Toolbar
Pravilnik foruma
Burek marketing
Najčešća pitanja
Posetite Burek Prodavnicu
Prijava na forum:
Ime:
Lozinka:
Prijavi me trajno:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:

Zatvori
ConQUIZtador
banner
BUREK marketing
*
linktree Burek :: Forumi ::  >  Tehnicki deo foruma  >  Pc Klinika ~ Doktori za vas kompjuter
linktree Tema: Odjednom problem (Moderatori: enaB, chelavi1)
Trenutno vreme je: 27. Apr 2024, 11:25:11
 nazadnapred
Korisnici koji su trenutno na forumu 0 članova i 1 gost pregledaju ovu temu.

 Napomena: Za sva pitanja u vezi kupovine novog hardware-a ili procene vrednosti i preporuke koristite - ovu temu

Spyware,sta je,kako radi,kako se zastititi? :: Kako rade mreze :: Burek Anti-virus software review :: Index tema koje ne treba propustiti

Idi dole
Stranice:
1
2  Sve
Počni novu temu Nova anketa Odgovor Štampaj Dodaj temu u favorite Pogledajte svoje poruke u temi
Tema: Odjednom problem  (Pročitano 3562 puta)
Tema opcije Oceni temu
simic022
24. Okt 2009, 11:46:18
Svakodnevni prolaznik


Opusten kao bakin klitoris!

Zodijak
Pol Muškarac
Poruke 400
OS
Windows XP
Browser
Opera 9.64
evo pre par dana  racunar je poceo da sporije radi bez nekog razloga, sporiji je odziv komandi i pre par minuta su mi nestale sve ikonice sa destopa, ne znam u cemu je problem, skenirao sam ga sa nodom i nema nista,
IP sačuvana
social share
My time is now!
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #1 24. Okt 2009, 11:59:39
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows XP
Browser
Mozilla Firefox 3.5.3
mob
HTC 
Skini Program DDS http://download.bleepingcomputer.com/sUBs/dds.scr
Dvoklikom pokreni DDS
Sacekaj malo, izbacice ti dva loga
Zakaci mi log DDS.txt
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
simic022
Poruka #2 24. Okt 2009, 12:18:03
Svakodnevni prolaznik


Opusten kao bakin klitoris!

Zodijak
Pol Muškarac
Poruke 400
OS
Windows XP
Browser
Opera 9.64
evo vec 3x, udjem i kad se zatvori nista mi ne izbaci, nema logova
IP sačuvana
social share
My time is now!
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #3 24. Okt 2009, 12:24:45
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows XP
Browser
Mozilla Firefox 3.5.3
mob
HTC 
Skini Program  http://images.malwareremoval.com/random/RSIT.exe na desktop
Dvoklikom pokreni RSIT a zatim klikni Continue
Napravice ti dva loga, meni treba onaj maksimizovan log.txt a ne info.txt koji ce biti minimizovan.

btw. jes da ne volim da ga gledam ali sta cu  Smile
« Poslednja izmena: 24. Okt 2009, 12:26:19 od ivicaspas »
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
simic022
Poruka #4 24. Okt 2009, 12:30:38
Svakodnevni prolaznik


Opusten kao bakin klitoris!

Zodijak
Pol Muškarac
Poruke 400
OS
Windows XP
Browser
Opera 9.64
evo ga,
Logfile of random's system information tool 1.06 (written by random/random)
Run by Laza at 2009-10-24 12:28:05
Microsoft Windows XP Professional Service Pack 2
System drive C: has 2 GB (6%) free of 38 GB
Total RAM: 2046 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:28:21 PM, on 10/24/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Multimedia Keyboard Only\PS2USBKbdDrv.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe
C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\AIMP2\AIMP2.exe
C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Laza\Desktop\RSIT.exe
C:\Program Files\trend micro\Laza.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/intl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: BS.Player ControlBar - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file)
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\Multimedia Keyboard Only\PS2USBKbdDrv.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe"  -lang 1033
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [cookies] C:\Documents and Settings\Laza\Application Data\server.exe
O4 - HKLM\..\Run: [WindowsUpdateService] WindowsUpdateService.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [cookies] C:\Documents and Settings\Laza\Application Data\server.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user')
O4 - Startup: Center.lnk = C:\WINDOWS\system32\Center.exe
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Procedure Call (HNM) (RPCER) - Unknown owner - C:\Program Files\Common Files\ODBC\comp.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 9470 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1788223648-725345543-1003UA.job
C:\WINDOWS\tasks\Schedule Task Weekly.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
IeCatch5 Class - C:\PROGRA~1\FlashGet\jccatch.dll [2006-05-16 81920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
UrlHelper Class - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll [2008-09-02 398776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-23 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-09-19 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-09-19 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
gFlash Class - C:\PROGRA~1\FlashGet\getflash.dll [2006-09-12 126976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2C688203-7EB3-4327-9995-1CB417BA23F9} - BS.Player ControlBar - C:\Program Files\BS.Player ControlBar\BSToolbar.dll [2008-08-13 757192]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
{E0E899AB-F487-11D5-8D29-0050BA6940E3} - FlashGet Bar - C:\PROGRA~1\FlashGet\fgiebar.dll [2005-06-07 86016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-12-05 8523776]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-12-05 81920]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-09-19 149280]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-10 17021440]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-20 57344]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-10-11 39792]
"WireLessKeyboard "=C:\Program Files\Multimedia Keyboard Only\PS2USBKbdDrv.exe [2005-08-02 233472]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-04 36352]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"DAEMON Tools-1033"=C:\Program Files\D-Tools\daemon.exe [2004-08-22 81920]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2008-07-01 1447168]
"cookies"=C:\Documents and Settings\Laza\Application Data\server.exe [2009-10-18 121344]
"WindowsUpdateService"=C:\WINDOWS\WindowsUpdateService.exe [2009-10-18 97280]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"Messenger (Yahoo!)"=C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2009-03-18 4363504]
"Google Update"=C:\Documents and Settings\Laza\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-01 133104]
"cookies"=C:\Documents and Settings\Laza\Application Data\server.exe [2009-10-18 121344]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe [2007-12-10 695808]
"Uniblue RegistryBooster 2"=C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S []

C:\Documents and Settings\Laza\Start Menu\Programs\Startup
Center.lnk - C:\WINDOWS\system32\Center.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=177

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\eMuleIncoming\eMule\emule.exe"="E:\eMuleIncoming\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Documents and Settings\Default User\Local Settings\Temp\au8ky55sd\msnmsgr.exe"="C:\Documents and Settings\Default User\Local Settings\Temp\au8ky55sd\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Professional §©®ÎÞt v.4 Black\mirc.exe"="C:\Program Files\Professional §©®ÎÞt v.4 Black\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Counter-Strike\hl.exe"="C:\Program Files\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Program Files\NovaLogic\Delta Force Xtreme 2\dfx2.exe"="C:\Program Files\NovaLogic\Delta Force Xtreme 2\dfx2.exe:*:Enabled:Delta Force Xtreme 2"
"C:\Program Files\NovaLogic\Delta Force Xtreme 2\UPDATE.EXE"="C:\Program Files\NovaLogic\Delta Force Xtreme 2\UPDATE.EXE:*:Enabled:Delta Force Xtreme 2"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Counter-Strike\hlds.exe"="C:\Program Files\Counter-Strike\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Disabled:Windows Messenger"
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"C:\Program Files\Professional §©®ÎÞt v.3 Black\mirc.exe"="C:\Program Files\Professional §©®ÎÞt v.3 Black\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe"="C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe:*:Enabled:Remote Assistance - Windows Messenger and Voice"
"E:\UbisoftAssassin's Creed\AssassinsCreed_Dx9.exe"="E:\UbisoftAssassin's Creed\AssassinsCreed_Dx9.exe:*:Enabled:Assassin's Creed Dx9"
"E:\UbisoftAssassin's Creed\AssassinsCreed_Dx10.exe"="E:\UbisoftAssassin's Creed\AssassinsCreed_Dx10.exe:*:Enabled:Assassin's Creed Dx10"
"E:\UbisoftAssassin's Creed\AssassinsCreed_Launcher.exe"="E:\UbisoftAssassin's Creed\AssassinsCreed_Launcher.exe:*:Enabled:Assassin's Creed Update"
"E:\EA GamesCommand and Conquer Generals\Command & Conquer Generals Zero Hour\game.dat"="E:\EA GamesCommand and Conquer Generals\Command & Conquer Generals Zero Hour\game.dat:*:Enabled:game"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4a207e17-1a02-11de-aa46-001802f6ea8e}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL s.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5a45264f-98ae-11de-abaa-001802f6ea8e}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL s.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{820b1f00-f2cc-11dd-a9ea-806d6172696f}]
shell\AutoRun\command - G:\autorun.exe


======List of files/folders created in the last 1 months======

2009-10-24 12:28:05 ----D---- C:\rsit
2009-10-24 12:28:05 ----D---- C:\Program Files\trend micro
2009-10-24 12:07:30 ----A---- C:\WINDOWS\system32\VBA6.DLL
2009-10-23 10:35:44 ----D---- C:\Documents and Settings\All Users\Application Data\2C2FD
2009-10-18 16:42:03 ----A---- C:\CEPxA01C.tmp
2009-10-18 16:37:39 ----A---- C:\CEPx7DD2.tmp
2009-10-18 14:41:58 ----RSH---- C:\WINDOWS\WindowsUpdateService.exe
2009-10-18 03:15:56 ----A---- C:\Documents and Settings\Laza\Application Data\xcat.dll
2009-10-18 03:15:47 ----A---- C:\Documents and Settings\Laza\Application Data\server.exe
2009-10-16 21:00:24 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2009-10-16 20:10:33 ----D---- C:\Program Files\Warblade
2009-10-16 20:10:24 ----D---- C:\Program Files\ReflexiveArcade
2009-10-16 18:36:54 ----D---- C:\Team17
2009-10-16 17:02:17 ----D---- C:\Documents and Settings\Laza\Application Data\Ubisoft
2009-10-16 17:01:16 ----D---- C:\Documents and Settings\All Users\Application Data\Ubisoft
2009-10-16 16:54:04 ----D---- C:\Documents and Settings\Laza\Application Data\InstallShield
2009-10-16 11:41:30 ----A---- C:\WINDOWS\ModemLog_Communications cable between two computers.txt
2009-10-14 23:28:05 ----HDC---- C:\WINDOWS\$NtUninstallKB974455$
2009-10-14 23:27:58 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2009-10-14 23:27:53 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-10-14 23:26:17 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-10-14 23:26:12 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-10-14 23:26:06 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-10-14 23:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-10-14 23:25:51 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-10-14 23:25:44 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2009-10-14 23:25:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-10-14 12:02:10 ----N---- C:\WINDOWS\UNNeroVision.exe
2009-10-14 12:02:10 ----N---- C:\WINDOWS\system32\msxml3a.dll
2009-10-14 12:01:59 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead
2009-10-14 12:01:58 ----N---- C:\WINDOWS\system32\TwnLib20.dll
2009-10-14 12:01:58 ----N---- C:\WINDOWS\system32\picn20.dll
2009-10-14 12:01:51 ----D---- C:\Program Files\Ahead
2009-10-12 11:37:23 ----D---- C:\Program Files\FriendBlasterPro
2009-10-12 11:37:23 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-10-10 17:15:01 ----D---- C:\Documents and Settings\Laza\Application Data\dvdcss
2009-10-02 10:22:25 ----D---- C:\Program Files\Microsoft
2009-10-02 10:13:39 ----D---- C:\Program Files\Circle Developemnt
2009-09-30 22:41:23 ----D---- C:\Program Files\Image-Line
2009-09-30 22:35:32 ----D---- C:\Documents and Settings\Laza\Application Data\Publish Providers
2009-09-30 22:35:32 ----D---- C:\Documents and Settings\Laza\Application Data\NetMedia Providers
2009-09-30 22:35:26 ----D---- C:\Documents and Settings\Laza\Application Data\Sony
2009-09-30 22:34:24 ----D---- C:\Program Files\Vstplugins
2009-09-30 22:33:57 ----D---- C:\Program Files\Sony
2009-09-29 12:49:49 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-09-28 20:55:00 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-09-28 20:54:59 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-09-28 20:54:46 ----D---- C:\Program Files\Windows Media Connect 2
2009-09-28 20:54:37 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-09-28 20:46:28 ----D---- C:\Program Files\Steinberg
2009-09-28 20:46:27 ----D---- C:\Program Files\Common Files\Digidesign
2009-09-28 20:46:25 ----D---- C:\Program Files\Antares Audio Technologies
2009-09-28 20:46:18 ----A---- C:\WINDOWS\system32\gdiplus.dll

======List of files/folders modified in the last 1 months======

2009-10-24 12:28:21 ----D---- C:\WINDOWS\Temp
2009-10-24 12:28:12 ----D---- C:\WINDOWS\Prefetch
2009-10-24 12:28:05 ----RD---- C:\Program Files
2009-10-24 12:07:30 ----D---- C:\WINDOWS\system32
2009-10-24 11:48:03 ----D---- C:\Program Files\AIMP2
2009-10-24 11:40:58 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-24 11:40:38 ----D---- C:\Program Files\Counter-Strike
2009-10-23 19:55:01 ----RSHD---- C:\WINDOWS
2009-10-23 18:16:25 ----D---- C:\Program Files\Windows Live Safety Center
2009-10-23 18:16:15 ----HD---- C:\WINDOWS\inf
2009-10-23 18:10:02 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-23 10:43:25 ----D---- C:\Program Files\Mozilla Firefox
2009-10-21 22:38:06 ----D---- C:\Documents and Settings\Laza\Application Data\VSO
2009-10-21 15:01:30 ----A---- C:\WINDOWS\NeroDigital.ini
2009-10-21 12:25:33 ----RSHD---- C:\Win
2009-10-19 16:31:32 ----D---- C:\Documents and Settings\Laza\Application Data\uTorrent
2009-10-18 18:39:58 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2009-10-18 16:42:03 ----D---- C:\temp
2009-10-18 16:42:02 ----A---- C:\WINDOWS\win.ini
2009-10-18 16:42:02 ----A---- C:\WINDOWS\system.ini
2009-10-18 16:05:22 ----D---- C:\Program Files\Professional §©®ÎÞt v.3 Black
2009-10-18 00:30:11 ----D---- C:\Program Files\Professional §©®ÎÞt v.4 Black
2009-10-17 17:02:17 ----D---- C:\Program Files\Teamspeak2_RC2
2009-10-17 16:57:19 ----D---- C:\Documents and Settings\Laza\Application Data\teamspeak2
2009-10-16 23:39:39 ----HD---- C:\Program Files\InstallShield Installation Information
2009-10-16 23:39:29 ----SHD---- C:\WINDOWS\Installer
2009-10-16 23:36:57 ----D---- C:\Program Files\EA GAMES
2009-10-16 23:26:17 ----RSD---- C:\WINDOWS\Fonts
2009-10-16 21:00:33 ----D---- C:\WINDOWS\system32\drivers
2009-10-16 21:00:22 ----D---- C:\Program Files\Realtek
2009-10-16 18:36:51 ----D---- C:\Program Files\Common Files\InstallShield
2009-10-16 17:00:52 ----RSD---- C:\WINDOWS\assembly
2009-10-16 17:00:32 ----D---- C:\WINDOWS\system32\DirectX
2009-10-16 16:22:58 ----D---- C:\WINDOWS\system32\ias
2009-10-16 16:00:48 ----SD---- C:\Documents and Settings\Laza\Application Data\Microsoft
2009-10-16 15:06:26 ----D---- C:\Program Files\Secret Maryo Chronicles
2009-10-15 00:58:14 ----D---- C:\Documents and Settings\Laza\Application Data\Ahead
2009-10-15 00:30:06 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-14 23:29:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-14 23:29:27 ----D---- C:\WINDOWS\WinSxS
2009-10-14 23:28:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-14 23:28:12 ----D---- C:\Program Files\Internet Explorer
2009-10-14 23:28:00 ----A---- C:\WINDOWS\imsins.BAK
2009-10-14 23:25:49 ----HD---- C:\WINDOWS\$hf_mig$
2009-10-02 20:01:57 ----A---- C:\WINDOWS\system32\MRT.exe
2009-10-02 11:01:58 ----D---- C:\Program Files\uTorrent
2009-10-02 10:23:30 ----D---- C:\Program Files\Windows Live
2009-10-02 10:13:35 ----D---- C:\Program Files\Messenger Plus! Live
2009-09-28 23:13:32 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-28 22:28:50 ----D---- C:\Program Files\Windows Media Player
2009-09-28 20:54:43 ----D---- C:\WINDOWS\Help
2009-09-28 20:46:27 ----D---- C:\Program Files\Common Files
2009-09-25 07:56:36 ----A---- C:\WINDOWS\system32\wininet.dll
2009-09-25 07:56:35 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-09-25 07:56:35 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-09-25 07:56:35 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-09-25 07:56:34 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-09-25 07:56:34 ----A---- C:\WINDOWS\system32\mstime.dll
2009-09-25 07:56:34 ----A---- C:\WINDOWS\system32\msrating.dll
2009-09-25 07:56:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2009-09-25 07:56:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-09-25 07:56:33 ----A---- C:\WINDOWS\system32\jsproxy.dll
2009-09-25 07:56:33 ----A---- C:\WINDOWS\system32\inseng.dll
2009-09-25 07:56:33 ----A---- C:\WINDOWS\system32\iepeers.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\ieencode.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\extmgr.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\dxtrans.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\danim.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\cdfview.dll
2009-09-25 07:56:32 ----A---- C:\WINDOWS\system32\browseui.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-07-01 53256]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2008-07-01 54280]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 36096]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2008-07-01 39944]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2008-07-01 71688]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2008-07-01 30728]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-08 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-14 4879360]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-12-05 7435392]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-08-23 5888]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-06-29 142592]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-03 14848]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 iadusb;MT882; C:\WINDOWS\system32\DRIVERS\glauiad.sys [2006-03-20 30336]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 s816bus;Sony Ericsson Device 816 driver (WDM); C:\WINDOWS\system32\DRIVERS\s816bus.sys [2007-06-19 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s816mdfl.sys [2007-06-19 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s816mdm.sys [2007-06-19 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s816mgmt.sys [2007-06-19 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS); C:\WINDOWS\system32\DRIVERS\s816nd5.sys [2007-06-19 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s816obex.sys [2007-06-19 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM); C:\WINDOWS\system32\DRIVERS\s816unic.sys [2007-06-19 97704]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2007-12-21 468224]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-09-19 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-12-05 155716]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-08 66872]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-12-10 353280]
S2 RPCER;Remote Procedure Call (HNM); C:\Program Files\Common Files\ODBC\comp.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2008-07-01 19200]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
IP sačuvana
social share
My time is now!
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #5 24. Okt 2009, 13:18:22
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows XP
Browser
Mozilla Firefox 3.5.3
mob
HTC 
Preuzmi ovaj program na desktop http://oldtimer.geekstogo.com/OTM.exe
Pokreni ga dvoklikom
U levi prozor programa (ispod Paste Instructions for Items to be Moved) iskopiraj sledeci tekst

Kod:
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"cookies"=-
"WindowsUpdateService"=-

:files
C:\Documents and Settings\Laza\Application Data\server.exe
C:\WINDOWS\WindowsUpdateService.exe
C:\Win

:Commands
[EmptyTemp]
[Reboot]

klikni  MoveIt

po zavrsetku procesa u desnom prozoru ce se nalaziti tekst koji ces iskopirati ovde.

Ako te pita  da restartujes klikni yes, posle cega ce se log pojaviti u notepadu. Iskopiraj ga na forum.

ps.
ne ubadaj flesku, najverovatnije ti je zarazena.
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
simic022
Poruka #6 24. Okt 2009, 13:42:00
Svakodnevni prolaznik


Opusten kao bakin klitoris!

Zodijak
Pol Muškarac
Poruke 400
OS
Windows XP
Browser
Opera 9.64
All processes killed
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\cookies deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WindowsUpdateService deleted successfully.
========== FILES ==========
C:\Documents and Settings\Laza\Application Data\server.exe moved successfully.
C:\WINDOWS\WindowsUpdateService.exe moved successfully.
C:\Win moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
imam jos jedan problem, to cu reci kad zavrsimo ovo Smile
User: All Users
« Poslednja izmena: 24. Okt 2009, 13:42:28 od simic022 »
IP sačuvana
social share
My time is now!
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #7 24. Okt 2009, 13:44:02
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows XP
Browser
Mozilla Firefox 3.5.3
mob
HTC 
Koji je taj drugi problem?
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
simic022
Poruka #8 24. Okt 2009, 13:46:11
Svakodnevni prolaznik


Opusten kao bakin klitoris!

Zodijak
Pol Muškarac
Poruke 400
OS
Windows XP
Browser
Opera 9.64
Citat: ivicaspas 24. Okt 2009, 13:44:02
Koji je taj drugi problem?
neam jos uvek ikonice, i ono osecam kako komp koci, kad spustam prozor ili evo sad kad kucam, ono vidi se da kasni, drugi problem je sto kad palim komp u levom cosku gore stoji mali beli kvadratic, udjemu task menadzer i tu stoji ta aplikacija ABC koja otvara preko internet explorera razne neke sajtove, gluposti, i moram da je iskljucim preko task menadzera, ne znam kako da je izbrisem nema je nigde,
IP sačuvana
social share
My time is now!
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
ivicaspas
Poruka #9 24. Okt 2009, 13:49:13
Prijatelj foruma
Poznata licnost

MC- argus

Zodijak
Pol Muškarac
Poruke 4467
Zastava
OS
Windows XP
Browser
Mozilla Firefox 3.5.3
mob
HTC 
Ok ajde ovako cemo.

Skini ComboFix sa sledece adrese na Desktop:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Ugasi AV i dvoklikom pokreni Combofix sa desktopa
Odgovori potvrdno za sve sto te pita
Na kraju skeniranja ce ti izbaciti log, koji ces kopirati ovde.
IP sačuvana
social share
Pogledaj profil
 
Prijava na forum:
Ime:
Lozinka:
Zelim biti prijavljen:
Trajanje:
Registruj nalog:
zaboravili ste šifru?
Ime:
Lozinka:
Ponovi Lozinku:
E-mail:
Zatvori
Idi gore
Stranice:
1
2  Sve
Počni novu temu Nova anketa Odgovor Štampaj Dodaj temu u favorite Pogledajte svoje poruke u temi
linktree Burek :: Forumi ::  >  Tehnicki deo foruma  >  Pc Klinika ~ Doktori za vas kompjuter
linktree Tema: Odjednom problem (Moderatori: enaB, chelavi1)
Trenutno vreme je: 27. Apr 2024, 11:25:11
 nazadnapred
Prebaci se na:  

Poslednji odgovor u temi napisan je pre više od 6 meseci.  

Temu ne bi trebalo "iskopavati" osim u slučaju da imate nešto važno da dodate. Ako ipak želite napisati komentar, kliknite na dugme "Odgovori" u meniju iznad ove poruke. Postoje teme kod kojih su odgovori dobrodošli bez obzira na to koliko je vremena od prošlog prošlo. Npr. teme o određenom piscu, knjizi, muzičaru, glumcu i sl. Nemojte da vas ovaj spisak ograničava, ali nemojte ni pisati na teme koje su završena priča.
web design

Forum Info: Banneri Foruma :: Burek Toolbar :: Burek Prodavnica :: Burek Quiz :: Najcesca pitanja :: Tim Foruma :: Prijava zloupotrebe

Izvori vesti: Blic :: Wikipedia :: Mondo :: Press :: Naša mreža :: Sportska Centrala :: Glas Javnosti :: Kurir :: Mikro :: B92 Sport :: RTS :: Danas

Prijatelji foruma: Triviador :: Domaci :: Morazzia :: TotalCar :: FTW.rs :: MojaPijaca :: Pojacalo :: 011info :: Burgos :: Alfaprevod

Pravne Informacije: Pravilnik Foruma :: Politika privatnosti :: Uslovi koriscenja :: O nama :: Marketing :: Kontakt :: Sitemap

All content on this website is property of "Burek.com" and, as such, they may not be used on other websites without written permission.

Copyright © 2002- "Burek.com", all rights reserved. Performance: 0.118 sec za 16 q. Powered by: SMF. © 2005, Simple Machines LLC.