Nova poruka

VIRUS..molin vas pomoć

poruka: 9
|
čitano: 2.090
|
moderatori: pirat, Lazarus Long, XXX-Man, vincimus
1
+/- sve poruke
ravni prikaz
starije poruke gore
ligudin 
17 godina
neaktivan
offline
pet 11.7.2008 23:48
Odgovori Citiraj
VIRUS..molin vas pomoć

nedavno mi avira i avast dolaze s porukon da mi je svchost.exe zarazen virusom BSD/Agent .kxv.bojim ga se unistit jer je svchost.exe bitan proces.trazio sam na google i nema nista o tome molim vas bilo kakvu pomoc.

 
trajni link
0 0 hvala 0
Lazarus Long 
17 godina
neaktivan
moderator
offline
sub 12.7.2008 1:44
Odgovori Citiraj
RE: VIRUS..molin vas pomoć
ligudin kaže...

nedavno mi avira i avast dolaze s porukon da mi je svchost.exe zarazen virusom BSD/Agent .kxv.bojim ga se unistit jer je svchost.exe bitan proces.trazio sam na google i nema nista o tome molim vas bilo kakvu pomoc.

  Ajde sad lepo objasni koji OS imas,dali ima service pack i koji, da bi mogli da ti pomognemo.
Za pocetak pretrazi kompjuter koliko svchostova imas (svchost.exe),desni cklick na fajl--->properties i pisi ovde 
0100110001100001011110100110000101110010011101010111001100100000010011000110111101101110011001110010000000110001001110010011011100110010
Poruka je uređivana zadnji put sub 12.7.2008 1:45 (Lazarus Long).
 
trajni link nadporuka
0 0 hvala 0
ligudin 
17 godina
neaktivan
offline
sub 12.7.2008 13:49
Odgovori Citiraj
VIRUS..molin vas pomoć

Evo ovako iman windows XP professional sa service pack 2.u procesima iman 6 svchost.exe a kad trazin nade mi 2:

 

1. u     C:/windows/system32

 

2. u     C:/windows/system 32/drivers

 

 

ovog donjeg mi antivirusi prepoznaju kao zarazenog

 

 
trajni link
0 0 hvala 0
nedIm 
17 godina
neaktivan
offline
sub 12.7.2008 13:58
Odgovori Citiraj
VIRUS..molin vas pomoć

svchost.exe ustvari nije "proces kao proces" nego se pod njim pokreće više sistemskih procesa

zbog boljeg iskorištavanja resursa (koliko ja znam). Vjerovatno ti je jedan od tih procesa pokrenutih

pod svchostom zaražen i mislim da nebi bilo rizično uništiti uzročnika problema...

A o samom virusu pojma nemam, a i google ne pronalazi ništa osim ove teme na forumu.

Moj PC  
trajni link
0 0 hvala 0
klimama 
17 godina
offline
sub 12.7.2008 14:07
Odgovori Citiraj
VIRUS..molin vas pomoć

gledao sam kod sebe u folder i u Visti i na XP-u

2. u C:/windows/system 32/drivers

i tamo nemam svchost.exe

 

jedino imam ovaj u

1. u C:/windows/system32

 

Tako da mislim da ga možeš izbrisati bez problema, ako možeš. Za svaki slučaj napravi kopiju, zlu ne trebalo.

 
trajni link
0 0 hvala 0
nedIm 
17 godina
neaktivan
offline
sub 12.7.2008 14:25
Odgovori Citiraj
VIRUS..molin vas pomoć

Evo nešto malo o svchost-ovima, nadam se da pomaže...

SUMMARY
This article describes Svchost.exe and its functions. Svchost.exe is a generic host process name for services that run from dynamic-link libraries (DLLs).
MORE INFORMATION
The Svchost.exe file is located in the %SystemRoot%\System32 folder. At startup, Svchost.exe checks the services portion of the registry to construct a list of services that it needs to load. Multiple instances of Svchost.exe can run at the same time. Each Svchost.exe session can contain a grouping of services, so that separate services can run, depending on how and where Svchost.exe is started. This allows for better control and easier debugging.

Svchost.exe groups are identified in the following registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Svchost

Each value under this key represents a separate Svchost group and is displayed as a separate instance when you are viewing active processes. Each value is a REG_MULTI_SZ value and contains the services that run under that Svchost group. Each Svchost group can contain one or more service names that are extracted from the following registry key, whose Parameters key contains a ServiceDLL value:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Service

To view the list of services that are running in Svchost:
Click Start on the Windows taskbar, and then click Run.
In the Open box, type CMD, and then press ENTER.
Type Tasklist /SVC, and then press ENTER.
Tasklist displays a list of active processes. The /SVC switch shows the list of active services in each process. For further information about a process, type the following command, and then press ENTER:
Tasklist /FI "PID eq processID" (with the quotation marks)

The following example of Tasklist output shows two instances of Svchost.exe that are running. Image Name PID Services
=====
System Process 0 N/A
System 8 N/A
Smss.exe 132 N/A
Csrss.exe 160 N/A
Winlogon.exe 180 N/A
Services.exe 208 AppMgmt,Browser,Dhcp,Dmserver,Dnscache,
Eventlog,LanmanServer,LanmanWorkstation,
LmHosts,Messenger,PlugPlay,ProtectedStorage,
Seclogon,TrkWks,W32Time,Wmi
Lsass.exe 220 Netlogon,PolicyAgent,SamSs
Svchost.exe 404 RpcSs
Spoolsv.exe 452 Spooler
Cisvc.exe 544 Cisvc
Svchost.exe 556 EventSystem,Netman,NtmsSvc,RasMan,
SENS,TapiSrv
Regsvc.exe 580 RemoteRegistry
Mstask.exe 596 Schedule
Snmp.exe 660 SNMP
Winmgmt.exe 728 WinMgmt
Explorer.exe 812 N/A
Cmd.exe 1300 N/A
Tasklist.exe 1144 N/A

The registry setting for the two groupings for this example are as follows:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost:
Netsvcs: Reg_Multi_SZ: EventSystem Ias Iprip Irmon Netman Nwsapagent Rasauto Rasman Remoteaccess SENS Sharedaccess Tapisrv Ntmssvc
RApcss :Reg_Multi_SZ: RpcSs

Moj PC  
trajni link
0 0 hvala 0
ferovca1 
17 godina
neaktivan
offline
sub 12.7.2008 14:42
Odgovori Citiraj
RE: VIRUS..molin vas pomoć

Probaj provjeriti računalo sa nekim drugim antivirus programom pa napiši da li je što našao.

 

Evo ti linkovi na besplatne online:

 

http://housecall.trendmicro.com/


http://www.kaspersky.com/scanforvirus

 

 

Moj PC  
trajni link nadporuka
0 0 hvala 0
ligudin 
17 godina
neaktivan
offline
sub 12.7.2008 18:00
Odgovori Citiraj
VIRUS..molin vas pomoć

pokrenija san kaspersky online scanner skenira mi vec 2:15 sata a tek je na 20%.je li mi se isplati cekat u pozadini san iskljucia sve programe koje mogu i ne ide brze.

naslo mi je 7 threat names i 19 infected objects

Poruka je uređivana zadnji put sub 12.7.2008 18:02 (ligudin).
 
trajni link
0 0 hvala 0
klimama 
17 godina
offline
sub 12.7.2008 18:15
Odgovori Citiraj
VIRUS..molin vas pomoć

Mogao si skinuti trial verziju Kasperskog. Potpuno je funkcionalna i traje 30 dana. Išlo bi ti brže.

http://www.kaspersky.com/trials

 

 
trajni link
0 0 hvala 0
1
Nova poruka
Pronađi
Prijava korisnika
E-mail:
Lozinka:
 
Aktivne teme
vrh stranice
Copyright © 2008 - 2025 Bug d.o.o. sva prava pridržana.