MyCity » Ambulanta -> Arhiva Ambulante » Virusi

Virusi

Napisano na dan: 23.1.2009

Strana:
1
2

Virusi

Sledeća strana

Pagination

Odgovori

Strana:
1
2

deepy Poslao: 23 Jan 2009 16:02 Idi na vrh
offline deepy Građanin Pridružio: 28 Jun 2008 Poruke: 61	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U zadnje vrijeme pc mi je spor i same od sebe se otvaraju neke stranice na Internetu. Molim pomoć. Ispod ubacujem log file. Logfile of HijackThis v1.99.1 Scan saved at 15:59:22, on 23.1.2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE \?\C:\WINDOWS\system32\WBEM\WMIADAP.EXE C:\Documents and Settings\Hum\My Documents\HijackThis_v1.99.1.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: {edf8797c-c2bf-8c7b-6944-8205487cba22} - {22abc784-5028-4496-b7c8-fb2cc7978fde} - C:\WINDOWS\system32\lklokz.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {d11a0aa8-d5c2-477b-8dde-a4b8c312178b} - C:\WINDOWS\system32\wuyeligo.dll O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.en-us.en-gb\msntb.dll O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [54940d82] rundll32.exe "C:\WINDOWS\system32\lahuyano.dll",b O4 - HKLM\..\Run: [CPM57a73e1e] Rundll32.exe "c:\windows\system32\tutepega.dll",a O4 - HKLM\..\Run: [nugelizogu] Rundll32.exe "C:\WINDOWS\system32\sizugomu.dll",s O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: I&zvoz u Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Istraživanje - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - update.microsoft.com/windowsupdate/v6/V.....7007377812 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: lklokz.dll c:\windows\system32\tutepega.dll,C:\WINDOWS\system32\tebudati.dll O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\tutepega.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe" /service (file missing) O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing) O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe" /service (file missing) O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe" /service (file missing)

Profil

helen1 Poslao: 23 Jan 2009 16:03 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nisi ispostovao uputstvo sa ovog linka: http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html uradi kako se ovde kaze.

Profil

deepy Poslao: 23 Jan 2009 16:34 Idi na vrh
offline deepy Građanin Pridružio: 28 Jun 2008 Poruke: 61	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:32:00, on 23.1.2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\Documents and Settings\Hum\Desktop\Nova mapa\TR3.EXE.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: {edf8797c-c2bf-8c7b-6944-8205487cba22} - {22abc784-5028-4496-b7c8-fb2cc7978fde} - C:\WINDOWS\system32\lklokz.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {d11a0aa8-d5c2-477b-8dde-a4b8c312178b} - C:\WINDOWS\system32\wuyeligo.dll O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.en-us.en-gb\msntb.dll O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing) O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [54940d82] rundll32.exe "C:\WINDOWS\system32\lahuyano.dll",b O4 - HKLM\..\Run: [CPM57a73e1e] Rundll32.exe "c:\windows\system32\tutepega.dll",a O4 - HKLM\..\Run: [nugelizogu] Rundll32.exe "C:\WINDOWS\system32\sizugomu.dll",s O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - HKUS\S-1-5-20\..\Run: [nugelizogu] Rundll32.exe "C:\WINDOWS\system32\sizugomu.dll",s (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: I&zvoz u Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Istraživanje - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - update.microsoft.com/windowsupdate/v6/V.....7007377812 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: lklokz.dll c:\windows\system32\tutepega.dll,C:\WINDOWS\system32\tebudati.dll O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\tutepega.dll O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\tutepega.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing) O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe -- End of file - 7482 bytes

Profil

helen1 Poslao: 23 Jan 2009 16:41 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Klikni desnim tasterom miša na BitDefender ikonicu ( ) u donjem, desnom uglu ekrana i izaberi Show. Nakon toga, takođe, u donjem, desnom uglu prozora izaberi Settings. Zatim odštikliraj Real-Time potection is enabled, i u padajućem meniju izaberi Permanently i klikni OK. Napomena: Ne zaboravi da uključiš ovu opciju po završetku čišćenja. --------------------------- Skini ComboFix sa jedne od sledecih adresa na Desktop: http://download.bleepingcomputer.com/sUBs/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe Startuj ga i ne diraj prozor programa dok skenira. Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Profil

deepy Poslao: 23 Jan 2009 17:23 Idi na vrh
offline deepy Građanin Pridružio: 28 Jun 2008 Poruke: 61	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 09-01-15.01 - Hum 2009-01-23 17:02:01.9 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.3062.2467 [GMT 1:00] Running from: c:\documents and settings\Hum\Desktop\ComboFix.exe AV: Bitdefender Antivirus On-access scanning disabled (Outdated) FW: Bitdefender Firewall enabled WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat c:\windows\system32\akiditev.ini c:\windows\system32\doguzeri.dll c:\windows\system32\lahuyano.dll c:\windows\system32\lklokz.dll c:\windows\system32\monelare.dll c:\windows\system32\onayuhal.ini c:\windows\system32\otkssl.dll c:\windows\system32\ozumomir.ini c:\windows\system32\rimomuzo.dll c:\windows\system32\sizugomu.dll c:\windows\system32\tebudati.dll c:\windows\system32\tutepega.dll c:\windows\system32\vetidika.dll c:\windows\system32\vumefesa.dll c:\windows\system32\wuyeligo.dll c:\windows\system32\yufarugo.dll c:\windows\system32\zidewomi.dll c:\windows\system32\zjoenf.dll ----- BITS: Possible infected sites ----- hxxp://childhe.com . ((((((((((((((((((((((((( Files Created from 2008-12-23 to 2009-01-23 ))))))))))))))))))))))))))))))) . 2009-01-15 23:41 . 2009-01-15 23:41 46,592 --a------ c:\windows\system32\hgGxXOih.dll 2009-01-10 17:20 . 2009-01-14 11:49 <DIR> d-------- c:\documents and settings\Hum\Application Data\MegauploadToolbar 2009-01-10 17:20 . 2009-01-10 17:20 <DIR> d-------- c:\documents and settings\Hum\Application Data\EmailNotifier 2009-01-10 17:20 . 2009-01-10 17:20 <DIR> d-------- c:\documents and settings\All Users\Application Data\Megaupload 2009-01-10 17:20 . 2009-01-10 17:20 <DIR> d-------- c:\documents and settings\All Users\Application Data\EmailNotifier 2009-01-10 13:18 . 2009-01-10 13:18 268 --ah----- C:\sqmdata00.sqm 2009-01-10 13:18 . 2009-01-10 13:18 244 --ah----- C:\sqmnoopt00.sqm 2009-01-09 00:51 . 2009-01-09 00:51 <DIR> d-------- c:\program files\Radical Games . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-01-16 13:23 --------- d-----w c:\program files\Google 2009-01-16 13:20 --------- d-----w c:\program files\EA SPORTS 2009-01-08 23:50 --------- d-----w c:\program files\Common Files\InstallShield 2008-12-20 11:55 --------- d-----w c:\program files\Applications 2008-12-20 11:11 --------- d--h--w c:\program files\InstallShield Installation Information 2008-12-20 11:04 --------- d-----w c:\program files\Winamp 2008-12-07 17:13 --------- d-----w c:\documents and settings\Hum\Application Data\BSplayer PRO 2008-12-04 16:16 --------- d-----w c:\documents and settings\Hum\Application Data\Winamp 2008-12-04 16:13 --------- d-----w c:\documents and settings\All Users\Application Data\Winamp Toolbar 2008-12-01 20:59 --------- d-----w c:\documents and settings\Hum\Application Data\Skype 2008-12-01 20:58 --------- d-----w c:\documents and settings\Hum\Application Data\skypePM 2008-11-26 17:52 --------- d-----w c:\program files\Windows Media Connect 2 2008-11-26 17:20 --------- d-----w c:\documents and settings\Hum\Application Data\Media Player Classic 2008-07-25 08:00 32 ----a-w c:\documents and settings\All Users\Application Data\ezsid.dat . ((((((((((((((((((((((((((((( snapshot_2009-01-16_13.49.41.70 ))))))))))))))))))))))))))))))))))))))))) . - 2009-01-16 12:46:09 81,984 ----a-w c:\windows\system32\bdod.bin + 2009-01-23 16:04:19 81,984 ----a-w c:\windows\system32\bdod.bin - 2009-01-15 22:41:57 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat + 2009-01-19 18:03:11 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat - 2009-01-15 22:41:57 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat + 2009-01-19 18:03:11 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat - 2009-01-15 22:41:57 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat + 2009-01-19 18:03:11 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat - 2009-01-15 21:57:39 66,710 ----a-w c:\windows\system32\perfc009.dat + 2009-01-23 14:54:45 67,554 ----a-w c:\windows\system32\perfc009.dat - 2009-01-15 21:57:39 427,926 ----a-w c:\windows\system32\perfh009.dat + 2009-01-23 14:54:45 430,830 ----a-w c:\windows\system32\perfh009.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184] "AdobeUpdater"="c:\program files\Common Files\Adobe\Updater5\AdobeUpdater.exe" [2008-07-26 2321600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-04 36352] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\Hum\Start Menu\Programs\Startup\ Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664] c:\documents and settings\All Users\Start Menu\Programs\Startup\ Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048] Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-22 734872] Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-04-01 568176] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.l3fhg"= mp3fhg.acm "msacm.divxa32"= divxa32.acm "VIDC.X264"= x264vfw.dll "VIDC.HFYU"= huffyuv.dll "vidc.i263"= i263_32.drv [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 nwprovau Notification Packages REG_MULTI_SZ scecli c:\windows\system32\tebudati.dll [HKEY_LOCAL_MACHINE\software\microsoft\security center] "UpdatesDisableNotify"=dword:00000001 "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Sports Interactive\\Football Manager 2008\\fm.exe"= "c:\\Program Files\\VoipCheapCom\\VoipCheapCom.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "c:\\Program Files\\Sports Interactive\\Football Manager 2009\\fm.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\BitDefender\\BitDefender 2008\\vsserv.exe"= "c:\\Program Files\\WIDCOMM\\Bluetooth Software\\BTStackServer.exe"= R0 iastor78;iastor78;c:\windows\system32\drivers\iastor78.sys [2008-06-08 308248] R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2008-06-02 86792] S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service;c:\program files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bdx REG_MULTI_SZ scan . Contents of the 'Scheduled Tasks' folder 2009-01-23 c:\windows\Tasks\bewqpjkt.job - c:\windows\system32\rundll32.exe [2008-04-14 04:42] . - - - - ORPHANS REMOVED - - - - URLSearchHooks-{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - c:\program files\Winamp Toolbar\winamptb.dll BHO-{22abc784-5028-4496-b7c8-fb2cc7978fde} - c:\windows\system32\lklokz.dll BHO-{d11a0aa8-d5c2-477b-8dde-a4b8c312178b} - c:\windows\system32\wuyeligo.dll . ------- Supplementary Scan ------- . uStart Page = about:blank uSearchMigratedDefaultURL = hxxp://windiwsfsearch.com/search?q={searchTerms} mSearchMigratedDefaultURL = hxxp://windiwsfsearch.com/search?q={searchTerms} uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Winamp Search - c:\documents and settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html IE: I&zvoz u Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm FF - ProfilePath - c:\documents and settings\Hum\Application Data\Mozilla\Firefox\Profiles\6yd6ihjy.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=utf-8&fr=megaup&p= FF - component: c:\documents and settings\Hum\Application Data\Mozilla\Firefox\Profiles\6yd6ihjy.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components\WinampTBPlayer.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll . ************************************************************************ catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2009-01-23 17:05:56 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-73586283-2139871995-1801674531-1003\Software\Genie"!\FM Genie Scout 2008] "GameDir"="c:\\Documents and Settings\\Hum\\My Documents\\Sports Interactive\\Football Manager 2008\\games" "ShortlistDir"="c:\\Documents and Settings\\Hum\\My Documents\\Sports Interactive\\Football Manager 2008\\shortlists" "ScreenshotsDir"="c:\\Documents and Settings\\Hum\\My Documents\\Sports Interactive\\Football Manager 2008" "SaveDir"="c:\\Documents and Settings\\Hum\\My Documents\\Sports Interactive\\Football Manager 2008\\" "HistoryDir"="c:\\Documents and Settings\\Hum\\Desktop\\FM Genie Scout 2008\\History Points" "LangDB"="c:\\Program Files\\Sports Interactive\\Football Manager 2008\\data\\updates\\update-802\\db\\802\\lang_db.dat" "LastSaveGame"="c:\\Documents and Settings\\Hum\\My Documents\\Sports Interactive\\Football Manager 2008\\games\\maribor.fm" "Language"="English" "LoadLangDB"=dword:00000001 "CompressHistoryPoints"=dword:00000000 "HighlightedAttributes"=dword:00000000 "MinCondition"=dword:00000050 "SkinID"=dword:00000001 "LastUpdateCheck"=dword:00000000 "HighQualityGUI"=dword:00000001 "AutomaticallyUpdateCheck"=dword:00000001 "AdvancedGeneration"=dword:00000000 "TranslateStaffSkills"=dword:00000001 "TranslatePlayerSkills"=dword:00000001 "TranslatePositions"=dword:00000001 "ShowHistory"=dword:00000001 "WindowState"=dword:00000002 "WindowHeight"=dword:000002e0 "WindowWidth"=dword:000003fe "WindowLeft"=dword:00000081 "WindowTop"=dword:00000020 "UseProxy"=dword:00000000 "ProxyHost"="" "ProxyPort"="" "UseAuthentication"=dword:00000000 "UserName"="" "UserPassword"="" "Currency"=dword:00000056 [HKEY_USERS\S-1-5-21-73586283-2139871995-1801674531-1003\Software\Genie"!\FM Genie Scout 2008\Columns\Clubs] "Position0"=dword:00000000 "Visible0"=dword:00000001 "Width0"=dword:0000007d "Position1"=dword:00000001 "Visible1"=dword:00000001 "Width1"=dword:00000064 "Position2"=dword:00000002 "Visible2"=dword:00000001 "Width2"=dword:00000064 "Position3"=dword:00000003 "Visible3"=dword:00000001 "Width3"=dword:00000032 "Position4"=dword:00000004 "Visible4"=dword:00000001 "Width4"=dword:00000032 "Position5"=dword:00000005 "Visible5"=dword:00000001 "Width5"=dword:00000050 "Position6"=dword:00000006 "Visible6"=dword:00000001 "Width6"=dword:00000050 "Position7"=dword:00000007 "Visible7"=dword:00000001 "Width7"=dword:00000050 "Position8"=dword:00000008 "Visible8"=dword:00000000 "Width8"=dword:00000050 "Position9"=dword:00000009 "Visible9"=dword:00000000 "Width9"=dword:0000002d "Position10"=dword:0000000a "Visible10"=dword:00000000 "Width10"=dword:0000001e "Position11"=dword:0000000b "Visible11"=dword:00000000 "Width11"=dword:0000001e "Position12"=dword:0000000c "Visible12"=dword:00000000 "Width12"=dword:0000001e "Position13"=dword:0000000d "Visible13"=dword:00000001 "Width13"=dword:0000003c "Position14"=dword:0000000e "Visible14"=dword:00000000 "Width14"=dword:00000032 "Position15"=dword:0000000f "Visible15"=dword:00000000 "Width15"=dword:00000032 "Position16"=dword:00000010 "Visible16"=dword:00000000 "Width16"=dword:00000032 "Position17"=dword:00000011 "Visible17"=dword:00000001 "Width17"=dword:00000050 "Position18"=dword:00000012 "Visible18"=dword:00000001 "Width18"=dword:00000050 "Position19"=dword:00000013 "Visible19"=dword:00000000 "Width19"=dword:00000050 [HKEY_USERS\S-1-5-21-73586283-2139871995-1801674531-1003\Software\Genie"!\FM Genie Scout 2008\Columns\Players] "Position0"=dword:00000000 "Visible0"=dword:00000001 "Width0"=dword:0000007d "Position1"=dword:00000001 "Visible1"=dword:00000001 "Width1"=dword:00000064 "Position2"=dword:00000002 "Visible2"=dword:00000001 "Width2"=dword:00000064 "Position3"=dword:00000003 "Visible3"=dword:00000001 "Width3"=dword:00000037 "Position4"=dword:00000008 "Visible4"=dword:00000001 "Width4"=dword:00000023 "Position5"=dword:00000009 "Visible5"=dword:00000001 "Width5"=dword:00000028 "Position6"=dword:0000000a "Visible6"=dword:00000001 "Width6"=dword:00000024 "Position7"=dword:0000000c "Visible7"=dword:00000001 "Width7"=dword:0000004b "Position8"=dword:0000000d "Visible8"=dword:00000001 "Width8"=dword:0000004b "Position9"=dword:0000000e "Visible9"=dword:00000001 "Width9"=dword:00000050 "Position10"=dword:00000010 "Visible10"=dword:00000000 "Width10"=dword:00000050 "Position11"=dword:00000011 "Visible11"=dword:00000000 "Width11"=dword:0000004b "Position12"=dword:00000012 "Visible12"=dword:00000000 "Width12"=dword:0000002d "Position13"=dword:00000013 "Visible13"=dword:00000000 "Width13"=dword:0000003c "Position14"=dword:00000014 "Visible14"=dword:00000000 "Width14"=dword:0000004b "Position15"=dword:00000015 "Visible15"=dword:00000000 "Width15"=dword:00000064 "Position16"=dword:00000016 "Visible16"=dword:00000000 "Width16"=dword:00000064 "Position17"=dword:00000017 "Visible17"=dword:00000000 "Width17"=dword:0000004b "Position18"=dword:00000018 "Visible18"=dword:00000000 "Width18"=dword:00000064 "Position19"=dword:00000019 "Visible19"=dword:00000000 "Width19"=dword:0000003c "Position20"=dword:0000001a "Visible20"=dword:00000000 "Width20"=dword:0000004b "Position21"=dword:0000001b "Visible21"=dword:00000000 "Width21"=dword:00000050 "Position22"=dword:0000001c "Visible22"=dword:00000000 "Width22"=dword:00000073 "Position23"=dword:0000001d "Visible23"=dword:00000000 "Width23"=dword:00000050 "Position24"=dword:0000001e "Visible24"=dword:00000000 "Width24"=dword:0000005a "Position25"=dword:0000001f "Visible25"=dword:00000000 "Width25"=dword:0000006e "Position26"=dword:00000020 "Visible26"=dword:00000000 "Width26"=dword:00000064 "Position27"=dword:00000021 "Visible27"=dword:00000000 "Width27"=dword:00000087 "Position28"=dword:00000022 "Visible28"=dword:00000000 "Width28"=dword:00000064 "Position29"=dword:00000023 "Visible29"=dword:00000000 "Width29"=dword:00000064 "Position30"=dword:00000024 "Visible30"=dword:00000000 "Width30"=dword:00000046 "Position31"=dword:00000025 "Visible31"=dword:00000000 "Width31"=dword:0000004b "Position32"=dword:00000026 "Visible32"=dword:00000000 "Width32"=dword:00000046 "Position33"=dword:00000027 "Visible33"=dword:00000000 "Width33"=dword:0000004b "Position34"=dword:00000028 "Visible34"=dword:00000000 "Width34"=dword:0000003c "Position35"=dword:0000002a "Visible35"=dword:00000000 "Width35"=dword:00000064 "Position36"=dword:0000002e "Visible36"=dword:00000000 "Width36"=dword:00000073 "Position37"=dword:00000030 "Visible37"=dword:00000000 "Width37"=dword:0000005f "Position38"=dword:00000033 "Visible38"=dword:00000000 "Width38"=dword:00000091 "Position39"=dword:00000035 "Visible39"=dword:00000000 "Width39"=dword:0000003c "Position40"=dword:0000002c "Visible40"=dword:00000000 "Width40"=dword:0000005a "Position41"=dword:00000036 "Visible41"=dword:00000000 "Width41"=dword:00000041 "Position42"=dword:00000029 "Visible42"=dword:00000000 "Width42"=dword:00000050 "Position43"=dword:0000002b "Visible43"=dword:00000000 "Width43"=dword:00000055 "Position44"=dword:0000002d "Visible44"=dword:00000000 "Width44"=dword:0000005f "Position45"=dword:00000037 "Visible45"=dword:00000000 "Width45"=dword:00000050 "Position46"=dword:00000038 "Visible46"=dword:00000000 "Width46"=dword:0000004b "Position47"=dword:00000039 "Visible47"=dword:00000000 "Width47"=dword:0000004b "Position48"=dword:0000003a "Visible48"=dword:00000000 "Width48"=dword:00000046 "Position49"=dword:0000003b "Visible49"=dword:00000000 "Width49"=dword:00000032 "Position50"=dword:0000003c "Visible50"=dword:00000000 "Width50"=dword:0000003c "Position51"=dword:0000003d "Visible51"=dword:00000000 "Width51"=dword:0000004b "Position52"=dword:0000003e "Visible52"=dword:00000000 "Width52"=dword:0000003c "Position53"=dword:0000003f "Visible53"=dword:00000000 "Width53"=dword:00000037 "Position54"=dword:00000040 "Visible54"=dword:00000000 "Width54"=dword:00000069 "Position55"=dword:00000041 "Visible55"=dword:00000000 "Width55"=dword:0000005a "Position56"=dword:00000044 "Visible56"=dword:00000000 "Width56"=dword:0000004b "Position57"=dword:00000045 "Visible57"=dword:00000000 "Width57"=dword:0000004b "Position58"=dword:00000046 "Visible58"=dword:00000000 "Width58"=dword:00000037 "Position59"=dword:00000047 "Visible59"=dword:00000000 "Width59"=dword:0000003c "Position60"=dword:00000048 "Visible60"=dword:00000000 "Width60"=dword:0000003c "Position61"=dword:00000049 "Visible61"=dword:00000000 "Width61"=dword:00000041 "Position62"=dword:0000004a "Visible62"=dword:00000000 "Width62"=dword:00000055 "Position63"=dword:0000004b "Visible63"=dword:00000000 "Width63"=dword:0000003c "Position64"=dword:0000004c "Visible64"=dword:00000000 "Width64"=dword:0000003c "Position65"=dword:0000004d "Visible65"=dword:00000000 "Width65"=dword:0000004b "Position66"=dword:0000004e "Visible66"=dword:00000000 "Width66"=dword:0000003c "Position67"=dword:0000004f "Visible67"=dword:00000000 "Width67"=dword:00000046 "Position68"=dword:00000050 "Visible68"=dword:00000000 "Width68"=dword:00000028 "Position69"=dword:00000051 "Visible69"=dword:00000000 "Width69"=dword:00000041 "Position70"=dword:00000052 "Visible70"=dword:00000000 "Width70"=dword:0000003c "Position71"=dword:00000053 "Visible71"=dword:00000000 "Width71"=dword:00000069 "Position72"=dword:00000054 "Visible72"=dword:00000000 "Width72"=dword:00000041 "Position73"=dword:00000055 "Visible73"=dword:00000000 "Width73"=dword:0000005f "Position74"=dword:00000056 "Visible74"=dword:00000000 "Width74"=dword:0000003c "Position75"=dword:00000057 "Visible75"=dword:00000000 "Width75"=dword:00000037 "Position76"=dword:00000058 "Visible76"=dword:00000000 "Width76"=dword:0000004b "Position77"=dword:00000059 "Visible77"=dword:00000000 "Width77"=dword:00000050 "Position78"=dword:0000005a "Visible78"=dword:00000000 "Width78"=dword:00000037 "Position79"=dword:0000005b "Visible79"=dword:00000000 "Width79"=dword:00000037 "Position80"=dword:0000005c "Visible80"=dword:00000000 "Width80"=dword:0000005a "Position81"=dword:0000005d "Visible81"=dword:00000000 "Width81"=dword:0000004b "Position82"=dword:0000005e "Visible82"=dword:00000000 "Width82"=dword:00000055 "Position83"=dword:0000005f "Visible83"=dword:00000000 "Width83"=dword:0000002d "Position84"=dword:00000060 "Visible84"=dword:00000000 "Width84"=dword:00000037 "Position85"=dword:00000061 "Visible85"=dword:00000000 "Width85"=dword:0000003c "Position86"=dword:00000062 "Visible86"=dword:00000000 "Width86"=dword:00000046 "Position87"=dword:00000063 "Visible87"=dword:00000000 "Width87"=dword:0000003c "Position88"=dword:00000064 "Visible88"=dword:00000000 "Width88"=dword:0000005a "Position89"=dword:00000065 "Visible89"=dword:00000000 "Width89"=dword:0000003c "Position90"=dword:00000066 "Visible90"=dword:00000000 "Width90"=dword:00000050 "Position91"=dword:00000067 "Visible91"=dword:00000000 "Width91"=dword:00000046 "Position92"=dword:00000068 "Visible92"=dword:00000000 "Width92"=dword:0000005a "Position93"=dword:00000069 "Visible93"=dword:00000000 "Width93"=dword:00000037 "Position94"=dword:0000006a "Visible94"=dword:00000000 "Width94"=dword:0000003c "Position95"=dword:0000006b "Visible95"=dword:00000000 "Width95"=dword:0000003c "Position96"=dword:0000006c "Visible96"=dword:00000000 "Width96"=dword:00000046 "Position97"=dword:0000006d "Visible97"=dword:00000000 "Width97"=dword:00000046 "Position98"=dword:0000006e "Visible98"=dword:00000000 "Width98"=dword:00000055 "Position99"=dword:0000006f "Visible99"=dword:00000000 "Width99"=dword:00000073 "Position100"=dword:00000042 "Visible100"=dword:00000000 "Width100"=dword:00000041 "Position101"=dword:00000070 "Visible101"=dword:00000000 "Width101"=dword:0000003c "Position102"=dword:00000071 "Visible102"=dword:00000000 "Width102"=dword:0000003c "Position103"=dword:00000072 "Visible103"=dword:00000000 "Width103"=dword:00000046 "Position104"=dword:00000073 "Visible104"=dword:00000000 "Width104"=dword:0000003c "Position105"=dword:00000074 "Visible105"=dword:00000000 "Width105"=dword:00000041 "Position106"=dword:0000000f "Visible106"=dword:00000001 "Width106"=dword:00000050 "Position107"=dword:0000000b "Visible107"=dword:00000001 "Width107"=dword:0000000e "Position108"=dword:00000043 "Visible108"=dword:00000000 "Width108"=dword:00000050 "Position109"=dword:0000002f "Visible109"=dword:00000000 "Width109"=dword:00000050 "Position110"=dword:00000031 "Visible110"=dword:00000000 "Width110"=dword:00000055 "Position111"=dword:00000032 "Visible111"=dword:00000000 "Width111"=dword:00000082 "Position112"=dword:00000034 "Visible112"=dword:00000000 "Width112"=dword:00000087 "Position113"=dword:00000075 "Visible113"=dword:00000000 "Width113"=dword:00000050 "Position114"=dword:00000076 "Visible114"=dword:00000000 "Width114"=dword:00000050 "Position115"=dword:00000077 "Visible115"=dword:00000000 "Width115"=dword:00000050 "Position116"=dword:00000078 "Visible116"=dword:00000000 "Width116"=dword:00000050 "Position117"=dword:00000079 "Visible117"=dword:00000000 "Width117"=dword:00000050 "Position118"=dword:0000007a "Visible118"=dword:00000000 "Width118"=dword:00000050 "Position119"=dword:0000007b "Visible119"=dword:00000000 "Width119"=dword:00000050 "Position120"=dword:0000007c "Visible120"=dword:00000000 "Width120"=dword:00000050 "Position121"=dword:0000007d "Visible121"=dword:00000000 "Width121"=dword:00000050 "Position122"=dword:0000007e "Visible122"=dword:00000000 "Width122"=dword:00000050 "Position123"=dword:0000007f "Visible123"=dword:00000000 "Width123"=dword:00000050 "Position124"=dword:00000080 "Visible124"=dword:00000000 "Width124"=dword:00000050 "Position125"=dword:00000081 "Visible125"=dword:00000000 "Width125"=dword:00000050 "Position126"=dword:00000082 "Visible126"=dword:00000000 "Width126"=dword:00000050 "Position127"=dword:00000083 "Visible127"=dword:00000000 "Width127"=dword:00000050 "Position128"=dword:00000084 "Visible128"=dword:00000000 "Width128"=dword:00000050 "Position129"=dword:00000085 "Visible129"=dword:00000000 "Width129"=dword:00000050 "Position130"=dword:00000086 "Visible130"=dword:00000000 "Width130"=dword:00000050 "Position131"=dword:00000087 "Visible131"=dword:00000000 "Width131"=dword:00000050 "Position132"=dword:00000088 "Visible132"=dword:00000000 "Width132"=dword:00000050 "Position133"=dword:00000089 "Visible133"=dword:00000000 "Width133"=dword:00000050 "Position134"=dword:0000008a "Visible134"=dword:00000000 "Width134"=dword:00000050 "Position135"=dword:0000008b "Visible135"=dword:00000000 "Width135"=dword:00000050 "Position136"=dword:0000008c "Visible136"=dword:00000000 "Width136"=dword:00000050 "Position137"=dword:0000008d "Visible137"=dword:00000000 "Width137"=dword:00000050 "Position138"=dword:0000008e "Visible138"=dword:00000000 "Width138"=dword:00000050 "Position139"=dword:0000008f "Visible139"=dword:00000000 "Width139"=dword:00000050 "Position140"=dword:00000090 "Visible140"=dword:00000000 "Width140"=dword:00000050 "Position141"=dword:00000091 "Visible141"=dword:00000000 "Width141"=dword:00000050 "Position142"=dword:00000092 "Visible142"=dword:00000000 "Width142"=dword:00000050 "Position143"=dword:00000093 "Visible143"=dword:00000000 "Width143"=dword:00000050 "Position144"=dword:00000094 "Visible144"=dword:00000000 "Width144"=dword:00000050 "Position145"=dword:00000095 "Visible145"=dword:00000000 "Width145"=dword:00000050 "Position146"=dword:00000004 "Visible146"=dword:00000000 "Width146"=dword:00000037 "Position147"=dword:00000005 "Visible147"=dword:00000000 "Width147"=dword:00000028 "Position148"=dword:00000006 "Visible148"=dword:00000000 "Width148"=dword:00000037 "Position149"=dword:00000007 "Visible149"=dword:00000001 "Width149"=dword:00000028 [HKEY_USERS\S-1-5-21-73586283-2139871995-1801674531-1003\Software\Genie"!\FM Genie Scout 2008\Columns\Staff] "Position0"=dword:00000000 "Visible0"=dword:00000001 "Width0"=dword:0000007d "Position1"=dword:00000001 "Visible1"=dword:00000001 "Width1"=dword:00000064 "Position2"=dword:00000002 "Visible2"=dword:00000001 "Width2"=dword:00000064 "Position3"=dword:00000003 "Visible3"=dword:00000001 "Width3"=dword:00000069 "Position4"=dword:00000005 "Visible4"=dword:00000001 "Width4"=dword:00000028 "Position5"=dword:00000006 "Visible5"=dword:00000001 "Width5"=dword:00000028 "Position6"=dword:00000004 "Visible6"=dword:00000001 "Width6"=dword:00000028 "Position7"=dword:00000007 "Visible7"=dword:00000001 "Width7"=dword:00000050 "Position8"=dword:00000008 "Visible8"=dword:00000000 "Width8"=dword:00000050 "Position9"=dword:00000009 "Visible9"=dword:00000000 "Width9"=dword:0000004b "Position10"=dword:0000000a "Visible10"=dword:00000000 "Width10"=dword:0000002d "Position11"=dword:0000000b "Visible11"=dword:00000000 "Width11"=dword:0000003c "Position12"=dword:0000000c "Visible12"=dword:00000000 "Width12"=dword:0000004b "Position13"=dword:0000000d "Visible13"=dword:00000000 "Width13"=dword:00000064 "Position14"=dword:0000000e "Visible14"=dword:00000000 "Width14"=dword:00000064 "Position15"=dword:0000000f "Visible15"=dword:00000000 "Width15"=dword:0000004b "Position16"=dword:00000010 "Visible16"=dword:00000000 "Width16"=dword:00000064 "Position17"=dword:00000011 "Visible17"=dword:00000000 "Width17"=dword:0000003c "Position18"=dword:00000012 "Visible18"=dword:00000000 "Width18"=dword:0000004b "Position19"=dword:00000013 "Visible19"=dword:00000000 "Width19"=dword:00000050 "Position20"=dword:00000014 "Visible20"=dword:00000000 "Width20"=dword:00000046 "Position21"=dword:00000015 "Visible21"=dword:00000000 "Width21"=dword:0000004b "Position22"=dword:00000016 "Visible22"=dword:00000000 "Width22"=dword:00000046 "Position23"=dword:00000017 "Visible23"=dword:00000000 "Width23"=dword:00000046 "Position24"=dword:00000018 "Visible24"=dword:00000000 "Width24"=dword:0000003c "Position25"=dword:00000019 "Visible25"=dword:00000000 "Width25"=dword:00000041 "Position26"=dword:0000001a "Visible26"=dword:00000000 "Width26"=dword:0000003c "Position27"=dword:0000001b "Visible27"=dword:00000000 "Width27"=dword:00000055 "Position28"=dword:0000001c "Visible28"=dword:00000000 "Width28"=dword:00000069 "Position29"=dword:0000001d "Visible29"=dword:00000000 "Width29"=dword:0000006e "Position30"=dword:0000001e "Visible30"=dword:00000000 "Width30"=dword:00000064 "Position31"=dword:0000001f "Visible31"=dword:00000000 "Width31"=dword:00000078 "Position32"=dword:00000020 "Visible32"=dword:00000000 "Width32"=dword:00000064 "Position33"=dword:00000021 "Visible33"=dword:00000000 "Width33"=dword:00000087 "Position34"=dword:00000022 "Visible34"=dword:00000000 "Width34"=dword:00000069 "Position35"=dword:00000023 "Visible35"=dword:00000000 "Width35"=dword:0000006e "Position36"=dword:00000024 "Visible36"=dword:00000000 "Width36"=dword:00000073 "Position37"=dword:00000025 "Visible37"=dword:00000000 "Width37"=dword:0000004b "Position38"=dword:00000026 "Visible38"=dword:00000000 "Width38"=dword:0000002d "Position39"=dword:00000027 "Visible39"=dword:00000000 "Width39"=dword:00000055 "Position40"=dword:00000028 "Visible40"=dword:00000000 "Width40"=dword:00000046 "Position41"=dword:00000029 "Visible41"=dword:00000000 "Width41"=dword:0000004b "Position42"=dword:0000002a "Visible42"=dword:00000000 "Width42"=dword:0000003c "Position43"=dword:0000002b "Visible43"=dword:00000000 "Width43"=dword:00000046 "Position44"=dword:0000002c "Visible44"=dword:00000000 "Width44"=dword:00000073 "Position45"=dword:0000002d "Visible45"=dword:00000000 "Width45"=dword:0000004b "Position46"=dword:0000002e "Visible46"=dword:00000000 "Width46"=dword:00000073 "Position47"=dword:0000002f "Visible47"=dword:00000000 "Width47"=dword:0000007d "Position48"=dword:00000030 "Visible48"=dword:00000000 "Width48"=dword:0000006e "Position49"=dword:00000031 "Visible49"=dword:00000000 "Width49"=dword:00000037 "Position50"=dword:00000032 "Visible50"=dword:00000000 "Width50"=dword:00000064 "Position51"=dword:00000033 "Visible51"=dword:00000000 "Width51"=dword:00000037 "Position52"=dword:00000034 "Visible52"=dword:00000000 "Width52"=dword:0000004b "Position53"=dword:00000035 "Visible53"=dword:00000000 "Width53"=dword:00000046 "Position54"=dword:00000036 "Visible54"=dword:00000000 "Width54"=dword:00000037 "Position55"=dword:00000037 "Visible55"=dword:00000000 "Width55"=dword:0000003c "Position56"=dword:00000038 "Visible56"=dword:00000000 "Width56"=dword:00000055 "Position57"=dword:00000039 "Visible57"=dword:00000000 "Width57"=dword:0000003c "Position58"=dword:0000003a "Visible58"=dword:00000000 "Width58"=dword:0000003c "Position59"=dword:0000003b "Visible59"=dword:00000000 "Width59"=dword:00000055 "Position60"=dword:0000003c "Visible60"=dword:00000000 "Width60"=dword:00000046 "Position61"=dword:0000003d "Visible61"=dword:00000000 "Width61"=dword:0000004b "Position62"=dword:0000003e "Visible62"=dword:00000000 "Width62"=dword:00000055 "Position63"=dword:0000003f "Visible63"=dword:00000000 "Width63"=dword:0000005a "Position64"=dword:00000040 "Visible64"=dword:00000000 "Width64"=dword:0000006e "Position65"=dword:00000041 "Visible65"=dword:00000000 "Width65"=dword:00000050 "Position66"=dword:00000042 "Visible66"=dword:00000000 "Width66"=dword:00000032 "Position67"=dword:00000043 "Visible67"=dword:00000000 "Width67"=dword:00000064 "Position68"=dword:00000044 "Visible68"=dword:00000000 "Width68"=dword:0000004b "Position69"=dword:00000045 "Visible69"=dword:00000000 "Width69"=dword:0000002d "Position70"=dword:00000046 "Visible70"=dword:00000000 "Width70"=dword:0000004b "Position71"=dword:00000047 "Visible71"=dword:00000000 "Width71"=dword:0000005a "Position72"=dword:00000048 "Visible72"=dword:00000000 "Width72"=dword:0000005a "Position73"=dword:00000049 "Visible73"=dword:00000000 "Width73"=dword:00000050 "Position74"=dword:0000004a "Visible74"=dword:00000000 "Width74"=dword:0000004b "Position75"=dword:0000004b "Visible75"=dword:00000000 "Width75"=dword:00000050 "Position76"=dword:0000004c "Visible76"=dword:00000000 "Width76"=dword:0000005a "Position77"=dword:0000004d "Visible77"=dword:00000000 "Width77"=dword:00000041 "Position78"=dword:0000004e "Visible78"=dword:00000000 "Width78"=dword:00000041 "Position79"=dword:0000004f "Visible79"=dword:00000000 "Width79"=dword:00000041 "Position80"=dword:00000050 "Visible80"=dword:00000000 "Width80"=dword:00000041 "Position81"=dword:00000051 "Visible81"=dword:00000000 "Width81"=dword:00000041 "Position82"=dword:00000052 "Visible82"=dword:00000000 "Width82"=dword:00000041 "Position83"=dword:00000053 "Visible83"=dword:00000000 "Width83"=dword:00000041 "Position84"=dword:00000054 "Visible84"=dword:00000000 "Width84"=dword:00000041 "Position85"=dword:00000055 "Visible85"=dword:00000000 "Width85"=dword:00000041 "Position86"=dword:00000056 "Visible86"=dword:00000000 "Width86"=dword:00000050 [HKEY_USERS\S-1-5-21-73586283-2139871995-1801674531-1003\Software\Genie*"!\FM Genie Scout 2008\Rating Coefficients] "GKWeightCoef"=dword:00000064 "GKCurrentAbilityCoef"=dword:00000000 "GKCornersCoef"=dword:00000000 "GKCrossingCoef"=dword:00000000 "GKDribblingCoef"=dword:00000000 "GKFinishingCoef"=dword:00000000 "GKFirstTouchCoef"=dword:00000000 "GKFreeKicksCoef"=dword:00000000 "GKHeadingCoef"=dword:00000000 "GKLongShotsCoef"=dword:00000000 "GKLongThrowsCoef"=dword:00000000 "GKMarkingCoef"=dword:00000000 "GKPassingCoef"=dword:00000000 "GKPenaltiesCoef"=dword:00000000 "GKTacklingCoef"=dword:00000005 "GKTechniqueCoef"=dword:00000000 "GKLeftFootCoef"=dword:00000000 "GKRightFootCoef"=dword:00000000 "GKAggressionCoef"=dword:0000000a "GKAnticipationCoef"=dword:00000005 "GKBraveryCoef"=dword:00000014 "GKComposureCoef"=dword:00000014 "GKConcentrationCoef"=dword:0000000a "GKConsistencyCoef"=dword:0000000a "GKCreativityCoef"=dword:00000000 "GKDecisionsCoef"=dword:00000014 "GKDeterminationCoef"=dword:0000000a "GKDirtinessCoef"=dword:fffffffb "GKFlairCoef"=dword:00000000 "GKImportantMatchesCoef"=dword:0000000a "GKInfluenceCoef"=dword:0000000a "GKOffTheBallCoef"=dword:00000000 "GKPositioningCoef"=dword:00000050 "GKTeamworkCoef"=dword:00000005 "GKWorkRateCoef"=dword:00000000 "GKAccelerationCoef"=dword:00000005 "GKAgilityCoef"=dword:0000000a "GKBalanceCoef"=dword:0000000a "GKInjuryPronenessCoef"=dword:fffffffb "GKJumpingCoef"=dword:00000050 "GKNaturalFitnessCoef"=dword:00000005 "GKPaceCoef"=dword:00000000 "GKStaminaCoef"=dword:00000000 "GKStrengthCoef"=dword:0000000a "GKVersatilityCoef"=dword:00000000 "GKAerialAbilityCoef"=dword:00000032 "GKCommandOfAreaCoef"=dword:00000014 "GKCommunicationCoef"=dword:00000032 "GKEccentricityCoef"=dword:ffffffec "GKHandlingCoef"=dword:00000064 "GKKickingCoef"=dword:0000000a "GKOneOnOnesCoef"=dword:00000032 "GKReflexesCoef"=dword:00000064 "GKRushingOutCoef"=dword:00000014 "GKTendencyToPunchCoef"=dword:fffffff6 "GKThrowingCoef"=dword:0000000a "GKAdaptabilityCoef"=dword:00000005 "GKAmbitionCoef"=dword:0000000a "GKControversyCoef"=dword:fffffffb "GKLoyalityCoef"=dword:00000005 "GKPressureCoef"=dword:00000005 "GKProfessionalismCoef"=dword:00000005 "GKSportsmanshipCoef"=dword:00000005 "GKTemperamentCoef"=dword:00000005 "SWWeightCoef"=dword:00000066 "SWCurrentAbilityCoef"=dword:00000000 "SWCornersCoef"=dword:00000000 "SWCrossingCoef"=dword:00000000 "SWDribblingCoef"=dword:00000000 "SWFinishingCoef"=dword:00000000 "SWFirstTouchCoef"=dword:00000014 "SWFreeKicksCoef"=dword:0000000a "SWHeadingCoef"=dword:00000064 "SWLongShotsCoef"=dword:0000000a "SWLongThrowsCoef"=dword:00000000 "SWMarkingCoef"=dword:00000064 "SWPassingCoef"=dword:0000000a "SWPenaltiesCoef"=dword:00000005 "SWTacklingCoef"=dword:00000064 "SWTechniqueCoef"=dword:0000000a "SWLeftFootCoef"=dword:00000005 "SWRightFootCoef"=dword:00000005 "SWAggressionCoef"=dword:00000014 "SWAnticipationCoef"=dword:00000014 "SWBraveryCoef"=dword:00000028 "SWComposureCoef"=dword:00000028 "SWConcentrationCoef"=dword:0000003c "SWConsistencyCoef"=dword:0000000a "SWCreativityCoef"=dword:0000000a "SWDecisionsCoef"=dword:00000014 "SWDeterminationCoef"=dword:0000000a "SWDirtinessCoef"=dword:ffffffe7 "SWFlairCoef"=dword:00000000 "SWImportantMatchesCoef"=dword:0000000a "SWInfluenceCoef"=dword:0000000a "SWOffTheBallCoef"=dword:0000000a "SWPositioningCoef"=dword:00000064 "SWTeamworkCoef"=dword:00000028 "SWWorkRateCoef"=dword:00000014 "SWAccelerationCoef"=dword:0000001e "SWAgilityCoef"=dword:0000000a "SWBalanceCoef"=dword:00000014 "SWInjuryPronenessCoef"=dword:fffffffb "SWJumpingCoef"=dword:00000064 "SWNaturalFitnessCoef"=dword:00000005 "SWPaceCoef"=dword:00000014 "SWStaminaCoef"=dword:0000000a "SWStrengthCoef"=dword:00000050 "SWVersatilityCoef"=dword:00000005 "SWAerialAbilityCoef"=dword:00000000 "SWCommandOfAreaCoef"=dword:00000000 "SWCommunicationCoef"=dword:00000000 "SWEccentricityCoef"=dword:00000000 "SWHandlingCoef"=dword:00000000 "SWKickingCoef"=dword:00000000 "SWOneOnOnesCoef"=dword:00000005 "SWReflexesCoef"=dword:00000005 "SWRushingOutCoef"=dword:00000000 "SWTendencyToPunchCoef"=dword:00000000 "SWThrowingCoef"=dword:00000000 "SWAdaptabilityCoef"=dword:00000005 "SWAmbitionCoef"=dword:0000000a "SWControversyCoef"=dword:fffffffb "SWLoyalityCoef"=dword:00000005 "SWPressureCoef"=dword:00000005 "SWProfessionalismCoef"=dword:00000005 "SWSportsmanshipCoef"=dword:00000005 "SWTemperamentCoef"=dword:00000005 "CBWeightCoef"=dword:00000064 "CBCurrentAbilityCoef"=dword:00000000 "CBCornersCoef"=dword:00000000 "CBCrossingCoef"=dword:00000000 "CBDribblingCoef"=dword:00000000 "CBFinishingCoef"=dword:00000000 "CBFirstTouchCoef"=dword:00000014 "CBFreeKicksCoef"=dword:0000000a "CBHeadingCoef"=dword:00000064 "CBLongShotsCoef"=dword:0000000a "CBLongThrowsCoef"=dword:00000000 "CBMarkingCoef"=dword:00000050 "CBPassingCoef"=dword:00000014 "CBPenaltiesCoef"=dword:00000005 "CBTacklingCoef"=dword:00000064 "CBTechniqueCoef"=dword:0000000a "CBLeftFootCoef"=dword:00000005 "CBRightFootCoef"=dword:00000005 "CBAggressionCoef"=dword:00000014 "CBAnticipationCoef"=dword:00000014 "CBBraveryCoef"=dword:00000028 "CBComposureCoef"=dword:00000014 "CBConcentrationCoef"=dword:00000028 "CBConsistencyCoef"=dword:0000000a "CBCreativityCoef"=dword:0000000a "CBDecisionsCoef"=dword:00000014 "CBDeterminationCoef"=dword:0000000a "CBDirtinessCoef"=dword:ffffffec "CBFlairCoef"=dword:00000000 "CBImportantMatchesCoef"=dword:0000000a "CBInfluenceCoef"=dword:0000000a "CBOffTheBallCoef"=dword:0000000a "CBPositioningCoef"=dword:00000050 "CBTeamworkCoef"=dword:00000028 "CBWorkRateCoef"=dword:00000014 "CBAccelerationCoef"=dword:00000028 "CBAgilityCoef"=dword:0000000a "CBBalanceCoef"=dword:00000014 "CBInjuryPronenessCoef"=dword:fffffffb "CBJumpingCoef"=dword:00000064 "CBNaturalFitnessCoef"=dword:00000005 "CBPaceCoef"=dword:0000001e "CBStaminaCoef"=dword:0000000a "CBStrengthCoef"=dword:0000003c "CBVersatilityCoef"=dword:00000005 "CBAerialAbilityCoef"=dword:00000000 "CBCommandOfAreaCoef"=dword:00000000 "CBCommunicationCoef"=dword:00000000 "CBEccentricityCoef"=dword:00000000 "CBHandlingCoef"=dword:00000000 "CBKickingCoef"=dword:00000000 "CBOneOnOnesCoef"=dword:00000005 "CBReflexesCoef"=dword:00000005 "CBRushingOutCoef"=dword:00000000 "CBTendencyToPunchCoef"=dword:00000000 "CBThrowingCoef"=dword:00000000 "CBAdaptabilityCoef"=dword:00000005 "CBAmbitionCoef"=dword:0000000a "CBControversyCoef"=dword:fffffffb "CBLoyalityCoef"=dword:00000005 "CBPressureCoef"=dword:00000005 "CBProfessionalismCoef"=dword:00000005 "CBSportsmanshipCoef"=dword:00000005 "CBTemperamentCoef"=dword:00000005 "FBWeightCoef"=dword:0000006c "FBCurrentAbilityCoef"=dword:00000000 "FBCornersCoef"=dword:0000000a "FBCrossingCoef"=dword:0000001e "FBDribblingCoef"=dword:00000014 "FBFinishingCoef"=dword:00000000 "FBFirstTouchCoef"=dword:00000014 "FBFreeKicksCoef"=dword:0000000a "FBHeadingCoef"=dword:0000003c "FBLongShotsCoef"=dword:0000000a "FBLongThrowsCoef"=dword:0000000a "FBMarkingCoef"=dword:0000003c "FBPassingCoef"=dword:0000001e "FBPenaltiesCoef"=dword:00000005 "FBTacklingCoef"=dword:00000064 "FBTechniqueCoef"=dword:00000014 "FBLeftFootCoef"=dword:00000005 "FBRightFootCoef"=dword:00000005 "FBAggressionCoef"=dword:0000000f "FBAnticipationCoef"=dword:00000050 "FBBraveryCoef"=dword:00000014 "FBComposureCoef"=dword:0000000a "FBConcentrationCoef"=dword:0000001e "FBConsistencyCoef"=dword:0000000a "FBCreativityCoef"=dword:0000000a "FBDecisionsCoef"=dword:00000014 "FBDeterminationCoef"=dword:0000000a "FBDirtinessCoef"=dword:fffffff6 "FBFlairCoef"=dword:00000005 "FBImportantMatchesCoef"=dword:0000000a "FBInfluenceCoef"=dword:0000000a "FBOffTheBallCoef"=dword:00000014 "FBPositioningCoef"=dword:00000064 "FBTeamworkCoef"=dword:00000014 "FBWorkRateCoef"=dword:00000014 "FBAccelerationCoef"=dword:0000003c "FBAgilityCoef"=dword:0000000a "FBBalanceCoef"=dword:00000014 "FBInjuryPronenessCoef"=dword:fffffffb "FBJumpingCoef"=dword:0000003c "FBNaturalFitnessCoef"=dword:00000005 "FBPaceCoef"=dword:00000050 "FBStaminaCoef"=dword:0000003c "FBStrengthCoef"=dword:00000028 "FBVersatilityCoef"=dword:00000005 "FBAerialAbilityCoef"=dword:00000000 "FBCommandOfAreaCoef"=dword:00000000 "FBCommunicationCoef"=dword:00000000 "FBEccentricityCoef"=dword:00000000 "FBHandlingCoef"=dword:00000000 "FBKickingCoef"=dword:00000000 "FBOneOnOnesCoef"=dword:00000005 "FBReflexesCoef"=dword:00000005 "FBRushingOutCoef"=dword:00000000 "FBTendencyToPunchCoef"=dword:00000000 "FBThrowingCoef"=dword:00000000 "FBAdaptabilityCoef"=dword:00000005 "FBAmbitionCoef"=dword:0000000a "FBControversyCoef"=dword:fffffffb "FBLoyalityCoef"=dword:00000005 "FBPressureCoef"=dword:00000005 "FBProfessionalismCoef"=dword:00000005 "FBSportsmanshipCoef"=dword:00000005 "FBTemperamentCoef"=dword:00000005 "WBWeightCoef"=dword:0000006e "WBCurrentAbilityCoef"=dword:00000000 "WBCornersCoef"=dword:0000000a "WBCrossingCoef"=dword:0000003c "WBDribblingCoef"=dword:00000028 "WBFinishingCoef"=dword:0000000a "WBFirstTouchCoef"=dword:00000014 "WBFreeKicksCoef"=dword:0000000a "WBHeadingCoef"=dword:00000028 "WBLongShotsCoef"=dword:00000014 "WBLongThrowsCoef"=dword:0000000a "WBMarkingCoef"=dword:0000003c "WBPassingCoef"=dword:00000028 "WBPenaltiesCoef"=dword:00000005 "WBTacklingCoef"=dword:00000064 "WBTechniqueCoef"=dword:00000028 "WBLeftFootCoef"=dword:00000005 "WBRightFootCoef"=dword:00000005 "WBAggressionCoef"=dword:0000000a "WBAnticipationCoef"=dword:00000050 "WBBraveryCoef"=dword:0000000a "WBComposureCoef"=dword:0000000a "WBConcentrationCoef"=dword:00000014 "WBConsistencyCoef"=dword:0000000a "WBCreativityCoef"=dword:00000014 "WBDecisionsCoef"=dword:00000014 "WBDeterminationCoef"=dword:0000000a "WBDirtinessCoef"=dword:fffffff6 "WBFlairCoef"=dword:0000000a "WBImportantMatchesCoef"=dword:0000000a "WBInfluenceCoef"=dword:0000000a "WBOffTheBallCoef"=dword:00000014 "WBPositioningCoef"=dword:00000064 "WBTeamworkCoef"=dword:00000014 "WBWorkRateCoef"=dword:00000028 "WBAccelerationCoef"=dword:00000050 "WBAgilityCoef"=dword:0000000a "WBBalanceCoef"=dword:00000014 "WBInjuryPronenessCoef"=dword:fffffffb "WBJumpingCoef"=dword:00000014 "WBNaturalFitnessCoef"=dword:00000005 "WBPaceCoef"=dword:00000064 "WBStaminaCoef"=dword:00000050 "WBStrengthCoef"=dword:00000028 "WBVersatilityCoef"=dword:00000005 "WBAerialAbilityCoef"=dword:00000000 "WBCommandOfAreaCoef"=dword:00000000 "WBCommunicationCoef"=dword:00000000 "WBEccentricityCoef"=dword:00000000 "WBHandlingCoef"=dword:00000000 "WBKickingCoef"=dword:00000000 "WBOneOnOnesCoef"=dword:00000005 "WBReflexesCoef"=dword:00000005 "WBRushingOutCoef"=dword:00000000 "WBTendencyToPunchCoef"=dword:00000000 "WBThrowingCoef"=dword:00000000 "WBAdaptabilityCoef"=dword:00000005 "WBAmbitionCoef"=dword:0000000a "WBControversyCoef"=dword:fffffffb "WBLoyalityCoef"=dword:00000005 "WBPressureCoef"=dword:00000005 "WBProfessionalismCoef"=dword:00000005 "WBSportsmanshipCoef"=dword:00000005 "WBTemperamentCoef"=dword:00000005 "DMWeightCoef"=dword:00000069 "DMCurrentAbilityCoef"=dword:00000000 "DMCornersCoef"=dword:0000000a "DMCrossingCoef"=dword:0000001e "DMDribblingCoef"=dword:00000014 "DMFinishingCoef"=dword:0000000a "DMFirstTouchCoef"=dword:0000001e "DMFreeKicksCoef"=dword:0000000a "DMHeadingCoef"=dword:00000028 "DMLongShotsCoef"=dword:00000014 "DMLongThrowsCoef"=dword:00000005 "DMMarkingCoef"=dword:0000003c "DMPassingCoef"=dword:00000028 "DMPenaltiesCoef"=dword:00000005 "DMTacklingCoef"=dword:00000064 "DMTechniqueCoef"=dword:0000001e "DMLeftFootCoef"=dword:00000005 "DMRightFootCoef"=dword:00000005 "DMAggressionCoef"=dword:00000028 "DMAnticipationCoef"=dword:00000028 "DMBraveryCoef"=dword:00000014 "DMComposureCoef"=dword:0000000a "DMConcentrationCoef"=dword:00000014 "DMConsistencyCoef"=dword:0000000a "DMCreativityCoef"=dword:00000014 "DMDecisionsCoef"=dword:00000014 "DMDeterminationCoef"=dword:0000000a "DMDirtinessCoef"=dword:fffffff6 "DMFlairCoef"=dword:0000000a "DMImportantMatchesCoef"=dword:0000000a "DMInfluenceCoef"=dword:0000000a "DMOffTheBallCoef"=dword:0000001e "DMPositioningCoef"=dword:00000050 "DMTeamworkCoef"=dword:00000028 "DMWorkRateCoef"=dword:00000050 "DMAccelerationCoef"=dword:00000028 "DMAgilityCoef"=dword:0000000a "DMBalanceCoef"=dword:0000000a "DMInjuryPronenessCoef"=dword:fffffffb "DMJumpingCoef"=dword:00000028 "DMNaturalFitnessCoef"=dword:00000005 "DMPaceCoef"=dword:00000028 "DMStaminaCoef"=dword:0000003c "DMStrengthCoef"=dword:00000028 "DMVersatilityCoef"=dword:00000005 "DMAerialAbilityCoef"=dword:00000000 "DMCommandOfAreaCoef"=dword:00000000 "DMCommunicationCoef"=dword:00000000 "DMEccentricityCoef"=dword:00000000 "DMHandlingCoef"=dword:00000000 "DMKickingCoef"=dword:00000000 "DMOneOnOnesCoef"=dword:00000005 "DMReflexesCoef"=dword:00000005 "DMRushingOutCoef"=dword:00000000 "DMTendencyToPunchCoef"=dword:00000000 "DMThrowingCoef"=dword:00000000 "DMAdaptabilityCoef"=dword:00000005 "DMAmbitionCoef"=dword:0000000a "DMControversyCoef"=dword:fffffffb "DMLoyalityCoef"=dword:00000005 "DMPressureCoef"=dword:00000005 "DMProfessionalismCoef"=dword:00000005 "DMSportsmanshipCoef"=dword:00000005 "DMTemperamentCoef"=dword:00000005 "MWeightCoef"=dword:0000006a "MCurrentAbilityCoef"=dword:00000000 "MCornersCoef"=dword:0000000a "MCrossingCoef"=dword:00000028 "MDribblingCoef"=dword:00000032 "MFinishingCoef"=dword:00000014 "MFirstTouchCoef"=dword:0000001e "MFreeKicksCoef"=dword:0000000a "MHeadingCoef"=dword:0000001e "MLongShotsCoef"=dword:00000014 "MLongThrowsCoef"=dword:00000005 "MMarkingCoef"=dword:00000028 "MPassingCoef"=dword:00000046 "MPenaltiesCoef"=dword:00000005 "MTacklingCoef"=dword:0000003c "MTechniqueCoef"=dword:00000032 "MLeftFootCoef"=dword:00000005 "MRightFootCoef"=dword:00000005 "MAggressionCoef"=dword:0000001e "MAnticipationCoef"=dword:00000028 "MBraveryCoef"=dword:0000000a "MComposureCoef"=dword:0000000a "MConcentrationCoef"=dword:0000000a "MConsistencyCoef"=dword:0000000a "MCreativityCoef"=dword:0000003c "MDecisionsCoef"=dword:0000001e "MDeterminationCoef"=dword:0000000a "MDirtinessCoef"=dword:fffffffb "MFlairCoef"=dword:0000000a "MImportantMatchesCoef"=dword:0000000a "MInfluenceCoef"=dword:0000000a "MOffTheBallCoef"=dword:00000028 "MPositioningCoef"=dword:00000028 "MTeamworkCoef"=dword:00000032 "MWorkRateCoef"=dword:00000032 "MAccelerationCoef"=dword:00000032 "MAgilityCoef"=dword:0000000a "MBalanceCoef"=dword:0000000a "MInjuryPronenessCoef"=dword:fffffffb "MJumpingCoef"=dword:00000028 "MNaturalFitnessCoef"=dword:00000005 "MPaceCoef"=dword:00000028 "MStaminaCoef"=dword:0000003c "MStrengthCoef"=dword:0000001e "MVersatilityCoef"=dword:00000005 "MAerialAbilityCoef"=dword:00000000 "MCommandOfAreaCoef"=dword:00000000 "MCommunicationCoef"=dword:00000000 "MEccentricityCoef"=dword:00000000 "MHandlingCoef"=dword:00000000 "MKickingCoef"=dword:00000000 "MOneOnOnesCoef"=dword:00000005 "MReflexesCoef"=dword:00000005 "MRushingOutCoef"=dword:00000000 "MTendencyToPunchCoef"=dword:00000000 "MThrowingCoef"=dword:00000000 "MAdaptabilityCoef"=dword:00000005 "MAmbitionCoef"=dword:0000000a "MControversyCoef"=dword:fffffffb "MLoyalityCoef"=dword:00000005 "MPressureCoef"=dword:00000005 "MProfessionalismCoef"=dword:00000005 "MSportsmanshipCoef"=dword:00000005 "MTemperamentCoef"=dword:00000005 "AMWeightCoef"=dword:00000069 "AMCurrentAbilityCoef"=dword:00000000 "AMCornersCoef"=dword:0000000a "AMCrossingCoef"=dword:0000003c "AMDribblingCoef"=dword:00000050 "AMFinishingCoef"=dword:00000028 "AMFirstTouchCoef"=dword:0000001e "AMFreeKicksCoef"=dword:0000000a "AMHeadingCoef"=dword:00000014 "AMLongShotsCoef"=dword:00000014 "AMLongThrowsCoef"=dword:00000005 "AMMarkingCoef"=dword:0000000a "AMPassingCoef"=dword:00000064 "AMPenaltiesCoef"=dword:00000005 "AMTacklingCoef"=dword:0000000a "AMTechniqueCoef"=dword:00000050 "AMLeftFootCoef"=dword:00000005 "AMRightFootCoef"=dword:00000005 "AMAggressionCoef"=dword:0000000a "AMAnticipationCoef"=dword:0000001e "AMBraveryCoef"=dword:0000000a "AMComposureCoef"=dword:0000000a "AMConcentrationCoef"=dword:0000000a "AMConsistencyCoef"=dword:0000000a "AMCreativityCoef"=dword:00000064 "AMDecisionsCoef"=dword:00000028 "AMDeterminationCoef"=dword:0000000a "AMDirtinessCoef"=dword:fffffffb "AMFlairCoef"=dword:00000014 "AMImportantMatchesCoef"=dword:0000000a "AMInfluenceCoef"=dword:0000000a "AMOffTheBallCoef"=dword:0000003c "AMPositioningCoef"=dword:00000014 "AMTeamworkCoef"=dword:0000003c "AMWorkRateCoef"=dword:00000014 "AMAccelerationCoef"=dword:0000003c "AMAgilityCoef"=dword:0000000a "AMBalanceCoef"=dword:0000000a "AMInjuryPronenessCoef"=dword:fffffffb "AMJumpingCoef"=dword:00000014 "AMNaturalFitnessCoef"=dword:00000005 "AMPaceCoef"=dword:0000003c "AMStaminaCoef"=dword:0000003c "AMStrengthCoef"=dword:00000014 "AMVersatilityCoef"=dword:00000005 "AMAerialAbilityCoef"=dword:00000000 "AMCommandOfAreaCoef"=dword:00000000 "AMCommunicationCoef"=dword:00000000 "AMEccentricityCoef"=dword:00000000 "AMHandlingCoef"=dword:00000000 "AMKickingCoef"=dword:00000000 "AMOneOnOnesCoef"=dword:00000005 "AMReflexesCoef"=dword:00000005 "AMRushingOutCoef"=dword:00000000 "AMTendencyToPunchCoef"=dword:00000000 "AMThrowingCoef"=dword:00000000 "AMAdaptabilityCoef"=dword:00000005 "AMAmbitionCoef"=dword:0000000a "AMControversyCoef"=dword:fffffffb "AMLoyalityCoef"=dword:00000005 "AMPressureCoef"=dword:00000005 "AMProfessionalismCoef"=dword:00000005 "AMSportsmanshipCoef"=dword:00000005 "AMTemperamentCoef"=dword:00000005 "WWeightCoef"=dword:00000069 "WCurrentAbilityCoef"=dword:00000000 "WCornersCoef"=dword:0000000a "WCrossingCoef"=dword:00000064 "WDribblingCoef"=dword:00000064 "WFinishingCoef"=dword:0000003c "WFirstTouchCoef"=dword:0000001e "WFreeKicksCoef"=dword:0000000a "WHeadingCoef"=dword:00000014 "WLongShotsCoef"=dword:00000014 "WLongThrowsCoef"=dword:00000005 "WMarkingCoef"=dword:0000000a "WPassingCoef"=dword:0000003c "WPenaltiesCoef"=dword:00000005 "WTacklingCoef"=dword:0000000a "WTechniqueCoef"=dword:00000050 "WLeftFootCoef"=dword:00000005 "WRightFootCoef"=dw

Profil

helen1 Poslao: 23 Jan 2009 17:43 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Prikaci mi ceo log.

Profil

deepy Poslao: 23 Jan 2009 18:26 Idi na vrh
offline deepy Građanin Pridružio: 28 Jun 2008 Poruke: 61	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pa stavio sam sve što mi je izbacio. ne znam šta još treba?

Profil

helen1 Poslao: 23 Jan 2009 19:19 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uploaduj mi sledeci fajl na proveru: c:\windows\system32\drivers\iastor78.sys preko sledeceg linka: http://www.mycity.rs/ambulanta-upload.php

Profil

deepy Poslao: 23 Jan 2009 19:50 Idi na vrh
offline deepy Građanin Pridružio: 28 Jun 2008 Poruke: 61	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uploadovo sam ga!

Profil

helen1 Poslao: 23 Jan 2009 21:17 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Iskljuci Antivirus. Otvoriti Notepad i iskopirati sledeci tekst: `File:: c:\windows\system32\hgGxXOih.dll c:\windows\system32\tebudati.dll c:\windows\Tasks\bewqpjkt.job Registry:: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "Notification Packages"=hex(7):73,63,65,63,6c,69,00,00` Snimiti na Desktop fajl iz Notepada kao "CFScript" Prevuci snimljeni skript/tekst na ComboFix ikonicu kao na slici. Postaviti u sledecoj poruci log koji bude bio napravljen na kraju ciscenja/skeniranja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Virusi

Ko je trenutno na forumu

Ukupno su 1208 korisnika na forumu :: 44 registrovanih, 6 sakrivenih i 1158 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 8u47, ajo baba, AK - 230, aleksandarbl, babaroga, bojanM84, Brana01, cavatina, Denaya, Dimitrise93, djboj, doktor123, Dorcolac, FileFinder, ikan, Istman, Karla, kikisp, kjkszpj, Kubovac, kunktator, kybonacci, laganini123, Lieutenant, M1los, Marko Marković, Mi lao shu, milenko crazy north, Miloskec, milutin134, mnn2, nemkea71, novator, pein, Pohovani_00, procesor, Srle993, Trpe Grozni, tubular, virked, Vladko, wizzardone, zillbg, |_MeD_|

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by