nemanja
-
Posts
41 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by nemanja
-
-
MBAM
2012/03/15 03:14:11 +0100 HERB-PC herb IP-BLOCK 77.78.192.111 (Type: outgoing, Port: 51926, Process: avwebgrd.exe)
2012/03/15 03:30:46 +0100 HERB-PC herb IP-BLOCK 77.78.192.111 (Type: outgoing, Port: 52089, Process: avwebgrd.exe)
was on firefox trying to do speed test again.. and on start of the test blocked....
no p2p software installed, it seems to me that every time i open some port something is trying to get out (IN)
same when I try to play online game, 1st am spiking with ping 70-130 then it go sick high 1k,2k,3k,4k,5k,6000ping and am out from sever
-
no blocks for now.. but i still cant belive it was chrome ... i'll keep u posted
-
hmm.. i restore that ''fakefirefox'' from carantine and scan again now shows no infection
-
but i have that fake fire fox in carantine... can i some how send it to U from carantine?? if u want to do little reaserch
-
i did download firefox again and shows no report.. am on firefox now tryed to download something from AMD site and speed seems little faster its constantly on 200kb/s
also i did scan before updating MBAM
Malwarebytes Anti-Malware (PRO) 1.60.1.1000
www.malwarebytes.org
Database version: v2012.03.14.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
herb :: HERB-PC [administrator]
Protection: Enabled
3/14/2012 10:53:03 PM
mbam-log-2012-03-14 (22-56-28).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 187067
Time elapsed: 2 minute(s), 44 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Users\herb\Downloads\Firefox Setup 11.0.exe (Trojan.FakeFireFox) -> No action taken.
(end)
it show that fake fire fox
and after update shows no infection
Malwarebytes Anti-Malware (PRO) 1.60.1.1000
www.malwarebytes.org
Database version: v2012.03.14.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
herb :: HERB-PC [administrator]
Protection: Enabled
3/14/2012 10:58:06 PM
mbam-log-2012-03-14 (22-58-06).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 187119
Time elapsed: 2 minute(s), 20 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
-
downloaded once more with 350kb/s and shows nothing. am on it right now hoping MBAM will not show any thing
-
from link u sent me...
-
2012/03/14 22:20:19 +0100 HERB-PC herb DETECTION C:\Users\herb\Downloads\Firefox Setup 11.0.exe Trojan.FakeFireFox QUARANTINE
2012/03/14 22:20:20 +0100 HERB-PC herb DETECTION c:\users\herb\downloads\firefox setup 11.0.exe Trojan.FakeFireFox DENY
NOW U WANT MALWARE IN MY PC???
should i install this?? -
lol O.o mBAM has detected a malicios process attempting to start and has blocked the execution attempt. please select an option below.
C:/ USERS/HERB/DOWNLOADS/FIREFOX SETUP 11.0.EXE TROJAN.FAKEFIREFOX
-
am downloading speed started with 100kb/s than goes down and down to 30kb/s and then back to 100kb/s
-
2012/03/14 22:03:18 +0100 HERB-PC herb IP-BLOCK 77.78.192.111 (Type: outgoing, Port: 51894, Process: chrome.exe)
-
-
ok! thanks for your time ! at least we try to fix. not malware i'll see what to do next.. it really goes on my nervs !! thanks again !! ;D
-
uninstalled
and MBAM shows again 2012/03/14 21:43:15 +0100 HERB-PC herb IP-BLOCK 77.78.192.111 (Type: outgoing, Port: 50950, Process: avwebgrd.exe) and i dont have p2p program installed -
-
i do, but when this problem came i can download on 400kb/s but something its slows down and speed goes down , only some times it let me down to download on 400+ but that is for short period, when i start any download it start with 400 and goes down and down ,, i remeber it was in bites once
-
1.43 1st time and i tryed again shows 0.00 dl speed upload is 0.74 and thats fine
-
i did and every time shows difrent result when i run it it goes to 300-350 and then bum down . also am monitoring on network meter and it goes up and down
-
well am paying for 4mb/s they give me 3.5 and thats ok.. at momment am downloading some driver from amd site just to check speed and its only 100kb/s
i have 2x2gb dd2/800mhz i'll try with only one stick to see if there is some diffrence
on C: 15gb free and whole hdd is 300gb have 2 more drives empty
-
thats done! but still having lagg in game not always, just form time to time goes extremly high, when am trying to download something speed goes to 300 and than down around 100 should be 400. on test speed is same goes up than down every time difrent result. am still thinking that i have some problem . any advice about my dns server can that be cause?
-
74.125.232.229 74.125.232.197 74.125.232.238 173.194.37.15 google
46.33.68.15 92.123.151.139 UK unknown
66.220.158.32 66.220.145.45 facebook
79.101.110.82 and this is my provider telekom RS
still having problem when some port is open ( my ping in game goes 5000 and i just lagg out from game)
-
ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=34b4765ae6aeea45ad11f952edbd40ec
# end=stopped
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-03-14 12:33:41
# local_time=2012-03-14 01:33:41 (+0100, Central Europe Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1792 16777215 100 0 370065 370065 0 0
# compatibility_mode=5893 16776574 100 94 336239 83314727 0 0
# compatibility_mode=8192 67108863 100 0 301243 301243 0 0
# scanned=8857
# found=0
# cleaned=0
# scan_time=344
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=34b4765ae6aeea45ad11f952edbd40ec
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-03-14 02:12:54
# local_time=2012-03-14 03:12:54 (+0100, Central Europe Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1792 16777215 100 0 370509 370509 0 0
# compatibility_mode=5893 16776574 100 94 336683 83315171 0 0
# compatibility_mode=8192 67108863 100 0 301687 301687 0 0
# scanned=302230
# found=0
# cleaned=0
# scan_time=5852
-
93.184.71.23 Slovakia Bratislava http://whois.domaintools.com/93.184.71.23
this is me
192.168.1.1 why it show my address, again and again..??and google 74.125.232.229
scan is in progress ill post results tomorrow
thank you for helping me!!! this is nightmare , never had problem like this..
-
http://whois.domaintools.com/4.23.52.126 dont know what this is
i will try to post as many difrent iP it shows in next h need some sleep have work tomorow 46.33.68.135 poped just now
should i install this??
my malwarebytes keeps on blocking several ip addresses (type: outgoing)..
in Resolved Malware Removal Logs
Posted
great man! seems like that worked!
on speed test shows good speed and i can download on 420kb/s again..
I can never thank you enough... but I will try to. Thanks a million.