MyCity » Ambulanta -> Arhiva Ambulante » Zarazen sajt i racunar

Zarazen sajt i racunar

Napisano na dan: 23.12.2009

Strana:
1
2
3
4

Zarazen sajt i racunar

Pagination

Prethodna strana

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3
4

spalekus Poslao: 25 Dec 2009 22:05 Idi na vrh
offline spalekus Građanin Pridružio: 07 Jun 2008 Poruke: 46	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 25 Dec 2009 21:48 Kad pokrenem cmd.exe otvori se c:\Users\Aca> kada sve uradim na toj adresi je i iskpopiran file c:\Users\Aca>atapi.sys Dopuna: 25 Dec 2009 22:04 odradim sa cd.. i dobijem C:\ ali nece da iskopira file Dopuna: 25 Dec 2009 22:05 da li da odradim sto ste napisali iako je iskopirano na c:\Users\Aca>atapi.sys

Profil

dr_Bora Poslao: 25 Dec 2009 22:08 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ono što kucaš u Windows-u je: copy C:\Windows\system32\drivers\atapi.sys C:\atapi.sys Ono što kucaš kada bootuješ sa DVD-a je: copy C:\atapi.sys C:\Windows\system32\drivers\atapi.sys Svaki znak je bitan.

Profil

spalekus Poslao: 25 Dec 2009 23:20 Idi na vrh
offline spalekus Građanin Pridružio: 07 Jun 2008 Poruke: 46	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U Windowsu sam tako i kucao ali mi u konzoli otvori c:\Users\Aca>atapi.sys i tamo mi i iskopira file atapi.sys Kada u konzoli kucam cd.. dođem do c:\ ali tada neće da iskopira file. U svakom slučaju sam tako odradio ali kada sam butovao kucao sam isto pa ću sada ponoviti a do tada vam saljem šta sam do sada uradio. možda može da se upotrebi. Hvala Vam na strpljenju! ComboFix 09-12-24.02 - Aca 25.12.2009 22:32:34.4.1 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1024.566 [GMT 1:00] Running from: c:\users\Aca\Desktop\ComboFix.exe . ((((((((((((((((((((((((( Files Created from 2009-11-25 to 2009-12-25 ))))))))))))))))))))))))))))))) . 2009-12-25 21:55 . 2009-12-25 21:55 -------- d-----w- c:\users\Public\AppData\Local\temp 2009-12-25 21:55 . 2009-12-25 21:55 -------- d-----w- c:\users\Default\AppData\Local\temp 2009-12-25 20:45 . 2009-11-30 14:12 21584 ----a-w- c:\users\Aca\atapi.sys 2009-12-25 19:00 . 2009-12-25 19:00 686080 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\pdfimport.uno.dll 2009-12-25 19:00 . 2009-12-25 19:00 568832 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcp90.dll 2009-12-25 19:00 . 2009-12-25 19:00 655872 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcr90.dll 2009-12-25 19:00 . 2009-12-25 19:00 583168 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\xpdfimport.exe 2009-12-25 19:00 . 2009-12-25 19:00 224768 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcm90.dll 2009-12-23 21:19 . 2009-12-25 21:55 -------- d-----w- c:\users\Aca\AppData\Local\temp 2009-12-16 17:53 . 2009-12-25 19:07 1 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-12-16 17:50 . 2009-12-16 17:50 -------- d-----w- c:\users\Aca\AppData\Roaming\OpenOffice.org 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\JRE 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\OpenOffice.org 3 2009-12-14 14:15 . 2009-12-14 14:15 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-14 14:13 . 2009-12-14 14:13 -------- d-----w- c:\program files\Common Files\InstallShield 2009-12-11 11:01 . 2009-12-11 11:01 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb8E9F.tmp.exe 2009-12-10 15:48 . 2009-12-10 15:48 4844296 ----a-w- c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 23:02 . 2009-12-05 23:02 -------- d-----w- c:\users\Aca\AppData\Local\Cooliris 2009-12-05 23:02 . 2009-10-06 12:40 103424 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\pixomatic.dll 2009-12-05 23:02 . 2009-10-06 12:40 545280 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\PicLensHelper.exe 2009-12-05 23:02 . 2009-10-06 12:40 153600 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\plugins\npcoolirisplugin.dll 2009-12-05 23:02 . 2009-10-06 12:40 4716544 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\components\cooliris.dll 2009-12-05 23:02 . 2009-10-06 12:40 344064 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\LaunchCooliris.exe 2009-12-03 17:52 . 2006-09-13 04:00 42496 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 74240 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 73216 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMlr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 334848 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 249344 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 130048 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMlr78.dll 2009-12-03 14:19 . 2006-09-13 04:00 197632 ----a-w- c:\windows\system32\CNMLM78.DLL 2009-12-03 14:19 . 2009-12-03 14:19 -------- d--h--w- c:\program files\CanonBJ 2009-12-03 11:53 . 2009-12-03 11:53 -------- d-----w- c:\programdata\CanonCP 2009-12-03 11:53 . 2009-07-29 11:51 112664 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNYCPUIN.EXE 2009-12-03 11:53 . 2009-07-13 12:55 102400 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNY04091.DLL 2009-12-03 11:16 . 2009-12-03 11:17 -------- d-----w- c:\users\Aca\AppData\Roaming\GetRightToGo 2009-12-03 10:28 . 2009-12-03 12:27 -------- d-----w- c:\program files\Common Files\Canon 2009-12-02 09:37 . 2009-12-02 09:37 -------- d-----w- c:\program files\NRadioBox 1.2 2009-12-01 17:51 . 2009-12-13 10:03 -------- d-----w- c:\users\Aca\AppData\Local\Google 2009-12-01 17:49 . 2009-12-01 17:51 -------- d-----w- c:\program files\Google 2009-11-30 06:49 . 2009-11-30 20:11 -------- d-----w- C:\NRadioBoxData 2009-11-29 19:52 . 2009-11-29 19:52 -------- d-----w- c:\program files\Microsoft . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-22 23:20 . 2009-11-10 08:42 -------- d-----w- c:\program files\Winamp 2009-12-22 22:05 . 2009-11-11 09:02 -------- d-----w- c:\users\Aca\AppData\Roaming\uTorrent 2009-12-18 21:51 . 2009-11-20 19:11 -------- d-----w- c:\users\Aca\AppData\Roaming\Skype 2009-12-16 18:11 . 2009-11-08 19:38 113136 ----a-w- c:\users\Aca\AppData\Local\GDIPFONTCACHEV1.DAT 2009-12-16 17:12 . 2009-11-08 23:44 -------- d-----w- c:\program files\Java 2009-12-16 14:12 . 2009-11-08 22:57 -------- d-----w- c:\programdata\Microsoft Help 2009-12-16 14:08 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild 2009-12-15 20:59 . 2009-11-16 04:33 -------- d-----w- c:\program files\RegCleaner 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-11 10:01 . 2009-11-08 22:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-03 15:14 . 2009-11-08 22:15 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-11-08 22:15 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-30 16:01 . 2009-11-08 20:15 -------- d-----w- c:\users\Aca\AppData\Roaming\GHISLER 2009-11-30 16:01 . 2009-11-20 23:46 -------- d-----w- c:\program files\NRadioBox 2009-11-30 16:01 . 2009-11-15 08:57 -------- d--h--w- c:\programdata\CanonIJScan 2009-11-30 16:01 . 2009-11-09 11:17 -------- d--h--w- c:\programdata\CanonBJ 2009-11-30 14:12 . 2009-07-13 23:11 21584 ----a-w- c:\windows\system32\drivers\atapi.sys 2009-11-28 08:39 . 2009-11-08 21:19 -------- d-----w- c:\program files\xat.com xatshow 2009-11-27 15:16 . 2009-11-09 18:25 -------- d-----w- c:\program files\Media Convert Master 2009-11-25 19:49 . 2009-11-09 16:21 -------- d-----w- c:\program files\Opera 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:22 . 2009-11-08 23:24 -------- d-----w- c:\users\Aca\AppData\Roaming\Corel 2009-11-25 11:21 . 2009-11-08 23:21 -------- d-----w- c:\programdata\Corel 2009-11-25 11:21 . 2009-11-25 11:21 -------- d-----w- c:\program files\Common Files\Protexis 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Common Files\Corel 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Corel 2009-11-24 23:54 . 2009-11-08 20:47 1280480 ----a-w- c:\windows\system32\aswBoot.exe 2009-11-24 23:49 . 2009-11-08 20:48 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2009-11-24 23:48 . 2009-11-08 20:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2009-11-24 23:47 . 2009-11-08 20:48 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-11-23 11:40 . 2009-11-21 07:25 -------- d-----w- c:\programdata\ABBYY 2009-11-23 11:25 . 2009-11-23 11:18 -------- d-----w- c:\program files\ABBYY FineReader 9.0 2009-11-23 10:47 . 2009-11-21 07:25 -------- d-----w- c:\program files\ABBYY FineReader 10 2009-11-21 07:33 . 2009-11-21 07:33 -------- d-----w- c:\users\Aca\AppData\Roaming\ABBYY 2009-11-20 19:19 . 2009-11-20 19:19 56 ---ha-w- c:\programdata\ezsidmv.dat 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----r- c:\program files\Skype 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----w- c:\program files\Common Files\Skype 2009-11-20 19:11 . 2009-11-20 19:10 -------- d-----w- c:\programdata\Skype 2009-11-20 12:39 . 2009-11-09 18:26 -------- d-----w- c:\programdata\Apple Computer 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Common Files\Apple 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Apple Software Update 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\programdata\Apple 2009-11-19 20:37 . 2009-11-19 20:37 -------- d-----w- c:\users\Aca\AppData\Roaming\CD-LabelPrint 2009-11-16 04:53 . 2009-11-16 04:53 -------- d-----w- c:\program files\TempCleaner 2009-11-16 04:52 . 2009-11-08 22:50 -------- d-----w- c:\program files\DAEMON Tools Toolbar 2009-11-15 22:10 . 2009-11-08 21:10 -------- d-----w- c:\program files\K-Lite Codec Pack 2009-11-15 17:52 . 2009-11-15 17:52 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll 2009-11-15 08:57 . 2009-11-15 08:57 -------- d-----w- c:\users\Aca\AppData\Roaming\Canon 2009-11-11 21:36 . 2009-11-11 21:36 -------- d-----w- c:\users\Aca\AppData\Roaming\GRETECH 2009-11-11 18:53 . 2009-11-11 18:53 -------- d-----w- c:\program files\GRETECH 2009-11-11 09:04 . 2009-11-11 09:04 -------- d-----w- c:\program files\uTorrent 2009-11-10 23:44 . 2009-11-09 11:16 -------- d-----w- c:\program files\Canon 2009-11-10 12:25 . 2009-11-10 08:42 -------- d-----w- c:\users\Aca\AppData\Roaming\Winamp 2009-11-10 08:42 . 2009-11-10 08:42 -------- d-----w- c:\program files\Common Files\PX Storage Engine 2009-11-09 18:26 . 2009-11-08 21:45 -------- d-----w- c:\users\Aca\AppData\Roaming\Vso 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 17:01 . 2009-11-09 17:01 -------- d-----w- c:\users\Aca\AppData\Roaming\Nero 2009-11-09 17:00 . 2009-11-09 16:59 -------- d-----w- c:\program files\Common Files\Nero 2009-11-09 17:00 . 2009-11-09 16:57 -------- d-----w- c:\program files\Nero 2009-11-09 16:59 . 2009-11-09 16:59 -------- d-----w- c:\programdata\Nero 2009-11-09 16:31 . 2009-11-09 16:31 -------- d-----w- c:\program files\WinWatermark 2 2009-11-09 13:54 . 2009-11-09 13:54 -------- d-----w- c:\users\Aca\AppData\Roaming\Publish Providers 2009-11-09 09:44 . 2009-11-09 09:44 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\system32\atiicdxx.dat 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\ativpsrm.bin 2009-11-09 01:03 . 2009-11-09 01:03 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-11-09 00:55 . 2009-11-09 00:55 -------- d-----w- c:\users\Aca\AppData\Roaming\Sony 2009-11-09 00:44 . 2009-11-09 00:44 -------- d-----w- c:\program files\Vstplugins 2009-11-09 00:44 . 2009-11-09 00:39 -------- d-----w- c:\program files\Sony 2009-11-09 00:40 . 2009-11-09 00:40 -------- d-----w- c:\program files\Sony Setup 2009-11-09 00:36 . 2009-11-08 23:27 -------- d-----w- c:\program files\Common Files\ACD Systems 2009-11-08 23:45 . 2009-11-08 23:45 -------- d-----w- c:\users\Aca\AppData\Roaming\VitySoft 2009-11-08 23:44 . 2009-11-08 23:44 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-11-08 23:31 . 2009-11-08 23:31 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\users\Aca\AppData\Roaming\FastStone 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\program files\FastStone Capture 2009-11-08 23:28 . 2009-11-08 23:28 -------- d-----w- c:\users\Aca\AppData\Roaming\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\programdata\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\program files\ACD Systems 2009-11-08 23:02 . 2009-11-08 23:02 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2009-11-08 22:55 . 2009-11-08 22:49 -------- d-----w- c:\users\Aca\AppData\Roaming\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:49 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:50 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-11-08 22:49 . 2009-11-08 22:49 -------- d-----w- c:\programdata\DAEMON Tools Lite 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\users\Aca\AppData\Roaming\Malwarebytes 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\programdata\Malwarebytes 2009-11-08 21:45 . 2009-11-08 21:45 -------- d-----w- c:\program files\VSO 2009-11-08 21:36 . 2009-11-08 21:36 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf 2009-11-08 20:57 . 2009-11-08 20:57 -------- d-----w- c:\program files\CamStudio 2009-11-08 20:47 . 2009-11-08 20:47 -------- d-----w- c:\program files\Alwil Software 2009-11-02 19:42 . 2009-11-08 19:46 195456 ------w- c:\windows\system32\MpSigStub.exe 2009-10-29 07:22 . 2009-11-25 08:01 2048 ----a-w- c:\windows\system32\tzres.dll 2009-10-02 04:06 . 2009-11-08 19:33 728648 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-01 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2009-11-24 81000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-08 149280] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-12-03 1394000] "Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-12-11 122880] "QuickTime Task"="c:\program files\Media Convert Master\codec\quicktime\QTTask.exe" [2009-11-10 417792] c:\users\Aca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TempCleaner.lnk - c:\program files\TempCleaner\TempCleaner.exe [2004-3-26 346624] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer"=wdmaud.drv [HKLM\~\startupfolder\C:^Users^Aca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk] backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup backupExtension=.Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Quick Search Box] 2009-12-11 11:07 122880 ----a-w- c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-10 22:08 417792 ----a-w- c:\program files\Media Convert Master\codec\quicktime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd] 2004-06-10 11:48 286720 ----a-w- c:\windows\vsnpstd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] 2009-04-14 06:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-12-01 17:51 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2009-07-01 16:37 37888 ----a-w- c:\program files\Winamp\winampa.exe R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [8.11.2009 21:48 114768] R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 Licensing Service;c:\program files\ABBYY FineReader 9.0\NetworkLicenseServer.exe [2.11.2007 18:58 566560] R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [8.11.2009 21:48 20560] R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [8.11.2009 21:47 53328] S4 sptd;sptd;c:\windows\System32\drivers\sptd.sys [8.11.2009 23:50 691696] . ------- Supplementary Scan ------- . uStart Page = hxxp://www.jasatomic.org/ IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: S&end to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 FF - ProfilePath - c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.jasatomic.org FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll . ************************************************************************ Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, gmer.net device: opened successfully user: MBR read successfully called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x8536D2F6]<< kernel: MBR read successfully detected MBR rootkit hooks: IoDeviceObjectType -> DumpProcedure -> 0xd46a624f SecurityProcedure -> 0x846a94e0 QueryNameProcedure -> 0x846a9670 user & kernel MBR OK ************************************************************************ . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.032" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.abr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ani" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.apd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.arw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bay" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bwf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bwf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cdda\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cdda" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cel\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cel" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.crw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cs1" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cur" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dib" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djvu" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dng" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.emf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.eps" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.erf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.flc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fli\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fli" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gsm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gsm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.hdr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icl" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icn" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ico\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ico" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ilbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.int" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.inta" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iw4" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2c" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2k" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jfif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jp2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpe" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpeg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpk" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.kdc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.lbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m15\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m15" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m1a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m2a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4b\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4b" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4p\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4p" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m75\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m75" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mos" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mpv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mrw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.nef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.orf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pct" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pgm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pic" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pics\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pics" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pict" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pix" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.png" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ppm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspbrush" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspimage" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qcp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qcp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qt\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qt" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qtpf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qtpf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ras" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgba" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rle" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rsb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rw2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sdv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sdv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sfil\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sfil" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sgi" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.smf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sml" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.srf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.swa\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.swa" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tga" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.thm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tiff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ulw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ulw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vfw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.vfw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wmf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xpm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E67D0C84-D678-1911-5749-DDC78972ADEB}*] "madnljakmajoahikdjpfkffljc"=hex:6f,61,65,6c,6e,61,69,63,6f,6b,62,65,6a,69,67, 68,63,6f,6f,69,62,69,62,63,62,68,67,62,68,6b,00,6d [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2009-12-25 23:03:08 ComboFix-quarantined-files.txt 2009-12-25 22:03 ComboFix2.txt 2009-12-25 11:40 ComboFix3.txt 2009-12-25 11:04 ComboFix4.txt 2009-12-23 21:18 Pre-Run: 7.142.952.960 bytes free Post-Run: 7.098.941.440 bytes free - - End Of File - - E9DE491734A97A79BFF8E90EB1E65E59

Profil

dr_Bora Poslao: 25 Dec 2009 23:49 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kad si u konzoli/command promptu, ne treba da menjaš folder u kome se nalaziš. Citat:U Windowsu sam tako i kucao ali mi u konzoli otvori c:\Users\Aca>atapi.sys Kad u Windowsu startuješ cmd.exe, vidiš ovo: C:\Users\Aca> Kada ukucaš: copy C:\Windows\system32\drivers\atapi.sys atapi.sys onda se file kopira u C:\Users\Aca Ali kada ukucaš: copy C:\Windows\system32\drivers\atapi.sys C:\atapi.sys on ide na C: disk gde nam i treba. Ponavljam: svaki znak je bitan. Ono što kucaš u Windows-u je: copy C:\Windows\system32\drivers\atapi.sys C:\atapi.sys Ono što kucaš kada bootuješ sa DVD-a je: copy C:\atapi.sys C:\Windows\system32\drivers\atapi.sys Znači, svega jedna komanda u svakom delu postupka. Odradi to i postavi novi ComboFix log.

Profil

spalekus Poslao: 26 Dec 2009 00:01 Idi na vrh
offline spalekus Građanin Pridružio: 07 Jun 2008 Poruke: 46	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nešto nije u redu ili činim banalnu grešku koju ne vidim ali jednostavno neće da kopira u c:\ Šaljem i sliku da se i lično uverite

Profil

dr_Bora Poslao: 26 Dec 2009 00:19 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kad u search polju ukucaš cmd.exe, gore na vrhu menija će se pojaviti program cmd.exe - klikni desnim tasterom na njega i izaberi Run as Administrator. Uspelo sada?

Profil

spalekus Poslao: 26 Dec 2009 01:02 Idi na vrh
offline spalekus Građanin Pridružio: 07 Jun 2008 Poruke: 46	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ComboFix 09-12-25.02 - Aca 26.12.2009 0:34.5.1 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1024.429 [GMT 1:00] Running from: c:\users\Aca\Desktop\ComboFix.exe . ((((((((((((((((((((((((( Files Created from 2009-11-25 to 2009-12-25 ))))))))))))))))))))))))))))))) . 2009-12-16 17:53 . 2009-12-25 19:07 1 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-12-16 17:50 . 2009-12-16 17:50 -------- d-----w- c:\users\Aca\AppData\Roaming\OpenOffice.org 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\JRE 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\OpenOffice.org 3 2009-12-14 14:15 . 2009-12-14 14:15 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-14 14:13 . 2009-12-14 14:13 -------- d-----w- c:\program files\Common Files\InstallShield 2009-12-11 11:01 . 2009-12-11 11:01 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb8E9F.tmp.exe 2009-12-10 15:48 . 2009-12-10 15:48 4844296 ----a-w- c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 23:02 . 2009-12-05 23:02 -------- d-----w- c:\users\Aca\AppData\Local\Cooliris 2009-12-05 23:02 . 2009-10-06 12:40 103424 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\pixomatic.dll 2009-12-05 23:02 . 2009-10-06 12:40 545280 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\PicLensHelper.exe 2009-12-05 23:02 . 2009-10-06 12:40 153600 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\plugins\npcoolirisplugin.dll 2009-12-05 23:02 . 2009-10-06 12:40 4716544 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\components\cooliris.dll 2009-12-05 23:02 . 2009-10-06 12:40 344064 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\LaunchCooliris.exe 2009-12-03 17:52 . 2006-09-13 04:00 42496 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 74240 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 73216 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMlr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 334848 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 249344 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 130048 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMlr78.dll 2009-12-03 14:19 . 2006-09-13 04:00 197632 ----a-w- c:\windows\system32\CNMLM78.DLL 2009-12-03 14:19 . 2009-12-03 14:19 -------- d--h--w- c:\program files\CanonBJ 2009-12-03 11:53 . 2009-12-03 11:53 -------- d-----w- c:\programdata\CanonCP 2009-12-03 11:53 . 2009-07-29 11:51 112664 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNYCPUIN.EXE 2009-12-03 11:53 . 2009-07-13 12:55 102400 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNY04091.DLL 2009-12-03 11:16 . 2009-12-03 11:17 -------- d-----w- c:\users\Aca\AppData\Roaming\GetRightToGo 2009-12-03 10:28 . 2009-12-03 12:27 -------- d-----w- c:\program files\Common Files\Canon 2009-12-02 09:37 . 2009-12-02 09:37 -------- d-----w- c:\program files\NRadioBox 1.2 2009-12-01 17:51 . 2009-12-13 10:03 -------- d-----w- c:\users\Aca\AppData\Local\Google 2009-12-01 17:49 . 2009-12-01 17:51 -------- d-----w- c:\program files\Google 2009-11-30 06:49 . 2009-11-30 20:11 -------- d-----w- C:\NRadioBoxData 2009-11-29 19:52 . 2009-11-29 19:52 -------- d-----w- c:\program files\Microsoft . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-25 19:00 . 2009-12-25 19:00 686080 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\pdfimport.uno.dll 2009-12-25 19:00 . 2009-12-25 19:00 568832 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcp90.dll 2009-12-25 19:00 . 2009-12-25 19:00 655872 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcr90.dll 2009-12-25 19:00 . 2009-12-25 19:00 583168 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\xpdfimport.exe 2009-12-25 19:00 . 2009-12-25 19:00 224768 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcm90.dll 2009-12-22 23:20 . 2009-11-10 08:42 -------- d-----w- c:\program files\Winamp 2009-12-22 22:05 . 2009-11-11 09:02 -------- d-----w- c:\users\Aca\AppData\Roaming\uTorrent 2009-12-18 21:51 . 2009-11-20 19:11 -------- d-----w- c:\users\Aca\AppData\Roaming\Skype 2009-12-16 18:11 . 2009-11-08 19:38 113136 ----a-w- c:\users\Aca\AppData\Local\GDIPFONTCACHEV1.DAT 2009-12-16 17:12 . 2009-11-08 23:44 -------- d-----w- c:\program files\Java 2009-12-16 14:12 . 2009-11-08 22:57 -------- d-----w- c:\programdata\Microsoft Help 2009-12-16 14:08 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild 2009-12-15 20:59 . 2009-11-16 04:33 -------- d-----w- c:\program files\RegCleaner 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-11 10:01 . 2009-11-08 22:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-03 15:14 . 2009-11-08 22:15 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-11-08 22:15 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-30 16:01 . 2009-11-08 20:15 -------- d-----w- c:\users\Aca\AppData\Roaming\GHISLER 2009-11-30 16:01 . 2009-11-20 23:46 -------- d-----w- c:\program files\NRadioBox 2009-11-30 16:01 . 2009-11-15 08:57 -------- d--h--w- c:\programdata\CanonIJScan 2009-11-30 16:01 . 2009-11-09 11:17 -------- d--h--w- c:\programdata\CanonBJ 2009-11-30 14:12 . 2009-12-25 23:20 21584 ----a-w- C:\atapi.sys 2009-11-30 14:12 . 2009-12-25 22:42 21584 ----a-w- c:\users\Aca\atapi.sys 2009-11-30 14:12 . 2009-07-13 23:11 21584 ----a-w- c:\windows\system32\drivers\atapi.sys 2009-11-28 08:39 . 2009-11-08 21:19 -------- d-----w- c:\program files\xat.com xatshow 2009-11-27 15:16 . 2009-11-09 18:25 -------- d-----w- c:\program files\Media Convert Master 2009-11-25 19:49 . 2009-11-09 16:21 -------- d-----w- c:\program files\Opera 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:22 . 2009-11-08 23:24 -------- d-----w- c:\users\Aca\AppData\Roaming\Corel 2009-11-25 11:21 . 2009-11-08 23:21 -------- d-----w- c:\programdata\Corel 2009-11-25 11:21 . 2009-11-25 11:21 -------- d-----w- c:\program files\Common Files\Protexis 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Common Files\Corel 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Corel 2009-11-24 23:54 . 2009-11-08 20:47 1280480 ----a-w- c:\windows\system32\aswBoot.exe 2009-11-24 23:49 . 2009-11-08 20:48 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2009-11-24 23:48 . 2009-11-08 20:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2009-11-24 23:47 . 2009-11-08 20:48 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-11-23 11:40 . 2009-11-21 07:25 -------- d-----w- c:\programdata\ABBYY 2009-11-23 11:25 . 2009-11-23 11:18 -------- d-----w- c:\program files\ABBYY FineReader 9.0 2009-11-23 10:47 . 2009-11-21 07:25 -------- d-----w- c:\program files\ABBYY FineReader 10 2009-11-21 07:33 . 2009-11-21 07:33 -------- d-----w- c:\users\Aca\AppData\Roaming\ABBYY 2009-11-20 19:19 . 2009-11-20 19:19 56 ---ha-w- c:\programdata\ezsidmv.dat 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----r- c:\program files\Skype 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----w- c:\program files\Common Files\Skype 2009-11-20 19:11 . 2009-11-20 19:10 -------- d-----w- c:\programdata\Skype 2009-11-20 12:39 . 2009-11-09 18:26 -------- d-----w- c:\programdata\Apple Computer 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Common Files\Apple 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Apple Software Update 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\programdata\Apple 2009-11-19 20:37 . 2009-11-19 20:37 -------- d-----w- c:\users\Aca\AppData\Roaming\CD-LabelPrint 2009-11-16 04:53 . 2009-11-16 04:53 -------- d-----w- c:\program files\TempCleaner 2009-11-16 04:52 . 2009-11-08 22:50 -------- d-----w- c:\program files\DAEMON Tools Toolbar 2009-11-15 22:10 . 2009-11-08 21:10 -------- d-----w- c:\program files\K-Lite Codec Pack 2009-11-15 17:52 . 2009-11-15 17:52 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll 2009-11-15 08:57 . 2009-11-15 08:57 -------- d-----w- c:\users\Aca\AppData\Roaming\Canon 2009-11-11 21:36 . 2009-11-11 21:36 -------- d-----w- c:\users\Aca\AppData\Roaming\GRETECH 2009-11-11 18:53 . 2009-11-11 18:53 -------- d-----w- c:\program files\GRETECH 2009-11-11 09:04 . 2009-11-11 09:04 -------- d-----w- c:\program files\uTorrent 2009-11-10 23:44 . 2009-11-09 11:16 -------- d-----w- c:\program files\Canon 2009-11-10 12:25 . 2009-11-10 08:42 -------- d-----w- c:\users\Aca\AppData\Roaming\Winamp 2009-11-10 08:42 . 2009-11-10 08:42 -------- d-----w- c:\program files\Common Files\PX Storage Engine 2009-11-09 18:26 . 2009-11-08 21:45 -------- d-----w- c:\users\Aca\AppData\Roaming\Vso 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 17:01 . 2009-11-09 17:01 -------- d-----w- c:\users\Aca\AppData\Roaming\Nero 2009-11-09 17:00 . 2009-11-09 16:59 -------- d-----w- c:\program files\Common Files\Nero 2009-11-09 17:00 . 2009-11-09 16:57 -------- d-----w- c:\program files\Nero 2009-11-09 16:59 . 2009-11-09 16:59 -------- d-----w- c:\programdata\Nero 2009-11-09 16:31 . 2009-11-09 16:31 -------- d-----w- c:\program files\WinWatermark 2 2009-11-09 13:54 . 2009-11-09 13:54 -------- d-----w- c:\users\Aca\AppData\Roaming\Publish Providers 2009-11-09 09:44 . 2009-11-09 09:44 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\system32\atiicdxx.dat 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\ativpsrm.bin 2009-11-09 01:03 . 2009-11-09 01:03 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-11-09 00:55 . 2009-11-09 00:55 -------- d-----w- c:\users\Aca\AppData\Roaming\Sony 2009-11-09 00:44 . 2009-11-09 00:44 -------- d-----w- c:\program files\Vstplugins 2009-11-09 00:44 . 2009-11-09 00:39 -------- d-----w- c:\program files\Sony 2009-11-09 00:40 . 2009-11-09 00:40 -------- d-----w- c:\program files\Sony Setup 2009-11-09 00:36 . 2009-11-08 23:27 -------- d-----w- c:\program files\Common Files\ACD Systems 2009-11-08 23:45 . 2009-11-08 23:45 -------- d-----w- c:\users\Aca\AppData\Roaming\VitySoft 2009-11-08 23:44 . 2009-11-08 23:44 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-11-08 23:31 . 2009-11-08 23:31 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\users\Aca\AppData\Roaming\FastStone 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\program files\FastStone Capture 2009-11-08 23:28 . 2009-11-08 23:28 -------- d-----w- c:\users\Aca\AppData\Roaming\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\programdata\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\program files\ACD Systems 2009-11-08 23:02 . 2009-11-08 23:02 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2009-11-08 22:55 . 2009-11-08 22:49 -------- d-----w- c:\users\Aca\AppData\Roaming\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:49 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:50 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-11-08 22:49 . 2009-11-08 22:49 -------- d-----w- c:\programdata\DAEMON Tools Lite 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\users\Aca\AppData\Roaming\Malwarebytes 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\programdata\Malwarebytes 2009-11-08 21:45 . 2009-11-08 21:45 -------- d-----w- c:\program files\VSO 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-01 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2009-11-24 81000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-08 149280] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-12-03 1394000] "Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-12-11 122880] "QuickTime Task"="c:\program files\Media Convert Master\codec\quicktime\QTTask.exe" [2009-11-10 417792] c:\users\Aca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TempCleaner.lnk - c:\program files\TempCleaner\TempCleaner.exe [2004-3-26 346624] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer"=wdmaud.drv [HKLM\~\startupfolder\C:^Users^Aca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk] backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup backupExtension=.Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Quick Search Box] 2009-12-11 11:07 122880 ----a-w- c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-10 22:08 417792 ----a-w- c:\program files\Media Convert Master\codec\quicktime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd] 2004-06-10 11:48 286720 ----a-w- c:\windows\vsnpstd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] 2009-04-14 06:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-12-01 17:51 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2009-07-01 16:37 37888 ----a-w- c:\program files\Winamp\winampa.exe R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [8.11.2009 21:48 114768] R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 Licensing Service;c:\program files\ABBYY FineReader 9.0\NetworkLicenseServer.exe [2.11.2007 18:58 566560] R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [8.11.2009 21:48 20560] R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [8.11.2009 21:47 53328] S4 sptd;sptd;c:\windows\System32\drivers\sptd.sys [8.11.2009 23:50 691696] . ------- Supplementary Scan ------- . uStart Page = hxxp://www.jasatomic.org/ IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: S&end to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 TCP: {F8C86DBB-3E76-45DD-A295-41DA06A30F52} = 208.67.222.222,208.67.220.220 FF - ProfilePath - c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.jasatomic.org FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll . . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.032" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.abr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ani" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.apd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.arw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bay" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bwf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bwf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cdda\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cdda" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cel\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cel" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.crw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cs1" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cur" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dib" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djvu" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dng" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.emf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.eps" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.erf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.flc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fli\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fli" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gsm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gsm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.hdr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icl" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icn" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ico\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ico" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ilbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.int" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.inta" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iw4" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2c" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2k" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jfif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jp2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpe" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpeg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpk" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.kdc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.lbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m15\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m15" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m1a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m2a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4b\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4b" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4p\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4p" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m75\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m75" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mos" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mpv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mrw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.nef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.orf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pct" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pgm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pic" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pics\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pics" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pict" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pix" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.png" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ppm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspbrush" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspimage" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qcp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qcp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qt\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qt" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qtpf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qtpf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ras" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgba" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rle" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rsb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rw2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sdv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sdv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sfil\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sfil" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sgi" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.smf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sml" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.srf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.swa\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.swa" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tga" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.thm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tiff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ulw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ulw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vfw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.vfw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wmf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xpm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E67D0C84-D678-1911-5749-DDC78972ADEB}*] "madnljakmajoahikdjpfkffljc"=hex:6f,61,65,6c,6e,61,69,63,6f,6b,62,65,6a,69,67, 68,63,6f,6f,69,62,69,62,63,62,68,67,62,68,6b,00,6d [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2009-12-26 00:58:35 ComboFix-quarantined-files.txt 2009-12-25 23:58 ComboFix2.txt 2009-12-25 22:03 ComboFix3.txt 2009-12-25 11:40 ComboFix4.txt 2009-12-25 11:04 ComboFix5.txt 2009-12-25 23:33 Pre-Run: 7.118.516.224 bytes free Post-Run: 7.079.469.056 bytes free - - End Of File - - 4E528BBA166745289FBD6C24F520F5D6

Profil

dr_Bora Poslao: 26 Dec 2009 01:28 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ovo sada izgleda puno bolje. Ovako ćemo: sutra u toku dana ćeš da mi javiš kakvo je stanje na računaru i da postaviš još jedan svež ComboFix log (da bih se uverio da je PC još uvek čist). Ti u međuvremenu aktiviraj Windows firewall (ako ti već nije uključen): Start > Search... Windows Firewall Sa leve strane: Turn Windows Firewall on or off > Turn on Windows Firewall > OK.

Profil

spalekus Poslao: 26 Dec 2009 17:01 Idi na vrh
offline spalekus Građanin Pridružio: 07 Jun 2008 Poruke: 46	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Poštovani, ništa neobično nisam primetio, niti mi je Avast alarmirao o postojanju virusa. Računar radi dobro. Windows firewall je bio uključen. Šaljem Vam novi log P.S. Sajt još uvek javlja postojanje virusa i to ga samo Avast registruje. Možete mi i po tom pitanju pomoći? ComboFix 09-12-25.04 - Aca 26.12.2009 16:27:59.6.1 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1250.381.1033.18.1024.588 [GMT 1:00] Running from: c:\users\Aca\Desktop\ComboFix.exe . ((((((((((((((((((((((((( Files Created from 2009-11-26 to 2009-12-26 ))))))))))))))))))))))))))))))) . 2009-12-26 15:44 . 2009-12-26 15:44 -------- d-----w- c:\users\Public\AppData\Local\temp 2009-12-16 17:53 . 2009-12-25 19:07 1 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-12-16 17:50 . 2009-12-16 17:50 -------- d-----w- c:\users\Aca\AppData\Roaming\OpenOffice.org 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\JRE 2009-12-16 17:14 . 2009-12-16 17:14 -------- d-----w- c:\program files\OpenOffice.org 3 2009-12-14 14:15 . 2009-12-14 14:15 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-14 14:13 . 2009-12-14 14:13 -------- d-----w- c:\program files\Common Files\InstallShield 2009-12-11 11:01 . 2009-12-11 11:01 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb8E9F.tmp.exe 2009-12-10 15:48 . 2009-12-10 15:48 4844296 ----a-w- c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 23:02 . 2009-12-05 23:02 -------- d-----w- c:\users\Aca\AppData\Local\Cooliris 2009-12-05 23:02 . 2009-10-06 12:40 103424 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\pixomatic.dll 2009-12-05 23:02 . 2009-10-06 12:40 545280 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\PicLensHelper.exe 2009-12-05 23:02 . 2009-10-06 12:40 153600 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\plugins\npcoolirisplugin.dll 2009-12-05 23:02 . 2009-10-06 12:40 4716544 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\components\cooliris.dll 2009-12-05 23:02 . 2009-10-06 12:40 344064 ----a-w- c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\extensions\piclens@cooliris.com\libs\LaunchCooliris.exe 2009-12-03 17:52 . 2006-09-13 04:00 42496 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 74240 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMsr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 73216 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMlr78.dll 2009-12-03 17:52 . 2006-09-13 04:00 334848 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 249344 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0411\CNMur78.dll 2009-12-03 17:52 . 2006-09-13 04:00 130048 ----a-w- c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon iP4200\LanguageModules\0409\CNMlr78.dll 2009-12-03 14:19 . 2006-09-13 04:00 197632 ----a-w- c:\windows\system32\CNMLM78.DLL 2009-12-03 14:19 . 2009-12-03 14:19 -------- d--h--w- c:\program files\CanonBJ 2009-12-03 11:53 . 2009-12-03 11:53 -------- d-----w- c:\programdata\CanonCP 2009-12-03 11:53 . 2009-07-29 11:51 112664 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNYCPUIN.EXE 2009-12-03 11:53 . 2009-07-13 12:55 102400 ----a-w- c:\programdata\CanonCP\CNYSELPHYCP\CNYWindows\CNYCanon SELPHY CP720\CNY04091.DLL 2009-12-03 11:16 . 2009-12-03 11:17 -------- d-----w- c:\users\Aca\AppData\Roaming\GetRightToGo 2009-12-03 10:28 . 2009-12-03 12:27 -------- d-----w- c:\program files\Common Files\Canon 2009-12-02 09:37 . 2009-12-02 09:37 -------- d-----w- c:\program files\NRadioBox 1.2 2009-12-01 17:51 . 2009-12-13 10:03 -------- d-----w- c:\users\Aca\AppData\Local\Google 2009-12-01 17:49 . 2009-12-01 17:51 -------- d-----w- c:\program files\Google 2009-11-30 06:49 . 2009-11-30 20:11 -------- d-----w- C:\NRadioBoxData 2009-11-29 19:52 . 2009-11-29 19:52 -------- d-----w- c:\program files\Microsoft . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-26 14:06 . 2009-11-09 16:57 -------- d-----w- c:\program files\Nero 2009-12-26 12:45 . 2009-11-09 17:01 -------- d-----w- c:\users\Aca\AppData\Roaming\Nero 2009-12-25 19:00 . 2009-12-25 19:00 686080 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\pdfimport.uno.dll 2009-12-25 19:00 . 2009-12-25 19:00 568832 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcp90.dll 2009-12-25 19:00 . 2009-12-25 19:00 655872 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcr90.dll 2009-12-25 19:00 . 2009-12-25 19:00 583168 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\xpdfimport.exe 2009-12-25 19:00 . 2009-12-25 19:00 224768 ----a-w- c:\users\Aca\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\uno_packages\D383.tmp_\sun-pdfimport.oxt\msvcm90.dll 2009-12-22 23:20 . 2009-11-10 08:42 -------- d-----w- c:\program files\Winamp 2009-12-22 22:05 . 2009-11-11 09:02 -------- d-----w- c:\users\Aca\AppData\Roaming\uTorrent 2009-12-18 21:51 . 2009-11-20 19:11 -------- d-----w- c:\users\Aca\AppData\Roaming\Skype 2009-12-16 18:11 . 2009-11-08 19:38 113136 ----a-w- c:\users\Aca\AppData\Local\GDIPFONTCACHEV1.DAT 2009-12-16 17:12 . 2009-11-08 23:44 -------- d-----w- c:\program files\Java 2009-12-16 14:12 . 2009-11-08 22:57 -------- d-----w- c:\programdata\Microsoft Help 2009-12-16 14:08 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild 2009-12-15 20:59 . 2009-11-16 04:33 -------- d-----w- c:\program files\RegCleaner 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-13 16:31 . 2009-11-08 23:24 2516 --sha-w- c:\programdata\KGyGaAvL.sys 2009-12-11 10:01 . 2009-11-08 22:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-03 15:14 . 2009-11-08 22:15 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-11-08 22:15 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-30 16:01 . 2009-11-08 20:15 -------- d-----w- c:\users\Aca\AppData\Roaming\GHISLER 2009-11-30 16:01 . 2009-11-20 23:46 -------- d-----w- c:\program files\NRadioBox 2009-11-30 16:01 . 2009-11-15 08:57 -------- d--h--w- c:\programdata\CanonIJScan 2009-11-30 16:01 . 2009-11-09 11:17 -------- d--h--w- c:\programdata\CanonBJ 2009-11-30 14:12 . 2009-12-25 23:20 21584 ----a-w- C:\atapi.sys 2009-11-30 14:12 . 2009-12-25 22:42 21584 ----a-w- c:\users\Aca\atapi.sys 2009-11-30 14:12 . 2009-07-13 23:11 21584 ----a-w- c:\windows\system32\drivers\atapi.sys 2009-11-28 08:39 . 2009-11-08 21:19 -------- d-----w- c:\program files\xat.com xatshow 2009-11-27 15:16 . 2009-11-09 18:25 -------- d-----w- c:\program files\Media Convert Master 2009-11-25 19:49 . 2009-11-09 16:21 -------- d-----w- c:\program files\Opera 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:31 . 2009-11-08 23:24 88 --sh--r- c:\programdata\51B02670CC.sys 2009-11-25 11:22 . 2009-11-08 23:24 -------- d-----w- c:\users\Aca\AppData\Roaming\Corel 2009-11-25 11:21 . 2009-11-08 23:21 -------- d-----w- c:\programdata\Corel 2009-11-25 11:21 . 2009-11-25 11:21 -------- d-----w- c:\program files\Common Files\Protexis 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Common Files\Corel 2009-11-25 11:17 . 2009-11-25 11:17 -------- d-----w- c:\program files\Corel 2009-11-24 23:54 . 2009-11-08 20:47 1280480 ----a-w- c:\windows\system32\aswBoot.exe 2009-11-24 23:49 . 2009-11-08 20:48 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2009-11-24 23:48 . 2009-11-08 20:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2009-11-24 23:47 . 2009-11-08 20:48 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-11-23 11:40 . 2009-11-21 07:25 -------- d-----w- c:\programdata\ABBYY 2009-11-23 11:25 . 2009-11-23 11:18 -------- d-----w- c:\program files\ABBYY FineReader 9.0 2009-11-23 10:47 . 2009-11-21 07:25 -------- d-----w- c:\program files\ABBYY FineReader 10 2009-11-21 07:33 . 2009-11-21 07:33 -------- d-----w- c:\users\Aca\AppData\Roaming\ABBYY 2009-11-20 19:19 . 2009-11-20 19:19 56 ---ha-w- c:\programdata\ezsidmv.dat 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----r- c:\program files\Skype 2009-11-20 19:11 . 2009-11-20 19:11 -------- d-----w- c:\program files\Common Files\Skype 2009-11-20 19:11 . 2009-11-20 19:10 -------- d-----w- c:\programdata\Skype 2009-11-20 12:39 . 2009-11-09 18:26 -------- d-----w- c:\programdata\Apple Computer 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Common Files\Apple 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\program files\Apple Software Update 2009-11-20 12:38 . 2009-11-20 12:38 -------- d-----w- c:\programdata\Apple 2009-11-19 20:37 . 2009-11-19 20:37 -------- d-----w- c:\users\Aca\AppData\Roaming\CD-LabelPrint 2009-11-16 04:53 . 2009-11-16 04:53 -------- d-----w- c:\program files\TempCleaner 2009-11-16 04:52 . 2009-11-08 22:50 -------- d-----w- c:\program files\DAEMON Tools Toolbar 2009-11-15 22:10 . 2009-11-08 21:10 -------- d-----w- c:\program files\K-Lite Codec Pack 2009-11-15 17:52 . 2009-11-15 17:52 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll 2009-11-15 08:57 . 2009-11-15 08:57 -------- d-----w- c:\users\Aca\AppData\Roaming\Canon 2009-11-11 21:36 . 2009-11-11 21:36 -------- d-----w- c:\users\Aca\AppData\Roaming\GRETECH 2009-11-11 18:53 . 2009-11-11 18:53 -------- d-----w- c:\program files\GRETECH 2009-11-11 09:04 . 2009-11-11 09:04 -------- d-----w- c:\program files\uTorrent 2009-11-10 23:44 . 2009-11-09 11:16 -------- d-----w- c:\program files\Canon 2009-11-10 12:25 . 2009-11-10 08:42 -------- d-----w- c:\users\Aca\AppData\Roaming\Winamp 2009-11-10 08:42 . 2009-11-10 08:42 -------- d-----w- c:\program files\Common Files\PX Storage Engine 2009-11-09 18:26 . 2009-11-08 21:45 -------- d-----w- c:\users\Aca\AppData\Roaming\Vso 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 81920 ----a-w- c:\users\Aca\AppData\Roaming\ezpinst.exe 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 18:25 . 2009-11-09 18:25 47360 ----a-w- c:\users\Aca\AppData\Roaming\pcouffin.sys 2009-11-09 17:00 . 2009-11-09 16:59 -------- d-----w- c:\program files\Common Files\Nero 2009-11-09 16:59 . 2009-11-09 16:59 -------- d-----w- c:\programdata\Nero 2009-11-09 16:31 . 2009-11-09 16:31 -------- d-----w- c:\program files\WinWatermark 2 2009-11-09 13:54 . 2009-11-09 13:54 -------- d-----w- c:\users\Aca\AppData\Roaming\Publish Providers 2009-11-09 09:44 . 2009-11-09 09:44 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\system32\atiicdxx.dat 2009-11-09 04:18 . 2009-11-09 04:18 0 ----a-w- c:\windows\ativpsrm.bin 2009-11-09 01:03 . 2009-11-09 01:03 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-11-09 00:55 . 2009-11-09 00:55 -------- d-----w- c:\users\Aca\AppData\Roaming\Sony 2009-11-09 00:44 . 2009-11-09 00:44 -------- d-----w- c:\program files\Vstplugins 2009-11-09 00:44 . 2009-11-09 00:39 -------- d-----w- c:\program files\Sony 2009-11-09 00:40 . 2009-11-09 00:40 -------- d-----w- c:\program files\Sony Setup 2009-11-09 00:36 . 2009-11-08 23:27 -------- d-----w- c:\program files\Common Files\ACD Systems 2009-11-08 23:45 . 2009-11-08 23:45 -------- d-----w- c:\users\Aca\AppData\Roaming\VitySoft 2009-11-08 23:44 . 2009-11-08 23:44 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-11-08 23:31 . 2009-11-08 23:31 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\users\Aca\AppData\Roaming\FastStone 2009-11-08 23:29 . 2009-11-08 23:29 -------- d-----w- c:\program files\FastStone Capture 2009-11-08 23:28 . 2009-11-08 23:28 -------- d-----w- c:\users\Aca\AppData\Roaming\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\programdata\ACD Systems 2009-11-08 23:27 . 2009-11-08 23:27 -------- d-----w- c:\program files\ACD Systems 2009-11-08 23:02 . 2009-11-08 23:02 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2009-11-08 22:55 . 2009-11-08 22:49 -------- d-----w- c:\users\Aca\AppData\Roaming\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:49 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-11-08 22:50 . 2009-11-08 22:50 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-11-08 22:49 . 2009-11-08 22:49 -------- d-----w- c:\programdata\DAEMON Tools Lite 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\users\Aca\AppData\Roaming\Malwarebytes 2009-11-08 22:15 . 2009-11-08 22:15 -------- d-----w- c:\programdata\Malwarebytes 2009-11-08 21:45 . 2009-11-08 21:45 -------- d-----w- c:\program files\VSO 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-01 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2009-11-24 81000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-08 149280] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-12-03 1394000] "Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-12-11 122880] "QuickTime Task"="c:\program files\Media Convert Master\codec\quicktime\QTTask.exe" [2009-11-10 417792] c:\users\Aca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TempCleaner.lnk - c:\program files\TempCleaner\TempCleaner.exe [2004-3-26 346624] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer"=wdmaud.drv [HKLM\~\startupfolder\C:^Users^Aca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk] backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup backupExtension=.Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Quick Search Box] 2009-12-11 11:07 122880 ----a-w- c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-10 22:08 417792 ----a-w- c:\program files\Media Convert Master\codec\quicktime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd] 2004-06-10 11:48 286720 ----a-w- c:\windows\vsnpstd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] 2009-04-14 06:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-12-01 17:51 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2009-07-01 16:37 37888 ----a-w- c:\program files\Winamp\winampa.exe R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [8.11.2009 21:48 114768] R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 Licensing Service;c:\program files\ABBYY FineReader 9.0\NetworkLicenseServer.exe [2.11.2007 18:58 566560] R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [8.11.2009 21:48 20560] R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [8.11.2009 21:47 53328] S4 sptd;sptd;c:\windows\System32\drivers\sptd.sys [8.11.2009 23:50 691696] . ------- Supplementary Scan ------- . uStart Page = hxxp://www.jasatomic.org/ IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: S&end to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 TCP: {F8C86DBB-3E76-45DD-A295-41DA06A30F52} = 208.67.222.222,208.67.220.220 FF - ProfilePath - c:\users\Aca\AppData\Roaming\Mozilla\Firefox\Profiles\6i7hkchi.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.jasatomic.org FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll . . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.032" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.abr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.amr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.amr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ani" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.apd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.arw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bay" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bwf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.bwf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cdda\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cdda" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cel\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cel" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.crw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cs1" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.cur" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dib" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.djvu" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dng" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.dv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.emf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.eps" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.erf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.flc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fli\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fli" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.fpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gsm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.gsm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.hdr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icl" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.icn" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ico\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ico" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ilbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.int" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.inta" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.iw4" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2c" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.j2k" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jfif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jp2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpe" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpeg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpg" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpk" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.jpx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.kdc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.lbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m15\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m15" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m1a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2a\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m2a" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4b\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4b" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4p\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m4p" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m75\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.m75" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mos" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mpv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.mrw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.nef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.orf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pbr" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pct" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pcx" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pef" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pgm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pic" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pics\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pics" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pict" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pix" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.png" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ppm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psd" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.psp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspbrush" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.pspimage" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qcp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qcp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qt\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qt" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qtpf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.qtpf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ras" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.raw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rgba" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rle" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rsb" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.rw2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sdv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sdv" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sfil\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sfil" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sgi" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.smf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sml" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.sr2" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.srf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.swa\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.swa" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tga" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.thm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.tiff" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttc" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ttf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ulw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.ulw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vfw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.vfw" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wbmp" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.wmf" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xbm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xif" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 2.5.xpm" [HKEY_USERS\S-1-5-21-2211027839-4248864363-3108305393-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E67D0C84-D678-1911-5749-DDC78972ADEB}*] "madnljakmajoahikdjpfkffljc"=hex:6f,61,65,6c,6e,61,69,63,6f,6b,62,65,6a,69,67, 68,63,6f,6f,69,62,69,62,63,62,68,67,62,68,6b,00,6d [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2009-12-26 16:50:18 ComboFix-quarantined-files.txt 2009-12-26 15:50 ComboFix2.txt 2009-12-25 23:58 ComboFix3.txt 2009-12-25 22:03 ComboFix4.txt 2009-12-25 11:40 ComboFix5.txt 2009-12-26 15:26 Pre-Run: 7.123.550.208 bytes free Post-Run: 7.084.109.824 bytes free - - End Of File - - D2E05CCBE14D57AFD8FD93ED233E91BF

Profil

dr_Bora Poslao: 26 Dec 2009 18:05 Idi na vrh
offline dr_Bora Anti Malware Fighter Rank 2 Pridružio: 24 Jul 2007 Poruke: 12280 Gde živiš: Höganäs, SE	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ok. Potrebno je deinstalirati ComboFix: klikni start (ili ), a zatim RUN. Na Visti koristiti Start Search polje ukoliko Run nije dostupan. U liniju za unos teksta ukucaj (iskopiraj) sledeće: ComboFix /Uninstall Primeti da postoji razmak između "ComboFix" i "/Uninstall". a zatim klikni OK (ili pritisni Enter). Sačekaj da se proces deinstalacije završi. Ponovo dvoklikom pokreni DeFogger; Pojaviće se MsgBox na kome ćeš kliknuti na taster Re-enable; Ponovo će se pojaviti MsgBox na kome ćeš kliknuti na Yes; Sačekaj da se procesuiranje programa DeFogger izvrši pa nastavi prema sledećem uputstvu. Napomena:Na kraju postupka ce biti potrebno ponovno pokretanje Windows-a. Ovim postupkom će ponovo biti aktivirani CD/DVD emulatori. Citat:Sajt još uvek javlja postojanje virusa i to ga samo Avast registruje. Možete mi i po tom pitanju pomoći? Koliko videh, problematični deo koda je pri dnu početne stranice i detektuje ga nekoliko AV-ova, no... Ne bih da se upuštam u dužu diskusiju o ovome jer ovo ne spada u moja interesovanja i ne želim da ti pričam nešto u što nisam 100% siguran. Otvori temu u ovom forumu: http://www.mycity.rs/Pretrazivaci-Web-mail-Web-portali/ obrazloži u čemu je problem i potraži savete kako sprečiti reinfekcije sajta. Ponavljam još jednom: prilično sam siguran da ovo nije bilo prouzrokovano malware-om na tvom kompjuteru. Sem ako imaš neko pitanje, ovde smo gotovi.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Zarazen sajt i racunar

Ko je trenutno na forumu

Ukupno su 749 korisnika na forumu :: 3 registrovanih, 0 sakrivenih i 746 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: ALBION101, prekodrinski, Srki94

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by