PC Ekspert Forum - View Single Post

Costa · 12.05.2005., 19:52

Kod tebe mi je malo bed jer je racunalo od firme pa ne znam za ove trusted stvari da li je to admin postavio i da li je tko korisno uopce?
Uglanom budi oprezan, BTW hijackthis po defaultu radi backup tako da sve sto sredis mozes i vratiti.

Izgasi:
C:\WINDOWS\system32\proquota.exe
C:\WINDOWS\System32\bthcli.exe
C:\WINDOWS\System32\baseman.exe

Evo sto je meni sumnjivo:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://bacheca
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://bacheca
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://bacheca
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - Default URLSearchHook is missing
O4 - HKLM\..\Run: [7stj3nO] bthcli.exe
O4 - HKLM\..\Run: [Disk Keeper] C:\WINDOWS\System32\Services\{5595B9AC-1AA3-4E11-9914-7441D4C14217}\SECURITY.EXE
O4 - HKCU\..\Run: [MB2tRhi2R] baseman.exe
O4 - HKCU\..\Run: [SpywareNo] C:\Program Files\SpywareNo\SpywareNo.exe
O4 - Global Startup: BTTray.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O14 - IERESET.INF: START_PAGE_URL=http://bacheca
O15 - Trusted Zone: http://collaboration.saipem.pri
O15 - Trusted Zone: http://ibis.saipem.pri
O15 - Trusted Zone: http://rikm.saipem.pri
O15 - Trusted Zone: http://sharepoint.saipem.pri
O15 - Trusted Zone: http://weld.saipem.pri
O15 - Trusted Zone: http://collaboration.saipem.pri (HKLM)
O15 - Trusted Zone: http://ibis.saipem.pri (HKLM)
O15 - Trusted Zone: http://rikm.saipem.pri (HKLM)
O15 - Trusted Zone: http://sharepoint.saipem.pri (HKLM)
O15 - Trusted Zone: http://weld.saipem.pri (HKLM)
O15 - Trusted IP range: http://10.150.101.20
O15 - Trusted IP range: http://10.150.101.20 (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = saipem.pri
O17 - HKLM\Software\..\Telephony: DomainName = saipem.pri
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = saipem.pri
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

12.05.2005., 19:52	#2
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Kod tebe mi je malo bed jer je racunalo od firme pa ne znam za ove trusted stvari da li je to admin postavio i da li je tko korisno uopce? Uglanom budi oprezan, BTW hijackthis po defaultu radi backup tako da sve sto sredis mozes i vratiti. Izgasi: C:\WINDOWS\system32\proquota.exe C:\WINDOWS\System32\bthcli.exe C:\WINDOWS\System32\baseman.exe Evo sto je meni sumnjivo: R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://bacheca R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://bacheca R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://bacheca R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch R3 - Default URLSearchHook is missing O4 - HKLM\..\Run: [7stj3nO] bthcli.exe O4 - HKLM\..\Run: [Disk Keeper] C:\WINDOWS\System32\Services\{5595B9AC-1AA3-4E11-9914-7441D4C14217}\SECURITY.EXE O4 - HKCU\..\Run: [MB2tRhi2R] baseman.exe O4 - HKCU\..\Run: [SpywareNo] C:\Program Files\SpywareNo\SpywareNo.exe O4 - Global Startup: BTTray.lnk = ? O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O14 - IERESET.INF: START_PAGE_URL=http://bacheca O15 - Trusted Zone: http://collaboration.saipem.pri O15 - Trusted Zone: http://ibis.saipem.pri O15 - Trusted Zone: http://rikm.saipem.pri O15 - Trusted Zone: http://sharepoint.saipem.pri O15 - Trusted Zone: http://weld.saipem.pri O15 - Trusted Zone: http://collaboration.saipem.pri (HKLM) O15 - Trusted Zone: http://ibis.saipem.pri (HKLM) O15 - Trusted Zone: http://rikm.saipem.pri (HKLM) O15 - Trusted Zone: http://sharepoint.saipem.pri (HKLM) O15 - Trusted Zone: http://weld.saipem.pri (HKLM) O15 - Trusted IP range: http://10.150.101.20 O15 - Trusted IP range: http://10.150.101.20 (HKLM) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = saipem.pri O17 - HKLM\Software\..\Telephony: DomainName = saipem.pri O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = saipem.pri O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) __________________ Duke Nukem 3D online igranje TUTORIAL