MyCity » Ambulanta -> Arhiva Ambulante » Problem sa folderima

Problem sa folderima

Napisano na dan: 4.10.2009
1

Problem sa folderima
Sledeća strana Pagination

Idi na vrh

Poslao: 04 Okt 2009 15:02
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Kao prvo pozdrav svima.
A ovako izgleda moj problem:
Vista HP SP1.
Do juce su mi se folderi otvarali u istom prozoru, a sada se svaki otvara u posebnom.
U Ordneroptions mi je sve namesteno i stiklirano kako treba, vec sam uz pomoc google to proverio.
Osim ovog problema istovremeno se pojavilo i to da vise pomocu drag and drop ne mogu da kopiram ni jedan folder, a ni pomocu desnog klika sa copy ili cut takodje ne mogu.
Pokusao sam sa Ccleaner-om i Tuneup-om ali nista nisam postigao.
System restore ne mogu da koristim, jer sam sa Tuneup-om pre toga obrisao sve osim poslednje promene na sistemu, a problem se pojavio pre toga.
Ima li neko resenje za ovaj moj problem?
Na jednom drugom forumu sam dobio savet da preskeniram sistem sa Malwarebytes i skeniranje jos uvek nije gotovo, ali vec mi je pronasao 153 inficirana objekta.
Koliko je pouzdan ovaj program?
Znam da je idealno resenje reinstalacija, ali...
Hvala.

Poslao: 04 Okt 2009 15:05
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Kada završiš sa skeniranjem (i uklanjanjem), budeš li i dalje imao probleme, isprati uputstvo i postavi potrebne logove:

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Poslao: 04 Okt 2009 19:13
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Sjajno uputstvo!
Malwerbytes je preskenirao i obrisao sve sto je nasao, ali je problem ostao.
Uz ovu poruku sam prikacio logove od DDS-a i RootRepeal-a (GMER mi je krash-ovao).
Nadam se da ce moci da se uradi nesto.
A za svaki slucaj saljem i log od Malwerbytes.
mycity.rs/must-login.png



DDS (Ver_09-09-29.01) - NTFSx86
Run by Ivica at 16:50:11.09 on 04.10.2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_15
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.41.1031.18.2045.876 [GMT 2:00]

SP: Avira Premium Security Suite *disabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6}
SP: Windows-Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {C19476D9-52BC-4E93-8AF3-CCF59F7AE8FE}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Lock My PC 4\LmpcServ.exe
C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Lock My PC 4\lockpc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Windows\system32\ASTSRV.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Orange\Orange Internet Everywhere\GtDetectSc.exe
C:\Windows\system32\HDDSvc.exe
C:\Program Files\Invisible Browsing\servers\IBService.exe
C:\Program Files\Invisible Browsing\servers\Socks\IBSocksManager.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Invisible Browsing\servers\Socks\IBSocks.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Invisible Browsing\servers\Http\ibhttp.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\MySecretFolder XP\MSFMON.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Godlike Developers\RAM Saver Professional\ramsaverpro.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\HideAnyWindow\haw.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
C:\Windows\system32\OSPPSVC.EXE
C:\Program Files\PC Auto Shutdown\ShutdownService.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\PnkBstrB.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\TUProgSt.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Orange\Orange Internet Everywhere\Orange Internet Everywhere.exe
C:\Program Files\Actual Reminder 3.0 Talk + Weather\Actual Reminder.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\DllHost.exe
C:\Windows\Explorer.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Users\Ivica\Desktop\dds.scr
C:\Windows\system32\conime.exe

============== Pseudo HJT Report ===============

uDefault_Page_URL = hxxp://www.club-vaio.com
mDefault_Page_URL = hxxp://www.club-vaio.com
uInternet Settings,ProxyServer = 127.0.0.1:8080
uInternet Settings,ProxyOverride = local
mSearchAssistant =
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: N/A: {9cb65206-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
uURLSearchHooks: H - No File
uURLSearchHooks: SweetIM ToolbarURLSearchHook Class: {eee6c35d-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgHelper.dll
mURLSearchHooks: H - No File
BHO: SnagIt Toolbar Loader: {00c6482d-c502-44c8-8409-fce54ad9c208} - c:\program files\techsmith\snagit 8\SnagItBHO.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: Winamp Toolbar Loader: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - c:\program files\winamp toolbar\winamptb.dll
BHO: GetRight IE Helper: {31ff080d-12a3-439a-a2ef-4ba95a3148e8} - c:\program files\getright\xx2gr.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\ievkbd.dll
BHO: Yahoo! IE Suggest: {5a263cf7-56a6-4d68-a8cf-345be45bc911} - c:\program files\yahoo!\search\YSearchSuggest.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~3\office14\GROOVEEX.DLL
BHO: SACert Class: {740fe5fb-65f1-46c5-9e54-a19c8a8d7ac2} - c:\windows\system32\SoftAheadCert.dll
BHO: Windows Live Anmelde-Hilfsprogramm: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Ask Search Assistant BHO: {9cb65201-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~3\office14\URLREDIR.DLL
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\progra~1\google~1\BAE.dll
BHO: FDMIECookiesBHO Class: {cc59e0f9-7e43-44fa-9faa-8377850bf205} - c:\program files\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SweetIM Toolbar Helper: {eee6c35c-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: Ask Toolbar: {fe063db9-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - c:\program files\winamp toolbar\winamptb.dll
TB: Veoh Video Compass: {52836eb0-631a-47b1-94a6-61f9d9112dae} - c:\program files\veoh networks\veoh video compass\SearchRecsPlugin.dll
TB: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - No File
TB: SweetIM Toolbar for Internet Explorer: {eee6c35b-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
TB: Foxit Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: Veoh Web Player Video Finder: {0fbb9689-d3d7-4f7a-a2e2-585b10099bfc} - c:\program files\veoh networks\veohwebplayer\VeohIEToolbar.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
EB: ClipMate ClipBar 7: {f60c63ce-52af-4915-aac9-f100fcde270f} - c:\progra~1\clipma~1\CLIPMA~1.DLL
uRun: [RAMSaverPro] c:\program files\godlike developers\ram saver professional\ramsaverpro.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [HideAnyWindow] c:\program files\hideanywindow\haw.exe
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe"
mRun: [MSF_Monitor] c:\progra~1\mysecr~1\MSFMON.exe /Start
mRun: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
dRun: [Nokia.PCSync] "c:\program files\nokia\nokia pc suite 6\PcSync2.exe" /NoDialog
StartupFolder: c:\users\ivica\appdata\roaming\micros~1\windows\startm~1\programs\startup\actual~1.lnk - c:\program files\actual reminder 3.0 talk + weather\Actual Reminder.exe
StartupFolder: c:\users\ivica\appdata\roaming\micros~1\windows\startm~1\programs\startup\stardo~1.lnk - c:\program files\stardock\objectdock\ObjectDock.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\bttray.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\orange~1.lnk - c:\program files\orange\orange internet everywhere\Orange Internet Everywhere.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: &Search
IE: &Winamp Search - c:\programdata\winamp toolbar\ietoolbar\resources\en-us\local\search.html
IE: An vorhandenes PDF anfьgen - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Ausgewдhlte Verknьpfungen in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Ausgewдhlte Verknьpfungen in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Auswahl in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Auswahl in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Bild an &Bluetooth-Gerдt senden... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Copy to &Lightning Note - c:\program files\corel\wordperfect lightning\programs\WPLightningCopyToNote.hta
IE: Download all with Free Download Manager - file://c:\program files\free download manager\dlall.htm
IE: Download by YouTube Robot - c:\program files\youtuberobot\RobotExt.ocx/LINK.HTM
IE: Download selected with Free Download Manager - file://c:\program files\free download manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\free download manager\dllink.htm
IE: Download with GetRight Pro - c:\program files\getright\GRdownload.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office14\EXCEL.EXE/3000
IE: In Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft &Excel exportieren - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Open with GetRight Pro Browser - c:\program files\getright\GRbrowse.htm
IE: Open with WordPerfect - c:\program files\corel\wordperfect office x4\programs\WPLauncher.hta
IE: RSS-Support-Site zu VAIO Information FLOW hinzufьgen - c:\program files\sony\vaio information flow\aiesc.html
IE: S&end to OneNote - c:\progra~1\micros~3\office14\ONBttnIE.dll/105
IE: Seite an &Bluetooth-Gerдt senden... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: Translate with &Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/Translate.htm
IE: Verknьpfungsziel in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Verknьpfungsziel in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {FB858B22-55E2-413f-87F5-30ADC5552151} - c:\program files\plotsoft\pdfill\DownloadPDF.exe
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\SCIEPlgn.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - c:\program files\bonjour\ExplorerPlugin.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file:///C:/Windows/Java/classes/xmldso.cab
DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} - hxxp://esupport.sony.com/VaioInfo.CAB
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://www3.snapfish.com/SnapfishActivia.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUplden-us.cab
DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} - hxxp://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {9D614E8E-03AA-11D3-90FC-0040C7157029} - hxxp://www.pakdata.com/download/PDMSInstaller.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAAE28D1-ADCC-11D1-BD4D-004845401881} - hxxp://www.pakdata.com/download/urduplugin.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: fsp_lmwl - fsp_lmwl.dll
Notify: klogon - c:\windows\system32\klogon.dll
Notify: Multi - c:\program files\stardock\thinkdesk\multiplicity\MultiWin32.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll
SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - c:\program files\stardock\object desktop\iconpackager\iprepair.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~3\office14\GROOVEEX.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\users\ivica\appdata\roaming\mozilla\firefox\profiles\3gbqj5fb.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - component: c:\users\ivica\appdata\roaming\mozilla\firefox\profiles\3gbqj5fb.default\extensions\lazarus@interclue.com\platform\winnt_x86-msvc\components\WeaveCrypto.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\mozilla firefox\plugins\np32asw.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npJoostPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPMyWebS.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: c:\program files\opera 10 beta\program\plugins\npdsplay.dll
FF - plugin: c:\program files\opera 10 beta\program\plugins\npwmsdrm.dll
FF - plugin: c:\program files\opera\program\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\opera\program\plugins\npJoostPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - plugin: c:\users\ivica\appdata\roaming\mozilla\plugins\npPxPlay.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000

============= SERVICES / DRIVERS ===============

R0 hotcore3;hotcore3;c:\windows\system32\drivers\hotcore3.sys [2007-6-22 38448]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]
R0 snapman380;Acronis Snapshots Manager (Build 380);c:\windows\system32\drivers\snman380.sys [2008-11-20 134272]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\system32\drivers\tdrpm147.sys [2008-11-20 971232]
R1 FlyCryptor;FlyCryptor;c:\windows\system32\drivers\flycryptor.sys [2009-1-14 31744]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2008-7-9 20496]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\common files\abbyy\finereader\9.00\licensing\pe\NetworkLicenseServer.exe [2007-12-6 660768]
R2 AVWEBCAM;AV WebCam, WDM Video Capture;c:\windows\system32\drivers\avwebcam.sys [2007-11-22 215552]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s [?]
R2 GtDetectSc;GtDetectSc;c:\program files\orange\orange internet everywhere\GtDetectSc.exe [2008-4-30 200704]
R2 IBService;IBService;c:\program files\invisible browsing\servers\IBService.exe [2009-7-7 45056]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2007-9-12 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2009-3-2 47640]
R2 LmpcService;Lock My PC Service;c:\program files\lock my pc 4\LmpcServ.exe [2007-10-20 52592]
R2 MSF32;MSF32;c:\program files\mysecretfolder xp\MSF32.SYS [2007-5-1 39424]
R2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2008-11-24 29263712]
R2 Multiplicity;Stardock Multiplicity;c:\program files\stardock\thinkdesk\multiplicity\MultiSrv32.exe [2007-11-17 242936]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-12-5 935208]
R2 NitroDriverReadSpool;NitroPDFDriverCreatorReadSpool;c:\program files\nitro pdf\professional\NitroPDFDriverService.exe [2009-6-15 188736]
R2 osppsvc;Office Software Protection Platform;c:\windows\system32\OSPPSVC.EXE [2009-4-8 4319136]
R2 PCAutoShutdown_Service;PCAutoShutdown_Service;c:\program files\pc auto shutdown\ShutdownService.exe [2009-7-4 462440]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2009-5-14 604416]
R3 BTCAMDRV;Mobiola Web Camera driver;c:\windows\system32\drivers\BTCamDrv.sys [2008-8-4 219264]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s [?]
R3 GT72NDISIPXP;GT 72 IP NDIS;c:\windows\system32\drivers\Gt51Ip.sys [2008-2-18 106624]
R3 GT72UBUS;GT 72 U BUS;c:\windows\system32\drivers\gt72ubus.sys [2008-2-8 59648]
R3 GTPTSER;GT PT SER;c:\windows\system32\drivers\gtptser.sys [2007-3-30 8064]
R3 LMPC4;LMPC4;c:\windows\system32\drivers\lmpc4.sys [2007-10-20 10096]
R3 R5U870FLx86;R5U870 UVC Lower Filter ;c:\windows\system32\drivers\R5U870FLx86.sys [2006-12-1 72704]
R3 R5U870FUx86;R5U870 UVC Upper Filter ;c:\windows\system32\drivers\R5U870FUx86.sys [2006-12-1 43904]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2006-12-1 30976]
R3 tenCapture;tenCapture;c:\windows\system32\drivers\tenCapture.sys [2007-4-21 9344]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2006-12-1 227328]
S2 gupdate1c999e1efd95f77;Google Update Service (gupdate1c999e1efd95f77);c:\program files\google\update\GoogleUpdate.exe [2009-2-28 133104]
S2 MyWebSearchService;My Web Search Service;c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe --> c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe [?]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [2009-9-22 113152]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2009-4-25 33480048]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-6 34064]
S3 ProcAPI;ProcAPI;c:\program files\intel corporation\thermal analysis tool\ProcAPI.sys [2008-1-22 12032]
S3 tat;tat;c:\program files\intel corporation\thermal analysis tool\tat.sys [2008-1-22 5120]
S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection;c:\program files\sony\vaio media integrated server\UCLS.exe [2007-3-17 745472]
S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP);c:\program files\sony\vaio media integrated server\platform\SV_Httpd.exe [2006-12-26 397312]
S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP);c:\program files\sony\vaio media integrated server\platform\UPnPFramework.exe [2006-12-26 1089536]
S3 zebrbus;Sony Ericsson Composite Device driver;c:\windows\system32\drivers\zebrbus.sys [2007-5-9 66656]
S3 zebrmdfl;Sony Ericsson Modem Filter;c:\windows\system32\drivers\zebrmdfl.sys [2007-5-9 9264]
S3 zebrmdm;Sony Ericsson Port (WDM);c:\windows\system32\drivers\zebrmdm.sys [2007-5-9 100640]
S3 zebrmdmc;Sony Ericsson mRouter Port (WDM);c:\windows\system32\drivers\zebrmdmc.sys [2007-5-9 100672]

=============== Created Last 30 ================

2009-10-04 12:55 0 a---h--- c:\windows\ЂAstInfo.dat
2009-10-04 12:06 <DIR> --d----- c:\program files\zabkat
2009-10-04 11:46 114,688 a------- c:\windows\system32\vsgximbt.dll
2009-10-04 11:46 <DIR> --d----- c:\program files\FileStream
2009-10-03 22:09 267,934,503 a------- c:\windows\MEMORY.DMP
2009-10-03 18:26 <DIR> --d----- c:\program files\StreamingStar
2009-10-03 09:29 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-10-03 09:27 <DIR> --d----- c:\programdata\Rosetta Stone
2009-10-03 09:27 <DIR> --d----- c:\program files\Rosetta Stone
2009-10-03 09:27 <DIR> --d----- c:\progra~2\Rosetta Stone
2009-10-02 21:27 <DIR> --d----- c:\users\ivica\appdata\roaming\GoodSync
2009-10-02 19:45 195,440 -------- c:\windows\system32\MpSigStub.exe
2009-09-25 15:24 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2009-09-25 00:35 <DIR> --d----- c:\users\ivica\appdata\roaming\Scendix Software
2009-09-25 00:34 7,533 a------- c:\windows\system32\novav6.ctm
2009-09-25 00:34 23,720 a------- c:\windows\system32\novamnv6.dll
2009-09-25 00:34 18,600 a------- c:\windows\system32\novamiv6.dll
2009-09-25 00:30 <DIR> --d----- c:\program files\PamFax
2009-09-23 14:26 <DIR> --d----- c:\program files\Orange
2009-09-23 00:55 <DIR> --d----- c:\users\ivica\appdata\roaming\AVS4YOU
2009-09-23 00:55 <DIR> --d----- c:\programdata\AVS4YOU
2009-09-23 00:55 <DIR> --d----- c:\progra~2\AVS4YOU
2009-09-22 21:44 113,152 a------- c:\windows\system32\drivers\ewusbnet.sys
2009-09-22 21:44 101,760 a------- c:\windows\system32\drivers\ewusbmdm.sys
2009-09-19 19:10 <DIR> --d----- c:\program files\common files\AVSMedia
2009-09-19 19:10 24,576 a------- c:\windows\system32\msxml3a.dll
2009-09-19 19:10 <DIR> --d----- c:\program files\AVS4YOU
2009-09-18 12:22 <DIR> --d----- c:\program files\Advanced Business Card Maker
2009-09-18 11:18 <DIR> --d----- c:\program files\Avanquest update
2009-09-18 11:18 <DIR> --d----- c:\programdata\BVRP Software
2009-09-18 11:17 96 a------- c:\windows\bizpub32.INI
2009-09-18 11:12 565,760 a------- c:\windows\system32\msvcp50.DLL
2009-09-18 11:12 348,160 a------- c:\windows\system32\MFC30.DLL
2009-09-18 11:12 27,025 a------- c:\windows\system32\OLE2.REG
2009-09-18 11:11 <DIR> --d----- c:\program files\common files\MySoftware
2009-09-18 11:11 <DIR> --d----- c:\program files\MySoftware
2009-09-17 12:24 <DIR> --d----- c:\programdata\Local
2009-09-17 12:24 <DIR> --d----- c:\progra~2\Local

==================== Find3M ====================

2009-10-04 16:42 20,288,756 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-10-04 16:42 2,162,720 a--sh--- c:\windows\system32\drivers\fidbox2.dat
2009-10-04 16:42 8,472 a--sh--- c:\windows\system32\drivers\fidbox2.idx
2009-10-04 16:42 1,514,813,472 a------- c:\windows\system32\drivers\fidbox.dat
2009-10-02 16:20 689,092 a------- c:\windows\system32\perfh007.dat
2009-10-02 16:20 152,256 a------- c:\windows\system32\perfc007.dat
2009-09-27 22:52 162,816 a------- c:\windows\system32\fmod.dll
2009-09-27 17:21 143,360 a------- c:\windows\inf\infstrng.dat
2009-09-27 17:21 86,016 a------- c:\windows\inf\infpub.dat
2009-09-25 15:24 143,360 a------- c:\windows\inf\infstor.dat
2009-09-22 17:04 107,547 a------- c:\windows\system32\drivers\klin.dat
2009-09-22 17:04 95,259 a------- c:\windows\system32\drivers\klick.dat
2009-09-10 14:54 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 14:53 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-08-28 14:39 28,672 a------- c:\windows\system32\Apphlpdm.dll
2009-08-28 14:39 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2009-08-28 14:38 2,153,984 a------- c:\windows\apppatch\AcGenral.dll
2009-08-28 14:38 541,696 a------- c:\windows\apppatch\AcLayers.dll
2009-08-28 14:38 459,776 a------- c:\windows\apppatch\AcSpecfc.dll
2009-08-28 12:15 4,240,384 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-20 01:13 20,288,756 a--sh--- c:\windows\system32\drivers\fidbox(62).idx
2009-08-20 01:13 1,957,920 a--sh--- c:\windows\system32\drivers\fidbox2(63).dat
2009-08-20 01:13 7,772 a--sh--- c:\windows\system32\drivers\fidbox2(64).idx
2009-08-20 01:13 1,514,813,472 a------- c:\windows\system32\drivers\fidbox(61).dat
2009-08-14 19:07 897,608 a------- c:\windows\system32\drivers\tcpip.sys
2009-08-14 18:29 104,960 a------- c:\windows\system32\netiohlp.dll
2009-08-14 18:29 17,920 a------- c:\windows\system32\netevent.dll
2009-08-14 16:16 17,920 a------- c:\windows\system32\ROUTE.EXE
2009-08-14 16:16 9,728 a------- c:\windows\system32\TCPSVCS.EXE
2009-08-14 16:16 11,264 a------- c:\windows\system32\MRINFO.EXE
2009-08-14 16:16 27,136 a------- c:\windows\system32\NETSTAT.EXE
2009-08-14 16:16 19,968 a------- c:\windows\system32\ARP.EXE
2009-08-14 16:16 10,240 a------- c:\windows\system32\finger.exe
2009-08-14 16:16 8,704 a------- c:\windows\system32\HOSTNAME.EXE
2009-07-25 05:23 411,368 a------- c:\windows\system32\deploytk.dll
2009-07-21 23:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 23:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 23:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 22:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-21 19:49 9,408 a------- c:\windows\system32\plkmon32.dll
2009-07-21 08:32 73,216 a------- c:\windows\ST6UNST.EXE
2009-07-18 12:15 604,416 a------- c:\windows\system32\TUProgSt.exe
2009-07-18 12:15 361,216 a------- c:\windows\system32\TuneUpDefragService.exe
2009-07-17 16:35 71,680 a------- c:\windows\system32\atl.dll
2009-07-14 15:00 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-07-14 14:59 4,096 a------- c:\windows\system32\dxmasf.dll
2009-07-14 14:58 7,680 a------- c:\windows\system32\spwmp.dll
2009-07-14 12:59 8,147,456 a------- c:\windows\system32\wmploc.DLL
2009-07-11 21:32 513,024 a------- c:\windows\system32\wlansvc.dll
2009-07-11 21:32 302,592 a------- c:\windows\system32\wlansec.dll
2009-07-11 21:32 293,376 a------- c:\windows\system32\wlanmsm.dll
2009-07-11 21:29 127,488 a------- c:\windows\system32\L2SecHC.dll
2009-06-25 01:24 81,920 a------- c:\users\ivica\appdata\roaming\ezpinst.exe
2009-06-25 01:24 47,360 a------- c:\users\ivica\appdata\roaming\pcouffin.sys
2009-06-23 19:58 3,766 a--sh--- c:\programdata\KGyGaAvL.sys
2009-06-23 19:58 3,766 a--sh--- c:\progra~2\KGyGaAvL.sys
2009-05-16 13:40 8 ---shr-- c:\programdata\614D62C221.sys
2009-05-16 13:40 8 ---shr-- c:\progra~2\614D62C221.sys
2009-05-07 13:56 1,024 a------- c:\programdata\pdfdoc2.dll
2009-05-07 13:56 1,024 a------- c:\progra~2\pdfdoc2.dll
2009-04-04 23:29 22,328 a------- c:\users\ivica\appdata\roaming\PnkBstrK.sys
2009-02-22 20:16 56 a---h--- c:\programdata\ezsidmv.dat
2009-02-22 20:16 56 a---h--- c:\progra~2\ezsidmv.dat
2008-06-20 10:31 665,600 a------- c:\windows\inf\drvindex.dat
2008-06-19 18:08 174 a--sh--- c:\program files\desktop.ini
2008-06-19 08:49 1,526,360 a------- c:\users\ivica\lmpc.zip
2008-04-05 19:41 56 a--sh--- c:\programdata\dc64vg9.sys
2008-04-05 19:41 56 a--sh--- c:\progra~2\dc64vg9.sys
2007-11-24 02:25 260,290 a------- c:\programdata\firstlsp.reg.dat
2007-11-24 02:25 260,290 a------- c:\progra~2\firstlsp.reg.dat
2007-10-13 12:00 13,025 a------- c:\users\ivica\appdata\roaming\nvModes.dat
2007-09-12 07:00 87,608 a------- c:\users\ivica\appdata\roaming\inst.exe
2007-05-11 15:25 1,404,928 a------- c:\program files\TrueBlur.8BF
2007-05-11 15:25 1,449,984 a------- c:\program files\FocusFixer Win.8BF
2007-05-11 15:24 1,196,032 a------- c:\program files\ShadowFixer Win.8BF
2007-05-11 15:24 1,245,184 a------- c:\program files\NoiseFixer Win.8BF
2007-05-02 13:52 67,802 a------- c:\program files\ReadMe TrueBlur 1.5.0_W.rtf
2007-05-02 13:51 59,271 a------- c:\program files\ReadMe ShadowFixer 1.4.0_W.rtf
2007-05-02 13:50 62,205 a------- c:\program files\ReadMe NoiseFixer 1.4.0_W.rtf
2007-05-02 13:45 67,590 a------- c:\program files\ReadMe FocusFixer 1.8.0_W.rtf
2007-01-30 18:47 11,072 a------- c:\program files\License Bundle.rtf
2006-11-02 17:30 290,748 a------- c:\windows\inf\perflib\0407\perfi.dat
2006-11-02 17:30 290,748 a------- c:\windows\inf\perflib\0407\perfh.dat
2006-11-02 17:30 36,916 a------- c:\windows\inf\perflib\0407\perfd.dat
2006-11-02 17:30 36,916 a------- c:\windows\inf\perflib\0407\perfc.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2008-03-27 16:09 75 ---shr-- c:\windows\CT5PRET.BIN
2008-05-25 09:39 108 a--shr-- c:\windows\neoqaz2.dll
2007-10-27 12:58 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2007-10-27 12:58 32,768 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2007-10-27 12:58 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-11 21:55 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2009-06-11 21:55 32,768 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2009-06-11 21:55 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-11 21:55 245,760 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat

============= FINISH: 16:53:42.68 ===============




mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

Poslao: 04 Okt 2009 20:00
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix.
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste. prikazati DISCLAIMER OF WARRANTY ON SOFTWARE:
klikni Yes kako bi proces bio nastavljen.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.

Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Poslao: 04 Okt 2009 21:20
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

ComboFix 09-10-04.01 - Ivica 04.10.2009 20:16.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.41.1031.18.2045.839 [GMT 2:00]
ausgeführt von:: c:\users\Ivica\Desktop\ComboFix.exe
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {C19476D9-52BC-4E93-8AF3-CCF59F7AE8FE}
SP: Avira Premium Security Suite *disabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6}
SP: Windows-Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1677551819-2580994283-1007408439-500
c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500
c:\$recycle.bin\S-1-5-21-221845253-1549749658-2852496188-500
c:\$recycle.bin\S-1-5-21-3935765241-2679998303-4001058102-500
c:\documentation\_desktop.ini
c:\documentation\Documentation\_desktop.ini
c:\documentation\Documentation\CS\_desktop.ini
c:\documentation\Documentation\DE\_desktop.ini
c:\documentation\Documentation\EN\_desktop.ini
c:\documentation\Documentation\ES\_desktop.ini
c:\documentation\Documentation\FI\_desktop.ini
c:\documentation\Documentation\FR\_desktop.ini
c:\documentation\Documentation\GR\_desktop.ini
c:\documentation\Documentation\IT\_desktop.ini
c:\documentation\Documentation\NL\_desktop.ini
c:\documentation\Documentation\PO\_desktop.ini
c:\documentation\Documentation\RU\_desktop.ini
c:\documentation\Documentation\SV\_desktop.ini
c:\documentation\Leaflets\_desktop.ini
c:\documentation\Leaflets\CS\_desktop.ini
c:\documentation\Leaflets\DE\_desktop.ini
c:\documentation\Leaflets\EN\_desktop.ini
c:\documentation\Leaflets\ES\_desktop.ini
c:\documentation\Leaflets\FI\_desktop.ini
c:\documentation\Leaflets\FR\_desktop.ini
c:\documentation\Leaflets\GR\_desktop.ini
c:\documentation\Leaflets\IT\_desktop.ini
c:\documentation\Leaflets\NL\_desktop.ini
c:\documentation\Leaflets\PO\_desktop.ini
c:\documentation\Leaflets\RU\_desktop.ini
c:\documentation\Leaflets\SV\_desktop.ini
c:\users\Ivica\AppData\Roaming\.#
c:\users\Ivica\AppData\Roaming\Desktopicon
c:\users\Ivica\AppData\Roaming\Desktopicon\config.ini
c:\users\Ivica\AppData\Roaming\Desktopicon\eBayShortcuts.exe
c:\users\Ivica\AppData\Roaming\inst.exe
c:\windows\Installer\19c2eb.msi
c:\windows\Installer\3a0fa77.msi
c:\windows\Installer\4a99b50.msi
c:\windows\Installer\6316cb9.msi
c:\windows\Installer\6de6ee.msi
c:\windows\neoqaz2.dll
c:\windows\sysgtime.dll
c:\windows\system\Winhc212.dll
c:\windows\system32\12345.exe
c:\windows\system32\inf
c:\windows\system32\inf\rundll33.exe
c:\windows\system32\mozila.exe
c:\windows\system32\Plugins
c:\windows\system32\Plugins\Hoster\aCallbackMethods.dll
c:\windows\system32\Plugins\Hoster\archivto.dll
c:\windows\system32\Plugins\Hoster\bluehostto.dll
c:\windows\system32\Plugins\Hoster\dataupde.dll
c:\windows\system32\Plugins\Hoster\fastloadnet.dll
c:\windows\system32\Plugins\Hoster\fastshareorg.dll
c:\windows\system32\Plugins\Hoster\fileuploadnet.dll
c:\windows\system32\Plugins\Hoster\megauploadcom.dll
c:\windows\system32\Plugins\Hoster\meinuploadcom.dll
c:\windows\system32\Plugins\Hoster\moosharede.dll
c:\windows\system32\Plugins\Hoster\myvideode.dll
c:\windows\system32\Plugins\Hoster\netloadin.dll
c:\windows\system32\Plugins\Hoster\PluginSettings.ini
c:\windows\system32\Plugins\Hoster\qsharecom.dll
c:\windows\system32\Plugins\Hoster\rapidsharecom.dll
c:\windows\system32\Plugins\Hoster\shareonlinebiz.dll
c:\windows\system32\Plugins\Hoster\shareplacecom.dll
c:\windows\system32\Plugins\Hoster\silofilescom.dll
c:\windows\system32\Plugins\Hoster\speedysharecom.dll
c:\windows\system32\Plugins\Hoster\uploadedto.dll
c:\windows\system32\Plugins\Hoster\yourfilesbiz.dll
c:\windows\system32\Plugins\Hoster\youtubecom.dll
c:\windows\system32\Plugins\YouCrypt\callbackmethods.dll
c:\windows\system32\Plugins\YouCrypt\captcha.dll
c:\windows\system32\Plugins\YouCrypt\cineto.dll
c:\windows\system32\Plugins\YouCrypt\datenbankorg.dll
c:\windows\system32\Plugins\YouCrypt\datenschleuder.dll
c:\windows\system32\Plugins\YouCrypt\ddlscene.dll
c:\windows\system32\Plugins\YouCrypt\ddl(zabranjeno).dll
c:\windows\system32\Plugins\YouCrypt\dreidl.dll
c:\windows\system32\Plugins\YouCrypt\dxpdivxvidorg.dll
c:\windows\system32\Plugins\YouCrypt\gameblog.dll
c:\windows\system32\Plugins\YouCrypt\gamezam.dll
c:\windows\system32\Plugins\YouCrypt\gapping.dll
c:\windows\system32\Plugins\YouCrypt\g(zabranjeno).dll
c:\windows\system32\Plugins\YouCrypt\linkbank.dll
c:\windows\system32\Plugins\YouCrypt\linksafe.dll
c:\windows\system32\Plugins\YouCrypt\LinkSave.dll
c:\windows\system32\Plugins\YouCrypt\lix.dll
c:\windows\system32\Plugins\YouCrypt\mirrorit.dll
c:\windows\system32\Plugins\YouCrypt\netfolderin.dll
c:\windows\system32\Plugins\YouCrypt\onekh.dll
c:\windows\system32\Plugins\YouCrypt\rapidfolder.dll
c:\windows\system32\Plugins\YouCrypt\rapidlayer.dll
c:\windows\system32\Plugins\YouCrypt\rapidsafede.dll
c:\windows\system32\Plugins\YouCrypt\rapidsafenet.dll
c:\windows\system32\Plugins\YouCrypt\relinkus.dll
c:\windows\system32\Plugins\YouCrypt\RScomLinkList.dll
c:\windows\system32\Plugins\YouCrypt\rslayer.dll
c:\windows\system32\Plugins\YouCrypt\saveraidrush.dll
c:\windows\system32\Plugins\YouCrypt\secured.dll
c:\windows\system32\Plugins\YouCrypt\securnet.dll
c:\windows\system32\Plugins\YouCrypt\serienjunkies.dll
c:\windows\system32\Plugins\YouCrypt\shareonall.dll
c:\windows\system32\Plugins\YouCrypt\shareprotect.dll
c:\windows\system32\Plugins\YouCrypt\stealth.dll
c:\windows\system32\Plugins\YouCrypt\tinyurl.dll
c:\windows\system32\Plugins\YouCrypt\UndergroundCMS.dll
c:\windows\system32\Plugins\YouCrypt\uppicoasis.dll
c:\windows\system32\Plugins\YouCrypt\urlcash.dll
c:\windows\system32\Plugins\YouCrypt\usercashcom.dll
c:\windows\system32\Plugins\YouCrypt\xlinkin.dll
c:\windows\system32\winword.exe
c:\windows\system32\zip32.dll
c:\windows\xccwinsys.ini

.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_MyWebSearchService


((((((((((((((((((((((( Dateien erstellt von 2009-09-04 bis 2009-10-04 ))))))))))))))))))))))))))))))
.

2009-10-04 18:45 . 2009-10-04 18:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-10-04 17:42 . 2009-10-04 17:42 -------- d-----w- c:\users\Ivica\AppData\Local\GHISLER
2009-10-04 10:55 . 2009-10-04 10:55 0 ---ha-w- c:\windows\€AstInfo.dat
2009-10-04 10:06 . 2009-10-04 10:06 -------- d-----w- c:\program files\zabkat
2009-10-04 09:46 . 2009-10-04 09:46 114688 ----a-w- c:\windows\system32\vsgximbt.dll
2009-10-04 09:46 . 2009-10-04 09:46 -------- d-----w- c:\program files\FileStream
2009-10-03 16:26 . 2009-10-03 16:26 -------- d-----w- c:\program files\StreamingStar
2009-10-03 07:29 . 2009-10-03 07:29 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-10-03 07:27 . 2009-10-03 07:55 -------- d-----w- c:\programdata\Rosetta Stone
2009-10-03 07:27 . 2009-10-03 07:27 -------- d-----w- c:\program files\Rosetta Stone
2009-10-02 19:27 . 2009-10-04 09:11 -------- d-----w- c:\users\Ivica\AppData\Roaming\GoodSync
2009-10-02 17:45 . 2009-10-01 08:29 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-09-30 08:08 . 2009-09-30 08:10 -------- d-----w- c:\users\Ivica\AppData\Roaming\vlc
2009-09-25 17:08 . 2009-09-25 17:08 167376 ----a-w- c:\users\Ivica\AppData\Roaming\Mozilla\Firefox\Profiles\3gbqj5fb.default\FlashGot.exe
2009-09-24 22:35 . 2009-09-24 22:35 -------- d-----w- c:\users\Ivica\AppData\Roaming\Scendix Software
2009-09-24 22:35 . 2009-09-24 22:35 -------- d-----w- c:\users\Ivica\AppData\Local\Scendix Software
2009-09-24 22:34 . 2009-04-07 11:50 23720 ----a-w- c:\windows\system32\novamnv6.dll
2009-09-24 22:34 . 2009-04-07 11:50 18600 ----a-w- c:\windows\system32\novamiv6.dll
2009-09-24 22:30 . 2009-09-24 22:35 -------- d-----w- c:\program files\PamFax
2009-09-23 12:53 . 2009-10-01 08:10 -------- d-----w- c:\users\Ivica\AppData\Local\Orange Internet Everywhere
2009-09-23 12:26 . 2009-09-23 12:26 -------- d-----w- c:\program files\Orange
2009-09-22 22:55 . 2009-09-22 22:55 -------- d-----w- c:\users\Ivica\AppData\Roaming\AVS4YOU
2009-09-22 22:55 . 2009-09-22 22:55 -------- d-----w- c:\programdata\AVS4YOU
2009-09-22 19:44 . 2009-02-18 13:17 113152 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2009-09-22 19:44 . 2009-02-18 13:17 101760 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2009-09-19 17:10 . 2009-09-19 17:11 -------- d-----w- c:\program files\Common Files\AVSMedia
2009-09-19 17:10 . 2009-09-19 17:11 -------- d-----w- c:\program files\AVS4YOU
2009-09-19 17:10 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2009-09-18 10:22 . 2009-09-18 10:22 -------- d-----w- c:\program files\Advanced Business Card Maker
2009-09-18 09:18 . 2009-09-18 09:18 -------- d-----w- c:\program files\Avanquest update
2009-09-18 09:18 . 2009-09-18 09:18 -------- d-----w- c:\programdata\BVRP Software
2009-09-18 09:12 . 1997-01-20 18:26 565760 ----a-w- c:\windows\system32\msvcp50.DLL
2009-09-18 09:12 . 2005-01-12 22:34 27025 ----a-w- c:\windows\system32\OLE2.REG
2009-09-18 09:12 . 1995-02-28 21:00 348160 ----a-w- c:\windows\system32\MFC30.DLL
2009-09-18 09:11 . 2009-09-18 09:11 -------- d-----w- c:\program files\Common Files\MySoftware
2009-09-18 09:11 . 2009-09-18 09:11 -------- d-----w- c:\program files\MySoftware
2009-09-17 10:24 . 2009-09-17 10:24 -------- d-----w- c:\programdata\Local
2009-09-06 00:18 . 2009-09-06 00:25 5358672 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Temp\MxSetup.exe

.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-04 18:48 . 2009-04-28 17:21 8500 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-10-04 18:48 . 2009-04-28 17:21 2170912 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-10-04 18:48 . 2008-01-18 13:47 20288756 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-10-04 18:48 . 2008-01-18 13:47 1514813472 ----a-w- c:\windows\system32\drivers\fidbox.dat
2009-10-04 18:47 . 2007-03-19 07:12 12 ----a-w- c:\windows\bthservsdp.dat
2009-10-04 17:21 . 2008-03-17 06:28 -------- d-----w- c:\users\Ivica\AppData\Roaming\MxBoost
2009-10-04 14:45 . 2007-06-11 17:27 -------- d-----w- c:\programdata\Kaspersky Lab
2009-10-04 14:37 . 2009-03-10 09:57 -------- d-----w- c:\program files\PC Satellite TV
2009-10-04 14:37 . 2009-02-17 10:06 -------- d-----w- c:\program files\Modem Spy
2009-10-04 10:54 . 2009-03-10 19:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-03 22:54 . 2007-03-16 18:04 2032 ----a-w- c:\users\Ivica\AppData\Local\d3d9caps.dat
2009-10-03 21:11 . 2009-02-28 20:18 -------- d-----w- c:\programdata\Google Updater
2009-10-03 13:44 . 2007-07-02 12:11 -------- d-----w- c:\users\Ivica\AppData\Roaming\Azureus
2009-10-03 08:03 . 2009-03-22 16:36 -------- d-----w- c:\users\Ivica\AppData\Roaming\Babylon
2009-10-03 08:03 . 2009-03-22 16:36 -------- d-----w- c:\programdata\Babylon
2009-10-03 07:45 . 2007-03-20 10:44 -------- d-----w- c:\programdata\FLEXnet
2009-10-02 19:27 . 2007-11-02 06:37 -------- d-----w- c:\program files\Siber Systems
2009-10-02 14:20 . 2006-11-02 15:33 689092 ----a-w- c:\windows\system32\perfh007.dat
2009-10-02 14:20 . 2006-11-02 15:33 152256 ----a-w- c:\windows\system32\perfc007.dat
2009-10-01 23:20 . 2007-03-16 18:04 -------- d-----w- c:\users\Ivica\AppData\Roaming\Skype
2009-10-01 22:02 . 2009-02-22 18:16 -------- d-----w- c:\users\Ivica\AppData\Roaming\skypePM
2009-09-30 08:11 . 2008-01-14 06:41 -------- d-----w- c:\users\Ivica\AppData\Roaming\Zoom Player
2009-09-27 20:52 . 2009-07-22 05:48 162816 ----a-w- c:\windows\system32\fmod.dll
2009-09-25 13:24 . 2009-09-25 13:24 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2009-09-24 22:32 . 2009-02-22 18:14 -------- d-----w- c:\program files\Common Files\Skype
2009-09-23 15:18 . 2007-07-02 12:10 -------- d-----w- c:\program files\Azureus
2009-09-23 15:18 . 2008-07-18 21:02 181 ----a-w- c:\users\Ivica\AppData\Roaming\Azureus\restart.bat
2009-09-23 15:16 . 2008-07-27 11:32 7154255 ----a-w- c:\users\Ivica\AppData\Roaming\Azureus\plugins\azemp\azmplay.exe
2009-09-23 15:13 . 2008-07-16 11:57 -------- d-----w- c:\users\Ivica\AppData\Roaming\uTorrent
2009-09-23 15:08 . 2008-07-18 22:21 -------- d-----w- c:\users\Ivica\AppData\Roaming\BitTorrent
2009-09-22 15:04 . 2008-01-18 13:50 95259 ----a-w- c:\windows\system32\drivers\klick.dat
2009-09-22 15:04 . 2008-01-18 13:50 107547 ----a-w- c:\windows\system32\drivers\klin.dat
2009-09-22 09:01 . 2009-08-22 17:06 -------- d-----w- c:\program files\Mobile Partner
2009-09-18 09:18 . 2006-11-30 14:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-18 09:16 . 2007-03-16 18:04 165568 ----a-w- c:\users\Ivica\AppData\Local\GDIPFONTCACHEV1.DAT
2009-09-18 09:05 . 2009-06-18 15:51 -------- d--h--w- c:\programdata\PDFC
2009-09-18 08:29 . 2009-06-18 10:48 -------- d-----w- c:\users\Ivica\AppData\Roaming\Nitro PDF
2009-09-10 12:54 . 2009-03-10 19:20 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 12:53 . 2009-03-10 19:20 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-10 05:27 . 2008-03-12 06:05 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-10 05:06 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-09 22:33 . 2009-06-15 14:36 -------- d-----w- c:\users\Ivica\AppData\Roaming\MagicEffect Photo
2009-09-07 16:20 . 2008-02-15 13:53 -------- d-----w- c:\programdata\CanonIJPLM
2009-09-06 01:01 . 2007-03-16 22:39 -------- d-----w- c:\program files\Opera
2009-09-06 00:28 . 2008-03-17 06:27 140169 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MaxthonUINST.exe
2009-09-06 00:28 . 2008-03-17 06:26 -------- d-----w- c:\users\Ivica\AppData\Roaming\Maxthon2
2009-09-03 22:50 . 2008-02-15 18:39 -------- d-----w- c:\users\Ivica\AppData\Roaming\Canon
2009-08-31 10:19 . 2006-12-01 08:17 -------- d-----w- c:\program files\Java
2009-08-29 10:43 . 2009-08-29 10:43 -------- d-----w- c:\users\Ivica\AppData\Roaming\XNote Stopwatch
2009-08-29 10:43 . 2009-08-29 10:43 -------- d-----w- c:\program files\XNote Stopwatch
2009-08-29 10:14 . 2009-05-14 14:33 -------- d-----w- c:\users\Ivica\AppData\Roaming\MessengerDiscovery 2
2009-08-28 12:39 . 2009-09-02 19:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-28 10:15 . 2009-09-02 19:40 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-25 06:51 . 2009-08-25 06:51 3548560 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Maxthon.exe
2009-08-25 03:12 . 2009-08-25 03:12 202144 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Modules\MxVideoPopup\MxVideoPopup.dll
2009-08-22 16:11 . 2009-08-20 12:44 -------- d-----w- c:\program files\Funk Software
2009-08-20 12:46 . 2009-08-20 12:46 -------- d-----w- c:\program files\Siemens
2009-08-19 23:13 . 2009-04-28 17:21 7772 --sha-w- c:\windows\system32\drivers\fidbox2(64).idx
2009-08-19 23:13 . 2009-04-28 17:21 1957920 --sha-w- c:\windows\system32\drivers\fidbox2(63).dat
2009-08-19 23:13 . 2008-01-18 13:47 20288756 --sha-w- c:\windows\system32\drivers\fidbox(62).idx
2009-08-19 23:13 . 2008-01-18 13:47 1514813472 ----a-w- c:\windows\system32\drivers\fidbox(61).dat
2009-08-18 05:20 . 2009-08-18 05:20 193944 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Modules\MxUpdate\MxUp.exe
2009-08-17 08:13 . 2009-08-17 08:13 91456 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxTool.dll
2009-08-14 21:42 . 2009-08-13 15:49 -------- d-----w- c:\program files\WinPcap
2009-08-14 17:07 . 2009-09-09 11:21 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 16:29 . 2009-09-09 11:21 104960 ----a-w- c:\windows\system32\netiohlp.dll
2009-08-14 16:29 . 2009-09-09 11:21 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 14:16 . 2009-09-09 11:21 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 14:16 . 2009-09-09 11:21 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 14:16 . 2009-09-09 11:21 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 14:16 . 2009-09-09 11:21 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 14:16 . 2009-09-09 11:21 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 14:16 . 2009-09-09 11:21 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 14:16 . 2009-09-09 11:21 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-13 19:04 . 2007-04-28 09:58 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-08-13 03:13 . 2009-08-13 03:13 898456 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxProxy2.dll
2009-07-28 02:38 . 2009-07-28 02:38 103832 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxHttpRq.dll
2009-07-25 03:23 . 2009-06-19 21:07 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-21 21:52 . 2009-08-09 05:24 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-08-09 05:24 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-08-09 05:24 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-08-09 05:24 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-21 17:49 . 2009-06-11 22:56 9408 ----a-w- c:\windows\system32\plkmon32.dll
2009-07-21 06:32 . 2009-07-21 06:32 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-07-18 10:15 . 2009-05-14 10:44 604416 ----a-w- c:\windows\system32\TUProgSt.exe
2009-07-18 10:15 . 2009-07-18 10:15 361216 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-07-17 14:35 . 2009-08-15 20:33 71680 ----a-w- c:\windows\system32\atl.dll
2009-07-14 13:00 . 2009-08-15 20:33 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-14 12:59 . 2009-08-15 20:33 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-07-14 12:58 . 2009-08-15 20:33 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-07-14 10:59 . 2009-08-15 20:33 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-07-11 19:32 . 2009-09-09 11:21 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-07-11 19:32 . 2009-09-09 11:21 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-07-11 19:32 . 2009-09-09 11:21 513024 ----a-w- c:\windows\system32\wlansvc.dll
2009-07-11 19:29 . 2009-09-09 11:21 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2007-05-11 13:25 . 2007-05-11 13:25 1404928 ----a-w- c:\program files\TrueBlur.8BF
2007-05-11 13:25 . 2007-05-11 13:25 1449984 ----a-w- c:\program files\FocusFixer Win.8BF
2007-05-11 13:24 . 2007-05-11 13:24 1196032 ----a-w- c:\program files\ShadowFixer Win.8BF
2007-05-11 13:24 . 2007-05-11 13:24 1245184 ----a-w- c:\program files\NoiseFixer Win.8BF
2007-05-02 11:52 . 2007-05-02 11:52 67802 ----a-w- c:\program files\ReadMe TrueBlur 1.5.0_W.rtf
2009-04-29 04:29 . 2009-07-17 10:02 202168 ----a-w- c:\program files\mozilla firefox\plugins\SwDir.dll
2008-03-27 14:09 . 2008-03-27 14:09 75 --sh--r- c:\windows\CT5PRET.BIN
2008-06-21 00:19 . 2008-01-18 13:47 829808928 --sha-w- c:\windows\System32\drivers\fidbox(60).dat
.

(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{9CB65206-89C4-402c-BA80-02D8C59F9B1D}"= "c:\program files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL" [2008-03-28 57344]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-05-20 177464]

[HKEY_CLASSES_ROOT\clsid\{9cb65206-89c4-402c-ba80-02d8c59f9b1d}]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-18 10:58 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
2009-04-08 14:05 739688 ----a-w- c:\progra~1\MICROS~3\Office14\URLREDIR.DLL

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-05-20 12:36 1258808 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RAMSaverPro"="c:\program files\Godlike Developers\RAM Saver Professional\ramsaverpro.exe" [2009-02-19 198688]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-18 1233920]
"HideAnyWindow"="c:\program files\HideAnyWindow\haw.exe" [2008-08-13 238080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2009-07-21 208616]
"MSF_Monitor"="c:\progra~1\MYSECR~1\MSFMON.exe" [2007-01-24 99920]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]

c:\users\Ivica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Actual Reminder.lnk - c:\program files\Actual Reminder 3.0 Talk + Weather\Actual Reminder.exe [2008-5-10 1245696]
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2007-9-7 3581680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-8-14 727592]
Orange Internet Everywhere.lnk - c:\program files\Orange\Orange Internet Everywhere\Orange Internet Everywhere.exe [2009-1-13 4605440]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Multi]
2008-01-16 22:47 95480 ----a-w- c:\program files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fsp_lmwl]
2008-06-13 19:39 45184 ----a-w- c:\windows\System32\fsp_lmwl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2006-11-24 09:36 73728 ----a-w- c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Hard Drive Inspector Professional"=c:\program files\Hard Drive Inspector\HDInspector.exe
"speedfan"=c:\program files\SpeedFan\speedfan.exe
"AdobeUpdater"=c:\program files\Common Files\Adobe\Updater\AdobeUpdater.exe
"Nero PhotoShow Media Manager"=c:\progra~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
"Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" /background
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\HOMERunner.exe" -s
"SplitScreen"="c:\program files\SplitView 2009\SplitScr.exe" -auto
"HideAnyWindow"=c:\program files\HideAnyWindow\haw.exe
"ehTray.exe"=c:\windows\ehome\ehTray.exe
"MyWebSearch Email Plugin"=c:\progra~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
"swg"=c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
"LowTek CopyFaster"="c:\program files\LowTek CopyFaster\copyfast.exe" /startup
"ErrorRepairPro"=c:\program files\Error Repair Professional\autostart.exe
"uTorrent"="c:\users\Ivica\Program Files\uTorrent\uTorrent.exe"
"VeohPlugin"="c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Windows Defender"=%ProgramFiles%\Windows Defender\MSASCui.exe -hide
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
"PWRISOVM.EXE"=c:\program files\PowerISO\PWRISOVM.EXE
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"Device Detector"=DevDetect.exe -autorun
"WinampAgent"=c:\program files\Winamp\winampa.exe
"Windows Mobile-based device management"=%windir%\WindowsMobile\wmdc.exe
"VAIOCameraUtility"="c:\program files\Sony\VAIO Camera Utility\VCUServe.exe"
"GrooveMonitor"=c:\progra~1\MICROS~3\Office14\GROOVEMN.EXE
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"CanonSolutionMenu"=c:\program files\Canon\SolutionMenu\CNSLMAIN.exe /logon
"NSLauncher"=c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"sclauncher"=c:\program files\SimpleCenter\bin\win\sclauncher.exe
"NeroFilterCheck"=c:\program files\Common Files\Nero\Lib\NeroCheck.exe
"HiYo"=c:\program files\HiYo\bin\HiYo.exe /RunFromStartup
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe"
"SplitView"="c:\program files\SplitView 2009\SplitScr.exe" -auto
"THGuard"="c:\program files\TrojanHunter 5.0\THGuard.exe"
"AcronisTimounterMonitor"=c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
"GroupManager"=c:\program files\IE Motivational Poster Maker\groupmanager.exe
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe"
"TrueImageMonitor.exe"=c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
"Babylon Client"=c:\program files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
"CLMLServer"="c:\program files\Cyberlink\Power2Go\CLMLSvc.exe"
"WindowsMediaPlugin"=system32\WindowsMediaPlugin.exe
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
"My Web Search Bar Search Scope Monitor"="c:\progra~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w /h
"SweetIM"=c:\program files\SweetIM\Messenger\SweetIM.exe
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
"YouCam Mirror Tray icon"="c:\program files\CyberLink\YouCam\YouCamTray.exe" /s
"PC Auto Shutdown"="c:\program files\PC Auto Shutdown\AutoShutdown.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{1F1EE28F-5F4B-4E02-BBEE-FE20A31E4E22}"= UDP:c:\program files\Skype\Phone\Skype.exe:Skype
"{6D94207A-92C2-4498-90AB-5DC177634702}"= TCP:c:\program files\Skype\Phone\Skype.exe:Skype
"TCP Query User{22FAE317-2A61-478F-BF1F-400295D186F3}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= UDP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"UDP Query User{6676D5B2-0B71-4FB0-A933-5086F8867EF6}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= TCP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"{3DFD6795-71A5-4FD5-AF40-431C68CED0E6}"= UDP:c:\program files\uTorrent\utorrent.exe:µTorrent
"{1697D469-53A7-4B0C-8F33-7C44D0464A20}"= TCP:c:\program files\uTorrent\utorrent.exe:µTorrent
"TCP Query User{9496926F-813D-4411-BAD5-8F6B0ECCD5BE}g:\\programi ivica\\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe"= UDP:g:\programi ivica\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe:eMule
"UDP Query User{95C38007-7EA9-4131-BE47-8B512061054E}g:\\programi ivica\\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe"= TCP:g:\programi ivica\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe:eMule
"TCP Query User{F445B7E7-6A0B-410B-946C-D7F38F959001}c:\\program files\\opera\\opera.exe"= UDP:c:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{02B4FBFC-6A66-48AD-A076-4173B4A9B895}c:\\program files\\opera\\opera.exe"= TCP:c:\program files\opera\opera.exe:Opera Internet Browser
"{EC34DB54-91DD-4109-9649-AC20F72F2039}"= UDP:5678:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4004
"{F530B0B5-FE36-4333-9E62-1EBAD28F91BF}"= UDP:999:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4005
"{41D57E86-A1A3-436C-A009-A928512C4CF7}"= UDP:26675:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}:@%systemroot%\WindowsMobile\wmdc.exe,-4006
"TCP Query User{B7F12660-B261-4A03-9227-37EB11A4B4DB}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= UDP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"UDP Query User{1FD9A4E6-E80E-4693-9FBE-CE6350A8D952}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= TCP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"TCP Query User{2D2764CF-31AA-4975-9E8C-09DF9C1055FD}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{6799821F-B795-473C-AFA0-6C3A9A75346C}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"{461F16E1-99FE-4B4D-BFEA-76C8ECF784CF}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{7BCB138F-00E8-4649-8FF4-8527E8929912}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"TCP Query User{3FCE1FF6-F9D1-4F33-B5DB-B89C49D3FE96}c:\\program files\\foxit software\\pdf editor\\pdfedit.exe"= UDP:c:\program files\foxit software\pdf editor\pdfedit.exe:Foxit PDF Editor, the first REAL editor for PDF files!
"UDP Query User{B72E4683-D6B6-451F-B9E3-0E67B72DD81E}c:\\program files\\foxit software\\pdf editor\\pdfedit.exe"= TCP:c:\program files\foxit software\pdf editor\pdfedit.exe:Foxit PDF Editor, the first REAL editor for PDF files!
"TCP Query User{916F2403-3B06-499C-B4C8-553AF24DF136}c:\\program files\\videolan\\vlc\\vlc.exe"= UDP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"UDP Query User{0B73EB80-AA5B-4B23-96DC-F87A1CAB6C8B}c:\\program files\\videolan\\vlc\\vlc.exe"= TCP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"{69709160-DD1D-4937-B917-71C3016799A9}"= UDP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{E950F7F5-D16B-422B-B542-A8671A222D37}"= TCP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"TCP Query User{1F9BEFFB-CD1C-466D-B8C5-67CE108C8005}c:\\program files\\sony\\vaio media registration tool\\vmpclient.exe"= UDP:c:\program files\sony\vaio media registration tool\vmpclient.exe:VAIO Media Registration Tool
"UDP Query User{7C679259-AD63-4F27-B5FA-6AF022CF821F}c:\\program files\\sony\\vaio media registration tool\\vmpclient.exe"= TCP:c:\program files\sony\vaio media registration tool\vmpclient.exe:VAIO Media Registration Tool
"TCP Query User{7C3CDBA9-75D5-4D23-817E-D69D5B3C0DDE}c:\\program files\\joost\\xulrunner\\tvprunner.exe"= UDP:c:\program files\joost\xulrunner\tvprunner.exe:tvprunner
"UDP Query User{51AC2415-5C4A-4A6A-90B7-037CAE72A602}c:\\program files\\joost\\xulrunner\\tvprunner.exe"= TCP:c:\program files\joost\xulrunner\tvprunner.exe:tvprunner
"TCP Query User{675D3AC2-AEF1-4B9C-8B24-8F2B6F6DBA20}c:\\program files\\real\\realplayer\\realplay.exe"= UDP:c:\program files\real\realplayer\realplay.exe:RealPlayer
"UDP Query User{0956CCFF-6CC9-4893-8738-800BFEF253C4}c:\\program files\\real\\realplayer\\realplay.exe"= TCP:c:\program files\real\realplayer\realplay.exe:RealPlayer
"{A84D05C8-52F3-406B-AAE4-BC1118B9CFB2}"= UDP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{98242DA3-E208-47FE-A7F8-761DD5B3A764}"= TCP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"TCP Query User{92BA09C3-E7B2-4210-917B-50ED2069551E}c:\\^^^msn pack^^^\\msn emotions\\winks,moods,muggins,weemees and meegos\\mcoinstall.exe"= UDP:c:\^^^msn pack^^^\msn emotions\winks,moods,muggins,weemees and meegos\mcoinstall.exe:mcoinstall
"UDP Query User{1179DE2B-7063-4F4B-8ABE-E0BB884775ED}c:\\^^^msn pack^^^\\msn emotions\\winks,moods,muggins,weemees and meegos\\mcoinstall.exe"= TCP:c:\^^^msn pack^^^\msn emotions\winks,moods,muggins,weemees and meegos\mcoinstall.exe:mcoinstall
"TCP Query User{760C744A-DA5C-41BF-B593-A75EC4E99E5C}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
"UDP Query User{16E3A843-BAB9-435F-B1BA-7D7D9764DD4A}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
"TCP Query User{8727623C-7F11-4BC3-8715-69AB7E110632}c:\\program files\\spacialaudio\\sambc\\sambc.exe"= UDP:c:\program files\spacialaudio\sambc\sambc.exe:SAMBC
"UDP Query User{06876C4F-497D-401C-A4A7-5833CDD9FEDC}c:\\program files\\spacialaudio\\sambc\\sambc.exe"= TCP:c:\program files\spacialaudio\sambc\sambc.exe:SAMBC
"TCP Query User{96AD9F26-5741-457E-8F54-0E2130607A11}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= UDP:c:\program files\common files\nero\nero web\setupx.exe:MSI starter
"UDP Query User{6879C9BA-4015-4C4C-A192-04A47C52C79E}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= TCP:c:\program files\common files\nero\nero web\setupx.exe:MSI starter
"TCP Query User{4F9DF09C-7337-4687-B6E1-E30F733ACC7C}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= UDP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{EA20A45C-0CAE-4626-8072-F69767D3CF1F}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= TCP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{BAB69BC4-0A94-43BB-BBEE-9C01F7295031}c:\\program files\\super internet tv\\onlinetv.exe"= UDP:c:\program files\super internet tv\onlinetv.exe:Super Internet TV
"UDP Query User{AAF2F8D7-C62C-4A0B-8CBF-C402039B7DB9}c:\\program files\\super internet tv\\onlinetv.exe"= TCP:c:\program files\super internet tv\onlinetv.exe:Super Internet TV
"TCP Query User{651A825E-8FF7-44B6-A8BA-1124AA2317A1}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"UDP Query User{1604FBB8-1260-4390-AE89-740705A9016A}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"{FC5C14CF-B932-4BC6-8F59-70A036E53A05}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{2B394842-006F-41CE-882B-C2002C55C594}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{F95A5440-3DB5-4D09-9634-A5E784051583}"= UDP:c:\program files\VoipStunt.com\VoipStunt\VoipStunt.exe:VoipStunt
"{307F31BC-E3A0-43B5-8F46-A53DDA3D7210}"= TCP:c:\program files\VoipStunt.com\VoipStunt\VoipStunt.exe:VoipStunt
"{2E1DED2E-9DA9-42EC-882B-070BF24CA5EC}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{23B97F0C-B73D-404E-A5B5-50F8A5C20FF9}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"TCP Query User{5F4E1452-028C-4F97-90F2-36DE58ED6558}h:\\programme\\azureus\\azureus.exe"= UDP:h:\programme\azureus\azureus.exe:Azureus
"UDP Query User{F4428C90-E871-4D71-90DE-F295B1D5E68B}h:\\programme\\azureus\\azureus.exe"= TCP:h:\programme\azureus\azureus.exe:Azureus
"TCP Query User{65AEF9E1-EEA8-47DF-9555-48A9830525DC}c:\\program files\\remote desktop control\\apc_host.exe"= UDP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"UDP Query User{DE37635A-3F4C-4BB8-94FB-655230225AAA}c:\\program files\\remote desktop control\\apc_host.exe"= TCP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"TCP Query User{F796D597-A0E6-4D13-B58E-7ED685184A62}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
"UDP Query User{2A3D0A3F-A37E-4542-ADEF-4F3AE7F11952}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
"TCP Query User{72807BF3-8DD2-48D0-A299-913F0D8F1A85}c:\\program files\\webcamxp\\webcamxp.exe"= UDP:c:\program files\webcamxp\webcamxp.exe:webcamXP 2007
"UDP Query User{AE5113DD-EA80-4FC2-83B5-EC241B5B18D1}c:\\program files\\webcamxp\\webcamxp.exe"= TCP:c:\program files\webcamxp\webcamxp.exe:webcamXP 2007
"TCP Query User{054BCD54-DAD9-4AAA-B228-45E8E294AD87}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= UDP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"UDP Query User{A185EB80-85AF-45EF-91DC-11B3D58F8320}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= TCP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"TCP Query User{ED93EC28-9B6C-4D05-B719-AE8CB08087CE}c:\\program files\\opera\\opera.exe"= UDP:c:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{6F1DFCB8-E997-4244-A953-32767E9271F6}c:\\program files\\opera\\opera.exe"= TCP:c:\program files\opera\opera.exe:Opera Internet Browser
"TCP Query User{E3D20E74-B09F-4271-8451-59829155D31E}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= UDP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"UDP Query User{F09E619A-DCB7-4DD9-B15E-EE9CA10A6276}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= TCP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"TCP Query User{4EBDAF12-AA6B-4986-BC38-286A656D8A69}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 7.0.1.321\\german\\setup.exe"= UDP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 7.0.1.321\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 7.0
"UDP Query User{4B0F7C69-EEA4-4C7B-8480-B51C7EBAC448}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 7.0.1.321\\german\\setup.exe"= TCP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 7.0.1.321\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 7.0
"TCP Query User{84272BC0-FAE2-4594-ACB4-9DD061174F59}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"UDP Query User{11EB6529-30C3-4E2C-976A-79268C3538E5}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"TCP Query User{1ABA54A2-5EBA-4FA9-BB93-6E985AFE2030}c:\\'''e mule'''\\emule0.48a-scarangel_v2.5-bin\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a-scarangel_v2.5-bin\emule.exe:eMule
"UDP Query User{357E007E-4772-40D0-A858-2DC393439123}c:\\'''e mule'''\\emule0.48a-scarangel_v2.5-bin\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a-scarangel_v2.5-bin\emule.exe:eMule
"TCP Query User{1CDCA8C4-8458-4F82-9263-E2B21935E87F}c:\\'''e mule'''\\emule0.48a8.sivka.mod.v18a1-alpha\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a8.sivka.mod.v18a1-alpha\emule.exe:eMule
"UDP Query User{81DD9036-5F07-490D-9A79-5048B7B11D25}c:\\'''e mule'''\\emule0.48a8.sivka.mod.v18a1-alpha\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a8.sivka.mod.v18a1-alpha\emule.exe:eMule
"TCP Query User{6C638DC0-52F0-4A06-8B88-1C302EB7229E}c:\\'''e mule'''\\emule-0.48a-mephisto-v1.1\\emule0.48a-mephisto_v1.1-bin\\emule.exe"= UDP:c:\'''e mule'''\emule-0.48a-mephisto-v1.1\emule0.48a-mephisto_v1.1-bin\emule.exe:eMule
"UDP Query User{443561E4-8713-404D-855B-96B02E2A2DB5}c:\\'''e mule'''\\emule-0.48a-mephisto-v1.1\\emule0.48a-mephisto_v1.1-bin\\emule.exe"= TCP:c:\'''e mule'''\emule-0.48a-mephisto-v1.1\emule0.48a-mephisto_v1.1-bin\emule.exe:eMule
"TCP Query User{F085F248-3270-48FB-A454-E2401F19949D}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= UDP:c:\program files\common files\nero\nero web\setupx.exe:Nero Installer
"UDP Query User{4398F60A-452D-499E-A84B-879106830218}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= TCP:c:\program files\common files\nero\nero web\setupx.exe:Nero Installer
"TCP Query User{67E41C04-DBE0-41BB-8244-7BEFB20BA613}c:\\program files\\dc++\\dcplusplus.exe"= UDP:c:\program files\dc++\dcplusplus.exe:DC++
"UDP Query User{15A1A017-4DE5-45D8-B522-F6EEF7A6A26E}c:\\program files\\dc++\\dcplusplus.exe"= TCP:c:\program files\dc++\dcplusplus.exe:DC++
"TCP Query User{4DEF7CEA-32EF-42CE-B466-CFDAFF4F9A85}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= UDP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{2425B26E-A7E2-449F-AA5D-5E81FD4A5D1F}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= TCP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{9B8AFFB7-FC77-4417-8494-AD067B7D5F1E}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{AA546513-0A4B-4EDD-84E4-697CB30B743A}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{397D352B-5C54-4BFD-BC9A-918F3F48C92C}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
"UDP Query User{406E554A-A12F-44C7-9218-636367B79BE0}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
"{1EECB941-1F31-458D-BC7E-38D39AA69947}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{0ACBBBA8-985B-4319-A369-1A69F1D1014F}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"TCP Query User{85B99BF5-11FA-4F91-B010-EF1EC46CB3BD}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= UDP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"UDP Query User{64385C91-2CDB-42EB-A230-A4CB4FAAD906}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= TCP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"TCP Query User{D9B45BB8-C1B1-4960-8B70-BAFD3F0569EF}c:\\program files\\jlc's software\\internet tv\\internet tv.exe"= UDP:c:\program files\jlc's software\internet tv\internet tv.exe:Internet TV
"UDP Query User{3D893EB5-BD2D-4D1D-B571-24AFCF7FDC0F}c:\\program files\\jlc's software\\internet tv\\internet tv.exe"= TCP:c:\program files\jlc's software\internet tv\internet tv.exe:Internet TV
"TCP Query User{70ACEC48-CE2D-44F0-8674-D5A733F22783}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"UDP Query User{831B893D-8A6D-48B6-B5E5-A273435A9289}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"TCP Query User{94ED767E-40FE-47ED-B525-C668F3FE5F58}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"UDP Query User{7CDC4CA4-B4E5-4A90-896C-1C51D228F0CF}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"TCP Query User{D0036D28-C6EA-49F2-8071-0620513BA037}c:\\program files\\simplecenter\\home media server.exe"= UDP:c:\program files\simplecenter\home media server.exe:Home Media Server
"UDP Query User{D75CD836-D99C-4398-83C3-FC7EE20A7948}c:\\program files\\simplecenter\\home media server.exe"= TCP:c:\program files\simplecenter\home media server.exe:Home Media Server
"{5EE745AD-5E4A-4BB6-9564-666BF39C909C}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{8D3C31A2-58C0-4B1F-98B9-E788A01CCCBB}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{96A9AC6B-36B3-4734-B28D-09BA6F023263}"= UDP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{84CACE7E-096E-41BF-9BBB-65C8BEB06C1E}"= TCP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{426CAE92-0CFB-4FCD-A0DF-B06390368076}"= UDP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{7882F360-8071-4936-8B66-CEA63A57DBBB}"= TCP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{D2E0123E-29B5-4448-B8AD-E20E128331A5}"= UDP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{B714E275-7F8D-46E3-852B-18CDCEC6CAB1}"= TCP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{13C2E891-9009-48A1-AF31-33DD49A363A9}"= UDP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"{52FCB45C-72BE-4D22-814F-2E70422B7B1E}"= TCP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"TCP Query User{A9B87855-7D59-4B21-B998-2C778970422C}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\maxthon.exe"= UDP:c:\users\ivica\appdata\roaming\maxthon2\maxthon.exe:maxthon.exe
"UDP Query User{8933BE33-8FF6-4048-8637-4E3AB3794353}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\maxthon.exe"= TCP:c:\users\ivica\appdata\roaming\maxthon2\maxthon.exe:maxthon.exe
"{03725368-9010-4658-ABFA-D9049E241C23}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{2BD5DEEE-EFD7-443C-9FCD-52BF971012AA}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{65B2500D-7597-476A-97B5-C5BD6557148C}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{BDEFE113-654A-4191-BA3C-622074A1CE9E}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{3675DC96-C943-4CC8-9F6F-90E74E42C578}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\modules\\mxdownloader\\mxdownloadserver.exe"= UDP:c:\users\ivica\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe:mxdownloadserver.exe
"UDP Query User{D43CB998-65EB-4AB1-A6A8-2E17CB79ADFA}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\modules\\mxdownloader\\mxdownloadserver.exe"= TCP:c:\users\ivica\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe:mxdownloadserver.exe
"TCP Query User{3D04331E-84CE-47B3-A3C8-49554CADE95F}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:uTorrent
"UDP Query User{9244DA76-13DC-4BAF-9E6D-017B6973C52D}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:uTorrent
"TCP Query User{C516864F-7867-49B5-8AAD-948300254DEE}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= UDP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"UDP Query User{6C0DF3BB-B051-47AE-A18B-78C479DBB4A0}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= TCP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"{8844BFFE-749C-42E8-A6BA-8152FCD7FDE7}"= UDP:c:\users\Ivica\Program Files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{48A83104-7AD5-457E-9243-98648A03BCA5}"= TCP:c:\users\Ivica\Program Files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{5F7E5949-4315-40E8-A58C-80B7EEA131E5}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
"UDP Query User{2CF86445-1468-451E-9519-519C88D13A7D}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
"{22B31ADC-D59F-44F8-B6C2-8D8358F431B5}"= UDP:c:\program files\DNA\btdna.exe:DNA
"{90CF1BCF-21D4-4D89-A6B5-D7B6DB2618B3}"= TCP:c:\program files\DNA\btdna.exe:DNA
"{4DB894DB-C88F-44A6-BD85-E171D824DED7}"= UDP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"{A3770D93-D2C5-4E40-8292-65231AE49431}"= TCP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"TCP Query User{C2814EB2-E571-4C7D-A727-0B51FF3A7676}c:\\program files\\skype\\phone\\skype.exe"= UDP:c:\program files\skype\phone\skype.exe:Skype. Take a deep breath
"UDP Query User{20A3CC26-D130-4208-BBB3-55E168A68A53}c:\\program files\\skype\\phone\\skype.exe"= TCP:c:\program files\skype\phone\skype.exe:Skype. Take a deep breath
"TCP Query User{3AFAA9F0-6242-44F8-8D88-B0FC66DE67CB}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= UDP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"UDP Query User{D97897EC-1A12-4005-B13C-7112E91B2C9B}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= TCP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"TCP Query User{5D791686-4A7A-43E4-88E4-E7E90D8385E2}c:\\program files\\yahoo!\\messenger\\yahoomessenger.exe"= UDP:c:\program files\yahoo!\messenger\yahoomessenger.exe:Yahoo! Messenger
"UDP Query User{DD6BB10F-5C5C-4BC1-B681-1ED16177FAFD}c:\\program files\\yahoo!\\messenger\\yahoomessenger.exe"= TCP:c:\program files\yahoo!\messenger\yahoomessenger.exe:Yahoo! Messenger
"TCP Query User{23C5A592-8E50-49F4-BD7F-5AFBC932F291}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= UDP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"UDP Query User{A7BFBA2B-780F-48B6-94DB-E96961601EA0}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= TCP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"TCP Query User{70E7E953-944E-4D80-B197-B6AAF23CD14C}c:\\program files\\remote desktop control\\apc_host.exe"= UDP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"UDP Query User{335E2D7D-997F-4A3E-8552-D9350C7D5D39}c:\\program files\\remote desktop control\\apc_host.exe"= TCP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"TCP Query User{8810F88B-2059-4F17-9A71-DFB5A65D9928}c:\\program files\\flashget\\flashget.exe"= UDP:c:\program files\flashget\flashget.exe:FlashGet
"UDP Query User{FFCDB02A-6CF4-4567-A49F-9F95E029C12B}c:\\program files\\flashget\\flashget.exe"= TCP:c:\program files\flashget\flashget.exe:FlashGet
"{C8E087BB-497F-4FC2-B84B-AD92A9B1514F}"= UDP:c:\program files\ApexDC++\ApexDC.exe:ApexDC++ - Pinnacle of File Sharing
"{0DDFC3E2-D306-480E-90D4-53AED705F748}"= TCP:c:\program files\ApexDC++\ApexDC.exe:ApexDC++ - Pinnacle of File Sharing
"TCP Query User{BC138B8A-AE45-48D0-9565-84071EEE97CC}c:\\program files\\java\\jre1.6.0\\launch4j-tmp\\jdownloader.exe"= UDP:c:\program files\java\jre1.6.0\launch4j-tmp\jdownloader.exe:Java(TM) Platform SE binary
"UDP Query User{E75D7642-8FBF-4128-A26B-7F487CE8372E}c:\\program files\\java\\jre1.6.0\\launch4j-tmp\\jdownloader.exe"= TCP:c:\program files\java\jre1.6.0\launch4j-tmp\jdownloader.exe:Java(TM) Platform SE binary
"TCP Query User{6D1E51F4-D96C-4AF0-A190-961FF7271852}c:\\windows\\system32\\java.exe"= UDP:c:\windows\system32\java.exe:Java(TM) Platform SE binary
"UDP Query User{B9E93B6E-3B88-4436-AC2E-55816379C1DE}c:\\windows\\system32\\java.exe"= TCP:c:\windows\system32\java.exe:Java(TM) Platform SE binary
"TCP Query User{05DF6F7B-D201-49D7-A591-045D70C1EE16}c:\\program files\\ares ultra\\ares ultra.exe"= UDP:c:\program files\ares ultra\ares ultra.exe:Ares Ultra
"UDP Query User{3F74C22C-8165-479B-AA8A-87D96EC8378B}c:\\program files\\ares ultra\\ares ultra.exe"= TCP:c:\program files\ares ultra\ares ultra.exe:Ares Ultra
"TCP Query User{C6C261AB-CB91-4090-8461-5A51C4E1A9FC}c:\\users\\ivica\\temp\\teamviewer\\version4\\teamviewer.exe"= UDP:c:\users\ivica\temp\teamviewer\version4\teamviewer.exe:teamviewer.exe
"UDP Query User{67360BE0-118C-485A-B920-E9855193FFBC}c:\\users\\ivica\\temp\\teamviewer\\version4\\teamviewer.exe"= TCP:c:\users\ivica\temp\teamviewer\version4\teamviewer.exe:teamviewer.exe
"TCP Query User{962514C5-1331-44A3-8AA6-C125134A02E4}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule
"UDP Query User{B7393006-865F-4931-9A31-975D26A2AA27}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule
"TCP Query User{39DF64EA-C76B-40D2-BBB5-74ABE910E228}c:\\program files\\pc satellite tv\\pc satellite tv.exe"= UDP:c:\program files\pc satellite tv\pc satellite tv.exe:PC Satellite TV
"UDP Query User{8973DAB7-421C-4B74-9868-9D6BA1C49530}c:\\program files\\pc satellite tv\\pc satellite tv.exe"= TCP:c:\program files\pc satellite tv\pc satellite tv.exe:PC Satellite TV
"{50B25B7E-F997-4F4C-9CF3-11C92EB9D86B}"= UDP:c:\windows\System32\WindowsMediaPlugin.exe:utorrent
"{FA23C219-0A9B-49B2-8BDE-6BC12B09F75D}"= TCP:c:\windows\System32\WindowsMediaPlugin.exe:utorrent
"{BE600B64-EE35-4CAC-A6A7-828F364FA861}"= UDP:c:\windows\System32\svchost.exe :utorrent
"{B69E8DD5-BAF9-4544-AF4B-C925748AA6FF}"= TCP:c:\windows\System32\svchost.exe :utorrent
"TCP Query User{E51298FA-2636-4BB5-8332-84DF563F1369}c:\\softimage\\face_robot_1.8\\application\\bin\\fr.exe"= UDP:c:\softimage\face_robot_1.8\application\bin\fr.exe:FR
"UDP Query User{322CF588-3550-4C19-913B-E483508838E3}c:\\softimage\\face_robot_1.8\\application\\bin\\fr.exe"= TCP:c:\softimage\face_robot_1.8\application\bin\fr.exe:FR
"TCP Query User{D3FC3BF2-FF57-4704-8B8C-E73301E8BD37}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 2009\\german\\setup.exe"= UDP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2009\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 2009
"UDP Query User{36502034-8031-42D0-9752-1E668E22D137}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 2009\\german\\setup.exe"= TCP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2009\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 2009
"{24E4066E-C4EF-417A-BB9B-68F03F4DA62C}"= UDP:c:\program files\Microsoft Office\Office14\GROOVE.EXE:Microsoft SharePoint Workspace
"{98A4DE67-E63F-4EF0-A72B-A05E84FF797E}"= TCP:c:\program files\Microsoft Office\Office14\GROOVE.EXE:Microsoft SharePoint Workspace
"{EB63814C-AF8B-4AAC-A4DD-E73ECB675E1B}"= UDP:c:\program files\Microsoft Office\Office14\ONENOTE.EXE:Microsoft Office OneNote
"{B61CF998-4323-4E0E-AB62-410BAE714039}"= TCP:c:\program files\Microsoft Office\Office14\ONENOTE.EXE:Microsoft Office OneNote
"{87A3C5CE-02DE-4892-9F6C-3D0AC355102D}"= TCP:6004|c:\program files\Microsoft Office\Office14\outlook.exe:Microsoft Office Outlook
"TCP Query User{3329171E-7CE9-428A-91C0-A0F2D10B2F75}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= UDP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"UDP Query User{6250FC00-AB3C-4914-A02C-95844A3B8692}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= TCP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"TCP Query User{06161AAE-4417-4499-A5BA-2583F484CA4F}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= UDP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"UDP Query User{55AE7FA6-AB28-43B6-AAE1-7608C7F78058}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= TCP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"{0F2138C4-C175-48C9-9450-28841A613CDE}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{DC1153A5-88F8-4140-AB60-9B0B04288F00}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{95CF0060-2FC9-4047-B281-3DB35793F68F}"= UDP:c:\program files\Microsoft Games\Rise of Nations\thrones.exe:Rise of Nations
"{A97E6DA5-041B-4514-A311-278F618E17BB}"= TCP:c:\program files\Microsoft Games\Rise of Nations\thrones.exe:Rise of Nations
"TCP Query User{F9AFBC55-5B66-423F-875D-768FF03F78A4}c:\\program files\\java\\jre6\\bin\\javaw.exe"= UDP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{C23D4C22-90DD-4B74-AF0F-F3A1A3A46661}c:\\program files\\java\\jre6\\bin\\javaw.exe"= TCP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{660927E4-069C-4233-8E14-C330E08FE52F}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{F5EE9729-FFC1-4013-AE80-343B643BAAFE}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"{F828CE9A-AB55-4CC4-89A3-EA05B0768F97}"= UDP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player
"{A619A94F-5CB4-4C81-BB1B-B48ABADE7252}"= TCP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player
"TCP Query User{E86FFB4E-DDAE-444E-8B5B-94EAD42AEFE2}c:\\program files\\java\\jre6\\launch4j-tmp\\frd.exe"= UDP:c:\program files\java\jre6\launch4j-tmp\frd.exe:Java(TM) Platform SE binary
"UDP Query User{1F047506-9818-45D0-8510-2B0074D1814F}c:\\program files\\java\\jre6\\launch4j-tmp\\frd.exe"= TCP:c:\program files\java\jre6\launch4j-tmp\frd.exe:Java(TM) Platform SE binary
"TCP Query User{6E87C2F4-851F-43DA-8464-552DA4C42715}c:\\program files\\java\\jre6\\bin\\java.exe"= UDP:c:\program files\java\jre6\bin\java.exe:Java(TM) Platform SE binary
"UDP Query User{743B667B-4780-4A3B-B3E9-BC2632E9E49C}c:\\program files\\java\\jre6\\bin\\java.exe"= TCP:c:\program files\java\jre6\bin\java.exe:Java(TM) Platform SE binary
"TCP Query User{D6AB89BB-441B-4032-BE73-49F77C41B02D}c:\\program files\\java\\jre6\\bin\\javaw.exe"= UDP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{F6CE1149-891C-4302-A455-D4317226EB01}c:\\program files\\java\\jre6\\bin\\javaw.exe"= TCP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{18BA3DD8-5EAB-4010-A365-DD4A976E3B4C}c:\\users\\ivica\\program files\\bittorrent\\bittorrent.exe"= UDP:c:\users\ivica\program files\bittorrent\bittorrent.exe:bittorrent.exe
"UDP Query User{44AE491E-515F-4B6A-8469-07E40E86BA60}c:\\users\\ivica\\program files\\bittorrent\\bittorrent.exe"= TCP:c:\users\ivica\program files\bittorrent\bittorrent.exe:bittorrent.exe
"TCP Query User{E89CFCE9-FA01-48EB-995F-F451D4872B42}c:\\program files\\raspberry software\\true connect\\trueconnect.exe"= UDP:c:\program files\raspberry software\true connect\trueconnect.exe:TrueConnect
"UDP Query User{818A0A7A-5A68-4891-90D4-016CFF5C552E}c:\\program files\\raspberry software\\true connect\\trueconnect.exe"= TCP:c:\program files\raspberry software\true connect\trueconnect.exe:TrueConnect
"{D893EA4D-38BB-4BC6-ACB6-C9A247171261}"= c:\program files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe:Rosetta Stone Version 3 Application
"{D491A8AC-CC07-4A10-880D-A5721A5B2BE7}"= c:\program files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe:Rosetta Stone Ltd Services

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Program Files\\BitTorrent\\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

R0 hotcore3;hotcore3;c:\windows\System32\drivers\hotcore3.sys [22.06.2007 11:11 38448]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [29.01.2008 17:29 33808]
R0 snapman380;Acronis Snapshots Manager (Build 380);c:\windows\System32\drivers\snman380.sys [20.11.2008 08:40 134272]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\System32\drivers\tdrpm147.sys [20.11.2008 08:41 971232]
R1 FlyCryptor;FlyCryptor;c:\windows\System32\drivers\flycryptor.sys [14.01.2009 15:35 31744]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [09.07.2008 17:28 20496]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [06.12.2007 21:03 660768]
R2 AVWEBCAM;AV WebCam, WDM Video Capture;c:\windows\System32\drivers\avwebcam.sys [22.11.2007 14:19 215552]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s [?]
R2 GtDetectSc;GtDetectSc;c:\program files\Orange\Orange Internet Everywhere\GtDetectSc.exe [30.04.2008 16:52 200704]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [12.09.2007 11:21 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\System32\drivers\LMIRfsDriver.sys [02.03.2009 20:16 47640]
R2 LmpcService;Lock My PC Service

Poslao: 04 Okt 2009 21:52
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Log nije kompletan. Iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Poslao: 04 Okt 2009 22:00
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

mycity.rs/must-login.png
Izvini, nisam ni video da nije kompletan.

Poslao: 04 Okt 2009 22:31
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Upload-uj sledeće file-ove:

C:\Qoobox\Quarantine\C\WINDOWS\neoqaz2.dll.vir
C:\Qoobox\Quarantine\C\WINDOWS\sysgtime.dll.vir


preko ovog linka: http://www.mycity.rs/ambulanta-upload.php


-------------------------------------------------------------------------------------


Da li ti je poznato šta se nalazilo u donjim folderima?

c:\windows\system32\Plugins\Hoster
c:\windows\system32\Plugins\YouCrypt

Ako su to neki programi koje si ti instalirao, reci.

Poslao: 04 Okt 2009 22:47
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Na zalost ne secam se sta je to bilo.
Uploadovao sam fajlove koje si trazio

Poslao: 04 Okt 2009 22:56
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Skini ovaj file na Desktop: https://www.mycity.rs/must-login.png

Dvoklikni ga i kada se pojavi upit, klikni Yes.


Postoje li sada neki problemi u radu PC-a?

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa folderima

Ko je trenutno na forumu
 

Ukupno su 909 korisnika na forumu :: 51 registrovanih, 7 sakrivenih i 851 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., arton, cavatina, comi_pfc, dejina811, DonRumataEstorski, drazenm, dulleo, FileFinder, FOX, goxin, HrcAk47, ikan, kolle.the.kid, Kubovac, laganini123, lord sir giga, Marko Marković, Mi lao shu, mile23, milenko crazy north, Milos ZA, Milos82, minmatar34957, nebkv, novator, nuke92, ozzy, pacika, Pakito93, Panter, panzerwaffe, pedja.st, Ripanjac, RJ, ruma, Sančo, sasa76, sevenino, Shinobi, Simon simonović, solic, Srle993, theNedjeljko, tubular, vlad4, vlajkox, Zimbabwe, zziko, šumar bk2