MyCity » Ambulanta -> Arhiva Ambulante » Dali mi sistem ima infekciju

Dali mi sistem ima infekciju

Napisano na dan: 3.3.2013

Dali mi sistem ima infekciju
Sledeća strana Pagination

Idi na vrh

Poslao: 03 Mar 2013 16:40
Idi na vrh
offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 445
  • Gde živiš: Landau and der Pfalz

Pozdrav AMF timu !
Poštovani hocu da proverim dali mi je sistem cist ili ima bilo kakvu infekciju pa da je otklonimo.


DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.15.2
Run by Administrator at 16:27:55 on 2013-03-03
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.513 [GMT 1:00]
.
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\VMSnap3.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MCShield\mcshieldrtm.exe
C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Maxthon3\Bin\Maxthon.exe
C:\Program Files\Maxthon3\Bin\Maxthon.exe
C:\Program Files\Maxthon3\Bin\Maxthon.exe
C:\Program Files\Maxthon3\Bin\Maxthon.exe
C:\Program Files\Maxthon3\Bin\Maxthon.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k bthsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, optimized for Bing and MSN
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.yahoo.com
mDefault_Page_URL = hxxp://www.yahoo.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.0.318\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: FastestTubeBHO Class: {3E532CE8-C6D9-4A10-8ACE-4348C96E8B6A} - c:\program files\fastesttube\2.0.0\WombatBHO.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
uRun: [Google Update] "c:\documents and settings\administrator\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [VMSnap3] c:\windows\VMSnap3.exe
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\yahoo!~1.lnk - c:\program files\yahoo!\widgets\YahooWidgets.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.0.318\SSScheduler.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - <no file>
IE: Free YouTube to MP3 Converter - c:\documents and settings\administrator\application data\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1317104157750
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{4132A202-E364-43F9-804F-7CF37769A70D} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\application data\mozilla\firefox\profiles\5bzqvh71.default\
FF - prefs.js: browser.search.defaulturl -
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\np-mswmp.dll
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\administrator\application data\mozilla\plugins\npo1d.dll
FF - plugin: c:\documents and settings\administrator\local settings\application data\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\mcafee security scan\3.0.318\npMcAfeeMSS.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1200112.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_168.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: !HIDDEN! 2013-02-27 20:19; speedanalysis@SpeedAnalysis.com; c:\documents and settings\administrator\application data\mozilla\extensions\speedanalysis@SpeedAnalysis.com
.
============= SERVICES / DRIVERS ===============
.
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2011-8-12 116608]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\firebird\firebird_2_5\bin\fbguard.exe [2012-12-13 98304]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [2012-1-7 12184]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\firebird\firebird_2_5\bin\fbserver.exe [2012-12-13 3735552]
R3 gMouPS2;PS2 Scroll Mouse Device;c:\windows\system32\drivers\gMouPS2.sys [2012-2-29 17408]
R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-1 34384]
R3 vvftav303;vvftav303;c:\windows\system32\drivers\vvftav303.sys [2011-8-28 480128]
R3 ZSMC0303;A4 TECH PC Camera H;c:\windows\system32\drivers\usbVM303.sys [2011-8-28 1472768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-1-8 161536]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\ambfilt.sys --> c:\windows\system32\drivers\Ambfilt.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-4 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-02-28 05:26:22 8157 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\temp\RulesProt.bin
2013-02-28 05:25:57 18308735 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\cache\0x1000000D.DAT
2013-02-27 19:19:38 -------- d-----w- c:\documents and settings\administrator\application data\SpeedanAlysis
2013-02-25 16:25:57 -------- d-----w- c:\documents and settings\all users\application data\McAfee Security Scan
2013-02-25 16:25:52 -------- d-----w- c:\program files\McAfee Security Scan
2013-02-25 16:21:50 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-02-25 16:21:37 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-18 11:13:13 -------- d-----w- c:\program files\Photo!
2013-02-18 10:59:24 -------- d-----w- c:\documents and settings\administrator\application data\com.adobe.downloadassistant.AdobeDownloadAssistant
2013-02-16 09:52:34 -------- d-----w- c:\program files\common files\PC Tools
2013-02-15 22:04:52 208448 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2013-02-09 09:56:59 59288 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2013-02-09 09:56:59 478104 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2013-02-09 09:56:59 2850712 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2013-02-09 09:56:59 115608 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2013-02-09 09:56:58 277400 ----a-w- c:\program files\mozilla firefox\freebl3.dll
2013-02-09 09:56:57 917400 ----a-w- c:\program files\mozilla firefox\firefox.exe
2013-02-09 09:56:57 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2013-02-09 09:56:57 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2013-02-09 09:56:56 74136 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2013-02-09 09:56:56 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2013-02-09 09:56:56 19352 ----a-w- c:\program files\mozilla firefox\AccessibleMarshal.dll
2013-02-09 09:56:56 116120 ----a-w- c:\program files\mozilla firefox\crashreporter.exe
2013-02-06 20:00:08 -------- d-----w- c:\program files\Hard Disk Sentinel
.
==================== Find3M ====================
.
2013-02-26 11:00:45 7520 ----a-w- c:\documents and settings\all users\application data\NanoRepository.bin
2013-02-25 16:25:48 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-25 16:25:48 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-02-25 16:21:18 861088 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-02-25 16:21:18 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-19 14:48:05 184032 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\psenlc.dll
2013-02-15 12:19:37 2909176 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\tools\PandaSecurityTb.exe
2013-02-12 08:00:28 105696 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAADiag.dll
2013-02-12 07:50:02 192736 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSINUNC.dll
2013-02-06 15:31:24 723680 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAAlerts.dll
2013-02-06 15:31:24 2404064 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNScan.dll
2013-02-06 15:31:24 2036448 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNConsole.dll
2013-02-06 13:06:40 142560 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSENSRF.dll
2013-02-06 13:06:39 185056 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\psenagent.dll
2013-02-05 14:44:02 92896 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\pkndtl.dll
2013-02-04 08:03:56 588000 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSCCGUIUtils.dll
2013-02-04 08:01:16 160992 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSINApAg.dll
2013-02-01 14:47:44 92896 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\pknedt.dll
2013-02-01 13:18:08 197856 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\pknComCtrl.dll
2013-02-01 13:15:30 74976 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\pskcoord.dll
2013-02-01 13:14:46 22240 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\psksrf.dll
2013-02-01 13:14:22 50912 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\psksys.dll
2013-02-01 10:10:48 879136 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\Setup.exe
2013-01-31 09:49:09 324320 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANUpgSI.dll
2013-01-29 14:00:14 238304 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNUtils.dll
2013-01-29 14:00:14 2105056 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNSuspects.dll
2013-01-29 14:00:13 2510560 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNReports.dll
2013-01-29 14:00:13 2241760 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNResources.dll
2013-01-29 14:00:13 113888 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNProcMonMng.dll
2013-01-29 13:58:02 511200 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNMain.exe
2013-01-29 13:58:02 3150560 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNFwConfig.dll
2013-01-29 13:58:02 3064032 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNPnlConfig.dll
2013-01-29 13:58:02 2614496 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNProcMon.dll
2013-01-29 13:58:02 1137376 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNMsg.dll
2013-01-29 13:58:01 98016 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUNConfigStore.dll
2013-01-29 13:58:01 35552 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANLang.dll
2013-01-27 21:38:27 55008 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAWatchdog.dll
2013-01-27 21:38:26 64224 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUATranslator.dll
2013-01-27 21:38:26 63200 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAUtils.dll
2013-01-27 21:38:26 391904 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAServiceManager.dll
2013-01-27 21:38:26 37088 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAService.exe
2013-01-27 21:38:26 32480 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAMain.exe
2013-01-27 21:38:26 176864 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUASysTray.dll
2013-01-27 21:38:26 102624 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUASystrayObject.dll
2013-01-27 21:38:23 238304 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\x64\PSUAShell.dll
2013-01-27 21:38:19 99040 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\x86\PSUAShell.dll
2013-01-27 21:37:23 66784 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAInfo.dll
2013-01-27 21:37:23 61152 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAGUIAlertsManager.dll
2013-01-27 21:37:23 47840 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAConfigMgr.dll
2013-01-27 21:37:23 39648 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUALegacyExt.dll
2013-01-27 21:37:23 34528 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAError.dll
2013-01-27 21:37:23 134368 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAFirewall.dll
2013-01-27 21:37:22 507616 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAAction.dll
2013-01-27 21:35:38 217312 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAResources.dll
2013-01-27 21:35:38 101088 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSUAResourcesEx.dll
2013-01-27 19:42:37 86240 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSNCGP64.dll
2013-01-27 19:42:37 81120 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\x64\PSNCSysAction.exe
2013-01-27 19:42:37 189664 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSNCIPC64.dll
2013-01-27 19:42:33 19168 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\x86\PSNCSysAction.exe
2013-01-27 19:29:52 337120 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANCU.exe
2013-01-27 19:25:22 69344 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSNXml.dll
2013-01-27 19:22:54 276192 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSINPrSg.dll
2013-01-27 19:22:54 141536 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSNCCfgMgr.dll
2013-01-27 19:21:11 167136 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSINEnAg.dll
2013-01-27 19:21:11 117472 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSINEvAg.dll
2013-01-27 19:19:45 46304 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANStatsSend.dll
2013-01-27 19:18:44 181472 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModLive.dll
2013-01-27 19:18:44 143072 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModNotification.dll
2013-01-27 19:18:44 111328 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModProactive.dll
2013-01-27 19:18:43 262880 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModCfg.dll
2013-01-27 19:18:43 194272 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModFirewall.dll
2013-01-27 19:18:43 163040 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModCtrlCfg.dll
2013-01-27 19:18:43 152800 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModBrowser.dll
2013-01-27 19:16:50 235232 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModBLA.dll
2013-01-27 19:16:49 84192 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANLiveDownloader.dll
2013-01-27 19:16:49 49888 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANMinReqUpg.dll
2013-01-27 19:16:49 387808 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModAV.dll
2013-01-27 19:16:49 37600 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANLicense.dll
2013-01-27 19:16:49 294624 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModADM.dll
2013-01-27 19:16:49 244960 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANModAdiag.dll
2013-01-27 19:16:49 179936 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANLiveMan.dll
2013-01-27 19:16:48 140512 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\PSANHost.exe
2013-01-27 19:14:33 367840 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Service.Info.dll
2013-01-27 19:14:33 256224 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Reports.dll
2013-01-27 19:14:33 252128 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Update.dll
2013-01-27 19:14:33 243424 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Service.Control.dll
2013-01-27 19:14:33 196320 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Quarantine.dll
2013-01-27 19:14:33 172768 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.UsbVaccine.dll
2013-01-27 19:14:32 227552 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Prl.dll
2013-01-27 19:14:32 225504 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Notification.dll
2013-01-27 19:12:16 240864 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Configuration.dll
2013-01-27 19:12:16 232672 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.dll
2013-01-27 19:12:16 209632 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Communication.dll
2013-01-27 19:12:16 183520 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.License.dll
2013-01-27 19:12:15 216800 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Analysis.dll
2013-01-27 19:12:15 131296 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\NdkApi.Common.dll
2013-01-26 03:55:44 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-18 12:18:17 22256 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\program files\panda security\panda cloud antivirus\x86\RKPavProc.sys
2013-01-12 07:24:57 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2013-01-09 20:46:02 95712 ----a-w- c:\windows\system32\grouppolicy\machine\scripts\shutdown\pana.tmp\system64\drivers\NNSHttps.sys
.
============= FINISH: 16:28:35.93 ===============

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

Poslao: 03 Mar 2013 20:39
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Pozdrav, nema tragova malware-a.

MyCity » Ambulanta -> Arhiva Ambulante » Dali mi sistem ima infekciju

Ko je trenutno na forumu
 

Ukupno su 818 korisnika na forumu :: 14 registrovanih, 2 sakrivenih i 802 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: anta, Bluper, gorican, goxin, kybonacci, milan.vukovic, MilosKop, Nikolaa11, nuke92, procesor, slonic_tonic, SR-3m, wizzardone, šumar bk2