Uspored racunar,posle nekoliko min. koriscenja bilo kakve ap

Uspored racunar,posle nekoliko min. koriscenja bilo kakve ap

offline
  • Pridružio: 10 Jul 2009
  • Poruke: 50
  • Gde živiš: Cacak

Ovako poslednjih 10tak dana komp mi je poceo opasno da baguje, na primer na fejsbuku sam 10tak minuta i odjednom pocne da koci i koci ja otvorim procese i ono odjednom mozzila mi kochi opasno, moram end proces pa opet da ga upalim i onda posle 5 minuta opet isto, znaci da skratim, komp je poceo pre 10tak dana da koci ne znam od cega, mozda je od necega sto sam skidao pa od nekog virusa, koristim avast, ali nista nije izbaco kao upozorenje, konekcija: adsl 1024 kbps, informacije: pocetak usporavanja tj. zauzimanja procesora bez razloga, odjednom svaka aplikacija prezauzme process..i pocinje kocenje


mycity.rs/must-login.png

OTL logfile created on: 2/3/2010 12:41:41 AM - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Users\Luka\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 54.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 66.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 127.99 Gb Total Space | 8.79 Gb Free Space | 6.86% Space Free | Partition Type: NTFS
Drive D: | 170.10 Gb Total Space | 33.48 Gb Free Space | 19.68% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LUKA-PC
Current User Name: Luka
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/02/03 00:37:02 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Users\Luka\Desktop\OTL.exe
PRC - [2010/01/11 15:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
PRC - [2010/01/06 18:48:07 | 000,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2009/11/25 00:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/11/25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/11/25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/08/17 00:32:00 | 000,239,648 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009/06/05 10:48:14 | 000,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\explorer.exe
PRC - [2009/04/10 18:30:40 | 001,435,488 | ---- | M] (Nullsoft) -- C:\Program Files (x86)\Winamp\winamp.exe
PRC - [2008/12/12 10:17:38 | 000,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
PRC - [2007/08/01 14:07:06 | 000,147,456 | ---- | M] () -- C:\Program Files (x86)\Razer\Diamondback 3G\razerhid.exe
PRC - [2007/08/01 13:42:30 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Razer\Diamondback 3G\razertra.exe
PRC - [2007/02/14 11:11:18 | 000,163,840 | ---- | M] (Razer Inc.) -- C:\Program Files (x86)\Razer\Diamondback 3G\razerofa.exe


========== Modules (SafeList) ==========

MOD - [2010/02/03 00:37:02 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Users\Luka\Desktop\OTL.exe
MOD - [2009/04/10 22:28:20 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009/11/25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV:64bit: - [2009/11/25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV:64bit: - [2009/11/25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV:64bit: - [2009/11/25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV:64bit: - [2009/09/25 02:26:26 | 001,142,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009/06/18 11:56:36 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009/04/10 23:11:28 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/04/10 23:11:16 | 000,604,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/04/10 23:11:06 | 001,149,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2008/01/18 23:06:52 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2008/01/18 23:00:54 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/18 23:00:18 | 000,689,152 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\fxssvc.exe -- (Fax)
SRV - [2009/08/17 00:32:00 | 000,239,648 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/06/15 19:53:19 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/06/05 10:48:14 | 000,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/03/29 20:39:56 | 000,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2008/12/12 10:17:38 | 000,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/10/25 10:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2007/12/14 10:46:28 | 000,047,624 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\GIGABYTE\GEST\GSvr.exe -- (GEST Service)
SRV - [2006/11/02 14:34:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2006/11/02 07:35:15 | 000,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006/11/02 07:35:15 | 000,055,846 | ---- | M] () [On_Demand | Running] -- C:\Windows\SysWOW64\wbem\vss.mof -- (VSS)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2009/11/25 00:50:25 | 000,089,680 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2009/11/25 00:50:05 | 000,022,096 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2009/11/25 00:49:56 | 000,065,616 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2009/11/25 00:49:10 | 000,053,840 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2009/11/25 00:49:00 | 000,027,216 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2009/09/01 15:29:56 | 000,157,712 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2009/06/05 10:42:38 | 000,048,640 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/05/21 14:40:06 | 000,103,272 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Tpkd.sys -- (Tpkd)
DRV:64bit: - [2009/04/10 23:15:32 | 000,160,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\fvevol.sys -- (fvevol)
DRV:64bit: - [2009/04/10 21:39:52 | 000,275,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV:64bit: - [2009/04/10 20:56:26 | 000,460,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/03/06 08:06:18 | 000,197,120 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2008/06/27 06:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV:64bit: - [2008/02/06 02:00:00 | 000,054,480 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2008/01/18 21:34:10 | 000,048,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\avc.sys -- (Avc)
DRV:64bit: - [2008/01/18 21:34:08 | 000,058,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\61883.sys -- (61883)
DRV:64bit: - [2008/01/18 21:34:06 | 000,061,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\msdv.sys -- (MSDV)
DRV:64bit: - [2006/10/05 03:13:38 | 000,585,216 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\athrx.sys -- (athr)
DRV:64bit: - [2006/09/18 22:27:40 | 000,049,024 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\fet5a64.sys -- (FET5A64)
DRV:64bit: - [2005/11/07 14:33:12 | 000,021,120 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DB3G.sys -- (Razerlow)
DRV - [2009/07/16 15:22:10 | 000,030,080 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS -- (HWiNFO32)
DRV - [2009/06/25 09:33:07 | 000,020,544 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2009/06/02 18:48:13 | 000,000,000 | ---D | M] [Kernel | System | Running] -- C:\Windows\CSC -- (CSC)
DRV - [2007/10/16 15:15:26 | 000,036,416 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\ET5Drv.sys -- (ET5Drv)
DRV - [2007/07/14 00:50:52 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2006/09/18 22:36:40 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = google.com/cse?cx=partner-pub-622273667.....rch&q={searchTerms}
IE - HKLM\..\URLSearchHook: {8e4ac621-5082-49a0-b0a4-150a1b32b998} - C:\Program Files (x86)\Professional_Website_Builder\tbPro0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = search.bearshare.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {8e4ac621-5082-49a0-b0a4-150a1b32b998} - C:\Program Files (x86)\Professional_Website_Builder\tbPro0.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/01/06 18:48:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/01/06 18:48:18 | 000,000,000 | ---D | M]

[2010/01/28 16:20:17 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2009/11/29 15:16:59 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2008/09/04 01:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npbittorrent.dll
[2009/07/18 00:02:48 | 000,002,476 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\BearShareWebSearch.xml

O1 HOSTS File: ([2009/06/18 11:51:42 | 000,002,141 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 17 more lines...
O2:64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files (x86)\BearShareTb\BearShareDx.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files (x86)\BearShare Applications\BearShare\BearShareIEHelper.dll ()
O2 - BHO: (Professional Website Builder Toolbar) - {8e4ac621-5082-49a0-b0a4-150a1b32b998} - C:\Program Files (x86)\Professional_Website_Builder\tbPro0.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files (x86)\BearShareTb\BearShareDx.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Professional Website Builder Toolbar) - {8e4ac621-5082-49a0-b0a4-150a1b32b998} - C:\Program Files (x86)\Professional_Website_Builder\tbPro0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (BS Player Toolbar) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Professional Website Builder Toolbar) - {8E4AC621-5082-49A0-B0A4-150A1B32B998} - C:\Program Files (x86)\Professional_Website_Builder\tbPro0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (BS Player Toolbar) - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [MSConfig] C:\Windows\SysNative\msconfig.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Diamondback] C:\Program Files (x86)\Razer\Diamondback 3G\razerhid.exe ()
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [H2O] C:\Program Files (x86)\SyncroSoft\Pos\H2O\cledx.exe (Team H2O)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [AdobeUpdater6] C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O8:64bit: - Extra context menu item: Add to AMV Converter... - C:\Program Files (x86)\MP3 Player Utilities 4.15\AMVConverter\grab.html ()
O8:64bit: - Extra context menu item: Add to Media Manager... - C:\Program Files (x86)\MP3 Player Utilities 4.15\MediaManager\grab.html ()
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files (x86)\MP3 Player Utilities 4.15\AMVConverter\grab.html ()
O8 - Extra context menu item: Add to Media Manager... - C:\Program Files (x86)\MP3 Player Utilities 4.15\MediaManager\grab.html ()
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18-)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18-)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18-)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (C:\WINDOWS\Config\csrss.exe) - C:\WINDOWS\Config\csrss.exe File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\AutoRun\command - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\explore\command - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\open\command - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\Shell\AutoRun\command - "" = F:\RECYCLER\autoexc.exe -- File not found
O33 - MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\Shell\open\command - "" = F:\RECYCLER\autoexc.exe -- File not found
O33 - MountPoints2\{8dd3a899-55a6-11de-b97a-001fd08480ff}\Shell - "" = AutoRun
O33 - MountPoints2\{8dd3a899-55a6-11de-b97a-001fd08480ff}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/02/02 16:50:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MajorShare
[2010/01/31 23:55:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steinberg
[2010/01/29 19:00:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steinberg
[2010/01/28 16:22:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/01/28 16:22:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/01/28 16:20:09 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/01/28 16:20:09 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/01/28 16:20:09 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/01/27 01:03:50 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010/01/23 05:11:00 | 003,104,256 | ---- | C] (Steinberg) -- C:\Windows\SysWow64\SYNSOEMU.DLL
[2010/01/21 23:24:00 | 000,000,000 | ---D | C] -- C:\System
[2010/01/21 23:24:00 | 000,000,000 | ---D | C] -- \System
[2010/01/21 23:06:22 | 000,000,000 | ---D | C] -- C:\SmartDraw 2010
[2010/01/21 23:06:22 | 000,000,000 | ---D | C] -- \SmartDraw 2010
[2010/01/20 00:09:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASIO4ALL v2
[2010/01/20 00:05:37 | 000,000,000 | ---D | C] -- C:\FL Studio 7
[2010/01/20 00:05:37 | 000,000,000 | ---D | C] -- \FL Studio 7
[2010/01/19 23:19:32 | 000,626,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr80.dll
[2010/01/19 23:19:32 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp80.dll
[2010/01/19 23:19:32 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcm80.dll
[2010/01/19 23:19:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyXOFT
[2010/01/16 12:10:05 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010/01/13 09:15:00 | 000,708,608 | ---- | C] (Antony_GR) -- C:\Windows\SysWow64\SYNSOACC.dll
[2010/01/09 02:33:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VoipRaider.com
[2010/01/04 22:47:09 | 000,000,000 | RHSD | C] -- C:\RECYCLER
[2010/01/04 22:47:09 | 000,000,000 | RHSD | C] -- \RECYCLER

========== Files - Modified Within 30 Days ==========

[2010/02/03 00:47:01 | 004,980,736 | -HS- | M] () -- C:\Users\Luka\ntuser.dat
[2010/02/03 00:09:14 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{EF4845BD-26F5-41A9-9F80-3DE288F477BE}.job
[2010/02/02 23:04:21 | 000,007,856 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/02/02 23:04:21 | 000,007,856 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/02/02 15:08:36 | 000,061,424 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010/02/02 15:04:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/01/31 23:57:04 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\Cubase 5.lnk
[2010/01/31 18:59:55 | 000,061,424 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010/01/29 20:20:33 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/01/29 20:20:15 | 2145,902,592 | -HS- | M] () -- C:\hiberfil.sys
[2010/01/29 17:29:54 | 003,028,680 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/01/29 17:28:26 | 405,080,268 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/01/27 21:29:45 | 000,524,288 | -HS- | M] () -- C:\Users\Luka\ntuser.dat{3009005e-b98e-11de-9278-00055d6029a0}.TMContainer00000000000000000001.regtrans-ms
[2010/01/27 21:29:45 | 000,065,536 | -HS- | M] () -- C:\Users\Luka\ntuser.dat{3009005e-b98e-11de-9278-00055d6029a0}.TM.blf
[2010/01/23 16:31:54 | 000,357,298 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/01/23 16:31:54 | 000,325,128 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/01/23 16:31:54 | 000,041,404 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/01/23 05:11:00 | 003,104,256 | ---- | M] (Steinberg) -- C:\Windows\SysWow64\SYNSOEMU.DLL
[2010/01/13 09:15:00 | 000,708,608 | ---- | M] (Antony_GR) -- C:\Windows\SysWow64\SYNSOACC.dll
[2010/01/09 03:02:09 | 000,001,072 | ---- | M] () -- C:\Users\Public\Desktop\Yahoo! Widget Engine.lnk

========== Files Created - No Company Name ==========

[2010/01/31 23:57:04 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\Cubase 5.lnk
[2010/01/27 01:03:43 | 405,080,268 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010/01/19 23:19:32 | 000,001,869 | ---- | C] () -- C:\Windows\SysWow64\Microsoft.VC80.CRT.manifest
[2010/01/09 03:02:09 | 000,001,072 | ---- | C] () -- C:\Users\Public\Desktop\Yahoo! Widget Engine.lnk
[2009/12/31 20:53:46 | 000,000,484 | ---- | C] () -- \dotakeys.ini
[2009/11/30 20:37:34 | 000,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2009/11/15 19:46:07 | 001,970,176 | ---- | C] () -- C:\Windows\SysWow64\d3dx9.dll
[2009/10/25 15:38:20 | 3248,210,344 | ---- | C] () -- \ssAdobe Premiere Pro CS4.rar
[2009/10/23 18:45:11 | 000,021,492 | ---- | C] () -- \funny_monkey.jpg
[2009/10/23 18:35:29 | 000,005,401 | ---- | C] () -- \google.jpg
[2009/09/23 23:46:04 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2009/07/28 17:58:58 | 000,061,424 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009/07/28 17:23:10 | 000,061,424 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009/07/26 12:42:12 | 000,371,202 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009/06/09 17:32:16 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/06/07 13:06:19 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/07 13:05:21 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009/06/05 13:03:42 | 000,221,200 | ---- | C] () -- C:\ProgramData\Grey Option Proxy.v1hwux6
[2009/06/05 13:02:55 | 000,233,488 | ---- | C] () -- C:\ProgramData\build browse browse.j85nkz
[2009/06/05 13:02:55 | 000,139,280 | ---- | C] () -- C:\ProgramData\build browse browse.7672e
[2009/06/04 13:01:19 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2009/06/02 19:45:45 | 000,333,257 | RHS- | C] () -- \bootmgr
[2009/06/02 19:45:45 | 000,008,192 | R-S- | C] () -- \BOOTSECT.BAK
[2009/06/02 18:51:54 | 2145,902,592 | -HS- | C] () --
[2009/06/02 18:46:50 | 2459,648,000 | -HS- | C] () --
[2009/06/02 10:06:36 | 000,000,473 | ---- | C] () -- \RHDSetup.log
[2009/06/02 10:06:36 | 000,000,237 | ---- | C] () -- \csb.log
[2009/06/02 09:59:55 | 000,000,122 | ---- | C] () -- \service.log
[2009/06/02 09:59:12 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009/06/02 09:54:55 | 000,171,136 | RHS- | C] () -- \grldr
[2009/05/30 01:37:40 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009/05/30 01:31:52 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2008/10/07 08:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008/10/07 08:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2008/09/12 15:21:02 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2007/09/04 11:56:10 | 000,164,352 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2007/02/05 19:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2006/03/06 09:41:02 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\AMV_DecDLL.dll
[2005/04/27 11:40:30 | 000,002,572 | ---- | C] () -- C:\Windows\WINDVDBOOTRECDOE.sys
[2004/09/16 12:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\SysWow64\drivers\ADFUUD.SYS
[2004/09/16 12:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\ADFUUD.SYS

========== Alternate Data Streams ==========

@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0A8E2C33
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:8E7C96FD
@Alternate Data Stream - 1323 bytes -> C:\ProgramData\Microsoft:G1RBcxeeoFRmV99JHEN5sw6Bk
@Alternate Data Stream - 1295 bytes -> C:\Program Files (x86)\Common Files\microsoft shared:3fQSmhxup6PRZi8S0QautKC
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:44807EFA
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:D97BA9A8
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:78CE0B72
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:18DB21EC
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:2AD56BE7
@Alternate Data Stream - 1123 bytes -> C:\ProgramData\Microsoft:vZlhLfTLUBnwf2g4LRX
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:08948D52
< End of report >

offline
  • diarno  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 15 Jun 2007
  • Poruke: 5572

Arrow Ponovo pokreni program OTL dvoklikom na ikonicu;

U beli okvir prozora gde piše Custom Scans/Fixes iskopirati sledeći tekst:

:OTL
O20 - HKLM Winlogon: Shell - (C:\WINDOWS\Config\csrss.exe) - C:\WINDOWS\Config\csrss.exe File not found
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\AutoRun\command  :arrow: - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\explore\command - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\Shell\open\command - "" = F:\sysusb\usbdur.exe -- File not found
O33 - MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\Shell\AutoRun\command - "" = F:\RECYCLER\autoexc.exe -- File not found
O33 - MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\Shell\open\command - "" = F:\RECYCLER\autoexc.exe -- File not found 
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0A8E2C33
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:8E7C96FD
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0A8E2C33
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:8E7C96FD
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:44807EFA
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:D97BA9A8
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:78CE0B72
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:18DB21EC
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:2AD56BE7
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:08948D52



Klikni taster Run Fix;


Log koji dobiješ iskopiraj ovde u poruci

Arrow
- Preuzmi USBNoRisk na Desktop i pokreni ga duplim klikom na ikonicu programa.
- Sacekaj koji sekund dok program izvrsi inicijalno skeniranje.
- Ubacuj sve USB memorijske uredjaje redom u USB slot i svaki zadrzi u slotu po 10 sekundi.
- Ukoliko imas vise uredjaja za proveru, onda na parcetu papira zapisi kojim redom su ubacivani jer ce nam kasnije trebati taj podatak
- Kada zavrsis sa svim uredjajima, klikni desno dugme misa na sred prozora programa i odaberi opciju Save log. To ce automatski otvoriti log u Notepadu. Iskopiraj nam taj log iz Notepada na forum.

Objasnjenje: U USB memorijske uredjaje spadaju svi oni uredjaji koji po prikljucivanju na kompjuter dobijaju svoju oznaku particije. Tu spadaju USB flash drajvovi, eksterni hard-diskovi, memorijske kartice, MP3 i MP4 plejeri, neki mobilni telefoni, neki GPS (navigacioni) uredjaji itd.

offline
  • Pridružio: 10 Jul 2009
  • Poruke: 50
  • Gde živiš: Cacak

Sa OTL-a

========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\WINDOWS\Config\csrss.exe deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ not found.
File F:\sysusb\usbdur.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ not found.
File F:\sysusb\usbdur.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0bb83247-6e6e-11de-89ec-00055d6029a0}\ not found.
File F:\sysusb\usbdur.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5051c0dd-7ce4-11de-b829-00055d6029a0}\ not found.
File F:\RECYCLER\autoexc.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5051c0dd-7ce4-11de-b829-00055d6029a0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5051c0dd-7ce4-11de-b829-00055d6029a0}\ not found.
File F:\RECYCLER\autoexc.exe not found.
ADS C:\ProgramData\TEMP:0A8E2C33 deleted successfully.
ADS C:\ProgramData\TEMP:8E7C96FD deleted successfully.
Unable to delete ADS C:\ProgramData\TEMP:0A8E2C33 .
Unable to delete ADS C:\ProgramData\TEMP:8E7C96FD .
ADS C:\ProgramData\TEMP:44807EFA deleted successfully.
ADS C:\ProgramData\TEMP:D97BA9A8 deleted successfully.
ADS C:\ProgramData\TEMP:78CE0B72 deleted successfully.
ADS C:\ProgramData\TEMP:18DB21EC deleted successfully.
ADS C:\ProgramData\TEMP:2AD56BE7 deleted successfully.
ADS C:\ProgramData\TEMP:08948D52 deleted successfully.
 
OTL by OldTimer - Version 3.1.27.1 log created on 02042010_182032


Sa USBNoRisk-a ( u pitanju je bio jedino telefon mobilni, nisam nijedan drugi usb uredjaj ubacivao )

USBNoRisk 2.5 (26 July 2009) by bobby

Started at 2/4/2010 6:23:01 PM

Searching for connected USB Mass storage...
----------------------------------------
========================================

Searching for other storage...
----------------------------------------
C:  {5628540e-4f9d-11de-93ba-806e6f6e6963}
D:  {5628540f-4f9d-11de-93ba-806e6f6e6963}
========================================


Scanning fixed storage...
----------------------------------------

No blocked files found on C:
No Autorun.inf files found on C:
No mountpoint found for C:
No mountpoint found for 5628540e-4f9d-11de-93ba-806e6f6e6963
No Desktop.ini files found on C:
----------------------------------------

No blocked files found on D:
No Autorun.inf files found on D:
No mountpoint found for D:
No mountpoint found for 5628540f-4f9d-11de-93ba-806e6f6e6963
No Desktop.ini files found on D:
----------------------------------------

========================================
Initial scan finished!
========================================


[b]New device connected at[/b] 2/4/2010 6:23:14 PM

Scanning for connected USB mass storage...
----------------------------------------
F:  {cbf5f4db-5272-11de-a342-001fd08480ff}
Added F:
========================================

Scanning USB mass storage for files...
----------------------------------------
No blocked files found on F:
----------------------------------------
No Autorun.inf files found on F:
Sanitized mountpoint for cbf5f4db-5272-11de-a342-001fd08480ff
----------------------------------------

No Desktop.ini files found on F:
----------------------------------------

No mimics found on drive F:
========================================

Ko je trenutno na forumu
 

Ukupno su 452 korisnika na forumu :: 16 registrovanih, 2 sakrivenih i 434 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: djboj, Fisherman, Georgius, GrobarRomanticar, ikan, ILGromovnik, indja, Lieutenant, Misirac, Mixelotti, Pohovani_00, raketaš, ssekir75, Toni, Trpe Grozni, 223223