Toolbar
Pravilnik foruma
Burek marketing
Najčešća pitanja
Posetite Burek Prodavnicu
Prijava na forum:
Ime:
Lozinka:
Prijavi me trajno:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:

Zatvori
ConQUIZtador
banner
BUREK marketing
*
linktree Burek :: Forumi ::  >  Tehnicki deo foruma  >  Pc Klinika ~ Doktori za vas kompjuter
linktree Tema: Virus C:\WINXP\system32\*.**.**.dll (Moderatori: enaB, chelavi1)
Trenutno vreme je: 28. Apr 2024, 18:28:32
 nazadnapred
Korisnici koji su trenutno na forumu 0 članova i 1 gost pregledaju ovu temu.

 Napomena: Za sva pitanja u vezi kupovine novog hardware-a ili procene vrednosti i preporuke koristite - ovu temu

Spyware,sta je,kako radi,kako se zastititi? :: Kako rade mreze :: Burek Anti-virus software review :: Index tema koje ne treba propustiti

Idi dole
Stranice:
1 2
3
Počni novu temu Nova anketa Odgovor Štampaj Dodaj temu u favorite Pogledajte svoje poruke u temi
Tema: Virus C:\WINXP\system32\*.**.**.dll  (Pročitano 5893 puta)
Tema opcije Oceni temu
cajodnane
Poruka #20 20. Dec 2010, 22:05:13
Ucesnik diskusija

Zodijak Capricorn
Pol Muškarac
Poruke 85
OS
Windows XP
Browser
Mozilla Firefox 3.6.13
mob
Siemens BenQ
Odlican program, cisti uglavnom sve sto nadje, ali ovo nece.



 Smile
IP sačuvana
social share
BB
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
cajodnane
Poruka #21 21. Dec 2010, 00:18:54
Ucesnik diskusija

Zodijak Capricorn
Pol Muškarac
Poruke 85
OS
Windows XP
Browser
Mozilla Firefox 3.6.13
mob
Siemens BenQ
Citat: ivicaspas 20. Dec 2010, 21:22:03
Citat
C:\WINXP\system32\naziv problema.dll,

daj mi tacan naziv \ putanju, ili sliku sta Nod detektuje.

Cekaj, ajde ovako, Obrisi taj CF pa skini novi na desktop

Otvori notepad i kopiraj ovo

Kod:
DirLook::
C:\MSOCache

Snimi na desktop kao CFScript

Prevuci CFScript na ikonicu Combofixa



Postavi mi log




ComboFix 10-12-19.03 - xxxxxxxxxx 20/12/2010  23:40:08.2.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.1919.1336 [GMT 1:00]
Running from: c:\documents and settings\xxxxxxxxx\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\xxxxxxxxxx\Desktop\CFScript.txt
AV: Eset NOD32 antivirus system 2.51 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
 * Resident AV is active

.

(((((((((((((((((((((((((   Files Created from 2010-11-20 to 2010-12-20  )))))))))))))))))))))))))))))))
.

2010-12-04 18:10 . 2010-12-09 16:27   --------   d-----w-   C:\Serije
2010-12-03 16:31 . 2010-12-03 16:31   --------   d-----r-   C:\MSOCache
2010-12-03 15:40 . 2010-12-03 15:40   --------   d-----w-   C:\278de58954fe43cf2b70e91d304ed7ca
2010-11-30 20:29 . 2010-11-30 20:29   --------   d-----w-   C:\Python31
2010-11-29 14:40 . 2010-11-29 14:41   --------   d-----w-   C:\totalcmd
2010-11-29 13:01 . 2010-11-29 13:01   --------   d-----w-   C:\MyWorks

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-12 17:34 . 2010-10-12 17:34   119808   ----a-w-   c:\winxp\system32\t2embed.dll
2010-10-12 17:34 . 2010-10-12 17:34   1861888   ----a-w-   c:\winxp\system32\win32k.sys
2010-10-12 17:34 . 2010-10-12 17:34   1289216   ----a-w-   c:\winxp\system32\ole32.dll
2010-10-12 17:34 . 2010-10-12 17:34   919552   ----a-w-   c:\winxp\system32\wininet.dll
2010-10-12 17:34 . 2010-10-12 17:34   43520   ----a-w-   c:\winxp\system32\licmgr10.dll
2010-10-12 17:34 . 2010-10-12 17:34   1469440   ----a-w-   c:\winxp\system32\inetcpl.cpl
2010-10-12 17:34 . 2010-10-12 17:34   317440   ----a-w-   c:\winxp\system32\mp4sdecd.dll
2010-10-12 17:34 . 2010-10-12 17:34   974848   ----a-w-   c:\winxp\system32\mfc42u.dll
2010-10-12 17:34 . 2010-10-12 17:34   974848   ----a-w-   c:\winxp\system32\mfc42.dll
2010-10-12 17:34 . 2010-10-12 17:34   954368   ----a-w-   c:\winxp\system32\mfc40.dll
2010-10-12 17:34 . 2010-10-12 17:34   953856   ----a-w-   c:\winxp\system32\mfc40u.dll
2010-10-12 17:33 . 2010-10-12 17:33   590848   ----a-w-   c:\winxp\system32\rpcrt4.dll
2010-10-12 17:33 . 2010-10-12 17:33   99840   ----a-w-   c:\winxp\system32\srvsvc.dll
2010-10-12 17:33 . 2010-10-12 17:33   5120   ----a-w-   c:\winxp\system32\xpsp4res.dll
2010-10-12 17:33 . 2010-10-12 17:33   357248   ----a-w-   c:\winxp\system32\drivers\srv.sys
2010-10-12 17:33 . 2010-10-12 17:33   617472   ----a-w-   c:\winxp\system32\comctl32.dll
2010-10-12 17:33 . 2010-10-12 17:33   285824   ----a-w-   c:\winxp\system32\atmfd.dll
2004-12-07 08:13 . 2004-12-07 08:13   479432   ----a-w-   c:\program files\dxsetup.exe
2004-12-07 08:13 . 2004-12-07 08:13   69832   ----a-w-   c:\program files\DSETUP.dll
2004-12-07 08:13 . 2004-12-07 08:13   2249416   ----a-w-   c:\program files\dsetup32.dll
.

((((((((((((((((((((((((((((((((((((((((((((   Look   )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of C:\MSOCache ----

2010-12-16 12:16 . 2010-12-16 12:36   8900   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\VisProWW.xml
2010-12-16 12:16 . 2010-12-16 12:36   6180352   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\VisProWW.msi
2010-12-16 12:16 . 2010-12-16 12:36   14273   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\Setup.xml
2010-12-16 12:16 . 2010-12-16 12:36   104476071   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\VisProWW.cab
2010-12-16 12:16 . 2010-12-16 12:36   4151139   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\OWOW64WW.cab
2010-12-16 12:16 . 2010-12-16 12:36   6536992   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\osetup.dll
2010-12-16 12:16 . 2010-12-16 12:36   145184   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\ose.exe
2010-12-16 12:16 . 2010-12-16 12:36   2310   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\Office64WW.xml
2010-12-16 12:16 . 2010-12-16 12:36   847872   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\Office64WW.msi
2010-12-16 12:16 . 2010-12-16 12:36   1702   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\ID_00051.DPC
2010-12-16 12:16 . 2010-12-16 12:36   8962   ----a-w-   c:\msocache\All Users\{90120000-0054-0409-0000-0000000FF1CE}-C\VisioMUI.xml
2010-12-16 12:16 . 2010-12-16 12:36   1935360   ----a-w-   c:\msocache\All Users\{90120000-0054-0409-0000-0000000FF1CE}-C\VisioMUI.msi
2010-12-16 12:16 . 2010-12-16 12:36   50823036   ----a-w-   c:\msocache\All Users\{90120000-0054-0409-0000-0000000FF1CE}-C\VisioLR.cab
2010-12-16 12:16 . 2010-12-16 12:36   9352   ----a-w-   c:\msocache\All Users\{90120000-0054-0409-0000-0000000FF1CE}-C\Setup.xml
2010-12-16 12:16 . 2010-12-16 12:36   1251   ----a-w-   c:\msocache\All Users\{90120000-0010-0409-0000-0000000FF1CE}-C\Setup.xml
2010-12-16 12:16 . 2010-12-16 12:36   49152   ----a-w-   c:\msocache\All Users\{90120000-0010-0409-0000-0000000FF1CE}-C\RosebudMUI.msi
2010-12-16 12:16 . 2010-12-16 12:36   811   ----a-w-   c:\msocache\All Users\{90120000-0010-0409-0000-0000000FF1CE}-C\RosebudMUI.xml
2010-12-16 12:16 . 2010-12-16 12:36   1581636   ----a-w-   c:\msocache\All Users\{90120000-0010-0409-0000-0000000FF1CE}-C\RbudLR.cab
2010-12-16 12:16 . 2010-12-16 12:36   1459   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.xml
2010-12-16 12:16 . 2010-12-16 12:36   518144   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.msi
2010-12-16 12:16 . 2010-12-16 12:36   11479987   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.cab
2010-12-16 12:16 . 2010-12-16 12:36   1460   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.xml
2010-12-16 12:16 . 2010-12-16 12:36   514048   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.msi
2010-12-16 12:16 . 2010-12-16 12:36   16456790   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.cab
2010-12-16 12:16 . 2010-12-16 12:35   1350   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.xml
2010-12-16 12:16 . 2010-12-16 12:35   507904   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.msi
2010-12-16 12:16 . 2010-12-16 12:35   22404970   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.cab
2010-12-16 12:16 . 2010-12-16 12:36   5884   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Setup.xml
2010-12-16 12:16 . 2010-12-16 12:35   813   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proofing.xml
2010-12-16 12:16 . 2010-12-16 12:35   502272   ----a-w-   c:\msocache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proofing.msi
2010-12-16 12:16 . 2010-12-16 12:35   108872   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\1033\dwintl20.dll
2010-12-16 12:16 . 2010-12-16 12:35   52984   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\setup.chm
2010-12-16 12:16 . 2010-12-16 12:35   9952   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\Setup.xml
2010-12-16 12:16 . 2010-12-16 12:35   61952   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\ShellUI.MST
2010-12-16 12:16 . 2010-12-16 12:35   27084   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\pss10r.chm
2010-12-16 12:16 . 2010-12-16 12:35   184632   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\osetupui.dll
2010-12-16 12:16 . 2010-12-16 12:35   821   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\OfficeMUISet.xml
2010-12-16 12:16 . 2010-12-16 12:35   6003   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\OfficeMUI.xml
2010-12-16 12:16 . 2010-12-16 12:35   502272   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\OfficeMUISet.msi
2010-12-16 12:16 . 2010-12-16 12:35   2398720   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\OfficeMUI.msi
2010-12-16 12:16 . 2010-12-16 12:35   26692203   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\OfficeLR.cab
2010-12-16 12:15 . 2010-12-16 12:35   626688   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\msvcr80.dll
2010-12-16 12:15 . 2010-12-16 12:35   522   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\Microsoft.VC80.CRT.manifest
2010-12-16 12:15 . 2010-12-16 12:35   434528   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\dwtrig20.exe
2010-12-16 12:15 . 2010-12-16 12:35   439568   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\dwdcw20.dll
2010-12-16 12:15 . 2010-12-16 12:35   813384   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\DW20.EXE
2010-12-16 12:15 . 2010-12-16 12:35   509007   ----a-w-   c:\msocache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\branding.xml
2010-12-16 12:15 . 2010-12-16 12:36   463152   ----a-w-   c:\msocache\All Users\{90120000-0051-0000-0000-0000000FF1CE}-C\setup.exe
2010-03-31 11:25 . 2010-12-03 16:31   1807360   ----a-w-   c:\msocache\All Users\{90140000-00B4-0409-0000-0000000FF1CE}-C\ProjectMUI.msi
2010-03-31 11:25 . 2010-12-03 16:31   1451   ----a-w-   c:\msocache\All Users\{90140000-00B4-0409-0000-0000000FF1CE}-C\ProjectMUI.xml
2010-03-31 11:25 . 2010-12-03 16:31   1872   ----a-w-   c:\msocache\All Users\{90140000-00B4-0409-0000-0000000FF1CE}-C\Setup.xml
2010-03-31 11:24 . 2010-12-03 16:31   8264773   ----a-w-   c:\msocache\All Users\{90140000-00B4-0409-0000-0000000FF1CE}-C\ProjLR.cab
2010-03-31 09:05 . 2010-12-03 16:31   6618   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\PrjProrWW.xml
2010-03-31 09:05 . 2010-12-03 16:31   17352   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\Setup.xml
2010-03-31 09:05 . 2010-12-03 16:31   8464896   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\PrjProrWW.msi
2010-03-31 09:05 . 2010-12-03 16:31   138937718   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\PrjPrrWW.cab
2010-03-30 20:16 . 2010-12-03 16:31   809   ----a-w-   c:\msocache\All Users\{90140000-0010-0409-0000-0000000FF1CE}-C\RosebudMUI.xml
2010-03-30 20:16 . 2010-12-03 16:31   811   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proofing.xml
2010-03-30 20:16 . 2010-12-03 16:31   1251   ----a-w-   c:\msocache\All Users\{90140000-0010-0409-0000-0000000FF1CE}-C\Setup.xml
2010-03-30 20:16 . 2010-12-03 16:31   819   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\OfficeMUISet.xml
2010-03-30 20:16 . 2010-12-03 16:31   1457   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.xml
2010-03-30 20:16 . 2010-12-03 16:31   1458   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.xml
2010-03-30 20:16 . 2010-12-03 16:31   5662   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\OfficeMUI.xml
2010-03-30 20:16 . 2010-12-03 16:31   5884   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Setup.xml
2010-03-30 20:16 . 2010-12-03 16:31   9598   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\Setup.xml
2010-03-30 20:16 . 2010-12-03 16:31   50688   ----a-w-   c:\msocache\All Users\{90140000-0010-0409-0000-0000000FF1CE}-C\RosebudMUI.msi
2010-03-30 20:14 . 2010-12-03 16:31   650240   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\OfficeMUISet.msi
2010-03-30 20:14 . 2010-12-03 16:31   650240   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proofing.msi
2010-03-30 20:14 . 2010-12-03 16:31   663040   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.msi
2010-03-30 20:14 . 2010-12-03 16:31   667648   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.msi
2010-03-30 20:14 . 2010-12-03 16:31   1562656   ----a-w-   c:\msocache\All Users\{90140000-0010-0409-0000-0000000FF1CE}-C\RbudLR.cab
2010-03-30 20:14 . 2010-12-03 16:31   2863104   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\OfficeMUI.msi
2010-03-30 20:14 . 2010-12-03 16:31   13184516   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.es\Proof.cab
2010-03-30 20:14 . 2010-12-03 16:31   14318086   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\OfficeLR.cab
2010-03-30 20:13 . 2010-12-03 16:31   20451562   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\Proof.cab
2010-03-30 15:28 . 2010-12-03 16:31   1347   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.xml
2010-03-30 15:28 . 2010-12-03 16:31   4685   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\Office64WW.xml
2010-03-30 15:27 . 2010-12-03 16:31   656896   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.msi
2010-03-30 15:27 . 2010-12-03 16:31   3025408   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\Office64WW.msi
2010-03-30 15:27 . 2010-12-03 16:31   10918653   ----a-w-   c:\msocache\All Users\{90140000-002C-0409-0000-0000000FF1CE}-C\Proof.en\Proof.cab
2010-03-30 15:27 . 2010-12-03 16:31   23865400   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\OWOW64WW.cab
2010-03-27 21:28 . 2010-12-03 16:31   3584   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\ShellUI.MST
2010-03-27 21:28 . 2010-12-03 16:31   596341   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\branding.xml
2010-03-24 13:26 . 2010-12-03 16:31   655872   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\msvcr90.dll
2010-03-22 22:31 . 2010-12-03 16:31   107912   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\1033\dwintl20.dll
2010-03-22 18:09 . 2010-12-03 16:31   838536   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\DW20.EXE
2010-03-22 18:09 . 2010-12-03 16:31   526176   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\dwdcw20.dll
2010-03-22 18:09 . 2010-12-03 16:31   519584   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\dwtrig20.exe
2010-03-21 16:19 . 2010-12-03 16:31   67190   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\setup.chm
2010-03-19 12:49 . 2010-12-03 16:31   1857   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\Microsoft.VC90.CRT.manifest
2010-03-18 17:39 . 2010-12-03 16:31   715834   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\pkeyconfig-office.xrm-ms
2010-03-17 05:53 . 2010-12-03 16:31   27195   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\pss10r.chm
2010-03-16 05:08 . 2010-12-03 16:31   149352   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\ose.exe
2010-03-12 02:46 . 2010-12-03 16:31   191872   ----a-w-   c:\msocache\All Users\{90140000-0115-0409-0000-0000000FF1CE}-C\osetupui.dll
2010-03-11 20:42 . 2010-12-03 16:31   1100664   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\setup.exe
2010-03-11 20:42 . 2010-12-03 16:31   5789544   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\osetup.dll
2010-03-11 18:40 . 2010-12-03 16:31   1248016   ----a-w-   c:\msocache\All Users\{91140000-003B-0000-0000-0000000FF1CE}-C\PidGenX.dll


(((((((((((((((((((((((((((((   SnapShot@2010-12-20_18.08.13   )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-20 22:37 . 2010-12-20 22:37   16384              c:\winxp\Temp\Perflib_Perfdata_1e8.dat
+ 2008-04-14 12:00 . 2010-12-20 22:42   663460              c:\winxp\system32\perfh009.dat
- 2008-04-14 12:00 . 2010-12-20 18:04   663460              c:\winxp\system32\perfh009.dat
+ 2008-04-14 12:00 . 2010-12-20 22:42   150096              c:\winxp\system32\perfc009.dat
- 2008-04-14 12:00 . 2010-12-20 18:04   150096              c:\winxp\system32\perfc009.dat
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\lib\NMBgMonitor.exe" [2005-10-28 94208]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"RTHDCPL"="RTHDCPL.EXE" [2006-10-30 16269312]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"HControl"="c:\winxp\ATK0100\HControl.exe" [2006-10-14 110592]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2005-10-17 987136]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2008-05-02 15872]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-04-27 282624]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2010-11-29 921600]
"NeroFilterCheck"="c:\winxp\system32\NeroCheck.exe" [2001-07-09 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-11-29 148888]
"UpdateReminder"="c:\program files\Eset\UpdateReminder.exe" [2010-11-30 434176]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]

c:\documents and settings\xxxxxxxxx\Start Menu\Programs\Startup\
CCC.lnk - c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2006-9-29 49152]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R2 MsDtsServer100;SQL Server Integration Services 10.0;c:\program files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe [10/07/2008 01:22 218136]
R2 ReportServer;SQL Server Reporting Services (MSSQLSERVER);c:\program files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe [10/07/2008 02:22 1106968]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service;c:\winxp\system32\StkCSrv.exe [29/11/2010 14:44 24576]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam;c:\winxp\system32\drivers\StkCMini.sys [29/11/2010 14:44 1324544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\winxp\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 13:16 130384]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [09/01/2010 21:37 4640000]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\winxp\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\winxp\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
S4 MSSQLFDLauncher;SQL Full-text Filter Daemon Launcher (MSSQLSERVER);c:\program files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe [10/07/2008 01:15 31256]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\sqladhlp.exe [10/07/2008 03:49 47128]
S4 RsFx0102;RsFx0102 Driver;c:\winxp\system32\drivers\RsFx0102.sys [10/07/2008 02:49 242712]
S4 RsFx0103;RsFx0103 Driver;c:\winxp\system32\drivers\RsFx0103.sys [30/03/2009 03:09 239336]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [30/03/2009 03:23 366936]
.
Contents of the 'Scheduled Tasks' folder

2010-12-20 c:\winxp\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-01-10 14:42]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\winxp\system32\imon.dll
FF - ProfilePath - c:\documents and settings\xxxxxxxxx\Application Data\Mozilla\Firefox\Profiles\xcjluoya.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Skype extension: {AB2CE124-6272-4b12-94A9-7303C7397BD1} - c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-20 23:45
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ... 

scanning hidden autostart entries ...

scanning hidden files ... 

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(836)
c:\winxp\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(892)
c:\winxp\system32\imon.dll
.
Completion time: 2010-12-20  23:48:13
ComboFix-quarantined-files.txt  2010-12-20 22:48
ComboFix2.txt  2010-12-20 18:10

Pre-Run: 53,135,605,760 bytes free
Post-Run: 53,128,736,768 bytes free

- - End Of File - - C2479199DACADEC1083BB87CBCC9B3A3

 Smile
IP sačuvana
social share
BB
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #22 21. Dec 2010, 08:54:49
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows 7
Browser
Mozilla Firefox 3.6.13
mob
HTC 
Ovako, deinstaliracemo Combofix, ovde nema malware-a.

Start > run > ComboFix /Uninstall  ok

Program RemoveIt, je dosta dugo bio na losem glasu zbog velikog broja laznih uzbuna, inace radi se o prosecnom programu, nista posebno. Preporuka, da izbrises taj program i da skines i koristis Malwarebytes koji je za dve klase bolji.

IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
cajodnane
Poruka #23 21. Dec 2010, 19:29:01
Ucesnik diskusija

Zodijak Capricorn
Pol Muškarac
Poruke 85
OS
Windows XP
Browser
Mozilla Firefox 3.6.13
mob
Siemens BenQ
Sklonio sam ComboFix, a sto se tice Malwarebytes-a, koristim ga odavno i on ne prijavljuje ovaj virus ili vec sta je.

Nod ga takodje ne registruje.

Smile
IP sačuvana
social share
BB
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #24 21. Dec 2010, 19:41:27
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows 7
Browser
Mozilla Firefox 3.6.13
mob
HTC 
Brisi taj program, pored mbam-a on ti nije potreban. Takodje ne verujem da imas bilo kakav problem sa racunarom, osim sto ti taj program prijavljuje nepostojeci malawre.
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
cajodnane
Poruka #25 21. Dec 2010, 20:46:13
Ucesnik diskusija

Zodijak Capricorn
Pol Muškarac
Poruke 85
OS
Windows XP
Browser
Mozilla Firefox 3.6.13
mob
Siemens BenQ
Ok, havala svima koji su ucestvovali u resavanju ovog problema.

Smile
IP sačuvana
social share
BB
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
Idi gore
Stranice:
1 2
3
Počni novu temu Nova anketa Odgovor Štampaj Dodaj temu u favorite Pogledajte svoje poruke u temi
linktree Burek :: Forumi ::  >  Tehnicki deo foruma  >  Pc Klinika ~ Doktori za vas kompjuter
linktree Tema: Virus C:\WINXP\system32\*.**.**.dll (Moderatori: enaB, chelavi1)
Trenutno vreme je: 28. Apr 2024, 18:28:32
 nazadnapred
Prebaci se na:  

Poslednji odgovor u temi napisan je pre više od 6 meseci.  

Temu ne bi trebalo "iskopavati" osim u slučaju da imate nešto važno da dodate. Ako ipak želite napisati komentar, kliknite na dugme "Odgovori" u meniju iznad ove poruke. Postoje teme kod kojih su odgovori dobrodošli bez obzira na to koliko je vremena od prošlog prošlo. Npr. teme o određenom piscu, knjizi, muzičaru, glumcu i sl. Nemojte da vas ovaj spisak ograničava, ali nemojte ni pisati na teme koje su završena priča.
web design

Forum Info: Banneri Foruma :: Burek Toolbar :: Burek Prodavnica :: Burek Quiz :: Najcesca pitanja :: Tim Foruma :: Prijava zloupotrebe

Izvori vesti: Blic :: Wikipedia :: Mondo :: Press :: Naša mreža :: Sportska Centrala :: Glas Javnosti :: Kurir :: Mikro :: B92 Sport :: RTS :: Danas

Prijatelji foruma: Triviador :: Domaci :: Morazzia :: TotalCar :: FTW.rs :: MojaPijaca :: Pojacalo :: 011info :: Burgos :: Alfaprevod

Pravne Informacije: Pravilnik Foruma :: Politika privatnosti :: Uslovi koriscenja :: O nama :: Marketing :: Kontakt :: Sitemap

All content on this website is property of "Burek.com" and, as such, they may not be used on other websites without written permission.

Copyright © 2002- "Burek.com", all rights reserved. Performance: 0.098 sec za 16 q. Powered by: SMF. © 2005, Simple Machines LLC.