bruzi
ned 15.11.2009 10:04
Sigurnosni softver
HijackThis-ne mogu izbrisat file-ove(pomoc)
bruzi
ned 15.11.2009 10:04
Ad4pt3r
ned 15.11.2009 10:13
I meni isto to piše, a napravio sam scan sa Avirom, Malwarebytesom, F-Secure, McAfee i Asquared i nisu ništa našli osim cookieja...
bruzi
ned 15.11.2009 10:31
DA ali bio je jos jedan file od nekog pokera(000000000-00000000000000)nesto....-kojeg je normalno uklonio a ovo nece! Kad napravim sken sa registry repairom nadje 52 problema stisnem repair i kao popravio je (obrisao)a ja ponovo sken poslije toga ono opet istih 52 i svi su isti-HKEY_CLASSES_ROOT/WinRar/shellex/ContextMenuHandlers {B41DB860-64E4-11D2-9906-E49FADC173CA}-----ispod svijetlo pise The registry key points to the missing CLSID{B41DB860-64E4-11D2-9906-E49FADC173CA}.i takva ista 52 i on to ne moze obrisat ili popravit je svaki put iznova pise(52 problems found).Molim ako netko kuzi sto je to za pomoc!-hvala!
Ad4pt3r
ned 15.11.2009 10:52
Probaj sa CCleanrom i njegovim registry čistačem...Ako nejde tak probaj iz Safe Moda...
Moguče da su to neki ostaci od instal. programa pa ih Glary ne može očistiti
pero35
ned 15.11.2009 11:13
bruzi kaže...
Evo ovako napravim sken sa HijackT.. i postam to na njihovu stranicu na analizu jer mi Glary repair nalazi 52 problema(popravi)ja ponovo sken i opet su tu!-izdvajam njihovo upozorenje na 3 filea koja trebam fixcheked---------- O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:\Windows\System32\TuneUpDefragService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:\Windows\System32\TUProgSt.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)--E sad molio bi ako se netko kuzi treba li to obrisati i kako?-Na Hijack analizi pored tih fileova stoji objasnjenje --This entry is not running from the system32 folder,so it is probably nasty.This service(Issas.exe( seems to be nasty.)This process is not running from the System32 folder as it is supposed to be.-sva tri isto jedino u zagradi razlika za 2-(spoolsv.exe),za 3-(Issas.exe)--Ali kad ih ja fixcheked(ponovo sken s njim) oni i dalje ostaju znaci on ih ne moze uklonit!!!-puno HVALA!!!
instaliraj ovo i pobriši s tim imaš ga u 32 i 64 bitnoj verziji
bruzi
ned 15.11.2009 13:35
Probat cu ovo od tebe Pero(jel to nesto sigurno?).Ccleaner to ni ne vidi,imam i TuneUp utilities-ni to ne brise.-------Ne mogu obrisat!!! ni stim,ali jel netko zna sto bi to moglo biti?jel nesto opasno?virus,malwer il nesto?
pero35
ned 15.11.2009 13:53
bruzi kaže...
Probat cu ovo od tebe Pero(jel to nesto sigurno?).Ccleaner to ni ne vidi,imam i TuneUp utilities-ni to ne brise.-------Ne mogu obrisat!!! ni stim,ali jel netko zna sto bi to moglo biti?jel nesto opasno?virus,malwer il nesto?
meni to izgleda kao sistemi od samog windows a jesi li probao repair windowza i koji su
klikni na ikonu pa na propertis pa na security tu ti mora pisat owner administrator pa na edit pa probaj remove
tog administratora pa probaj pobrisat te sisteme koji ti se pojavljuju
bruzi
ned 15.11.2009 14:30
WIN7-64x.Malo sam proguglao i cini se da su neki ostaci virusa(ne znam kak cu to uklonit bas se ne kuzim dobro u kompove tako da ???????'-ja to ne mogu naci uopce u registru.
bruzi
pon 16.11.2009 10:51
Evo nasao sam ona tri zuta u registru u HKEY_LOCAL_MACHINE,(sto nisam mogao obrisati sa HiJackThis)-zna li netko jel ja to uopce smijem obrisati-posto nisam uopce siguran 100% sto je to?-pomoc ko se kuzi-HVALA!
zero cool
pon 16.11.2009 10:56
Možda ih Hijack nije mogao obrisati jer nije imao potrebno dopuštenje za to, možda su lockani ili je to zabranjeno od strane samih windowsa, ako ti sve radi normalno, ostavi ih, ako ne probaj sa alternativnim programom, a ako ništa onda reinstalacija windowsa i pošalješ sve u vječna lovišta...
bruzi
pon 16.11.2009 12:04
Prije 2-3 tjedna sam stavio Win7,radi sve dosta dobro-mogu ja to obrisat u registru al ne znam jel smijem(malo sam proguglo i kazu da bi to bili neki ostaci nekog virusa ili nekog zlocudnog al ajd budi siguran)necu ja to dirat ako nesto pocne drasticno stekat onda cu obrisat i bok!
rambox
pon 16.11.2009 13:22
Hijackthis je pouzdan na xp i to 32 bit a na Visti vec ima problema s ocitavanjem, a na 64 bit sistemu taj program ne radi kak treba i pokazuje krive i netocne podatke pa ga ne koristite onda uopce da ne bi bilo joj posle
bruzi
pon 16.11.2009 15:02
Dobro ok onda necu ni brisat te podatke mozda to nije opasno-(brisem HiJackThis)!!!thx.--(napravio sken jucer i sa SAS-professional i on mi nasao neka 2 trojana i neka 2 patch-a)ja patch-eve ne koristim pa sam to obrisao sve. Zvao se Trojan.Agent/Gen-HackPatch.
Evo ovako napravim sken sa HijackT.. i postam to na njihovu stranicu na analizu jer mi Glary repair nalazi 52 problema(popravi)ja ponovo sken i opet su tu!-izdvajam njihovo upozorenje na 3 filea koja trebam fixcheked---------- O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:\Windows\System32\TuneUpDefragService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:\Windows\System32\TUProgSt.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)--E sad molio bi ako se netko kuzi treba li to obrisati i kako?-Na Hijack analizi pored tih fileova stoji objasnjenje --This entry is not running from the system32 folder,so it is probably nasty.This service(Issas.exe( seems to be nasty.)This process is not running from the System32 folder as it is supposed to be.-sva tri isto jedino u zagradi razlika za 2-(spoolsv.exe),za 3-(Issas.exe)--Ali kad ih ja fixcheked(ponovo sken s njim) oni i dalje ostaju znaci on ih ne moze uklonit!!!-puno HVALA!!!