Prijava
Registracija
Najdi forum

Splash Forum Arhiv Računalništvo, telefonija, internet in televizija virusi in trojanci

virusi in trojanci

anonimni uporabnik 12.03.2009 ob 06:07 zadnji odgovor 13.05.2013 ob 18:02

Pozdravljeni,

imam eno težavo pa ne vem kako naprej. Včeraj sem prijateljici očistil prenosnik, na keterem je imela oreng leglo trojancev. Uporabil sem Avast, ki sem ga prenesel z USB ključkom.
Zadevo sem nekajkrat pognal in uporabil tudi funkcijo, da prečisti računalnik ob zagonu (boot scan) tako, da sedaj ne najde nobenega virusa več.
Težava pa nastane, ko grem na net in hočem program registrirat. V tem primeru pa mi noče odpreti avastove strani (avast.com). Prav tako noče odpreti domače strani od nod32. Je pa zanimivo, da mi odpre avast.si vendar, ko grem na registracijo je link na .com/… in spet noče na tisto stran.
Prav tako ne morem winsov zagnati v “safe modu” (F8), kar me tudi čudi.

Domnevam, da je notri še vedno en bacil, ki “skrbi”, da ne morem priti na netu do antivirusnih strani ter “hudiča” dokončno pokončati. Torej dobrodošel vsakršen nasvet, kako naprej??

LP
BOS

klemenxx 12.03.2009 ob 06:11 zadnji odgovor 13.05.2013 ob 18:02

Instaliraj si program HijackThis
http://download.cnet.com/HijackThis/3000-8022_4-10379544.html

pa log datoteko (naredi samo Analyse) prilepi semkaj pa bomo
pregledali kaj je narobe in napisali svoje mnenje.

(\__/) Copy and paste bunny (='.'=) to help him gain (")_(") world domination
anonimni uporabnik 12.03.2009 ob 06:36 zadnji odgovor 13.05.2013 ob 18:02

Uf tole je blo pa hitro.
Evo log file:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:33:12 a.m., on 12/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\toshiba\IVP\swupdate\swupdtmr.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/english/
O2 – BHO: Skype add-on (mastermind) – {22BF413B-C6D2-4d91-82A9-A0F997BA588C} – C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 – BHO: (no name) – {53707962-6F74-2D53-2644-206D7942484F} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 – BHO: SSVHelper Class – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 – BHO: (no name) – {7E853D72-626A-48EC-A868-BA8D5E23E045} – (no file)
O2 – BHO: e404 helper – {8F10DE2B-E923-4548-B524-4D9C5FA80777} – C:\Program Files\Helper\1205017466.dll (file missing)
O2 – BHO: Windows Live Sign-in Helper – {9030D464-4C02-4ABF-8ECC-5164760863C6} – C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} – C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 – BHO: Google Dictionary Compression sdch – {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} – C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O3 – Toolbar: &Google Toolbar – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 – HKLM\..\Run: [PINGER] C:\TOSHIBA\IVP\ISM\pinger.exe /run
O4 – HKLM\..\Run: [ATIPTA] “C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe”
O4 – HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 – HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 – HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 – HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 – HKLM\..\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe”
O4 – HKLM\..\Run: [ScanRegistry] C:\W
O4 – HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 – HKLM\..\Run: [Avast Servicer] ashsva.exe
O4 – HKLM\..\Run: [TRUUpdater] “C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe” /bkground
O4 – HKLM\..\Run: [WatcherHelper] “C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe”
O4 – HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 – HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 – HKCU\..\Run: [MsnMsgr] “C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe” /background
O4 – HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 – HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 – HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 – HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 – HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 – HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 – HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 – Extra context menu item: I&zvoz v Microsoft Excel – res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 – Extra button: (no name) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 – Extra ‘Tools’ menuitem: Sun Java Console – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 – Extra button: Skype – {77BF5300-1474-4EC7-9980-D32B190E9B07} – C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 – Extra button: (no name) – {9034A523-D068-4BE8-A284-9DF278BE776E} – http://www.browsergate.com/redirect.php (file missing)
O9 – Extra ‘Tools’ menuitem: IE Anti-Spyware – {9034A523-D068-4BE8-A284-9DF278BE776E} – http://www.browsergate.com/redirect.php (file missing)
O9 – Extra button: (no name) – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra button: Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra ‘Tools’ menuitem: Windows Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O16 – DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) – http://go.microsoft.com/fwlink/?linkid=39204
O18 – Protocol: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 – Service: avast! iAVS4 Control Service (aswUpdSv) – ALWIL Software – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 – Service: Ati HotKey Poller – ATI Technologies Inc. – C:\WINDOWS\system32\Ati2evxx.exe
O23 – Service: avast! Antivirus – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 – Service: avast! Mail Scanner – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 – Service: avast! Web Scanner – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 – Service: Google Updater Service (gusvc) – Google – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 – Service: STI Simulator – Unknown owner – C:\WINDOWS\System32\PAStiSvc.exe
O23 – Service: Swupdtmr – Unknown owner – c:\toshiba\IVP\swupdate\swupdtmr.exe
O24 – Desktop Component 0: (no name) – http://www.nuevohondacivic.com/swf/goodies/e1024x768_01_f05.jpg


End of file – 7163 bytes

anonimni uporabnik 12.03.2009 ob 06:42 zadnji odgovor 13.05.2013 ob 18:02

Izvoli:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:33:12 a.m., on 12/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\toshiba\IVP\swupdate\swupdtmr.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/english/
O2 – BHO: Skype add-on (mastermind) – {22BF413B-C6D2-4d91-82A9-A0F997BA588C} – C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 – BHO: (no name) – {53707962-6F74-2D53-2644-206D7942484F} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 – BHO: SSVHelper Class – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 – BHO: (no name) – {7E853D72-626A-48EC-A868-BA8D5E23E045} – (no file)
O2 – BHO: e404 helper – {8F10DE2B-E923-4548-B524-4D9C5FA80777} – C:\Program Files\Helper\1205017466.dll (file missing)
O2 – BHO: Windows Live Sign-in Helper – {9030D464-4C02-4ABF-8ECC-5164760863C6} – C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} – C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 – BHO: Google Dictionary Compression sdch – {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} – C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O3 – Toolbar: &Google Toolbar – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 – HKLM\..\Run: [PINGER] C:\TOSHIBA\IVP\ISM\pinger.exe /run
O4 – HKLM\..\Run: [ATIPTA] “C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe”
O4 – HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 – HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 – HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 – HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 – HKLM\..\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe”
O4 – HKLM\..\Run: [ScanRegistry] C:\W
O4 – HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 – HKLM\..\Run: [Avast Servicer] ashsva.exe
O4 – HKLM\..\Run: [TRUUpdater] “C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe” /bkground
O4 – HKLM\..\Run: [WatcherHelper] “C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe”
O4 – HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 – HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 – HKCU\..\Run: [MsnMsgr] “C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe” /background
O4 – HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 – HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 – HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 – HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 – HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 – HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 – HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 – Extra context menu item: I&zvoz v Microsoft Excel – res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 – Extra button: (no name) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 – Extra ‘Tools’ menuitem: Sun Java Console – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 – Extra button: Skype – {77BF5300-1474-4EC7-9980-D32B190E9B07} – C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 – Extra button: (no name) – {9034A523-D068-4BE8-A284-9DF278BE776E} – http://www.browsergate.com/redirect.php (file missing)
O9 – Extra ‘Tools’ menuitem: IE Anti-Spyware – {9034A523-D068-4BE8-A284-9DF278BE776E} – http://www.browsergate.com/redirect.php (file missing)
O9 – Extra button: (no name) – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra button: Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra ‘Tools’ menuitem: Windows Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O16 – DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) – http://go.microsoft.com/fwlink/?linkid=39204
O18 – Protocol: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 – Service: avast! iAVS4 Control Service (aswUpdSv) – ALWIL Software – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 – Service: Ati HotKey Poller – ATI Technologies Inc. – C:\WINDOWS\system32\Ati2evxx.exe
O23 – Service: avast! Antivirus – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 – Service: avast! Mail Scanner – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 – Service: avast! Web Scanner – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 – Service: Google Updater Service (gusvc) – Google – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 – Service: STI Simulator – Unknown owner – C:\WINDOWS\System32\PAStiSvc.exe
O23 – Service: Swupdtmr – Unknown owner – c:\toshiba\IVP\swupdate\swupdtmr.exe
O24 – Desktop Component 0: (no name) – http://www.nuevohondacivic.com/swf/goodies/e1024x768_01_f05.jpg


End of file – 7163 bytes

anonimni uporabnik 12.03.2009 ob 06:58 zadnji odgovor 13.05.2013 ob 18:02

Test

klemenxx 12.03.2009 ob 07:06 zadnji odgovor 13.05.2013 ob 18:02

Na hitro ni videti ničesar ..

Še z beležnico odpri datoteko hosts
ki se nahaja nekje:

\windows\system32\drivers\etc

pa poglej kaj je vse noter vpisano,
načeloma mora biti samo 127.0.0.1 localhost

(\__/) Copy and paste bunny (='.'=) to help him gain (")_(") world domination
anonimni uporabnik 12.03.2009 ob 07:50 zadnji odgovor 13.05.2013 ob 18:02

Pozdravljen,

v hijack logu sem našel link na www . browsergate . com / redirect . php
kar naj bi bil virus

drugače pa je v hosts-u vse na 127.0.0.1 je pa pol datoteke “prazne” (veliko praznih vrstic).

PS: ne vem zakaj MON ni hotil “objaviti” mojih hijack log poročil? Izgleda, da si jih dobil.

LP
BOS

anonimni uporabnik 12.03.2009 ob 08:54 zadnji odgovor 13.05.2013 ob 18:02

Evo še hosts datoteka če bo kaj pomagalo
pa hvala za pomoč

——————————-

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample LMHOSTS file used by the Microsoft TCP/IP for Windows.
#

127.0.0.1 msnfix.changelog.fr
127.0.0.1 http://www.incodesolutions.com
127.0.0.1 virusinfo.prevx.com
127.0.0.1 download.bleepingcomputer.com
127.0.0.1 http://www.dazhizhu.cn
127.0.0.1 foro.noticias3d.com
127.0.0.1 http://www.nabble.com
127.0.0.1 lurker.clamav.net
127.0.0.1 lexikon.ikarus.at
127.0.0.1 research.sunbelt-software.com
127.0.0.1 http://www.virusdoctor.jp
127.0.0.1 http://www.elitepvpers.de
127.0.0.1 http://www.superuser.co.kr
127.0.0.1 ntfaq.co.kr
127.0.0.1 v.dreamwiz.com
127.0.0.1 cit.kookmin.ac.kr
127.0.0.1 forums.whatthetech.com
127.0.0.1 forum.hijackthis.de
127.0.0.1 http://www.huaifai.go.th
127.0.0.1 http://www.mostz.com
127.0.0.1 http://www.krupunmai.com
127.0.0.1 http://www.cddchiangmai.net
127.0.0.1 forum.malekal.com
127.0.0.1 tech.pantip.com
127.0.0.1 sapcupgrades.com
127.0.0.1 http://www.247fixes.com
127.0.0.1 forum.sysinternals.com
127.0.0.1 forum.telecharger.01net.com
127.0.0.1 sophos.com
127.0.0.1 foros.softonic.com
127.0.0.1 avast-home.uptodown.com
127.0.0.1 http://www.f-secure.com
127.0.0.1 http://www.chkrootkit.org
127.0.0.1 diamondcs.com.au
127.0.0.1 http://www.rootkit.nl
127.0.0.1 http://www.sysinternals.com
127.0.0.1 z-oleg.com
127.0.0.1 espanol.dir.groups.yahoo.com
127.0.0.1 http://www.castlecrops.com
127.0.0.1 http://www.misec.net
127.0.0.1 safecomputing.umn.edu
127.0.0.1 http://www.antirootkit.com
127.0.0.1 http://www.greatis.com
127.0.0.1 ar.answers.yahoo.com
127.0.0.1 http://www.rootkit.com
127.0.0.1 http://www.pctools.com
127.0.0.1 http://www.pcsupportadvisor.com
127.0.0.1 http://www.resplendence.com
127.0.0.1 http://www.personal.psu.edu
127.0.0.1 foro.ethek.com
127.0.0.1 vil.nail.comm
127.0.0.1 search.mcafee.com
127.0.0.1 wwww.mcafee.com
127.0.0.1 download.nai.com
127.0.0.1 wwww.experts-exchange.com
127.0.0.1 http://www.bakunos.com
127.0.0.1 http://www.darkclockers.com
127.0.0.1 http://www.Merijn.org
127.0.0.1 http://www.spywareinfo.com
127.0.0.1 http://www.spybot.info
127.0.0.1 http://www.viruslist.com
127.0.0.1 http://www.hijackthis.de
127.0.0.1 http://www.f-secure.com
127.0.0.1 forum.kaspersky.com
127.0.0.1 majorgeeks.com
127.0.0.1 http://www.avp.com
127.0.0.1 http://www.virustotal.com
127.0.0.1 http://www.sophos.com
127.0.0.1 linhadefensiva.uol.com.br
127.0.0.1 cmmings.cn
127.0.0.1 http://www.sergiwa.com
127.0.0.1 http://www.avg-antivirus.net
127.0.0.1 http://www.kaspersky-labs.com
127.0.0.1 http://www.kaspersky.com
127.0.0.1 http://www.bleepingcomputer.com
127.0.0.1 http://www.free.grisoft.com
127.0.0.1 alerta-antivirus.inteco.es
127.0.0.1 securityresponse.symantec.com
127.0.0.1 http://www.analysis.seclab.tuwien.ac.at
127.0.0.1 http://www.symantec.com
127.0.0.1 http://www.kztechs.com
127.0.0.1 ad-aware-se.uptodown.com
127.0.0.1 liveupdate.symantecliveupdate.com
127.0.0.1 liveupdate.symantec.com
127.0.0.1 customer.symantec.com
127.0.0.1 update.symantec.com
127.0.0.1 http://www.box.net
127.0.0.1 http://www.mcafee.com
127.0.0.1 http://www.free.avg.com
127.0.0.1 download.mcafee.com
127.0.0.1 mast.mcafee.com
127.0.0.1 http://www.tecno-soft.com
127.0.0.1 ladooscuro.es
127.0.0.1 http://ftp.drweb.com
127.0.0.1 guru0.grisoft.cz
127.0.0.1 guru1.grisoft.cz
127.0.0.1 guru2.grisoft.cz
127.0.0.1 guru3.grisoft.cz
127.0.0.1 download.bleepingcomputer.com
127.0.0.1 it.answers.yahoo.com
127.0.0.1 guru4.grisoft.cz
127.0.0.1 guru5.grisoft.cz
127.0.0.1 http://www.virusspy.com
127.0.0.1 http://www.download.f-secure.com
127.0.0.1 http://www.malwareremoval.com
127.0.0.1 forums.cnet.com
127.0.0.1 hjt-data.trend-braintree.com
127.0.0.1 http://www.pantip.com
127.0.0.1 secubox.aldria.com
127.0.0.1 http://www.forospyware.com
127.0.0.1 http://www.manuelruvalcaba.com
127.0.0.1 http://www.zonavirus.com
127.0.0.1 http://www.siteadvisor.com
127.0.0.1 blog.threatfire.com
127.0.0.1 http://www.threatexpert.com
127.0.0.1 blog.hispasec.com
127.0.0.1 http://www.configurarequipos.com
127.0.0.1 sosvirus.changelog.fr
127.0.0.1 mailcenter.rising.com.cn
127.0.0.1 mailcenter.rising.com
127.0.0.1 http://www.rising.com.cn
127.0.0.1 http://www.rising.com
127.0.0.1 http://www.babooforum.com.br
127.0.0.1 http://www.runscanner.net
127.0.0.1 sosvirus.changelog.fr
127.0.0.1 upload.changelog.fr
127.0.0.1 http://www.raymond.cc
127.0.0.1 changelog.fr
127.0.0.1 http://www.pcentraide.com
127.0.0.1 atazita.blogspot.com
127.0.0.1 http://www.thinkpad.cn
127.0.0.1 http://www.final4ever.com
127.0.0.1 files.filefont.com
127.0.0.1 http://www.infos-du-net.com
127.0.0.1 http://www.trendsecure.com
127.0.0.1 forum.hardware.fr
127.0.0.1 http://www.utilidades-utiles.comwww.spychecker.com
127.0.0.1 http://www.geekstogo.com
127.0.0.1 forums.maddoktor2.com
127.0.0.1 http://www.smokey-services.eu
127.0.0.1 http://www.clubic.com
127.0.0.1 http://www.linhadefensiva.org
127.0.0.1 download.sysinternals.com
127.0.0.1 http://www.pcguide.com
127.0.0.1 http://www.thetechguide.com
127.0.0.1 http://www.ozzu.com
127.0.0.1 http://www.changedetection.com
127.0.0.1 espanol.groups.yahoo.com
127.0.0.1 community.thaiware.com
127.0.0.1 http://www.avpclub.ddns.info
127.0.0.1 http://www.offensivecomputing.net
127.0.0.1 http://www.grisoft.com
127.0.0.1 boardreader.com
127.0.0.1 http://www.guiadohardware.net
127.0.0.1 http://www.msnvirusremoval.com
127.0.0.1 http://www.cisrt.org
127.0.0.1 fixmyim.com
127.0.0.1 samroeng.hi5.com
127.0.0.1 foro.elhacker.net
127.0.0.1 http://www.daboweb.com
127.0.0.1 service1.symantec.com
127.0.0.1 forums.techguy.org
127.0.0.1 http://www.incodesolutions.com
127.0.0.1 hijackthis.download3000.com
127.0.0.1 http://www.cybertechhelp.com
127.0.0.1 http://www.superdicas.com.br
127.0.0.1 http://www.51nb.com
127.0.0.1 downloads.andymanchesta.com
127.0.0.1 andymanchesta.com
127.0.0.1 info.prevx.com
127.0.0.1 aknow.prevx.com
127.0.0.1 http://www.zonavirus.com
127.0.0.1 securitywonks.net
127.0.0.1 http://www.lavasoft.com
127.0.0.1 http://www.virscan.org
127.0.0.1 http://www.eeload.com
127.0.0.1 down.www.kingsoft.com
127.0.0.1 http://www.file.net
127.0.0.1 onecare.live.com
127.0.0.1 mvps.org
127.0.0.1 http://www.laneros.com
127.0.0.1 http://www.housecall.trendmicro.com
127.0.0.1 http://www.avast.com
127.0.0.1 http://www.free.avg.com
127.0.0.1 http://www.onlinescan.avast.com
127.0.0.1 http://www.ewido.net
127.0.0.1 http://www.trucoswindows.net
127.0.0.1 http://www.futurenow.bitdefender.com
127.0.0.1 http://www.bitdefender.com
127.0.0.1 http://www.f-prot.com
127.0.0.1 http://www.trendsecure.com
127.0.0.1 security.symantec.com
127.0.0.1 oldtimer.geekstogo.com
127.0.0.1 http://www.avira.com
127.0.0.1 http://www.eset.com
127.0.0.1 http://www.free.avg.com
127.0.0.1 http://www.free-av.com
127.0.0.1 kr.ahnlab.com
127.0.0.1 http://www.eset.com
127.0.0.1 forospyware.com
127.0.0.1 thejokerx.blogspot.com
127.0.0.1 http://www.2-spyware.com
127.0.0.1 http://www.antivir.es
127.0.0.1 http://www.prevx.com
127.0.0.1 http://www.ikarus.net
127.0.0.1 bbs.s-sos.net
127.0.0.1 http://www.housecall.trendmicro.com
127.0.0.1 http://www.superdicas.com.br
127.0.0.1 http://www.forums.majorgeeks.com
127.0.0.1 http://www.castlecops.com
127.0.0.1 http://www.virusspy.com
127.0.0.1 andymanchesta.com
127.0.0.1 http://www.kaspersky.es
127.0.0.1 subs.geekstogo.com
127.0.0.1 http://www.trendmicro.com
127.0.0.1 http://www.fortinet.com
127.0.0.1 http://www.safer-networking.org
127.0.0.1 http://www.fortiguardcenter.com
127.0.0.1 http://www.dougknox.com
127.0.0.1 http://www.vsantivirus.com
127.0.0.1 http://www.firewallguide.com
127.0.0.1 http://www.auditmypc.com
127.0.0.1 http://www.spywaredb.com
127.0.0.1 http://www.mxttchina.com
127.0.0.1 http://www.ziggamza.net
127.0.0.1 http://www.forospyware.es
127.0.0.1 http://www.antivirus.comodo.com
127.0.0.1 http://www.spywareterminator.com
127.0.0.1 http://www.eradicatespyware.net
127.0.0.1 http://www.freespywareremoval.info
127.0.0.1 http://www.personalfirewall.comodo.com
127.0.0.1 http://www.clamav.net
127.0.0.1 http://www.antivirus.about.com
127.0.0.1 http://www.pandasecurity.com
127.0.0.1 http://www.webphand.com
127.0.0.1 mx.answers.yahoo.com
127.0.0.1 http://www.securitywonks.net
127.0.0.1 http://www.sandboxie.com
127.0.0.1 http://www.clamwin.com
127.0.0.1 http://www.cwsandbox.org
127.0.0.1 http://www.ca.com
127.0.0.1 http://www.arswp.com
127.0.0.1 es.answers.yahoo.com
127.0.0.1 http://www.trucoswindows.es
127.0.0.1 http://www.networkworld.com
127.0.0.1 http://www.cddchiangmai.net
127.0.0.1 http://www.threatexpert.com
127.0.0.1 http://www.norman.com
127.0.0.1 espanol.answers.yahoo.com
127.0.0.1 http://www.tallemu.com
127.0.0.1 virscan.org
127.0.0.1 http://www.viruschief.com
127.0.0.1 scanner.virus.org
127.0.0.1 http://www.hijackthis.de
127.0.0.1 housecall65.trendmicro.com
127.0.0.1 http://www.guiadohardware.net
127.0.0.1 hjt.networktechs.com
127.0.0.1 http://www.techsupportforum.com
127.0.0.1 http://www.whatthetech.com
127.0.0.1 http://www.soccersuck.com
127.0.0.1 http://www.pcentraide.com
127.0.0.1 comunidad.wilkinsonpc.com.co
127.0.0.1 forum.piriform.com
127.0.0.1 http://www.tweaksforgeeks.com
127.0.0.1 http://www.daniweb.com
127.0.0.1 http://www.geekstogo.com
127.0.0.1 es.answers.yahoo.com
127.0.0.1 http://www.techsupportforum.com
127.0.0.1 http://www.pchell.com
127.0.0.1 http://www.spyany.com
127.0.0.1 forums.techguy.org
127.0.0.1 http://www.experts-exchange.com
127.0.0.1 http://www.wikio.es
127.0.0.1 http://www.pandasecurity.com
127.0.0.1 forums.devshed.com
127.0.0.1 forum.tweaks.com
127.0.0.1 http://www.wilderssecurity.com
127.0.0.1 http://www.techspot.com
127.0.0.1 http://www.thecomputerpitstop.com
127.0.0.1 es.wasalive.com
127.0.0.1 secunia.com
127.0.0.1 es.kioskea.net
127.0.0.1 http://www.taringa.net
127.0.0.1 http://www.cyberdefender.com
127.0.0.1 http://www.feedage.com
127.0.0.1 new.taringa.net
127.0.0.1 forum.zazana.com
127.0.0.1 forum.clubedohardware.com.br
127.0.0.1 http://www.computing.net
127.0.0.1 discussions.virtualdr.com
127.0.0.1 forum.securitycadets.com
127.0.0.1 http://www.techimo.com
127.0.0.1 13iii.com
127.0.0.1 http://www.dicasweb.com.br
127.0.0.1 http://www.infosecpodcast.com
127.0.0.1 http://www.usbcleaner.cn
127.0.0.1 http://www.net-security.org
127.0.0.1 http://www.bleedingthreats.net
127.0.0.1 acs.pandasoftware.com
127.0.0.1 http://www.funkytoad.com
127.0.0.1 http://www.360safe.cn
127.0.0.1 http://www.360safe.com
127.0.0.1 bbs.360safe.cn
127.0.0.1 bbs.360safe.com
127.0.0.1 codehard.wordpress.com
127.0.0.1 forum.clubedohardware.com.br
127.0.0.1 http://www.360.cn
127.0.0.1 http://www.360.com
127.0.0.1 bbs.360safe.cn
127.0.0.1 bbs.360safe.com
127.0.0.1 http://www.forospyware.es
127.0.0.1 p3dev.taringa.net
127.0.0.1 http://www.precisesecurity.com
127.0.0.1 baike.360.cn
127.0.0.1 baike.360.com
127.0.0.1 kaba.360.cn
127.0.0.1 kaba.360.com
127.0.0.1 deckard.geekstogo.com
127.0.0.1 http://www.taringa.net
127.0.0.1 forums.comodo.com
127.0.0.1 http://www.mvps.org
127.0.0.1 down.360safe.cn
127.0.0.1 down.360safe.com
127.0.0.1 x.360safe.com
127.0.0.1 dl.360safe.com
127.0.0.1 http://ftp.drweb.com
127.0.0.1 http://www.hotshare.net
127.0.0.1 es.wasalive.com
127.0.0.1 updatem.360safe.com
127.0.0.1 updatem.360safe.cn
127.0.0.1 update.360safe.cn
127.0.0.1 update.360safe.com
127.0.0.1 http://www.utilidades-utiles.com
127.0.0.1 forum.kaspersky.com
127.0.0.1 bbs.duba.net
127.0.0.1 http://www.duba.net
127.0.0.1 zhidao.baidu.com
127.0.0.1 hi.baidu.com
127.0.0.1 http://www.drweb.com.es
127.0.0.1 msncleaner.softonic.com
127.0.0.1 http://www.javacoolsoftware.com
127.0.0.1 file.ikaka.com
127.0.0.1 file.ikaka.cn
127.0.0.1 bbs.ikaka.com
127.0.0.1 zhidao.ikaka.com
127.0.0.1 http://www.eset-la.com
127.0.0.1 http://www.eset-la.com
127.0.0.1 software-files.download.com
127.0.0.1 http://www.ikaka.com
127.0.0.1 http://www.ikaka.cn
127.0.0.1 bbs.cfan.com.cn
127.0.0.1 http://www.cfan.com.cn
127.0.0.1 http://www.pandasecurity.com
127.0.0.1 es.mcafee.com
127.0.0.1 downloads.malwarebytes.org
127.0.0.1 bbs.kafan.cn
127.0.0.1 bbs.kafan.com
127.0.0.1 bbs.kpfans.com
127.0.0.1 bbs.taisha.org
127.0.0.1 http://www.manuelruvalcaba.com
127.0.0.1 support.f-secure.com
127.0.0.1 bbs.winzheng.com
127.0.0.1 alerta-antivirus.inteco.es
127.0.0.1 foros.zonavirus.com
127.0.0.1 alerta-antivirus.red.es
127.0.0.1 http://www.zonavirus.com
127.0.0.1 http://www.malwarebytes.org
127.0.0.1 http://www.commentcamarche.net
127.0.0.1 http://www.ewido.net
127.0.0.1 http://www.infospyware.com
127.0.0.1 http://www.bitdefender.es
127.0.0.1 housecall.trendmicro.com
127.0.0.1 foros.toxico-pc.com
127.0.0.1 http://www.SUPERAntiSpyware.com
127.0.0.1 http://www.emsisoft.de
127.0.0.1 http://www.securitynewsportal.com

anonimni uporabnik 12.03.2009 ob 13:02 zadnji odgovor 13.05.2013 ob 18:02

Če ti browser ne dovoli na AV strani, je to lahko znak, da imaš računalnik še kar okužen. Morda pa Avast le ni najbolje opravil svoje naloge? S Hijackom odstrani nepotrebne stvari, razne toolbare, ki jih prav nič ne rabiš. Poskusi še čiščenje s Sbybotom. Zbriši tudi vse nepotrebne začasne datoteke z diska.

anonimni uporabnik 12.03.2009 ob 13:05 zadnji odgovor 13.05.2013 ob 18:02

Še tole: reg. št. za registracijo Avasta lahko dobiš tudi tule:

Vpiši svoj mail, nato pa številko posreduj frendici, pa naj jo vnese v prigram Avast. That’s all folks!

klemenxx 12.03.2009 ob 14:09 zadnji odgovor 13.05.2013 ob 18:02

Najprej hosts datoteko skopiraj npr. na hosts.old

potem pa pobriši vse zapise v hosts datoteko
v njej mora biti samo vrstica:

127.0.0.1 localhost

(\__/) Copy and paste bunny (='.'=) to help him gain (")_(") world domination
anonimni uporabnik 13.05.2013 ob 18:02 zadnji odgovor 13.05.2013 ob 18:02

Kako naj odstranim detoteko ImApp argument Wes,Prosim za nasvet hvala

Forum je zaprt za komentiranje.

New Report

Close