Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Avast prijavljuje DCOM Exploit

[es] :: Zaštita :: Avast prijavljuje DCOM Exploit

[ Pregleda: 2289 | Odgovora: 5 ] > FB > Twit

Postavi temu Odgovori

Autor
Pretraga teme: Traži
Markiranje Štampanje RSS

izida
stojanovic aleksandar
bgd

Član broj: 97823
Poruke: 1886
93.93.194.*

Sajt: www.youtube.com/watch?v=9..


+22 Profil

icon Avast prijavljuje DCOM Exploit11.01.2011. u 15:26 - pre 162 meseci
Prekljuce sam podigao sistem,7 32bit,i dva puta mi je danas Avast izbacio prozor sa nekakvim DCOM Exploit virusom.

Posle toga sam skenirao full sa Avastom i nista nije nasao,onda sam ukljucio da se skenira posle restarta racunara i opet nista nije prijavio!

Ja koliko vidim komp mi radi normalno,buni me sto je u tim prozorima pored ovog naziva DCOM Exploit bila i neka IP adresa.

Evo log-a.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:26:46 PM, on 1/11/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files\ASUS\EPU\EPU.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\DAODx.exe
C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU\EPU.exe" -b
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Logitech . Product Registration.lnk = C:\Program Files\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{4700E3B4-3EA7-49A3-9705-E5BE07A973C4}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{6D47D74C-08FD-46C8-8AEE-14EC49E374B4}: NameServer = 156.154.70.22 156.154.71.22
O20 - AppInit_DLLs: C:\Windows\system32\guard32.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

--
End of file - 5857 bytes
 
Odgovor na temu

izida
stojanovic aleksandar
bgd

Član broj: 97823
Poruke: 1886
93.93.194.*

Sajt: www.youtube.com/watch?v=9..


+22 Profil

icon Re: Avast prijavljuje DCOM Exploit12.01.2011. u 19:46 - pre 162 meseci
Evo tog prozora sto izbacuje
Prikačeni fajlovi
Untitled.png Untitled.png - 63.36k
 
Odgovor na temu

bachi
Vladimir Vučićević
System administrator
Beograd, Srbija

Član broj: 17912
Poruke: 5320
Via: [es] mailing liste

Sajt: www.bachi.in.rs


+2827 Profil

icon Re: Avast prijavljuje DCOM Exploit13.01.2011. u 10:07 - pre 162 meseci
izida napisa:
> Evo tog prozora sto izbacuje

Glasam za štikliranje "Do not show this again opcije". :D
... Vladimir Vučićević aka. Bachi
~~~ www.bachi.in.rs <<<<>>>> [email protected]
>>> It's nice to be important, but it's more important to be nice...
 
Odgovor na temu

izida
stojanovic aleksandar
bgd

Član broj: 97823
Poruke: 1886
93.93.194.*

Sajt: www.youtube.com/watch?v=9..


+22 Profil

icon Re: Avast prijavljuje DCOM Exploit13.01.2011. u 11:20 - pre 162 meseci
Pa stiklirao sam ja to odmah ali opet izbacuje,zbog toga sam i otvorio temu!!!
 
Odgovor na temu

goran9888

Član broj: 171536
Poruke: 235
*.dynamic.isp.telekom.rs.



+18 Profil

icon Re: Avast prijavljuje DCOM Exploit15.01.2011. u 23:52 - pre 162 meseci
Prelistaj google malo, ima mnogo tema, dosta njih i na Avast-ovom forumu ...


http://www.killertechtips.com/...k-shield-blocked-dcom-exploit/
 
Odgovor na temu

bluplayboy
Ivan Stevcic
Student(Pravni Fakultet - Nis)
Nis,Srbija

Član broj: 280856
Poruke: 1
*.mbb.telenor.rs.



Profil

icon Re: Avast prijavljuje DCOM Exploit04.03.2011. u 12:46 - pre 160 meseci
Iskljucivanje DCOM-a:

Klik na Start>Run, ukucajte dcomcnfg.exe.>Enter - Kliknite na Open Computer - zatim, desni Klik na My computer, izaberite Properties - zatim idete na Default Properties - opozovite izbor opcije ,,Enable Distributed COM on This Computer''. Zapamtite radnju koju ste izvrsili, a zatim ponovo pokrenite Windows.




[Ovu poruku je menjao Goran Mijailovic dana 05.03.2011. u 20:25 GMT+1]
 
Odgovor na temu

[es] :: Zaštita :: Avast prijavljuje DCOM Exploit

[ Pregleda: 2289 | Odgovora: 5 ] > FB > Twit

Postavi temu Odgovori

Srodne teme
Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.