Hijack log

Hijack log

offline
  • Gvelf  Male
  • Novi MyCity građanin
  • Pridružio: 09 Nov 2007
  • Poruke: 18

Ima li cega ljudi?

Konekcija : 256/128


Logfile of HijackThis v1.99.1
Scan saved at 5:15:07 PM, on 11/9/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\dmadmin.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\cFosSpeed\cFosSpeed.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrator\Desktop\New Folder\HijackThis.exe

O2 - BHO: (no name) - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O8 - Extra context menu item: &Define - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: Look Up in &Encyclopedia - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra 'Tools' menuitem: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra 'Tools' menuitem: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{2F507796-9AE2-42B9-90B6-E1B4BBEEADD0}: NameServer = 10.5.0.100
O17 - HKLM\System\CS1\Services\Tcpip\..\{2F507796-9AE2-42B9-90B6-E1B4BBEEADD0}: NameServer = 10.5.0.100
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing)
O23 - Service: cFosSpeed System Service (cFosSpeedS) - Unknown owner - C:\Program Files\cFosSpeed\spd.exe" -service (file missing)
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

Dopuna: 09 Nov 2007 17:43

Da, ne morate da zurite, znam da imate puno posla, nije mi hica! Smile)

offline
  • Pridružio: 04 Sep 2003
  • Poruke: 24135
  • Gde živiš: Wien

Citat:C:\Documents and Settings\Administrator\Desktop\New Folder\HijackThis.exe
Promeni ime fajla da ne bude HijackThis.exe, nego recimo GD4.exe, pa napravi novi log koji ces ovde postaviti.

Nisi nam rekao na koje se simptome zalis.

offline
  • Gvelf  Male
  • Novi MyCity građanin
  • Pridružio: 09 Nov 2007
  • Poruke: 18

Ok, evo ga!

He, zaboravio ono najvaznije, dzizs!!!!
Skenirao sam comp sa Spyware Terminator i pronasao je " Trojan/Dloader.Zlob.Bes" , ali ST nije mogao da ga ocisti! Skenirao sam opet ali sa KIS, on nije pronasao nista!
E, sad mene kako to da KIS nije nasao nista, a ST nasao, ali nije mogao da ga ocisti? Jel to znaci da mi je Trojan jos uvek u copmu ili samo neka lazna uzbuna!?
Mogu da stavim i log od ST, ako ce pomoci?


Logfile of HijackThis v1.99.1
Scan saved at 5:53:38 PM, on 11/9/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\dmadmin.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\cFosSpeed\cFosSpeed.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Documents and Settings\Administrator\Desktop\New Folder\GD4.exe

O2 - BHO: (no name) - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O8 - Extra context menu item: &Define - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: Look Up in &Encyclopedia - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra 'Tools' menuitem: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra 'Tools' menuitem: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{2F507796-9AE2-42B9-90B6-E1B4BBEEADD0}: NameServer = 10.5.0.100
O17 - HKLM\System\CS1\Services\Tcpip\..\{2F507796-9AE2-42B9-90B6-E1B4BBEEADD0}: NameServer = 10.5.0.100
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing)
O23 - Service: cFosSpeed System Service (cFosSpeedS) - Unknown owner - C:\Program Files\cFosSpeed\spd.exe" -service (file missing)
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

offline
  • Pridružio: 04 Sep 2003
  • Poruke: 24135
  • Gde živiš: Wien

Daj i log Spyware Terminatora, da vidim o cemu se radi tacno.

offline
  • Gvelf  Male
  • Novi MyCity građanin
  • Pridružio: 09 Nov 2007
  • Poruke: 18

Bobby, izvini, nisam bio tu!
Evo ga!

Logfile of Spyware Terminator v2.0.1.224 (db:1.0.006.768-)
Scan Time: 11/6/2007 10:02:41 PM length: 356 s
Platform: Windows XP Service Pack 2 (WINNT 5.1.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 29331 (Critical:2)
Filter: No System items, No Safe items

Running Processes
spd.exe [cFos Software GmbH] : C:\Program Files\cFosSpeed\spd.exe
WZCSLDR2.exe [Alpha Networks Inc.] : C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
AirGCFG.exe [D-Link] : C:\Program Files\D-Link\AirPlus G\AirGCFG.exe

Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
R - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings, ProxyOverride = <local>
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - File not found
02 - BHO: - {0A87E45F-537A-40B4-B812-E2544C21A09F} - File not found
02 - BHO: Encarta &Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll
02 - BHO: - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - File not found
02 - BHO: - {2FDEF853-0759-11D4-A92E-006097DBED37} - File not found
02 - BHO: - {5DA9DE80-097A-11D4-A92E-006097DBED37} - File not found
02 - BHO: Encarta &Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll

StartUps
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ANIWZCS2Service : [Alpha Networks Inc.] : C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Rvsystem : : C:\PROGRA~1\Returnil\Rvsystem.exe

Explorer Bars
Encarta &Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll

Shell Extensions
Display Panning CPL Extension - {42071714-76d4-11d1-8b24-00a0c9068ff3} - : deskpan.dll
- {764BF0E1-F219-11ce-972D-00AA00A14F56} - File not found
- {853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} - File not found
Taskbar and Start Menu - {0DF44EAA-FF21-4412-828E-260A8728E7F1} - File not found
- {32683183-48a0-441b-a342-7c2a440a9478} - File not found
User Accounts - {7A9D77BD-5403-11d2-8785-2E0420524153} - File not found
CompressesFolder - {E88DCCE0-B7B3-11d1-A9F0-00AA0060FA31} - File not found
Desktop Explorer - {1CDB2949-8F65-4355-8456-263E7C208A5D} - [NVIDIA Corporation] : C:\WINDOWS\system32\nvshell.dll
- {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - [NVIDIA Corporation] : C:\WINDOWS\system32\nvshell.dll
nView Desktop Context Menu - {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - [NVIDIA Corporation] : C:\WINDOWS\system32\nvshell.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
WinZip - {E0D79304-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Program Files\WinZip\WZSHLSTB.DLL
WinZip - {E0D79305-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Program Files\WinZip\WZSHLSTB.DLL
WinZip - {E0D79306-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Program Files\WinZip\WZSHLSTB.DLL
WinZip - {E0D79307-84BE-11CE-9641-444553540000} - [WinZip Computing, Inc.] : C:\Program Files\WinZip\WZSHLSTB.DLL
AlcoholShellEx - {32020A01-506E-484D-A2A8-BE3CF17601C3} - [Alcohol Soft Development Team] : C:\Program Files\Alcohol Soft\Alcohol 120\AXShlEx.dll
Web Anti-Virus statistics - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - [Kaspersky Lab] : C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
- {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} - [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll
- {087B3AE3-E237-4467-B8DB-5A38AB959AC9} - [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll
- {63542C48-9552-494A-84F7-73AA6A7C99C1} - [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll
- {3B092F0C-7696-40E3-A80F-68D74DA84210} - [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll
UnlockerShellExtension - {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} - : C:\Program Files\Unlocker\UnlockerCOM.dll

Protocol Handler
Microsoft Infotech Storage Protocol for IE 4.0 - {0A9007C0-4076-11D3-8789-0000F8105754} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
MSFT RefBU IE4+ Pluggable Protocol - {74D92DF3-6D9D-11D1-8B38-006097DBED7A} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\MSREF.DLL
Protocol Class - {B0D92A71-886B-453B-A649-1B91F93801E7} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\msero.dll
MSFT RefBU IE4+ Pluggable Protocol - {74D92DF3-6D9D-11D1-8B38-006097DBED7A} - [Microsoft Corporation] : C:\Program Files\Common Files\Microsoft Shared\Reference 2001\MSREF.DLL

Services
23 - : C:\WINDOWS\system32\DRIVERS\a347bus.sys
23 - : C:\WINDOWS\system32\Drivers\a347scsi.sys
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\ALCXWDM.SYS
23 - [Alpha Networks Inc.] : C:\WINDOWS\system32\ANIO.SYS
23 - [cFos Software GmbH] : C:\WINDOWS\system32\DRIVERS\cfosspeed.sys
23 - [cFos Software GmbH] : C:\Program Files\cFosSpeed\spd.exe
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_FALL.sys
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_FSKS.sys
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_K56K.sys
23 - [Kaspersky Lab] : C:\WINDOWS\system32\drivers\kl1.sys
23 - [Kaspersky Lab] : C:\WINDOWS\system32\DRIVERS\KLIF.SYS
23 - [Kaspersky Lab] : C:\WINDOWS\system32\DRIVERS\klim5.sys
23 - [Ralink Technology Inc.] : C:\WINDOWS\system32\DRIVERS\RT61.sys
23 - : C:\WINDOWS\system32\DRIVERS\snphv71.sys
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_FAXX.sys
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_TONE.sys
23 - [Conexant] : C:\WINDOWS\system32\DRIVERS\HSF_V124.sys
23 - [VIA Technologies inc,.ltd] : C:\WINDOWS\system32\DRIVERS\viamraid.sys
23 - [VIA Technologies, Inc.] : C:\WINDOWS\system32\Drivers\vulfnth.sys
23 - [VIA Technologies, Inc.] : C:\WINDOWS\system32\Drivers\vulfntr.sys

Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon, DLLName : [Kaspersky Lab] : C:\WINDOWS\system32\klogon.dll

System Policies
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegistryTools : :

Advanced Files Report
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=65DCD932B54FFACB748B3DFC715CFDC2 SIZE=91400
%SYSDIR%\klogon.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=535A597F39F7F6F4A4AA250447357DA0 SIZE=206088
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=2812CCA795BF75BA201252C728F92787 SIZE=95496
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\adialhk.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=33FCC52971C12B6EDCED3E7F1E717E7E SIZE=91400
%PROGRAMFILES%\cFosSpeed\spd.exe [cFos Software GmbH] [cFosSpeed Service] MD5=85E1C06F6C507A572689A1110946DCEE SIZE=310224
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=E1A195577A9447A7A0B06EA3C056C286 SIZE=161032
%PROGRAMFILES%\OpenOffice.org 2.2\program\shlxthdl.dll [Sun Microsystems, Inc.] MD5=FEDA3633B93FA6300AC2A2CEC3EE2584 SIZE=339968
%PROGRAMFILES%\OpenOffice.org 2.2\program\uwinapi.dll [Sun Microsystems, Inc.] MD5=B2FD24D8615774C339F4C2D2BC57EB48 SIZE=98304
%PROGRAMFILES%\OpenOffice.org 2.2\program\stlport_vc7145.dll [STLport Consulting, Inc.] [STLport Standard ANSI C++ Libarary] MD5=777A4759585663D2F761104918308A12 SIZE=577536
%SYSDIR%\nvapi.dll [NVIDIA Corporation] [NVIDIA Windows drivers] MD5=A0BE3C226F28E908D592B4D58FD1F58E SIZE=364544
%SYSDIR%\nvshell.dll [NVIDIA Corporation] [NVIDIA Desktop Explorer, Version 111.17] MD5=7DFFF031DA508263BA722DC8BC1A7B65 SIZE=466944
%PROGRAMFILES%\WinZip\WZSHLSTB.DLL [WinZip Computing, Inc.] [WinZip] MD5=66DA6F6A67D238721A3FCEB70C8DC2D0 SIZE=5120
%PROGRAMFILES%\WinRAR\rarext.dll [] MD5=7801791108C9FA442DD48BCD98869F21 SIZE=126464
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\ShellEx.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=2E1840060C5447C0135AA2EE4EB78BA6 SIZE=39688
%PROGRAMFILES%\Unlocker\UnlockerCOM.dll [] MD5=DE1D9412C60FCCBAB699BFF3E58951F5 SIZE=8704
%PROGRAMFILES%\Alcohol Soft\Alcohol 120\AXShlEx.dll [Alcohol Soft Development Team] [Alcohol ShellEx] MD5=E6809DA17F16487FA06E29CBB84ACF70 SIZE=386560
%SYSDIR%\ANIWZCS2.DLL [Alpha Networks Inc.] [ANIWZCS Dynamic Link Library] MD5=F34A999912D970D9A6095B694DE29006 SIZE=372736
%SYSDIR%\AQCKGen.dll [Alpha Networks Inc.] [AQuickKey Generator] MD5=D4B4F17632230555719E13302BBF2B4D SIZE=49152
%SYSDIR%\ANIOApi.dll [Alpha Networks Inc.] [ANIO Helper DLL API library] MD5=08B3F6C32C9659352E63C618E40750DF SIZE=36864
%SYSDIR%\WlanApp.dll [Alpha Networks Inc.] [WlanApp Dynamic Link Library] MD5=C9CC9FDE5BCC84E774F75040955B07A4 SIZE=143360
%PROGRAMFILES%\D-Link\AirPlus G\AirGCFG.exe [D-Link] [Wireless LAN Monitor] MD5=2EBA7F8CC83B543A44AF6B96031C24C9 SIZE=1519616
%SystemDiskRoot%\PROGRA~1\Returnil\Rvsystem.exe []
%COMMONFILES%\Microsoft Shared\Reference 2001\EROProj.dll [Microsoft Corporation] [Microsoft Encarta Researcher] MD5=64FD09A32524C8BCBE00ADE36B5529BB SIZE=258048
deskpan.dll []
%PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=A89F8FCE1FFEDAFD910B26783DB1CC5A SIZE=222472
%SYSDIR%\DRIVERS\a347bus.sys [] MD5=1F61CACACB521215F39061789147968C SIZE=160640
%SYSDIR%\Drivers\a347scsi.sys [] MD5=113E4B318BBAA7483CA4E582A4D63F49 SIZE=5248
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio(HRTF data Copyright 1994 by MIT Media Lab)] MD5=34149A136B2B7525113950233F259EC1 SIZE=4017536
%SYSDIR%\ANIO.SYS [Alpha Networks Inc.] [ANIO (NT5) Driver] MD5=4A5C7EAEFA4C43D139C402C6DA5BFD2C SIZE=28205
%SYSDIR%\DRIVERS\cfosspeed.sys [cFos Software GmbH] [cFosSpeed Driver] MD5=DA8A05FA02F69F64EB06A99FD1C7B81B SIZE=700880
%SYSDIR%\DRIVERS\HSF_FALL.sys [Conexant] [SoftK56] MD5=C823DEBE2548656549F84A875D65237B SIZE=289887
%SYSDIR%\DRIVERS\HSF_FSKS.sys [Conexant] [SoftK56] MD5=6483414841D4CAB6C3B4DB2AC6EDD70B SIZE=115807
%SYSDIR%\DRIVERS\HSF_K56K.sys [Conexant] [SoftK56] MD5=9C5E3FDBFCC30CF71A49CA178B9AD442 SIZE=391199
%SYSDIR%\drivers\kl1.sys [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=27FA2734CF49DA74B2AC9C16DC38DD88 SIZE=110360
%SYSDIR%\DRIVERS\KLIF.SYS [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=C6A8AD1C9698E5B7B4DD8C19257456E8 SIZE=186640
%SYSDIR%\DRIVERS\klim5.sys [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=967E2224217431B21F1D04FBB4C68A4B SIZE=24344
%SYSDIR%\DRIVERS\RT61.sys [Ralink Technology Inc.] [Ralink 802.11 Wireless Adapters] MD5=620C5A44F34DF1BCE2A63A66534F0DF7 SIZE=319104
%SYSDIR%\DRIVERS\snphv71.sys [] [PC Camera driver] MD5=0198C6775B22577939811491FDAAB400 SIZE=231040
%SYSDIR%\DRIVERS\HSF_FAXX.sys [Conexant] [SoftK56] MD5=D9E8E0CE154A2F6430D9EFABDF730867 SIZE=199711
%SYSDIR%\DRIVERS\HSF_TONE.sys [Conexant] [SoftK56] MD5=8021A499DB46B2961C285168671CB9AF SIZE=50751
%SYSDIR%\DRIVERS\HSF_V124.sys [Conexant] [SoftK56] MD5=269C0ADE94B90029B12497747BE408CB SIZE=488383
%SYSDIR%\DRIVERS\viamraid.sys [VIA Technologies inc,.ltd] [VIA RAID driver] MD5=F199939205DCCC7836AE5AB8B5DD5E83 SIZE=74112
%SYSDIR%\Drivers\vulfnth.sys [VIA Technologies, Inc.] [VIA USB Host Controller Lower Filter Driver] MD5=16409C468CEEE99B6B129FCAA5C0F206 SIZE=6912
%SYSDIR%\Drivers\vulfntr.sys [VIA Technologies, Inc.] [VIA USB Roothub Lower Filter Driver] MD5=9FCAD546C6285D5073FB926709203049 SIZE=11392
%COMMONFILES%\Microsoft Shared\Information Retrieval\msitss.dll [Microsoft Corporation] [Microsoft(R) Infotech Information Storage System Library] MD5=34446931A7A213EE7337F35D0F64C6C6 SIZE=212992
%COMMONFILES%\Microsoft Shared\Reference 2001\MSREF.DLL [Microsoft Corporation] [Microsoft Encarta 2001] MD5=5060E8D267C9B0DBA2345FA697905E8F SIZE=90112
%COMMONFILES%\Microsoft Shared\Reference 2001\msero.dll [Microsoft Corporation] [Microsoft Encarta Researcher] MD5=5859981F937DDE6DCD1EE0DA491283E8 SIZE=143360

End of Report

offline
  • Pridružio: 04 Sep 2003
  • Poruke: 24135
  • Gde živiš: Wien

Ne vidim nista sporno u ovom logu, kao ni u HijackThis logu gore.
Jesi li siguran da ga nije izbrisao?

offline
  • Gvelf  Male
  • Novi MyCity građanin
  • Pridružio: 09 Nov 2007
  • Poruke: 18

Skenirao sam ponovo i sada nije nasao nista!
Posto si i ti proverio, a ni ST nije nasao nista, onda sam miran:), anyway, hvala na trudu i na izdvojenom vremenu!
PS, ako bude poceo da "stuca" ja cu se javiti sigurno! Alles Gute

Ko je trenutno na forumu
 

Ukupno su 1317 korisnika na forumu :: 28 registrovanih, 7 sakrivenih i 1282 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: bladesu, Fabius, Georgius, Goran 0000, goxin, Karla, kjkszpj, Kubovac, kybonacci, ljuba, lord sir giga, Lucije Kvint, marsovac 2, Mcdado, Mihajlo, milos.cbr, nemkea71, NoOneEver Dreams, RiV, S2M, slonic_tonic, ss10, Vlad000, voja64, yufighter, zdrebac, Zoca, zzapNDjuric99