Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Kaspersky prijavio,koliko je opasno?

[es] :: Zaštita :: Kaspersky prijavio,koliko je opasno?

[ Pregleda: 2519 | Odgovora: 13 ] > FB > Twit

Postavi temu Odgovori

Autor
Pretraga teme: Traži
Markiranje Štampanje RSS

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Kaspersky prijavio,koliko je opasno?24.11.2008. u 11:46 - pre 187 meseci
Pokrenuo sam nekakav keymaker .exe i Kaspersky mi prijavljuje da
je potencijalno opasan program sa velikim ratingom opasnosti zbog
toga sto ne sadrzi digital signature.
Tako pise u prijavi pa bih zamolio Vas koji ovu temu dobro poznajete
da malo pojasnite.
Kakva je to pretnja u vezi digital signature i tako to?
Koje su moguce posledice?
Znam zasto ovakve stvari sluze ali ja sam ovo pokrenuo cisto da testiram Kaspersky.
Da vidim da li ce da reaguje i da naucim sto bolje da podesim Kaspersky i da ga koristim.

Hvala


Prikačeni fajlovi
11-24-2008 12-08-12 PM.png 11-24-2008 12-08-12 PM.png - 33.54k
 
Odgovor na temu

bachi
Vladimir Vučićević
System administrator
Beograd, Srbija

Član broj: 17912
Poruke: 5318

Sajt: www.bachi.in.rs


+2827 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 12:48 - pre 187 meseci
Kao i svaki drugi program koji nije digitalno potpisan. Može biti virus, a i ne mora.

Poenta je da ako jeste virus, blokiraće ga Kasperskova AV komponenta.

Ja bih prvo kliknio na Limited i ako radi odlično. A ako ne radi kao limited, stavi Yes.
... Vladimir Vučićević aka. Bachi
~~~ www.bachi.in.rs <<<<>>>> [email protected]
>>> It's nice to be important, but it's more important to be nice...
 
Odgovor na temu

magna86
Anti Malware Fighter

Član broj: 189287
Poruke: 557

Sajt: www.mycity.rs/Ambulanta


+16 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 15:41 - pre 187 meseci
ja mislim da je to neki krek...hm
keymaker..sama rec kaze..i mislim da nece biti nikakvih problema,mada ako zelis mozemo da proverimo log HjT programa
http://www.majorgeeks.com/download5554.html
stavi ga u neki stalni direktorijum da moze praviti becup,promeni mu naziv pa daj HjT log
http://www.itfix.biz/images/Malware.JPG
 
Odgovor na temu

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 17:52 - pre 187 meseci
Dozvolio sam pokretanje onog keymakera i evo log:

Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:50:17 PM, on 11/24/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Program Files\zeraha.org\NetGraph\NetGraph2.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\NoName\Desktop\Zastita\Zastita.exe

O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [Creative MediaSource Go] C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe /SCB
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Server4PC.lnk = C:\Program Files\TechniSat DVB\bin\Server4PC.exe
O4 - Global Startup: SnagIt 9.lnk = C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{F6A18424-71D9-4FFB-9089-F910280ED3B2}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O18 - Protocol: bw+0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: offline-8876480 - {20A12324-1266-465D-B9AD-C874F098B93D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 19626 bytes
 
Odgovor na temu

kristi1

Član broj: 151211
Poruke: 2012
*.ptt.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 18:12 - pre 187 meseci
@yeljko jel imas probleme sa internetom?
 
Odgovor na temu

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 20:07 - pre 187 meseci
Citat:
kristi1: @yeljko jel imas probleme sa internetom?


Imam grdne probleme (wireless).
Vise nemam interneta nego sto imam.
Imam brzinu 512/256 ali svakog dana,ama bas svakog, od
poslepodne pa do kasno u noc,iza ponoci, mi skoro kao i da
neradi.Stranice skoro ne moze da otvara a ja sve mislim da
je preopterecena bazna.Slicno nesto kao da nesto skidam a u isto vreme
da surfam pa nikad da otvori.
Da dodam jos nesto,vrlo cesto mi se desava da kaspersky prijavljuje napade
na moj racunar sa nekih IP-ova i svaki ide na port 1434 obavezno.

[Ovu poruku je menjao yeljko dana 24.11.2008. u 21:31 GMT+1]
 
Odgovor na temu

kristi1

Član broj: 151211
Poruke: 2012
*.ptt.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 20:40 - pre 187 meseci
Udji u registry Start\ run\ regedit
pa prati ovu putanju HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID
obrisi ovaj broj {20A12324-1266-465D-B9AD-C874F098B93D}
Postavi novi HJT log
 
Odgovor na temu

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Re: Kaspersky prijavio,koliko je opasno?24.11.2008. u 21:15 - pre 187 meseci
Evo obrisao sam i tu je novi log.
Mozes li mi reci ustvari sta sam to obrisao,video sam samo
da je nesto bilo blokirano onim registrijem (nesto u vezi logitech)?

Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:08:31 PM, on 11/24/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\zeraha.org\NetGraph\NetGraph2.exe
C:\Documents and Settings\NoName\Desktop\Zastita\Zastita.exe

O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [Creative MediaSource Go] C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe /SCB
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Server4PC.lnk = C:\Program Files\TechniSat DVB\bin\Server4PC.exe
O4 - Global Startup: SnagIt 9.lnk = C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{F6A18424-71D9-4FFB-9089-F910280ED3B2}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O18 - Protocol: bw+0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw+0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw-0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw-0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw00 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw00s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw10 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw10s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw20 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw20s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw30 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw30s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw40 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw40s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw50 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw50s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw60 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw60s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw70 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw70s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw80 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw80s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw90 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bw90s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwa0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwa0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwb0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwb0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwc0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwc0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwd0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwd0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwe0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwe0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwf0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwf0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwg0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwh0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwh0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwi0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwi0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwj0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwj0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwk0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwk0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwl0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwl0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwm0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwm0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwn0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwn0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwo0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwo0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwp0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwp0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwq0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwq0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwr0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwr0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bws0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bws0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwt0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwt0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwu0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwu0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwv0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwv0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bww0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bww0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwx0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwx0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwy0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwy0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwz0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: bwz0s - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: offline-8876480 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 13698 bytes
 
Odgovor na temu

magna86
Anti Malware Fighter

Član broj: 189287
Poruke: 557

Sajt: www.mycity.rs/Ambulanta


+16 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 07:28 - pre 187 meseci
obrisao si CLSID registry key 018 linije
Code:
O18 - Protocol: bwt0 - {20A12324-1266-465D-B9AD-C874F098B93D} - (no file)

...ali nije uspelo...hm
aj probamo sa HjT-om..

pokreni HjT i Fix sve sto sam ti napisao u notepadu

onda postavi svez HjT log



http://www.itfix.biz/images/Malware.JPG
Prikačeni fajlovi
HjT Fix.txt HjT Fix.txt - 5.72k
 
Odgovor na temu

kristi1

Član broj: 151211
Poruke: 2012
*.ptt.rs.

Sajt: www.mycity.rs/Ambulanta


+88 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 07:48 - pre 187 meseci
Uradi ovo sto ti je magna predlozio. Brisemo BackWeb adware, instalirao si ga prilikom instalacije logitech.
 
Odgovor na temu

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 10:49 - pre 187 meseci
Evo novi log,izgleda da sam uspeo izbrisati.
Cemu je ovo sluzilo i cemu je smetalo?


Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:47:44 AM, on 11/25/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Program Files\zeraha.org\NetGraph\NetGraph2.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\NoName\Desktop\Zastita\Zastita.exe

O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [Creative MediaSource Go] C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe /SCB
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Server4PC.lnk = C:\Program Files\TechniSat DVB\bin\Server4PC.exe
O4 - Global Startup: SnagIt 9.lnk = C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{F6A18424-71D9-4FFB-9089-F910280ED3B2}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{04D38A62-ECAA-45F8-BD28-8D17D05F49DF}: NameServer = 87.250.98.250 208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 7872 bytes
 
Odgovor na temu

Blue82
dipl. ecc.

Član broj: 165981
Poruke: 838
*.adsl-a-1.sezampro.yu.



+322 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 19:36 - pre 187 meseci
Zanima me jedno, da li si ga pokrenuo kao limited ili u punoj varijanti? Cisto da vidim da li i taj limited moze da propusti neku opasnu radnju.
 
Odgovor na temu

yeljko

Član broj: 97908
Poruke: 580
213.196.68.*



+4 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 22:31 - pre 187 meseci
Pokrenuo sam u punoj varijanti,znaci ne limited (YES).
 
Odgovor na temu

Blue82
dipl. ecc.

Član broj: 165981
Poruke: 838
*.adsl-a-1.sezampro.yu.



+322 Profil

icon Re: Kaspersky prijavio,koliko je opasno?25.11.2008. u 23:25 - pre 187 meseci
Aha, e pa blago tebi :) Uvek prvo probas onako pogotovo ako to nije neki komplikovan program sa puno funkcija neko keygen i slicno. Jer kada pokusa neki upis u registar ili izmenu necega znacajnog u tome ce biti sprecen a ako treba samo nesto da ti prikaze ili uradi nesto jednostavno to ce mu svakako dopustiti i ti ne gubis nista. Najgore sto moze da ti se desi je da ne radi a onda je na tebi da odlucis da li ces mu kod ponovnog startovanja reci YES ili NO. Pitao sam te to jer me je zanimalo koliko je pouzdana ta opcija, jer sam mislio da si se zarazio i pored toga. Poz!
 
Odgovor na temu

[es] :: Zaštita :: Kaspersky prijavio,koliko je opasno?

[ Pregleda: 2519 | Odgovora: 13 ] > FB > Twit

Postavi temu Odgovori

Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.