03:19 -------- d-----w c:\documents and settings\Bojan\Application Data\Topten Software
2009-03-04 03:26 . 2009-03-02 23:15 -------- d-----w c:\program files\Topten Software
2009-03-04 02:42 . 2009-03-04 02:42 -------- d-----w c:\documents and settings\Bojan\Application Data\Malwarebytes
2009-03-04 02:42 . 2009-03-04 02:42 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-03-03 23:39 . 2009-03-03 23:39 -------- d-----w c:\documents and settings\Bojan\Application Data\FastStone
2009-03-03 01:03 . 2009-03-03 00:28 -------- d-----w c:\documents and settings\Bojan\Application Data\uTorrent
2009-03-03 00:53 . 2009-03-03 00:53 -------- d-----w c:\documents and settings\Bojan\Application Data\Godlike
2009-03-03 00:43 . 2009-03-03 00:42 -------- d-----w c:\program files\K-Lite Codec Pack
2009-03-03 00:29 . 2009-03-03 00:29 -------- d-----w c:\program files\uTorrent
2009-03-03 00:01 . 2009-03-03 00:01 -------- d-----w c:\program files\Google
2009-03-02 23:59 . 2009-03-02 23:59 -------- d-----w c:\program files\FastStone Image Viewer
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\program files\Skype
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\documents and settings\All Users\Application Data\Skype
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\program files\Common Files\Skype
2009-03-02 23:40 . 2009-03-02 23:40 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-03-02 23:40 . 2009-03-02 23:40 -------- d-----w c:\program files\DVD Shrink
2009-03-02 23:38 . 2009-03-02 23:38 -------- d-----w c:\program files\Ares
2009-03-02 23:24 . 2009-03-02 23:24 -------- d-----w c:\program files\VirtualDJ
2009-03-02 23:20 . 2009-03-02 23:20 -------- d-----w c:\program files\AVI MPEG RM WMV Joiner
2009-03-02 22:59 . 2009-03-02 22:59 -------- d-----w c:\program files\Smarty Uninstaller Pro
2009-03-02 22:58 . 2009-03-02 22:58 -------- d-----w c:\program files\KaraFun
2009-03-02 22:58 . 2009-03-02 22:58 -------- d-----w c:\documents and settings\All Users\Application Data\Recisio
2009-03-02 22:54 . 2009-03-02 22:54 -------- d-----w c:\program files\7-Zip
2009-03-02 22:52 . 2009-03-02 22:52 -------- d-----w c:\program files\Web Page Maker
2009-03-02 22:49 . 2009-03-02 22:49 -------- d-----w c:\program files\Common Files\Common Share
2009-03-02 22:49 . 2009-03-02 22:49 -------- d-----w c:\program files\OJOsoft
2009-03-02 22:48 . 2009-03-02 22:48 -------- d-----w c:\program files\Nexus Radio
2009-03-02 22:46 . 2009-03-02 22:46 -------- d-----w c:\documents and settings\Bojan\Application Data\Foxit
2009-03-02 22:46 . 2009-03-02 22:46 -------- d-----w c:\program files\Foxit Software
2009-03-02 22:43 . 2009-03-02 22:43 -------- d-----w c:\program files\PhotoZoom Pro 2
2009-03-02 22:33 . 2009-03-02 22:31 -------- d-----w c:\documents and settings\All Users\Application Data\InterVideo
2009-03-02 22:31 . 2009-03-02 22:31 -------- d-----w c:\program files\Common Files\InterVideo
2009-03-02 22:31 . 2009-03-02 22:31 -------- d-----w c:\program files\InterVideo
2009-03-02 20:26 . 2009-03-02 20:26 -------- d-----w c:\documents and settings\Bojan\Application Data\ATI
2009-03-02 20:26 . 2009-03-02 20:26 -------- d-----w c:\documents and settings\All Users\Application Data\ATI
2009-04-12 14:02 . 2009-03-01 21:00 2924576 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-04-12 14:05 . 2009-03-01 21:00 426016 --sha-w c:\windows\system32\drivers\fidbox2.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OSSelectorReinstall"="c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe" [2007-02-22 2209224]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2008-11-11 206088]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]

c:\documents and settings\Bojan\Start Menu\Programs\Startup\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2009-02-28 3450608]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2009-03-01 06:24 229376 c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\rkndjzuh.sys]
@="Driver"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"d:\\GAMES\\pes2009.exe"=
"c:\\Program Files\\Reallusion\\CrazyTalk for Skype\\CT4Skype.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"d:\\GAMES\\Jelen Super Liga.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 klbg;klbg;c:\windows\system32\drivers\klbg.sys [2009-03-01 33808]
R0 zwmviq;zwmviq; [x]
R3 Ndpitens;Ndpitens; [x]
R3 sys32;System Driver; [x]
S0 rkndjzuh;rkndjzuh;c:\windows\System32\Drivers\rkndjzuh.sys [2009-03-01 34016]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-01-14 170640]
S2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\System32\TUProgSt.exe [2009-03-01 603904]
S3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys [2008-04-30 24592]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-01-14 15504]
S3 PhTVTune;ASUS WDM TV Tuner;c:\windows\system32\DRIVERS\PhTVTune.sys [2003-07-18 24608]

.
Contents of the 'Scheduled Tasks' folder

2009-04-12 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-11-20 17:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
IE: Add to Banner Ad Blocker - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
FF - ProfilePath - c:\documents and settings\Bojan\Application Data\Mozilla\Firefox\Profiles\v4s93cnt.default\
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Opera 10 Preview\program\plugins\npdsplay.dll
FF - plugin: c:\program files\Opera 10 Preview\program\plugins\npwmsdrm.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-12 16:05
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1120)
c:\windows\system32\Ati2evxx.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll

- - - - - - - > 'explorer.exe'(2672)
c:\program files\Stardock\ObjectDock\DockShellHook.dll
c:\windows\system32\msi.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\tray.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-04-12 16:07 - machine was rebooted
ComboFix-quarantined-files.txt 2009-04-12 14:07

Pre-Run: 4,896,882,688 bytes free
Post-Run: 4,841,570,304 bytes free

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
310

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Otvoriti Notepad i iskopirati sledeci tekst:

File::
c:\windows\System32\Drivers\rkndjzuh.sys

Driver::
zwmviq
Ndpitens
rkndjzuh
sys32

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\rkndjzuh.sys]

Snimiti na Desktop fajl iz Notepada kao "CFScript"




Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici.
Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

ComboFix 09-04-12.02 - Bojan 2009-04-12 18:28.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.767.377 [GMT 2:00]
Running from: c:\documents and settings\Bojan\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Bojan\Desktop\CFScript.txt
AV: BitDefender Antivirus *On-access scanning disabled* (Outdated)
AV: Kaspersky Internet Security *On-access scanning disabled* (Outdated)
FW: BitDefender Firewall *disabled*
FW: Kaspersky Internet Security *disabled*
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

FILE ::
c:\windows\System32\Drivers\rkndjzuh.sys
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\System32\Drivers\rkndjzuh.sys

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_RKNDJZUH
-------\Service_Ndpitens
-------\Service_rkndjzuh
-------\Service_sys32
-------\Service_zwmviq


((((((((((((((((((((((((( Files Created from 2009-03-12 to 2009-04-12 )))))))))))))))))))))))))))))))
.

2009-04-12 01:12 . 2009-04-12 01:12 96976 ----a-w c:\windows\system32\drivers\klin.dat
2009-04-12 01:12 . 2009-04-12 01:12 87855 ----a-w c:\windows\system32\drivers\klick.dat
2009-04-11 23:31 . 2009-04-11 23:31 850 ----a-w c:\windows\system32\ProductTweaks.xml
2009-04-11 23:31 . 2009-04-11 23:31 385 ----a-w c:\windows\system32\user_gensett.xml
2009-04-11 23:30 . 2009-04-11 23:30 121 ----a-w c:\windows\bdagent.INI
2009-04-11 22:46 . 2009-04-11 23:53 81984 ----a-w c:\windows\system32\bdod.bin
2009-04-11 22:38 . 2009-04-11 22:38 -------- d-----w c:\windows\system32\tmp000041f9
2009-04-11 22:28 . 2009-04-11 22:38 -------- d-----w c:\documents and settings\All Users\Application Data\BitDefender
2009-04-11 15:48 . 2009-04-11 15:48 -------- d-----w c:\windows\Sun
2009-04-10 23:01 . 2009-04-10 23:01 -------- d-----w C:\vcs5BGEffects
2009-04-09 22:30 . 2009-04-09 22:30 -------- d-----w c:\windows\system32\URTTEMP
2009-04-08 22:23 . 2009-04-08 22:23 0 ----a-w c:\windows\nsreg.dat
2009-04-06 17:15 . 2009-04-06 17:15 -------- d-----w c:\documents and settings\Bojan\Application Data\Desktopicon
2009-04-02 20:07 . 2004-08-03 22:56 21504 -c--a-w c:\windows\system32\dllcache\hidserv.dll
2009-04-02 20:07 . 2004-08-03 22:56 21504 ----a-w c:\windows\system32\hidserv.dll
2009-04-02 20:07 . 2004-08-03 20:58 14848 -c--a-w c:\windows\system32\dllcache\kbdhid.sys
2009-04-02 20:07 . 2004-08-03 20:58 14848 ----a-w c:\windows\system32\drivers\kbdhid.sys
2009-04-02 20:07 . 2001-08-17 11:48 12160 -c--a-w c:\windows\system32\dllcache\mouhid.sys
2009-04-02 20:07 . 2001-08-17 11:48 12160 ----a-w c:\windows\system32\drivers\mouhid.sys
2009-04-01 16:27 . 2009-04-01 16:27 -------- d-----w c:\documents and settings\Bojan\Application Data\gtk-2.0
2009-04-01 16:05 . 2009-04-01 16:05 -------- d-----w c:\documents and settings\Bojan\Application Data\PCF-VLC
2009-04-01 15:49 . 2009-04-01 15:49 -------- d-----w c:\documents and settings\Bojan\Application Data\Participatory Culture Foundation
2009-03-31 22:08 . 2009-03-31 22:08 73728 ----a-w c:\windows\system32\javacpl.cpl
2009-03-31 22:08 . 2009-03-31 22:08 410984 ----a-w c:\windows\system32\deploytk.dll
2009-03-27 23:08 . 2009-03-27 23:11 89 ----a-w c:\windows\FD30904.DAT
2009-03-25 22:39 . 1999-03-25 22:00 101888 ----a-w c:\windows\system32\Vb6stkit.dll
2009-03-25 22:39 . 2004-03-08 23:00 260880 ----a-w c:\windows\system32\msflxgrd.ocx
2009-03-25 22:39 . 2004-03-08 23:00 212240 ----a-w c:\windows\system32\richtx32.ocx
2009-03-25 22:39 . 2004-03-08 23:00 124688 ----a-w c:\windows\system32\MSWINSCK.OCX
2009-03-25 22:39 . 2004-02-22 23:00 1386496 ----a-w c:\windows\system32\MSVBVM60.DLL
2009-03-25 22:39 . 2009-01-08 10:34 198456 ----a-w c:\windows\system32\MCI32.OCX
2009-03-25 22:39 . 2004-03-08 23:00 1081616 ----a-w c:\windows\system32\MSCOMCTL.OCX
2009-03-25 22:16 . 2009-03-25 22:18 249856 ------w c:\windows\Setup1.exe
2009-03-25 22:14 . 2009-03-25 22:14 1335 ----a-w c:\windows\ST6UNST.001
2009-03-24 23:44 . 2009-03-24 23:44 -------- d-----w c:\documents and settings\Bojan\Application Data\Reallusion
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\documents and settings\All Users\Application Data\InstallShield
2009-03-24 23:40 . 2007-05-23 17:28 5627904 ----a-w c:\windows\system32\RLVirDev.ocx
2009-03-24 23:40 . 2006-05-16 10:58 73728 ----a-w c:\windows\system32\ISUSPM.cpl
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\documents and settings\Bojan\Application Data\InstallShield
2009-03-24 23:23 . 2009-03-25 22:18 73216 ----a-w c:\windows\ST6UNST.EXE
2009-03-24 23:23 . 2009-03-24 23:23 330 ----a-w c:\windows\ST6UNST.000
2009-03-21 18:36 . 2009-03-21 19:02 -------- d-----w c:\documents and settings\Bojan\Application Data\Web Page Maker V2
2009-03-21 14:38 . 2005-08-23 13:54 388608 ----a-w c:\windows\system32\3DABM8U.OCX
2009-03-21 14:38 . 1998-03-13 10:06 389120 ----a-w c:\windows\system32\Atx32.ocx
2009-03-21 14:38 . 1997-11-11 15:10 28160 ----a-w c:\windows\system32\ATX32OLE.DLL
2009-03-21 14:38 . 1997-10-24 15:19 78336 ----a-w c:\windows\system32\ATX32PIC.DLL
2009-03-21 14:38 . 1997-03-21 09:51 346112 ----a-w c:\windows\system32\PPRO100.DLL
2009-03-21 14:38 . 2009-03-21 14:59 -------- d-----w C:\WebSite X5
2009-03-21 14:38 . 1997-03-21 14:05 154528 ----a-w c:\windows\system32\PPRO100.OCX
2009-03-21 14:36 . 2006-02-03 07:23 142336 ----a-w c:\windows\system32\iwpsetup.exe
2009-03-21 14:36 . 1998-03-04 20:32 237568 ----a-w c:\windows\system32\CompPl32.dll
2009-03-21 14:36 . 1997-11-05 19:03 90624 ----a-w c:\windows\system32\CPWCTL32.OCX
2009-03-21 14:36 . 1997-01-16 12:42 6114 ----a-w c:\windows\system32\SHELLLNK.TLB
2009-03-21 14:36 . 1997-01-15 23:00 29696 ----a-w c:\windows\system32\VB5STKIT.DLL
2009-03-21 02:22 . 2009-03-21 02:22 0 ----a-w c:\windows\WB.ini
2009-03-20 22:15 . 2009-03-20 22:15 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-03-20 21:35 . 2009-03-20 21:48 -------- d-----w c:\documents and settings\Bojan\Application Data\Nokia
2009-03-20 21:35 . 2009-03-20 21:35 -------- d-----w c:\documents and settings\Bojan\Application Data\PC Suite
2009-03-20 21:35 . 2009-03-20 21:35 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-03-20 21:34 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-03-20 21:34 . 2008-09-15 06:56 659968 ----a-w c:\windows\system32\nmwcdcocls.dll
2009-03-20 21:34 . 2008-09-15 06:56 17664 ----a-w c:\windows\system32\drivers\ccdcmb.sys
2009-03-20 21:34 . 2008-09-15 06:29 1112288 ----a-w c:\windows\system32\wdfcoinstaller01007.dll
2009-03-20 21:33 . 2008-02-01 14:17 90624 ----a-w c:\windows\system32\nmwcdcls.dll
2009-03-20 21:32 . 2009-03-20 22:15 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-03-18 17:41 . 2009-03-18 17:41 -------- d-----w C:\SA D
2009-03-17 23:54 . 2009-03-17 23:55 -------- d-----w C:\ZA REZANJE
2009-03-15 05:53 . 2009-03-15 05:53 -------- d-----w c:\documents and settings\Bojan\Application Data\CadSoft
2009-03-15 03:50 . 2009-03-15 03:50 -------- d-----w c:\documents and settings\Bojan\Application Data\Canneverbe_Limited

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-12 16:32 . 2009-03-01 21:00 -------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-04-12 16:31 . 2009-03-01 21:00 5736 --sha-w c:\windows\system32\drivers\fidbox2.idx
2009-04-12 16:31 . 2009-03-01 21:00 442400 --sha-w c:\windows\system32\drivers\fidbox2.dat
2009-04-12 16:31 . 2009-03-01 21:00 2974752 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-04-12 16:31 . 2009-03-01 21:00 27464 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-04-12 16:25 . 2009-03-02 23:42 -------- d-----w c:\documents and settings\Bojan\Application Data\Skype
2009-04-12 14:38 . 2009-03-02 23:47 -------- d-----w c:\documents and settings\Bojan\Application Data\skypePM
2009-04-12 01:11 . 2009-04-12 01:11 -------- d-----w c:\program files\Kaspersky Lab
2009-04-12 01:05 . 2009-04-12 00:33 -------- d-----w c:\program files\WebCopier Pro
2009-04-11 22:28 . 2009-04-11 22:27 -------- d-----w c:\program files\Common Files\BitDefender
2009-04-11 14:52 . 2009-03-07 02:21 114048 ----a-w c:\windows\system32\drivers\snapman.sys
2009-04-11 14:52 . 2009-04-11 14:52 -------- d-----w c:\program files\Common Files\Acronis
2009-04-11 14:52 . 2009-04-11 14:52 -------- d-----w c:\program files\Acronis
2009-04-10 23:01 . 2009-04-10 22:40 -------- d-----w c:\program files\AV Vcs 6.0 DIAMOND
2009-04-09 22:35 . 2009-04-09 22:35 -------- d-----w c:\program files\FENG3
2009-04-09 21:47 . 2009-04-09 21:47 -------- d-----w c:\program files\WinPic
2009-04-06 17:15 . 2009-04-06 17:15 -------- d-----w c:\program files\VDOWNLOADER
2009-04-05 01:27 . 2009-03-21 21:10 -------- d-----w c:\program files\vanBasco's Karaoke Player
2009-04-03 16:40 . 2009-03-25 22:19 -------- d-----w c:\program files\Tablic
2009-03-31 22:08 . 2009-03-31 22:08 -------- d-----w c:\program files\Java
2009-03-27 23:12 . 2009-03-27 23:08 -------- d-----w c:\program files\FrontDesigner30
2009-03-27 00:51 . 2009-02-28 14:13 -------- d-----w c:\documents and settings\Bojan\Application Data\Thinstall
2009-03-24 23:40 . 2009-03-24 23:40 -------- d-----w c:\program files\Reallusion
2009-03-24 23:40 . 2009-03-02 18:42 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-24 23:40 . 2009-02-28 13:21 -------- d-----w c:\program files\Common Files\InstallShield
2009-03-21 18:36 . 2009-03-02 22:52 -------- d-----w c:\documents and settings\Bojan\Application Data\Web Page Maker
2009-03-21 03:32 . 2009-03-21 03:32 -------- d-----w c:\program files\Ashampoo
2009-03-21 02:06 . 2009-03-20 21:33 -------- d-----w c:\program files\Nokia
2009-03-20 21:34 . 2009-03-20 21:34 -------- d-----w c:\program files\DIFX
2009-03-20 21:34 . 2009-03-20 21:34 -------- d-----w c:\program files\PC Connectivity Solution
2009-03-19 01:03 . 2009-03-04 02:42 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-03-15 15:04 . 2009-03-15 15:04 -------- d-----w c:\program files\Bytescout XLS Viewer
2009-03-15 05:53 . 2009-03-15 05:53 -------- d-----w c:\program files\EAGLE-5.2.0
2009-03-15 03:41 . 2009-03-15 03:41 -------- d-----w c:\program files\CDBurnerXP
2009-03-13 03:46 . 2009-03-13 03:46 -------- d-----w c:\program files\Opera 10 Preview
2009-03-10 18:51 . 2009-03-10 18:51 -------- d-----w c:\program files\KONAMI
2009-03-10 18:37 . 2009-03-10 18:37 -------- d-----w c:\documents and settings\All Users\Application Data\KONAMI
2009-03-10 18:18 . 2009-03-10 18:18 -------- d-----w c:\program files\Alcohol Soft
2009-03-10 18:15 . 2009-03-10 18:15 717296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-03-10 00:29 . 2009-03-10 00:27 -------- d-----w c:\documents and settings\Bojan\Application Data\Teleca
2009-03-10 00:27 . 2009-03-10 00:27 -------- d-----w c:\documents and settings\Bojan\Application Data\Sony Ericsson
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\documents and settings\All Users\Application Data\Teleca
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Common Files\Sony Ericsson Shared
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Common Files\Teleca Shared
2009-03-10 00:23 . 2009-03-10 00:23 -------- d-----w c:\program files\Sony Ericsson
2009-03-08 13:45 . 2009-03-08 13:45 -------- d-----w c:\program files\Godlike Developers
2009-03-07 15:39 . 2009-03-02 23:22 -------- d-----w c:\program files\AVI MPEG RM WMV Splitter
2009-03-07 05:31 . 2009-03-07 05:31 -------- d-----w c:\program files\Video Thumbnails Maker
2009-03-07 03:31 . 2009-02-28 12:50 22748 ----a-w c:\windows\system32\emptyregdb.dat
2009-03-07 02:21 . 2009-03-07 02:21 30688 ----a-w c:\windows\system32\drivers\tifsfilt.sys
2009-03-07 02:21 . 2009-03-07 02:21 249152 ----a-w c:\windows\system32\drivers\timntr.sys
2009-03-07 02:01 . 2009-03-07 02:01 -------- d-----w c:\program files\ACD Systems
2009-03-07 01:40 . 2009-03-07 01:35 -------- d-----w c:\documents and settings\Bojan\Application Data\Audacity
2009-03-07 01:34 . 2009-03-07 01:34 -------- d-----w c:\program files\Audacity
2009-03-07 01:33 . 2009-03-07 01:33 -------- d-----w c:\program files\Audacity 1.3 Beta (Unicode)
2009-03-07 01:13 . 2009-03-07 01:13 -------- d-----w c:\documents and settings\Bojan\Application Data\OpenOffice.org
2009-03-07 01:11 . 2009-03-07 01:11 -------- d-----w c:\program files\OpenOffice.org 3
2009-03-07 00:03 . 2009-02-28 17:00 -------- d-----w c:\program files\Nero
2009-03-06 23:59 . 2009-03-06 23:59 -------- d-----w c:\documents and settings\All Users\Application Data\Macrovision
2009-03-06 23:59 . 2009-03-06 23:59 -------- d-----w c:\program files\Common Files\Adobe Systems Shared
2009-03-06 23:59 . 2009-03-02 23:33 -------- d-----w c:\program files\Common Files\Adobe
2009-03-05 23:32 . 2009-03-05 23:32 -------- d-----w c:\program files\New Wave Concepts
2009-03-05 23:16 . 2009-03-05 23:16 -------- d-----w c:\program files\DVD Decrypter
2009-03-05 01:17 . 2009-03-02 23:00 -------- d-----w c:\program files\Unlocker
2009-03-04 03:27 . 2009-03-04 03:19 -------- d-----w c:\documents and settings\Bojan\Application Data\Topten Software
2009-03-04 03:26 . 2009-03-02 23:15 -------- d-----w c:\program files\Topten Software
2009-03-04 02:42 . 2009-03-04 02:42 -------- d-----w c:\documents and settings\Bojan\Application Data\Malwarebytes
2009-03-04 02:42 . 2009-03-04 02:42 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-03-03 23:39 . 2009-03-03 23:39 -------- d-----w c:\documents and settings\Bojan\Application Data\FastStone
2009-03-03 01:03 . 2009-03-03 00:28 -------- d-----w c:\documents and settings\Bojan\Application Data\uTorrent
2009-03-03 00:53 . 2009-03-03 00:53 -------- d-----w c:\documents and settings\Bojan\Application Data\Godlike
2009-03-03 00:43 . 2009-03-03 00:42 -------- d-----w c:\program files\K-Lite Codec Pack
2009-03-03 00:29 . 2009-03-03 00:29 -------- d-----w c:\program files\uTorrent
2009-03-03 00:01 . 2009-03-03 00:01 -------- d-----w c:\program files\Google
2009-03-02 23:59 . 2009-03-02 23:59 -------- d-----w c:\program files\FastStone Image Viewer
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\program files\Skype
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\documents and settings\All Users\Application Data\Skype
2009-03-02 23:42 . 2009-03-02 23:42 -------- d-----w c:\program files\Common Files\Skype
2009-03-02 23:40 . 2009-03-02 23:40 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-03-02 23:40 . 2009-03-02 23:40 -------- d-----w c:\program files\DVD Shrink
2009-03-02 23:38 . 2009-03-02 23:38 -------- d-----w c:\program files\Ares
2009-03-02 23:24 . 2009-03-02 23:24 -------- d-----w c:\program files\VirtualDJ
2009-03-02 23:20 . 2009-03-02 23:20 -------- d-----w c:\program files\AVI MPEG RM WMV Joiner
2009-03-02 22:59 . 2009-03-02 22:59 -------- d-----w c:\program files\Smarty Uninstaller Pro
2009-03-02 22:58 . 2009-03-02 22:58 -------- d-----w c:\program files\KaraFun
2009-03-02 22:58 . 2009-03-02 22:58 -------- d-----w c:\documents and settings\All Users\Application Data\Recisio
2009-03-02 22:54 . 2009-03-02 22:54 -------- d-----w c:\program files\7-Zip
2009-03-02 22:52 . 2009-03-02 22:52 -------- d-----w c:\program files\Web Page Maker
2009-03-02 22:49 . 2009-03-02 22:49 -------- d-----w c:\program files\Common Files\Common Share
2009-03-02 22:49 . 2009-03-02 22:49 -------- d-----w c:\program files\OJOsoft
2009-03-02 22:48 . 2009-03-02 22:48 -------- d-----w c:\program files\Nexus Radio
2009-03-02 22:46 . 2009-03-02 22:46 -------- d-----w c:\documents and settings\Bojan\Application Data\Foxit
2009-03-02 22:46 . 2009-03-02 22:46 -------- d-----w c:\program files\Foxit Software
2009-03-02 22:43 . 2009-03-02 22:43 -------- d-----w c:\program files\PhotoZoom Pro 2
2009-03-02 22:33 . 2009-03-02 22:31 -------- d-----w c:\documents and settings\All Users\Application Data\InterVideo
2009-03-02 22:31 . 2009-03-02 22:31 -------- d-----w c:\program files\Common Files\InterVideo
2009-03-02 22:31 . 2009-03-02 22:31 -------- d-----w c:\program files\InterVideo
2009-03-02 20:26 . 2009-03-02 20:26 -------- d-----w c:\documents and settings\Bojan\Application Data\ATI
2009-03-02 20:26 . 2009-03-02 20:26 -------- d-----w c:\documents and settings\All Users\Application Data\ATI
2009-04-12 16:31 . 2009-03-01 21:00 2974752 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-04-12 16:31 . 2009-03-01 21:00 442400 --sha-w c:\windows\system32\drivers\fidbox2.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-04-12_16.06.38.85 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-03-01 21:00 . 2009-04-12 16:31 442400 c:\windows\system32\drivers\fidbox2.dat
+ 2009-04-12 16:31 . 2005-10-20 18:02 163328 c:\windows\ERDNT\subs\ERDNT.EXE
- 2009-04-12 14:01 . 2005-10-20 18:02 163328 c:\windows\ERDNT\subs\ERDNT.EXE
+ 2009-03-01 21:00 . 2009-04-12 16:31 2974752 c:\windows\system32\drivers\fidbox.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OSSelectorReinstall"="c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe" [2007-02-22 2209224]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2008-11-11 206088]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]

c:\documents and settings\Bojan\Start Menu\Programs\Startup\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2009-02-28 3450608]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2009-03-01 06:24 229376 c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"d:\\GAMES\\pes2009.exe"=
"c:\\Program Files\\Reallusion\\CrazyTalk for Skype\\CT4Skype.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"d:\\GAMES\\Jelen Super Liga.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 klbg;klbg;c:\windows\system32\drivers\klbg.sys [2009-03-01 33808]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-01-14 170640]
S2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\System32\TUProgSt.exe [2009-03-01 603904]
S3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys [2008-04-30 24592]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-01-14 15504]
S3 PhTVTune;ASUS WDM TV Tuner;c:\windows\system32\DRIVERS\PhTVTune.sys [2003-07-18 24608]

.
Contents of the 'Scheduled Tasks' folder

2009-04-12 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-11-20 17:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
IE: Add to Banner Ad Blocker - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
FF - ProfilePath - c:\documents and settings\Bojan\Application Data\Mozilla\Firefox\Profiles\v4s93cnt.default\
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Opera 10 Preview\program\plugins\npdsplay.dll
FF - plugin: c:\program files\Opera 10 Preview\program\plugins\npwmsdrm.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-12 18:32
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1112)
c:\windows\system32\Ati2evxx.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll

- - - - - - - > 'explorer.exe'(3756)
c:\program files\Stardock\ObjectDock\DockShellHook.dll
c:\windows\system32\msi.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\tray.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\CDBurnerXP\NMSAccessU.exe
.
**************************************************************************
.
Completion time: 2009-04-12 18:35 - machine was rebooted
ComboFix-quarantined-files.txt 2009-04-12 16:35
ComboFix2.txt 2009-04-12 14:07

Pre-Run: 4,759,465,984 bytes free
Post-Run: 4,752,601,088 bytes free

305

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Kakvo je stanje ?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 12 Apr 2009 21:40

Isto, neće da se apdejtuje KIS. Probao sam nekoliko verzija i isto se ponaša. Izvini što malo kasnim sa odgovorom imao sam goste. Šta bi još moglo ?

Dopuna: 12 Apr 2009 22:03

Probaću da ga deinstaliram pa instaliram opet.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Mozes li da potrazis log od KAV-a, mora da pise koja je greska u pitanju.
Potrazi log u samom programu i postavi ga ovde.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Update: error (events: 107)
4/12/2009 22:38:49 Task started
4/12/2009 22:38:53 Update source is selected http://dnl-06.geo.kaspersky.com/
4/12/2009 22:39:11 File download... index/u0607g.xml.dif
4/12/2009 22:39:12 File download... index/u0607g.xml.klz
4/12/2009 22:39:12 File download... index/u0607g.xml
4/12/2009 22:39:12 Update files are corrupted http://dnl-06.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:12 Update source is selected http://dnl-17.geo.kaspersky.com/
4/12/2009 22:39:12 File download... index/u0607g.xml.dif
4/12/2009 22:39:12 File download... index/u0607g.xml.klz
4/12/2009 22:39:12 File download... index/u0607g.xml
4/12/2009 22:39:13 Update files are corrupted http://dnl-17.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:13 Update source is selected http://dnl-05.geo.kaspersky.com/
4/12/2009 22:39:13 File download... index/u0607g.xml.dif
4/12/2009 22:39:13 File download... index/u0607g.xml.klz
4/12/2009 22:39:13 File download... index/u0607g.xml
4/12/2009 22:39:13 Update files are corrupted http://dnl-05.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:13 Update source is selected http://dnl-14.geo.kaspersky.com/
4/12/2009 22:39:13 File download... index/u0607g.xml.dif
4/12/2009 22:39:14 File download... index/u0607g.xml.klz
4/12/2009 22:39:14 File download... index/u0607g.xml
4/12/2009 22:39:14 Update files are corrupted http://dnl-14.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:14 Update source is selected http://dnl-09.geo.kaspersky.com/
4/12/2009 22:39:14 File download... index/u0607g.xml.dif
4/12/2009 22:39:14 File download... index/u0607g.xml.klz
4/12/2009 22:39:14 File download... index/u0607g.xml
4/12/2009 22:39:14 Update files are corrupted http://dnl-09.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:15 Update source is selected http://dnl-08.geo.kaspersky.com/
4/12/2009 22:39:15 File download... index/u0607g.xml.dif
4/12/2009 22:39:15 File download... index/u0607g.xml.klz
4/12/2009 22:39:15 File download... index/u0607g.xml
4/12/2009 22:39:15 Update files are corrupted http://dnl-08.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:15 Update source is selected http://dnl-02.geo.kaspersky.com/
4/12/2009 22:39:15 File download... index/u0607g.xml.dif
4/12/2009 22:39:15 File download... index/u0607g.xml.klz
4/12/2009 22:39:16 File download... index/u0607g.xml
4/12/2009 22:39:16 Update files are corrupted http://dnl-02.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:16 Update source is selected http://dnl-03.geo.kaspersky.com/
4/12/2009 22:39:16 File download... index/u0607g.xml.dif
4/12/2009 22:39:16 File download... index/u0607g.xml.klz
4/12/2009 22:39:16 File download... index/u0607g.xml
4/12/2009 22:39:16 Update files are corrupted http://dnl-03.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:16 Update source is selected http://dnl-12.geo.kaspersky.com/
4/12/2009 22:39:16 File download... index/u0607g.xml.dif
4/12/2009 22:39:17 File download... index/u0607g.xml.klz
4/12/2009 22:39:17 File download... index/u0607g.xml
4/12/2009 22:39:17 Update files are corrupted http://dnl-12.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:17 Update source is selected http://dnl-15.geo.kaspersky.com/
4/12/2009 22:39:17 File download... index/u0607g.xml.dif
4/12/2009 22:39:17 File download... index/u0607g.xml.klz
4/12/2009 22:39:17 File download... index/u0607g.xml
4/12/2009 22:39:18 Update files are corrupted http://dnl-15.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:18 Update source is selected http://dnl-19.geo.kaspersky.com/
4/12/2009 22:39:18 File download... index/u0607g.xml.dif
4/12/2009 22:39:18 File download... index/u0607g.xml.klz
4/12/2009 22:39:18 File download... index/u0607g.xml
4/12/2009 22:39:18 Update files are corrupted http://dnl-19.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:18 Update source is selected http://dnl-13.geo.kaspersky.com/
4/12/2009 22:39:18 File download... index/u0607g.xml.dif
4/12/2009 22:39:19 File download... index/u0607g.xml.klz
4/12/2009 22:39:19 File download... index/u0607g.xml
4/12/2009 22:39:19 Update files are corrupted http://dnl-13.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:19 Update source is selected http://dnl-01.geo.kaspersky.com/
4/12/2009 22:39:19 File download... index/u0607g.xml.dif
4/12/2009 22:39:20 File download... index/u0607g.xml.klz
4/12/2009 22:39:20 File download... index/u0607g.xml
4/12/2009 22:39:20 Update files are corrupted http://dnl-01.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:20 Update source is selected http://dnl-11.geo.kaspersky.com/
4/12/2009 22:39:20 File download... index/u0607g.xml.dif
4/12/2009 22:39:20 File download... index/u0607g.xml.klz
4/12/2009 22:39:20 File download... index/u0607g.xml
4/12/2009 22:39:21 Update files are corrupted http://dnl-11.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:21 Update source is selected http://dnl-04.geo.kaspersky.com/
4/12/2009 22:39:21 File download... index/u0607g.xml.dif
4/12/2009 22:39:21 File download... index/u0607g.xml.klz
4/12/2009 22:39:21 File download... index/u0607g.xml
4/12/2009 22:39:21 Update files are corrupted http://dnl-04.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:21 Update source is selected http://dnl-18.geo.kaspersky.com/
4/12/2009 22:39:21 File download... index/u0607g.xml.dif
4/12/2009 22:39:22 File download... index/u0607g.xml.klz
4/12/2009 22:39:22 File download... index/u0607g.xml
4/12/2009 22:39:22 Update files are corrupted http://dnl-18.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:22 Update source is selected http://dnl-00.geo.kaspersky.com/
4/12/2009 22:39:22 File download... index/u0607g.xml.dif
4/12/2009 22:39:22 File download... index/u0607g.xml.klz
4/12/2009 22:39:22 File download... index/u0607g.xml
4/12/2009 22:39:22 Update files are corrupted http://dnl-00.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:23 Update source is selected http://dnl-16.geo.kaspersky.com/
4/12/2009 22:39:23 File download... index/u0607g.xml.dif
4/12/2009 22:39:23 File download... index/u0607g.xml.klz
4/12/2009 22:39:23 File download... index/u0607g.xml
4/12/2009 22:39:23 Update files are corrupted http://dnl-16.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:23 Update source is selected http://dnl-07.geo.kaspersky.com/
4/12/2009 22:39:23 File download... index/u0607g.xml.dif
4/12/2009 22:39:23 File download... index/u0607g.xml.klz
4/12/2009 22:39:24 File download... index/u0607g.xml
4/12/2009 22:39:24 Update files are corrupted http://dnl-07.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:24 Update source is selected http://dnl-10.geo.kaspersky.com/
4/12/2009 22:39:24 File download... index/u0607g.xml.dif
4/12/2009 22:39:24 File download... index/u0607g.xml.klz
4/12/2009 22:39:24 File download... index/u0607g.xml
4/12/2009 22:39:24 Update files are corrupted http://dnl-10.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:39:25 Update source is selected http://downloads4.kaspersky-labs.com/
4/12/2009 22:39:25 File download... index/u0607g.xml.dif
4/12/2009 22:39:25 File download... index/u0607g.xml.klz
4/12/2009 22:39:25 File download... index/u0607g.xml
4/12/2009 22:39:25 Update files are corrupted http://downloads4.kaspersky-labs.com/index/u0607g.xml
4/12/2009 22:39:25 Task cannot be started Update files are corrupted
Update: error (events: 107)
4/12/2009 22:43:26 Task started
4/12/2009 22:43:27 Update source is selected http://dnl-06.geo.kaspersky.com/
4/12/2009 22:43:27 File download... index/u0607g.xml.dif
4/12/2009 22:43:27 File download... index/u0607g.xml.klz
4/12/2009 22:43:28 File download... index/u0607g.xml
4/12/2009 22:43:28 Update files are corrupted http://dnl-06.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:28 Update source is selected http://dnl-08.geo.kaspersky.com/
4/12/2009 22:43:28 File download... index/u0607g.xml.dif
4/12/2009 22:43:28 File download... index/u0607g.xml.klz
4/12/2009 22:43:28 File download... index/u0607g.xml
4/12/2009 22:43:28 Update files are corrupted http://dnl-08.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:29 Update source is selected http://dnl-09.geo.kaspersky.com/
4/12/2009 22:43:29 File download... index/u0607g.xml.dif
4/12/2009 22:43:29 File download... index/u0607g.xml.klz
4/12/2009 22:43:29 File download... index/u0607g.xml
4/12/2009 22:43:29 Update files are corrupted http://dnl-09.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:29 Update source is selected http://dnl-05.geo.kaspersky.com/
4/12/2009 22:43:29 File download... index/u0607g.xml.dif
4/12/2009 22:43:29 File download... index/u0607g.xml.klz
4/12/2009 22:43:29 File download... index/u0607g.xml
4/12/2009 22:43:30 Update files are corrupted http://dnl-05.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:30 Update source is selected http://dnl-03.geo.kaspersky.com/
4/12/2009 22:43:30 File download... index/u0607g.xml.dif
4/12/2009 22:43:30 File download... index/u0607g.xml.klz
4/12/2009 22:43:30 File download... index/u0607g.xml
4/12/2009 22:43:30 Update files are corrupted http://dnl-03.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:30 Update source is selected http://dnl-17.geo.kaspersky.com/
4/12/2009 22:43:30 File download... index/u0607g.xml.dif
4/12/2009 22:43:31 File download... index/u0607g.xml.klz
4/12/2009 22:43:31 File download... index/u0607g.xml
4/12/2009 22:43:31 Update files are corrupted http://dnl-17.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:31 Update source is selected http://dnl-07.geo.kaspersky.com/
4/12/2009 22:43:31 File download... index/u0607g.xml.dif
4/12/2009 22:43:31 File download... index/u0607g.xml.klz
4/12/2009 22:43:31 File download... index/u0607g.xml
4/12/2009 22:43:32 Update files are corrupted http://dnl-07.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:32 Update source is selected http://dnl-12.geo.kaspersky.com/
4/12/2009 22:43:32 File download... index/u0607g.xml.dif
4/12/2009 22:43:32 File download... index/u0607g.xml.klz
4/12/2009 22:43:32 File download... index/u0607g.xml
4/12/2009 22:43:32 Update files are corrupted http://dnl-12.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:32 Update source is selected http://dnl-01.geo.kaspersky.com/
4/12/2009 22:43:32 File download... index/u0607g.xml.dif
4/12/2009 22:43:32 File download... index/u0607g.xml.klz
4/12/2009 22:43:33 File download... index/u0607g.xml
4/12/2009 22:43:33 Update files are corrupted http://dnl-01.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:33 Update source is selected http://dnl-15.geo.kaspersky.com/
4/12/2009 22:43:33 File download... index/u0607g.xml.dif
4/12/2009 22:43:33 File download... index/u0607g.xml.klz
4/12/2009 22:43:33 File download... index/u0607g.xml
4/12/2009 22:43:33 Update files are corrupted http://dnl-15.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:33 Update source is selected http://dnl-02.geo.kaspersky.com/
4/12/2009 22:43:33 File download... index/u0607g.xml.dif
4/12/2009 22:43:34 File download... index/u0607g.xml.klz
4/12/2009 22:43:34 File download... index/u0607g.xml
4/12/2009 22:43:34 Update files are corrupted http://dnl-02.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:34 Update source is selected http://dnl-16.geo.kaspersky.com/
4/12/2009 22:43:34 File download... index/u0607g.xml.dif
4/12/2009 22:43:34 File download... index/u0607g.xml.klz
4/12/2009 22:43:34 File download... index/u0607g.xml
4/12/2009 22:43:35 Update files are corrupted http://dnl-16.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:35 Update source is selected http://dnl-11.geo.kaspersky.com/
4/12/2009 22:43:35 File download... index/u0607g.xml.dif
4/12/2009 22:43:35 File download... index/u0607g.xml.klz
4/12/2009 22:43:35 File download... index/u0607g.xml
4/12/2009 22:43:35 Update files are corrupted http://dnl-11.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:35 Update source is selected http://dnl-10.geo.kaspersky.com/
4/12/2009 22:43:35 File download... index/u0607g.xml.dif
4/12/2009 22:43:35 File download... index/u0607g.xml.klz
4/12/2009 22:43:36 File download... index/u0607g.xml
4/12/2009 22:43:36 Update files are corrupted http://dnl-10.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:36 Update source is selected http://dnl-18.geo.kaspersky.com/
4/12/2009 22:43:36 File download... index/u0607g.xml.dif
4/12/2009 22:43:36 File download... index/u0607g.xml.klz
4/12/2009 22:43:36 File download... index/u0607g.xml
4/12/2009 22:43:36 Update files are corrupted http://dnl-18.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:37 Update source is selected http://dnl-04.geo.kaspersky.com/
4/12/2009 22:43:37 File download... index/u0607g.xml.dif
4/12/2009 22:43:37 File download... index/u0607g.xml.klz
4/12/2009 22:43:37 File download... index/u0607g.xml
4/12/2009 22:43:37 Update files are corrupted http://dnl-04.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:37 Update source is selected http://dnl-14.geo.kaspersky.com/
4/12/2009 22:43:37 File download... index/u0607g.xml.dif
4/12/2009 22:43:37 File download... index/u0607g.xml.klz
4/12/2009 22:43:37 File download... index/u0607g.xml
4/12/2009 22:43:38 Update files are corrupted http://dnl-14.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:38 Update source is selected http://dnl-19.geo.kaspersky.com/
4/12/2009 22:43:38 File download... index/u0607g.xml.dif
4/12/2009 22:43:38 File download... index/u0607g.xml.klz
4/12/2009 22:43:38 File download... index/u0607g.xml
4/12/2009 22:43:38 Update files are corrupted http://dnl-19.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:38 Update source is selected http://dnl-13.geo.kaspersky.com/
4/12/2009 22:43:38 File download... index/u0607g.xml.dif
4/12/2009 22:43:39 File download... index/u0607g.xml.klz
4/12/2009 22:43:39 File download... index/u0607g.xml
4/12/2009 22:43:39 Update files are corrupted http://dnl-13.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:39 Update source is selected http://dnl-00.geo.kaspersky.com/
4/12/2009 22:43:39 File download... index/u0607g.xml.dif
4/12/2009 22:43:39 File download... index/u0607g.xml.klz
4/12/2009 22:43:39 File download... index/u0607g.xml
4/12/2009 22:43:39 Update files are corrupted http://dnl-00.geo.kaspersky.com/index/u0607g.xml
4/12/2009 22:43:40 Update source is selected ftp://downloads3.kaspersky-labs.com/
4/12/2009 22:43:40 File download... index/u0607g.xml.dif
4/12/2009 22:43:41 File download... index/u0607g.xml.klz
4/12/2009 22:43:42 File download... index/u0607g.xml
4/12/2009 22:43:43 FTP server authentication error ftp://downloads3.kaspersky-labs.com/index/u0607g.xml
4/12/2009 22:43:43 Task cannot be started FTP server authentication error

Bojim se da nećemo ništa moći, ako je log sada čist, ipak smo nešto uradili a ja ću potražiti na netu ako mogu da nađem šta bi moglo biti.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Koliko dugo vec ne radi update?
Ja sam sada proverio za KAV, ali KAV skida iz drugog foldera na serveru.
Pogledao sam na serveru, i ima velike razlike izmedju velicina fajlova koje tvoj KIS skida u odnosu na one koje KAV skida.

Vidi recimo ovde:
http://dnl-08.geo.kaspersky.com/index/
Tvoj KIS skida iz tog foldera, a KAV skida iz subfoldera 6 (vidi se u folderu na linku).
Nesto me tera da posumnjam da je greska do njih.