MyCity » Ambulanta -> Arhiva Ambulante » nod 4 skenira viruse ali nece da ih brise

nod 4 skenira viruse ali nece da ih brise

Napisano na dan: 4.8.2010

nod 4 skenira viruse ali nece da ih brise

Sledeća strana

Pagination

Odgovori

bob92 Poslao: 04 Avg 2010 15:12 Idi na vrh
offline bob92 Novi MyCity građanin Pridružio: 04 Avg 2010 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 04 Avg 2010 15:11 imam nod 32 4.0.417.0 i 2 meseca imam neke viruse koje nadje kad pustim da skenira komp ti viruse ne moze da obrise i plave boje su .Onda sam skinuo malverbute i on mi naso 4 ili5 i stavio ih u karantin kad sam iso na kompletnu naso ni na d particiji oko 60 napada ili tako nestona sistem volume sve ih stavio u katranrin istto mi i nod naso i stavio ih u karanrin sad kad pustim ponovo nod nadje mi ih jos sta da radim Dopuna: 04 Avg 2010 15:12 evo od koraka 2 DDS (Ver_10-03-17.01) - NTFSx86 Run by Administrator at 14:43:41.64 on 03-Aug-10 Internet Explorer: 7.0.5730.13 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.366 [GMT 1:00] AV: ESET NOD32 Antivirus 4.0 On-access scanning enabled (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Winamp\Winampa.exe C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe C:\WINDOWS\system32\winsys2.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\878RMTMon.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\honestech\honestech TVR\scheduleTV.exe C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe C:\WINDOWS\878RMT.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Administrator\Desktop\dds.com ============== Pseudo HJT Report =============== uStart Page = [Link mogu videti samo ulogovani korisnici] uSearch Page = [Link mogu videti samo ulogovani korisnici] uSearch Bar = [Link mogu videti samo ulogovani korisnici] uDefault_Page_URL = [Link mogu videti samo ulogovani korisnici] uSearchMigratedDefaultURL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Connection Wizard,ShellNext = iexplore uSearchURL,(Default) = [Link mogu videti samo ulogovani korisnici] mSearchAssistant = [Link mogu videti samo ulogovani korisnici] mWinlogon: SfcDisable=-99 (0xffffff9d) BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe" uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [WinampAgent] "c:\program files\winamp\Winampa.exe" mRun: [NBKeyScan] "c:\program files\nero\nero 7\nero backitup\NBKeyScan.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [nwiz] nwiz.exe /install mRun: [SW20] c:\windows\system32\sw20.exe mRun: [SW24] c:\windows\system32\sw24.exe mRun: [WinSys2] c:\windows\system32\winsys2.exe mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [TV Card Remote Control Device Monitor] c:\windows\878RMTMon.exe mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.0\apps\apdproxy.exe" mRun: [<NO NAME>] mRun: [Sony Ericsson PC Suite] "c:\program files\sony ericsson\mobile2\application launcher\Application Launcher.exe" /startoptions mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe" mRun: [QuickTime Task] "c:\program files\k-lite codec pack\quicktime\qttask.exe" -atboottime mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N StartupFolder: c:\documents and settings\administrator\start menu\programs\startup\PowerReg Scheduler V3.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\schedu~1.lnk - c:\program files\honestech\honestech tvr\scheduleTV.exe uPolicies-explorer: NoResolveTrack = 1 (0x1) uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1) uPolicies-explorer: MemCheckBoxInRunDlg = 1 (0x1) uPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: MemCheckBoxInRunDlg = 1 (0x1) mPolicies-explorer: StartMenuFavorites = 0 (0x0) mPolicies-explorer: Start_ShowMyComputer = 1 (0x1) mPolicies-explorer: Start_ShowMyDocs = 1 (0x1) mPolicies-explorer: Start_ShowMyMusic = 0 (0x0) mPolicies-explorer: Start_ShowRun = 1 (0x1) mPolicies-explorer: Start_ShowSearch = 0 (0x0) mPolicies-system: DisableCAD = 1 (0x1) dPolicies-explorer: ForceClassicControlPanel = 1 (0x1) dPolicies-explorer: NoResolveTrack = 1 (0x1) dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1) dPolicies-explorer: MemCheckBoxInRunDlg = 1 (0x1) dPolicies-explorer: NoActiveDesktop = 1 (0x1) IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office11\EXCEL.EXE/3000 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office11\REFIEBAR.DLL AppInit_DLLs: prio.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\admini~1\applic~1\mozilla\firefox\profiles\01waesmt.default\ FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici] FF - plugin: c:\documents and settings\administrator\application data\facebook\npfbplugin_1_0_3.dll FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true); c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5); c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24); c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096); c:\program files\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45); c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5); c:\program files\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true); c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com"); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20); ============= SERVICES / DRIVERS =============== R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-3-19 107256] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-3-19 93848] R2 878TVCard;Bt878 TV Card - Video Capture;c:\windows\system32\drivers\Bt878.sys [2010-2-7 214692] R2 878TVTuner;Bt878 TV Card - TV Tuner;c:\windows\system32\drivers\BtTuner.sys [2010-2-7 12160] R2 878Xbar;Bt878 TV Card - Crossbar;c:\windows\system32\drivers\BtXbar.sys [2010-2-7 8704] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2009-3-19 731840] =============== Created Last 30 ================ 2010-08-02 20:49:48 0 d-----w- c:\docume~1\admini~1\applic~1\Malwarebytes 2010-08-02 20:49:35 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-08-02 20:49:33 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-08-02 20:49:33 0 d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-08-02 20:49:33 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes 2010-07-07 11:29:56 0 d-----w- c:\program files\Disc2Phone 2010-07-07 11:24:47 0 d-----w- c:\windows\system32\URTTemp ==================== Find3M ==================== ============= FINISH: 14:43:55.07 =============== [Link mogu videti samo ulogovani korisnici]

Profil

1l padr1n0 Poslao: 04 Avg 2010 15:26 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav i dobro dosao u Ambulantu MyCity foruma. Nisi ispratio dobro uputstvo za otvaranje teme. Potrebno je da postavis jos i GMER log-ove. -> [Link mogu videti samo ulogovani korisnici] Start -> Run -> %AppData%\Malwarebytes\Malwarebytes' Anti-Malware\Logs -> Enter Otvorice se prozor sa MBAM log-ovima. Okaci ih u sledecoj poruci opcijom Prikaci fajl. goran9888 (AMF Tim)

Profil

bob92 Poslao: 04 Avg 2010 15:35 Idi na vrh
offline bob92 Novi MyCity građanin Pridružio: 04 Avg 2010 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 04 Avg 2010 15:33 nece mi gmer skinem na desktop pocne skeniranje i zamrzne se ne moze nista da se uradi ne kompu.ja ga restartujem i pre pokazivanja mi pokaze nesto da nece ima 2 opcije jedna za nastavak druga neznam [Link mogu videti samo ulogovani korisnici] Dopuna: 04 Avg 2010 15:34 [Link mogu videti samo ulogovani korisnici] Dopuna: 04 Avg 2010 15:35 prvo je na brzu pretragu a drugo na kompletnu

Profil

1l padr1n0 Poslao: 04 Avg 2010 18:54 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 'Vako... Tvoj racunar je cist. U prilozenim log-ovima nema tragova malware-a. To sto ti NOD32 pokazuje je, da neke file-ove ne moze skenirati, jer su osteceni ili ih Windows koristi pa ih ne moze scan-irati. Uglavnom, nista bitno i ne trebas se opterecivati. Zato su obavestenja i plavom bojom obojena. Nod-ove detekcije bi bile obojene crvenom bojom. Pozdrav, goran9888 (AMF Tim)

Profil

bob92 Poslao: 04 Avg 2010 21:25 Idi na vrh
offline bob92 Novi MyCity građanin Pridružio: 04 Avg 2010 Poruke: 3	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! HVALA PUNOOOOOOOO LAKNULO MI JE DAL DA obrisem malver ili da nastavim da ga koristim i dal da pobrisem sto sam skidao za prvu poruku .Jos nesto nod mi je narandjasti trazi mi update windovsa dal da poslusam alegra sa elet securiti za update windovsa.

Profil

1l padr1n0 Poslao: 04 Avg 2010 21:38 Idi na vrh
offline 1l padr1n0 Anti Malware Fighter Rank 2 Pridružio: 02 Feb 2008 Poruke: 14018 Gde živiš: Nish	1Ovo se svidja korisniku: bob92 Registruj se da bi pohvalio/la poruku! Malwarebytes mozes ostaviti na racunaru. Koristices ga samo po potrebi. On u free verziji nema real-time zastitu tako da ne moze smetati AV-u. Znaci preporuka je da ostane tu gde jeste, da ga s'vremena na vreme update-ujes i scan-iras racunar. Sto se tice NOD32-a... Ukoliko ti je Windows legalan, izvrsi Update Windows-a i NOD32 ce pozeleneti. Predpostavljam da je to u pitanju. Ili pak tu opciju NOD32-a mozes iskljuciti (ukoliko ti smeta). Isprati sledeci link ukoliko zelis da vratis zelenu boju NOD32-u: -> [Link mogu videti samo ulogovani korisnici] Moja preporuka ti je da ukoliko nemas legalnu licencu za doticni AV, izberes i instaliras besplatnu alternativu (Avira, Avast, Panda Cloud, AVG, ...). To bi bilo to sto se tice ovog slucaja. Diskusiju u ovoj temi ovim post-om zavrsavamo. Pozdrav, goran988 (AMF Tim)

Profil

MyCity » Ambulanta -> Arhiva Ambulante » nod 4 skenira viruse ali nece da ih brise

Ko je trenutno na forumu

Ukupno su 1201 korisnika na forumu :: 17 registrovanih, 0 sakrivenih i 1184 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 15694 - dana 01 Feb 2026 12:23

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., crnirocko, draganl, ISOF, lcc, m94j, miso2709, Mićko, Mldo, opt1, sova72, Tas011, Tila Painen, UAV operator, VJ, Zastava, ZZZ

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by