NDIS.sys

[psycho92]

molim vas ako neko moze da mi objasno kakva je ovo greska i ako moze,kako da je uklonom.HVALA

 

[rime]

Gde se pojavljuje?

 

[psycho92]

e nemogu ti tacno reci,ali mislim da neki drajver spominje.
ako ponovo bude izbacio onda cu pogledati!

 

[psycho92]

ovo mi je izpisalo: DRIVE_IRQL_NOT_LESS_OR_EQUAL

 

[rime]

Probaj da reinstaliras drajvera za mreznu karticu.
U bios-u je iskljuci (ako je na maticnoj) deinstaliraj drajvere, skini nove sa interneta, instaliraj i ukljuci karticu u bios-u.

 

[Desko]

Uradi system restore, do datuma pre nego sto je to pocelo da iskace... Najednostavnije, da se ne bi zezali dalje

 

[psycho92]

e brate uradio sam sto si rekao ali i dalje izbacuje!

 

[Desko]

Znaci da se onda nesto trajno usralo... Ufff, zanimljiv problem... Pogledacu sta to znaci i recicu ti tancno sta treba da uradis...

 

[skokospa]

e brate uradio sam sto si rekao ali i dalje izbacuje!

u pitanju je virus virut i njegova podkomponenta

Protector.B​

Rootkit component that infects ndis.sys.
Installed as a driver.

Also downloads/installs additional components during boot.​

Hooks network traffic, and bypasses most software firewalls.

Usual filename C:\WINDOWS\system32\drivers\ndis.sys

preuzmi norman malware cleaner i u safe modu probaj da ocistis.ako ti ne uspe moraces da reinstaliras sistem jer je virus virut jedan od veoma teskih i opasnih te je kao takav veoma nezgodan za antiviruse da ga ociste jer sadrzi u svom sastavu jos ​

AdClicker.LLM

AdClicker.LLO
Agent.MMAX/MMKD
Agent.MMCZ/MMDA
FakeAlert.JZN
FakeAlert.HVU
MSNSpy.I
Protector.B
Refpron.R/S/T/U/V/W/X
W32/Rootkit.ASN
Smalldoor.EBCS
BAT/Smalltroj.MLI
SSDTHook.A
HTML/Virut.gen2
Wowpa.A
Overview of Protector.B rootkit
Protector.B is a rootkit component that ‘infects’ ndis.sys, and is typically installed by
Smalldoor.EBCS (reader_s.exe). When installed on the system, Protector.B will take
the original copy of ndis.sys, encrypt and append it to itself, and then overwrite the
original ndis.sys with the newly generated copy of itself. This means that when the
computer is booting, at the stage where Windows normally loads ndis.sys, the rootkit
component will be loaded. At this point, Protector.B will unpack and load the original
ndis.sys, hooking most APIs that it exports for the purpose of monitoring network
traffic. Protector.B hooks process creation in the kernel, so when services.exe is
executed, it will inject code into the process that can download and install additional
malware. Finally, the rootkit will hook a function in ntoskrnl.exe called IoCallDriver, so
when an I/O request is made to read ndis.sys, then the original clean copy is​

​

presented, thereby hiding the infection.​

Dakle probaj da ocistis mada bih ti ja savetovao da uradis bekap svega sto je vazno,reinstaliras sistem i promenis sve pasworde i sifre koje si koristio:dntknw:​

 

[psycho92]

uredu,ali meni ovu gresku izbaci vec kod novo instaliranog OS!ali hvala na savetu!!!