PC Ekspert Forum - View Single Post - (riješeno) Uklanjanje gamadi win32.tdss.rtk, virtumonde.dll, fraud.virusremover2009

Barny · 19.08.2009., 13:11

to i je njegov rezultat. našao je on još ponešto no samo to neće.

EDIT:

našao sam neki "wininit" ini. i unutra zapis :

[rename]
c:\tempjunk1956.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys
nul=c:\tempjunk6375.tmp
c:\tempjunk9540.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll
c:\tempjunk9914.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll
c:\tempjunk3937.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat
c:\tempjunk662.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat
c:\tempjunk739.tmp=C:\WINDOWS\system32\lowsec\local.ds
c:\tempjunk9450.tmp=C:\WINDOWS\system32\lowsec\user.ds
c:\tempjunk5889.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys
c:\tempjunk6927.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll
c:\tempjunk2367.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll
c:\tempjunk5031.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat
c:\tempjunk5218.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat
c:\tempjunk1664.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys
c:\tempjunk4787.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll
c:\tempjunk5075.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll
c:\tempjunk917.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat
c:\tempjunk3806.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat
c:\tempjunk5749.tmp=C:\WINDOWS\system32\zipfldr.dll
c:\tempjunk5161.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys
c:\tempjunk2570.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll
c:\tempjunk785.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll
c:\tempjunk2474.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat
c:\tempjunk4629.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat
c:\tempjunk9664.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys
c:\tempjunk8386.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll
c:\tempjunk3244.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll
c:\tempjunk6717.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat
c:\tempjunk6375.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat

ako to što pomaže

19.08.2009., 13:11	#9
Barny Banned Datum registracije: Feb 2007 Lokacija: Zagreb Postovi: 78	to i je njegov rezultat. našao je on još ponešto no samo to neće. EDIT: našao sam neki "wininit" ini. i unutra zapis : [rename] c:\tempjunk1956.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys nul=c:\tempjunk6375.tmp c:\tempjunk9540.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll c:\tempjunk9914.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll c:\tempjunk3937.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat c:\tempjunk662.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat c:\tempjunk739.tmp=C:\WINDOWS\system32\lowsec\local.ds c:\tempjunk9450.tmp=C:\WINDOWS\system32\lowsec\user.ds c:\tempjunk5889.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys c:\tempjunk6927.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll c:\tempjunk2367.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll c:\tempjunk5031.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat c:\tempjunk5218.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat c:\tempjunk1664.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys c:\tempjunk4787.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll c:\tempjunk5075.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll c:\tempjunk917.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat c:\tempjunk3806.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat c:\tempjunk5749.tmp=C:\WINDOWS\system32\zipfldr.dll c:\tempjunk5161.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys c:\tempjunk2570.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll c:\tempjunk785.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll c:\tempjunk2474.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat c:\tempjunk4629.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat c:\tempjunk9664.tmp=C:\WINDOWS\system32\drivers\geyekrmpjwpkka.sys c:\tempjunk8386.tmp=C:\WINDOWS\system32\geyekrwykmpskb.dll c:\tempjunk3244.tmp=C:\WINDOWS\system32\geyekrxnxuhrhh.dll c:\tempjunk6717.tmp=C:\WINDOWS\system32\geyekraqgrqodg.dat c:\tempjunk6375.tmp=C:\WINDOWS\system32\geyekrealqyxmt.dat ako to što pomaže Zadnje izmijenjeno od: domy_os. 20.08.2009. u 17:34.