logovi govore drugacije.
kasperskom i pandom je ugasena aktivna protekcija. avast je ukljucen i radi.
BitDefender i avira nisu lepo uninstalirane.
iskoristi gore dati link...skloni sve,ostavi avast i onda vidi hoce li se sistem restartovati.
a sto se tice Combofix-a ..sve sto je on obrisao je malicioznog porekla.
Ja sam to dodatno proverio....evo sta je obrisao
Code:
2010-01-24 22:09:57 . 2010-01-24 22:09:57 2,048 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Service_TZKESOAZ.reg.dat
2010-01-24 22:09:57 . 2010-01-24 22:09:57 806 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Legacy_TZKESOAZ.reg.dat
2010-01-24 22:08:09 . 2010-01-24 22:08:09 0 ----a-w- C:\Qoobox\Quarantine\catchme.txt
2010-01-24 16:36:41 . 2010-01-24 16:36:41 482 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-PWRISOVM.reg.dat
2010-01-24 16:36:40 . 2010-01-24 16:36:40 650 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-AdobeUpdater.reg.dat
2010-01-24 16:36:38 . 2010-01-24 16:36:38 161 ----a-w- C:\Qoobox\Quarantine\Registry_backups\ShellExecuteHooks-{4F07DA45-8170-4859-9B5F-037EF2970034}.reg.dat
2010-01-24 16:35:31 . 2010-01-24 22:09:50 8,623 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2010-01-24 16:30:24 . 2010-01-24 22:07:21 102 ----a-w- C:\Qoobox\Quarantine\catchme.log
2009-11-19 19:36:17 . 2004-08-03 22:56:58 135,680 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\TASKMGR.COM.vir
2009-11-19 19:36:17 . 2004-08-03 22:56:56 146,432 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\REGEDIT.COM.vir
2002-12-28 18:13:56 . 2002-12-28 18:13:56 7,980 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\NTVBSvcW.tlb.vir
Combofix se po pravilu uninstalira ovako:
Start >> Run
Combofix /Uninstall
Ok
.............
ako nece ni tako obrisi ostatke Combofix-a rucno::
Obrisi sledece foldere:
C:\qoobox
C:\ComboFix
Iskljuci i zatim ponovo ukljuci System Restore:
http://forums.majorgeeks.com/showthread.php?t=31668
Citat:
1. Click Start
2. Right click Computer > Properties > Choose Advanced System Settings option in left menu listing.
3. Click System Protection tab
4. Then highlight the drive you wish to turn off System Restore and click Configure
5. Then choose Turn off system protection
6. Click Apply > OK
To re-enable follow steps 1 - 4 and then choose Restore system settings and previous versions of files > Apply and OK
To je to