Forum » Pomoč in nasveti » Virus
Virus
koyotee ::
Pozdravljeni,
imam sledeč problem: sem ter tja se zažene proces inetinfo.exe
ko vpišem to ime v google in kliknem na prvi link(process information) se mi restarta comp.
Tudi če v googlovo vrstico vpišem inetinfo.exe removal se zgodi isto...
Mi lahko kdo pomaga, mogoče da direkten link do kakega programa za to odstranit?
Sicer uporabljam Xoftspy, spybot in adaware SE vendar mi tu nič ne najde.
Poizkusil sem tudi z hijackthis vendar ni pomoči!
Hvala in lp
imam sledeč problem: sem ter tja se zažene proces inetinfo.exe
ko vpišem to ime v google in kliknem na prvi link(process information) se mi restarta comp.
Tudi če v googlovo vrstico vpišem inetinfo.exe removal se zgodi isto...
Mi lahko kdo pomaga, mogoče da direkten link do kakega programa za to odstranit?
Sicer uporabljam Xoftspy, spybot in adaware SE vendar mi tu nič ne najde.
Poizkusil sem tudi z hijackthis vendar ni pomoči!
Hvala in lp
Rear DVD collector!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
koyotee ::
tudi ko uporabim tvoj link se zgodi isto 
evo log: Logfile of HijackThis v1.99.1
Scan saved at 18:29:50, on 3.11.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\winlogon.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\services.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\lsass.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
D:\DRIVERS & PROGS\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
sm pa ke laufa tut ping.exe
evo log: Logfile of HijackThis v1.99.1
Scan saved at 18:29:50, on 3.11.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\winlogon.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\services.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\lsass.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
D:\DRIVERS & PROGS\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
sm pa ke laufa tut ping.exe
Rear DVD collector!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
amigo_no1 ::
C:\Documents and Settings\Iztok\Local Settings\Application Data\winlogon.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\services.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\lsass.exe
tile trije so drugače win servisi v mapi \windows\system32
V tvojem primeru gre za najverjetneje viruse
C:\Documents and Settings\Iztok\Local Settings\Application Data\services.exe
C:\Documents and Settings\Iztok\Local Settings\Application Data\lsass.exe
tile trije so drugače win servisi v mapi \windows\system32
V tvojem primeru gre za najverjetneje viruse
koyotee ::
Ja to sm šele zdej opazu 
any idead kter AV bi to odstranu?
any idead kter AV bi to odstranu?
Rear DVD collector!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
amigo_no1 ::
prevx1
http://www.prevx1.com/
ewido
http://www.ewido.net/en/
ali pa zbrši v safe mode načinu :P
nato pa poženi msconfig.exe /in v zavitku Startup odstrani kljukice
velikosti pravih fajlov v win xp
lsass.exe = 13.312 bytes
services.exe = 108.032 bytes
winlogon.exe = 502.272 bytes
http://www.prevx1.com/
ewido
http://www.ewido.net/en/
ali pa zbrši v safe mode načinu :P
nato pa poženi msconfig.exe /in v zavitku Startup odstrani kljukice
velikosti pravih fajlov v win xp
lsass.exe = 13.312 bytes
services.exe = 108.032 bytes
winlogon.exe = 502.272 bytes
cyber_killer ::
Ime tega procesa mi je znano.Tud jst sm poskusu ga odstrant z raznimi programi sam ga nism mogu.Edin obnovitev sistema mi je pomagala.
koyotee ::
Jebeno...
nemorm 0 downloadat, ce zalaufam cmd isto, safe mode ne dela...
polom
nemorm 0 downloadat, ce zalaufam cmd isto, safe mode ne dela...
polom
Rear DVD collector!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
JTD power!
Coming soon: bigger E-penis & new internet friendzzz!
Vredno ogleda ...
| Tema | Ogledi | Zadnje sporočilo | |
|---|---|---|---|
| Tema | Ogledi | Zadnje sporočilo | |
| » | analiza hijack thisOddelek: Pomoč in nasveti | 1759 (1539) | klaudija |
| » | problem z računalnikom!!Oddelek: Pomoč in nasveti | 2139 (1938) | mjk |
| » | Trojanski konjOddelek: Pomoč in nasveti | 4000 (3611) | KaiCris |
| » | lsass.exe in panda platinum internet security 2005 problemOddelek: Pomoč in nasveti | 1655 (1589) | OtonVM |
| » | Cudni procesi v winXPOddelek: Operacijski sistemi | 1784 (1642) | Haby |