Provera sistema posle otklonjenih tojanaca

Provera sistema posle otklonjenih tojanaca

offline
  • Brok  Male
  • Moderator foruma
  • Mihajlo Bogdanović
  • Linux driver - fighter - warrior
  • Pridružio: 04 Maj 2005
  • Poruke: 3259

Napisano: 29 Okt 2009 6:14

Znači ako bi neko mogao da pogleda logove.
Prvo sam najverovatnije negde na Internetu zakačio nekoliko trojanaca tako da nisam ni mogao da podignem XP. Srećom na ovoj mašini imam pored XP-a i Windows 7 te sam iz njega preskenirao sistem i uklonio viruse. Nažalost nisam sačuvao report koji su to virusi bili.
Kao što sam napomenuo na ovom hardu pored XP-a imam i Windows 7, on je na (kada se gleda iz XP-a) na G odnosno F particiji.
Po skeniranju i uklanjanju trojanaca dižem XP iz Safe Moda i radim skeniranje sa AV programom Avira kao i sa Malwarebytes' Anti-Malware i tu mi ništa nije našao. Kasnije uradim restart i podigne se XP normalno. Pa premda je bila situacija na samom rubu da idem na format C mislim da ne bi bilo loše proveriti kako sada stoje stvari.


DDS (Ver_09-10-26.01) - NTFSx86
Run by Broker at 4:18:00.39 on Thu 10/29/2009
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_16
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3583.3001 [GMT 1:00]

AV: AntiVir Desktop *On-access scanning disabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\LClock\LClock.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\FastStone Capture\FSCapture.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Broker\Desktop\dds.scr

============== Pseudo HJT Report ===============

uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.com
uWindow Title = Microsoft Internet Explorer
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: SHOUTcast Toolbar Search Class: {14f0d511-36a2-41ca-ae01-ba4f87282c97} - c:\program files\shoutcast radio toolbar\shoutcasttb.dll
uURLSearchHooks: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\pdfforge toolbar\SearchSettings.dll
mURLSearchHooks: SHOUTcast Toolbar Search Class: {14f0d511-36a2-41ca-ae01-ba4f87282c97} - c:\program files\shoutcast radio toolbar\shoutcasttb.dll
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\pdfforgeToolbarIE.dll
BHO: SHOUTcast Loader: {ccec60fc-2608-4e58-9659-3ffc159e8ea9} - c:\program files\shoutcast radio toolbar\shoutcasttb.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\pdfforge toolbar\SearchSettings.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: StylerToolBar: {d2f8f919-690b-4ea2-9fa7-a203d1e04f75} - c:\program files\styler\tb\StylerTB.dll
TB: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\pdfforgeToolbarIE.dll
TB: SHOUTcast Radio Toolbar: {0457331d-8ca6-4f97-9c26-6a9ef2b2dba8} - c:\program files\shoutcast radio toolbar\shoutcasttb.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
uRun: [LClock] c:\program files\lclock\LClock.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
dRun: [LClock] c:\program files\lclock\LClock.exe
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
StartupFolder: c:\docume~1\broker\startm~1\programs\startup\fastst~1.lnk - c:\program files\faststone capture\FSCapture.exe
IE: &SHOUTcast Search - c:\documents and settings\all users\application data\shoutcast radio toolbar\ietoolbar\resources\en-us\local\search.html
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: WBSrv - c:\program files\stardock\object desktop\windowblinds\wbsrv.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
mASetup: {D58F39FF-953E-4F45-898F-59F243B9A523} - RUNDLL32 advpack.dll,LaunchINFSection Sidebar.inf,Register

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\broker\applic~1\mozilla\firefox\profiles\gljc8wps.default\
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
FF - component: c:\program files\mozilla firefox\extensions\{b922d405-6d13-4a2b-ae89-08a030da4402}\components\pdfforgeToolbarFF.dll
FF - component: c:\program files\mozilla firefox\extensions\search@searchsettings.com\components\SearchSettingsFF.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\magic video studio\codec\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\magic video studio\codec\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\opera\program\plugins\nppl3260.dll
FF - plugin: c:\program files\opera\program\plugins\nprpjplug.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000

============= SERVICES / DRIVERS ===============

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-10-7 108289]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2009-10-7 604488]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-10-7 1057024]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2009-10-7 133104]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2009-10-11 8704]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2009-10-11 3072]

=============== Created Last 30 ================

2009-10-29 02:48:49 29000 ----a-w- c:\windows\system32\uxtuneup.dll
2009-10-29 02:48:48 361288 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-10-28 15:44:03 0 d-----w- C:\!KillBox
2009-10-28 14:57:26 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-10-27 23:13:31 0 d-----w- c:\program files\Pacific Warriors
2009-10-26 01:17:18 0 d-----w- c:\program files\WinASO
2009-10-25 15:31:01 108144 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-10-20 20:37:52 0 d-----w- c:\windows\system32\ReinstallBackups
2009-10-20 20:37:46 86094 ----a-w- c:\windows\system32\ImageDrive.cpl
2009-10-20 15:35:34 0 d-----w- c:\docume~1\broker\applic~1\Crystal Player
2009-10-14 13:33:10 0 d-----w- C:\Boot
2009-10-13 23:59:22 2146304 ----a-w- c:\windows\system32\GPhotos.scr
2009-10-12 18:19:45 0 d--h--w- c:\windows\PIF
2009-10-12 18:14:04 0 d-----w- c:\program files\Microsoft Games
2009-10-11 10:37:24 383562 --sha-r- C:\bootmgr
2009-10-11 00:47:44 0 d-sh--w- C:\$RECYCLE.BIN
2009-10-11 00:44:49 171136 --sha-r- C:\grldr
2009-10-10 23:38:28 1229 ---ha-r- c:\windows\EPMBatch.ept
2009-10-10 23:38:28 0 ----a-w- c:\windows\tag.file
2009-10-10 23:30:26 8704 ----a-w- c:\windows\system32\epmntdrv.sys
2009-10-10 23:30:26 86408 ----a-w- c:\windows\system32\setupempdrv03.exe
2009-10-10 23:30:26 3072 ----a-w- c:\windows\system32\EuGdiDrv.sys
2009-10-10 23:30:26 1663488 ----a-w- c:\windows\system32\BootMan.exe
2009-10-10 23:30:26 14848 ----a-w- c:\windows\system32\EuEpmGdi.dll
2009-10-10 23:30:21 0 d-----w- c:\program files\EASEUS
2009-10-10 14:38:13 0 d-----w- c:\program files\SHOUTcast Radio Toolbar
2009-10-10 14:38:13 0 d-----w- c:\docume~1\alluse~1\applic~1\SHOUTcast Radio Toolbar
2009-10-10 14:38:12 0 d-----w- c:\program files\SHOUTcast
2009-10-09 17:00:47 421888 ----a-w- c:\windows\system32\Mpeg2DecFilter.ax
2009-10-09 17:00:47 376832 ----a-w- c:\windows\system32\MpegSplitter.ax
2009-10-09 17:00:45 0 d-----w- c:\program files\Allok Video Splitter
2009-10-09 16:56:09 84480 ----a-w- c:\windows\system32\ff_vfw.dll
2009-10-09 16:56:09 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2009-10-09 16:56:09 547 ----a-w- c:\windows\system32\ff_vfw.dll.manifest
2009-10-09 16:56:07 90112 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2009-10-09 16:56:07 57344 ----a-w- c:\windows\system32\QuickTime.qts
2009-10-09 16:56:00 81920 ----a-w- c:\docume~1\broker\applic~1\ezpinst.exe
2009-10-09 16:56:00 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2009-10-09 16:56:00 47360 ----a-w- c:\docume~1\broker\applic~1\pcouffin.sys
2009-10-09 16:55:56 719872 ----a-w- c:\windows\system32\devil.dll
2009-10-09 16:55:56 314368 ----a-w- c:\windows\system32\avisynth.dll
2009-10-09 16:55:52 0 d-----w- c:\program files\Magic Video Studio
2009-10-09 16:07:56 0 d-----w- c:\documents and settings\broker\.tucan
2009-10-09 16:07:49 0 d-----w- c:\program files\Tucan
2009-10-08 20:41:35 0 d-----w- c:\docume~1\broker\applic~1\Search Settings
2009-10-08 20:41:33 0 d-----w- c:\docume~1\broker\applic~1\pdfforge
2009-10-08 19:32:54 0 d-----w- c:\program files\Counter-Strike 1.6
2009-10-08 18:29:20 0 d-----w- c:\program files\SecondLife
2009-10-08 06:07:40 0 d-----w- c:\program files\Lavalys
2009-10-08 05:58:27 64 ----a-w- c:\windows\system32\everest_cpl.ini
2009-10-08 05:58:27 169064 ----a-w- c:\windows\system32\everest_cpl.cpl
2009-10-08 03:47:50 0 ----a-w- c:\windows\WB.ini
2009-10-08 02:25:05 221184 ----a-w- c:\windows\system32\wmpns.dll
2009-10-07 23:58:08 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-10-07 22:58:20 116 ----a-w- c:\windows\NeroDigital.ini
2009-10-07 22:47:57 0 d-----w- c:\windows\system32\NtmsData
2009-10-07 22:23:29 0 d-----w- c:\program files\pdfforge Toolbar
2009-10-07 22:23:16 662288 ------w- c:\windows\system32\MSCOMCT2.OCX
2009-10-07 22:23:16 137000 ------w- c:\windows\system32\MSMAPI32.OCX
2009-10-07 22:23:16 116224 ------w- c:\windows\system32\pdfcmnnt.dll
2009-10-07 22:23:15 23552 ------w- c:\windows\system32\MSMPIDE.DLL
2009-10-07 22:23:14 0 d-----w- c:\program files\PDFCreator
2009-10-07 22:01:20 5504 ------w- c:\windows\system32\drivers\imagedrv.sys
2009-10-07 22:01:20 125184 ------w- c:\windows\system32\drivers\imagesrv.sys
2009-10-07 22:01:09 476320 ------w- c:\windows\system32\ImagXpr7.dll
2009-10-07 22:01:09 471040 ------w- c:\windows\system32\ImagXRA7.dll
2009-10-07 22:01:09 262144 ------w- c:\windows\system32\ImagXR7.dll
2009-10-07 22:01:09 1568768 ------w- c:\windows\system32\ImagX7.dll
2009-10-07 22:01:09 155648 ------w- c:\windows\system32\NeroCheck.exe
2009-10-07 22:01:09 106496 ------w- c:\windows\system32\TwnLib20.dll
2009-10-07 21:54:06 5504 ------w- c:\windows\system32\drivers\MSTEE.sys
2009-10-07 21:54:05 10880 ------w- c:\windows\system32\drivers\NdisIP.sys
2009-10-07 21:54:04 16384 ------w- c:\windows\system32\ipsink.ax
2009-10-07 21:54:04 15232 ------w- c:\windows\system32\drivers\StreamIP.sys
2009-10-07 21:54:03 11136 ------w- c:\windows\system32\drivers\SLIP.sys
2009-10-07 21:54:02 19200 ------w- c:\windows\system32\drivers\WSTCODEC.SYS
2009-10-07 21:54:01 85248 ------w- c:\windows\system32\drivers\NABTSFEC.sys
2009-10-07 21:53:59 17024 ------w- c:\windows\system32\drivers\CCDECODE.sys
2009-10-07 21:53:57 53760 ------w- c:\windows\system32\vfwwdm32.dll
2009-10-07 21:53:57 28672 ------w- c:\windows\system32\vidcap.ax
2009-10-07 21:53:56 91136 ------w- c:\windows\system32\kswdmcap.ax
2009-10-07 21:53:56 43008 ------w- c:\windows\system32\ksxbar.ax
2009-10-07 21:53:55 61952 ------w- c:\windows\system32\kstvtune.ax
2009-10-07 21:52:29 0 d-----w- c:\windows\PAC207
2009-10-07 21:52:29 0 d-----w- c:\program files\PC Camera
2009-10-07 21:52:29 0 d-----w- c:\program files\common files\PCCamera
2009-10-07 21:52:21 0 d-----w- c:\windows\Downloaded Installations
2009-10-07 21:50:53 376 ------w- c:\windows\ODBC.INI
2009-10-07 21:50:50 17920 ------w- c:\windows\system32\mdimon.dll
2009-10-07 21:50:21 0 d-----w- c:\program files\Microsoft ActiveSync
2009-10-07 21:49:58 0 d-----w- c:\windows\SHELLNEW
2009-10-07 21:42:47 0 d-sh--w- c:\documents and settings\broker\IECompatCache
2009-10-07 21:42:22 0 d-sh--w- c:\documents and settings\broker\PrivacIE
2009-10-07 21:21:58 0 d-sh--w- c:\documents and settings\broker\IETldCache
2009-10-07 21:20:39 0 d-----w- c:\windows\ie8updates
2009-10-07 21:19:24 0 dc-h--w- c:\windows\ie8
2009-10-07 21:17:52 100352 ------w- c:\windows\system32\dllcache\iecompat.dll
2009-10-07 21:17:35 594432 ------w- c:\windows\system32\dllcache\msfeeds.dll
2009-10-07 21:17:35 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2009-10-07 21:17:35 246272 ------w- c:\windows\system32\dllcache\ieproxy.dll
2009-10-07 21:17:35 1985536 ------w- c:\windows\system32\dllcache\iertutil.dll
2009-10-07 21:17:35 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2009-10-07 20:57:02 0 d-----w- c:\docume~1\broker\applic~1\TuneUp Software
2009-10-07 20:56:55 0 d-----w- c:\program files\TuneUp Utilities 2009
2009-10-07 20:56:55 0 d-----w- c:\docume~1\alluse~1\applic~1\TuneUp Software
2009-10-07 20:56:49 0 d-sh--w- c:\docume~1\alluse~1\applic~1\{55A29068-F2CE-456C-9148-C869879E2357}
2009-10-07 20:33:08 0 d-----w- c:\program files\Webteh
2009-10-07 20:33:08 0 d-----w- c:\docume~1\broker\applic~1\BSplayer PRO
2009-10-07 20:22:17 0 d-----w- c:\program files\IObit
2009-10-07 20:22:17 0 d-----w- c:\docume~1\broker\applic~1\IObit
2009-10-07 20:20:49 0 d-----w- c:\docume~1\broker\applic~1\Malwarebytes
2009-10-07 20:20:45 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-07 20:20:45 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-10-07 20:15:52 0 d-----w- c:\program files\common files\ODBC
2009-10-07 20:15:49 0 d-----w- c:\program files\common files\SpeechEngines
2009-10-07 20:15:42 0 d-----w- c:\docume~1\broker\applic~1\URSoft
2009-10-07 20:15:38 0 d-----w- c:\program files\Your Uninstaller 2008
2009-10-07 20:15:27 0 d-----r- c:\documents and settings\all users\Documents
2009-10-07 20:08:54 0 d-----w- c:\docume~1\broker\applic~1\FastStone
2009-10-07 20:08:41 0 d-----w- c:\program files\FastStone Capture
2009-10-07 19:58:34 0 d-----w- c:\program files\Avira
2009-10-07 19:58:34 0 d-----w- c:\docume~1\alluse~1\applic~1\Avira
2009-10-07 19:53:20 0 d-----w- c:\program files\IrfanView
2009-10-07 19:47:48 0 d-----r- c:\program files\Skype
2009-10-07 19:47:22 0 d-----w- c:\program files\Foxit Software
2009-10-07 19:47:22 0 d-----w- c:\docume~1\broker\applic~1\Foxit
2009-10-07 19:44:48 0 d-----w- c:\program files\common files\xing shared
2009-10-07 19:44:44 0 d-----w- c:\program files\common files\Real
2009-10-07 18:51:53 0 d-----w- c:\program files\VIA
2009-10-07 18:42:53 0 d-----w- c:\program files\common files\Wise Installation Wizard
2009-10-07 18:41:00 0 d-----w- c:\program files\Vtune
2009-10-07 18:36:16 0 d-----w- c:\docume~1\broker\applic~1\Styler
2009-10-07 18:35:49 0 d-----w- c:\docume~1\broker\applic~1\uTorrent
2009-10-07 18:35:49 0 d-----w- c:\docume~1\broker\applic~1\Desktopicon
2009-10-07 18:31:57 0 d-----w- c:\program files\Portable Appliances
2009-10-07 18:31:49 0 d-----w- c:\program files\Unlocker
2009-10-07 18:31:41 0 d-----w- c:\program files\PowerCmd
2009-10-07 18:31:39 0 d-----w- c:\program files\LClock
2009-10-07 18:31:37 0 d-----w- c:\program files\K-Lite Codec Pack
2009-10-07 18:31:28 0 d-----w- c:\program files\common files\Stardock
2009-10-07 18:31:17 0 d-----w- c:\program files\Hunt Virus Utilities
2009-10-07 18:31:16 0 d-----w- c:\program files\HashTab Shell Extension
2009-10-07 18:31:10 0 d-----w- c:\program files\Alky for Applications
2009-10-07 18:31:06 0 d-----w- c:\program files\Sysinternals
2009-10-07 18:31:04 0 d-----w- c:\program files\IZArc
2009-10-07 18:29:17 0 d-sh--w- c:\documents and settings\all users\DRM
2009-10-07 18:29:04 0 d--h--w- c:\program files\WindowsUpdate
2009-10-07 18:29:01 0 d-----w- c:\program files\Online Services
2009-10-07 18:28:39 0 d-----w- c:\program files\common files\MSSoap
2009-10-07 18:26:32 0 d-----w- c:\program files\uTorrent
2009-10-07 18:25:05 0 d-----w- c:\program files\VistaExperience.org
2009-10-07 18:23:25 0 d-----w- c:\program files\RocketDock
2009-10-07 18:23:18 0 d-----w- c:\program files\Styler
2009-10-07 18:23:17 0 d-----w- c:\program files\CCleaner
2009-10-07 18:22:56 0 d-----w- c:\program files\Desktop
2009-10-07 18:22:52 0 d-----w- c:\program files\System
2009-10-07 18:22:32 0 d-----w- c:\program files\Stanimir Stoyanov
2009-10-07 18:22:23 0 d-----w- c:\program files\Stardock
2009-10-07 18:22:18 0 d-----w- c:\program files\Windows Media Connect 2
2009-10-07 18:22:06 0 d-----w- c:\program files\Windows NT

==================== Find3M ====================

2009-10-29 02:48:49 604488 ----a-w- c:\windows\system32\TUProgSt.exe
2009-10-07 19:46:09 411368 ------w- c:\windows\system32\deploytk.dll
2009-10-07 19:44:44 499712 ------w- c:\windows\system32\msvcp71.dll
2009-10-07 19:44:44 348160 ------w- c:\windows\system32\msvcr71.dll
2009-10-07 18:27:40 21640 ------w- c:\windows\system32\emptyregdb.dat
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-11 14:18:39 136192 ------w- c:\windows\system32\dllcache\msv1_0.dll
2009-09-10 12:54:06 38224 ------w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 12:53:50 19160 ------w- c:\windows\system32\drivers\mbam.sys
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-04 21:03:36 58880 ------w- c:\windows\system32\dllcache\msasn1.dll
2009-08-29 08:08:21 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-29 08:08:21 916480 ------w- c:\windows\system32\dllcache\wininet.dll
2009-08-29 08:08:21 1208832 ------w- c:\windows\system32\dllcache\urlmon.dll
2009-08-29 08:08:20 5940224 ------w- c:\windows\system32\dllcache\mshtml.dll
2009-08-29 08:08:20 206848 ------w- c:\windows\system32\dllcache\occache.dll
2009-08-29 08:08:18 25600 ------w- c:\windows\system32\dllcache\jsproxy.dll
2009-08-29 08:08:17 184320 ------w- c:\windows\system32\dllcache\iepeers.dll
2009-08-29 08:08:16 11069440 ------w- c:\windows\system32\dllcache\ieframe.dll
2009-08-29 08:08:13 387584 ------w- c:\windows\system32\dllcache\iedkcs32.dll
2009-08-28 10:35:52 173056 ------w- c:\windows\system32\dllcache\ie4uinit.exe
2009-08-26 08:00:21 247326 ------w- c:\windows\system32\strmdll.dll
2009-08-26 08:00:21 247326 ------w- c:\windows\system32\dllcache\strmdll.dll
2009-08-23 21:00:38 922112 ------w- c:\windows\system32\imapi2fs.dll
2009-08-23 21:00:38 922112 ------w- c:\windows\system32\dllcache\imapi2fs.dll
2009-08-23 21:00:38 62592 ------w- c:\windows\system32\dllcache\cdrom.sys
2009-08-23 21:00:38 426496 ------w- c:\windows\system32\imapi2.dll
2009-08-23 21:00:38 426496 ------w- c:\windows\system32\dllcache\imapi2.dll
2009-08-05 09:01:48 204800 ------w- c:\windows\system32\mswebdvd.dll
2009-08-05 09:01:48 204800 ------w- c:\windows\system32\dllcache\mswebdvd.dll
2009-08-04 18:44:46 2189184 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2009-08-04 15:13:08 2145280 ------w- c:\windows\system32\ntoskrnl.exe
2009-08-04 15:13:08 2145280 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-08-04 14:20:09 2023936 ------w- c:\windows\system32\ntkrnlpa.exe
2009-08-04 14:20:09 2023936 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2009-08-04 14:20:08 2066048 ------w- c:\windows\system32\dllcache\ntkrnlpa.exe

============= FINISH: 4:18:07.48 ===============

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

Izveštaji iz Malwarebytes' Anti-Malware:

https://www.mycity.rs/must-login.png

Dopuna: 29 Okt 2009 8:52

Izveštaj iz Avire:
https://www.mycity.rs/must-login.png

offline
  • diarno  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 15 Jun 2007
  • Poruke: 5572

pozdrav logovi su cisti..A i kolko vidim ni MBAM ni Avira nista nisu nasli

offline
  • Brok  Male
  • Moderator foruma
  • Mihajlo Bogdanović
  • Linux driver - fighter - warrior
  • Pridružio: 04 Maj 2005
  • Poruke: 3259

E hvala ti veliko Diarno na trudu. Very Happy

Sada se lakše diše kada je pogledao log neko od Vas iz AMF tima. Zagrljaj


Još jednom veliko hvala i živeo. Ziveli

Ko je trenutno na forumu
 

Ukupno su 1126 korisnika na forumu :: 46 registrovanih, 9 sakrivenih i 1071 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., amaterSRB, babaroga, Bahuss, bojan_t, BraneS, branko7, cifra, cikadeda, crnitrn, darkojbn, djboj, djordje92sm, DonRumataEstorski, Dorcolac, dragan_mig31, draganl, Džordžino, Gargantua, Georgius, havoc995, Još malo pa deda, jukeboxer, Koca Popovic, kolle.the.kid, Komentator, Koridor, Leonov, mercedesamg, Milan A. Nikolic, milimoj, mnn2, nebkv, nenooo, nextyamb, novator, pein, rovac, ruma, Sirius, Stoilkovic, suton, Toper, Tragač, vathra, Viktor Petrenko