MyCity » Ambulanta -> Arhiva Ambulante » Problem sa folderima

Problem sa folderima

Napisano na dan: 4.10.2009
1

Problem sa folderima
Sledeća strana Pagination

Idi na vrh

Poslao: 04 Okt 2009 15:02
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Kao prvo pozdrav svima.
A ovako izgleda moj problem:
Vista HP SP1.
Do juce su mi se folderi otvarali u istom prozoru, a sada se svaki otvara u posebnom.
U Ordneroptions mi je sve namesteno i stiklirano kako treba, vec sam uz pomoc google to proverio.
Osim ovog problema istovremeno se pojavilo i to da vise pomocu drag and drop ne mogu da kopiram ni jedan folder, a ni pomocu desnog klika sa copy ili cut takodje ne mogu.
Pokusao sam sa Ccleaner-om i Tuneup-om ali nista nisam postigao.
System restore ne mogu da koristim, jer sam sa Tuneup-om pre toga obrisao sve osim poslednje promene na sistemu, a problem se pojavio pre toga.
Ima li neko resenje za ovaj moj problem?
Na jednom drugom forumu sam dobio savet da preskeniram sistem sa Malwarebytes i skeniranje jos uvek nije gotovo, ali vec mi je pronasao 153 inficirana objekta.
Koliko je pouzdan ovaj program?
Znam da je idealno resenje reinstalacija, ali...
Hvala.

Poslao: 04 Okt 2009 15:05
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Kada završiš sa skeniranjem (i uklanjanjem), budeš li i dalje imao probleme, isprati uputstvo i postavi potrebne logove:

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Poslao: 04 Okt 2009 19:13
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Sjajno uputstvo!
Malwerbytes je preskenirao i obrisao sve sto je nasao, ali je problem ostao.
Uz ovu poruku sam prikacio logove od DDS-a i RootRepeal-a (GMER mi je krash-ovao).
Nadam se da ce moci da se uradi nesto.
A za svaki slucaj saljem i log od Malwerbytes.
mycity.rs/must-login.png



DDS (Ver_09-09-29.01) - NTFSx86
Run by Ivica at 16:50:11.09 on 04.10.2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_15
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.41.1031.18.2045.876 [GMT 2:00]

SP: Avira Premium Security Suite *disabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6}
SP: Windows-Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {C19476D9-52BC-4E93-8AF3-CCF59F7AE8FE}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Lock My PC 4\LmpcServ.exe
C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Lock My PC 4\lockpc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Windows\system32\ASTSRV.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Orange\Orange Internet Everywhere\GtDetectSc.exe
C:\Windows\system32\HDDSvc.exe
C:\Program Files\Invisible Browsing\servers\IBService.exe
C:\Program Files\Invisible Browsing\servers\Socks\IBSocksManager.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Invisible Browsing\servers\Socks\IBSocks.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Invisible Browsing\servers\Http\ibhttp.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\MySecretFolder XP\MSFMON.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Godlike Developers\RAM Saver Professional\ramsaverpro.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\HideAnyWindow\haw.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
C:\Windows\system32\OSPPSVC.EXE
C:\Program Files\PC Auto Shutdown\ShutdownService.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\PnkBstrB.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\TUProgSt.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Orange\Orange Internet Everywhere\Orange Internet Everywhere.exe
C:\Program Files\Actual Reminder 3.0 Talk + Weather\Actual Reminder.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\DllHost.exe
C:\Windows\Explorer.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Users\Ivica\Desktop\dds.scr
C:\Windows\system32\conime.exe

============== Pseudo HJT Report ===============

uDefault_Page_URL = hxxp://www.club-vaio.com
mDefault_Page_URL = hxxp://www.club-vaio.com
uInternet Settings,ProxyServer = 127.0.0.1:8080
uInternet Settings,ProxyOverride = local
mSearchAssistant =
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: N/A: {9cb65206-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
uURLSearchHooks: H - No File
uURLSearchHooks: SweetIM ToolbarURLSearchHook Class: {eee6c35d-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgHelper.dll
mURLSearchHooks: H - No File
BHO: SnagIt Toolbar Loader: {00c6482d-c502-44c8-8409-fce54ad9c208} - c:\program files\techsmith\snagit 8\SnagItBHO.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: Winamp Toolbar Loader: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - c:\program files\winamp toolbar\winamptb.dll
BHO: GetRight IE Helper: {31ff080d-12a3-439a-a2ef-4ba95a3148e8} - c:\program files\getright\xx2gr.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\ievkbd.dll
BHO: Yahoo! IE Suggest: {5a263cf7-56a6-4d68-a8cf-345be45bc911} - c:\program files\yahoo!\search\YSearchSuggest.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~3\office14\GROOVEEX.DLL
BHO: SACert Class: {740fe5fb-65f1-46c5-9e54-a19c8a8d7ac2} - c:\windows\system32\SoftAheadCert.dll
BHO: Windows Live Anmelde-Hilfsprogramm: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Ask Search Assistant BHO: {9cb65201-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~3\office14\URLREDIR.DLL
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\progra~1\google~1\BAE.dll
BHO: FDMIECookiesBHO Class: {cc59e0f9-7e43-44fa-9faa-8377850bf205} - c:\program files\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SweetIM Toolbar Helper: {eee6c35c-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: Ask Toolbar: {fe063db9-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - c:\program files\winamp toolbar\winamptb.dll
TB: Veoh Video Compass: {52836eb0-631a-47b1-94a6-61f9d9112dae} - c:\program files\veoh networks\veoh video compass\SearchRecsPlugin.dll
TB: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - No File
TB: SweetIM Toolbar for Internet Explorer: {eee6c35b-6118-11dc-9c72-001320c79847} - c:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
TB: Foxit Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: Veoh Web Player Video Finder: {0fbb9689-d3d7-4f7a-a2e2-585b10099bfc} - c:\program files\veoh networks\veohwebplayer\VeohIEToolbar.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
EB: ClipMate ClipBar 7: {f60c63ce-52af-4915-aac9-f100fcde270f} - c:\progra~1\clipma~1\CLIPMA~1.DLL
uRun: [RAMSaverPro] c:\program files\godlike developers\ram saver professional\ramsaverpro.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [HideAnyWindow] c:\program files\hideanywindow\haw.exe
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe"
mRun: [MSF_Monitor] c:\progra~1\mysecr~1\MSFMON.exe /Start
mRun: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
dRun: [Nokia.PCSync] "c:\program files\nokia\nokia pc suite 6\PcSync2.exe" /NoDialog
StartupFolder: c:\users\ivica\appdata\roaming\micros~1\windows\startm~1\programs\startup\actual~1.lnk - c:\program files\actual reminder 3.0 talk + weather\Actual Reminder.exe
StartupFolder: c:\users\ivica\appdata\roaming\micros~1\windows\startm~1\programs\startup\stardo~1.lnk - c:\program files\stardock\objectdock\ObjectDock.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\bttray.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\orange~1.lnk - c:\program files\orange\orange internet everywhere\Orange Internet Everywhere.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: &Search
IE: &Winamp Search - c:\programdata\winamp toolbar\ietoolbar\resources\en-us\local\search.html
IE: An vorhandenes PDF anfьgen - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Ausgewдhlte Verknьpfungen in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Ausgewдhlte Verknьpfungen in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Auswahl in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Auswahl in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Bild an &Bluetooth-Gerдt senden... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Copy to &Lightning Note - c:\program files\corel\wordperfect lightning\programs\WPLightningCopyToNote.hta
IE: Download all with Free Download Manager - file://c:\program files\free download manager\dlall.htm
IE: Download by YouTube Robot - c:\program files\youtuberobot\RobotExt.ocx/LINK.HTM
IE: Download selected with Free Download Manager - file://c:\program files\free download manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\free download manager\dllink.htm
IE: Download with GetRight Pro - c:\program files\getright\GRdownload.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office14\EXCEL.EXE/3000
IE: In Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft &Excel exportieren - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Open with GetRight Pro Browser - c:\program files\getright\GRbrowse.htm
IE: Open with WordPerfect - c:\program files\corel\wordperfect office x4\programs\WPLauncher.hta
IE: RSS-Support-Site zu VAIO Information FLOW hinzufьgen - c:\program files\sony\vaio information flow\aiesc.html
IE: S&end to OneNote - c:\progra~1\micros~3\office14\ONBttnIE.dll/105
IE: Seite an &Bluetooth-Gerдt senden... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: Translate with &Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/Translate.htm
IE: Verknьpfungsziel in Adobe PDF konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Verknьpfungsziel in vorhandene PDF-Datei konvertieren - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {FB858B22-55E2-413f-87F5-30ADC5552151} - c:\program files\plotsoft\pdfill\DownloadPDF.exe
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\SCIEPlgn.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - c:\program files\bonjour\ExplorerPlugin.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file:///C:/Windows/Java/classes/xmldso.cab
DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} - hxxp://esupport.sony.com/VaioInfo.CAB
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://www3.snapfish.com/SnapfishActivia.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUplden-us.cab
DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} - hxxp://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {9D614E8E-03AA-11D3-90FC-0040C7157029} - hxxp://www.pakdata.com/download/PDMSInstaller.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAAE28D1-ADCC-11D1-BD4D-004845401881} - hxxp://www.pakdata.com/download/urduplugin.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: fsp_lmwl - fsp_lmwl.dll
Notify: klogon - c:\windows\system32\klogon.dll
Notify: Multi - c:\program files\stardock\thinkdesk\multiplicity\MultiWin32.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll
SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - c:\program files\stardock\object desktop\iconpackager\iprepair.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~3\office14\GROOVEEX.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\users\ivica\appdata\roaming\mozilla\firefox\profiles\3gbqj5fb.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - component: c:\users\ivica\appdata\roaming\mozilla\firefox\profiles\3gbqj5fb.default\extensions\lazarus@interclue.com\platform\winnt_x86-msvc\components\WeaveCrypto.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\mozilla firefox\plugins\np32asw.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npJoostPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPMyWebS.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: c:\program files\opera 10 beta\program\plugins\npdsplay.dll
FF - plugin: c:\program files\opera 10 beta\program\plugins\npwmsdrm.dll
FF - plugin: c:\program files\opera\program\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\opera\program\plugins\npJoostPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - plugin: c:\users\ivica\appdata\roaming\mozilla\plugins\npPxPlay.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000

============= SERVICES / DRIVERS ===============

R0 hotcore3;hotcore3;c:\windows\system32\drivers\hotcore3.sys [2007-6-22 38448]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]
R0 snapman380;Acronis Snapshots Manager (Build 380);c:\windows\system32\drivers\snman380.sys [2008-11-20 134272]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\system32\drivers\tdrpm147.sys [2008-11-20 971232]
R1 FlyCryptor;FlyCryptor;c:\windows\system32\drivers\flycryptor.sys [2009-1-14 31744]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2008-7-9 20496]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\common files\abbyy\finereader\9.00\licensing\pe\NetworkLicenseServer.exe [2007-12-6 660768]
R2 AVWEBCAM;AV WebCam, WDM Video Capture;c:\windows\system32\drivers\avwebcam.sys [2007-11-22 215552]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s [?]
R2 GtDetectSc;GtDetectSc;c:\program files\orange\orange internet everywhere\GtDetectSc.exe [2008-4-30 200704]
R2 IBService;IBService;c:\program files\invisible browsing\servers\IBService.exe [2009-7-7 45056]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2007-9-12 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2009-3-2 47640]
R2 LmpcService;Lock My PC Service;c:\program files\lock my pc 4\LmpcServ.exe [2007-10-20 52592]
R2 MSF32;MSF32;c:\program files\mysecretfolder xp\MSF32.SYS [2007-5-1 39424]
R2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2008-11-24 29263712]
R2 Multiplicity;Stardock Multiplicity;c:\program files\stardock\thinkdesk\multiplicity\MultiSrv32.exe [2007-11-17 242936]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-12-5 935208]
R2 NitroDriverReadSpool;NitroPDFDriverCreatorReadSpool;c:\program files\nitro pdf\professional\NitroPDFDriverService.exe [2009-6-15 188736]
R2 osppsvc;Office Software Protection Platform;c:\windows\system32\OSPPSVC.EXE [2009-4-8 4319136]
R2 PCAutoShutdown_Service;PCAutoShutdown_Service;c:\program files\pc auto shutdown\ShutdownService.exe [2009-7-4 462440]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2009-5-14 604416]
R3 BTCAMDRV;Mobiola Web Camera driver;c:\windows\system32\drivers\BTCamDrv.sys [2008-8-4 219264]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s [?]
R3 GT72NDISIPXP;GT 72 IP NDIS;c:\windows\system32\drivers\Gt51Ip.sys [2008-2-18 106624]
R3 GT72UBUS;GT 72 U BUS;c:\windows\system32\drivers\gt72ubus.sys [2008-2-8 59648]
R3 GTPTSER;GT PT SER;c:\windows\system32\drivers\gtptser.sys [2007-3-30 8064]
R3 LMPC4;LMPC4;c:\windows\system32\drivers\lmpc4.sys [2007-10-20 10096]
R3 R5U870FLx86;R5U870 UVC Lower Filter ;c:\windows\system32\drivers\R5U870FLx86.sys [2006-12-1 72704]
R3 R5U870FUx86;R5U870 UVC Upper Filter ;c:\windows\system32\drivers\R5U870FUx86.sys [2006-12-1 43904]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2006-12-1 30976]
R3 tenCapture;tenCapture;c:\windows\system32\drivers\tenCapture.sys [2007-4-21 9344]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2006-12-1 227328]
S2 gupdate1c999e1efd95f77;Google Update Service (gupdate1c999e1efd95f77);c:\program files\google\update\GoogleUpdate.exe [2009-2-28 133104]
S2 MyWebSearchService;My Web Search Service;c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe --> c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe [?]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [2009-9-22 113152]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2009-4-25 33480048]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-6 34064]
S3 ProcAPI;ProcAPI;c:\program files\intel corporation\thermal analysis tool\ProcAPI.sys [2008-1-22 12032]
S3 tat;tat;c:\program files\intel corporation\thermal analysis tool\tat.sys [2008-1-22 5120]
S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection;c:\program files\sony\vaio media integrated server\UCLS.exe [2007-3-17 745472]
S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP);c:\program files\sony\vaio media integrated server\platform\SV_Httpd.exe [2006-12-26 397312]
S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP);c:\program files\sony\vaio media integrated server\platform\UPnPFramework.exe [2006-12-26 1089536]
S3 zebrbus;Sony Ericsson Composite Device driver;c:\windows\system32\drivers\zebrbus.sys [2007-5-9 66656]
S3 zebrmdfl;Sony Ericsson Modem Filter;c:\windows\system32\drivers\zebrmdfl.sys [2007-5-9 9264]
S3 zebrmdm;Sony Ericsson Port (WDM);c:\windows\system32\drivers\zebrmdm.sys [2007-5-9 100640]
S3 zebrmdmc;Sony Ericsson mRouter Port (WDM);c:\windows\system32\drivers\zebrmdmc.sys [2007-5-9 100672]

=============== Created Last 30 ================

2009-10-04 12:55 0 a---h--- c:\windows\ЂAstInfo.dat
2009-10-04 12:06 <DIR> --d----- c:\program files\zabkat
2009-10-04 11:46 114,688 a------- c:\windows\system32\vsgximbt.dll
2009-10-04 11:46 <DIR> --d----- c:\program files\FileStream
2009-10-03 22:09 267,934,503 a------- c:\windows\MEMORY.DMP
2009-10-03 18:26 <DIR> --d----- c:\program files\StreamingStar
2009-10-03 09:29 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-10-03 09:27 <DIR> --d----- c:\programdata\Rosetta Stone
2009-10-03 09:27 <DIR> --d----- c:\program files\Rosetta Stone
2009-10-03 09:27 <DIR> --d----- c:\progra~2\Rosetta Stone
2009-10-02 21:27 <DIR> --d----- c:\users\ivica\appdata\roaming\GoodSync
2009-10-02 19:45 195,440 -------- c:\windows\system32\MpSigStub.exe
2009-09-25 15:24 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2009-09-25 00:35 <DIR> --d----- c:\users\ivica\appdata\roaming\Scendix Software
2009-09-25 00:34 7,533 a------- c:\windows\system32\novav6.ctm
2009-09-25 00:34 23,720 a------- c:\windows\system32\novamnv6.dll
2009-09-25 00:34 18,600 a------- c:\windows\system32\novamiv6.dll
2009-09-25 00:30 <DIR> --d----- c:\program files\PamFax
2009-09-23 14:26 <DIR> --d----- c:\program files\Orange
2009-09-23 00:55 <DIR> --d----- c:\users\ivica\appdata\roaming\AVS4YOU
2009-09-23 00:55 <DIR> --d----- c:\programdata\AVS4YOU
2009-09-23 00:55 <DIR> --d----- c:\progra~2\AVS4YOU
2009-09-22 21:44 113,152 a------- c:\windows\system32\drivers\ewusbnet.sys
2009-09-22 21:44 101,760 a------- c:\windows\system32\drivers\ewusbmdm.sys
2009-09-19 19:10 <DIR> --d----- c:\program files\common files\AVSMedia
2009-09-19 19:10 24,576 a------- c:\windows\system32\msxml3a.dll
2009-09-19 19:10 <DIR> --d----- c:\program files\AVS4YOU
2009-09-18 12:22 <DIR> --d----- c:\program files\Advanced Business Card Maker
2009-09-18 11:18 <DIR> --d----- c:\program files\Avanquest update
2009-09-18 11:18 <DIR> --d----- c:\programdata\BVRP Software
2009-09-18 11:17 96 a------- c:\windows\bizpub32.INI
2009-09-18 11:12 565,760 a------- c:\windows\system32\msvcp50.DLL
2009-09-18 11:12 348,160 a------- c:\windows\system32\MFC30.DLL
2009-09-18 11:12 27,025 a------- c:\windows\system32\OLE2.REG
2009-09-18 11:11 <DIR> --d----- c:\program files\common files\MySoftware
2009-09-18 11:11 <DIR> --d----- c:\program files\MySoftware
2009-09-17 12:24 <DIR> --d----- c:\programdata\Local
2009-09-17 12:24 <DIR> --d----- c:\progra~2\Local

==================== Find3M ====================

2009-10-04 16:42 20,288,756 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-10-04 16:42 2,162,720 a--sh--- c:\windows\system32\drivers\fidbox2.dat
2009-10-04 16:42 8,472 a--sh--- c:\windows\system32\drivers\fidbox2.idx
2009-10-04 16:42 1,514,813,472 a------- c:\windows\system32\drivers\fidbox.dat
2009-10-02 16:20 689,092 a------- c:\windows\system32\perfh007.dat
2009-10-02 16:20 152,256 a------- c:\windows\system32\perfc007.dat
2009-09-27 22:52 162,816 a------- c:\windows\system32\fmod.dll
2009-09-27 17:21 143,360 a------- c:\windows\inf\infstrng.dat
2009-09-27 17:21 86,016 a------- c:\windows\inf\infpub.dat
2009-09-25 15:24 143,360 a------- c:\windows\inf\infstor.dat
2009-09-22 17:04 107,547 a------- c:\windows\system32\drivers\klin.dat
2009-09-22 17:04 95,259 a------- c:\windows\system32\drivers\klick.dat
2009-09-10 14:54 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 14:53 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-08-28 14:39 28,672 a------- c:\windows\system32\Apphlpdm.dll
2009-08-28 14:39 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2009-08-28 14:38 2,153,984 a------- c:\windows\apppatch\AcGenral.dll
2009-08-28 14:38 541,696 a------- c:\windows\apppatch\AcLayers.dll
2009-08-28 14:38 459,776 a------- c:\windows\apppatch\AcSpecfc.dll
2009-08-28 12:15 4,240,384 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-20 01:13 20,288,756 a--sh--- c:\windows\system32\drivers\fidbox(62).idx
2009-08-20 01:13 1,957,920 a--sh--- c:\windows\system32\drivers\fidbox2(63).dat
2009-08-20 01:13 7,772 a--sh--- c:\windows\system32\drivers\fidbox2(64).idx
2009-08-20 01:13 1,514,813,472 a------- c:\windows\system32\drivers\fidbox(61).dat
2009-08-14 19:07 897,608 a------- c:\windows\system32\drivers\tcpip.sys
2009-08-14 18:29 104,960 a------- c:\windows\system32\netiohlp.dll
2009-08-14 18:29 17,920 a------- c:\windows\system32\netevent.dll
2009-08-14 16:16 17,920 a------- c:\windows\system32\ROUTE.EXE
2009-08-14 16:16 9,728 a------- c:\windows\system32\TCPSVCS.EXE
2009-08-14 16:16 11,264 a------- c:\windows\system32\MRINFO.EXE
2009-08-14 16:16 27,136 a------- c:\windows\system32\NETSTAT.EXE
2009-08-14 16:16 19,968 a------- c:\windows\system32\ARP.EXE
2009-08-14 16:16 10,240 a------- c:\windows\system32\finger.exe
2009-08-14 16:16 8,704 a------- c:\windows\system32\HOSTNAME.EXE
2009-07-25 05:23 411,368 a------- c:\windows\system32\deploytk.dll
2009-07-21 23:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 23:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 23:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 22:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-21 19:49 9,408 a------- c:\windows\system32\plkmon32.dll
2009-07-21 08:32 73,216 a------- c:\windows\ST6UNST.EXE
2009-07-18 12:15 604,416 a------- c:\windows\system32\TUProgSt.exe
2009-07-18 12:15 361,216 a------- c:\windows\system32\TuneUpDefragService.exe
2009-07-17 16:35 71,680 a------- c:\windows\system32\atl.dll
2009-07-14 15:00 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-07-14 14:59 4,096 a------- c:\windows\system32\dxmasf.dll
2009-07-14 14:58 7,680 a------- c:\windows\system32\spwmp.dll
2009-07-14 12:59 8,147,456 a------- c:\windows\system32\wmploc.DLL
2009-07-11 21:32 513,024 a------- c:\windows\system32\wlansvc.dll
2009-07-11 21:32 302,592 a------- c:\windows\system32\wlansec.dll
2009-07-11 21:32 293,376 a------- c:\windows\system32\wlanmsm.dll
2009-07-11 21:29 127,488 a------- c:\windows\system32\L2SecHC.dll
2009-06-25 01:24 81,920 a------- c:\users\ivica\appdata\roaming\ezpinst.exe
2009-06-25 01:24 47,360 a------- c:\users\ivica\appdata\roaming\pcouffin.sys
2009-06-23 19:58 3,766 a--sh--- c:\programdata\KGyGaAvL.sys
2009-06-23 19:58 3,766 a--sh--- c:\progra~2\KGyGaAvL.sys
2009-05-16 13:40 8 ---shr-- c:\programdata\614D62C221.sys
2009-05-16 13:40 8 ---shr-- c:\progra~2\614D62C221.sys
2009-05-07 13:56 1,024 a------- c:\programdata\pdfdoc2.dll
2009-05-07 13:56 1,024 a------- c:\progra~2\pdfdoc2.dll
2009-04-04 23:29 22,328 a------- c:\users\ivica\appdata\roaming\PnkBstrK.sys
2009-02-22 20:16 56 a---h--- c:\programdata\ezsidmv.dat
2009-02-22 20:16 56 a---h--- c:\progra~2\ezsidmv.dat
2008-06-20 10:31 665,600 a------- c:\windows\inf\drvindex.dat
2008-06-19 18:08 174 a--sh--- c:\program files\desktop.ini
2008-06-19 08:49 1,526,360 a------- c:\users\ivica\lmpc.zip
2008-04-05 19:41 56 a--sh--- c:\programdata\dc64vg9.sys
2008-04-05 19:41 56 a--sh--- c:\progra~2\dc64vg9.sys
2007-11-24 02:25 260,290 a------- c:\programdata\firstlsp.reg.dat
2007-11-24 02:25 260,290 a------- c:\progra~2\firstlsp.reg.dat
2007-10-13 12:00 13,025 a------- c:\users\ivica\appdata\roaming\nvModes.dat
2007-09-12 07:00 87,608 a------- c:\users\ivica\appdata\roaming\inst.exe
2007-05-11 15:25 1,404,928 a------- c:\program files\TrueBlur.8BF
2007-05-11 15:25 1,449,984 a------- c:\program files\FocusFixer Win.8BF
2007-05-11 15:24 1,196,032 a------- c:\program files\ShadowFixer Win.8BF
2007-05-11 15:24 1,245,184 a------- c:\program files\NoiseFixer Win.8BF
2007-05-02 13:52 67,802 a------- c:\program files\ReadMe TrueBlur 1.5.0_W.rtf
2007-05-02 13:51 59,271 a------- c:\program files\ReadMe ShadowFixer 1.4.0_W.rtf
2007-05-02 13:50 62,205 a------- c:\program files\ReadMe NoiseFixer 1.4.0_W.rtf
2007-05-02 13:45 67,590 a------- c:\program files\ReadMe FocusFixer 1.8.0_W.rtf
2007-01-30 18:47 11,072 a------- c:\program files\License Bundle.rtf
2006-11-02 17:30 290,748 a------- c:\windows\inf\perflib\0407\perfi.dat
2006-11-02 17:30 290,748 a------- c:\windows\inf\perflib\0407\perfh.dat
2006-11-02 17:30 36,916 a------- c:\windows\inf\perflib\0407\perfd.dat
2006-11-02 17:30 36,916 a------- c:\windows\inf\perflib\0407\perfc.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2008-03-27 16:09 75 ---shr-- c:\windows\CT5PRET.BIN
2008-05-25 09:39 108 a--shr-- c:\windows\neoqaz2.dll
2007-10-27 12:58 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2007-10-27 12:58 32,768 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2007-10-27 12:58 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-11 21:55 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2009-06-11 21:55 32,768 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2009-06-11 21:55 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-11 21:55 245,760 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat

============= FINISH: 16:53:42.68 ===============




mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

Poslao: 04 Okt 2009 20:00
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix.
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste. prikazati DISCLAIMER OF WARRANTY ON SOFTWARE:
klikni Yes kako bi proces bio nastavljen.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.

Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Poslao: 04 Okt 2009 21:20
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

ComboFix 09-10-04.01 - Ivica 04.10.2009 20:16.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.41.1031.18.2045.839 [GMT 2:00]
ausgeführt von:: c:\users\Ivica\Desktop\ComboFix.exe
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {C19476D9-52BC-4E93-8AF3-CCF59F7AE8FE}
SP: Avira Premium Security Suite *disabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6}
SP: Windows-Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1677551819-2580994283-1007408439-500
c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500
c:\$recycle.bin\S-1-5-21-221845253-1549749658-2852496188-500
c:\$recycle.bin\S-1-5-21-3935765241-2679998303-4001058102-500
c:\documentation\_desktop.ini
c:\documentation\Documentation\_desktop.ini
c:\documentation\Documentation\CS\_desktop.ini
c:\documentation\Documentation\DE\_desktop.ini
c:\documentation\Documentation\EN\_desktop.ini
c:\documentation\Documentation\ES\_desktop.ini
c:\documentation\Documentation\FI\_desktop.ini
c:\documentation\Documentation\FR\_desktop.ini
c:\documentation\Documentation\GR\_desktop.ini
c:\documentation\Documentation\IT\_desktop.ini
c:\documentation\Documentation\NL\_desktop.ini
c:\documentation\Documentation\PO\_desktop.ini
c:\documentation\Documentation\RU\_desktop.ini
c:\documentation\Documentation\SV\_desktop.ini
c:\documentation\Leaflets\_desktop.ini
c:\documentation\Leaflets\CS\_desktop.ini
c:\documentation\Leaflets\DE\_desktop.ini
c:\documentation\Leaflets\EN\_desktop.ini
c:\documentation\Leaflets\ES\_desktop.ini
c:\documentation\Leaflets\FI\_desktop.ini
c:\documentation\Leaflets\FR\_desktop.ini
c:\documentation\Leaflets\GR\_desktop.ini
c:\documentation\Leaflets\IT\_desktop.ini
c:\documentation\Leaflets\NL\_desktop.ini
c:\documentation\Leaflets\PO\_desktop.ini
c:\documentation\Leaflets\RU\_desktop.ini
c:\documentation\Leaflets\SV\_desktop.ini
c:\users\Ivica\AppData\Roaming\.#
c:\users\Ivica\AppData\Roaming\Desktopicon
c:\users\Ivica\AppData\Roaming\Desktopicon\config.ini
c:\users\Ivica\AppData\Roaming\Desktopicon\eBayShortcuts.exe
c:\users\Ivica\AppData\Roaming\inst.exe
c:\windows\Installer\19c2eb.msi
c:\windows\Installer\3a0fa77.msi
c:\windows\Installer\4a99b50.msi
c:\windows\Installer\6316cb9.msi
c:\windows\Installer\6de6ee.msi
c:\windows\neoqaz2.dll
c:\windows\sysgtime.dll
c:\windows\system\Winhc212.dll
c:\windows\system32\12345.exe
c:\windows\system32\inf
c:\windows\system32\inf\rundll33.exe
c:\windows\system32\mozila.exe
c:\windows\system32\Plugins
c:\windows\system32\Plugins\Hoster\aCallbackMethods.dll
c:\windows\system32\Plugins\Hoster\archivto.dll
c:\windows\system32\Plugins\Hoster\bluehostto.dll
c:\windows\system32\Plugins\Hoster\dataupde.dll
c:\windows\system32\Plugins\Hoster\fastloadnet.dll
c:\windows\system32\Plugins\Hoster\fastshareorg.dll
c:\windows\system32\Plugins\Hoster\fileuploadnet.dll
c:\windows\system32\Plugins\Hoster\megauploadcom.dll
c:\windows\system32\Plugins\Hoster\meinuploadcom.dll
c:\windows\system32\Plugins\Hoster\moosharede.dll
c:\windows\system32\Plugins\Hoster\myvideode.dll
c:\windows\system32\Plugins\Hoster\netloadin.dll
c:\windows\system32\Plugins\Hoster\PluginSettings.ini
c:\windows\system32\Plugins\Hoster\qsharecom.dll
c:\windows\system32\Plugins\Hoster\rapidsharecom.dll
c:\windows\system32\Plugins\Hoster\shareonlinebiz.dll
c:\windows\system32\Plugins\Hoster\shareplacecom.dll
c:\windows\system32\Plugins\Hoster\silofilescom.dll
c:\windows\system32\Plugins\Hoster\speedysharecom.dll
c:\windows\system32\Plugins\Hoster\uploadedto.dll
c:\windows\system32\Plugins\Hoster\yourfilesbiz.dll
c:\windows\system32\Plugins\Hoster\youtubecom.dll
c:\windows\system32\Plugins\YouCrypt\callbackmethods.dll
c:\windows\system32\Plugins\YouCrypt\captcha.dll
c:\windows\system32\Plugins\YouCrypt\cineto.dll
c:\windows\system32\Plugins\YouCrypt\datenbankorg.dll
c:\windows\system32\Plugins\YouCrypt\datenschleuder.dll
c:\windows\system32\Plugins\YouCrypt\ddlscene.dll
c:\windows\system32\Plugins\YouCrypt\ddl(zabranjeno).dll
c:\windows\system32\Plugins\YouCrypt\dreidl.dll
c:\windows\system32\Plugins\YouCrypt\dxpdivxvidorg.dll
c:\windows\system32\Plugins\YouCrypt\gameblog.dll
c:\windows\system32\Plugins\YouCrypt\gamezam.dll
c:\windows\system32\Plugins\YouCrypt\gapping.dll
c:\windows\system32\Plugins\YouCrypt\g(zabranjeno).dll
c:\windows\system32\Plugins\YouCrypt\linkbank.dll
c:\windows\system32\Plugins\YouCrypt\linksafe.dll
c:\windows\system32\Plugins\YouCrypt\LinkSave.dll
c:\windows\system32\Plugins\YouCrypt\lix.dll
c:\windows\system32\Plugins\YouCrypt\mirrorit.dll
c:\windows\system32\Plugins\YouCrypt\netfolderin.dll
c:\windows\system32\Plugins\YouCrypt\onekh.dll
c:\windows\system32\Plugins\YouCrypt\rapidfolder.dll
c:\windows\system32\Plugins\YouCrypt\rapidlayer.dll
c:\windows\system32\Plugins\YouCrypt\rapidsafede.dll
c:\windows\system32\Plugins\YouCrypt\rapidsafenet.dll
c:\windows\system32\Plugins\YouCrypt\relinkus.dll
c:\windows\system32\Plugins\YouCrypt\RScomLinkList.dll
c:\windows\system32\Plugins\YouCrypt\rslayer.dll
c:\windows\system32\Plugins\YouCrypt\saveraidrush.dll
c:\windows\system32\Plugins\YouCrypt\secured.dll
c:\windows\system32\Plugins\YouCrypt\securnet.dll
c:\windows\system32\Plugins\YouCrypt\serienjunkies.dll
c:\windows\system32\Plugins\YouCrypt\shareonall.dll
c:\windows\system32\Plugins\YouCrypt\shareprotect.dll
c:\windows\system32\Plugins\YouCrypt\stealth.dll
c:\windows\system32\Plugins\YouCrypt\tinyurl.dll
c:\windows\system32\Plugins\YouCrypt\UndergroundCMS.dll
c:\windows\system32\Plugins\YouCrypt\uppicoasis.dll
c:\windows\system32\Plugins\YouCrypt\urlcash.dll
c:\windows\system32\Plugins\YouCrypt\usercashcom.dll
c:\windows\system32\Plugins\YouCrypt\xlinkin.dll
c:\windows\system32\winword.exe
c:\windows\system32\zip32.dll
c:\windows\xccwinsys.ini

.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_MyWebSearchService


((((((((((((((((((((((( Dateien erstellt von 2009-09-04 bis 2009-10-04 ))))))))))))))))))))))))))))))
.

2009-10-04 18:45 . 2009-10-04 18:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-10-04 17:42 . 2009-10-04 17:42 -------- d-----w- c:\users\Ivica\AppData\Local\GHISLER
2009-10-04 10:55 . 2009-10-04 10:55 0 ---ha-w- c:\windows\€AstInfo.dat
2009-10-04 10:06 . 2009-10-04 10:06 -------- d-----w- c:\program files\zabkat
2009-10-04 09:46 . 2009-10-04 09:46 114688 ----a-w- c:\windows\system32\vsgximbt.dll
2009-10-04 09:46 . 2009-10-04 09:46 -------- d-----w- c:\program files\FileStream
2009-10-03 16:26 . 2009-10-03 16:26 -------- d-----w- c:\program files\StreamingStar
2009-10-03 07:29 . 2009-10-03 07:29 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-10-03 07:27 . 2009-10-03 07:55 -------- d-----w- c:\programdata\Rosetta Stone
2009-10-03 07:27 . 2009-10-03 07:27 -------- d-----w- c:\program files\Rosetta Stone
2009-10-02 19:27 . 2009-10-04 09:11 -------- d-----w- c:\users\Ivica\AppData\Roaming\GoodSync
2009-10-02 17:45 . 2009-10-01 08:29 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-09-30 08:08 . 2009-09-30 08:10 -------- d-----w- c:\users\Ivica\AppData\Roaming\vlc
2009-09-25 17:08 . 2009-09-25 17:08 167376 ----a-w- c:\users\Ivica\AppData\Roaming\Mozilla\Firefox\Profiles\3gbqj5fb.default\FlashGot.exe
2009-09-24 22:35 . 2009-09-24 22:35 -------- d-----w- c:\users\Ivica\AppData\Roaming\Scendix Software
2009-09-24 22:35 . 2009-09-24 22:35 -------- d-----w- c:\users\Ivica\AppData\Local\Scendix Software
2009-09-24 22:34 . 2009-04-07 11:50 23720 ----a-w- c:\windows\system32\novamnv6.dll
2009-09-24 22:34 . 2009-04-07 11:50 18600 ----a-w- c:\windows\system32\novamiv6.dll
2009-09-24 22:30 . 2009-09-24 22:35 -------- d-----w- c:\program files\PamFax
2009-09-23 12:53 . 2009-10-01 08:10 -------- d-----w- c:\users\Ivica\AppData\Local\Orange Internet Everywhere
2009-09-23 12:26 . 2009-09-23 12:26 -------- d-----w- c:\program files\Orange
2009-09-22 22:55 . 2009-09-22 22:55 -------- d-----w- c:\users\Ivica\AppData\Roaming\AVS4YOU
2009-09-22 22:55 . 2009-09-22 22:55 -------- d-----w- c:\programdata\AVS4YOU
2009-09-22 19:44 . 2009-02-18 13:17 113152 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2009-09-22 19:44 . 2009-02-18 13:17 101760 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2009-09-19 17:10 . 2009-09-19 17:11 -------- d-----w- c:\program files\Common Files\AVSMedia
2009-09-19 17:10 . 2009-09-19 17:11 -------- d-----w- c:\program files\AVS4YOU
2009-09-19 17:10 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2009-09-18 10:22 . 2009-09-18 10:22 -------- d-----w- c:\program files\Advanced Business Card Maker
2009-09-18 09:18 . 2009-09-18 09:18 -------- d-----w- c:\program files\Avanquest update
2009-09-18 09:18 . 2009-09-18 09:18 -------- d-----w- c:\programdata\BVRP Software
2009-09-18 09:12 . 1997-01-20 18:26 565760 ----a-w- c:\windows\system32\msvcp50.DLL
2009-09-18 09:12 . 2005-01-12 22:34 27025 ----a-w- c:\windows\system32\OLE2.REG
2009-09-18 09:12 . 1995-02-28 21:00 348160 ----a-w- c:\windows\system32\MFC30.DLL
2009-09-18 09:11 . 2009-09-18 09:11 -------- d-----w- c:\program files\Common Files\MySoftware
2009-09-18 09:11 . 2009-09-18 09:11 -------- d-----w- c:\program files\MySoftware
2009-09-17 10:24 . 2009-09-17 10:24 -------- d-----w- c:\programdata\Local
2009-09-06 00:18 . 2009-09-06 00:25 5358672 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Temp\MxSetup.exe

.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-04 18:48 . 2009-04-28 17:21 8500 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-10-04 18:48 . 2009-04-28 17:21 2170912 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-10-04 18:48 . 2008-01-18 13:47 20288756 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-10-04 18:48 . 2008-01-18 13:47 1514813472 ----a-w- c:\windows\system32\drivers\fidbox.dat
2009-10-04 18:47 . 2007-03-19 07:12 12 ----a-w- c:\windows\bthservsdp.dat
2009-10-04 17:21 . 2008-03-17 06:28 -------- d-----w- c:\users\Ivica\AppData\Roaming\MxBoost
2009-10-04 14:45 . 2007-06-11 17:27 -------- d-----w- c:\programdata\Kaspersky Lab
2009-10-04 14:37 . 2009-03-10 09:57 -------- d-----w- c:\program files\PC Satellite TV
2009-10-04 14:37 . 2009-02-17 10:06 -------- d-----w- c:\program files\Modem Spy
2009-10-04 10:54 . 2009-03-10 19:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-03 22:54 . 2007-03-16 18:04 2032 ----a-w- c:\users\Ivica\AppData\Local\d3d9caps.dat
2009-10-03 21:11 . 2009-02-28 20:18 -------- d-----w- c:\programdata\Google Updater
2009-10-03 13:44 . 2007-07-02 12:11 -------- d-----w- c:\users\Ivica\AppData\Roaming\Azureus
2009-10-03 08:03 . 2009-03-22 16:36 -------- d-----w- c:\users\Ivica\AppData\Roaming\Babylon
2009-10-03 08:03 . 2009-03-22 16:36 -------- d-----w- c:\programdata\Babylon
2009-10-03 07:45 . 2007-03-20 10:44 -------- d-----w- c:\programdata\FLEXnet
2009-10-02 19:27 . 2007-11-02 06:37 -------- d-----w- c:\program files\Siber Systems
2009-10-02 14:20 . 2006-11-02 15:33 689092 ----a-w- c:\windows\system32\perfh007.dat
2009-10-02 14:20 . 2006-11-02 15:33 152256 ----a-w- c:\windows\system32\perfc007.dat
2009-10-01 23:20 . 2007-03-16 18:04 -------- d-----w- c:\users\Ivica\AppData\Roaming\Skype
2009-10-01 22:02 . 2009-02-22 18:16 -------- d-----w- c:\users\Ivica\AppData\Roaming\skypePM
2009-09-30 08:11 . 2008-01-14 06:41 -------- d-----w- c:\users\Ivica\AppData\Roaming\Zoom Player
2009-09-27 20:52 . 2009-07-22 05:48 162816 ----a-w- c:\windows\system32\fmod.dll
2009-09-25 13:24 . 2009-09-25 13:24 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2009-09-24 22:32 . 2009-02-22 18:14 -------- d-----w- c:\program files\Common Files\Skype
2009-09-23 15:18 . 2007-07-02 12:10 -------- d-----w- c:\program files\Azureus
2009-09-23 15:18 . 2008-07-18 21:02 181 ----a-w- c:\users\Ivica\AppData\Roaming\Azureus\restart.bat
2009-09-23 15:16 . 2008-07-27 11:32 7154255 ----a-w- c:\users\Ivica\AppData\Roaming\Azureus\plugins\azemp\azmplay.exe
2009-09-23 15:13 . 2008-07-16 11:57 -------- d-----w- c:\users\Ivica\AppData\Roaming\uTorrent
2009-09-23 15:08 . 2008-07-18 22:21 -------- d-----w- c:\users\Ivica\AppData\Roaming\BitTorrent
2009-09-22 15:04 . 2008-01-18 13:50 95259 ----a-w- c:\windows\system32\drivers\klick.dat
2009-09-22 15:04 . 2008-01-18 13:50 107547 ----a-w- c:\windows\system32\drivers\klin.dat
2009-09-22 09:01 . 2009-08-22 17:06 -------- d-----w- c:\program files\Mobile Partner
2009-09-18 09:18 . 2006-11-30 14:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-18 09:16 . 2007-03-16 18:04 165568 ----a-w- c:\users\Ivica\AppData\Local\GDIPFONTCACHEV1.DAT
2009-09-18 09:05 . 2009-06-18 15:51 -------- d--h--w- c:\programdata\PDFC
2009-09-18 08:29 . 2009-06-18 10:48 -------- d-----w- c:\users\Ivica\AppData\Roaming\Nitro PDF
2009-09-10 12:54 . 2009-03-10 19:20 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 12:53 . 2009-03-10 19:20 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-10 05:27 . 2008-03-12 06:05 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-10 05:06 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-09 22:33 . 2009-06-15 14:36 -------- d-----w- c:\users\Ivica\AppData\Roaming\MagicEffect Photo
2009-09-07 16:20 . 2008-02-15 13:53 -------- d-----w- c:\programdata\CanonIJPLM
2009-09-06 01:01 . 2007-03-16 22:39 -------- d-----w- c:\program files\Opera
2009-09-06 00:28 . 2008-03-17 06:27 140169 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MaxthonUINST.exe
2009-09-06 00:28 . 2008-03-17 06:26 -------- d-----w- c:\users\Ivica\AppData\Roaming\Maxthon2
2009-09-03 22:50 . 2008-02-15 18:39 -------- d-----w- c:\users\Ivica\AppData\Roaming\Canon
2009-08-31 10:19 . 2006-12-01 08:17 -------- d-----w- c:\program files\Java
2009-08-29 10:43 . 2009-08-29 10:43 -------- d-----w- c:\users\Ivica\AppData\Roaming\XNote Stopwatch
2009-08-29 10:43 . 2009-08-29 10:43 -------- d-----w- c:\program files\XNote Stopwatch
2009-08-29 10:14 . 2009-05-14 14:33 -------- d-----w- c:\users\Ivica\AppData\Roaming\MessengerDiscovery 2
2009-08-28 12:39 . 2009-09-02 19:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-28 10:15 . 2009-09-02 19:40 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-25 06:51 . 2009-08-25 06:51 3548560 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Maxthon.exe
2009-08-25 03:12 . 2009-08-25 03:12 202144 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Modules\MxVideoPopup\MxVideoPopup.dll
2009-08-22 16:11 . 2009-08-20 12:44 -------- d-----w- c:\program files\Funk Software
2009-08-20 12:46 . 2009-08-20 12:46 -------- d-----w- c:\program files\Siemens
2009-08-19 23:13 . 2009-04-28 17:21 7772 --sha-w- c:\windows\system32\drivers\fidbox2(64).idx
2009-08-19 23:13 . 2009-04-28 17:21 1957920 --sha-w- c:\windows\system32\drivers\fidbox2(63).dat
2009-08-19 23:13 . 2008-01-18 13:47 20288756 --sha-w- c:\windows\system32\drivers\fidbox(62).idx
2009-08-19 23:13 . 2008-01-18 13:47 1514813472 ----a-w- c:\windows\system32\drivers\fidbox(61).dat
2009-08-18 05:20 . 2009-08-18 05:20 193944 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\Modules\MxUpdate\MxUp.exe
2009-08-17 08:13 . 2009-08-17 08:13 91456 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxTool.dll
2009-08-14 21:42 . 2009-08-13 15:49 -------- d-----w- c:\program files\WinPcap
2009-08-14 17:07 . 2009-09-09 11:21 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 16:29 . 2009-09-09 11:21 104960 ----a-w- c:\windows\system32\netiohlp.dll
2009-08-14 16:29 . 2009-09-09 11:21 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 14:16 . 2009-09-09 11:21 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 14:16 . 2009-09-09 11:21 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 14:16 . 2009-09-09 11:21 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 14:16 . 2009-09-09 11:21 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 14:16 . 2009-09-09 11:21 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 14:16 . 2009-09-09 11:21 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 14:16 . 2009-09-09 11:21 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-13 19:04 . 2007-04-28 09:58 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-08-13 03:13 . 2009-08-13 03:13 898456 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxProxy2.dll
2009-07-28 02:38 . 2009-07-28 02:38 103832 ----a-w- c:\users\Ivica\AppData\Roaming\Maxthon2\MxHttpRq.dll
2009-07-25 03:23 . 2009-06-19 21:07 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-21 21:52 . 2009-08-09 05:24 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-08-09 05:24 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-08-09 05:24 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-08-09 05:24 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-21 17:49 . 2009-06-11 22:56 9408 ----a-w- c:\windows\system32\plkmon32.dll
2009-07-21 06:32 . 2009-07-21 06:32 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-07-18 10:15 . 2009-05-14 10:44 604416 ----a-w- c:\windows\system32\TUProgSt.exe
2009-07-18 10:15 . 2009-07-18 10:15 361216 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-07-17 14:35 . 2009-08-15 20:33 71680 ----a-w- c:\windows\system32\atl.dll
2009-07-14 13:00 . 2009-08-15 20:33 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-14 12:59 . 2009-08-15 20:33 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-07-14 12:58 . 2009-08-15 20:33 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-07-14 10:59 . 2009-08-15 20:33 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-07-11 19:32 . 2009-09-09 11:21 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-07-11 19:32 . 2009-09-09 11:21 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-07-11 19:32 . 2009-09-09 11:21 513024 ----a-w- c:\windows\system32\wlansvc.dll
2009-07-11 19:29 . 2009-09-09 11:21 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2007-05-11 13:25 . 2007-05-11 13:25 1404928 ----a-w- c:\program files\TrueBlur.8BF
2007-05-11 13:25 . 2007-05-11 13:25 1449984 ----a-w- c:\program files\FocusFixer Win.8BF
2007-05-11 13:24 . 2007-05-11 13:24 1196032 ----a-w- c:\program files\ShadowFixer Win.8BF
2007-05-11 13:24 . 2007-05-11 13:24 1245184 ----a-w- c:\program files\NoiseFixer Win.8BF
2007-05-02 11:52 . 2007-05-02 11:52 67802 ----a-w- c:\program files\ReadMe TrueBlur 1.5.0_W.rtf
2009-04-29 04:29 . 2009-07-17 10:02 202168 ----a-w- c:\program files\mozilla firefox\plugins\SwDir.dll
2008-03-27 14:09 . 2008-03-27 14:09 75 --sh--r- c:\windows\CT5PRET.BIN
2008-06-21 00:19 . 2008-01-18 13:47 829808928 --sha-w- c:\windows\System32\drivers\fidbox(60).dat
.

(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{9CB65206-89C4-402c-BA80-02D8C59F9B1D}"= "c:\program files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL" [2008-03-28 57344]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-05-20 177464]

[HKEY_CLASSES_ROOT\clsid\{9cb65206-89c4-402c-ba80-02d8c59f9b1d}]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-18 10:58 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
2009-04-08 14:05 739688 ----a-w- c:\progra~1\MICROS~3\Office14\URLREDIR.DLL

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-05-20 12:36 1258808 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RAMSaverPro"="c:\program files\Godlike Developers\RAM Saver Professional\ramsaverpro.exe" [2009-02-19 198688]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-18 1233920]
"HideAnyWindow"="c:\program files\HideAnyWindow\haw.exe" [2008-08-13 238080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2009-07-21 208616]
"MSF_Monitor"="c:\progra~1\MYSECR~1\MSFMON.exe" [2007-01-24 99920]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]

c:\users\Ivica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Actual Reminder.lnk - c:\program files\Actual Reminder 3.0 Talk + Weather\Actual Reminder.exe [2008-5-10 1245696]
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2007-9-7 3581680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-8-14 727592]
Orange Internet Everywhere.lnk - c:\program files\Orange\Orange Internet Everywhere\Orange Internet Everywhere.exe [2009-1-13 4605440]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Multi]
2008-01-16 22:47 95480 ----a-w- c:\program files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fsp_lmwl]
2008-06-13 19:39 45184 ----a-w- c:\windows\System32\fsp_lmwl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2006-11-24 09:36 73728 ----a-w- c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Hard Drive Inspector Professional"=c:\program files\Hard Drive Inspector\HDInspector.exe
"speedfan"=c:\program files\SpeedFan\speedfan.exe
"AdobeUpdater"=c:\program files\Common Files\Adobe\Updater\AdobeUpdater.exe
"Nero PhotoShow Media Manager"=c:\progra~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
"Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" /background
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\HOMERunner.exe" -s
"SplitScreen"="c:\program files\SplitView 2009\SplitScr.exe" -auto
"HideAnyWindow"=c:\program files\HideAnyWindow\haw.exe
"ehTray.exe"=c:\windows\ehome\ehTray.exe
"MyWebSearch Email Plugin"=c:\progra~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
"swg"=c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
"LowTek CopyFaster"="c:\program files\LowTek CopyFaster\copyfast.exe" /startup
"ErrorRepairPro"=c:\program files\Error Repair Professional\autostart.exe
"uTorrent"="c:\users\Ivica\Program Files\uTorrent\uTorrent.exe"
"VeohPlugin"="c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Windows Defender"=%ProgramFiles%\Windows Defender\MSASCui.exe -hide
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
"PWRISOVM.EXE"=c:\program files\PowerISO\PWRISOVM.EXE
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"Device Detector"=DevDetect.exe -autorun
"WinampAgent"=c:\program files\Winamp\winampa.exe
"Windows Mobile-based device management"=%windir%\WindowsMobile\wmdc.exe
"VAIOCameraUtility"="c:\program files\Sony\VAIO Camera Utility\VCUServe.exe"
"GrooveMonitor"=c:\progra~1\MICROS~3\Office14\GROOVEMN.EXE
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"CanonSolutionMenu"=c:\program files\Canon\SolutionMenu\CNSLMAIN.exe /logon
"NSLauncher"=c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"sclauncher"=c:\program files\SimpleCenter\bin\win\sclauncher.exe
"NeroFilterCheck"=c:\program files\Common Files\Nero\Lib\NeroCheck.exe
"HiYo"=c:\program files\HiYo\bin\HiYo.exe /RunFromStartup
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe"
"SplitView"="c:\program files\SplitView 2009\SplitScr.exe" -auto
"THGuard"="c:\program files\TrojanHunter 5.0\THGuard.exe"
"AcronisTimounterMonitor"=c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
"GroupManager"=c:\program files\IE Motivational Poster Maker\groupmanager.exe
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe"
"TrueImageMonitor.exe"=c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
"Babylon Client"=c:\program files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
"CLMLServer"="c:\program files\Cyberlink\Power2Go\CLMLSvc.exe"
"WindowsMediaPlugin"=system32\WindowsMediaPlugin.exe
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
"My Web Search Bar Search Scope Monitor"="c:\progra~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w /h
"SweetIM"=c:\program files\SweetIM\Messenger\SweetIM.exe
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
"YouCam Mirror Tray icon"="c:\program files\CyberLink\YouCam\YouCamTray.exe" /s
"PC Auto Shutdown"="c:\program files\PC Auto Shutdown\AutoShutdown.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{1F1EE28F-5F4B-4E02-BBEE-FE20A31E4E22}"= UDP:c:\program files\Skype\Phone\Skype.exe:Skype
"{6D94207A-92C2-4498-90AB-5DC177634702}"= TCP:c:\program files\Skype\Phone\Skype.exe:Skype
"TCP Query User{22FAE317-2A61-478F-BF1F-400295D186F3}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= UDP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"UDP Query User{6676D5B2-0B71-4FB0-A933-5086F8867EF6}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= TCP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"{3DFD6795-71A5-4FD5-AF40-431C68CED0E6}"= UDP:c:\program files\uTorrent\utorrent.exe:µTorrent
"{1697D469-53A7-4B0C-8F33-7C44D0464A20}"= TCP:c:\program files\uTorrent\utorrent.exe:µTorrent
"TCP Query User{9496926F-813D-4411-BAD5-8F6B0ECCD5BE}g:\\programi ivica\\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe"= UDP:g:\programi ivica\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe:eMule
"UDP Query User{95C38007-7EA9-4131-BE47-8B512061054E}g:\\programi ivica\\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe"= TCP:g:\programi ivica\===e mule ivica===\emule0.47c-xtreme5.3.1\emule.exe:eMule
"TCP Query User{F445B7E7-6A0B-410B-946C-D7F38F959001}c:\\program files\\opera\\opera.exe"= UDP:c:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{02B4FBFC-6A66-48AD-A076-4173B4A9B895}c:\\program files\\opera\\opera.exe"= TCP:c:\program files\opera\opera.exe:Opera Internet Browser
"{EC34DB54-91DD-4109-9649-AC20F72F2039}"= UDP:5678:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4004
"{F530B0B5-FE36-4333-9E62-1EBAD28F91BF}"= UDP:999:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4005
"{41D57E86-A1A3-436C-A009-A928512C4CF7}"= UDP:26675:LocalSubnet:LocalSubnet|IF={3B4FC425-C35F-4CEE-AC3F-2EFBD0A80214}:@%systemroot%\WindowsMobile\wmdc.exe,-4006
"TCP Query User{B7F12660-B261-4A03-9227-37EB11A4B4DB}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= UDP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"UDP Query User{1FD9A4E6-E80E-4693-9FBE-CE6350A8D952}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= TCP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"TCP Query User{2D2764CF-31AA-4975-9E8C-09DF9C1055FD}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{6799821F-B795-473C-AFA0-6C3A9A75346C}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"{461F16E1-99FE-4B4D-BFEA-76C8ECF784CF}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{7BCB138F-00E8-4649-8FF4-8527E8929912}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"TCP Query User{3FCE1FF6-F9D1-4F33-B5DB-B89C49D3FE96}c:\\program files\\foxit software\\pdf editor\\pdfedit.exe"= UDP:c:\program files\foxit software\pdf editor\pdfedit.exe:Foxit PDF Editor, the first REAL editor for PDF files!
"UDP Query User{B72E4683-D6B6-451F-B9E3-0E67B72DD81E}c:\\program files\\foxit software\\pdf editor\\pdfedit.exe"= TCP:c:\program files\foxit software\pdf editor\pdfedit.exe:Foxit PDF Editor, the first REAL editor for PDF files!
"TCP Query User{916F2403-3B06-499C-B4C8-553AF24DF136}c:\\program files\\videolan\\vlc\\vlc.exe"= UDP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"UDP Query User{0B73EB80-AA5B-4B23-96DC-F87A1CAB6C8B}c:\\program files\\videolan\\vlc\\vlc.exe"= TCP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"{69709160-DD1D-4937-B917-71C3016799A9}"= UDP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{E950F7F5-D16B-422B-B542-A8671A222D37}"= TCP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"TCP Query User{1F9BEFFB-CD1C-466D-B8C5-67CE108C8005}c:\\program files\\sony\\vaio media registration tool\\vmpclient.exe"= UDP:c:\program files\sony\vaio media registration tool\vmpclient.exe:VAIO Media Registration Tool
"UDP Query User{7C679259-AD63-4F27-B5FA-6AF022CF821F}c:\\program files\\sony\\vaio media registration tool\\vmpclient.exe"= TCP:c:\program files\sony\vaio media registration tool\vmpclient.exe:VAIO Media Registration Tool
"TCP Query User{7C3CDBA9-75D5-4D23-817E-D69D5B3C0DDE}c:\\program files\\joost\\xulrunner\\tvprunner.exe"= UDP:c:\program files\joost\xulrunner\tvprunner.exe:tvprunner
"UDP Query User{51AC2415-5C4A-4A6A-90B7-037CAE72A602}c:\\program files\\joost\\xulrunner\\tvprunner.exe"= TCP:c:\program files\joost\xulrunner\tvprunner.exe:tvprunner
"TCP Query User{675D3AC2-AEF1-4B9C-8B24-8F2B6F6DBA20}c:\\program files\\real\\realplayer\\realplay.exe"= UDP:c:\program files\real\realplayer\realplay.exe:RealPlayer
"UDP Query User{0956CCFF-6CC9-4893-8738-800BFEF253C4}c:\\program files\\real\\realplayer\\realplay.exe"= TCP:c:\program files\real\realplayer\realplay.exe:RealPlayer
"{A84D05C8-52F3-406B-AAE4-BC1118B9CFB2}"= UDP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{98242DA3-E208-47FE-A7F8-761DD5B3A764}"= TCP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"TCP Query User{92BA09C3-E7B2-4210-917B-50ED2069551E}c:\\^^^msn pack^^^\\msn emotions\\winks,moods,muggins,weemees and meegos\\mcoinstall.exe"= UDP:c:\^^^msn pack^^^\msn emotions\winks,moods,muggins,weemees and meegos\mcoinstall.exe:mcoinstall
"UDP Query User{1179DE2B-7063-4F4B-8ABE-E0BB884775ED}c:\\^^^msn pack^^^\\msn emotions\\winks,moods,muggins,weemees and meegos\\mcoinstall.exe"= TCP:c:\^^^msn pack^^^\msn emotions\winks,moods,muggins,weemees and meegos\mcoinstall.exe:mcoinstall
"TCP Query User{760C744A-DA5C-41BF-B593-A75EC4E99E5C}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
"UDP Query User{16E3A843-BAB9-435F-B1BA-7D7D9764DD4A}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
"TCP Query User{8727623C-7F11-4BC3-8715-69AB7E110632}c:\\program files\\spacialaudio\\sambc\\sambc.exe"= UDP:c:\program files\spacialaudio\sambc\sambc.exe:SAMBC
"UDP Query User{06876C4F-497D-401C-A4A7-5833CDD9FEDC}c:\\program files\\spacialaudio\\sambc\\sambc.exe"= TCP:c:\program files\spacialaudio\sambc\sambc.exe:SAMBC
"TCP Query User{96AD9F26-5741-457E-8F54-0E2130607A11}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= UDP:c:\program files\common files\nero\nero web\setupx.exe:MSI starter
"UDP Query User{6879C9BA-4015-4C4C-A192-04A47C52C79E}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= TCP:c:\program files\common files\nero\nero web\setupx.exe:MSI starter
"TCP Query User{4F9DF09C-7337-4687-B6E1-E30F733ACC7C}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= UDP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{EA20A45C-0CAE-4626-8072-F69767D3CF1F}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= TCP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{BAB69BC4-0A94-43BB-BBEE-9C01F7295031}c:\\program files\\super internet tv\\onlinetv.exe"= UDP:c:\program files\super internet tv\onlinetv.exe:Super Internet TV
"UDP Query User{AAF2F8D7-C62C-4A0B-8CBF-C402039B7DB9}c:\\program files\\super internet tv\\onlinetv.exe"= TCP:c:\program files\super internet tv\onlinetv.exe:Super Internet TV
"TCP Query User{651A825E-8FF7-44B6-A8BA-1124AA2317A1}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"UDP Query User{1604FBB8-1260-4390-AE89-740705A9016A}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"{FC5C14CF-B932-4BC6-8F59-70A036E53A05}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{2B394842-006F-41CE-882B-C2002C55C594}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{F95A5440-3DB5-4D09-9634-A5E784051583}"= UDP:c:\program files\VoipStunt.com\VoipStunt\VoipStunt.exe:VoipStunt
"{307F31BC-E3A0-43B5-8F46-A53DDA3D7210}"= TCP:c:\program files\VoipStunt.com\VoipStunt\VoipStunt.exe:VoipStunt
"{2E1DED2E-9DA9-42EC-882B-070BF24CA5EC}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{23B97F0C-B73D-404E-A5B5-50F8A5C20FF9}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"TCP Query User{5F4E1452-028C-4F97-90F2-36DE58ED6558}h:\\programme\\azureus\\azureus.exe"= UDP:h:\programme\azureus\azureus.exe:Azureus
"UDP Query User{F4428C90-E871-4D71-90DE-F295B1D5E68B}h:\\programme\\azureus\\azureus.exe"= TCP:h:\programme\azureus\azureus.exe:Azureus
"TCP Query User{65AEF9E1-EEA8-47DF-9555-48A9830525DC}c:\\program files\\remote desktop control\\apc_host.exe"= UDP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"UDP Query User{DE37635A-3F4C-4BB8-94FB-655230225AAA}c:\\program files\\remote desktop control\\apc_host.exe"= TCP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"TCP Query User{F796D597-A0E6-4D13-B58E-7ED685184A62}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
"UDP Query User{2A3D0A3F-A37E-4542-ADEF-4F3AE7F11952}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
"TCP Query User{72807BF3-8DD2-48D0-A299-913F0D8F1A85}c:\\program files\\webcamxp\\webcamxp.exe"= UDP:c:\program files\webcamxp\webcamxp.exe:webcamXP 2007
"UDP Query User{AE5113DD-EA80-4FC2-83B5-EC241B5B18D1}c:\\program files\\webcamxp\\webcamxp.exe"= TCP:c:\program files\webcamxp\webcamxp.exe:webcamXP 2007
"TCP Query User{054BCD54-DAD9-4AAA-B228-45E8E294AD87}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= UDP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"UDP Query User{A185EB80-85AF-45EF-91DC-11B3D58F8320}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= TCP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"TCP Query User{ED93EC28-9B6C-4D05-B719-AE8CB08087CE}c:\\program files\\opera\\opera.exe"= UDP:c:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{6F1DFCB8-E997-4244-A953-32767E9271F6}c:\\program files\\opera\\opera.exe"= TCP:c:\program files\opera\opera.exe:Opera Internet Browser
"TCP Query User{E3D20E74-B09F-4271-8451-59829155D31E}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= UDP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"UDP Query User{F09E619A-DCB7-4DD9-B15E-EE9CA10A6276}c:\\'''lcd'''\\===lcd++ivica===\ldcplusplus.exe"= TCP:c:\'''lcd'''\===lcd++ivica===\ldcplusplus.exe:LDC++
"TCP Query User{4EBDAF12-AA6B-4986-BC38-286A656D8A69}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 7.0.1.321\\german\\setup.exe"= UDP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 7.0.1.321\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 7.0
"UDP Query User{4B0F7C69-EEA4-4C7B-8480-B51C7EBAC448}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 7.0.1.321\\german\\setup.exe"= TCP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 7.0.1.321\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 7.0
"TCP Query User{84272BC0-FAE2-4594-ACB4-9DD061174F59}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"UDP Query User{11EB6529-30C3-4E2C-976A-79268C3538E5}c:\\'''e mule'''\\emule0.48a 6.1\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a 6.1\emule.exe:eMule
"TCP Query User{1ABA54A2-5EBA-4FA9-BB93-6E985AFE2030}c:\\'''e mule'''\\emule0.48a-scarangel_v2.5-bin\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a-scarangel_v2.5-bin\emule.exe:eMule
"UDP Query User{357E007E-4772-40D0-A858-2DC393439123}c:\\'''e mule'''\\emule0.48a-scarangel_v2.5-bin\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a-scarangel_v2.5-bin\emule.exe:eMule
"TCP Query User{1CDCA8C4-8458-4F82-9263-E2B21935E87F}c:\\'''e mule'''\\emule0.48a8.sivka.mod.v18a1-alpha\\emule.exe"= UDP:c:\'''e mule'''\emule0.48a8.sivka.mod.v18a1-alpha\emule.exe:eMule
"UDP Query User{81DD9036-5F07-490D-9A79-5048B7B11D25}c:\\'''e mule'''\\emule0.48a8.sivka.mod.v18a1-alpha\\emule.exe"= TCP:c:\'''e mule'''\emule0.48a8.sivka.mod.v18a1-alpha\emule.exe:eMule
"TCP Query User{6C638DC0-52F0-4A06-8B88-1C302EB7229E}c:\\'''e mule'''\\emule-0.48a-mephisto-v1.1\\emule0.48a-mephisto_v1.1-bin\\emule.exe"= UDP:c:\'''e mule'''\emule-0.48a-mephisto-v1.1\emule0.48a-mephisto_v1.1-bin\emule.exe:eMule
"UDP Query User{443561E4-8713-404D-855B-96B02E2A2DB5}c:\\'''e mule'''\\emule-0.48a-mephisto-v1.1\\emule0.48a-mephisto_v1.1-bin\\emule.exe"= TCP:c:\'''e mule'''\emule-0.48a-mephisto-v1.1\emule0.48a-mephisto_v1.1-bin\emule.exe:eMule
"TCP Query User{F085F248-3270-48FB-A454-E2401F19949D}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= UDP:c:\program files\common files\nero\nero web\setupx.exe:Nero Installer
"UDP Query User{4398F60A-452D-499E-A84B-879106830218}c:\\program files\\common files\\nero\\nero web\\setupx.exe"= TCP:c:\program files\common files\nero\nero web\setupx.exe:Nero Installer
"TCP Query User{67E41C04-DBE0-41BB-8244-7BEFB20BA613}c:\\program files\\dc++\\dcplusplus.exe"= UDP:c:\program files\dc++\dcplusplus.exe:DC++
"UDP Query User{15A1A017-4DE5-45D8-B522-F6EEF7A6A26E}c:\\program files\\dc++\\dcplusplus.exe"= TCP:c:\program files\dc++\dcplusplus.exe:DC++
"TCP Query User{4DEF7CEA-32EF-42CE-B466-CFDAFF4F9A85}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= UDP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{2425B26E-A7E2-449F-AA5D-5E81FD4A5D1F}c:\\program files\\java\\jre1.6.0\\bin\\javaw.exe"= TCP:c:\program files\java\jre1.6.0\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{9B8AFFB7-FC77-4417-8494-AD067B7D5F1E}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{AA546513-0A4B-4EDD-84E4-697CB30B743A}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{397D352B-5C54-4BFD-BC9A-918F3F48C92C}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
"UDP Query User{406E554A-A12F-44C7-9218-636367B79BE0}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
"{1EECB941-1F31-458D-BC7E-38D39AA69947}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{0ACBBBA8-985B-4319-A369-1A69F1D1014F}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"TCP Query User{85B99BF5-11FA-4F91-B010-EF1EC46CB3BD}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= UDP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"UDP Query User{64385C91-2CDB-42EB-A230-A4CB4FAAD906}c:\\program files\\camfrog\\camfrog video chat\\camfrog video chat.exe"= TCP:c:\program files\camfrog\camfrog video chat\camfrog video chat.exe:Camfrog Client Module
"TCP Query User{D9B45BB8-C1B1-4960-8B70-BAFD3F0569EF}c:\\program files\\jlc's software\\internet tv\\internet tv.exe"= UDP:c:\program files\jlc's software\internet tv\internet tv.exe:Internet TV
"UDP Query User{3D893EB5-BD2D-4D1D-B571-24AFCF7FDC0F}c:\\program files\\jlc's software\\internet tv\\internet tv.exe"= TCP:c:\program files\jlc's software\internet tv\internet tv.exe:Internet TV
"TCP Query User{70ACEC48-CE2D-44F0-8674-D5A733F22783}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"UDP Query User{831B893D-8A6D-48B6-B5E5-A273435A9289}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"TCP Query User{94ED767E-40FE-47ED-B525-C668F3FE5F58}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"UDP Query User{7CDC4CA4-B4E5-4A90-896C-1C51D228F0CF}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"TCP Query User{D0036D28-C6EA-49F2-8071-0620513BA037}c:\\program files\\simplecenter\\home media server.exe"= UDP:c:\program files\simplecenter\home media server.exe:Home Media Server
"UDP Query User{D75CD836-D99C-4398-83C3-FC7EE20A7948}c:\\program files\\simplecenter\\home media server.exe"= TCP:c:\program files\simplecenter\home media server.exe:Home Media Server
"{5EE745AD-5E4A-4BB6-9564-666BF39C909C}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{8D3C31A2-58C0-4B1F-98B9-E788A01CCCBB}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{96A9AC6B-36B3-4734-B28D-09BA6F023263}"= UDP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{84CACE7E-096E-41BF-9BBB-65C8BEB06C1E}"= TCP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{426CAE92-0CFB-4FCD-A0DF-B06390368076}"= UDP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{7882F360-8071-4936-8B66-CEA63A57DBBB}"= TCP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{D2E0123E-29B5-4448-B8AD-E20E128331A5}"= UDP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{B714E275-7F8D-46E3-852B-18CDCEC6CAB1}"= TCP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{13C2E891-9009-48A1-AF31-33DD49A363A9}"= UDP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"{52FCB45C-72BE-4D22-814F-2E70422B7B1E}"= TCP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"TCP Query User{A9B87855-7D59-4B21-B998-2C778970422C}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\maxthon.exe"= UDP:c:\users\ivica\appdata\roaming\maxthon2\maxthon.exe:maxthon.exe
"UDP Query User{8933BE33-8FF6-4048-8637-4E3AB3794353}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\maxthon.exe"= TCP:c:\users\ivica\appdata\roaming\maxthon2\maxthon.exe:maxthon.exe
"{03725368-9010-4658-ABFA-D9049E241C23}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{2BD5DEEE-EFD7-443C-9FCD-52BF971012AA}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{65B2500D-7597-476A-97B5-C5BD6557148C}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{BDEFE113-654A-4191-BA3C-622074A1CE9E}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{3675DC96-C943-4CC8-9F6F-90E74E42C578}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\modules\\mxdownloader\\mxdownloadserver.exe"= UDP:c:\users\ivica\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe:mxdownloadserver.exe
"UDP Query User{D43CB998-65EB-4AB1-A6A8-2E17CB79ADFA}c:\\users\\ivica\\appdata\\roaming\\maxthon2\\modules\\mxdownloader\\mxdownloadserver.exe"= TCP:c:\users\ivica\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe:mxdownloadserver.exe
"TCP Query User{3D04331E-84CE-47B3-A3C8-49554CADE95F}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:uTorrent
"UDP Query User{9244DA76-13DC-4BAF-9E6D-017B6973C52D}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:uTorrent
"TCP Query User{C516864F-7867-49B5-8AAD-948300254DEE}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= UDP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"UDP Query User{6C0DF3BB-B051-47AE-A18B-78C479DBB4A0}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= TCP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"{8844BFFE-749C-42E8-A6BA-8152FCD7FDE7}"= UDP:c:\users\Ivica\Program Files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{48A83104-7AD5-457E-9243-98648A03BCA5}"= TCP:c:\users\Ivica\Program Files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{5F7E5949-4315-40E8-A58C-80B7EEA131E5}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
"UDP Query User{2CF86445-1468-451E-9519-519C88D13A7D}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
"{22B31ADC-D59F-44F8-B6C2-8D8358F431B5}"= UDP:c:\program files\DNA\btdna.exe:DNA
"{90CF1BCF-21D4-4D89-A6B5-D7B6DB2618B3}"= TCP:c:\program files\DNA\btdna.exe:DNA
"{4DB894DB-C88F-44A6-BD85-E171D824DED7}"= UDP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"{A3770D93-D2C5-4E40-8292-65231AE49431}"= TCP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"TCP Query User{C2814EB2-E571-4C7D-A727-0B51FF3A7676}c:\\program files\\skype\\phone\\skype.exe"= UDP:c:\program files\skype\phone\skype.exe:Skype. Take a deep breath
"UDP Query User{20A3CC26-D130-4208-BBB3-55E168A68A53}c:\\program files\\skype\\phone\\skype.exe"= TCP:c:\program files\skype\phone\skype.exe:Skype. Take a deep breath
"TCP Query User{3AFAA9F0-6242-44F8-8D88-B0FC66DE67CB}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= UDP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"UDP Query User{D97897EC-1A12-4005-B13C-7112E91B2C9B}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= TCP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"TCP Query User{5D791686-4A7A-43E4-88E4-E7E90D8385E2}c:\\program files\\yahoo!\\messenger\\yahoomessenger.exe"= UDP:c:\program files\yahoo!\messenger\yahoomessenger.exe:Yahoo! Messenger
"UDP Query User{DD6BB10F-5C5C-4BC1-B681-1ED16177FAFD}c:\\program files\\yahoo!\\messenger\\yahoomessenger.exe"= TCP:c:\program files\yahoo!\messenger\yahoomessenger.exe:Yahoo! Messenger
"TCP Query User{23C5A592-8E50-49F4-BD7F-5AFBC932F291}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= UDP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"UDP Query User{A7BFBA2B-780F-48B6-94DB-E96961601EA0}c:\\program files\\motionapps\\mdesktop\\motionappsdesktop.exe"= TCP:c:\program files\motionapps\mdesktop\motionappsdesktop.exe:mDesktop
"TCP Query User{70E7E953-944E-4D80-B197-B6AAF23CD14C}c:\\program files\\remote desktop control\\apc_host.exe"= UDP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"UDP Query User{335E2D7D-997F-4A3E-8552-D9350C7D5D39}c:\\program files\\remote desktop control\\apc_host.exe"= TCP:c:\program files\remote desktop control\apc_host.exe:Remote Desktop Control, RDC
"TCP Query User{8810F88B-2059-4F17-9A71-DFB5A65D9928}c:\\program files\\flashget\\flashget.exe"= UDP:c:\program files\flashget\flashget.exe:FlashGet
"UDP Query User{FFCDB02A-6CF4-4567-A49F-9F95E029C12B}c:\\program files\\flashget\\flashget.exe"= TCP:c:\program files\flashget\flashget.exe:FlashGet
"{C8E087BB-497F-4FC2-B84B-AD92A9B1514F}"= UDP:c:\program files\ApexDC++\ApexDC.exe:ApexDC++ - Pinnacle of File Sharing
"{0DDFC3E2-D306-480E-90D4-53AED705F748}"= TCP:c:\program files\ApexDC++\ApexDC.exe:ApexDC++ - Pinnacle of File Sharing
"TCP Query User{BC138B8A-AE45-48D0-9565-84071EEE97CC}c:\\program files\\java\\jre1.6.0\\launch4j-tmp\\jdownloader.exe"= UDP:c:\program files\java\jre1.6.0\launch4j-tmp\jdownloader.exe:Java(TM) Platform SE binary
"UDP Query User{E75D7642-8FBF-4128-A26B-7F487CE8372E}c:\\program files\\java\\jre1.6.0\\launch4j-tmp\\jdownloader.exe"= TCP:c:\program files\java\jre1.6.0\launch4j-tmp\jdownloader.exe:Java(TM) Platform SE binary
"TCP Query User{6D1E51F4-D96C-4AF0-A190-961FF7271852}c:\\windows\\system32\\java.exe"= UDP:c:\windows\system32\java.exe:Java(TM) Platform SE binary
"UDP Query User{B9E93B6E-3B88-4436-AC2E-55816379C1DE}c:\\windows\\system32\\java.exe"= TCP:c:\windows\system32\java.exe:Java(TM) Platform SE binary
"TCP Query User{05DF6F7B-D201-49D7-A591-045D70C1EE16}c:\\program files\\ares ultra\\ares ultra.exe"= UDP:c:\program files\ares ultra\ares ultra.exe:Ares Ultra
"UDP Query User{3F74C22C-8165-479B-AA8A-87D96EC8378B}c:\\program files\\ares ultra\\ares ultra.exe"= TCP:c:\program files\ares ultra\ares ultra.exe:Ares Ultra
"TCP Query User{C6C261AB-CB91-4090-8461-5A51C4E1A9FC}c:\\users\\ivica\\temp\\teamviewer\\version4\\teamviewer.exe"= UDP:c:\users\ivica\temp\teamviewer\version4\teamviewer.exe:teamviewer.exe
"UDP Query User{67360BE0-118C-485A-B920-E9855193FFBC}c:\\users\\ivica\\temp\\teamviewer\\version4\\teamviewer.exe"= TCP:c:\users\ivica\temp\teamviewer\version4\teamviewer.exe:teamviewer.exe
"TCP Query User{962514C5-1331-44A3-8AA6-C125134A02E4}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule
"UDP Query User{B7393006-865F-4931-9A31-975D26A2AA27}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule
"TCP Query User{39DF64EA-C76B-40D2-BBB5-74ABE910E228}c:\\program files\\pc satellite tv\\pc satellite tv.exe"= UDP:c:\program files\pc satellite tv\pc satellite tv.exe:PC Satellite TV
"UDP Query User{8973DAB7-421C-4B74-9868-9D6BA1C49530}c:\\program files\\pc satellite tv\\pc satellite tv.exe"= TCP:c:\program files\pc satellite tv\pc satellite tv.exe:PC Satellite TV
"{50B25B7E-F997-4F4C-9CF3-11C92EB9D86B}"= UDP:c:\windows\System32\WindowsMediaPlugin.exe:utorrent
"{FA23C219-0A9B-49B2-8BDE-6BC12B09F75D}"= TCP:c:\windows\System32\WindowsMediaPlugin.exe:utorrent
"{BE600B64-EE35-4CAC-A6A7-828F364FA861}"= UDP:c:\windows\System32\svchost.exe :utorrent
"{B69E8DD5-BAF9-4544-AF4B-C925748AA6FF}"= TCP:c:\windows\System32\svchost.exe :utorrent
"TCP Query User{E51298FA-2636-4BB5-8332-84DF563F1369}c:\\softimage\\face_robot_1.8\\application\\bin\\fr.exe"= UDP:c:\softimage\face_robot_1.8\application\bin\fr.exe:FR
"UDP Query User{322CF588-3550-4C19-913B-E483508838E3}c:\\softimage\\face_robot_1.8\\application\\bin\\fr.exe"= TCP:c:\softimage\face_robot_1.8\application\bin\fr.exe:FR
"TCP Query User{D3FC3BF2-FF57-4704-8B8C-E73301E8BD37}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 2009\\german\\setup.exe"= UDP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2009\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 2009
"UDP Query User{36502034-8031-42D0-9752-1E668E22D137}c:\\programdata\\kaspersky lab setup files\\kaspersky anti-virus 2009\\german\\setup.exe"= TCP:c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2009\german\setup.exe:Installationsprogramm für Kaspersky Anti-Virus 2009
"{24E4066E-C4EF-417A-BB9B-68F03F4DA62C}"= UDP:c:\program files\Microsoft Office\Office14\GROOVE.EXE:Microsoft SharePoint Workspace
"{98A4DE67-E63F-4EF0-A72B-A05E84FF797E}"= TCP:c:\program files\Microsoft Office\Office14\GROOVE.EXE:Microsoft SharePoint Workspace
"{EB63814C-AF8B-4AAC-A4DD-E73ECB675E1B}"= UDP:c:\program files\Microsoft Office\Office14\ONENOTE.EXE:Microsoft Office OneNote
"{B61CF998-4323-4E0E-AB62-410BAE714039}"= TCP:c:\program files\Microsoft Office\Office14\ONENOTE.EXE:Microsoft Office OneNote
"{87A3C5CE-02DE-4892-9F6C-3D0AC355102D}"= TCP:6004|c:\program files\Microsoft Office\Office14\outlook.exe:Microsoft Office Outlook
"TCP Query User{3329171E-7CE9-428A-91C0-A0F2D10B2F75}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= UDP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"UDP Query User{6250FC00-AB3C-4914-A02C-95844A3B8692}c:\\users\\ivica\\program files\\utorrent\\utorrent.exe"= TCP:c:\users\ivica\program files\utorrent\utorrent.exe:utorrent.exe
"TCP Query User{06161AAE-4417-4499-A5BA-2583F484CA4F}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= UDP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"UDP Query User{55AE7FA6-AB28-43B6-AAE1-7608C7F78058}c:\\'''e mule'''\\emule0.47c-5.4.2\\emule.exe"= TCP:c:\'''e mule'''\emule0.47c-5.4.2\emule.exe:eMule
"{0F2138C4-C175-48C9-9450-28841A613CDE}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{DC1153A5-88F8-4140-AB60-9B0B04288F00}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{95CF0060-2FC9-4047-B281-3DB35793F68F}"= UDP:c:\program files\Microsoft Games\Rise of Nations\thrones.exe:Rise of Nations
"{A97E6DA5-041B-4514-A311-278F618E17BB}"= TCP:c:\program files\Microsoft Games\Rise of Nations\thrones.exe:Rise of Nations
"TCP Query User{F9AFBC55-5B66-423F-875D-768FF03F78A4}c:\\program files\\java\\jre6\\bin\\javaw.exe"= UDP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{C23D4C22-90DD-4B74-AF0F-F3A1A3A46661}c:\\program files\\java\\jre6\\bin\\javaw.exe"= TCP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{660927E4-069C-4233-8E14-C330E08FE52F}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{F5EE9729-FFC1-4013-AE80-343B643BAAFE}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"{F828CE9A-AB55-4CC4-89A3-EA05B0768F97}"= UDP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player
"{A619A94F-5CB4-4C81-BB1B-B48ABADE7252}"= TCP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player
"TCP Query User{E86FFB4E-DDAE-444E-8B5B-94EAD42AEFE2}c:\\program files\\java\\jre6\\launch4j-tmp\\frd.exe"= UDP:c:\program files\java\jre6\launch4j-tmp\frd.exe:Java(TM) Platform SE binary
"UDP Query User{1F047506-9818-45D0-8510-2B0074D1814F}c:\\program files\\java\\jre6\\launch4j-tmp\\frd.exe"= TCP:c:\program files\java\jre6\launch4j-tmp\frd.exe:Java(TM) Platform SE binary
"TCP Query User{6E87C2F4-851F-43DA-8464-552DA4C42715}c:\\program files\\java\\jre6\\bin\\java.exe"= UDP:c:\program files\java\jre6\bin\java.exe:Java(TM) Platform SE binary
"UDP Query User{743B667B-4780-4A3B-B3E9-BC2632E9E49C}c:\\program files\\java\\jre6\\bin\\java.exe"= TCP:c:\program files\java\jre6\bin\java.exe:Java(TM) Platform SE binary
"TCP Query User{D6AB89BB-441B-4032-BE73-49F77C41B02D}c:\\program files\\java\\jre6\\bin\\javaw.exe"= UDP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"UDP Query User{F6CE1149-891C-4302-A455-D4317226EB01}c:\\program files\\java\\jre6\\bin\\javaw.exe"= TCP:c:\program files\java\jre6\bin\javaw.exe:Java(TM) Platform SE binary
"TCP Query User{18BA3DD8-5EAB-4010-A365-DD4A976E3B4C}c:\\users\\ivica\\program files\\bittorrent\\bittorrent.exe"= UDP:c:\users\ivica\program files\bittorrent\bittorrent.exe:bittorrent.exe
"UDP Query User{44AE491E-515F-4B6A-8469-07E40E86BA60}c:\\users\\ivica\\program files\\bittorrent\\bittorrent.exe"= TCP:c:\users\ivica\program files\bittorrent\bittorrent.exe:bittorrent.exe
"TCP Query User{E89CFCE9-FA01-48EB-995F-F451D4872B42}c:\\program files\\raspberry software\\true connect\\trueconnect.exe"= UDP:c:\program files\raspberry software\true connect\trueconnect.exe:TrueConnect
"UDP Query User{818A0A7A-5A68-4891-90D4-016CFF5C552E}c:\\program files\\raspberry software\\true connect\\trueconnect.exe"= TCP:c:\program files\raspberry software\true connect\trueconnect.exe:TrueConnect
"{D893EA4D-38BB-4BC6-ACB6-C9A247171261}"= c:\program files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe:Rosetta Stone Version 3 Application
"{D491A8AC-CC07-4A10-880D-A5721A5B2BE7}"= c:\program files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe:Rosetta Stone Ltd Services

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"DefaultOutboundAction"= 0 (0x0)
"DefaultInboundAction"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Program Files\\BitTorrent\\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

R0 hotcore3;hotcore3;c:\windows\System32\drivers\hotcore3.sys [22.06.2007 11:11 38448]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [29.01.2008 17:29 33808]
R0 snapman380;Acronis Snapshots Manager (Build 380);c:\windows\System32\drivers\snman380.sys [20.11.2008 08:40 134272]
R0 tdrpman147;Acronis Try&Decide and Restore Points filter (build 147);c:\windows\System32\drivers\tdrpm147.sys [20.11.2008 08:41 971232]
R1 FlyCryptor;FlyCryptor;c:\windows\System32\drivers\flycryptor.sys [14.01.2009 15:35 31744]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [09.07.2008 17:28 20496]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [06.12.2007 21:03 660768]
R2 AVWEBCAM;AV WebCam, WDM Video Capture;c:\windows\System32\drivers\avwebcam.sys [22.11.2007 14:19 215552]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s [?]
R2 GtDetectSc;GtDetectSc;c:\program files\Orange\Orange Internet Everywhere\GtDetectSc.exe [30.04.2008 16:52 200704]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [12.09.2007 11:21 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\System32\drivers\LMIRfsDriver.sys [02.03.2009 20:16 47640]
R2 LmpcService;Lock My PC Service

Poslao: 04 Okt 2009 21:52
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Log nije kompletan. Iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku.

Poslao: 04 Okt 2009 22:00
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

mycity.rs/must-login.png
Izvini, nisam ni video da nije kompletan.

Poslao: 04 Okt 2009 22:31
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Upload-uj sledeće file-ove:

C:\Qoobox\Quarantine\C\WINDOWS\neoqaz2.dll.vir
C:\Qoobox\Quarantine\C\WINDOWS\sysgtime.dll.vir


preko ovog linka: http://www.mycity.rs/ambulanta-upload.php


-------------------------------------------------------------------------------------


Da li ti je poznato šta se nalazilo u donjim folderima?

c:\windows\system32\Plugins\Hoster
c:\windows\system32\Plugins\YouCrypt

Ako su to neki programi koje si ti instalirao, reci.

Poslao: 04 Okt 2009 22:47
Idi na vrh
offline
  • Pridružio: 04 Okt 2009
  • Poruke: 15

Na zalost ne secam se sta je to bilo.
Uploadovao sam fajlove koje si trazio

Poslao: 04 Okt 2009 22:56
Idi na vrh
offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Skini ovaj file na Desktop: https://www.mycity.rs/must-login.png

Dvoklikni ga i kada se pojavi upit, klikni Yes.


Postoje li sada neki problemi u radu PC-a?

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa folderima

Ko je trenutno na forumu
 

Ukupno su 1007 korisnika na forumu :: 38 registrovanih, 4 sakrivenih i 965 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, ajo baba, bigfoot, Brana01, cavatina, elenemste, Excalibur13, gasha, goxin, ikan, JimmyNapoli, Još malo pa deda, laki_bb, loon123, Lošmi, Marko Marković, MiG-29M2, Misirac, mkukoleca, mocnijogurt, mrav pesadinac, pein, procesor, proka89, raketaš, raptorsi, royst33, S2M, Singidunumac, Sirius, Tila Painen, vathra, virked, Vlada1389, Vlada78, voja64, wolverined4, YugoSlav