MyCity » Ambulanta -> Arhiva Ambulante » fajlovi

fajlovi

Napisano na dan: 9.2.2009

Strana:
1
2

fajlovi

Sledeća strana

Pagination

Odgovori

Strana:
1
2

Dijamant Poslao: 09 Feb 2009 23:18 Idi na vrh
offline Dijamant Građanin Pridružio: 17 Okt 2006 Poruke: 53	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Imam virus u laptop-u, zbog koga se izgubila veza sa internetom.Pokusala sam da sadisc-a instaliram Norman koji imam i na kompjuteru ali se pokazalo da je to stara verzija.Onda sam pokusala da ga izbrisem ali neki fajlovi nece da se izbrisu.Dobujem kao ovaj file je trrnutno u upotrebi,iako nije i bla,bla .Probala sam i rucno i opet nista. Ne mogu da instaliram novu verziju Normana dok ove ne izbrisem.Kako to da uradim? Inace ovaj virus je konstatovao Norton i nije mogao nista protiv njega da uradi pa sam ga odstranila (ionako je bio trial).Nadam se da ce Norman nesto moci da uradi,kad jednom uspijem da ga instaliram.

Profil

helen1 Poslao: 10 Feb 2009 12:56 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Profil

Dijamant Poslao: 10 Feb 2009 14:08 Idi na vrh
offline Dijamant Građanin Pridružio: 17 Okt 2006 Poruke: 53	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala za ovaj post ali u istom, na kraju pise da ni u kom slucaju sami ne preduzimamo nista u vezi sa Hijaku radnjama, posebno ako ne znamo o kom se virusu radi.A ja zaista ne znam jer Norton ga je detektovao,verovatno je i ispisao detalje ali ja sam sve uradila na brzinu.Izbrisala sam Norton,racunajuci da ce Norman sve to ocistiti ali evo sad ne mogu da ga instaliram.Nemam ni vezu sa internetom na tom laptop-u. Ja sam ovaj problem vec tretirala sa Winsock,zatim programima koje su mi poslali sa Norman helpdesk-a: ComboFix i Malware Cleaner.Nista od toga nije pomoglo. Sta da uradim a da budem sigurna da necu pogorsati vec popraviti stvar?

Profil

helen1 Poslao: 10 Feb 2009 19:52 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ljudi iz Normana su ti poslali ComboFix? Znaci, bez bojaznosto ti skini HiJack This i skeniraj sa njim.

Profil

Dijamant Poslao: 11 Feb 2009 19:50 Idi na vrh
offline Dijamant Građanin Pridružio: 17 Okt 2006 Poruke: 53	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Skenirala sam laptop sa HiJack i evo rezultata: mycity.rs/must-login.png Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:15:25, on 11/02/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\S24EvMon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\System32\Ati2evxx.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Norman\Bin\Zanda.exe C:\WINDOWS\System32\QCONSVC.EXE C:\WINDOWS\System32\RegSrvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe C:\WINDOWS\system32\RunDll32.exe C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\Program Files\Support.com\bin\tgcmd.exe C:\Program Files\IBM\Messages By IBM\ibmmessages.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Norman\bin\ZLH.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\DNA\btdna.exe C:\Program Files\ThinkPad\PkgMgr\HOTKEY\TPONSCR.exe C:\Program Files\ThinkPad\PkgMgr\HOTKEY_1\TpScrex.exe C:\WINDOWS\system32\nod64.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Norman\bin\NJEEVES.EXE C:\Program Files\Common Files\Real\Update_OB\realsched.exe E:\New Folder\TR3.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O4 - HKLM\..\Run: [S3TRAY2] S3Tray2.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [TPHOTKEY] C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe O4 - HKLM\..\Run: [BMMGAG] RunDll32 C:\PROGRA~1\ThinkPad\UTILIT~1\pwrmonit.dll,StartPwrMonitor O4 - HKLM\..\Run: [BMMLREF] C:\Program Files\ThinkPad\Utilities\BMMLREF.EXE O4 - HKLM\..\Run: [QCWLICON] C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE O4 - HKLM\..\Run: [TPKMAPMN] C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe O4 - HKLM\..\Run: [TP4EX] tp4ex.exe O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\bin\tgcmd.exe" /server O4 - HKLM\..\Run: [ibmmessages] C:\Program Files\IBM\Messages By IBM\ibmmessages.exe O4 - HKLM\..\Run: [StorageGuard] "c:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Norman ZANDA] C:\Program Files\Norman\bin\ZLH.EXE /LOAD /SPLASH O4 - HKLM\..\Run: [Nod32 Service] nod64.exe O4 - HKLM\..\RunServices: [Nod32 Service] nod64.exe O4 - HKCU\..\Run: [ibmmessages] C:\Program Files\IBM\Messages By IBM\ibmmessages.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: IBM PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Norman NJeeves - Unknown owner - C:\Program Files\Norman\bin\NJEEVES.EXE O23 - Service: Norman ZANDA - Unknown owner - C:\Program Files\Norman\Bin\Zanda.exe O23 - Service: QCONSVC - Unknown owner - C:\WINDOWS\System32\QCONSVC.EXE O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe -- End of file - 6678 bytes

Profil

helen1 Poslao: 12 Feb 2009 13:19 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Koju verziju Normana koristis? Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

Dijamant Poslao: 14 Feb 2009 20:08 Idi na vrh
offline Dijamant Građanin Pridružio: 17 Okt 2006 Poruke: 53	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Ovo je vrlo cudna stvar sa ovim mojim laptop-om. Uspela sam da pomocu Hijack-a i onda instalirala Norman.Prvi put skenirala,nasao jedan trojan horse,poslao ga u karantin i internet proradio. Sledeci put kad sam ukljucila laptop,internet ponovo nije radio.Skenirala jos jednom Norman-om i nasao 8 trojan horses,poslao ih u karantin i internet ponovo proradio. I tako svaki put kad iznova startujem laptop internet ne radi,skeniram,nema vise virusa. Onda sam pocela da ga tretiram WinSock-om i posle njrga internet obavezno proradi ali se ponovo izgubi kad iskljucim laptop. Sad sam ga skenirala i ComboFix-om,evo sta je nasao: mycity.rs/must-login.png ComboFix 09-02-08.02 - Customer 2009-02-14 18:45:16.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.590 [GMT 0:00] Running from: E:\ComboFix.exe AV: Norman Security Suite ver. 7.00 On-access scanning enabled (Updated) FW: Persoonlijke firewall enabled * Created a new restore point * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\404Fix.exe c:\windows\system32\dumphive.exe c:\windows\system32\IEDFix.C.exe c:\windows\system32\IEDFix.exe c:\windows\system32\o4Patch.exe c:\windows\system32\Process.exe c:\windows\system32\SrchSTS.exe c:\windows\system32\tmp.reg c:\windows\system32\VCCLSID.exe c:\windows\system32\WS2Fix.exe . ((((((((((((((((((((((((( Files Created from 2009-01-14 to 2009-02-14 ))))))))))))))))))))))))))))))) . 2009-02-13 12:51 . 2009-02-13 20:11 81,288 --a------ c:\windows\system32\drivers\iksyssec.sys 2009-02-13 12:51 . 2009-02-13 20:11 66,952 --a------ c:\windows\system32\drivers\iksysflt.sys 2009-02-13 12:51 . 2009-02-13 20:11 40,840 --a------ c:\windows\system32\drivers\ikfilesec.sys 2009-02-13 12:51 . 2008-06-02 15:19 29,576 --a------ c:\windows\system32\drivers\kcom.sys 2009-02-13 12:50 . 2009-02-13 20:47 <DIR> d-------- c:\program files\Spyware Doctor 2009-02-13 12:50 . 2009-02-13 12:50 <DIR> d-------- c:\documents and settings\Customer\Application Data\PC Tools 2009-02-13 12:48 . 2009-02-13 12:48 <DIR> d-------- c:\program files\Google 2009-02-13 12:48 . 2009-02-14 18:36 <DIR> d-------- c:\documents and settings\All Users\Application Data\Google Updater 2009-02-12 15:54 . 2008-05-16 10:28 212,024 --a------ c:\windows\system32\nscrnsav.scr 2009-02-12 15:54 . 2008-02-07 11:12 79,752 --a------ c:\windows\system32\drivers\ndis_rd.sys 2009-02-12 15:54 . 2008-02-07 11:12 74,624 --a------ c:\windows\system32\drivers\tdi_rd.sys 2009-02-12 15:54 . 2008-04-16 11:57 42,552 --a------ c:\windows\system32\drivers\ale_nf.sys 2009-02-12 15:54 . 2008-09-02 11:48 19,512 --a------ c:\windows\system32\drivers\nvcw32mf.sys 2009-02-12 15:52 . 2009-02-14 18:35 <DIR> d-------- c:\program files\Norman 2009-02-06 17:14 . 2009-02-09 11:02 792,381 --ah----- c:\windows\BIT89.tmp 2009-02-06 16:55 . 2009-02-09 11:07 792,381 --ah----- c:\windows\BIT7F.tmp 2009-02-06 16:50 . 2009-02-14 18:36 <DIR> d-a------ c:\documents and settings\All Users\Application Data\TEMP 2009-02-06 16:48 . 2009-02-06 16:51 339,968 --ah----- c:\windows\BIT80.tmp 2009-02-04 20:47 . 2009-02-04 20:47 <DIR> d-------- c:\program files\microsoft frontpage 2009-02-04 16:17 . 2009-02-09 11:04 0 --ah----- c:\windows\BITB6.tmp 2009-02-04 16:17 . 2009-02-09 11:04 0 --ah----- c:\windows\BITB3.tmp 2009-02-04 16:17 . 2009-02-09 11:04 0 --ah----- c:\windows\BITB2.tmp 2009-02-04 16:17 . 2009-02-09 11:04 0 --ah----- c:\windows\BITB1.tmp 2009-02-04 16:17 . 2009-02-09 11:04 0 --ah----- c:\windows\BITB0.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BITA7.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BITA6.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BITA5.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BITA4.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BITA3.tmp 2009-02-04 16:17 . 2009-02-09 11:03 0 --ah----- c:\windows\BIT98.tmp 2009-02-04 16:16 . 2009-02-09 11:03 0 --ah----- c:\windows\BIT95.tmp 2009-02-04 16:16 . 2009-02-09 11:03 0 --ah----- c:\windows\BIT92.tmp 2009-02-04 16:16 . 2009-02-09 11:03 0 --ah----- c:\windows\BIT8F.tmp 2009-02-04 16:16 . 2009-02-09 11:02 0 --ah----- c:\windows\BIT8C.tmp 2009-02-04 16:14 . 2009-02-09 11:04 0 --ah----- c:\windows\BIT4F.tmp 2009-02-04 16:06 . 2009-02-09 11:04 792,381 --ah----- c:\windows\BIT48.tmp 2009-02-04 15:57 . 2009-02-04 16:30 339,968 --ah----- c:\windows\BIT41.tmp 2009-02-04 15:57 . 2009-02-04 16:20 339,968 --ah----- c:\windows\BIT3E.tmp 2009-02-04 15:57 . 2009-02-04 16:25 339,968 --ah----- c:\windows\BIT3D.tmp 2009-02-04 15:57 . 2009-02-04 16:15 339,968 --ah----- c:\windows\BIT3C.tmp 2009-02-04 00:43 . 2009-02-04 00:43 <DIR> d-------- c:\documents and settings\Customer\Application Data\Ahead 2009-02-04 00:42 . 2009-02-04 00:42 <DIR> d-------- c:\documents and settings\All Users\Application Data\Ahead 2009-02-03 22:07 . 2009-02-14 18:37 <DIR> d-------- c:\program files\DNA 2009-02-03 22:07 . 2009-02-03 22:07 <DIR> d-------- c:\program files\BitTorrent 2009-02-03 22:07 . 2009-02-14 18:47 <DIR> d-------- c:\documents and settings\Customer\Application Data\DNA 2009-02-03 22:07 . 2009-02-04 16:33 <DIR> d-------- c:\documents and settings\Customer\Application Data\BitTorrent 2009-02-03 11:33 . 2009-02-03 11:33 <DIR> d-------- c:\documents and settings\Customer\Application Data\Uniblue 2009-02-03 11:33 . 2009-02-03 11:36 <DIR> d-------- c:\documents and settings\All Users\Application Data\DriverScanner 2009-02-03 11:31 . 2009-02-03 11:33 <DIR> d--h-c--- c:\documents and settings\All Users\Application Data\{148D8B8A-8F96-4822-81EC-D510B626B7D5} 2009-02-03 09:09 . 2009-02-03 09:09 339,968 --a------ c:\windows\poppers.exe 2009-02-03 09:09 . 2009-02-03 09:09 339,968 ---h----- c:\windows\BIT84.tmp 2009-02-02 11:03 . 2003-06-18 17:31 17,920 --a------ c:\windows\system32\mdimon.dll 2009-02-02 11:03 . 2009-02-02 11:03 376 --a------ c:\windows\ODBC.INI 2009-02-02 11:02 . 2009-02-02 11:02 <DIR> d-------- c:\program files\Microsoft.NET 2009-02-02 11:02 . 2009-02-02 11:02 <DIR> d-------- c:\program files\Microsoft ActiveSync 2009-02-02 11:00 . 2009-02-02 11:02 <DIR> d-------- c:\windows\SHELLNEW 2009-02-02 10:56 . 2009-02-02 10:56 <DIR> dr-h----- C:\MSOCache 2009-01-30 23:04 . 2009-01-30 23:04 <DIR> d-------- c:\program files\Common Files\xing shared 2009-01-30 23:03 . 2009-01-30 23:03 <DIR> d-------- c:\program files\Real 2009-01-30 23:03 . 2009-01-30 23:04 <DIR> d-------- c:\program files\Common Files\Real 2009-01-30 23:03 . 2009-01-30 23:03 499,712 --a------ c:\windows\system32\msvcp71.dll 2009-01-30 23:03 . 2009-01-30 23:03 348,160 --a------ c:\windows\system32\msvcr71.dll 2009-01-28 19:31 . 2007-07-02 00:08 1,539 --a------ C:\Disk Cleanup.lnk 2009-01-27 10:52 . 2009-01-27 10:53 <DIR> d-------- c:\program files\QuickTime 2009-01-25 22:15 . 2009-01-25 22:15 <DIR> d-------- c:\program files\NCH Software 2009-01-25 22:15 . 2009-01-25 22:15 <DIR> d-------- c:\documents and settings\All Users\Application Data\NCH Software 2009-01-25 22:13 . 2009-01-29 09:34 <DIR> d-------- c:\documents and settings\All Users\Application Data\NCH Swift Sound 2009-01-25 22:10 . 2009-01-29 09:48 <DIR> d-------- c:\program files\NCH Swift Sound 2009-01-24 11:07 . 2008-10-16 20:38 6,066,176 --------- c:\windows\system32\dllcache\ieframe.dll 2009-01-24 11:07 . 2007-04-17 09:32 2,455,488 --------- c:\windows\system32\dllcache\ieapfltr.dat 2009-01-24 11:07 . 2007-03-08 05:10 991,232 --------- c:\windows\system32\dllcache\ieframe.dll.mui 2009-01-24 11:07 . 2008-10-16 20:38 459,264 --------- c:\windows\system32\dllcache\msfeeds.dll 2009-01-24 11:07 . 2008-10-16 20:38 383,488 --------- c:\windows\system32\dllcache\ieapfltr.dll 2009-01-24 11:07 . 2008-10-16 20:38 267,776 --------- c:\windows\system32\dllcache\iertutil.dll 2009-01-24 11:07 . 2008-10-16 20:38 63,488 --------- c:\windows\system32\dllcache\icardie.dll 2009-01-24 11:07 . 2008-10-16 20:38 52,224 --------- c:\windows\system32\dllcache\msfeedsbs.dll 2009-01-24 11:07 . 2008-10-16 13:11 13,824 --------- c:\windows\system32\dllcache\ieudinit.exe 2009-01-24 10:34 . 2008-04-14 00:15 15,104 --a------ c:\windows\system32\drivers\usbscan.sys 2009-01-24 10:34 . 2008-04-14 00:15 15,104 --a------ c:\windows\system32\dllcache\usbscan.sys 2009-01-24 10:31 . 2008-04-14 00:17 25,856 --a------ c:\windows\system32\drivers\usbprint.sys 2009-01-24 10:31 . 2008-04-14 00:17 25,856 --a------ c:\windows\system32\dllcache\usbprint.sys 2009-01-24 10:28 . 2008-04-14 00:15 32,128 --a------ c:\windows\system32\drivers\usbccgp.sys 2009-01-24 10:28 . 2008-04-14 00:15 32,128 --a------ c:\windows\system32\dllcache\usbccgp.sys 2009-01-24 10:23 . 2009-01-24 10:23 <DIR> d--h----- c:\documents and settings\All Users\Application Data\CanonBJ 2009-01-24 10:23 . 2009-01-25 13:00 460,629 --a------ c:\windows\system32\USB 2009-01-24 10:22 . 2008-02-05 20:00 216,064 --a------ c:\windows\system32\CNMLM8T.DLL 2009-01-18 22:03 . 2009-01-18 22:03 <DIR> d-------- c:\windows\system32\scripting 2009-01-18 21:58 . 2008-04-13 22:58 2,940,928 --------- c:\windows\system32\dllcache\wmploc.dll 2009-01-18 21:55 . 2008-04-13 22:06 144,384 --------- c:\windows\system32\drivers\hdaudbus.sys 2009-01-18 21:55 . 2008-04-14 00:10 10,240 --------- c:\windows\system32\drivers\sffp_mmc.sys 2009-01-18 21:54 . 2006-12-29 00:31 19,569 --a------ c:\windows\005304_.tmp 2009-01-18 20:10 . 2009-01-18 20:10 <DIR> d-------- c:\program files\Web Page Maker V2 2009-01-18 20:03 . 2009-01-18 20:03 <DIR> d-------- C:\Web Page Maker V2 2009-01-15 08:05 . 2008-06-13 11:05 272,128 --------- c:\windows\system32\dllcache\bthport.sys 2009-01-15 08:04 . 2008-12-13 06:40 3,593,216 --------- c:\windows\system32\dllcache\mshtml.dll 2009-01-15 08:04 . 2008-08-14 10:11 2,189,184 --------- c:\windows\system32\dllcache\ntoskrnl.exe 2009-01-15 08:04 . 2008-08-14 10:09 2,145,280 --------- c:\windows\system32\dllcache\ntkrnlmp.exe 2009-01-15 08:04 . 2008-08-14 09:33 2,066,048 --------- c:\windows\system32\dllcache\ntkrnlpa.exe 2009-01-15 08:04 . 2008-08-14 09:33 2,023,936 --------- c:\windows\system32\dllcache\ntkrpamp.exe 2009-01-15 08:04 . 2008-09-15 12:12 1,846,400 --------- c:\windows\system32\dllcache\win32k.sys 2009-01-15 08:04 . 2008-10-16 01:00 1,499,136 --------- c:\windows\system32\dllcache\shdocvw.dll 2009-01-15 08:04 . 2008-10-16 20:38 1,160,192 --------- c:\windows\system32\dllcache\urlmon.dll 2009-01-15 08:02 . 2008-10-24 11:21 455,296 --------- c:\windows\system32\dllcache\mrxsmb.sys 2009-01-15 08:02 . 2008-12-11 10:57 333,952 --------- c:\windows\system32\dllcache\srv.sys 2009-01-15 08:02 . 2008-05-08 14:02 203,136 --------- c:\windows\system32\dllcache\rmcast.sys 2009-01-15 08:01 . 2008-09-04 17:15 1,106,944 --------- c:\windows\system32\dllcache\msxml3.dll 2009-01-15 08:01 . 2008-04-11 19:04 691,712 --------- c:\windows\system32\dllcache\inetcomm.dll 2009-01-15 08:01 . 2008-10-23 12:36 286,720 --------- c:\windows\system32\dllcache\gdi32.dll 2009-01-15 08:01 . 2008-10-03 10:02 247,326 --------- c:\windows\system32\dllcache\strmdll.dll 2009-01-15 07:59 . 2009-01-27 10:15 <DIR> d--h----- c:\windows\$hf_mig$ 2009-01-14 09:15 . 2008-05-01 14:33 331,776 --------- c:\windows\system32\dllcache\msadce.dll 2009-01-14 09:14 . 2008-10-15 16:34 337,408 --------- c:\windows\system32\dllcache\netapi32.dll . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-02-12 23:25 --------- d-----w c:\program files\Bonjour 2009-02-07 23:25 --------- d-----w c:\program files\Common Files\Symantec Shared 2009-02-07 23:16 --------- d--h--w c:\program files\InstallShield Installation Information 2009-02-07 23:07 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec 2009-02-07 22:58 --------- d-----w c:\program files\Symantec 2009-02-06 17:06 339,968 ---ha-w c:\windows\BIT86.tmp 2009-02-06 17:01 339,968 ---ha-w c:\windows\BIT82.tmp 2009-02-06 16:46 339,968 ---ha-w c:\windows\BIT81.tmp 2009-02-04 20:42 514 ----a-w c:\program files\Shortcut to Spyware Doctor.lnk 2009-02-04 20:31 --------- d-----w c:\documents and settings\Customer\Application Data\MSN6 2009-01-13 18:51 --------- d-----w c:\program files\iTunes 2009-01-13 18:51 --------- d-----w c:\program files\iPod 2009-01-13 18:51 --------- d-----w c:\program files\Common Files\Apple 2009-01-13 18:51 --------- d-----w c:\documents and settings\Customer\Application Data\Apple Computer 2009-01-13 18:51 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer 2009-01-13 18:51 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6} 2009-01-13 18:50 --------- d-----w c:\program files\Apple Software Update 2009-01-13 18:49 --------- d-----w c:\documents and settings\All Users\Application Data\Apple 2009-01-11 13:31 --------- d-----w c:\program files\Common Files\Adobe AIR 2009-01-11 13:30 --------- d-----w c:\program files\Common Files\Adobe 2008-12-30 05:05 --------- d-----w c:\documents and settings\Customer\Application Data\InterVideo 2008-12-28 07:41 --------- d-----w c:\program files\OFFICE11 2008-12-25 03:54 --------- d-----w c:\documents and settings\Customer\Application Data\Web Page Maker V2 2008-04-14 05:42 339,968 --sh--r c:\windows\system32\nod64.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ibmmessages"="c:\program files\IBM\Messages By IBM\ibmmessages.exe" [2003-01-07 495616] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-02-04 342848] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2003-06-24 126976] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2003-06-24 561152] "TPHOTKEY"="c:\progra~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe" [2003-01-25 94208] "BMMGAG"="c:\progra~1\ThinkPad\UTILIT~1\pwrmonit.dll" [2003-01-17 64000] "BMMLREF"="c:\program files\ThinkPad\Utilities\BMMLREF.EXE" [2003-01-17 20480] "QCWLICON"="c:\program files\ThinkPad\ConnectUtilities\QCWLICON.EXE" [2003-03-27 53248] "TPKMAPMN"="c:\program files\ThinkPad\Utilities\TpKmapMn.exe" [2003-02-17 32835] "EZEJMNAP"="c:\progra~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe" [2002-12-24 204800] "ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-01-16 294912] "tgcmd"="c:\program files\Support.com\bin\tgcmd.exe" [2002-10-16 1622016] "ibmmessages"="c:\program files\IBM\Messages By IBM\ibmmessages.exe" [2003-01-07 495616] "StorageGuard"="c:\program files\VERITAS Software\Update Manager\sgtray.exe" [2002-06-18 155648] "dla"="c:\windows\system32\dla\tfswctrl.exe" [2003-01-10 106551] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696] "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-01-30 185872] "Norman ZANDA"="c:\program files\Norman\Npm\Bin\ZLH.EXE" [2008-06-02 277616] "ISTray"="c:\program files\Spyware Doctor\pctsTray.exe" [2009-02-13 1168264] "S3TRAY2"="S3Tray2.exe" [2001-10-12 c:\windows\system32\S3Tray2.exe] "ATIModeChange"="Ati2mdxx.exe" [2001-09-04 c:\windows\system32\Ati2mdxx.exe] "BluetoothAuthenticationAgent"="irprops.cpl" [2008-04-14 c:\windows\system32\irprops.cpl] "TP4EX"="tp4ex.exe" [2002-09-04 c:\windows\system32\TP4EX.exe] "Nod32 Service"="nod64.exe" [2008-04-14 c:\windows\system32\nod64.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] "Nod32 Service"="nod64.exe" [2008-04-14 c:\windows\system32\nod64.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"="0x00000000" "UpdatesDisableNotify"="0x00000000" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Support.com\\Bin\\tgcmd.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= P2 NPFSvc32;Norman Personal Firewall Service;c:\program files\Norman\Npf\Bin\npfsvc32.exe [2009-02-12 597104] R0 NDIS_RD;Norman Firewall NDIS driver;c:\windows\system32\drivers\ndis_rd.sys [2009-02-12 79752] R1 IBMTPCHK;IBMTPCHK;c:\windows\system32\drivers\IBMBLDID.SYS [2008-09-09 2295] R1 NPROSEC;Norman Security driver;c:\program files\Norman\Ngs\Bin\nprosec.sys [2009-02-12 53816] R1 TDI_RD;Norman Firewall TDI driver;c:\windows\system32\drivers\tdi_rd.sys [2009-02-12 74624] R1 TPPWR;TPPWR;c:\windows\system32\drivers\TPPWR.SYS [2008-09-09 15360] R2 Ndiskio;Ndiskio;c:\program files\Norman\Nse\Bin\Ndiskio.sys [2009-02-12 20448] R2 NPROSECSVC;Norman Security service;c:\program files\Norman\Ngs\Bin\nprosec.exe [2009-02-12 121912] R2 NVOY;Norman's Very Own supplY of resources;c:\program files\Norman\npm\bin\nvoy.exe [2009-02-12 121912] R2 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2009-02-13 356920] R3 nsesvc;Norman Scanner Engine Service;c:\program files\Norman\Nse\Bin\Nsesvc.exe [2009-02-12 183352] R3 NvcMFlt;NvcMFlt;c:\windows\system32\drivers\nvcw32mf.sys [2009-02-12 19512] R3 nvcoas;Norman Virus Control on-access component;c:\program files\Norman\nvc\bin\Nvcoas.exe [2009-02-12 191544] R3 NVCScheduler;Norman Virus Control Scheduler;c:\program files\Norman\npm\bin\nvcsched.exe [2009-02-12 154680] S3 PCDRDRV;Pcdr Helper Driver;\??\c:\progra~1\PC-DOC~1\DIAGNO~1\PCDRDRV.sys --> c:\progra~1\PC-DOC~1\DIAGNO~1\PCDRDRV.sys [?] --- Other Services/Drivers In Memory --- Deregistered - mchInjDrv . Contents of the 'Scheduled Tasks' folder 2008-09-09 c:\windows\Tasks\BMMTask.job - c:\progra~1\ThinkPad\UTILIT~1\BMMTASK.EXE [2003-01-17 08:32] 2009-02-14 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-02-13 12:48] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.nl/ uInternet Settings,ProxyOverride = .local IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab . *********************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2009-02-14 18:51:11 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2009-02-14 18:54:45 ComboFix-quarantined-files.txt 2009-02-14 18:54:36 Pre-Run: 25,300,549,632 bytes free Post-Run: 25,292,378,112 bytes free 263 --- E O F --- 2009-01-27 10:15:15

Profil

helen1 Poslao: 14 Feb 2009 20:49 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uploaduj mi sledece fajlove: c:\windows\poppers.exe c:\windows\BIT89.tmp preko sledeceg linka: http://www.mycity.rs/ambulanta-upload.php

Profil

Dijamant Poslao: 15 Feb 2009 21:08 Idi na vrh
offline Dijamant Građanin Pridružio: 17 Okt 2006 Poruke: 53	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Upload-ovala sam prvi od ova dva fajla.Drugi nije uspeo da pronadje ni posle nekoliko pokusaja.

Profil

helen1 Poslao: 15 Feb 2009 21:12 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uradi ovo, pa ga nadji: Windows XP Klikni Start taster (u levom donjem uglu). Izaberi My Computer. Selektuj Tools meni i klikni na Folder Options. Selektuj View na vrhu, unutar Hidden files and folders grupe selektuj Show hidden files and folders. Skini kvačicu sa Hide file extensions for known types. Skini kvačicu sa Hide protected operating system files (recommended). Klikni YES. Klikni OK.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » fajlovi

Ko je trenutno na forumu

Ukupno su 823 korisnika na forumu :: 6 registrovanih, 0 sakrivenih i 817 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: babaroga, Milos ZA, Neutral-M, Panter, pein, VJ

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by