MyCity » Ambulanta -> Arhiva Ambulante » Trojanac

Trojanac

Napisano na dan: 9.9.2007

Trojanac
Sledeća strana Pagination

Idi na vrh

Poslao: 09 Sep 2007 18:25
Idi na vrh
offline
  • likk 
  • Novi MyCity građanin
  • Pridružio: 09 Sep 2007
  • Poruke: 2

Dugo nisam imao antivirus, pa kad mi se pojavio onaj virus sta li je koji gasi komp posle odredjenog vremena instalirao sam, avg, spywareterminator,adaware i posle i aviru. Svi su oni nasli poprilicno trojanaca i navodno ih popravili ali su se oni vracali. E danas sam formatirao particiju C, gde su mi jedino nalazili viruse, instalirao opet windows i aviru i spyware terminator. Posto mi je ukljucen anti virus guard kod avire sad mi opet stalno prijavljuje ovo:
Virus or unwanted program 'TR/Crypt.ULPM.Gen [TR/Crypt.ULPM.Gen]'
detected in file 'C:\WINDOWS\system32\it.exe.
ili neki msv.exe a tek sto sam instalirao windows.
Evo ga i hijackthis log:
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 6:25:47 PM, on 9/9/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\TIADSL~1\bin\win2k\tidslmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Marko\Desktop\hdz.exe

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [TIxDSL] C:\PROGRA~1\TIADSL~1\bin\win2k\tidslmon.exe
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-21-854245398-113007714-2146684067-1003\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{D3E20C77-56FB-4CE2-9EF6-F27F16B890E1}: NameServer = 80.74.160.14 80.74.160.35
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

Poslao: 09 Sep 2007 18:37
Idi na vrh
offline
  • Pridružio: 04 Sep 2003
  • Poruke: 24135
  • Gde živiš: Wien

Uz svu zelju da pomognemo, nema puno smisla cistiti racunar na kojem se nalazi XP sa Servis Pack 1 - verovatno ces se ponovo zaraziti cim se ponovo prikljucis na internet.
Prvo instaliraj service pack 2 za Windows XP, i neki firewall program, pa tek onda da pokusamo da ocistimo racunar.

Poslao: 09 Sep 2007 18:49
Idi na vrh
offline
  • likk 
  • Novi MyCity građanin
  • Pridružio: 09 Sep 2007
  • Poruke: 2

ok hvala, javljam se ako i tad bude bilo problema

MyCity » Ambulanta -> Arhiva Ambulante » Trojanac

Ko je trenutno na forumu
 

Ukupno su 1205 korisnika na forumu :: 40 registrovanih, 7 sakrivenih i 1158 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Boris90, cenejac111, cifra, cuculo, djboj, DPera, draganca, DragoslavS, Duh sa sekirom, Džordžino, esx66, janbo, Kibice, kolle.the.kid, Kubovac, laki_bb, Litostroton, loon123, maiden6657, mercedesamg, Mercury, Millennium, Milometer, Milos ZA, mrav pesadinac, proka89, Romibrat, stegonosa, studentbgd, Sumadija34, Tas011, Tragač, VJ, Vlad000, Vladko, voja64, vukovi, x9, šumar bk2