Results 1 to 10 of 10

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Registered User Gladiator6's Avatar
    Join Date: Mar:2006
    Location: Shumen
    Posts: 744

    Ëîãà ìè îò ñêàíèðàíåòî

    Åòî ãî Nemoga da go razbera kakwo da naprawq ?
    Logfile of HijackThis v1.99.1
    Scan saved at 10:05:48 AM, on 4/19/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Eset\nod32kui.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    C:\PROGRA~1\A4Tech\Keyboard\Ikeymain.exe
    C:\Program Files\FlashGet\flashget.exe
    C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
    C:\Program Files\cFosSpeed\cFosSpeed.exe
    C:\Program Files\Mousotron\Mousotron.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
    C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\cFosSpeed\spd.exe
    C:\windows\system32\CTsvcCDA.EXE
    C:\Program Files\Eset\nod32krn.exe
    C:\windows\system32\PnkBstrA.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\Program Files\Winamp\winamp.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    F:\VIRUS-HELP\hijackthis\myscan.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentV ersion\Internet Settings,ProxyServer = 193.204.60.95:3128
    R1 - HKCU\Software\Microsoft\Windows\CurrentV ersion\Internet Settings,ProxyOverride = *.local
    R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\tbu611\toolbaru.dll (file missing)
    O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - D:\Programs\FlashFXP\IEFlash.dll
    O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
    O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\tbu611\toolbaru.dll (file missing)
    O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O4 - HKLM\..\Run: [wdmon] C:\WINDOWS\wdmon.exe
    O4 - HKLM\..\Run: [vlc] C:\WINDOWS\vlc.exe
    O4 - HKLM\..\Run: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    O4 - HKLM\..\Run: [runsql] C:\WINDOWS\runsql.exe
    O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [iKeyWorks] C:\PROGRA~1\A4Tech\Keyboard\Ikeymain.exe
    O4 - HKLM\..\Run: [Flashget] C:\Program Files\FlashGet\flashget.exe /min
    O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe
    O4 - HKLM\..\RunServices: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O4 - HKCU\..\Run: [Mousotron] C:\Program Files\Mousotron\Mousotron.exe
    O4 - HKCU\..\RunServices: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
    O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
    O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
    O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
    O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
    O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
    O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
    O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {909AAEB6-C2CB-4AB5-A7BB-C33B72AB4BFB} - C:\WINDOWS\system32\shdocvw.dll (HKCU)
    O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
    O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
    O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.11) - http://gameadvisor.futuremark.com/global/msc311.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F045A F36-B4FA-45A8-A70F-7DF5C08C821F}: NameServer = 212.39.90.42,212.39.90.43
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
    O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Adobe Version Cue CS3 - Unknown owner - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe" -win32service (file missing)
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Autodata Limited License Service - Autodata Limited - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB 94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: cFosSpeed System Service (cFosSpeedS) - Unknown owner - C:\Program Files\cFosSpeed\spd.exe" -service (file missing)
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\windows\system32\CTsvcCDA.EXE
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
    O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

  2. #2
    Registered User
    Join Date: Dec:2005
    Location: yvr
    Posts: 5,167
    Ðåñòàðòèðàø â Safe Mode, ïóñêàø ïàê HiJackThis è ñëàãàù îòìåòêè íà ñëåäíèòå:
    O4 - HKLM\..\Run: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O4 - HKLM\..\Run: [vlc] C:\WINDOWS\vlc.exe
    O4 - HKLM\..\Run: [runsql] C:\WINDOWS\runsql.exe
    O4 - HKLM\..\RunServices: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O4 - HKCU\..\RunServices: [UpdateWin] C:\WINDOWS\system32\activedst.exe
    O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
    Íàòèñêàø FIX NOW.

    Îòâàðÿø windows explorer, ðàçðåøàâàø äà ñå âèæäàò ñèñòåìíèòå è ñêðèòèòå ôàéëîâå è èçòðèâàø ñëåäíèòå:

    C:\WINDOWS\system32\activedst.exe
    C:\WINDOWS\vlc.exe
    C:\WINDOWS\runsql.exe
    Ñëåä òîâà îòâàðÿø òàçè òåìà è êàðàø ïîäðåä îò 1 äî 7.
    http://www.hardwarebg.com/forum/showthread.php?t=91314

    Àêî ïàê èìàø ïðîáëåìè, íàïèøè êàêâè ñà, çàåäíî ñ ëîã îò íîâàòà âåðñèÿ íà HiJackThis.

    p.s. Nod- a òè èçêëþ÷åí ëè å? Àêî íå å, íàïðàâî ñå çàìèñëè äà ãî ðàçêàðàø è äà ñëîæèø íåùî ñâÿñòíî.

  3. #3
    Registered User Gladiator6's Avatar
    Join Date: Mar:2006
    Location: Shumen
    Posts: 744
    Quote Originally Posted by ilko View Post
    Ðåñòàðòèðàø â Safe Mode, ïóñêàø ïàê HiJackThis è ñëàãàù îòìåòêè íà ñëåäíèòå:
    Íàòèñêàø FIX NOW.

    Îòâàðÿø windows explorer, ðàçðåøàâàø äà ñå âèæäàò ñèñòåìíèòå è ñêðèòèòå ôàéëîâå è èçòðèâàø ñëåäíèòå:



    Ñëåä òîâà îòâàðÿø òàçè òåìà è êàðàø ïîäðåä îò 1 äî 7.
    http://www.hardwarebg.com/forum/showthread.php?t=91314

    Àêî ïàê èìàø ïðîáëåìè, íàïèøè êàêâè ñà, çàåäíî ñ ëîã îò íîâàòà âåðñèÿ íà HiJackThis.

    p.s. Nod- a òè èçêëþ÷åí ëè å? Àêî íå å, íàïðàâî ñå çàìèñëè äà ãî ðàçêàðàø è äà ñëîæèø íåùî ñâÿñòíî.

    Áëàãîäàðÿ .. ìèíàõ òåìàòà .. êàêâî äà ñëîæà íà ìÿñòîòî íà íîä ?

  4. #4
    Registered User
    Join Date: Dec:2005
    Location: yvr
    Posts: 5,167
    Kaspersky 6, 7, Avast, AVG....

  5. #5
    User evilution's Avatar
    Join Date: Oct:2004
    Location: Sofia
    Posts: 37,465
    Quote Originally Posted by ilko View Post
    Kaspersky 6, 7, Avast, AVG....
    Èìàø ëè âïå÷àòëåíèÿ îò Avira?
    Stability itself is nothing else than a more sluggish motiîn

  6. #6
    Registered User unlimited's Avatar
    Join Date: Jan:2008
    Location: Êþñòåíäèë
    Posts: 25
    Quote Originally Posted by ilko View Post
    Kaspersky 6, 7, Avast, AVG....
    Àêî èñêàòå äà íÿìàòå ïðîáëåìè ñ âèðóñè Kaspersky. Àêî ãî êîìáèíèðàòå ñ Vista íÿìà äà èìàòå íèêàêàâ ïðîáëåì. Çà ìåí äðóãè àíòè âèðóñíè íÿìà.
    ASUS M2N-SLI DELUX, AMD Athlon X2 6000+ SAPPHIRE HD 3850, 2x Corsair 2 GB DDR2-800

  7. #7
    Registered User
    Join Date: Dec:2005
    Location: yvr
    Posts: 5,167
    Íå ìíîãî. Ïðåäè âðåìå ñðàâíÿâàõ ðàçëè÷íè êàê ñå äúðæàò ñïðÿìî åäíà è ñúùà óåá ñòðàíèöà, ïóñêàùà ïðåç activex âñÿêàêâè áîêëóöè.
    Îíëàéí ñêàí íà íÿêîëêî îò ôàéëîâåòå, íà virustotal.com è virusscan.jotti.org, òàì áåçïëàòíàòà ìèñëÿ áåøå Avira çàñè÷àøå êàòî âèðóñè, à íà ìîÿòà âèðòóàëíà ìàøèíà- íå. Íèòî ðèàë-òàéì ñêåíåðà, íèòî ïðè ðú÷íî ñêàíèðàíå îò windows èëè PE, êàòî áåøå îáíîâåíà äî ïîñëåäíî.
    Îòäåëíî àíòèâèðóñíà, êîÿòî ïðè èíñòàëàöèÿ íå èñêà ðåñòàðò íåùî íå ìè ñå íðàâè. Òîâà îçíà÷àâà, ÷å äðàéâåðà é, êîéòî ïàçè ñàìàòà ïðîãðàìà å user-mode è ëåñíî ìîæå äà áúäå ñïðÿí, êàêòî è ñàìàòà çàùèòà îò ìàëêî ïî- ïå÷åí âèðóñ. Ìîæå ïðè ñëåäâàùè âåðñèè äà å ïðîìåíåíî.

  8. #8
    Registered User Gladiator6's Avatar
    Join Date: Mar:2006
    Location: Shumen
    Posts: 744
    Îòêúäå äà âçåìà key çà êàñïåðñêè ìîæå ëè íÿêîé äà ìè äàäå ëèíê ÷å ïðîáâàõ ñ 2 è íèùî íå ñòàâà.. Ìàõíàõ íîäà
    Last edited by Gladiator6; 22nd April 2008 at 10:25.

  9. #9
    Registered User
    Join Date: Dec:2005
    Location: yvr
    Posts: 5,167
    Òóê òàêúâ íÿìà äà ïîëó÷èø. Ïîãëåäíè ïðàâèëàòà íà ôîðóìà:
    1.12 1.12 Äà íå ñúçäàâà òåìè è ìíåíèÿ ñ ïðèçèâè ïðîòèâ äåéñòâàùîòî â ñòðàíàòà çàêîíîäàòåëñòâî, ñ ïîäáóäè êúì óáèéñòâî, íàðàíÿâàíå è èëè äðóãè ïðåñòúïëåíèÿ ñðåùó õîðà, æèâîòíè è ñîáñòâåíîñò, ëè÷íî èëè îáùåñòâåíî îïàñíè äåéñòâèÿ, ñ ðàñèñòêè èëè äèñêðèìèíàöèîíåí õàðàêòåð, ñ îñòúð ïîëèòè÷åñêè õàðàêòåð (ïðèçèâè íà äåéñòâàùè ïàðòèè è ãðóïèðîâêè), ñúäúðæàùè ðåêëàìà, èíôîðìàöèÿ çà íåëåãàëåí ñîôòóåð è/èëè êîäîâå çà ñúùèÿ, ïîðíîãðàôèÿ èëè ñöåíè íà íàñèëèå. Òåìè è ìíåíèÿ ñ òàêúâ çàìèñúë ùå áúäàò îòñòðàíÿâàíè îò ôîðóìà, à àâòîðèòå èì ùå áúäàò ñàíêöèîíèðàíè.

  10. #10
    Registered User Gladiator6's Avatar
    Join Date: Mar:2006
    Location: Shumen
    Posts: 744
    Quote Originally Posted by ilko View Post
    Òóê òàêúâ íÿìà äà ïîëó÷èø. Ïîãëåäíè ïðàâèëàòà íà ôîðóìà:
    Äà ïðàâ ñè... Áëàãîäàðÿ çà ïîìîùòà

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Copyright © 1999-2011 Õàðäóåð ÁÃ. Âúçìîæíî å ñúäúðæàíèåòî íà òàçè ñòðàíèöà äà å îáåêò íà àâòîðñêè ïðàâà.
iskamPC.com | mobility.BG | Bloody's Techblog | Êðèïòîâàëóòè è ìàéíèíã | 3D Vision Blog | Ìàãàçèí çà åëåêòðîííè öèãàðè