MyCity » Ambulanta -> Arhiva Ambulante » Nesto mi koristi net

Nesto mi koristi net

Napisano na dan: 12.11.2009

Nesto mi koristi net

Sledeća strana

Pagination

Odgovori

pr0ba Poslao: 12 Nov 2009 21:55 Idi na vrh
offline pr0ba Građanin Pridružio: 29 Sep 2008 Poruke: 39 Gde živiš: Sta te briga ?	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Znaci juce sam uspeo da izbrisem neki tr0jan koji se zvao ovako : `Trojan-Downloader.Win32.Agent.aloj` Mislim da sam ga izbrisao , bar se nadam i sve je onda bilo ok ali evo danas opet problem , nesto vuce sa neta , a ja nemam pojma sta , pogasio sam sve programe koji bi mogli da vuku nesto ali se i dalje to desava. Takodje u network connections mi se pojavili i nesto sto pre nisam imao : Ovde se vidi da nesto skida takodje , a kada kliknem disconnect veza se naravno prekida. Zanimljivo da nekada i nema toga sa slike pa mi nesto opet koristi net. Takodje da kazem da ne skida stalno neko kad mu se cefne. Ima li neke pomoci ? Hvala.

Profil

dr_Bora Poslao: 12 Nov 2009 22:09 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav... Isprati uputstvo i postavi nam ovde potrebne logove kako bi proverili da li je malware doista uklonjen: http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Profil

pr0ba Poslao: 13 Nov 2009 00:07 Idi na vrh
offline pr0ba Građanin Pridružio: 29 Sep 2008 Poruke: 39 Gde živiš: Sta te briga ?	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 12 Nov 2009 22:32 DDS (Ver_09-10-26.01) - NTFSx86 Run by Dule at 22:13:42.10 on 12/11/2009 Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_05 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1186 [GMT 1:00] ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\IC\Card Reader Driver v1.9e2\Disk_Monitor.exe C:\WINDOWS\SYSTEM32\SRPSKEY.EXE C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\AveDesk\AVEDESK.EXE C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\UpTime 2000\Uptime.exe C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\WINDOWS\system32\vmnat.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\Program Files\VMware\VMware Workstation\vmware-authd.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Windows Live\Messenger\wlcsdk.exe C:\Program Files\FlashGet\flashget.exe C:\Documents and Settings\Dule\Desktop\dds.scr ============== Pseudo HJT Report =============== uInternet Settings,ProxyOverride = local BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - c:\program files\orbitdownloader\orbitcth.dll BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_05\bin\ssv.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - c:\program files\orbitdownloader\GrabPro.dll uRun: [PC Suite Tray] "c:\program files\nokia\nokia pc suite 6\PCSuite.exe" -onlytray uRun: [DAEMON Tools Pro Agent] "c:\program files\daemon tools pro\DTProAgent.exe" uRun: [NVIDIA nTune] "c:\program files\nvidia corporation\ntune\nTuneCmd.exe" clear uRun: [AVEDESK] "c:\program files\avedesk\AVEDESK.EXE" uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [AdobeBridge] uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 7.0\avp.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [nwiz] nwiz.exe /install mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [Disk Monitor] c:\program files\ic\card reader driver v1.9e2\Disk_Monitor.exe mRun: [NBKeyScan] "c:\program files\nero\nero 7\nero backitup\NBKeyScan.exe" mRun: [srpskey] c:\windows\system32\SRPSKEY.EXE mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime dRunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 StartupFolder: c:\docume~1\dule\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe StartupFolder: c:\docume~1\dule\startm~1\programs\startup\shortc~1.lnk - c:\program files\uptime 2000\Uptime.exe IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm IE: &Download by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/201 IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm IE: &Grab video by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/204 IE: Add to Anti-Banner - c:\program files\kaspersky lab\kaspersky internet security 7.0\ie_banner_deny.htm IE: Do&wnload selected by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/203 IE: Down&load all by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/202 IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000 IE: Easy-WebPrint Add To Print List - c:\program files\canon\easy-webprint\Resource.dll/RC_AddToList.html IE: Easy-WebPrint High Speed Print - c:\program files\canon\easy-webprint\Resource.dll/RC_HSPrint.html IE: Easy-WebPrint Preview - c:\program files\canon\easy-webprint\Resource.dll/RC_Preview.html IE: Easy-WebPrint Print - c:\program files\canon\easy-webprint\Resource.dll/RC_Print.html IE: Open using &Advanced JPEG Compressor - c:\program files\advanced jpeg compressor\ajcieex.htm IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky internet security 7.0\SCIEPlgn.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll LSP: c:\program files\vmware\vmware workstation\vsocklib.dll DPF: {7A953F4A-841C-4A4C-A7C1-40566070ECC2} - hxxp://sit.sezampro.rs/includes/DigitalkSIPCab.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab TCP: {C907C1F8-8569-465A-A64F-95DA2F95A5A8} = 77.105.0.18,77.105.0.19 Handler: ic32pp - {BBCA9F81-8F4F-11D2-90FF-0080C83D3571} - c:\windows\wc98pp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: klogon - c:\windows\system32\klogon.dll AppInit_DLLs: c:\progra~1\kasper~1\kasper~1.0\adialhk.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\dule\applic~1\mozilla\firefox\profiles\ngsbpfua.default\ FF - plugin: c:\program files\mozilla firefox\plugins\npViewpoint.dll FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); ============= SERVICES / DRIVERS =============== R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2009-9-19 24652] R2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [2009-3-26 54960] R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2008-5-12 38656] R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2007-4-4 24344] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\magix\common\database\bin\fbserver.exe [2009-3-1 1527900] S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-14 34448] =============== Created Last 30 ================ 2009-11-12 17:41:53 0 d-----w- c:\program files\Lavasoft 2009-11-12 16:40:12 0 d-----w- c:\program files\a-squared Free 2009-11-11 20:22:04 0 d-----w- c:\docume~1\alluse~1\applic~1\Hagel Technologies 2009-11-11 20:09:35 0 d-----w- c:\program files\DU Meter 2009-11-11 03:42:47 0 d-----w- c:\program files\DVDlabPro2 2009-11-11 00:27:24 459 ----a-w- c:\windows\IfoEdit.INI 2009-11-07 22:14:08 0 d-----w- c:\program files\common files\SWF Studio 2009-10-14 20:05:10 0 d-----w- c:\program files\Debugging Tools for Windows (x86) ==================== Find3M ==================== 3427-09-25 21:40:30 58480 ----a-w- c:\windows\fonts\LBLACK.TTF 2009-11-12 21:13:43 580640 --sha-w- c:\windows\system32\drivers\fidbox.dat 2009-11-12 21:09:37 9781280 --sha-w- c:\windows\system32\drivers\fidbox2.dat 2009-11-12 19:49:19 32 --sha-w- c:\windows\system32\drivers\fidbox.idx 2009-11-12 19:05:07 924188 --sha-w- c:\windows\system32\drivers\fidbox2.idx 2009-10-14 16:05:10 95259 ----a-w- c:\windows\system32\drivers\klick.dat 2009-10-14 16:05:10 108059 ----a-w- c:\windows\system32\drivers\klin.dat 2009-09-15 22:38:24 23552 ----a-w- c:\windows\system32\dmserver.dll 2008-07-15 22:09:24 2003456 ----a-w- c:\program files\common files\Boris RED.msi 2006-05-03 09:06:54 163328 --sh--r- c:\windows\system32\flvDX.dll 2007-02-21 10:47:16 31232 --sh--r- c:\windows\system32\msfDX.dll 2007-12-17 12:43:00 27648 --sh--w- c:\windows\system32\Smab0.dll 2009-07-12 07:12:16 16384 --sha-w- c:\windows\system32\config\systemprofile\cookies\index.dat 2009-07-12 07:12:16 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\index.dat 2008-05-12 02:20:30 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008051220080513\index.dat 2009-07-12 07:12:16 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\index.dat ============= FINISH: 22:14:12.23 =============== mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png Dopuna: 13 Nov 2009 0:07 Ako nije problem da dodam jos nesto : `http://forums.techarena.in/security-home-users/585196.htm` Sve sa ove strane je generalno sto se i meni desava i pre i posle brisanja virusa. Da li to nekako moze da se iskljuci posto sam siguran da se to pre nije desavalo.

Profil

Bogdan-Tc Poslao: 13 Nov 2009 13:01 Idi na vrh
offline Bogdan-Tc Anti Malware Fighter Rank 1 Pridružio: 04 Jan 2009 Poruke: 2168	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav. Logovi su čisti, AV je uklonio što je bilo potrebno da se ukloni, tako da vezano za to što ti predstavlja problem možeš pitati u Windows podforumu. http://www.mycity.rs/Windows/

Profil

pr0ba Poslao: 13 Nov 2009 19:29 Idi na vrh
offline pr0ba Građanin Pridružio: 29 Sep 2008 Poruke: 39 Gde živiš: Sta te briga ?	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala mnogo na proveri

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Nesto mi koristi net

Ko je trenutno na forumu

Ukupno su 1147 korisnika na forumu :: 43 registrovanih, 5 sakrivenih i 1099 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., babaroga, Bane san, bokisha253, Dimitrije Paunovic, Djokislav, Djokkinen, djordje92sm, draganca, dragoljub11987, GhostOfSparta480, kikisp, kljift, Koridor, Kubovac, kybonacci, Litostroton, ljuba, loon123, lord sir giga, Lošmi, mačković, mnn2, Nemanjasrb, nikoladim, novator, Oscar, ostoja, Parker, Primus17, procesor, radionica1, shone34, Sirius, SR-3m, srbijaiznadsvega, suton, Tandrkalo, Tvrtko I, voja64, yrraf, zastavnik, Zmaj Tolak

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by