mai mică de capital,

Magazine
Go Back   Computer JUICE > Computer Software > Nume, Spyware & Securitate
Reload this Page

Trojan

Inregistrare Site-ul Spy Lista de stat Doneaza Căuta Posturi de azi Marchează forumurile citite Forum Regulamentul

Register


 Default 

Trojan




Reply
Pagina 1 din 3 1 23
 
Thread Tools
  #1  
Old 24 octombrie 2008, 16:18
Grupul de stat
  
Default Trojan

Am un troian de pe PC-ul meu în System32 fişiere. Am AVG, dar doar întrebat cum să scap de ea de la AVG ca atunci când faceţi clic pe Ştergere, cred că doar Sterge de la seif până la următoarea scanare când este descoperit din nou.
  #2  
Old 24 octombrie 2008, 16:24
Grupul de donator
  
Default Trojan

Se pare ca va fi nevoie de a face mai mult decât încercarea de a şterge cu AVG, încercaţi să luaţi o privire la acest thread.
__________________

Sistemul meu: În primul rând OC

Procesor (e):
Intel E2180@2.85
Plăci de bază:
Gigabyte GA-P35-DS3L
Memorie RAM:
2x1GB OCZ PC2-9200 Reaper CL5
Placă grafică (e):
Gainward ATI 3850
Placă de sunet:
la bord
Hard Drive (e):
Seagate Barracuda 7200.7 120GB
Optical Drive (e):
HITACHI DVD-ROM GD-2500
Cauza / PSU:
Pirat VX450
Răcire:
AC freezer7 Pro, 2x80mm, 1x90mm, 1x120mm
Network / Internet:
la bord / presupune 10Meg virgin cablu
Monitor (e):
Viewsonic Vx922; Viewsonic VE702m
Sistem de operare (e):
XP Home
  #3  
Old 25 octombrie 2008, 04:17
Grupul de stat
  
Default Trojan

Ok, mulţumesc. Nu va rula hijack Acest maine:)
  #4  
Old 25 octombrie 2008, 10:08
Moderator Group
  
Default Trojan

Vă rugăm să ruleze tot de la scanează şi post de busteni. HijackThis de obicei, nu este de ajuns.
__________________
  #5  
Old 26 octombrie 2008, 15:58
Grupul de stat
  
Default Trojan

Am fugit şi am SUPERAntiSpyware jurnalul. Am fugit AVG de asemenea, o dată mai mult şi a venit cu şase locuri că Trojan-a infectat.

Aceasta este SUPERAntiSpyware jurnal:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generat 10.26.2008 la 08:30

Application Version: 4.21.1004

Reguli de bază pentru baze de date Version: 3609
Trace Regulamentul Database Version: 1595

Scan type: Complete Scan
Total Scan Ora: 00:59:08

Memorie articole scanate: 430
Memorie ameninţările detectate: 0
Registrul articole scanate: 4950
Registrul ameninţările detectate: 0
Elemente de fişiere scanate: 73876
File ameninţările detectate: 77

Trojan.Unknown Origine
C: \ WINDOWS \ mslagent \ 2_mslagent.dll
C: \ WINDOWS \ mslagent \ mslagent.exe
C: \ WINDOWS \ mslagent \ uninstall.exe
C: \ WINDOWS \ mslagent
C: \ Windows \ system32 \ smp \ msrc.exe
C: \ Windows \ system32 \ smp

Adware.INetDelivery
C: \ Program Files \ Inet livrare \ inetdl.exe
C: \ Program Files \ Inet livrare \ intdel.exe
C: \ Program Files \ Inet de livrare
C: \ Program Files \ akl \ akl.dll
C: \ Program Files \ akl \ akl.exe
C: \ Program Files \ akl \ uninstall.exe
C: \ Program Files \ akl \ unsetup.exe
C: \ Program Files \ akl

Trojan.Fake-Drop/Gen
C: \ Windows \ system32 \ VBSYS2.DLL
C: \ Windows \ system32 \ AWTOOLB.DLL
C: \ Windows \ system32 \ SYSREQ.EXE
C: \ Windows \ system32 \ WINWGPX.EXE
C: \ Windows \ system32 \ BDN.COM
C: \ Windows \ system32 \ MSSECU.EXE
C: \ Windows \ system32 \ VCATCHPI.DLL
C: \ Windows \ system32 \ AKTTZN.EXE
C: \ Windows \ system32 \ WINSYSTEM.EXE
C: \ Windows \ system32 \ NEWSD32.EXE
C: \ Windows \ system32 \ EMESX.DLL
C: \ Windows \ system32 \ RUNDL1.EXE
C: \ Windows \ system32 \ ANTICIPATOR.DLL
C: \ Windows \ system32 \ THUN.DLL
C: \ Windows \ system32 \ THUN32.DLL
C: \ Windows \ system32 \ MSVCHOST.EXE
C: \ Windows \ system32 \ REGC64.DLL
C: \ Windows \ system32 \ REGM64.DLL
C: \ Windows \ system32 \ SSVCHOST.COM
C: \ Windows \ system32 \ SSVCHOST.EXE
C: \ Windows \ system32 \ temp # 01.EXE
C: \ Windows \ system32 \ MSGP.EXE
C: \ Windows \ system32 \ MTR2.EXE
C: \ Windows \ system32 \ TKEYSH H @ @ @ K. DLL
C: \ Windows \ system32 \ NETODE.EXE
C: \ Windows \ system32 \ MEDUP012.DLL
C: \ Windows \ system32 \ MEDUP020.DLL
C: \ Windows \ system32 \ SSURF022.DLL
C: \ Windows \ system32 \ MSNBHO.DLL
C: \ Windows \ system32 \ BSVA-EGIHSG52.EXE
C: \ Windows \ system32 \ PS1.EXE
C: \ Windows \ system32 \ HXIWLGPM.DAT
C: \ Windows \ system32 \ HXIWLGPM.EXE
C: \ Windows \ system32 \ TAACK.DAT
C: \ Windows \ system32 \ TAACK.EXE
C: \ Windows \ system32 \ MWIN32.EXE
C: \ Windows \ system32 \ VBIEWER.OCX
C: \ Windows \ system32 \ HOPROXY.DLL
C: \ Windows \ system32 \ WINLOGONPC.EXE
C: \ WINDOWS \ BDN.COM
C: \ WINDOWS \ MSSECU.EXE
C: \ WINDOWS \ WINSYSTEM.EXE
C: \ WINDOWS \ ITUNESMUSIC.EXE
C: \ WINDOWS \ A. BAT
C: \ WINDOWS \ base64.tmp
C: \ WINDOWS \ FVPROTECT.EXE
C: \ WINDOWS \ USERCONFIG9X.DLL
C: \ WINDOWS \ zip1.tmp
C: \ WINDOWS \ zip2.tmp
C: \ WINDOWS \ zip3.tmp
C: \ WINDOWS \ zipped.tmp

Dpcproxy
C: \ Windows \ system32 \ DPCPROXY.EXE

Unclassified.Unknown Origine / Sistem
C: \ Windows \ system32 \ PSOF1.EXE

Adware.Pacer D
C: \ Windows \ system32 \ PSOFT1.EXE

Trojan.Dluca-am
C: \ Windows \ system32 \ SNCNTR.EXE

Adware.Vundo-Varianta / J
C: \ WINDOWS \ QRBGLTOS.DLL

Trojan.Net-MSV/VPS-Variant
C: \ WINDOWS \ GRFXBANOMOK.DLL

Adware.180solutions/Seekmo/Zango
C: \ Documents and Settings \ GUEST \ Desktop \ setup.exe

Adware.Tracking Cookie
C: \ Documents and Settings \ Guest \ Cookies \ oaspete @ dubluclick [2]. Txt
C: \ Documents and Settings \ Guest \ Cookies \ oaspete @ servire-sys [2]. Txt
C: \ Documents and Settings \ Guest \ Cookies \ oaspete @ atdmt [2]. Txt
C: \ Documents and Settings \ Guest \ Cookies \ oaspete @ tradedoubler [2]. Txt
C: \ Documents and Settings \ Guest \ Cookies \ guest@bs.serving-sys [2]. Txt
  #6  
Old 26 octombrie 2008, 16:11
Grupul de stat
  
Default Trojan

MalwareByres Jurnal:

Malwarebytes' Anti-Malware 1.30
Baza de date versiune: 1324
Windows 5.1.2600 Service Pack 2

26/10/2008 23:09:02
mbam-log-2008-10-26 (23-09-02). txt

Scan type: Quick Scan
Obiecte scanate: 52045
Timpul scurs: 4 minute (s), 36 secunde (s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Chei de Registry Infected: 0
Registry Values Infected: 0
Registrul de date Elemente Infected: 0
Folders Infected: 1
Files Infected: 1

Memory Processes Infected:
(Nici un rău elemente detectat)

Memory Modules Infected:
(Nici un rău elemente detectat)

Chei de Registry Infected:
(Nici un rău elemente detectat)

Registry Values Infected:
(Nici un rău elemente detectat)

Registrul de date Elemente Infected:
(Nici un rău elemente detectat)

Folders Infected:
C: \ Documents and Settings \ Guest \ Local Settings \ temp \ ac8zt2 (Trojan.FakeAlert) ->

Carantină şi a fost şters cu succes.

Files Infected:
C: \ WINDOWS \ egsf.exe (Trojan.FakeAlert) -> carantină şi a fost şters cu succes.
  #7  
Old 26 octombrie 2008, 17:27
Moderator Group
  
Default Trojan

Aveţi nevoie de HijackThis log acum
__________________
  #8  
Old 27 octombrie 2008, 14:27
Grupul de stat
  
Default Trojan

Citat:
Iniţial Adăugată pe site de jamesjon View Post
NOD32 este cel mai bun pentru troieni.
Atenţie, pentru a extinde?
  #9  
Old 27 octombrie 2008, 14:35
Moderator Group
  
Default Trojan

Vă rugăm să postaţi doar continua cu buştenii, dacă aveţi nevoie de ajutor.
__________________
  #10  
Old 27 octombrie 2008, 16:03
Grupul de stat
  
Default Trojan

Logfile de Trend Micro HijackThis v2.0.2
Scan salvate la 23:01:07, pe 27/10/2008
Platforma: Windows XP SP2 (WINNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Rularea procese:
C: \ Windows \ system32 \ smss.exe
C: \ Windows \ system32 \ winlogon.exe
C: \ Windows \ system32 \ services.exe
C: \ Windows \ system32 \ lsass.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ Spoolsv.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files \ Widcomm \ Bluetooth Software \ bin \ btwdins.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ Windows \ system32 \ svchost.exe
C: \ WINDOWS \ Explorer.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgrsx.exe
C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe
C: \ WINDOWS \ SOUNDMAN.EXE
C: \ Acer \ putere Technology \ eRecovery \ Monitor.exe
C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files \ BroadJump \ Client Fundatia \ CFD.exe
C: \ Program Files \ Virgine Broadband \ consilier \ Broadbandadvisor.exe
C: \ Program Files \ TextBridge Pro Millennium \ bin \ InstantAccess.exe
C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe
C: \ WINDOWS \ sm56hlpr.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe
C: \ Windows \ system32 \ Ctfmon.exe
C: \ Windows \ system32 \ sistray.exe
C: \ Program Files \ Widcomm \ Bluetooth Software \ BTTray.exe
C: \ Program Files \ Ulead Systems \ Ulead Photo Express 3.0 SE \ CalCheck.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ Program Files \ Trust \ Easy Webscan 19200 \ ScanPanel \ ScnPanel.exe
C: \ Program Files \ FinePixViewerS \ QuickDCF2.exe
C: \ PROGRA ~ 1 \ Widcomm \ BLUETO ~ 1 \ BTSTAC ~ 1.EXE
C: \ Windows \ system32 \ wuauclt.exe
C: \ Program Files \ HijackThis \ Analyse.exe.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
R1 - HKLM \ SOFTWARE \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://global.acer.com
R1 - HKLM \ SOFTWARE \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/...ch/search.html
R0 - HKLM \ SOFTWARE \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Setări, ProxyOverride = *. local
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: StumbleUpon Launcher - (145B29F4-A56B-4b90-BBAC-45784EBEBBB7) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: Java (tm) plug-in-ul SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ ssv.dll
O2 - BHO: Windows Live Sign-in-Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 3.1.807.1746 \ sw g.dll
O2 - BHO: Java (tm) Plug-in 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ implica \ jqs \ ie \ jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - (E99421FB-68DD-40F0-B4AC-B7027CAE2F1A) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-Pentru a-Page.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ googletoolbar1.dll
O3 - Toolbar: EPSON Web-To-Page - (EE5D279F-081B-4404-994D-C6B60AAEBA6D) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-Pentru a-Page.dll
O3 - Toolbar: StumbleUpon Toolbar - (5093EB4C-3E93-40AB-9266-B607BA87BDC8) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll
O3 - Toolbar: AVG Security Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL
O4 - HKLM \ .. \ Run: [LaunchApp] Alaunch
O4 - HKLM \ .. \ Run: [ntiMUI] C: \ Program Files \ NewTech Infosystems \ NTI CD & DVD-Maker 7 \ ntiMUI.exe
O4 - HKLM \ .. \ Run: [RemoteControl] "C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / "Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [MSPY2002] C: \ Windows \ system32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ Windows \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ Windows \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [SiSPower] Rundll32.exe SiSPower.dll, ModeAgent
O4 - HKLM \ .. \ Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM \ .. \ Run: [eRecoveryService] C: \ Acer \ putere Technology \ eRecovery \ Monitor.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [BJCFD] C: \ Program Files \ BroadJump \ Client Fundatia \ CFD.exe
O4 - HKLM \ .. \ Run: [Broadbandadvisor.exe] "C: \ Program Files \ Virgine Broadband \ consilier \ Broadbandadvisor.exe" / AutoRun
O4 - HKLM \ .. \ Run: [InstantAccess] C: \ Program Files \ TextBridge Pro Millennium \ bin \ InstantAccess.exe / h
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [SMSERIAL] sm56hlpr.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ MsnMsgr.Exe" / fundal
O4 - HKCU \ .. \ Run: [swg] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ Windows \ system32 \ Ctfmon.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ Windows \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ Windows \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Startup: Comet Screensaver.lnk = C: \ Program Files \ Comet Screensaver \ Comet Screensaver.exe
O4 - Startup: IMVU.lnk = C: \ Program Files \ IMVU \ IMVUClient.exe
O4 - Startup: Accesorii
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C: \ Windows \ system32 \ sistray.exe
O4 - Global Startup: Bluetooth.lnk =?
O4 - Global Startup: Ulead Photo Express 3.0 SE Calendar Checker.lnk = C: \ Program Files \ Ulead Systems \ Ulead Photo Express 3.0 SE \ CalCheck.exe
O4 - Global Startup: ScanPanel.lnk = C: \ Program Files \ Trust \ Easy Webscan 19200 \ ScanPanel \ ScnPanel.exe
O4 - Global Startup: Exif Launcher S.lnk =?
O4 - Global Startup: Adobe Gamma Loader.lnk = C: \ Program Files \ Common Files \ Adobe \ Etalonare \ Adobe Gamma Loader.exe
O8 - Extra context menu item: Add to Windows & Live Favorites -- http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E & xportaţi la Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ milionimi ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra context menu item: Trimiteţi la & Bluetooth - C: \ Program Files \ Belkin \ Bluetooth Software \ btsendto_ie_ctx.htm
O8 - Extra context menu item: Send to & Bluetooth Device ... - C: \ Program Files \ Widcomm \ Bluetooth Software \ btsendto_ie_ctx.htm
O8 - Extra context menu item: StumbleUpon PhotoBlog It! - Res: / / StumbleUponIEBar.dll / blogimage
O9 - Extra buton: StumbleUpon - (75C9223A-409A-4795-A3CA-08DE6B075B4B) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll
O9 - Extra button: Cercetare - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ milionimi ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: @ btrez.dll, -4015 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ Widcomm \ Bluetooth Software \ btsendto_ie.htm
O9 - Extra 'Tools' MENUITEM: @ btrez.dll, -12650 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ Widcomm \ Bluetooth Software \ btsendto_ie.htm
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network de diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network de diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (20A60F0D-9AFA-4515-A0FD-83BD84642501) (joc de dame Class) -- http://messenger.zone.msn.com/binary...r.cab56986.cab
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (YInstStarter Class) - C: \ Program Files \ Yahoo! \ Common \ yinsthelper.dll
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN foto Încărcare Tool) -- http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: (5C051655-FCD5-4969-9182-770EA5AA5565) (Solitaire Showdown Class) -- http://messenger.zone.msn.com/binary...n.cab56986.cab
O16 - DPF: (5D6F45B3-9043-443D-A792-115447494D24) (UnoCtrl Class) -- http://messenger.zone.msn.com/EN-GB/.../GAME_UNO1.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/windowsu...?1177956484625
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: (F5A7706B-B9C0-4C89-A715-7A0C6B05DD48) (Minesweeper Steaguri Class) -- http://messenger.zone.msn.com/binary...r.cab56986.cab
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG8 \ avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: AVG8 Watchdog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C: \ Program Files \ Widcomm \ Bluetooth Software \ bin \ btwdins.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C: \ Program Files \ Common Files \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Java rapida pentru începători (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe

--
Sfârşit de fişier - 11086 bytes


Cred că Trojan (e) au venit de la sora mea a descărca jocuri pentru ei de telefon, nu sunt sigur, dar acestea sunt infectarea a restabili acum.
Reply
Pagina 1 din 3 1 23

Register

Marcaje

Similar Threads
Fir Thread Starter Forum Răspunsurile Ultimul mesaj
Cant găsi Trojan! Jophen Nume, Spyware & Securitate 1 29 decembrie 2008 20:55
Trojan.vundo.h, trojan.agent, adware.mirar + mai mult! : ( sillyarfer Nume, Spyware & Securitate 1 14 decembrie 2008 09:59
Poate trojan moyra Nume, Spyware & Securitate 5 8 ianuarie 2008 23:55
Cal troian şi AVG chuckeruk Nume, Spyware & Securitate 8 2 iulie 2007 10:02
MSN Trojan mitchbeast Nume, Spyware & Securitate 9 20 iunie 2007 12:26
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright © 2006 - 2009 Computer Suc.
Contact -- Confidentialitate -- Harta site-ului -- Vârf

Powered by vBulletin ® Copyright © 2000 - 2009 Jelsoft Enterprises Ltd. SEO de vBSEO © 2009, Crawlability, Inc