MyCity » Ambulanta -> Arhiva Ambulante » Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:0

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:0

Napisano na dan: 28.3.2009
1

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:0
Sledeća strana Pagination

Idi na vrh

Poslao: 28 Mar 2009 00:15
Idi na vrh
offline
  • Pridružio: 27 Mar 2009
  • Poruke: 202
  • Gde živiš: Sombor

Problem sa kompjuterom gasi se posle paljenja interneta



Poslao: 28 Mar 2009 00:28
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8652
  • Gde živiš: Novi Beograd

Zdravo,

Jesi li uspeo da skeniras sa HiJack This-om?



Poslao: 28 Mar 2009 00:36
Idi na vrh
offline
  • Pridružio: 27 Mar 2009
  • Poruke: 202
  • Gde živiš: Sombor

nerazumem pitanje.

Poslao: 28 Mar 2009 00:39
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8652
  • Gde živiš: Novi Beograd

Kako ne razumes pitanje?

U naslov teme si stavio ime programa sa kojim treba da skeniras. Gde je taj log?

Poslao: 28 Mar 2009 00:42
Idi na vrh
offline
  • Pridružio: 27 Mar 2009
  • Poruke: 202
  • Gde živiš: Sombor

a to ja sam nov u tome pa sam to slucajno stavio kao naslov

Poslao: 28 Mar 2009 00:43
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8652
  • Gde živiš: Novi Beograd

OK.

Onda idemo ispocetka, isprati uputstvo sa ovog linka:

[Link mogu videti samo ulogovani korisnici]

i postavi mi log ovde.

Poslao: 28 Mar 2009 00:45
Idi na vrh
offline
  • Pridružio: 27 Mar 2009
  • Poruke: 202
  • Gde živiš: Sombor

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:33:59, on 27.3.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
D:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Office Mouse Driver\MouseDrv.exe
C:\Program Files\Multimedia Keyboard Driver\PS2USBKbdDrv.exe
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
D:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
D:\Program Files\nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Administrator\Desktop\New Folder\ss.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [BtTray] "D:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [WireLessKeyboard] C:\Program Files\Multimedia Keyboard Driver\StartAutorun.exe PS2USBKbdDrv.exe
O4 - HKLM\..\Run: [WireLessMouse] C:\Program Files\Office Mouse Driver\StartAutorun.exe MouseDrv.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "D:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: APC UPS Status.lnk = ?
O8 - Extra context menu item: Send by Bluetooth - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleilCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - D:\Program Files\nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: NBService - Nero AG - D:\Program Files\nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

--
End of file - 4111 bytes
A kakve to veze ima sa mpjim problemom?

Poslao: 28 Mar 2009 00:49
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8652
  • Gde živiš: Novi Beograd

Ovako,

posto si postavio temu u Ambulanti, ja odmah pretpostavim da imas problema sa nekim virusom, trojancem... i radim analizu HiJack This loga.
Ukoliko vidim neke tragove, ili mi je nesto sumnjivo, radimo dalje, ukoliko nije uputim te negde drugde.

Sad, da li mozes malo bolje da mi objasnis tvoj problem?

Poslao: 28 Mar 2009 00:55
Idi na vrh
offline
  • Pridružio: 27 Mar 2009
  • Poruke: 202
  • Gde živiš: Sombor

Nedavno mi je crko net pa sam pokusao da reinstalisem modem,i posle toga nece da upali...pa sam srusio sistem i instalirao modem i sada nemogu na net duze od 20 min samo se resetuje.

Dopuna: 28 Mar 2009 0:55

Sta uopste radi taj program HiJack This?

Poslao: 28 Mar 2009 00:57
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8652
  • Gde živiš: Novi Beograd

Prikazuje aktivne procese....


Rekao bih da ti prekidi nemaju veze sa malwerom.

Jesi probao da kontaktiras tvog provajdera?


Ovde se nasa prica zavrsava, probaj da se javis u neki drugi forum, pa vidi sta ce ti reci.

MyCity » Ambulanta -> Arhiva Ambulante » Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:0

Ko je trenutno na forumu
 

Ukupno su 1228 korisnika na forumu :: 166 registrovanih, 16 sakrivenih i 1046 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 20624 - dana 04 Apr 2026 04:18

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 1MAP, 6footboy, A.R.Chafee.Jr., AirSremac, aleph_one, alternator, amstel, ArmFPGA, asdfjklc, AudioTehnica, Automaticar, babaroga, Bagration, berste23, bigfoot, Black Luster Soldier, blackjack, Bobrock1, bojan_t, bojanM84, bojcistv, Boris BM, boro975, BORUTUS, BOXRR, BraneS, brufen, Bubimir, carinko, CHARLIE JA., cifra, cinoeye, cptVLK, curiosity, cvrle312, cyprus, darcaud, Dare, dejan1972, Dekster, Demi87, Denaya, Dimitrije Paunovic, Dioniss, DJUNTA, Dogma21, drimer, dusan.l, Dzambas, DzigiNS, Electron, ElvisP, Ercomero, EXIT78, Fog of War, foka106, gasha, GazdaDjoka, Geran136, Glavni Oružni, GrammaticalAnalysis, Great White, Grochow, havoc995, igorkozar83, Iskander, ivanb, Jager715510, Jeremiah, Jozo74, Kajzer Soze, Klak94, kokodakalo, Kontrausluga, Krajišnik97, Krusarac, Kuroje, kybonacci, Lobo, MadMike, mainstream, Manjane, Marko00, Marko1238, marsi, Maschinekalibar, mat, MB120mm, mean_machine, medaTT, Metanoja, mexo, micke83, milos.cbr, milos97, mirkoro, mishkooo, mist-mist, Mićko, Mrav Obrad, Myamoto Musashi, nebojsag, Nemanja.M, nenooo, Neutral, nikola11, nnnnnnnnnn, ObicanUser, Ognjen D., OtacMakarije, Paklenica, Pale2025, peho_atropin, Permaldar, perunnurep, Pilence, Plavi Jadran, Prašinar, precan, pvjantar, radionica1, RajkoB, raketaš, royst33, ruma, S2M, samocitam, SamoGledam, Sawages, Sharpshooter, sickmouse, Sirius, Skakac7, skvara, Slingshot, snikolic, srbijaiznadsvega, Srle993, sslay, StankoVrankovic, strelac07, tanakadzo, TheDictator, theNedjeljko, Tristan_Bantam, trutcina, TRZH92, tubular, ujke, Vanderx, vathra, vazduh, Velja1715, vensla, vladulns, vobo, Volfero, VOŽD, x011, xAlex2, Yekaterinburg, Zadonbas, zexon, Zmaj Tolak, Đurđevdan, 79693