manji kapital -

Magazine
Go Back   Computer soka > Computer Software > Virus, Spyware i sigurnost
Reload this Page

Iexplorer.exe virus

Registracija Mapa Spy Member List Donacije Pretraživanje Today's Posts Označi Sve Forume Kao Pročitane Forum Rules

Register


 Default 

Iexplorer.exe virus




Reply
 
Thread Tools
  #1  
Old 25 ožujak 2008, 10:06
Novi član grupe
  
Default Iexplorer.exe virus

Bok,
Primijetio sam pop-up prozore započela popping up gotovo svaki par minuta na moj računalo. Zamijetio sam u zadatak menadžera da postoje tri najčešće iexplorer.exe otvorenih zadataka u svakom trenutku. Pokušao sam nekoliko anti-virus i anti-spyware programa i ništa ne čini da biste dobili osloboditi od njega. JA pravedan je uzeo zapisnik sa kidnapovati ovo ...... može bilo tko pomoć?

Thanks so much!

Logfile of Trend Micro HijackThis v2.0.2
Scan spremljena u 1:10:32 Na 3/25/2008
Platforma: Windows XP SP2 (Winnt 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Pokretanje procesa:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ System32 \ Svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ VScan \ EngineServer.exe
C: \ WINDOWS \ System32 \ Svchost.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtSvc.exe
C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBCFMonitorService.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Program Files \ glediąta \ Common \ ViewpointService.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ programa ~ 1 \ McAfee \ upravljati ~ 1 \ VScan \ McShield.exe
C: \ WINDOWS \ explorer.exe
C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe
C: \ Program Files \ Common Files \ InstallShield \ UpdateService \ issch.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3,0 \ Apps \ apdproxy.exe
C: \ Program Files \ Brother \ ControlCenter2 \ brctrcen.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtTry.exe
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Program Files \ Internet Explorer \ IEXPLORE.EXE
C: \ Program Files \ Internet Explorer \ IEXPLORE.EXE
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Uniblue \ RegistryBooster 2 \ RegistryBooster.exe
C: \ Program Files \ DNA \ btdna.exe
C: \ Program Files \ Microsoft Outlook \ OFFICE11 \ OUTLOOK.EXE
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ UpdDlg.exe
C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ Windows Communication Foundation \ infocard.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://companyweb/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://Companyweb
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7,0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O4 - HKLM \ .. \ Run: [DVDLauncher] "C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe"
O4 - HKLM \ .. \ Run: [ISUSPM Startup] C: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ instaliranjem ~ 1 \ UPDATE ~ 1 \ ISUSPM.exe-početni
O4 - HKLM \ .. \ Run: [ISUSScheduler] "C: \ Program Files \ Common Files \ InstallShield \ UpdateService \ issch.exe" start
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [Sinkronizacija Manager]% SystemRoot% \ system32 \ mobsync.exe / prijava
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3,0 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [ControlCenter2.0] C: \ Program Files \ Brother \ ControlCenter2 \ brctrcen.exe / autorun
O4 - HKLM \ .. \ Run: [MVS uprskati] "C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ Splash.exe"
O4 - HKLM \ .. \ Run: [McAfee Managed Services Trake] "C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ StartMyagtTry.exe"
O4 - HKLM \ .. \ Run: [Windows Defender] "C: \ Program Files \ Windows Defender \ MSASCui.exe"-hide
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [MATH LI POČETNA MODE] C: \ Documents and Settings \ All Users \ Application Data \ živjeti 64 math ne \ amen tray.exe
O4 - HKCU \ .. \ Run: [Roadsite] C: \ DOCUME ~ 1 \ ron \ APPLIC ~ 1 \ Učitaj ~ 1 \ surfati mpeg stop.exe
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster 2] C: \ Program Files \ Uniblue \ RegistryBooster 2 \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster2] C: \ Program Files \ Uniblue \ RegistryBooster 2 \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "C: \ Program Files \ DNA \ btdna.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7,0 \ Reader \ reader_sl.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBUpdate \ qbupdate.exe
O4 - Global Startup: Wallpaper.lnk = C: \ Tapete \ Bginfo.exe
O8 - Extra kontekst meni stavka: E & zvezi u Microsoft Excel - res: / / C: \ programa ~ 1 \ MICROS ~ 3 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ programa ~ 1 \ MICROS ~ 3 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL = http://Companyweb
O16 - DPF: (01A88BB1-1174-41EC-ACCB-963509EAE56B) (SysProWmi Class) -- http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: (02BF25D5-8C17-4B23-BC80-D3488ABDDC6B) (QuickTime Object) -- http://a1540.g.akamai.net/7/1540/52/...x/qtplugin.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (3BA3B159-7533-4F96-A2CE-EE5894BBD3D5) (Scanner.SysScanner) -- http://i.dell.com/images/global/js/s...SYSSCANNER.cab
O16 - DPF: (406B5949-7190-4245-91A9-30A17DE16AD0) (Snapfish Activia) -- http://photos.walmart.com/WalmartActivia.cab
O16 - DPF: (40C83AF8-FEA7-4A6A-A470-431EE84A0886) (SecureObjectFactory Class) -- http://vs.mcafeeasap.com/MC/ENU/VS40...0504175614.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://bl108fd.blu108.hotmail.msn.co...s/MsnPUpld.cab
O16 - DPF: (5C6698D9-7BE4-4122-8EC5-291D84DBD4A0) -- http://upload.facebook.com/controls/...oUploader2.cab
O16 - DPF: (5C86F808-EDD2-4E5D-9C4F-E0D1ADA859AF) (Web Konferencijski) -- http://server.mymeetingcentral.com/join_a.cab
O16 - DPF: (5F8469B4-B055-49DD-83F7-62B522420ECC) (Facebook Foto Uploader Control) -- http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsof...?1149363255347
O16 - DPF: (7584C670-2274-4EFB-B00B-D6AABA6D3850) (Microsoft Terminal Services Client Control (redist)) -- http://safari-fs/tsweb/msrdp.cab
O16 - DPF: (B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD) (TSEasyInstallX Control) -- http://www.trendsecure.com/easy_inst...syInstallX.CAB
O16 - DPF: (E06E2E99-0AA1-11D4-ABA6-0060082AA75C) (GpcContainer Class) -- https: / / ere.webex.com/client/T25L10N...nt/ieatgpc.cab
O17 - HKLM \ System \ CCS \ Services \ TCPIP \ Parameters: Domain = safari.local
O17 - HKLM \ Software \ .. \ telefonija: domene = safari.local
O17 - HKLM \ System \ CS1 \ Services \ TCPIP \ Parameters: Domain = safari.local
O23 - Service: ati brza tipka Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: EngineServer - McAfee, Inc - C: \ Program Files \ McAfee \ Managed VirusScan \ VScan \ EngineServer.exe
O23 - Service: McShield - McAfee, Inc - C: \ programa ~ 1 \ McAfee \ upravljati ~ 1 \ VScan \ McShield.exe
O23 - Service: McAfee Virus i Spyware Protection Service (myAgtSvc) - McAfee, Inc - C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtSvc.exe
O23 - Service: QuickBooks Database Manager Service (QBCFMonitorService) - Intuit - C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBCFMonitorService.exe
O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc - C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ FCS \ Intuit.QuickBooks.FCS. exe
O23 - Service: glediąta Manager Service - vidikovac Corporation - C: \ Program Files \ glediąta \ Common \ ViewpointService.exe
--
End of file - 9346 bytes
  #2  
Old 25 ožujak 2008, 10:27
Donatorska Grupa
  
Default Iexplorer.exe virus

Vi samo trebate 1 protu-virus i spyware programa drugih mudri oni svibanj sukobu, imate vatrozid? onu koja može blokirati oba ulazni i odlaznih? ako ne mogu naci link za COMODO jako dobar free firewall. Spyware i što imate? ja je aktivni pop up za 3 mjeseca da Spybot S & D sortirane out.
  #3  
Old 25 ožujak 2008, 10:31
Novi član grupe
  
Default Iexplorer.exe virus

Pa, ovo je moj rad računala. Imamo McAfee. Pokušao sam skinuti i Spybot Search & Destroy, avg spyware, AVG Anti-virus, registra blocker, i neke druge ne mogu sjetiti. Ništa svaku dolazi do kada sam skenira računalo s njima, on uvijek kaže sve clean.This je odlazeći na za nekoliko mjeseci.
  #4  
Old 25 ožujak 2008, 10:32
Administrator Group
  
Default Iexplorer.exe virus

Kanoakavirus.

Dozvolite mi da bi se ova jasna.

Imamo stručne uklanjanje zlonamjernih programa u proceduru ovdje CJ.

Ukoliko nemate želju da slijede ga onda ostati izvan tih tema.

Hvala.
__________________

My System: Hybr! D

Procesor (i):
AMD Turion 64 x2 TL-64 2.2GHz
Matične ploče:
HP nForce 560
RAM memorija:
2GB DDR2 PC2-5300
Grafička kartica (e):
Nvidia 7150M Onboard Integrirane
Sound Card:
5,1 Onboard Integrirane
Tvrdi disk (i):
250GB 5400RPM SATA300
Optički pogon (e):
18x CD / DVDRW DL-ATA
Case / PSU:
Stock HP
Hlađenje:
Stock HP
Network / Internet:
10/100 NIC / 10MB Djevice Cable
Monitor (e):
17 "WXGA + BrightView HD Široki zaslon
Operacijski sustav (e):
Windows 7 Ultimate 32Bit
  #5  
Old 25 ožujak 2008, 10:34
Donatorska Grupa
  
Default Iexplorer.exe virus

U redu.
  #6  
Old 25 ožujak 2008, 10:55
Moderator / ica grupe
  
Default Iexplorer.exe virus

Download NoLop na Vašu radnu površinu s jednog od linkova ispod ...
  • Zatvori imate bilo kakve programe prikazuju jer je potrebno ponovno pokrenuti
  • Dvaput kliknite na NoLop.exe da ga
  • Zatim kliknite na gumb s oznakom: Pretraživanje i uništiti
    • Vaše računalo sada će biti skenirani za zaražene datoteke
  • Kada se skeniranje završi, ako je zaraženo, od vas će se tražiti da ponovno pokrenete
  • Kliknite OK
  • Sada kliknite na: Reboot
  • Poruka trebali popup iz NoLop. Ako ne, Dvoklik program opet i ona će završiti.
  • Post sadržaj C: \ NoLop.log u sljedećem odgovoru.
Napomena: Ako primate pogrešku ", mscomctl.ocx ili jedan od njegovih zavisnosti nisu ispravno registrirani, molimo preuzmite mscomctl.ocx na svoj system32 mapu onda ponovi program.

----------

Imate Vidikovac instaliran.

Glediąta Media Player / Manager / Toolbara se smatra foistware umjesto zlonamjernih programa budući da je instalirati bez odobrenja korisnika, ali ne špijun ili ništa učiniti "loš". Vidi Vidikovac na poniranje u adware

Predlaže se da biste uklonili program sada.
Idi na Start> Postavke> Upravljačka ploča> Dodaj / Ukloni programe i uklanjanje sljedeće programe, ako je prisutan.
  • Vidikovac
  • Glediąta Manager
  • Glediąta Media Player
  • Glediąta Toolbar
  • Iskustvo glediąta Tehnologija
Ako imate poteškoća s uklanjanjem vidikovac, ja predlažemo da koristite ViewpointKiller

Nakon što ste preuzeli ViewpointKiller, otvoriti rajsfešlus ga u prikladne lokacije, kao što su svoju radnu površinu.
Pokreni ViewpointKiller, a zatim odaberite File> učiniti sve Ubojstva
Slijedite upute, odabirom Da ili Ne, Ovisno o tome koja vam se najviše selekcija zadovoljni.

----------

Preimenuj Hijackthis i pokrenuti novi post skandirati tada kao da se prijavite.
  • Idi na C: \ Program Files \ Trend Micro \HijackThis.exe
  • Desnom tipkom miša kliknite na HijackThis.exe i odaberite Preimenovanje.
  • Upišite sniper.exe i pritisnite Enter.
  • Desnom tipkom miša kliknite na sniper.exe i odaberite Pošalji na > Desktop (stvoriti prečac)
Iako smo Preimenovali Hijackthis da snajper, mi ćemo i dalje se odnosi na to kako je Hijackthis ili HJT.

----------

Next post molimo dodaj
Ne landarati log
Novi Hijackthis log
__________________
  #7  
Old 25 ožujak 2008, 11:57
Novi član grupe
  
Default Iexplorer.exe virus

Prijavite NoLop:

NoLop! Prijavite by Skate_Punk_21
Škripac trčanje from: C: \ Documents and Settings \ ron \ Desktop
[3/25/2008]
[2:21:40]
--- Infekcija datoteka Found/Removed---
C: \ WINDOWS \ zadaci \ 8862BA9A82712A82.job
Počev Uklanjanje ...
Postupak ponovne inicijalizacije operacijskog sust ...
Uklanjanje landarati's Preostala Datoteke / mape ...
Uređivanje registra ...
** Fix Cijela! **
--- Popis AppData sub direktorije ---
C: \ Documents and Settings \ Administrator \ Application Data \ Identities
C: \ Documents and Settings \ Administrator \ Application Data \ Microsoft
C: \ Documents and Settings \ Administrator \ Application Data \ nedjelja
C: \ Documents and Settings \ Administrator.safari \ Application Data \ Adobe
C: \ Documents and Settings \ Administrator.safari \ Application Data \ Adobeaum
C: \ Documents and Settings \ Administrator.safari \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Administrator.safari \ Application Data \ Identities
C: \ Documents and Settings \ Administrator.safari \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Administrator.safari \ Application Data \ Microsoft
C: \ Documents and Settings \ Administrator.safari \ Application Data \ nedjelja
C: \ Documents and Settings \ All Users \ Application Data \ Acronis
C: \ Documents and Settings \ All Users \ Application Data \ Adobe
C: \ Documents and Settings \ All Users \ Application Data \ AOL
C: \ Documents and Settings \ All Users \ Application Data \ AOL Preuzimanja
C: \ Documents and Settings \ All Users \ Application Data \ AOL Ocp
C: \ Documents and Settings \ All Users \ Application Data \ Avg7 - PRAZNA Directory
C: \ Documents and Settings \ All Users \ Application Data \ Brother
C: \ Documents and Settings \ All Users \ Application Data \ Common Files
C: \ Documents and Settings \ All Users \ Application Data \ Google
C: \ Documents and Settings \ All Users \ Application Data \ Grisoft
C: \ Documents and Settings \ All Users \ Application Data \ Installshield
C: \ Documents and Settings \ All Users \ Application Data \ Intuit
C: \ Documents and Settings \ All Users \ Application Data \ Lavasoft
C: \ Documents and Settings \ All Users \ Application Data \ Live 64 Math Does
C: \ Documents and Settings \ All Users \ Application Data \ Microsoft
C: \ Documents and Settings \ All Users \ Application Data \ Mumbojumbo
C: \ Documents and Settings \ All Users \ Application Data \ Protexis
C: \ Documents and Settings \ All Users \ Application Data \ Sandlot Igre
C: \ Documents and Settings \ All Users \ Application Data \ Sbsi
C: \ Documents and Settings \ All Users \ Application Data \ Simply Super Software
C: \ Documents and Settings \ All Users \ Application Data \ Temp - PRAZNA Directory
C: \ Documents and Settings \ All Users \ Application Data \ Trymedia
C: \ Documents and Settings \ All Users \ Application Data \ glediąta
C: \ Documents and Settings \ All Users \ Application Data \ Windows Genuine Advantage
C: \ Documents and Settings \ All Users \ Application Data \ Yahoo!
C: \ Documents and Settings \ Allison \ Application Data \ 3m
C: \ Documents and Settings \ Allison \ Application Data \ Adobe
C: \ Documents and Settings \ Allison \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Allison \ Application Data \ Coffeecup Software
C: \ Documents and Settings \ Allison \ Application Data \ Cyberlink
C: \ Documents and Settings \ Allison \ Application Data \ Globalscape
C: \ Documents and Settings \ Allison \ Application Data \ Google
C: \ Documents and Settings \ Allison \ Application Data \ Pomoć - PRAZNA Directory
C: \ Documents and Settings \ Allison \ Application Data \ Identities
C: \ Documents and Settings \ Allison \ Application Data \ Installshield Installation Information
C: \ Documents and Settings \ Allison \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Allison \ Application Data \ Intuit
C: \ Documents and Settings \ Allison \ Application Data \ Ipswitch
C: \ Documents and Settings \ Allison \ Application Data \ Leadertech
C: \ Documents and Settings \ Allison \ Application Data \ Macromedia
C: \ Documents and Settings \ Allison \ Application Data \ Microsoft
C: \ Documents and Settings \ Allison \ Application Data \ Mozilla
C: \ Documents and Settings \ Allison \ Application Data \ Smartftp
C: \ Documents and Settings \ Allison \ Application Data \ Snapfish
C: \ Documents and Settings \ Allison \ Application Data \ Sonic
C: \ Documents and Settings \ Allison \ Application Data \ nedjelja
C: \ Documents and Settings \ Allison \ Application Data \ Symantec - PRAZNA Directory
C: \ Documents and Settings \ Allison \ Application Data \ Učitaj Frag - PRAZNA Directory
C: \ Documents and Settings \ Allison \ Application Data \ Webex
C: \ Documents and Settings \ Allison \ Application Data \ Yahoo!
C: \ Documents and Settings \ Allison \ Application Data \ (d4914e09-364e-480a-835b-91f1f8c21e8c)
C: \ Documents and Settings \ Application Data \ Application Data \ Microsoft
C: \ Documents and Settings \ Dana \ Application Data \ 3m
C: \ Documents and Settings \ Dana \ Application Data \ Identities
C: \ Documents and Settings \ Dana \ Application Data \ Microsoft
C: \ Documents and Settings \ Dana \ Application Data \ nedjelja
C: \ Documents and Settings \ Default User \ Application Data \ Identities
C: \ Documents and Settings \ Default User \ Application Data \ Microsoft
C: \ Documents and Settings \ Default User \ Application Data \ nedjelja
C: \ Documents and Settings \ Heather \ Application Data \ Identities
C: \ Documents and Settings \ Heather \ Application Data \ Macromedia
C: \ Documents and Settings \ Heather \ Application Data \ Microsoft
C: \ Documents and Settings \ Heather \ Application Data \ nedjelja
C: \ Documents and Settings \ Heather \ Application Data \ Webex
C: \ Documents and Settings \ Kellie \ Application Data \ Identities
C: \ Documents and Settings \ Kellie \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Kellie \ Application Data \ Macromedia
C: \ Documents and Settings \ Kellie \ Application Data \ Microsoft
C: \ Documents and Settings \ Kellie \ Application Data \ nedjelja
C: \ Documents and Settings \ Localservice \ Application Data \ Avg7 - PRAZNA Directory
C: \ Documents and Settings \ Localservice \ Application Data \ Microsoft
C: \ Documents and Settings \ Mcafeemvsuser \ Application Data \ Identities
C: \ Documents and Settings \ Mcafeemvsuser \ Application Data \ Microsoft
C: \ Documents and Settings \ Mcafeemvsuser \ Application Data \ nedjelja
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01 \ Application Data \ Identities
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01 \ Application Data \ Microsoft
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01 \ Application Data \ nedjelja
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01.000 \ Application Data \ Identities
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01.000 \ Application Data \ Microsoft
C: \ Documents and Settings \ Mcafeemvsuser.ssxp01.000 \ Application Data \ nedjelja
C: \ Documents and Settings \ Meredith \ Application Data \ Identities
C: \ Documents and Settings \ Meredith \ Application Data \ Microsoft
C: \ Documents and Settings \ Meredith \ Application Data \ Sonic
C: \ Documents and Settings \ Meredith \ Application Data \ nedjelja
C: \ Documents and Settings \ Networkservice \ Application Data \ Microsoft
C: \ Documents and Settings \ Ron \ Application Data \ 3m
C: \ Documents and Settings \ Ron \ Application Data \ 7wonders
C: \ Documents and Settings \ Ron \ Application Data \ Acccore
C: \ Documents and Settings \ Ron \ Application Data \ Adobe
C: \ Documents and Settings \ Ron \ Application Data \ Adobeaum
C: \ Documents and Settings \ Ron \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Cilj
C: \ Documents and Settings \ Ron \ Application Data \ Avg7
C: \ Documents and Settings \ Ron \ Application Data \ BitTorrent
C: \ Documents and Settings \ Ron \ Application Data \ Cyberlink
C: \ Documents and Settings \ Ron \ Application Data \ dna
C: \ Documents and Settings \ Ron \ Application Data \ Gamelab
C: \ Documents and Settings \ Ron \ Application Data \ Google
C: \ Documents and Settings \ Ron \ Application Data \ Pomoć - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Identities
C: \ Documents and Settings \ Ron \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Ron \ Application Data \ Intuit
C: \ Documents and Settings \ Ron \ Application Data \ Ipswitch
C: \ Documents and Settings \ Ron \ Application Data \ Leadertech
C: \ Documents and Settings \ Ron \ Application Data \ Limewire
C: \ Documents and Settings \ Ron \ Application Data \ Macromedia
C: \ Documents and Settings \ Ron \ Application Data \ Math Funk Bash - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Microsoft
C: \ Documents and Settings \ Ron \ Application Data \ Mozilla
C: \ Documents and Settings \ Ron \ Application Data \ Playfirst
C: \ Documents and Settings \ Ron \ Application Data \ Simply Super Software - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Snapfish
C: \ Documents and Settings \ Ron \ Application Data \ Sonic
C: \ Documents and Settings \ Ron \ Application Data \ Stickies
C: \ Documents and Settings \ Ron \ Application Data \ nedjelja
C: \ Documents and Settings \ Ron \ Application Data \ Symantec - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Trojanhunter
C: \ Documents and Settings \ Ron \ Application Data \ Uniblue
C: \ Documents and Settings \ Ron \ Application Data \ Učitaj Frag
C: \ Documents and Settings \ Ron \ Application Data \ glediąta
C: \ Documents and Settings \ Ron \ Application Data \ Winrar - PRAZNA Directory
C: \ Documents and Settings \ Ron \ Application Data \ Yahoo!
C: \ Documents and Settings \ Ron.old \ Application Data \ Acccore
C: \ Documents and Settings \ Ron.old \ Application Data \ Adobe
C: \ Documents and Settings \ Ron.old \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Ron.old \ Application Data \ Google
C: \ Documents and Settings \ Ron.old \ Application Data \ Pomoć - PRAZNA Directory
C: \ Documents and Settings \ Ron.old \ Application Data \ Identities
C: \ Documents and Settings \ Ron.old \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Ron.old \ Application Data \ Macromedia
C: \ Documents and Settings \ Ron.old \ Application Data \ Microsoft
C: \ Documents and Settings \ Ron.old \ Application Data \ Myspace
C: \ Documents and Settings \ Ron.old \ Application Data \ nedjelja
C: \ Documents and Settings \ Shelli \ Application Data \ Adobe
C: \ Documents and Settings \ Shelli \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Shelli \ Application Data \ Pomoć - PRAZNA Directory
C: \ Documents and Settings \ Shelli \ Application Data \ Identities
C: \ Documents and Settings \ Shelli \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Shelli \ Application Data \ Leadertech
C: \ Documents and Settings \ Shelli \ Application Data \ Macromedia
C: \ Documents and Settings \ Shelli \ Application Data \ Microsoft
C: \ Documents and Settings \ Shelli \ Application Data \ Sonic
C: \ Documents and Settings \ Shelli \ Application Data \ nedjelja
C: \ Documents and Settings \ Stephanie \ Application Data \ Adobe
C: \ Documents and Settings \ Stephanie \ Application Data \ Adobeum - PRAZNA Directory
C: \ Documents and Settings \ Stephanie \ Application Data \ Google
C: \ Documents and Settings \ Stephanie \ Application Data \ Pomoć - PRAZNA Directory
C: \ Documents and Settings \ Stephanie \ Application Data \ Identities
C: \ Documents and Settings \ Stephanie \ Application Data \ interakciju Commerce
C: \ Documents and Settings \ Stephanie \ Application Data \ Leadertech
C: \ Documents and Settings \ Stephanie \ Application Data \ Macromedia
C: \ Documents and Settings \ Stephanie \ Application Data \ Microsoft
C: \ Documents and Settings \ Stephanie \ Application Data \ Sonic
C: \ Documents and Settings \ Stephanie \ Application Data \ nedjelja
C: \ Documents and Settings \ Susan \ Application Data \ 3m
C: \ Documents and Settings \ Susan \ Application Data \ Identities
C: \ Documents and Settings \ Susan \ Application Data \ Microsoft
C: \ Documents and Settings \ Susan \ Application Data \ nedjelja
C: \ Documents and Settings \ Xrbs \ Application Data \ Adobe
C: \ Documents and Settings \ Xrbs \ Application Data \ Google - PRAZNA Directory
C: \ Documents and Settings \ Xrbs \ Application Data \ Identities
C: \ Documents and Settings \ Xrbs \ Application Data \ Macromedia
C: \ Documents and Settings \ Xrbs \ Application Data \ Microsoft
C: \ Documents and Settings \ Xrbs \ Application Data \ nedjelja
C: \ Documents and Settings \ __sbs_netsetup__ \ Application Data \ Identities
C: \ Documents and Settings \ __sbs_netsetup__ \ Application Data \ Microsoft
C: \ Documents and Settings \ __sbs_netsetup__ \ Application Data \ nedjelja

Novi HiJackthis log:

Logfile of Trend Micro HijackThis v2.0.2
Scan spremljena u 3:00:16 Na 3/25/2008
Platforma: Windows XP SP2 (Winnt 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Pokretanje procesa:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ System32 \ Svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ VScan \ EngineServer.exe
C: \ WINDOWS \ System32 \ Svchost.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtSvc.exe
C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBCFMonitorService.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ programa ~ 1 \ McAfee \ upravljati ~ 1 \ VScan \ McShield.exe
C: \ WINDOWS \ explorer.exe
C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe
C: \ Program Files \ Common Files \ InstallShield \ UpdateService \ issch.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3,0 \ Apps \ apdproxy.exe
C: \ Program Files \ Brother \ ControlCenter2 \ brctrcen.exe
C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtTry.exe
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Program Files \ DNA \ btdna.exe
\ Gore-3 \ c $ \ Program Files \ Microsoft Office \ OFFICE11 \ OUTLOOK.EXE
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ Trend Micro \ HijackThis \ sniper.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page =
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://Companyweb
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7,0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O4 - HKLM \ .. \ Run: [DVDLauncher] "C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe"
O4 - HKLM \ .. \ Run: [ISUSPM Startup] C: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ instaliranjem ~ 1 \ UPDATE ~ 1 \ ISUSPM.exe-početni
O4 - HKLM \ .. \ Run: [ISUSScheduler] "C: \ Program Files \ Common Files \ InstallShield \ UpdateService \ issch.exe" start
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [Sinkronizacija Manager]% SystemRoot% \ system32 \ mobsync.exe / prijava
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3,0 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [ControlCenter2.0] C: \ Program Files \ Brother \ ControlCenter2 \ brctrcen.exe / autorun
O4 - HKLM \ .. \ Run: [MVS uprskati] "C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ Splash.exe"
O4 - HKLM \ .. \ Run: [McAfee Managed Services Trake] "C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ StartMyagtTry.exe"
O4 - HKLM \ .. \ Run: [Windows Defender] "C: \ Program Files \ Windows Defender \ MSASCui.exe"-hide
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [MATH LI POČETNA MODE] C: \ Documents and Settings \ All Users \ Application Data \ živjeti 64 math ne \ amen tray.exe
O4 - HKCU \ .. \ Run: [Roadsite] C: \ DOCUME ~ 1 \ ron \ APPLIC ~ 1 \ Učitaj ~ 1 \ surfati mpeg stop.exe
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster 2] C: \ Program Files \ Uniblue \ RegistryBooster 2 \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster2] C: \ Program Files \ Uniblue \ RegistryBooster 2 \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "C: \ Program Files \ DNA \ btdna.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7,0 \ Reader \ reader_sl.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBUpdate \ qbupdate.exe
O4 - Global Startup: Wallpaper.lnk = C: \ Tapete \ Bginfo.exe
O8 - Extra kontekst meni stavka: E & zvezi u Microsoft Excel - res: / / C: \ programa ~ 1 \ MICROS ~ 3 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ programa ~ 1 \ MICROS ~ 3 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL = http://Companyweb
O16 - DPF: (01A88BB1-1174-41EC-ACCB-963509EAE56B) (SysProWmi Class) -- http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: (02BF25D5-8C17-4B23-BC80-D3488ABDDC6B) (QuickTime Object) -- http://a1540.g.akamai.net/7/1540/52/...x/qtplugin.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (3BA3B159-7533-4F96-A2CE-EE5894BBD3D5) (Scanner.SysScanner) -- http://i.dell.com/images/global/js/s...SYSSCANNER.cab
O16 - DPF: (406B5949-7190-4245-91A9-30A17DE16AD0) (Snapfish Activia) -- http://photos.walmart.com/WalmartActivia.cab
O16 - DPF: (40C83AF8-FEA7-4A6A-A470-431EE84A0886) (SecureObjectFactory Class) -- http://vs.mcafeeasap.com/MC/ENU/VS40...0504175614.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://bl108fd.blu108.hotmail.msn.co...s/MsnPUpld.cab
O16 - DPF: (5C6698D9-7BE4-4122-8EC5-291D84DBD4A0) -- http://upload.facebook.com/controls/...oUploader2.cab
O16 - DPF: (5C86F808-EDD2-4E5D-9C4F-E0D1ADA859AF) (Web Konferencijski) -- http://server.mymeetingcentral.com/join_a.cab
O16 - DPF: (5F8469B4-B055-49DD-83F7-62B522420ECC) (Facebook Foto Uploader Control) -- http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsof...?1149363255347
O16 - DPF: (7584C670-2274-4EFB-B00B-D6AABA6D3850) (Microsoft Terminal Services Client Control (redist)) -- http://safari-fs/tsweb/msrdp.cab
O16 - DPF: (B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD) (TSEasyInstallX Control) -- http://www.trendsecure.com/easy_inst...syInstallX.CAB
O16 - DPF: (E06E2E99-0AA1-11D4-ABA6-0060082AA75C) (GpcContainer Class) -- https: / / ere.webex.com/client/T25L10N...nt/ieatgpc.cab
O17 - HKLM \ System \ CCS \ Services \ TCPIP \ Parameters: Domain = safari.local
O17 - HKLM \ Software \ .. \ telefonija: domene = safari.local
O17 - HKLM \ System \ CS1 \ Services \ TCPIP \ Parameters: Domain = safari.local
O23 - Service: ati brza tipka Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: EngineServer - McAfee, Inc - C: \ Program Files \ McAfee \ Managed VirusScan \ VScan \ EngineServer.exe
O23 - Service: McShield - McAfee, Inc - C: \ programa ~ 1 \ McAfee \ upravljati ~ 1 \ VScan \ McShield.exe
O23 - Service: McAfee Virus i Spyware Protection Service (myAgtSvc) - McAfee, Inc - C: \ Program Files \ McAfee \ Managed VirusScan \ Agent \ myAgtSvc.exe
O23 - Service: QuickBooks Database Manager Service (QBCFMonitorService) - Intuit - C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ QBCFMonitorService.exe
O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc - C: \ Program Files \ Common Files \ Intuit \ QuickBooks \ FCS \ Intuit.QuickBooks.FCS. exe
--
End of file - 8722 bytes

Iexploree.exe primijetio sam da je samo jednom popping up na zadaća voditelj i sada nisam imao bilo koji pop-up yet.
  #8  
Old 25. ožujak 2008, 12:07
Moderator / ica grupe
  
Default Iexplorer.exe virus

Tražite bolji, ali još više lijevo učiniti.

Stvorite Deinstaliraj List
  • Početak HijackThis
  • Kliknite na Otvorite Ostalo sekciji Alati
  • Kliknite na Otvori Uninstall Manager gumb.
  • Kliknite na Spremi lista gumb i odredili gdje želite spremiti ovu datoteku i kliknite na Spremiti.
    • Kada pritisnete Spremiti jedan gumb će otvoriti notepad sa sadržajima koje datoteke.
  • Kopirajte i zalijepite taj popis u svoj odgovor.
__________________
  #9  
Old 26 ožujak 2008, 06:57
Novi član grupe
  
Default Iexplorer.exe virus

Nažalost, jučer je dobio na poslu zauzet. Nisam bio u mogućnosti za napraviti ovaj korak nazad ili odgovoriti. Kad sam logirati na moj računalo je pop-up prozore su leđa danas. Ispod je popis unistall.

ACT!
Adobe Download Manager 2.0 (ukloni only)
Adobe Flash Player ActiveX
Adobe Reader 7.0.8
Adobe Shockwave Player
Adobe ® Photoshop ® Album Starter Edition 3,0
AIM 6
ATI - Software Uninstall Utility
ATI Display Driver
BARRACUDA Mreše Outlook Plugin 0.9d
Broadcom Advanced Control Suite
Brother MFL-Suite Pro
ClearType Ugađanje Control Panel applet
Compatibility Pack za Office 2007 sustav
e / pop Web Konferencijski klijente
Google Earth
HijackThis 2.0.2
Hotfix za Microsoft. NET Framework 3.0 (KB932471)
Hotfix za Windows Media Format 11 SDK (KB929399)
Hotfix za Windows Media Format SDK (KB902344)
Hotfix za Windows Media Player 11 (KB939683)
Hotfix za Windows XP (KB896344)
Hotfix za Windows XP (KB914440)
Hotfix za Windows XP (KB915865)
Hotfix za Windows XP (KB926239)
Intel (R) Graphics Media Accelerator Vozač
Java (tm) 6 Update 2
Java (tm) 6 Update 3
Java (tm) 6 Update 5
McAfee Virus i Spyware Protection Service
Microsoft. NET Framework 1.1
Microsoft. NET Framework 1.1
Microsoft. NET Framework 1.1 Hotfix (KB928366)
Microsoft. NET Framework 2.0 Service Pack 1
Microsoft. NET Framework 3.0 Service Pack 1
Microsoftove baze Smart Card Cryptographic Service Provider Package
Microsoft Kompresija Klijentskog Pack 1.0 za Windows XP
Microsoft Internationalized Domain Names ublažavanja API
Microsoftov National Language Support Downlevel API
Microsoft Office Outlook 2003
Microsoft Office Small Business Edition 2003
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1,0
Microsoft Visual C + + 2005 Redistributable
Mozilla Firefox (2.0.0.12)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 parser i SDK
MSXML 6.0 parser (KB933579)
PowerDVD 5,5
QuickBooks Pro 2007
QuickBooks Proizvod Popis servisa
Sigurnosno ažuriranje za Step by Step Interactive Training (KB898458)
Sigurnosno ažuriranje za Step by Step Interactive Training (KB923723)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB928090)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB929969)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB931768)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB933566)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB937143)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB938127)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB939653)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB942615)
Sigurnosno ažuriranje za Windows Internet Explorer 7 (KB944533)
Sigurnosno ažuriranje za Windows Media Player (KB911564)
Sigurnosno ažuriranje za Windows Media Player 10 (KB917734)
Sigurnosno ažuriranje za Windows Media Player 11 (KB936782)
Sigurnosno ažuriranje za Windows Media Player 6,4 (KB925398)
Sigurnosno ažuriranje za Windows XP (KB890046)
Sigurnosno ažuriranje za Windows XP (KB893756)
Sigurnosno ažuriranje za Windows XP (KB896428)
Sigurnosno ažuriranje za Windows XP (KB899587)
Sigurnosno ažuriranje za Windows XP (KB899589)
Sigurnosno ažuriranje za Windows XP (KB900725)
Sigurnosno ažuriranje za Windows XP (KB901017)
Sigurnosno ažuriranje za Windows XP (KB901190)
Sigurnosno ažuriranje za Windows XP (KB902400)
Sigurnosno ažuriranje za Windows XP (KB905414)
Sigurnosno ažuriranje za Windows XP (KB905749)
Sigurnosno ažuriranje za Windows XP (KB911280)
Sigurnosno ažuriranje za Windows XP (KB911562)
Sigurnosno ažuriranje za Windows XP (KB911567)
Sigurnosno ažuriranje za Windows XP (KB911927)
Sigurnosno ažuriranje za Windows XP (KB912812)
Sigurnosno ažuriranje za Windows XP (KB913446)
Sigurnosno ažuriranje za Windows XP (KB913580)
Sigurnosno ažuriranje za Windows XP (KB914388)
Sigurnosno ažuriranje za Windows XP (KB914389)
Sigurnosno ažuriranje za Windows XP (KB916281)
Sigurnosno ažuriranje za Windows XP (KB917159)
Sigurnosno ažuriranje za Windows XP (KB917344)
Sigurnosno ažuriranje za Windows XP (KB917422)
Sigurnosno ažuriranje za Windows XP (KB917953)
Sigurnosno ažuriranje za Windows XP (KB918118)
Sigurnosno ažuriranje za Windows XP (KB918439)
Sigurnosno ažuriranje za Windows XP (KB918899)
Sigurnosno ažuriranje za Windows XP (KB919007)
Sigurnosno ažuriranje za Windows XP (KB920213)
Sigurnosno ažuriranje za Windows XP (KB920214)
Sigurnosno ažuriranje za Windows XP (KB920670)
Sigurnosno ažuriranje za Windows XP (KB920683)
Sigurnosno ažuriranje za Windows XP (KB920685)
Sigurnosno ažuriranje za Windows XP (KB921398)
Sigurnosno ažuriranje za Windows XP (KB921503)
Sigurnosno ažuriranje za Windows XP (KB921883)
Sigurnosno ažuriranje za Windows XP (KB922616)
Sigurnosno ažuriranje za Windows XP (KB922760)
Sigurnosno ažuriranje za Windows XP (KB922819)
Sigurnosno ažuriranje za Windows XP (KB923191)
Sigurnosno ažuriranje za Windows XP (KB923414)
Sigurnosno ažuriranje za Windows XP (KB923689)
Sigurnosno ažuriranje za Windows XP (KB923694)
Sigurnosno ažuriranje za Windows XP (KB923980)
Sigurnosno ažuriranje za Windows XP (KB924191)
Sigurnosno ažuriranje za Windows XP (KB924270)
Sigurnosno ažuriranje za Windows XP (KB924496)
Sigurnosno ažuriranje za Windows XP (KB924667)
Sigurnosno ažuriranje za Windows XP (KB925486)
Sigurnosno ažuriranje za Windows XP (KB925902)
Sigurnosno ažuriranje za Windows XP (KB926255)
Sigurnosno ažuriranje za Windows XP (KB926436)
Sigurnosno ažuriranje za Windows XP (KB927779)
Sigurnosno ažuriranje za Windows XP (KB927802)
Sigurnosno ažuriranje za Windows XP (KB928255)
Sigurnosno ažuriranje za Windows XP (KB928843)
Sigurnosno ažuriranje za Windows XP (KB929123)
Sigurnosno ažuriranje za Windows XP (KB930178)
Sigurnosno ažuriranje za Windows XP (KB931261)
Sigurnosno ažuriranje za Windows XP (KB931784)
Sigurnosno ažuriranje za Windows XP (KB932168)
Sigurnosno ažuriranje za Windows XP (KB933729)
Sigurnosno ažuriranje za Windows XP (KB935839)
Sigurnosno ažuriranje za Windows XP (KB935840)
Sigurnosno ažuriranje za Windows XP (KB936021)
Sigurnosno ažuriranje za Windows XP (KB937894)
Sigurnosno ažuriranje za Windows XP (KB938829)
Sigurnosno ažuriranje za Windows XP (KB941202)
Sigurnosno ažuriranje za Windows XP (KB941568)
Sigurnosno ažuriranje za Windows XP (KB941569)
Sigurnosno ažuriranje za Windows XP (KB941644)
Sigurnosno ažuriranje za Windows XP (KB943055)
Sigurnosno ažuriranje za Windows XP (KB943460)
Sigurnosno ažuriranje za Windows XP (KB943485)
Sigurnosno ažuriranje za Windows XP (KB944653)
Sigurnosno ažuriranje za Windows XP (KB946026)
Shadow Copy Client
Sonic Kopiraj Module
Sonic dla
Sonic Express Labeler
Sonic RecordNow Audio
Sonic RecordNow podataka
Sonic Update Manager
SoundMAX
SupportSoft Starački Service
Ažuriranje za Windows XP (KB894391)
Ažuriranje za Windows XP (KB898461)
Ažuriranje za Windows XP (KB900485)
Ažuriranje za Windows XP (KB904942)
Ažuriranje za Windows XP (KB908531)
Ažuriranje za Windows XP (KB910437)
Ažuriranje za Windows XP (KB916595)
Ažuriranje za Windows XP (KB920342)
Ažuriranje za Windows XP (KB920872)
Ažuriranje za Windows XP (KB922582)
Ažuriranje za Windows XP (KB925720)
Ažuriranje za Windows XP (KB925876)
Ažuriranje za Windows XP (KB927891)
Ažuriranje za Windows XP (KB929338)
Ažuriranje za Windows XP (KB930916)
Ažuriranje za Windows XP (KB931836)
Ažuriranje za Windows XP (KB933360)
Ažuriranje za Windows XP (KB936357)
Ažuriranje za Windows XP (KB938828)
Ažuriranje za Windows XP (KB942763)
WebEx
Windows Defender
Windows Defender Signatures
Windows Imaging Component
Windows Internet Explorer 7
Windows Media Connect
Windows Media Format Runtime 11
Windows Media Format Runtime 11
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 11
Windows Media Player 11
Windows Presentation Foundation
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
WinRAR archiver
  #10  
Old 26 ožujak 2008, 08:12
Moderator / ica grupe
  
Default Iexplorer.exe virus

Idi na My Computer-> Tools-> Folder Options-> View Kartica:
  • Pod Skrivene datoteke i mape zaglavlje:
  • Odaberi Prikaži skrivene datoteke i mape.
  • Isključi Sakrij zaštićen operativni sistem kartoteka (preporučeno) opciju.
  • Također, budite sigurni da nema kvačica pored Sakrij nastavke za poznate vrste datoteka.
  • Kliknite U redu

----------

Idi na Dodaj / Ukloni programe i deinstalirati sljedeće:
  • Java (tm) 6 Update 2
  • Java (tm) 6 Update 3
----------

Hijackthis Otvori, a zatim odaberite Da li je sustav skenirati samo.

Stavite oznaku uz sljedeće stavke: (ako postoji)
  • O4 - HKLM \ .. \ Run: [MATH LI POČETNA MODE] C: \ Documents and Settings \ All Users \ Application Data \ živjeti 64 math ne \ amen tray.exe
  • O4 - HKCU \ .. \ Run: [Roadsite] C: \ DOCUME ~ 1 \ ron \ APPLIC ~ 1 \ Učitaj ~ 1 \ surfati mpeg stop.exe
Važno: Zatvori sve prozore osim Hijackthis a zatim kliknite Fix checked.

Izlaz Hijackthis.

----------

Sada dvostrukim klikom na My Computer desktopu i smjestiti tih mapa i izbrisati cijeli mapa.

C: \ Documents and Settings \ All Users \ Application Data \live 64 math ne

C: \ Documents and Settings \ ron \ Application Data \Učitaj ~ 1

TajUčitaj ~ 1 skraćeno je za nešto, ali će početi sa Upload.

----------

Molimo, preuzmite Combofix by sUBs jedan od linkova ispod.
(Isprobajte sve tri ako je potrebno)Važno! Combofix.exe MORA biti spremljene i otrča iz Desktop.
  • Zatvori otvoriti bilo koju web preglednicima. (Firefox, Internet Explorer, etc) prije početka Combofix.
  • Važno! Privremeno onemogućiti tvoj AntiVirus, Skripta za blokiranje i bilo koji protušpijunskih Zaštita u stvarnom vremenu prije obavlja scan.
    • Kliknite ovaj link da biste vidjeli popis sigurnosne programe, koji bi trebao biti onemogućen i kako onemogućiti ih.
    • Ako tvoj nije na popisu, a vi ne znate kako ga isključiti, molimo pitati.
  • Upozorenje: Combofix disconnects vašem računalu s Interneta. Se veza automatski obnovljena prije Combofix izvrši njegove vožnji.
  • Dvaput kliknite combofix.exe i slijedite upute.
    • Iz tipkovnice odaberite 1 i pritisnite Enter
  • Kada završite, on će proizvesti prijava za vas.
  • Pošta da se prijavite u vaš sljedeći odgovor.
Upozorenje: Ne mouseclick combofix's prozor dok je pokrenut. To svibanj uzrokovati da se štala
  • Ako Combofix prometuje na poteškoće i prestaje preuranjeno, veza može biti ručno restored by ponovo pokrenuti računalo.
  • Važno: Ne zaboravite ponovo uključili vaš protuvirusni i protušpijunski prije reconnecting na Internet.

----------

Next post molimo dodaj
Combofix log

Također javite mi kako stvari stoje sada.
__________________
Reply

Register
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright © 2006 - 2009 Computer soka.
Kontakt -- Privatnost -- Sitemap -- Vrh

Powered by vBulletin ® Copyright © 2000 - 2009 Jelsoft Enterprises Ltd SEO by vBSEO © 2009, Crawlability, Inc