Pomoć trebate savjet o dolasku voditi pop up!

[SgtBillcoJD]

Bok,

Nakon što su nedavno preuzeli program datoteku na moj računalo ja počinju da se nepregledna pop-up prozora i oglasa koji dolaze na moj kompjuter, kad na internetu. Imam uze prijatelje savjet i moj je dobio osloboditi od naknada virus softver i učitali Avast i pretplaćeni na koje sam pretplaćen na RegCure i XoftSpySE i Spybot Search i uništiti. Problem je počeo kada sam imao trojanskih učitan na datoteku s programom koji sam preuzeti (Trojan Vundo). Nakon što su stavili ove virus programima na sam uspio za uklanjanje trojanskih mislim i računalo je trčanje u redu, ali JA držati uzimajući na tim pop-up prozora i kada JA trčanje virus softver je dovesti više stvari, a ponekad i iste stvari kao i prije, ali ne i trojanskih Srećom. Svejedno hep i savjet bi bilo super. Oh pop-up blocker se do max, jedna pogreška na XoftSpySE je 'Internet Explorer firewall povrede', ali i uklanja vraća.

Pozdravi,

John.

[Wolfeymole]

Pozdrav John

Dobrodošli na TCF

Možete li nam reći što program je datoteka koju ste preuzeli?

[SgtBillcoJD]

Auto CAD 2008 moj program CD uništen od strane djece tako da je potrebna još jedna coppy kao što sam CD ilcence uzimahu savjet od drugarica da pogledamo minanova torrent očima moja krivnja: (navika biti događaj koji opet! Kao što sam rekao što se tiče Torent se ide to je uklonjena mislim ne vidješe ga na bilo koji od njegovih skeneri, ali opet su sve ostale stvari Kockanje ponude, Virus checker znamenitosti, Dating stvari i druge advertizing znamenitosti. Oni su se držati na poping kad sam posjetiti znamenitosti i sl.

[valis]

Pa, prije svega ćemo započeti na infekcije:

[font = Tahoma] Molimo Vas da to učinite:

Kliknite ovdje za preuzimanje HJThis.exe
Spremi HJTsetup.exe na Vašu radnu površinu.
Doubleclick na HJTsetup.exe ikonu na radnoj površini.
Po zadanom se instalirati na C: \ Program Files \ Hijack This.
Nastavi da kliknete na Next setup dijalog kutije, sve dok ne dođete do Select Additional Tasks dijaloga.
Put ček po Kreiraj ikonu Desktopa zatim kliknite Next ponovno.
Nastavite slijediti ostatak se potiču od tamo.
Na završnoj dijaloški okvir i kliknite Završi da će lansirati Hijack This.
Kliknite na Napravite sustav skenirati i spremanje logfile gumb. Ona će skenirati i log bi trebalo otvoriti u Notepad.
Kliknite na "Edit> Select All" onda kliknite na "Edit> Copy" kopirajte cijeli sadržaj zapisnik.
Dođi ovamo u ovaj thread i zalijepite prijaviti u vaš sljedeći odgovor.
Nemate Hijack To škripac išta još. Većina onoga što će se pronađe bezopasni ili čak obavezna.


Kasnije ćemo se baviti pravnim pitanjima od preuzimanja stvari od torrent siteova. Osim ako gazda reći ćemo nositi sa sobom prvo. :)

[Hybr! D]

Valis drugarica koji link ne radi.

RE: kabla

Tu je i fine line Mislim, sadašnja pravila ne dozvoljavaju raspravu o tome kako prevariti autorskom pravu, tako da je rasprava o tome kako koristiti kabla nije ok.

Ova tema je ok za sada, jer nije da prekoraccenja marku.

Ali na kraju dana ne koriste ilegalne file sharing networks, idite i kupite stvari koje želite, to je krađa.

[SgtBillcoJD]

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan spremljena u 20:01:56, dana 25/06/2007
Platforma: Windows XP SP2 (Winnt 5.01.2600)
Boot mode: Normal
Pokretanje procesa:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ System32 \ Svchost.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ IVT Corporation \ BlueSoleil \ BTNtService.exe
C: \ WINDOWS \ ATK0100 \ HControl.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ eHome \ ehRecvr.exe
C: \ WINDOWS \ ehome \ ehtray.exe
C: \ WINDOWS \ sm56hlpr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
C: \ WINDOWS \ stsystra.exe
C: \ Program Files \ ASUS \ ASUS Live Update \ ALU.exe
C: \ Program Files \ Wireless Console 2 \ wcourier.exe
C: \ Program Files \ ASUS \ ATK Media \ DMEDIA.EXE
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc.exe
C: \ Program Files \ ASUSTeK \ ASUSDVD \ PDVDServ.exe
C: \ Program Files \ ASUS \ Power4 Gear \ BatteryLife.exe
C: \ Program Files \ ASUS \ Splendid \ ACMON.exe
C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ EOUWiz.exe
C: \ Program Files \ Saitek \ Software \ Profiler.exe
C: \ Program Files \ Saitek \ Software \ SaiMfd.exe
C: \ WINDOWS \ system32 \ ACEngSvr.exe
C: \ programa ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Program Files \ Common Files \ ispred \ lib \ NMBgMonitor.exe
C: \ Corel \ Graphics8 \ Programs \ MFIndexer.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
C: \ WINDOWS \ eHome \ ehmsas.exe
C: \ WINDOWS \ system32 \ dllhost.exe
C: \ WINDOWS \ ATK0100 \ ATKOSD.exe
C: \ WINDOWS \ system32 \ acovcnt.exe
C: \ programa ~ 1 \ Intel \ Wireless \ Bin \ Dot1XCfg.exe
C: \ WINDOWS \ explorer.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
D: \ Programs Software \ Downloaded \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://google.co.uk/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://google.co.uk/
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = o: blank
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Local Page =
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, ShellNext = http://www.symantec.com/techsupp/ser...build=Symantec
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7,0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ programa ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O2 - BHO: (no name) - (5F492902-49E0-8A29-B81F-D312A60D9248) - (no file)
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: (no name) - (E7E9F57E-2947-40B1-9BBF-0896D19C092F) - C: \ DOCUME ~ 1 \ JOHN & S ~ 1 \ Mještani ~ 1 \ Temp \ ~ DP11.dll (file missing)
O2 - BHO: EpsonToolBandKicker Class - (E99421FB-68DD-40F0-B4AC-B7027CAE2F1A) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - (EE5D279F-081B-4404-994D-C6B60AAEBA6D) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-To-Page.dll
O4 - HKLM \ .. \ Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM \ .. \ Run: [ASUS Live Update] C: \ Program Files \ ASUS \ ASUS Live Update \ ALU.exe
O4 - HKLM \ .. \ Run: [Wireless Console 2] C: \ Program Files \ Wireless Console 2 \ wcourier.exe
O4 - HKLM \ .. \ Run: [ATKMEDIA] C: \ Program Files \ ASUS \ ATK Media \ DMEDIA.EXE
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [RemoteControl] "C: \ Program Files \ ASUSTeK \ ASUSDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [Power_Gear] C: \ Program Files \ ASUS \ Power4 Gear \ BatteryLife.exe 1
O4 - HKLM \ .. \ Run: [ACMON] C: \ Program Files \ ASUS \ Splendid \ ACMON.exe
O4 - HKLM \ .. \ Run: [IntelZeroConfig] "C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe"
O4 - HKLM \ .. \ Run: [IntelWireless] "C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe" / TF Intel PROSet / Bežični
O4 - HKLM \ .. \ Run: [EOUApp] "C: \ Program Files \ Intel \ Wireless \ Bin \ EOUWiz.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [Profiler] C: \ Program Files \ Saitek \ Software \ Profiler.exe
O4 - HKLM \ .. \ Run: [SaiMfd] C: \ Program Files \ Saitek \ Software \ SaiMfd.exe
O4 - HKLM \ .. \ Run: [avast!] C: \ programa ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ MsnMsgr.Exe" / background
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ ispred \ lib \ NMBgMonitor.exe"
O4 - HKCU \ .. \ Run: [BlazeServoTool] "C: \ Program Files \ BlazeVideo \ BlazeDTV2.1 \ MediaDetector.exe"
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7,0 \ Reader \ reader_sl.exe
O4 - Global Startup: BlueSoleil.lnk =?
O4 - Global Startup: Corel MEDIJI Direktorije INDEXER 8.LNK = C: \ Corel \ Graphics8 \ Programs \ MFIndexer.exe
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra 'Tools' MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL = http://www.asus.com
O16 - DPF: (02BF25D5-8C17-4B23-BC80-D3488ABDDC6B) (QuickTime Object) -- http://a1540.g.akamai.net/7/1540/52/...x/qtplugin.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (5D6F45B3-9043-443D-A792-115447494D24) (UnoCtrl Class) -- http://messenger.zone.msn.com/EN-US/.../GAME_UNO1.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsof...?1170844644718
O16 - DPF: (8D9563A9-8D5F-459B-87F2-BA842255CB9A) (kitovoj Client Components) -- https: / / myconnect.bbc.co.uk / InternalSite / WhlCompMgr.cab
O16 - DPF: (8E0D4DE5-3180-4024-A327-4DFAD1796A8D) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: (97E71027-0BA2-44F2-97DB-F84D808ED0B6) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary...t.cab55762.cab
O16 - DPF: (9CCE3B43-4DE0-4236-A84E-108CA848EE6A) (Webcam Control) -- http://webcamnow.com/fs5/ax/ActiveXWebCam.cab
O16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220313175592) (MSN Games - Installer) -- http://messenger.zone.msn.com/binary...o.cab55579.cab
O20 - Winlogon Obavijesti: mljjhfe - mljjhfe.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - (438755C2-A8BA-11D1-B96B-00A0C90312E1) - C: \ WINDOWS \ system32 \ browseui.dll
O22 - SharedTaskScheduler: Component Categories cache demon - (8C7461EF-2B13-11D2-BE35-3078302C2030) - C: \ WINDOWS \ system32 \ browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
O23 - Service: BlueSoleil sakrih Service - Unknown vlasnika - C: \ Program Files \ IVT Corporation \ BlueSoleil \ BTNtService.exe
O23 - Service: Intel (R) PROSet / Wireless Event Log (EvtEng) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
O23 - Service: Intel (R) PROSet / Wireless Registry Service (RegSrvc) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc.exe
O23 - Service: Intel (R) PROSet / wirelessom (S24EventMonitor) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
--
End of file - 9205 bytes

[valis]

hvala Dave i wolfey; će škripac za buduću uporabu.

sgt:

zatvorite sve prozore, uključujući Internet, otvoriti HJT, pokrenite 'obaviti samo sistem scan', smjestite kvačica pored sljedeće, kliknite "fix checked", ponovno podizanje sustava, i post novi log:

O2 - BHO: (no name) - (5F492902-49E0-8A29-B81F-D312A60D9248) - (no file)
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: (no name) - (E7E9F57E-2947-40B1-9BBF-0896D19C092F) - C: \ DOCUME ~ 1 \ JOHN & S ~ 1 \ Mještani ~ 1 \ Temp \ ~ DP11.dll (file missing)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O16 - DPF: (9CCE3B43-4DE0-4236-A84E-108CA848EE6A) (Webcam Control) -- http://webcamnow.com/fs5/ax/ActiveXWebCam.cab
O20 - Winlogon Obavijesti: mljjhfe - mljjhfe.dll (file missing)

Vi sigurno imali vundo; oni su svi napušteni. Dll datoteke lijevo od nje. Bez obzira, ponovno podizanje sustava i napisati novi dnevnik.

Hvala,

v

[SgtBillcoJD]

Ne brinite, rekao je očima nikada nije idući u biti koristi i moj takozvani drugarica ide da biste dobili riječ krmi kad sam ga vidjeti sutra.

Što se tiče moje program nisam našao bolji opiton i kupovne čitljiv disku!

Takvi prizori ne bi trebalo exsist!

Moja isprika, rekao je za napomenuti očima!

Računala su veliki krivulje učenja, tako da ja osobno Obrazovni naučila!

Jeste našli oči u pogledu zakonitosti uporabu ovih znamenitosti i potpuno razumijemo vaše bodova kao što sam nije bio svjestan 100%!

[Wolfeymole]

Mi svi naučiti vrijedne lekcije John ste naučili i jedan danas.
Obično bih imati zatvori ovaj post dolje i jedini razlog JA nije 'je zato što ste shvatili što trash torbariti ovim stranicama.

Sada stick sa Valis savjet i on će se pokušati njegove najbolje da dobijete natrag na stazu.

[SgtBillcoJD]

Manythanks Wolfey.