MyCity » Ambulanta -> Arhiva Ambulante » Sporo se gasi Windows

Sporo se gasi Windows

Napisano na dan: 16.9.2008

Sporo se gasi Windows

Sledeća strana

Pagination

Odgovori

Rogi Poslao: 16 Sep 2008 23:28 Idi na vrh
offline Rogi Mod u pemziji Najbolji košarkaš koji je ikada igrao ovu igru Pridružio: 31 Avg 2005 Poruke: 11687	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:04:39, on 16.9.2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Stardock\ObjectDock\ObjectDock.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll C:\WINDOWS\system32\guard32.dll C:\WINDOWS\system32\cssdll32.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe O23 - Service: PD91Agent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PD91Agent.exe O23 - Service: PD91Engine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PD91Engine.exe -- End of file - 4958 bytes Dopuna: 16 Sep 2008 23:28 Windows funkcionise normalno, jednino me nervira sto se gasi sporo. Pa rekoh da prvo eliminisem malwer, ako ga nema da trazim dalje.

Profil

dr_Bora Poslao: 17 Sep 2008 16:15 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Poz... Ovaj log gore je čist. Hajde da proverimo još nešto... Preuzmi gmer.zip sa ovog linka i sačuvaj na Desktopu. Raspakuj ga u neki folder. Dupli klik na gmer.exe za početak: Izaberi Rootkit/Malware Tab na vrhu. Klikni na Scan. Kada je skeniranje završeno, klik na Copy dugme ispod - ovo će sačuvati rezultate skeniranja u Clipboard. Iskoristi opciju Paste u Notepad-u da bi to prebacio u tekst. Snimi taj tekst iz Notepada kao file1.txt. Ponovi ovo isto sa Autostart Tab-om. Snimi taj tekst iz Notepada kao file2.txt. Iskoristi opciju Prikači fajl ispod polja za pisanje poruke na forumu, i prikači nam ovde ta dva fajla koja smo malopre snimili.

Profil

Rogi Poslao: 18 Sep 2008 00:55 Idi na vrh
offline Rogi Mod u pemziji Najbolji košarkaš koji je ikada igrao ovu igru Pridružio: 31 Avg 2005 Poruke: 11687	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! GMER 1.0.14.14536 - http://www.gmer.net Rootkit scan 2008-09-17 21:52:56 Windows 5.1.2600 Service Pack 3 ---- System - GMER 1.0.14 ---- SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwAdjustPrivilegesToken [0xB742B81A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwClose [0xB742BDC6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwConnectPort [0xB742D82A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwCreateFile [0xB742D1E0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwCreateKey [0xB742AF90] SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver/COMODO) ZwCreatePort [0xB7457080] SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver/COMODO) ZwCreateSection [0xB7459084] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwCreateSymbolicLinkObject [0xB742F18C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwCreateThread [0xB742BBC2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwDeleteKey [0xB742B3D2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwDeleteValueKey [0xB742B5D2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwDeviceIoControlFile [0xB742D4EC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwDuplicateObject [0xB742F698] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwEnumerateKey [0xB742B6E8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwEnumerateValueKey [0xB742B750] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwFsControlFile [0xB742D3A2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwLoadDriver [0xB742EC50] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwOpenFile [0xB742D03C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwOpenKey [0xB742B0F2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwOpenProcess [0xB742B9E8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwOpenSection [0xB742F1B6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwOpenThread [0xB742B93E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwQueryKey [0xB742B7B8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwQueryMultipleValueKey [0xB742B4BC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwQueryValueKey [0xB742B29A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwQueueApcThread [0xB742EEB8] SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver/COMODO) ZwRenameKey [0xB74587F2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwReplaceKey [0xB742AC12] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwRequestWaitReplyPort [0xB742E0B4] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwRestoreKey [0xB742AD74] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwResumeThread [0xB742F568] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSaveKey [0xB742AA10] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSecureConnectPort [0xB742D6CC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSetContextThread [0xB742BCC0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSetSecurityObject [0xB742ED4A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSetSystemInformation [0xB742F1E0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSetValueKey [0xB742B148] SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver/COMODO) ZwShutdownSystem [0xB74575D2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSuspendProcess [0xB742F2C4] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSuspendThread [0xB742F3F0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwSystemDebugControl [0xB742EB7C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwTerminateProcess [0xB742BA92] SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver/COMODO) ZwTerminateThread [0xB7456E18] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) ZwWriteVirtualMemory [0xB742BB04] Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) FsRtlCheckLockForReadAccess Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) IoIsOperationSynchronous ---- Kernel code sections - GMER 1.0.14 ---- .text ntkrnlpa.exe!FsRtlCheckLockForReadAccess 804EAF74 5 Bytes JMP B744201C \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) .text ntkrnlpa.exe!IoIsOperationSynchronous 804EF902 5 Bytes JMP B74423D6 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter fre_wnet_x86/Kaspersky Lab) .text ntkrnlpa.exe!ZwCallbackReturn + 2FB8 80504844 12 Bytes [ C4, F2, 42, B7, F0, F3, 42, ... ] ---- User code sections - GMER 1.0.14 ---- .text C:\WINDOWS\Explorer.EXE[420] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\Explorer.EXE[420] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\Explorer.EXE[420] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\ctfmon.exe[612] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\ctfmon.exe[612] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 00CB5060 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 00CB4F90 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 00CB1860 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 00CB1230 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 00CB13C0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ D9, 88 ] .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 00CB4C30 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 00CB16D0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] USER32.dll!keybd_event 7E466783 5 Bytes JMP 00CB1550 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 00CB4960 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\Stardock\ObjectDock\ObjectDock.exe[656] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 00CB4AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\winlogon.exe[1036] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\winlogon.exe[1036] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\services.exe[1080] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\services.exe[1080] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\lsass.exe[1092] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\lsass.exe[1092] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\svchost.exe[1260] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1260] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\system32\svchost.exe[1320] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\system32\svchost.exe[1320] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\WINDOWS\System32\svchost.exe[1444] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\WINDOWS\System32\svchost.exe[1444] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\COMODO\Firewall\cmdagent.exe[1564] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] USER32.DLL!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] USER32.DLL!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] USER32.DLL!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] ole32.dll!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\DOCUME~1\Igor\LOCALS~1\Temp\Rar$EX00.828\gmer.exe[3404] ole32.dll!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] ntdll.dll!NtClose 7C90CFD0 5 Bytes JMP 10005060 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] ntdll.dll!LdrUnloadDll 7C91736B 5 Bytes JMP 10004F90 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] GDI32.dll!BitBlt 77F16F79 5 Bytes JMP 10001860 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] GDI32.dll!CreateDCA 77F1B7C2 5 Bytes JMP 10001230 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] GDI32.dll!CreateDCW 77F1BE28 2 Bytes JMP 100013C0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] GDI32.dll!CreateDCW + 3 77F1BE2B 2 Bytes [ 0E, 98 ] .text C:\Program Files\WinRAR\WinRAR.exe[3468] USER32.dll!EndTask 7E45A0A5 5 Bytes JMP 10004C30 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] USER32.dll!mouse_event 7E46673F 5 Bytes JMP 100016D0 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] USER32.dll!keybd_event 7E466783 5 Bytes JMP 10001550 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] OLE32.DLL!CoCreateInstanceEx 77500526 5 Bytes JMP 10004960 C:\WINDOWS\system32\guard32.dll .text C:\Program Files\WinRAR\WinRAR.exe[3468] OLE32.DLL!CoGetClassObject 775156C5 5 Bytes JMP 10004AD0 C:\WINDOWS\system32\guard32.dll ---- Kernel IAT/EAT - GMER 1.0.14 ---- IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisDeregisterProtocol] [BA61C990] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisDeregisterProtocol] [BA61C990] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisDeregisterProtocol] [BA61C990] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisDeregisterProtocol] [BA61C990] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] [BA0EEDF0] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisDeregisterProtocol] [BA61C990] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisRegisterProtocol] [BA61C950] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisOpenAdapter] [BA61C770] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisCloseAdapter] [BA61C710] inspect.sys (COMODO Firewall Pro Firewall Driver/COMODO) IAT \SystemRoot\system32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] [BA0EEDF0] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) ---- Devices - GMER 1.0.14 ---- AttachedDevice \Driver\Tcpip \Device\Ip cmdhlp.sys (COMODO Firewall Pro Helper Driver/COMODO) AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Tcp cmdhlp.sys (COMODO Firewall Pro Helper Driver/COMODO) AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Udp cmdhlp.sys (COMODO Firewall Pro Helper Driver/COMODO) AttachedDevice \Driver\Tcpip \Device\RawIp cmdhlp.sys (COMODO Firewall Pro Helper Driver/COMODO) AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- EOF - GMER 1.0.14 ---- Dopuna: 18 Sep 2008 0:54 Nego nesto da pitam, nije li do Comoda? pre njega sam imao ZA Pro...sve je radilo OK. Mozda se ne slaze sa KAV-om 2009? Dopuna: 18 Sep 2008 0:55 Ili jednostavno, dok pogasi njegove drajvere, servise, sta li vec?!

Profil

dr_Bora Poslao: 18 Sep 2008 16:48 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pa, kompjuter je definitivno čist. Uzrok usporavanja? Može biti bilo šta: AV/FW ili neki drugi program koji koristi servise/drivere. Ili nešto sasvim drugo... Nažalost, precizniji odgovor od ovoga ti ne mogu dati.

Profil

Rogi Poslao: 18 Sep 2008 18:44 Idi na vrh
offline Rogi Mod u pemziji Najbolji košarkaš koji je ikada igrao ovu igru Pridružio: 31 Avg 2005 Poruke: 11687	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Razmenio sam nekoliko infpormacija sa korisnicima Comoda. One je definitivno razlog sporog gasenja. Izvinjavam se na bespotrebnoj temi. Dopuna: 18 Sep 2008 18:44 Hvala.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Sporo se gasi Windows

Ko je trenutno na forumu

Ukupno su 895 korisnika na forumu :: 57 registrovanih, 9 sakrivenih i 829 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., alkatraz080, Boris BM, Brada i Gibanica, BraneS, branko7, Bubili, burevesnik, darios, Dimitrije Paunovic, Dorcolac, dragan_mig31, draganl, drejk, Dukelander, Ehinacea, ekozelj, Frunze, Georgius, Griffon vulture, ikan, Jethro, Joja, JOntra, kybonacci, ladro, laurusri, Leonov, Libertas, Lieutenant, ljuka988, MB120mm, mercedesamg, misa2, moldway, Neutral-M, nuke92, ObelixSRB, opt1, pceklic, perko91, raptorsi, Regrut Boskica, riva, Rocker, S-lash, S2M, SlaKoj, Sr.Stat., TheBeastOfMG, theNedjeljko, Trpe Grozni, vathra, VJ, zhuki8, zixmix, zlaya011

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by