Author Topic: Win32:bprotect-d trj (Read 7043 times)

topic · « **Reply #15 on:** March 20, 2014, 12:00:09 AM »

now I again did boot time scan with avast and it's still same-6 infections,can't do anything with them but when I look in scan history it shows they are all moved to chest or repaired-action succesful,but when I turn boot time scan again all the same

.and they are all in... Acer\Windows\ TemporaryInternetFiles....please help!pomagaj....hvala.ty

magna86 · « **Reply #16 on:** March 20, 2014, 12:24:59 AM »

Hi,

1. Do not attach USB devices until I tell you so. We shall use MCShield tool for USB check/cleaning ...
--- ---
2. Same as before ... create FixList and run FRST by clicking on Fix button. You have instruction for creating and running FRST at the first page.

Code: [Select]

Start
Folder: C:\Windows\455F074C814E4520B69B5584BD90400C.TMP
C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\profiles\extensions\gophoto@gophoto.it.xpi
C:\Users\Acer\STOR_Win7_XP_11.1.0.1006.exe
FF Extension: No Name - C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2012-11-01]
FF Extension: GoPhotoIt - C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\profiles\extensions\gophoto@gophoto.it.xpi [2012-07-31]
HKU\S-1-5-21-93680539-1060710319-753579946-1000\...\MountPoints2: D - D:\AutoRun.exe
HKU\S-1-5-21-93680539-1060710319-753579946-1000\...\MountPoints2: E - E:\AutoRun.exe
CMD: DEL %TEMP%\*.* /F /S /Q
End

--- ---
3. We shall now scan and remove malware from USB devices using MCShield (domaci proizvod sa mycity.rs foruma)

Preuzmi MCShield sa sledeće adrese:

http://www.mcshield.net/download/MCShield-Setup.exe

Instaliraj MCShield i sačekaj da se završi uvodno skeniranje.
Kad se završi uvodno skeniranje, prikljuci sve USB memorijske uređaje redom u USB port i svaki zadrži u portu dok MCShield ne izbaci poruku da je skeniranje završeno. Ukoliko imaš više USB uređaja, zabeleži negde kojim su redom ubacivani.

Objašnjenje: U USB memorijske uređaje spadaju svi oni uređaji koji po priključivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uređaji itd.

Klik na Logs u MCShield Control Center i pod/za AllScans.txt klik na Save dugme. AllScans.txt izvestaj ce biti sacuvan na Desktop-u.

Postavi taj izvestaj na forum.

--- ---
4. At this point your PC should be clean. Just to confirm that, we will run zoek tool for that:

Preuzmi smeenk-ov zoek (

) sa ovog linka i sačuvaj ga na Desktop.
[size=9]Raspakuj arhivu u neki folder (uputstvo), a zatim:[/size]

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
[size=9]pričekaj da se alat startuje ...[/size]

Klikni na More Options dugme i stikliraj polje ispred sledece opcije:
Auto Clean
[size=9]Napomena: Stikliraj samo navedenu opciju, ostale opcije ne dirati ! ![/size]
Klikni na dugme i pričekaj da se skeniranje završi.
zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

[size=9]Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) [/size]

:arrow: Kopiraj sadrzaj tog loga u poruku.

topic · « **Reply #17 on:** March 20, 2014, 02:04:57 AM »

Hi!

I've done everything...here are the results-I split fixlog in two files(1,2) cause the file size is 761KB,the max.allowd size is about 500KB...I hope that results are ok?!
I'll run boot time scan with avast later,it needs more time to finish and I'll report that too...
thank's for the great help,Magna!hvala!

topic · « **Reply #18 on:** March 20, 2014, 02:06:13 AM »

and fixlog 2....

topic · « **Reply #19 on:** March 20, 2014, 03:54:59 AM »

BOOT TIME SCAN with AVAST went excellent-NO VIRUS FOUND(and went double faster than the last time!)

You've done very GREAT JOB Magna!thank you again!
I suppose that are and those other reports clear(fixlog,zoek,MCShield)?
jos jednom HVALA i pozdrav!

magna86 · « **Reply #20 on:** March 21, 2014, 07:09:17 AM »

This looks good. We shall use DelFix tool to remove and uninstall all used tool here.

• Sledeća procedura će implementirati završno čišćenje.

:arrow: Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

[size=10]Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.[/size]

topic · « **Reply #21 on:** March 21, 2014, 03:34:08 PM »

tnx Magna!
I've done it!
tnx again for the great help!
hvala!:)

magna86 · « **Reply #22 on:** March 21, 2014, 07:01:56 PM »

Nema na cemu.

Author Topic: Win32:bprotect-d trj (Read 7043 times)

topic

Re: Win32:bprotect-d trj

magna86

Re: Win32:bprotect-d trj

topic

Re: Win32:bprotect-d trj

topic

Re: Win32:bprotect-d trj

topic

Re: Win32:bprotect-d trj

magna86

Re: Win32:bprotect-d trj

topic

Re: Win32:bprotect-d trj

magna86

Re: Win32:bprotect-d trj