Trojanac?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

ComboFix 08-06-11.3 - pc01 2008-06-13 17:44:47.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.593 [GMT 2:00]
Running from: C:\Documents and Settings\pc01\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\pc01\Desktop\CFScript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-05-13 to 2008-06-13 )))))))))))))))))))))))))))))))
.

2008-06-13 15:42 . 2008-06-13 17:40 <DIR> d-------- C:\SMCLpav
2008-06-13 13:59 . 2008-06-13 13:59 162,064 --a------ C:\WINDOWS\system32\drivers\U_EB7.tmp
2008-06-12 23:09 . 2008-06-12 23:09 162,064 --a------ C:\WINDOWS\system32\drivers\U_E1C.tmp
2008-06-12 13:24 . 2008-06-12 13:27 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Winamp
2008-06-12 12:50 . 2008-06-12 12:50 <DIR> d-------- C:\Program Files\YouTube Downloader
2008-06-12 12:25 . 2008-06-12 12:25 162,064 --a------ C:\WINDOWS\system32\drivers\U_E189.tmp
2008-06-11 21:19 . 2008-06-13 17:40 <DIR> d-------- C:\Program Files\ESET
2008-06-11 19:31 . 2008-06-13 15:48 <DIR> d-------- C:\Program Files\Kaspersky Lab
2008-06-11 19:31 . 2008-06-11 21:20 2,429,984 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-06-11 19:31 . 2008-06-11 21:14 33,356 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-06-11 19:31 . 2008-06-11 21:20 6,176 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-06-11 19:31 . 2008-06-11 21:14 1,508 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-06-11 19:30 . 2008-04-14 13:01 272,128 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-06-11 19:30 . 2008-04-14 13:01 272,128 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
2008-06-07 20:09 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-06-07 20:09 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-06-07 20:09 . 2007-07-30 19:19 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-06-07 00:59 . 2008-06-07 00:59 74,703 --a------ C:\WINDOWS\system32\mfc45.dll
2008-06-06 23:55 . 2008-06-07 00:58 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\iolo
2008-06-06 23:55 . 2008-06-07 00:59 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\iolo
2008-06-06 23:50 . 2008-06-06 23:50 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller
2008-06-06 23:49 . 2008-06-07 00:10 <DIR> d-------- C:\Program Files\Windows Live
2008-06-06 23:49 . 2008-06-07 00:10 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-06-06 22:36 . 2008-06-11 19:25 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\VoozieMaker
2008-06-06 22:22 . 2008-06-07 23:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Make A Voozie
2008-06-06 13:30 . 2008-06-06 13:31 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\BSplayer
2008-06-06 12:48 . 2008-06-06 12:52 684,713,984 --a------ C:\Backup.bkf
2008-06-06 12:45 . 2008-06-06 12:53 <DIR> d-------- C:\WINDOWS\system32\NtmsData
2008-06-06 12:37 . 2008-06-06 12:37 <DIR> d---s---- C:\Documents and Settings\pc01\UserData
2008-06-06 12:27 . 2008-06-06 12:27 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\K-Meleon
2008-06-06 12:26 . 2008-06-06 12:26 <DIR> d-------- C:\Program Files\K-Meleon
2008-06-06 01:06 . 2008-06-06 01:06 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\ACD Systems
2008-06-05 23:10 . 2008-06-13 02:27 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\mIRC
2008-06-05 19:35 . 2008-06-05 19:35 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Corel
2008-06-05 19:35 . 2008-06-05 19:35 737,280 --a------ C:\WINDOWS\iun6002.exe
2008-06-05 19:10 . 2008-06-05 19:10 <DIR> d-------- C:\Program Files\Opera
2008-06-05 11:22 . 2008-06-05 11:22 <DIR> d-------- C:\Program Files\EA GAMES
2008-06-05 01:03 . 2008-06-05 01:03 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Media Player Classic
2008-06-05 00:44 . 2008-06-05 00:45 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Xfire
2008-06-05 00:44 . 2008-06-05 00:44 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\teamspeak2
2008-06-04 23:53 . 2008-06-04 23:57 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\ICQ
2008-06-04 23:47 . 2008-06-13 00:09 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\skypePM
2008-06-04 23:45 . 2008-06-13 02:11 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Skype
2008-06-04 23:19 . 2008-06-05 18:03 <DIR> d-------- C:\Documents and Settings\pc01\Application Data\Comodo
2008-06-04 22:39 . 2008-06-05 18:03 <DIR> d-------- C:\Program Files\COMODO
2008-06-04 22:28 . 2008-06-04 22:30 <DIR> d-------- C:\Program Files\Unlocker
2008-06-04 20:02 . 2008-06-04 20:02 <DIR> d--hs---- C:\INCINERATE
2008-06-03 23:35 . 2008-06-12 23:10 <DIR> d-------- C:\Program Files\mIRC
2008-06-01 23:45 . 2008-06-04 22:55 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-06-01 10:55 . 2008-06-01 10:55 <DIR> d-------- C:\Program Files\DaemonTools_WhenUSave_Installer
2008-06-01 10:55 . 2008-06-04 18:21 <DIR> d-------- C:\Program Files\DAEMON Tools
2008-06-01 10:54 . 2008-06-01 10:54 <DIR> d-------- C:\enter_host_plugin_directory_here
2008-05-30 13:09 . 2008-05-30 15:38 <DIR> d-------- C:\Program Files\DAEMON Tools Lite
2008-05-30 13:06 . 2008-05-30 13:06 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-05-30 12:43 . 2006-11-29 13:06 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll
2008-05-30 12:43 . 2006-09-28 16:05 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
2008-05-30 12:43 . 2006-12-08 12:02 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2008-05-30 12:43 . 2006-09-28 16:05 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll
2008-05-30 12:36 . 2008-05-30 12:36 <DIR> d-------- C:\Program Files\Sega
2008-05-26 12:33 . 2008-05-26 12:33 230 --a------ C:\WINDOWS\system32\spupdsvc.inf
2008-05-24 17:55 . 2008-05-24 17:55 736 --a------ C:\WINDOWS\SamsungMaster.INI
2008-05-24 17:44 . 2008-05-24 17:44 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-05-24 17:44 . 2008-05-24 17:44 1,409 --a------ C:\WINDOWS\QTFont.for
2008-05-24 17:38 . 2004-03-09 11:39 8,704 --a------ C:\WINDOWS\system32\vidccleaner.exe
2008-05-23 17:30 . 1995-08-15 02:00 28,113 --a------ C:\WINDOWS\system\OLE2.REG
2008-05-20 23:58 . 2008-05-23 17:29 <DIR> d-------- C:\Program Files\a-squared
2008-05-20 21:06 . 2008-05-23 16:57 26 --a------ C:\WINDOWS\DGcounter.ini
2008-05-20 20:58 . 2008-06-11 19:42 <DIR> d-------- C:\Documents and Settings\Administrator
2008-05-20 20:46 . 2008-05-20 23:01 227 --a------ C:\WINDOWS\AvDetected.ini
2008-05-20 20:45 . 2008-06-13 15:43 <DIR> d-------- C:\Program Files\Common Files\Panda Software
2008-05-20 18:42 . 2008-05-20 21:08 <DIR> d-------- C:\Program Files\a-squared Anti-Malware
2008-05-20 15:57 . 2008-03-01 15:06 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-05-20 15:57 . 2008-03-01 15:06 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-05-20 15:56 . 2008-03-01 15:06 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll
2008-05-20 15:56 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-05-20 15:56 . 2007-03-08 07:10 991,232 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-05-20 15:56 . 2008-03-01 15:06 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-05-20 15:56 . 2008-03-01 15:06 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll
2008-05-20 15:56 . 2008-03-01 15:06 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll
2008-05-20 15:56 . 2008-02-22 12:00 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-05-19 09:21 . 2004-08-04 00:56 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-05-18 22:33 . 2008-06-12 01:52 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-05-18 22:33 . 2006-09-06 17:43 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-05-16 22:59 . 2008-06-12 13:42 1,374 --a------ C:\WINDOWS\imsins.BAK

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-13 13:45 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-06 22:11 --------- d-----w C:\Program Files\MSN Messenger
2008-06-05 20:47 --------- d-----w C:\Program Files\JLC's Software
2008-06-04 18:23 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-06-04 18:02 --------- d-----w C:\Program Files\iolo
2008-06-03 21:05 --------- d-----w C:\Program Files\Yahoo!
2008-05-23 16:14 --------- d-----w C:\Program Files\KONAMI
2008-05-20 20:52 --------- d-----w C:\Program Files\Winamp
2008-05-20 20:41 --------- d-----w C:\Program Files\TVPlayerClassic
2008-05-20 19:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee.com
2008-05-19 18:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avira
2008-05-16 20:13 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:18 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
2008-05-04 18:39 --------- d-----w C:\Program Files\Common Files\ACD Systems
2008-04-27 22:34 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-04-27 22:34 107,832 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-04-26 20:29 --------- d-----w C:\Program Files\Common Files\Synacast
2008-04-26 00:57 --------- d-----w C:\Program Files\PC Camer@
2008-04-26 00:57 --------- d-----w C:\Program Files\Common Files\PAC207
2008-04-25 22:36 --------- d-----w C:\Program Files\ICQ6
2008-04-25 15:24 --------- d-----w C:\Program Files\Globe7
2008-04-25 14:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\MailFrontier
2008-04-23 20:25 --------- d-----w C:\Program Files\Conduit
2008-04-22 22:15 --------- d-----w C:\Program Files\Participatory Culture Foundation
2008-04-21 07:04 659,456 ----a-w C:\WINDOWS\system32\wininet.dll
2008-03-27 08:12 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-19 09:47 1,845,248 ----a-w C:\WINDOWS\system32\win32k.sys
2008-01-16 18:10 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
.

((((((((((((((((((((((((((((( snapshot@2008-06-13_13.57.43,93 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-06-13 10:57:34 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-13 15:40:46 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-13 15:40:56 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_634.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Monitor"="C:\WINDOWS\PixArt\PAC207\Monitor.exe" [2006-11-03 11:01 319488]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 12:48 157592]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [ ]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [ ]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-05-16 01:19 79224]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2008-05-02 06:15 15872]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-04-01 20:49 36352]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-10-10 15:49 7286784]
"UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" [ ]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:56 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.XFR1"= xfcodec.dll
"msacm.ac3filter"= ac3filter.acm
"VIDC.ACDV"= ACDV.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=C:\WINDOWS\pss\Adobe Gamma Loader.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=C:\WINDOWS\pss\WinZip Quick Pick.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^pc01^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Documents and Settings\pc01\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\WINDOWS\pss\Xfire.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
--a------ 2008-05-16 01:19 79224 C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Device Detector]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Disk Cleaner]
C:\Program Files\Disk Cleaner\DiskCleaner.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]
C:\Program Files\FlashGet\FlashGet.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
--a------ 2008-04-01 12:40 172280 C:\Program Files\ICQ6\ICQ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Make A Voozie]
--a------ 2008-02-20 12:00 64000 C:\Documents and Settings\All Users\Application Data\Make A Voozie\VoozieMaker.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCAgentExe]
C:\PROGRA~1\McAfee.com\Agent\McAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCUpdateExe]
c:\PROGRA~1\mcafee.com\agent\mcupdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Miro]
C:\Program Files\Participatory Culture Foundation\Miro\Miro.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msci]
C:\DOCUME~1\pc01\LOCALS~1\Temp\2008425203639_mcinfo.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 11:34 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
--------- 2005-07-14 21:35 1961984 C:\Program Files\Ahead\Nero BackItUp\NBJ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2005-10-10 15:49 7286784 C:\WINDOWS\system32\NvCpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2005-10-10 15:49 86016 C:\WINDOWS\system32\NvMcTray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2005-10-10 15:49 1519616 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OASClnt]
C:\Program Files\McAfee.com\VSO\oasclnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orb]
C:\Program Files\Winamp Remote\bin\OrbTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2006-09-25 08:45 98304 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Registry Helper]
C:\Program Files\Registry Helper\RegistryHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--a------ 2004-11-02 20:24 32768 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files\Spyware Doctor\SDTrayApp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
-r------- 2005-09-22 10:42 90112 C:\WINDOWS\soundman.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spontania Video Collaboration]
C:\Program Files\Spontania Video Collaboration\SpontaniaVideoCollaboration.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
-rahs---- 2008-01-28 12:43 2097488 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-25 02:11 132496 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-04-05 19:36 185896 C:\Program Files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]
C:\Program Files\Trojan Remover\Trjscan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
-ra------ 2004-11-22 08:18 307200 C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirusScan Online]
C:\Program Files\McAfee.com\VSO\mcvsshld.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VSOCheckTask]
C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2008-04-01 20:49 36352 C:\Program Files\Winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVP"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\TVUPlayer\\TVUPlayer.exe"=
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"C:\\Program Files\\ICQ6\\ICQ.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"C:\\Program Files\\mIRC\\mirc.exe"=
"C:\\Program Files\\EA GAMES\\Need for Speed Most Wanted\\speed.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-05-16 01:20]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-05-16 01:16]
R2 LicCtrlService;LicCtrl Service;C:\WINDOWS\runservice.exe [2007-11-22 15:22]
R3 PAC207;PC Camer@;C:\WINDOWS\system32\DRIVERS\PFC027.SYS [2006-11-20 09:48]
S0 TfFsMon;TfFsMon;C:\WINDOWS\system32\drivers\TfFsMon.sys []
S0 TfSysMon;TfSysMon;C:\WINDOWS\system32\drivers\TfSysMon.sys []
S3 KS-959;Kingsun KS-959 USB Infrared Adapter;C:\WINDOWS\system32\DRIVERS\KS-959.sys [2005-09-05 03:59]
S3 TfNetMon;TfNetMon;C:\WINDOWS\system32\drivers\TfNetMon.sys []
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service;"C:\Program Files\Windows Live\Messenger\usnsvc.exe" [2007-10-18 11:31]

.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2008-06-13 17:47:16
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\system32\lsass.exe
-> C:\WINDOWS\system32\xfire_lsp_9028.dll
.
Completion time: 2008-06-13 17:50:35
ComboFix-quarantined-files.txt 2008-06-13 15:49:56
ComboFix2.txt 2008-06-13 13:59:34
ComboFix3.txt 2008-06-13 11:58:46

Pre-Run: 51,217,543,168 bytes free
Post-Run: 51,205,967,872 bytes free

280 --- E O F --- 2008-06-12 11:42:49

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preko cega je najbolje vrsiti deinstalaciju-uninstal zastitinih softvera do sada sam to radio preko remove programs ?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ne znam šta se to sve izdešavalo kod tebe na kompu. Ja sam gledao logove i pratio ono što je prikazano ili kao aktivno ili kao zaostatak. Znam da nekada neki AV neće da se deinstalira normalnim putem pa se koristi neki alat usko pisan za tu namenu.

Kako naći taj alat?
Ideš na google > tipkaš > ime_antivirusa removal tool > i nađeš za svaki za koji postoji tako nešto.

Inače, ako Add/Remove programs ne daje rezultat probaj besplatni Revo Uninstaller. On kao bolje počisti za programima nego običan Windows-ov uninstaller.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Jos jedno pitanje da li bih trebao instalirati neki od antimalware programa za zastitu ?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pa svi su anti-malware. Malware ti je jedna reč za sav nepoželjan, reklamni (adware) i maliciozni softver. Mislio sam da 2 AV-a ne valja imati u isto vreme na jednom sistemu.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Htio bih se zahvaliti na pomoci.Komp. je za sada brzi a trud nije bio uzaludan