02-09-2010 9:08
Re: virus blokira update od MS-a
Iskopiraj ovo u notepad pod nazivom CFScript i prevuci misem na combofix.
[code]
File::
c:\windows\system32\ytdid.dll
Driver::
ashqcisz
tmdtzmh
ytjmtg
NetSvcs::
ashqcisz
tmdtzmh
ytjmtg
[/code]
Forumi ::
ES::Zastita
Povezani zapisi:
09-03-2010 7:37
*Malwarebytes nije AntiVirus!* To je helperski program koji mozes intalirati uz AntiVirus.
cak ni MBAM sa real time zastitom ( radi automacki ono sto si ti napisao da radis rucno) ne moze da zameni pravi AntiVirus program
Uradi sledece:
Download-uj i instaliraj jedan od sledecih AntiVirus programa:
*avast5 ili avira.* Oba programa su bespraltna a dobri su AV programi.
http://www.avast.com/free-antivirus-download
http://www.avira.com/en/pages/index.php
Kad instaliras AntiVirus,...
ES::Zastita
09-02-2010 23:29
Prije par dan sam pokupio virus. Kada otvaram sa google-a rezultate pretrage neki linkovi se preusmjere. Nije bitno koji browser, desava se na svim. Sistem mi je Windows 7 32bit koji je updatovan. Za antivirus koristim samo Malwarebytes (skeniram sve sta skinem sa neta prije upotrebe).
Pa ako moze mala pomoc kako da se rijesim ovog napasnika :P
Jedino sto mi je sumljivo:
http://img188.imageshack.us/img188/506/pic01.gif
hijack log(123456.exe je hijackthis):
[code]
Logfile of Trend Mi...
ES::Zastita
09-01-2010 18:29
-- John Bambenek bambenek at gmail /dot/ com
(c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
ISC
08-31-2010 15:16
 Timing is everything–especially if you’re trying to spread malware. Last week, the developers of the popular Twitter application Tweetdeck notified users that due to changes in the supported authentication protocols by Twitter, users of older versions would have to upgrade.
Naturally, cybercriminals latched onto this bit of news and sent out their own tweets saying the same thing. However, their malicious tweets contained a URL-shortened link to what was supposedly a Tweetdeck installer named tweetdeck-08302010-update.exe:
This particular file, however, is not a legitimate installer but a TDSS variant detected as TROJ_TDSS.FAT. The TDSS malware family functions as rootkits that are able to take complete control of affected systems; in addition their complexity and sophistication makes these malware difficult to remove.
Tweetdeck has officially warned their users not to fall prey to this attack. In addition to detecting the malicious “installer”, the website hosting it has been blocked as well.
Trend Micro Advanced Threat Researcher Paul Ferguson was earlier interviewed about this threat by PC World. His comments may be found here.
Post from: TrendLabs | Malware Blog - by Trend Micro
TDSS Pretending To Be Tweetdeck Update
trendmicro
| 
