[pete21]

Files scanned 45.458 Grėsmė pavadinimas 4 pažeistus objektus 4 įtartinus objektus 0 Trukmė nuskaitymo 01:14:51
C: \ Program Files \ Utilities \ LS Patch \ LSPatch_1.1.exeInfected: not-a-virus: RiskTool.Win32.CloseApp.a1

D: \ Music \ Scooter - Jumping All Over The World \ šokiai gatvės scooter.mp3Infected: Trojan-Downloader.WMA.Wimad.n1

D: \ SOFTWERE \ RealSpyMonitor \ RealSpyMonitor.exeInfec TED: not-a-virus: Monitor.Win32.RealSpy.b1

D: \ SOFTWERE \ RealSpyMonitor \ RealSpyMonitor.exeInfec TED: not-a-virus: Monitor.Win32.RealSpy.a1

Pasirinktos srities buvo nuskaityti.

[Hybr! D]

Ir?

[pete21]

kas nors čia manęs paklausė, tai nuskaitymo ir post, bet cant find kad asmuoatsiprašau

[KanoakaVirus]

"D: \ Music \ Scooter - Jumping All Over The World \ šokiai gatvės scooter.mp3Infected: Trojan-Downloader.WMA.Wimad.n1 "

Devynis kartus iš dešimties tai sukelia iš parsisiųsti dainą iš LimeWire, bet I could be wrong.

[evilfantasy]

Ar naudojate RealSpyMonitor?

Ar tai jūsų kompiuterį ar jis priklauso kam nors kitam ... tėvams?

[pete21]

aš pasiuntė, kad daina iš draugo gali ir iš LimeWire, bet i dont no Ar būtų geriau delite kad daina ten?

Citata:

Originally Posted by kanoakavirus

"D: \ Music \ Scooter - Jumping All Over The World \ šokiai gatvės scooter.mp3Infected: Trojan-Downloader.WMA.Wimad.n1 "

Devynis kartus iš dešimties tai sukelia iš parsisiųsti dainą iš LimeWire, bet I could be wrong.

[pete21]

tai savo PC reikėjo sukurti vieną, kad gauti vieną Aš įdiegti RealSpyMonitor
išbandyti prieš I purchased softwere. Tačiau aš delited programa po tiek kiek man jo pašalinta ne

iv taip pat pastebėjo, aš pamečiau ryšį laikas nuo laiko iš maršrutizatorių (linksis) Aš prijungti bevielio ryšio
skaitau somewere kad spywere gali sukelti tai?

Citata:

Originally Posted by evilfantasy

Ar naudojate RealSpyMonitor?

Ar tai jūsų kompiuterį ar jis priklauso kam nors kitam ... tėvams?

[evilfantasy]

Naikinti šias katalogai/failas

C: \ Program Files \ Utilities \LS Patch

D: \ Music \ Scooter - Jumping All Over The World \šokiai gatvėje scooter.mp3

D: \ SOFTWERE \RealSpyMonitor

----------

It wouldn't hurt rašyti HijackThis.

[pete21]

visi delited
Vagystės Log

Logfile of HijackThis v1.99.1
Skaitymo išsaugotas 22:33:38, on 22/07/2008
Platforma: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20733)

Veikia procesus:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ Spoolsv.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Nero \ Nero8 \ Nero BackItUp \ NBService.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ IoctlSvc.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgrsx.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Linksys Wireless-G Wireless USB Network Monitor \ WLService.exe
C: \ WINDOWS \ Mixer.exe
C: \ Program Files \ AVG \ AVG8 \ avgtray.exe
C: \ Program Files \ RocketDock \ RocketDock.exe
C: \ Program Files \ Styler \ Styler.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ Program Files \ MSN Messenger \ usnsvc.exe
C: \ Program Files \ Linksys Wireless-G Wireless USB Network Monitor \ WUSB54GSv2.exe
C: \ Program Files \ MSN Messenger \ msnmsgr.exe
C: \ Program Files \ Winamp \ winamp.exe
C: \ PROGRA ~ 1 \ MOZILL ~ 1 \ FIREFOX.EXE
C: \ Program Files \ HijackThis \ HijackThis.exe

R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - (39F7E362-828A-4B5A-BCAF-5B79BFDFEA60) - C: \ Program Files \ BitComet \ tools \ BitCometBHO_1.2.2.28.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O3 - Toolbar: StylerToolBar - (D2F8F919-690B-4EA2-9FA7-A203D1E04F75) - C: \ Program Files \ Styler \ TB \ StylerTB.dll
O4 - HKLM \ .. \ Run: [C-Media Mixer] Mixer.exe / startup
O4 - HKLM \ .. \ Run: [WinPatrol] C: \ Program Files \ BillP Studios \ WinPatrol \ winpatrol.exe-expressboot
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ Program Files \ AVG \ AVG8 \ avgtray.exe
O4 - HKCU \ .. \ Run: [RocketDock] "C: \ Program Files \ RocketDock \ RocketDock.exe"
O4 - Startup: Styler.lnk =?
O8 - Extra kontekstinio meniu punktą: & D & ownload ir su BitComet - res: / / C: \ Program Files \ BitComet \ BitComet.exe / AddLink.htm
O8 - Extra kontekstinio meniu punktą: & D & ownload visus vaizdo BitComet - res: / / C: \ Program Files \ BitComet \ BitComet.exe / AddVideo.htm
O8 - Extra kontekstinio meniu punktą: & D & ownload visus su BitComet - res: / / C: \ Program Files \ BitComet \ BitComet.exe / AddAllLink.htm
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: BitComet - (D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A) - res: / / C: \ Program Files \ BitComet \ tools \ BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ network diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra 'Tools' MENUITEM: @ Xpsp3res.dll, -20.001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ network diagnostic \ xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG8 \ avgpp.dll
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
Ø20 - AppInit_DLLs: avgrsstx.dll
Ø20 - Winlogon Notify: dimsntfy -% SystemRoot% \ System32 \ dimsntfy.dll (file missing)
Ø20 - Winlogon Notify: WgaLogon - C: \ WINDOWS \ SYSTEM32 \ WgaLogon.dll
O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - C: \ WINDOWS \ system32 \ WPDShServiceObj.dll
O23 - Service: AVG8 watchdog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C: \ Program Files \ Nero \ Nero8 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Common Files \ Nero \ Lib \ NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Technology Inc Prolific - C: \ WINDOWS \ system32 \ IoctlSvc.exe
O23 - Service: WUSB54GSv2SVC - Unknown owner - C: \ Program Files \ Linksys Wireless-G Wireless USB Network Monitor \ WLService.exe "WUSB54GSv2.exe (file missing)

[evilfantasy]

Atrodo gerai.