Dali neko zna šta je ovo. Malo sam Googlao i našao sledeće: > Found the following line in the registry "C:\winnt\system32 > \hiddenrun.exe WinSrv.exe" under the run statement. Is > the winsrv.exe a valid microsoft file required for WIN > 2000? Any comments This is a Trojan of some type. I am currently investigating and have sent samples to SARC for testing. You should be able to delete the line in the registry and there is probably a second one "C:\winnt\system32> \hiddenrun.exe NTSrv.exe." You will also find a service for ServU FTP service that needs to be stopped and removed from the registry. I don't know what other problems this thing causes. But in one of my client networks, Windows 9x machines were prevented from logging on to the network. Ali ga ja ne mogu naći kod sebe a jede RAM kao lud. 604.504 u Taskmanager-u. NOD ga ne vidi, Ad-aware također Trojan remover ist!!!
SpybotS&D je našao i uklonio a kada sam snimio ovaj drugi, napravi mi pravi belaj. Lagano systemrestore i nanovo. Hvala na pomoći
Malwarebytes je po meni bezveze, jedino avast sa boot time skeniranjem mi je najvise stvari pocistio ostalo slabo.
Evo ga ljudi opet. i nakon brisanja istog, ponovo mi se vratio u proscese u Task manageru.. Izgleda da ću opet ići na formatiranje.Jbg
