Results 1 to 14 of 14

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    noir et blanc LeBlanc's Avatar
    Join Date: Apr:2005
    Location: Kingston
    Posts: 405

    Ìíîãî äåáèëåí ãàô ñ Ad-Watch

    Èñòîðèÿòà íà êðàòêî:Ñëåä èíñòàëèðàíåòî íà McAfee è ïîñëåäâàëîòî ðåñòàðòèðàíå-Ad-Watch ïîèñêà ðàçðåøåíèå çà äîñòúï â ðåãèñòðèòå.Äî òóê äîáðå.Ïîíåæå àç èçêàõ McAfee äà ìè å âòîðà àíòèâèðóñíà è íå èñêàõ äà ñå ñòàðòèðà àâòîìàòè÷íî îòêàçàõ äîñòúïà.Ïîñåëäâà çàáèâàíå,ïàê ðåñòàðò è ïàê...äîêàòî íàêðàÿ ñëåä äúëãî ÷àêàíå ñå îïðàâè è íàìåñòèõ íåøòàòà ñ McAfee.Îáà÷å íåçíàéíî îò êàäå çàïî÷íàõà äà èçíèêâàò ñúîáøòåíèÿ îò Ad Watch çà äîñòúï íà íÿêâè ñúìíèòåëíè ïðîãðàìè îêîëî 15 íà áðîé.Ïîíåæå íå áÿõ ñèãóðåí îòêàçàõ èì äîñòúï,êàòî ñè ìèñëåõ ÷å äîðè êàòî èì îòêàæà òå ïàê ùå ïîèñêàò ñëåäâàùèÿò ïúò.Íî íå áè.Ñúîòâòíèòå ïðîãðàìè ñå îêàçàõà ÿâíî íÿêàêâè ñèñòåìíè ïðîöåñè.Ïðè ïîñëåäâàëîòî ðåñòàðòèðàíå ñå ïîëó÷è òàêà ÷å ïðè çàðåæäàíå íà ñòàðò úïà ïèøå:Windows cannot open this program....ïîçíàòî íàëè?Íå ìîãàò äà ñå îòâàðÿò ïðåç Windows íèêîè .exeta îñâåí â ñèñòåì 32.Çà ñåãà ðàáîòÿ ïîä DOS.Âúïðîñúò ìè å:Êàêâè áèõà ìîãëè äà áúäàò ñïðÿíèòå îò ìåí ïðîöåñè,È êàê äà ãè âúñòàíîâÿ.Çà æàëîñò àç íå ìîãà äà ïðàâÿ ñèñòåì ðåñòîð è äà âëèçàì ïîä ñåéô ìîä çàùîòî êàòî íàòèñêàì F8 ìè ñå ïîÿâÿâà ñúâñåì äðóã ïðîçîðåö?!Àêî íÿêîé ðåøè äà ïîìîãíå ùå ñàì ðàäîñòåí.
    Ãîâîðèì çà Windows XP SP2,ASUS A7V880,AMI 1007.005 BIOS.
    Last edited by LeBlanc; 14th May 2005 at 08:54.

  2. #2
    Registered User
    Join Date: Sep:2003
    Location: ÀÅÖ/ÁÑëàòèíà/Ñîôèÿ
    Posts: 209
    Êàêúâ äðóã ïðîçîðåö òè ñå îòâàðÿ ?

  3. #3
    AlexKame AlexKame's Avatar
    Join Date: Mar:2005
    Location: Ñîôèÿ
    Posts: 311
    Quote Originally Posted by LeBlanc
    Windows cannot open this program....ïîçíàòî íàëè?Íå ìîãàò äà ñå îòâàðÿò ïðåç Windows íèêîè .exeta îñâåí â ñèñòåì 32.Çà ñåãà ðàáîòÿ ïîä DOS.
    Áðÿõ... òè è áðàóçúð çà DOS ëè èìàø?

  4. #4
    Banned
    Join Date: Jan:2004
    Location: Montreal
    Posts: 373
    Oò Ad Watch àç äîáðî äîñåãà íå ñüì âèäÿë íàïðîòèâ ñàìî íåïðèÿòíîñòè È 2 àíòèâèðóñíè ñüùî íå å äîáðà èäåÿ Àç òàêà è íåðàçáðàõ ìîæå ëè äà çàðåäè áîçàòà â ìîìåíòà,àêî íå ìîæåø äàæå è â ñåôå-ìîä(îïèòàè è ñ F5) ìèñëÿ ÷å îñâåí ðåïåð/ïðåèíñòàë äðóã èçáîð íÿìàø.
    Ad Watch çà äîñòúï íà íÿêâè ñúìíèòåëíè ïðîãðàìè îêîëî 15
    íå áåøå ëîøî êàòî èäåÿ äà èì êàæåø èìåíàòà.Àêî çàðåäèø ïî íÿêüâ íà÷èí óèíà âåäíàãà äåèíñòàë îò àää/ðåìîâå ïðîãðàì íà Àäàâàðå/ Àäàâà÷à è Ìàêêàôå,ðåñòàðò,÷èñòèø ðåãèñòðèòå ïàê ðåñòàðò è ïðàèø êâîòî ñè èñêàø íàòàòüê
    êàòî íàòèñêàì F8 ìè ñå ïîÿâÿâà ñúâñåì äðóã ïðîçîðåö
    êüâ å òîÿ äðóã ïðîçîðåö ?

  5. #5
    Registered User the professor's Avatar
    Join Date: Dec:2003
    Location: Âàðíà
    Posts: 355
    àç áÿõ ëåïíàë åäèí âèðóñ äåòî ñå áåøå àñîöèèðàë ñ ïîâå÷åòî ñòàðòèðàùè ñå ôàèëîâå è ô-ïðîòà ìè ãî îòêðè àìà íå ùåøå äà ãî òðèå ÷å áåøå çàðåäåí â ïàììåòòà è àç çåõ ÷å ãî çàòðó ïîä äîñ - ïîñëå ïî÷òè íèùî íå ìîãà äà ñòàðòèðàì ïðåèíñòàëèðàì âèíà è êàòî ñëèæèõ èï àäðåñ ïàê ñå ëåïíà âèðóñà è è òîÿ ïúò íàìåðèõ îáÿñíåíèÿ çà íåãî:
    Code:
    F - R O R O N
    --------------
    
    DISCLAIMER
    
    F-SECURE CORPORATION AND ITS PARTNERS ARE NOT RESPONSIBLE FOR ANY 
    DAMAGES RESULTED FROM THE USAGE OF THIS DISINFECTION UTILITY.
    
    YOU ARE USING THIS UTILITY ON YOUR OWN RISK.
    
    IT IS STRONGLY RECOMMENDED TO BACKUP ALL YOUR IMPORTANT DATA 
    BEFORE USING THIS DISINFECTION UTILITY.
    
    Roron worm is known to be able to delete all files from all hard 
    disk of an infected system in case it is being disinfected and 
    also when its internal counters reach certain values. The F-Roron 
    tool makes every effort to avoid payload activation by killing 
    all worm's active tasks prior to disinfection. However there can 
    be situations when the attempt to clean Roron worm might result 
    in payload activation. Such cases, however, are very rare. 
    Nevertheless it is recommended to backup all your data before 
    disinfection.
    
    --------------
    
    The F-Roron utility disinfects computers infected with Roron 
    (also known as Roro and Oror) worm. The following versions of 
    Roron worm are cleaned:
    
    I-Worm.Roron.4999.d
    I-Worm.Roron.497
    W32/Roro.P@mm (I-Worm.Roron.41)
    W32/Roro.AC@mm (I-Worm.Roron.4996)
    W32/Roro.Q@mm (I-Worm.Roron.4997)
    W32/Roro.Z@mm (I-Worm.Roron.4999.b)
    W32/Roro.X@mm (I-Worm.Roron.50)
    W32/Roro.AA@mm (I-Worm.Roron.51)
    W32/Roro.W@mm (I-Worm.Roron.53)
    W32/Roro.U@mm (I-Worm.Roron.50)
    W32/Roro.V@mm (I-Worm.Roron.4999.c)
    W32/Roro.AJ@mm (I-Worm.Roron.55.f)
    I-Worm.Roron.55.b
    W32/Roro.AH@mm (I-Worm.Roron.55.a)
    
    Disinfection procedure should be as follows:
    
    1. Unpack the F-Roron utility from the provided ZIP archive 
    either with WinZip or PkUnzip utilities. A trial version of 
    WinZip archiver can be downloaded from the following website:
    
    http://www.winzip.com/ddchomea.htm
                                       
    2. Run the unpacked F-Roron.exe file from a hard disk to 
    eliminate Roron worm infection. You can run the utility by either 
    doubleclicking on it from Windows Explorer or you can start it 
    from a command interpreter (COMMAND.COM or CMD.EXE) by typing its 
    name at command prompt and pressing 'Enter' (for advanced users).
    
    First the F-Roron utility will remove all network shares. Then it 
    will kill Roron worm's processes in memory. After that the 
    utility will scan your hard drive for infected files and delete 
    them. Then the Roron utility will restore vital Registry keys 
    changed by the worm. Finally all network shares will be restored.
    
    3. Reboot a system. After restart your system should be clean.
    
    If you have F-Secure Anti-Virus installed, the utility will 
    temporarily disable on-access scanner to be able to disinfect 
    your system. After the utility completes disinfection, it enables 
    on-access scanner.
    
    You can get a trial version of F-Secure Anti-Virus and the latest 
    updates for it from our website:
    
    http://www.europe.f-secure.com/download-purchase/
    http://www.europe.f-secure.com/download-purchase/updates.shtml
    
    
    IMPORTANT NOTES
    ---------------
    
    If during disinfection you get the following messagebox:
    
     Workstation is infected!
     Roron can not be removed!
    
    this means that there might be an unknown version of Roron worm 
    or another malicious program in your computer that the tool can 
    not clean. In this case please DO NOT RUN THE TOOL AGAIN - 
    contact our Anti-Virus Research Team (address is below). If you 
    use the tool again, there's a certain risk of Roron's payload 
    activation which will result in deletion of all files on all hard 
    disks.
    
    The F-Roron tool creates a log file called F-Roron.log in Windows 
    folder. The log is appended every time the tool is used. If you 
    have problems with the tool, please send its log file to our 
    Anti-Virus Research Team.
    
    The F-Roron can be run in silent mode. In this mode it will not 
    ask confirmation to run and will not show any messageboxes. You 
    can enable this mode by running the tool with /SILENT command 
    line option.
    
    If a computer with Windows NT, 2000 or XP system is being 
    disinfected, please log in as Administrator or as a user with 
    local admin rights, otherwise the F-Roron utility might not 
    disinfect the system correctly.
    
    If Roron infection is in a network environment, then the network 
    should be temporarily taken down before all workstations and 
    servers are disinfected. A single infected workstation can 
    re-infect already cleaned computers.
    
    If you have Windows ME or XP, it is recommended to disable System 
    Restore feature of these operating systems to prevent your 
    computer from re-infection with Roron worm. The fact is that 
    System Restore feature of these operating systems might save the 
    infected file into the special folder and copy it back to a hard 
    drive it every time it's been deleted by F-Roron utility. The 
    instructions on how to disable System Restore feature are here:
    
    Windows ME:
    http://www.europe.f-secure.com/v-descs/sfc_dis.shtml
    
    Windows XP:
    http://www.europe.f-secure.com/v-descs/sfc_dis1.shtml
    
    If you have any problems using this utility please contact our
    Anti-Virus Research Team on 'samples@f-secure.com' address.
    òðÿáâàëî ñ ðåìîâàë òóóë äà ãî ìàõíà è òóóë-à îïðàâÿë è àñîöèàöèèòå êúì ôàèëîâåòå ñëåä àêòî èç÷èñòè âèðóñ-à êîèòî ïîëçâà íÿêàêâà äóïêà âúâ âèíà è ñå êà÷âà áåç äà ïðàâÿ íèùî â íåòà...
    MS-7C51, YD3400C5FHBOX + Jonsbo CR-701 + AC P14 PWM-PST, 2x AX4U320038G16A-SB10, FSP-400PNF, ST4000VN008-2DR166, 42LB731V, TDA1553Q, VK 201B 4Ω + piezo speakers, Debian 11 + LXDE íà GP-GSTFS31256GTND, Jonsbo C2 + AC P14 PWM

  6. #6
    noir et blanc LeBlanc's Avatar
    Join Date: Apr:2005
    Location: Kingston
    Posts: 405

    Àìàí îò âèðóñè è ñëàáè àíòèâèðóñè

    Õà Õà ÕÀ!Êîëêî ñå íàêåôèõ.Çíà÷è òúïèÿ ïðîáëåì ñ Ad-Watch ãî îïðàâèõ ñ åäèí õóáàâ ïðåèíñòàë.Îáà÷å ñëåä êàòî ïî÷íàõ äà ñå ðàäâàì íà ÷èñòèÿ Âèí ñå ñëó÷è åäíà ïðåêðàñíà èñòîðèÿ!Çíà÷è ðåçãëåæäàì ñè àç èç ëîêàëíèòå ïöòà è ãëåäàì íåêâî ôëàø ôèëì÷å -Kurnikova strips.exe!È àç ñè âèêàì à êîëêî ÿêî ñà äà ñå íàêåôà ìàëêî è àç è ãî ïóñêàì.Èçïèñâà ìè íåøòî îò ñîðòà This file needs upper version of Windows...,Àìà àç ñúì óïîðèò è ãî ïóñêàì ïàê.(äà âìåòíà ÷å èìàì:NOD32-updated,Zone Alarm Pro4,Ad Aware 6.0updated,Spyware Doctor,Ad-Watch,Security Task Manager,jv16 power tools).È êàòî ãî ïóñêàì:1âî:Ad-watch íàäó ãàéäàòà-ñóìàòè òðåâîãè â Current version\run è â \software-ïî÷âàì äà áëîêèðâàì,áëîêèðâàì äîêàòî íàé ñåòíå òúïèÿ Watch âçå ÷å çàáè è ñå èçëêþ÷è.Âèðóñà ïî÷íà äà ñå èçïðàøòà ïî íåòà,õóáàâî ÷å çîí ëàðìàòà ïîíå òàì íÿìà ïðîïóñê.Àç âåäíàãà ñå óñåòèõ è ïóñêàì òàñê ìàíàãåðà è ãëåäàì 97%dangerous-íåêàâ ôàèë â ñèñòåì32,îòèâàì òàì è ãî äåëâàì è ðàçáèðà ñå íå äàâà,óáèâàì ïðîöåñà ïàê ãî äåëâàì òîé ïàê ñå ñúçäàâà ñ äðóãî èìå,äàâàì ñêàí ñ íîä32-íèùî,äàâàì ñ ad aware-íèùî,îòèâàì â regedit-òðèÿ,êàðàíòèðàì ïðîöåñà è òðèÿ çàðàçàòà âå÷å áåç ïðîáëåì,ìàõàì îñòàíàëè ðåãèñòðè ñ jv16 è íàé ñåòíå ìàëêî ñïîêîåí.Ðåñòàðòèðàì è:NTLDR not found press Ctrl+Alt+Del to restart!Ïîñëåäâà íîâà èñòàëàöèÿ è íà âñè÷êî îòãîðå îòêðèõ ÷å ñà ìè ïðååáàíè äðàèâàðèòå íà âèäåîòî(ïîíå ñàìî òîâà çà ñåãà) Èìà ñàìî åäíî çàêëþ÷åíèÿ :ÍÅ ÂßÐÂÀÉÒÅ ÍÅ ÍÈÊÎÃÎ,ÍÀÉ ÂÅ×Å ÍÀ ÀÍÒÈÂÈÓÑÀ!
    Last edited by LeBlanc; 15th May 2005 at 09:51.

  7. #7
    noir et blanc LeBlanc's Avatar
    Join Date: Apr:2005
    Location: Kingston
    Posts: 405
    À çà áðàóçåðà ïîä äîñ,èìàì ïðåäâèä ÷å âìåñòî äà êëèêíà íà IE.exe òðåáâà äà õîäÿ â äîñà è äà ïèøà C:\Progra~1\Intere~1\IEEXPLORE.exe

  8. #8
    Registered User the professor's Avatar
    Join Date: Dec:2003
    Location: Âàðíà
    Posts: 355
    çà àíòèâèðóñíèòå è ôàéåðóîëà ìîæå äà ïîãëåäíåø òóê:
    http://www.comexgroup.com/forums/ind...&f=19&t=20067&
    http://www.comexgroup.com/forums/ind...&f=19&t=19912&
    http://www.comexgroup.com/forums/ind...&f=19&t=17530&
    ïðîñòî òâîèòå è äâòå íå ñòðóâàò
    MS-7C51, YD3400C5FHBOX + Jonsbo CR-701 + AC P14 PWM-PST, 2x AX4U320038G16A-SB10, FSP-400PNF, ST4000VN008-2DR166, 42LB731V, TDA1553Q, VK 201B 4Ω + piezo speakers, Debian 11 + LXDE íà GP-GSTFS31256GTND, Jonsbo C2 + AC P14 PWM

  9. #9
    Wall-e delian's Avatar
    Join Date: May:2003
    Location: ::1
    Posts: 4,723
    Quote Originally Posted by LeBlanc
    ... ãëåäàì íåêâî ôëàø ôèëì÷å -Kurnikova strips.exe!È àç ñè âèêàì à êîëêî ÿêî ñà äà ñå íàêåôà ìàëêî è àç è ãî ïóñêàì...
    Quote Originally Posted by LeBlanc
    Àç ïðè âñåêè ñëó÷àé íå ñàì îò òåçè äåòî ñå ðîâÿò êàäåòî èì ïàäíå,íèòî äèðÿ èç íåêâè áúãàâè ñàéòîâå,íî ìèñëåõ ÷å ïîíå íà ëîêàëêàòà ìîãà äà âÿðâàì...
    Òè ñè åòàëîí çà ïîòðåáèòåë, íà êîéòî çàëàãàò ïèñà÷èòå íà âèðóñè.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Copyright © 1999-2011 Õàðäóåð ÁÃ. Âúçìîæíî å ñúäúðæàíèåòî íà òàçè ñòðàíèöà äà å îáåêò íà àâòîðñêè ïðàâà.
iskamPC.com | mobility.BG | Bloody's Techblog | Êðèïòîâàëóòè è ìàéíèíã | 3D Vision Blog | Ìàãàçèí çà åëåêòðîííè öèãàðè