MyCity » Ambulanta -> Arhiva Ambulante » neki owc... fajlovi..u cemu je problem?

neki owc... fajlovi..u cemu je problem?

Napisano na dan: 18.6.2007

neki owc... fajlovi..u cemu je problem?

Sledeća strana

Pagination

Odgovori

MarioBB Poslao: 18 Jun 2007 14:42 Idi na vrh
offline MarioBB Građanin Pridružio: 27 Nov 2006 Poruke: 129 Gde živiš: Zrenjanin	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! E,ovako...Do nedavno sam skinuo novi av (sophos ver 6.5,koji se savrsheno uklopio sa za 7),i to sve je ok...Do sada sam imao avast kojeg svi nazivaju "prasak za pecivo"...heh!Znaci,kada sam install Sophos nasao je poprilicno dosta nekih Trojan Mal/Packera-(p.s. sta je to?!) u reg bazi jedno 10 komada...I komp mi je opet nesto usporen na primer treba mu dosta da se skonta prilikom kopiranja nekih fajlova..prilikom unpack-a,i tako to...Da ne davim previshe jednostavno bangavo radi...a pre par nedelja sam vec bio tu,stvarno ne kontam kako se sve te nebuloze provlace...(zamolio bih predlog za zastitu...ne postoji najbolji av i sve to,ali sta mi sve treba da bih bio ok zasticen??),Jos jedna stvar,prilikom scan-a (sophos av,za spyware,tune up reg cleaner...,1click maintence)dodje do nekih fajlova "owc...i ima jos nesto pored" i imaju extenziju (.htm),dobro znam sta je to...Ali mi se abnormalno uspori komp(npr:mis mi secka...),kada dodje do njih kao da mu treba jedno 5min za te fajlove a ima ih 5-6...u cemu je fora...???hlp plz...p.s. drug mi uzeo cd sa drajverima pa ne mogu lepo jedan format c...heh! LoG: Logfile of HijackThis v1.99.1 Scan saved at 14:46:09, on 18.6.2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe C:\Program Files\Sophos\AutoUpdate\ALsvc.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\NetLimiter 2 Monitor\NLClient.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Winamp\winampa.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Macrogaming\SweetIM\SweetIM.exe C:\Program Files\CursorXP\CursorXP.exe C:\PROGRA~1\Ashampoo\ASHAMP~1\UnInstaller Suite\UIWatcher.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Sophos\AutoUpdate\ALMon.exe C:\Program Files\TV-FM Tuner Player\TvPanel.exe C:\Program Files\MSI\Common\RaUI.exe C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe C:\Program Files\Gran Paradiso\firefox.exe C:\Documents and Settings\-Mario-\Desktop\t3.exe R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe O4 - HKCU\..\Run: [CursorXP] "C:\Program Files\CursorXP\CursorXP.exe" -s O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKCU\..\Run: [UIWatcher] C:\PROGRA~1\Ashampoo\ASHAMP~1\UnInstaller Suite\UIWatcher.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Global Startup: AutoUpdate Monitor.lnk = C:\Program Files\Sophos\AutoUpdate\ALMon.exe O4 - Global Startup: Control Panel.lnk = C:\Program Files\TV-FM Tuner Player\TvPanel.exe O4 - Global Startup: MSI Wireless Utility.lnk = C:\Program Files\MSI\Common\RaUI.exe O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: Download using LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O8 - Extra context menu item: Download using LeechGet Wizard - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Iz&vezi u Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Parse with LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Istraživanje - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\-Mario-\Start Menu\Programs\IMVU\Run IMVU.lnk O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F}: NameServer = 195.252.109.4 194.106.163.3 O17 - HKLM\System\CS1\Services\Tcpip\..\{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F}: NameServer = 195.252.109.4 194.106.163.3 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe O23 - Service: Sophos AutoUpdate Service - Sophos Plc - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Profil

bobby Poslao: 18 Jun 2007 20:20 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nema ovde neceg malicioznog, jednostavno si strpao na komp programe koji "jedu" resurse. 1. imas gomilu programa koji rade non-stop: Sophos, Ad-Watch, UnInstaller Suite, WinampAgent, ZA, Daemon Tools... 2. Imas programe za koje je poznato da su problematicni: Ad-Watch 2007 i Daemon tools. 3. Sophos stvarno nije za kucne kompove. Treba malo poznavati tematiku antivirusa da bi se pravilno koristio Sophos. Ne nude se za badava kursevi za podesavanje Sophosa. Ukoliko i dalje sumnjas u maliciozne programe, onda mozemo jos da probamo recimo da li ima nekih rootkitova: Preuzmi fajl gmer.zip sa ovog linka i sačuvaj na Desktop-u. Raspakuj ga u neki folder. Dupli klik na gmer.exe za početak: Izaberi Rootkit Tab na vrhu. Klikni na Scan. Kada je skeniranje završeno, klik na Copy dugme ispod - ovo će sačuvati to u Clipboard. Iskoristi opciju Paste u Notepad-u da bi to prebacio u tekst. Snimi taj tekst iz Notepada kao file1.txt. Ponovi ovo isto sa Autostart Tab-om. Snimi taj tekst iz Notepada kao file2.txt. Iskopiraj nam ovde sadrzaj ta dva fajla koja smo malopre snimili

Profil

MarioBB Poslao: 18 Jun 2007 23:24 Idi na vrh
offline MarioBB Građanin Pridružio: 27 Nov 2006 Poruke: 129 Gde živiš: Zrenjanin	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hm...Pa gde nije..kada sam otvorio "processes",iz task menagera imao sam i sta da vidim..kako mi jedu memoriju... 1. Znaci da ja sve to lepo iskljucim sa start up-a...??Bilo bi pozeljno,jel?Tjs,samo ono sto mi ne treba(winamp,daemon,ad watch),pa sophos i za mi trebaju..zar ne? 2. Pa taj Ad-Watch ni ne preferiram bas.tj. nisam ni primetio da je ostao uklj. hteo sam samo da vidim kakav je(znam da zna da zeza),a daemon ide off... 3.Nisam znao,lepo mi pisalo tamo gde sam ga skidao,kao da je desktop edition,pa zar je stvarno toliko komplikovan kad mi treba kurs za njega,na Avast se ne vracam..ni pod tacku razno,gomilu stvari koje avast nije nasao sophos jeste,dobro onda,koji AV mi preporucujesh??A,da nije Avast i nod..KIS? file1: GMER 1.0.12.12244 - gmer.net Rootkit scan 2007-06-18 23:21:24 Windows 5.1.2600 Service Pack 2 ---- System - GMER 1.0.12 ---- SSDT \SystemRoot\System32\vsdatant.sys ZwConnectPort SSDT \SystemRoot\System32\vsdatant.sys ZwCreateFile SSDT \SystemRoot\System32\vsdatant.sys ZwCreateKey SSDT \SystemRoot\System32\vsdatant.sys ZwCreatePort SSDT \SystemRoot\System32\vsdatant.sys ZwCreateProcess SSDT \SystemRoot\System32\vsdatant.sys ZwCreateProcessEx SSDT \SystemRoot\System32\vsdatant.sys ZwCreateSection SSDT \SystemRoot\System32\vsdatant.sys ZwCreateWaitablePort SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteFile SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteKey SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteValueKey SSDT \SystemRoot\System32\vsdatant.sys ZwDuplicateObject SSDT sptd.sys ZwEnumerateKey SSDT sptd.sys ZwEnumerateValueKey SSDT \SystemRoot\System32\vsdatant.sys ZwLoadDriver SSDT \SystemRoot\System32\vsdatant.sys ZwLoadKey SSDT \SystemRoot\System32\vsdatant.sys ZwMapViewOfSection SSDT \SystemRoot\System32\vsdatant.sys ZwOpenFile SSDT sptd.sys ZwOpenKey SSDT \SystemRoot\System32\vsdatant.sys ZwOpenProcess SSDT \SystemRoot\System32\vsdatant.sys ZwOpenThread SSDT sptd.sys ZwQueryKey SSDT sptd.sys ZwQueryValueKey SSDT \SystemRoot\System32\vsdatant.sys ZwReplaceKey SSDT \SystemRoot\System32\vsdatant.sys ZwRequestWaitReplyPort SSDT \SystemRoot\System32\vsdatant.sys ZwRestoreKey SSDT \SystemRoot\System32\vsdatant.sys ZwSecureConnectPort SSDT \SystemRoot\System32\vsdatant.sys ZwSetInformationFile SSDT \SystemRoot\System32\vsdatant.sys ZwSetSystemInformation SSDT \SystemRoot\System32\vsdatant.sys ZwSetValueKey SSDT \SystemRoot\System32\vsdatant.sys ZwTerminateProcess SSDT \SystemRoot\System32\vsdatant.sys ZwUnloadDriver INT 0x20 srescan.sys F82B6990 ---- Kernel code sections - GMER 1.0.12 ---- .text ntkrnlpa.exe!ZwCallbackReturn + 23E4 805010E8 12 Bytes [ E0, 81, EF, F4, 70, E4, EF, ... ] ? C:\WINDOWS\system32\drivers\sptd.sys The process cannot access the file because it is being used by another process. ? C:\WINDOWS\System32\Drivers\SPTD5853.SYS The process cannot access the file because it is being used by another process. ? srescan.sys The system cannot find the file specified. ? C:\WINDOWS\System32\Drivers\dtscsi.sys The process cannot access the file because it is being used by another process. ? C:\WINDOWS\system32\DRIVERS\update.sys ---- User code sections - GMER 1.0.12 ---- .text C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe[748] USER32.dll!SetScrollInfo 77D4902C 8 Bytes JMP 003E0000 .text C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe[748] USER32.dll!SetScrollRange 77D4F6BB 8 Bytes JMP 003E00D9 .text C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe[748] USER32.dll!SetScrollPos 77D4F780 8 Bytes JMP 003E01CA .text C:\WINDOWS\explorer.exe[876] USER32.dll!GetCursor 77D4CECD 5 Bytes JMP 01271080 C:\Program Files\CursorXP\CurXP0.dll .text C:\WINDOWS\explorer.exe[876] USER32.dll!GetIconInfo 77D4E9A1 5 Bytes JMP 01271030 C:\Program Files\CursorXP\CurXP0.dll .text C:\WINDOWS\explorer.exe[876] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 01271120 C:\Program Files\CursorXP\CurXP0.dll .text C:\WINDOWS\system32\ZoneLabs\vsmon.exe[1344] ntdll.dll!KiFastSystemCall + 2 7C90EB8D 2 Bytes [ CD, 20 ] .text C:\Program Files\MSI\Common\RaUI.exe[2304] USER32.dll!GetCursor 77D4CECD 5 Bytes JMP 01241080 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\MSI\Common\RaUI.exe[2304] USER32.dll!GetIconInfo 77D4E9A1 5 Bytes JMP 01241030 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\MSI\Common\RaUI.exe[2304] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 01241120 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\Gran Paradiso\firefox.exe[2812] USER32.dll!GetCursor 77D4CECD 5 Bytes JMP 03C71080 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\Gran Paradiso\firefox.exe[2812] USER32.dll!GetIconInfo 77D4E9A1 5 Bytes JMP 03C71030 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\Gran Paradiso\firefox.exe[2812] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 03C71120 C:\Program Files\CursorXP\CurXP0.dll .text C:\Documents and Settings\-Mario-\Desktop\neki folder\gmer.exe[3020] USER32.dll!GetCursor 77D4CECD 5 Bytes JMP 00D31080 .text C:\Documents and Settings\-Mario-\Desktop\neki folder\gmer.exe[3020] USER32.dll!GetIconInfo 77D4E9A1 5 Bytes JMP 00D31030 .text C:\Documents and Settings\-Mario-\Desktop\neki folder\gmer.exe[3020] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 00D31120 .text C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3244] USER32.dll!GetCursor 77D4CECD 5 Bytes JMP 01BE1080 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3244] USER32.dll!GetIconInfo 77D4E9A1 5 Bytes JMP 01BE1030 C:\Program Files\CursorXP\CurXP0.dll .text C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3244] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 01BE1120 C:\Program Files\CursorXP\CurXP0.dll ---- Devices - GMER 1.0.12 ---- Device \FileSystem\Ntfs \Ntfs IRP_MJ_CREATE 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_CLOSE 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_READ 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_WRITE 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_INFORMATION 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_INFORMATION 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_EA 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_EA 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_FLUSH_BUFFERS 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_VOLUME_INFORMATION 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_VOLUME_INFORMATION 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_DIRECTORY_CONTROL 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_FILE_SYSTEM_CONTROL 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_DEVICE_CONTROL 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SHUTDOWN 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_LOCK_CONTROL 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_CLEANUP 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_SECURITY 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_SECURITY 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_QUOTA 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_QUOTA 825CDEB0 Device \FileSystem\Ntfs \Ntfs IRP_MJ_PNP 825CDEB0 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_CREATE 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_CLOSE 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_CLEANUP 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{E8B5E288-3686-407D-80D3-BE7C8460FC17} IRP_MJ_PNP 81F4EDB8 Device \Driver\Tcpip \Device\Ip IRP_MJ_CREATE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Ip IRP_MJ_CLOSE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Ip IRP_MJ_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Ip IRP_MJ_INTERNAL_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Ip IRP_MJ_CLEANUP [F4F09880] vsdatant.sys Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_CREATE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_CLOSE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_READ 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_WRITE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_FLUSH_BUFFERS 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_INTERNAL_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_SHUTDOWN 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_POWER 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_SYSTEM_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmIoDaemon IRP_MJ_PNP 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_CREATE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_CLOSE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_READ 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_WRITE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_FLUSH_BUFFERS 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_INTERNAL_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_SHUTDOWN 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_POWER 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_SYSTEM_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmConfig IRP_MJ_PNP 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_CREATE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_CLOSE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_READ 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_WRITE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_FLUSH_BUFFERS 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_INTERNAL_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_SHUTDOWN 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_POWER 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_SYSTEM_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmPnP IRP_MJ_PNP 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_CREATE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_CLOSE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_READ 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_WRITE 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_FLUSH_BUFFERS 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_INTERNAL_DEVICE_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_SHUTDOWN 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_POWER 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_SYSTEM_CONTROL 825CE9C0 Device \Driver\dmio \Device\DmControl\DmInfo IRP_MJ_PNP 825CE9C0 Device \Driver\Tcpip \Device\Tcp IRP_MJ_CREATE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Tcp IRP_MJ_CLOSE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Tcp IRP_MJ_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Tcp IRP_MJ_INTERNAL_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Tcp IRP_MJ_CLEANUP [F4F09880] vsdatant.sys Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CREATE 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_READ 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_WRITE 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_FLUSH_BUFFERS 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_INTERNAL_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SHUTDOWN 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CLEANUP 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_POWER 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SYSTEM_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_PNP 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_CREATE 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_READ 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_WRITE 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_FLUSH_BUFFERS 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_INTERNAL_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_SHUTDOWN 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_CLEANUP 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_POWER 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_SYSTEM_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_PNP 825CEC78 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSE 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_READ 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP 823E1A60 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE_NAMED_PIPE 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CLOSE 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_READ 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_WRITE 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_INFORMATION 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_INFORMATION 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_EA 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_EA 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_FLUSH_BUFFERS 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_VOLUME_INFORMATION 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_VOLUME_INFORMATION 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DIRECTORY_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_FILE_SYSTEM_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DEVICE_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_INTERNAL_DEVICE_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SHUTDOWN 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_LOCK_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CLEANUP 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE_MAILSLOT 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_SECURITY 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_SECURITY 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_POWER 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SYSTEM_CONTROL 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DEVICE_CHANGE 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_QUOTA 81C0E0E8 Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_QUOTA 81C0E0E8 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLOSE 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_READ 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_WRITE 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FLUSH_BUFFERS 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_INTERNAL_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SHUTDOWN 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SYSTEM_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CLOSE 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_READ 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_WRITE 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_FLUSH_BUFFERS 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_INTERNAL_DEVICE_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SHUTDOWN 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_POWER 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SYSTEM_CONTROL 823E1A60 Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_PNP 823E1A60 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CREATE 81F4EDB8 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLOSE 81F4EDB8 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLEANUP 81F4EDB8 Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_PNP 81F4EDB8 Device \Driver\00000043 \Device\0000004a IRP_MJ_POWER [F849DA26] sptd.sys Device \Driver\00000043 \Device\0000004a IRP_MJ_SYSTEM_CONTROL [F84B1BD8] sptd.sys Device \Driver\00000043 \Device\0000004a IRP_MJ_PNP [F84AA54E] sptd.sys Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CREATE 81F4EDB8 Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLOSE 81F4EDB8 Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLEANUP 81F4EDB8 Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_PNP 81F4EDB8 Device \Driver\Tcpip \Device\Udp IRP_MJ_CREATE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Udp IRP_MJ_CLOSE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Udp IRP_MJ_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Udp IRP_MJ_INTERNAL_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\Udp IRP_MJ_CLEANUP [F4F09880] vsdatant.sys Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_CREATE 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_CLOSE 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_READ 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_WRITE 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_FLUSH_BUFFERS 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_DEVICE_CONTROL 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_INTERNAL_DEVICE_CONTROL 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_SHUTDOWN 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_POWER 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_SYSTEM_CONTROL 825CD0E8 Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_PNP 825CD0E8 Device \Driver\Tcpip \Device\RawIp IRP_MJ_CREATE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\RawIp IRP_MJ_CLOSE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\RawIp IRP_MJ_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\RawIp IRP_MJ_INTERNAL_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\RawIp IRP_MJ_CLEANUP [F4F09880] vsdatant.sys Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_CREATE 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_CLOSE 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_CLEANUP 81F4EDB8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5C82CBA0-3E06-41CC-96FF-5EA9E2B1A78F} IRP_MJ_PNP 81F4EDB8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_NAMED_PIPE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLOSE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_READ 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_WRITE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_EA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_EA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FLUSH_BUFFERS 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_VOLUME_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_VOLUME_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DIRECTORY_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FILE_SYSTEM_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_INTERNAL_DEVICE_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SHUTDOWN 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_LOCK_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLEANUP 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_MAILSLOT 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_SECURITY 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_SECURITY 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_POWER 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SYSTEM_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CHANGE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_QUOTA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_QUOTA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_PNP 81C235F0 Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CREATE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CLOSE [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_INTERNAL_DEVICE_CONTROL [F4F09880] vsdatant.sys Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CLEANUP [F4F09880] vsdatant.sys Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_NAMED_PIPE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLOSE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_READ 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_WRITE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_EA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_EA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FLUSH_BUFFERS 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_VOLUME_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_VOLUME_INFORMATION 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DIRECTORY_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FILE_SYSTEM_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_INTERNAL_DEVICE_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SHUTDOWN 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_LOCK_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLEANUP 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_MAILSLOT 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_SECURITY 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_SECURITY 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_POWER 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SYSTEM_CONTROL 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CHANGE 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_QUOTA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_QUOTA 81C235F0 Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_PNP 81C235F0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CREATE 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CREATE_NAMED_PIPE 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CLOSE 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_READ 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_WRITE 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_INFORMATION 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_SET_INFORMATION 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_FLUSH_BUFFERS 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_VOLUME_INFORMATION 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_DIRECTORY_CONTROL 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_FILE_SYSTEM_CONTROL 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CLEANUP 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_SECURITY 81F5CCD0 Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_SET_SECURITY 81F5CCD0 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CREATE 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_READ 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_WRITE 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_FLUSH_BUFFERS 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_INTERNAL_DEVICE_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SHUTDOWN 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CLEANUP 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_POWER 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SYSTEM_CONTROL 825CEC78 Device \Driver\Ftdisk \Device\FtControl IRP_MJ_PNP 825CEC78 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CREATE 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CLOSE 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_READ 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_WRITE 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_INFORMATION 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_SET_INFORMATION 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_VOLUME_INFORMATION 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_DIRECTORY_CONTROL 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_FILE_SYSTEM_CONTROL 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CLEANUP 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CREATE_MAILSLOT 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_SECURITY 81DCAC60 Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_SET_SECURITY 81DCAC60 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_CREATE 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_CLOSE 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_DEVICE_CONTROL 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_INTERNAL_DEVICE_CONTROL 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_POWER 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_SYSTEM_CONTROL 825CE450 Device \Driver\viamraid \Device\Scsi\viamraid1 IRP_MJ_PNP 825CE450 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_CREATE 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_CLOSE 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_DEVICE_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_INTERNAL_DEVICE_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_POWER 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_SYSTEM_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_PNP 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_CREATE 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_CLOSE 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_DEVICE_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_POWER 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_SYSTEM_CONTROL 8233E548 Device \Driver\dtscsi \Device\Scsi\dtscsi1Port3Path0Target0Lun0 IRP_MJ_PNP 8233E548 Device \FileSystem\Cdfs \Cdfs IRP_MJ_CREATE 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLOSE 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_READ 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_INFORMATION 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_SET_INFORMATION 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_VOLUME_INFORMATION 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_DIRECTORY_CONTROL 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_FILE_SYSTEM_CONTROL 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_DEVICE_CONTROL 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_SHUTDOWN 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_LOCK_CONTROL 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLEANUP 82216190 Device \FileSystem\Cdfs \Cdfs IRP_MJ_PNP 82216190 ---- EOF - GMER 1.0.12 ---- file2: GMER 1.0.12.12244 - gmer.net Autostart scan 2007-06-18 23:22:31 Windows 5.1.2600 Service Pack 2 HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems@Windows = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon >>> @UserinitC:\WINDOWS\system32\userinit.exe, = C:\WINDOWS\system32\userinit.exe, @UIHostC:\WINDOWS\system32\logonui.exe = C:\WINDOWS\system32\logonui.exe HKLM\SYSTEM\CurrentControlSet\Services\ >>> aawservice /Ad-Aware 2007 Service/@ = "C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe" nlsvc /NetLimiter/@ = "C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe" NVSvc /NVIDIA Display Driver Service/@ = %SystemRoot%\system32\nvsvc32.exe SAVAdminService /Sophos Anti-Virus status reporter/@ = "C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe" SAVService /Sophos Anti-Virus/@ = "C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe" Sophos AutoUpdate Service /Sophos AutoUpdate Service/@ = "C:\Program Files\Sophos\AutoUpdate\ALsvc.exe" Spooler /Print Spooler/@ = %SystemRoot%\system32\spoolsv.exe UMWdf /Windows User Mode Driver Framework/@ = C:\WINDOWS\system32\wdfmgr.exe vsmon /TrueVector Internet Monitor/@ = C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>> @NvCplDaemonRUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup @SoundManSOUNDMAN.EXE = SOUNDMAN.EXE @WinampAgentC:\Program Files\Winamp\winampa.exe = C:\Program Files\Winamp\winampa.exe @DAEMON Tools"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 = "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 @ZoneAlarm Client"C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" = "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" @SweetIMC:\Program Files\Macrogaming\SweetIM\SweetIM.exe = C:\Program Files\Macrogaming\SweetIM\SweetIM.exe @Ad-WatchC:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe = C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe HKCU\Software\Microsoft\Windows\CurrentVersion\Run >>> @CursorXP"C:\Program Files\CursorXP\CursorXP.exe" -s = "C:\Program Files\CursorXP\CursorXP.exe" -s @SweetIMC:\Program Files\Macrogaming\SweetIM\SweetIM.exe = C:\Program Files\Macrogaming\SweetIM\SweetIM.exe @UIWatcherC:\PROGRA~1\Ashampoo\ASHAMP~1\UnInstaller Suite\UIWatcher.exe = C:\PROGRA~1\Ashampoo\ASHAMP~1\UnInstaller Suite\UIWatcher.exe @MSMSGS"C:\Program Files\Messenger\msmsgs.exe" /background = "C:\Program Files\Messenger\msmsgs.exe" /background @msnmsgr"C:\Program Files\MSN Messenger\msnmsgr.exe" /background = "C:\Program Files\MSN Messenger\msnmsgr.exe" /background HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved >>> @{42071714-76d4-11d1-8b24-00a0c9068ff3} /Display Panning CPL Extension/deskpan.dll /file not found/ = deskpan.dll /file not found/ @{596AB062-B4D2-4215-9F74-E9109B0A8153} /Previous Versions Property Page/%SystemRoot%\system32\twext.dll = %SystemRoot%\system32\twext.dll @{9DB7A13C-F208-4981-8353-73CC61AE2783} /Previous Versions/%SystemRoot%\system32\twext.dll = %SystemRoot%\system32\twext.dll @{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} /Autoplay for SlideShow/(null) = @{692F0339-CBAA-47e6-B5B5-3B84DB604E87} /Extensions Manager Folder/%SystemRoot%\system32\extmgr.dll = %SystemRoot%\system32\extmgr.dll @{A70C977A-BF00-412C-90B7-034C51DA2439} /NvCpl DesktopContext Class/C:\WINDOWS\system32\nvcpl.dll = C:\WINDOWS\system32\nvcpl.dll @{FFB699E0-306A-11d3-8BD1-00104B6F7516} /Play on my TV helper/C:\WINDOWS\system32\nvcpl.dll = C:\WINDOWS\system32\nvcpl.dll @{1CDB2949-8F65-4355-8456-263E7C208A5D} /Desktop Explorer/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll @{1E9B04FB-F9E5-4718-997B-B8DA88302A47} /Desktop Explorer Menu/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll @{1E9B04FB-F9E5-4718-997B-B8DA88302A48} /nView Desktop Context Menu/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll @{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} /Messenger Sharing Folders/C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll = C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll @{BDEADF00-C265-11D0-BCED-00A0C90AB50F} /Web fascikle/C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL = C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL @{00020D75-0000-0000-C000-000000000046} /Microsoft Office Outlook Desktop Icon Handler/C:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL = C:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL @{0006F045-0000-0000-C000-000000000046} /Microsoft Office Outlook Custom Icon Handler/C:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL = C:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL @{42042206-2D85-11D3-8CFF-005004838597} /Microsoft Office HTML Icon Handler/C:\Program Files\Microsoft Office\OFFICE11\msohev.dll = C:\Program Files\Microsoft Office\OFFICE11\msohev.dll @{B41DB860-8EE4-11D2-9906-E49FADC173CA} /WinRAR shell extension/C:\Program Files\WinRAR\rarext.dll = C:\Program Files\WinRAR\rarext.dll @{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} /TuneUp Shredder Shell Extension/C:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll = C:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll @{44440D00-FF19-4AFC-B765-9A0970567D97} /TuneUp Theme Extension/%SystemRoot%\system32\uxtuneup.dll = %SystemRoot%\system32\uxtuneup.dll @CLSID\{EBDF1F20-C829-14D1-8234-1420AF3E97A9} /LeechGet "Copy Here" Shell Extension/(null) = @{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} /Shell Extensions for RealOne Player/C:\Program Files\Real\RealPlayer\rpshell.dll = C:\Program Files\Real\RealPlayer\rpshell.dll @{EBDF1F20-C829-11D1-8233-FF20AF3E97A9} /TrojanHunter Menu Shell Extension/(null) = @{D9872D13-7651-4471-9EEE-F0A00218BEBB} /Multiscan/C:\Program Files\Zone Labs\ZoneAlarm\zlavscan.dll = C:\Program Files\Zone Labs\ZoneAlarm\zlavscan.dll @{A155339D-CCCD-4714-85EB-3754B804C9DF} /a-squared Free Context Menu Shell Extension/C:\PROGRA~1\A-SQUA~1\A2FREE~1.DLL = C:\PROGRA~1\A-SQUA~1\A2FREE~1.DLL @{A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} /Sophos Anti-Virus Shell Extension/C:\Program Files\Sophos\Sophos Anti-Virus\SavShellExt.dll = C:\Program Files\Sophos\Sophos Anti-Virus\SavShellExt.dll HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ >>> LeechGet@{EBDF1F20-C829-14D1-8234-1420AF3E97A9} = C:\Program Files\LeechGet 2006\ShellExtension.dll SavShellExt@{A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} = C:\Program Files\Sophos\Sophos Anti-Virus\SavShellExt.dll TuneUp Shredder Shell Extension@{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} = C:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll ZLAVShExt@{D9872D13-7651-4471-9EEE-F0A00218BEBB} = C:\Program Files\Zone Labs\ZoneAlarm\zlavscan.dll HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ >>> LeechGet@{EBDF1F20-C829-14D1-8234-1420AF3E97A9} = C:\Program Files\LeechGet 2006\ShellExtension.dll SavShellExt@{A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} = C:\Program Files\Sophos\Sophos Anti-Virus\SavShellExt.dll TuneUp Shredder Shell Extension@{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} = C:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ >>> a2FreeContMenu@{A155339D-CCCD-4714-85EB-3754B804C9DF} = C:\PROGRA~1\A-SQUA~1\A2FREE~1.DLL LeechGet@{EBDF1F20-C829-14D1-8234-1420AF3E97A9} = C:\Program Files\LeechGet 2006\ShellExtension.dll SavShellExt@{A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} = C:\Program Files\Sophos\Sophos Anti-Virus\SavShellExt.dll WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Program Files\WinRAR\rarext.dll ZLAVShExt@{D9872D13-7651-4471-9EEE-F0A00218BEBB} = C:\Program Files\Zone Labs\ZoneAlarm\zlavscan.dll HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects >>> @{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll = C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll @{1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A}C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll = C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll @{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll @{9030D464-4C02-4ABF-8ECC-5164760863C6}C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll HKLM\Software\Microsoft\Internet Explorer\Main >>> @Default_Page_URLhttp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome = microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome @Start Pagehttp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home = microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home @Local Page%SystemRoot%\system32\blank.htm = %SystemRoot%\system32\blank.htm HKCU\Software\Microsoft\Internet Explorer\Main >>> @Start Pagehttp://www.google.com/ = google.com/ @Local PageC:\WINDOWS\system32\blank.htm = C:\WINDOWS\system32\blank.htm HKLM\Software\Classes\PROTOCOLS\Filter\text/xml@CLSID = C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL HKLM\Software\Classes\PROTOCOLS\Handler\ >>> dvd@CLSID = C:\WINDOWS\system32\msvidctl.dll its@CLSID = C:\WINDOWS\system32\itss.dll livecall@CLSID = C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL mhtml@CLSID = %SystemRoot%\system32\inetcomm.dll ms-its@CLSID = C:\WINDOWS\system32\itss.dll msnim@CLSID = C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL mso-offdap@CLSID = C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL mso-offdap11@CLSID = C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL skype4com@CLSID = C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL tv@CLSID = C:\WINDOWS\system32\msvidctl.dll HKLM\Software\Classes\PROTOCOLS\Handler\wia@CLSID = C:\WINDOWS\system32\wiascr.dll C:\Documents and Settings\All Users\Start Menu\Programs\Startup >>> AutoUpdate Monitor.lnk = AutoUpdate Monitor.lnk Control Panel.lnk = Control Panel.lnk MSI Wireless Utility.lnk = MSI Wireless Utility.lnk ---- EOF - GMER 1.0.12 ----

Profil

MarioBB Poslao: 19 Jun 2007 17:10 Idi na vrh
offline MarioBB Građanin Pridružio: 27 Nov 2006 Poruke: 129 Gde živiš: Zrenjanin	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kako sam procitao pravilnik imam pravo da ozivim ovu temu..hehe!Pozzdraw bobby...Kao sto si rekao za one processe da mi cupaju resurse ja te poslusah i sada masina opet leti...Obrisah gomilu nepotrebnih stvari sa kompa i sredio malo start-up i sad mashina opet fura lepo...I,ipak sam se ja vratio na dobri stari "nod32" a onaj sophos mi bas udavio komp,pa pazi kada mu trebalo jedno 2-3sec da mi refreshuje bilo koju ikonu,exe fajl ili bilo sta slicno...Jedino sto bih te zamolio da zaviris u te "Gmer log fajlove" ako ima kojim slucajem nesto sumnjivo...u svakom slucaju problem resen...pozz

Profil

bobby Poslao: 19 Jun 2007 18:56 Idi na vrh
offline bobby Administrator Pridružio: 04 Sep 2003 Poruke: 24135 Gde živiš: Wien	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Logovi su OK.

Profil

MarioBB Poslao: 19 Jun 2007 19:42 Idi na vrh
offline MarioBB Građanin Pridružio: 27 Nov 2006 Poruke: 129 Gde živiš: Zrenjanin	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ok,super...Hwalla pauno...Pozzdraw...

Profil

MyCity » Ambulanta -> Arhiva Ambulante » neki owc... fajlovi..u cemu je problem?

Ko je trenutno na forumu

Ukupno su 973 korisnika na forumu :: 5 registrovanih, 1 sakriven i 967 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: bladesu, hyla, VJ, wizzardone, 2001

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by