Moj internet brzina je u redu na moj laptop, ali njene stvarne spor na moj radna površina pc.

**Mohi212** · #1 30. prosinca 2008, 15:11

moj brat prekinute spojeni na Internet na laptop. Nakon toga, kad je spojen na originalne pc ..... moj desktop, brzina je stvarno počinje usisavati ....... ja dont znati. preuzimanje koja obično se dogodilo na aroun 14 kB sada dešava max.4kb. kao na primjer, Facebook, koji se otvara u redu prije, sada dobiva kinda objesiti se za dugo vremena u otvaranju nešto.

Ja sam objavljivati moji kidnapovati log samo u slučaju. Please help.

Heresu moj SpeedBar test imam 128 brzine ........ dont znati ako u svojoj mega ili kilo ....... ali mislim njegovih najvjerojatnije potonjem.
http://www.speedtest.net/result/381473298.png

Logfile of Trend Micro HijackThis v2.0.2
Scan spremljena u 2:58:15, na 12/31/2008
Platforma: Windows XP SP2 (Winnt 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Pokretanje procesa:
D: \ WINDOWS \ System32 \ smss.exe
D: \ WINDOWS \ system32 \ csrss.exe
D: \ WINDOWS \ system32 \ Winlogon.exe
D: \ WINDOWS \ system32 \ services.exe
D: \ WINDOWS \ system32 \ lsass.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ System32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ spoolsv.exe
D: \ Program Files \ Common Files \ Microsoft Shared \ VS7DEBUG \ MDM.EXE
D: \ WINDOWS \ system32 \ slserv.exe
D: \ WINDOWS \ system32 \ wdfmgr.exe
D: \ WINDOWS \ system32 \ wscntfy.exe
D: \ WINDOWS \ system32 \ taskmgr.exe
D: \ Program Files \ Ares \ Ares.exe
D: \ WINDOWS \ explorer.exe
E: \ SVI softvera \ HiJackThis.exe
D: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = o: blank
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://us.rd.yahoo.com/customize/yco.../www.yahoo.com
F2 - REG: SYSTEM.INI: Shell = Explorer.exe
O2 - BHO: DAPHelper Class - (0000CC75-ACF3-4cac-A0A9-DD3868E06852) - D: \ Program Files \ pecati \ DAPBHO.dll
O2 - BHO: IDM Helper - (0055C089-8582-441B-A0BF-17B458C2A3A8) - D: \ Program Files \ Internet Download Manager \ IDMIECC.dll
O2 - BHO: AskBar BHO - (201f27d4-3704-41d6-89c1-aa35e39143ed) - D: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll
O2 - BHO: Skype dodati-na (kapacitet) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - D: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - d: \ program files \ google \ googletoolbar2.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - d: \ program files \ google \ googletoolbar2.dll
O3 - Toolbar: (no name) - (DE9C389F-3316-41A7-809B-AA305ED9D922) - (no file)
O3 - Toolbar: Ask Toolbar - (3041d03e-fd4b-44e0-b742-2d9b88305f98) - D: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll
O4 - HKLM \ .. \ Run: [QuickTime Task] "D: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [googletalk] D: \ Program Files \ Google \ Google Talk \ googletalk.exe / autostart
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKCU \ .. \ Run: [Ctfmon.exe] D: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "D: \ Program Files \ DNA \ btdna.exe"
O8 - Extra kontekst meni stavka: & & s pecati Download - D: \ programa ~ 1 \ pecati \ dapextie.htm
O8 - Extra kontekst meni stavka: Download & all s pecati - D: \ programa ~ 1 \ pecati \ dapextie2.htm
O8 - Extra kontekst meni stavka: Download svih linkova sa IDM - D: \ Program Files \ Internet Download Manager \ IEGetAll.htm
O8 - Extra kontekst meni stavka: Download FLV video sadržaj s IDM - D: \ Program Files \ Internet Download Manager \ IEGetVL.htm
O8 - Extra kontekst meni stavka: Download sa IDM - D: \ Program Files \ Internet Download Manager \ IEExt.htm
O8 - Extra kontekst meni stavka: E & zvezi u Microsoft Excel - res: / / D: \ programa ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - D: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O9 - Extra button: (no name) - (85d1f590-48f4-11d9-9669-0800200c9a66) - D: \ WINDOWS \ bdoscandel.exe
O9 - Extra 'Tools' MENUITEM: Deinstalacija BitDefender Online Scanner V8 - (85d1f590-48f4-11d9-9669-0800200c9a66) - D: \ WINDOWS \ bdoscandel.exe
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - D: \ programa ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (56762DEC-6B0D-4AB4-A8AD-989993B5D08B) (OnlineScanner Control) -- http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://www.update.microsoft.com/micr...?1222679603245
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - D: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O20 - Winlogon Obavijesti:! SASWinLogon - D: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - D: \ Program Files \ Ares \ chatServer.exe
O23 - Service: Distribuirani - Unknown vlasnika - D: \ Program Files \ Common Files \ Microsoft Shared \ MSINFO \ ServerNet.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - D: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: PC Tools AntiVirus Motor (PCTAVSvc) - PC Tools Research Pty Ltd - D: \ Program Files \ PC Tools AntiVirus \ PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - D: \ Program Files \ PC Connectivity Solution \ ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - D: \ Windows \ System32 \ slserv.exe

--
End of file - 6000 bytes

**evilfantasy** · #2 30. prosinca 2008, 16:32

Preuzimanje Malwarebytes' Anti-zaštita od zlonamjernih programa (MBAM)

Dvokliknite mbam-setup.exe i slijedite upute za instaliranje programa.
Na kraju, svakako jedan je postavljena kvačica pored sljedeće:
- Update Malwarebytes' Anti-zaštita od zlonamjernih programa
- Launch Malwarebytes' Anti-zaštita od zlonamjernih programa
Zatim kliknite na Završi.
Ako se ažuriranje je pronađen, on će preuzeti i instalirati najnoviju verziju.
Nakon što program učita, odaberite Obavi brzo pretraživanje, A zatim kliknite Scan.
Kada se skeniranje završi, kliknite na U redu, Zatim Prikaži rezultate za prikaz rezultata.
Budite sigurni da je sve provjeriti, a zatim kliknite Ukloni odabrano.
Kad je završio dezinfekcija, a zapisnik će se otvoriti u Notepad i vi svibanj biti zatraženo da Restart. (Vidi Extra bilješka)
U zapisnik se automatski sprema po MBAM i mogu biti pregledani klikom na tab Evidencije u MBAM.
Kopirajte i zalijepite cijeli izvještaj u vašem sljedeći odgovor.

Extra Napomena: Ako MBAM susrete datoteku koja je teško ukloniti, bit će predstavljen sa 1 of 2 upitom, kliknite U redu da biste bilo i nek MBAM nastaviti s procesom dezinfekcije, ako je zatraženo da ponovo pokrenete računalo, učinite to odmah.

----------

Preuzimanje slučajni sustav informacija alat (RSIT) by random / od slučajnih i spremite je na svoj Desktop.

Dvaput kliknite na RSIT.exe izvoditi.
Kliknite Nastavi disclaimer na zaslonu.
Nakon što je završio, dva logove će se otvoriti.
log.txt «bit će maximized i info.txt «će biti minimiziran
Molimo post sadržaj oboje logove u sljedećem odgovoru.

**Mohi212** · #3 1 siječnja 2009, 11:09

Logfile slučajnih sustav informacija alat 1,05 (napisao nasumično / nasumično)
Trčanje po Burhan at 2009-01-01 23:01:39
Microsoft Windows XP Professional Service Pack 2
Sistemski pogon D: ima 1 GB (16%) slobodan od 10 GB
Ukupno RAM: 126 MB (17% besplatno)

Logfile of Trend Micro HijackThis v2.0.2
Scan spremljena u 11:01:43, dana 1/1/2009
Platforma: Windows XP SP2 (Winnt 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Pokretanje procesa:
D: \ WINDOWS \ System32 \ smss.exe
D: \ WINDOWS \ system32 \ csrss.exe
D: \ WINDOWS \ system32 \ Winlogon.exe
D: \ WINDOWS \ system32 \ services.exe
D: \ WINDOWS \ system32 \ lsass.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ System32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ Svchost.exe
D: \ WINDOWS \ system32 \ spoolsv.exe
D: \ Program Files \ Common Files \ Microsoft Shared \ VS7DEBUG \ MDM.EXE
D: \ WINDOWS \ system32 \ Ctfmon.exe
D: \ WINDOWS \ system32 \ wdfmgr.exe
D: \ WINDOWS \ System32 \ alg.exe
D: \ WINDOWS \ system32 \ wscntfy.exe
D: \ WINDOWS \ system32 \ taskmgr.exe
D: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe
D: \ WINDOWS \ explorer.exe
D: \ Documents and Settings \ Burhan \ Desktop \ RSIT.exe
E: \ SVI softvera \ Burhan.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = o: blank
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://us.rd.yahoo.com/customize/yco.../www.yahoo.com
F2 - REG: SYSTEM.INI: Shell = Explorer.exe
O2 - BHO: DAPHelper Class - (0000CC75-ACF3-4cac-A0A9-DD3868E06852) - D: \ Program Files \ pecati \ DAPBHO.dll
O2 - BHO: Skype dodati-na (kapacitet) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - D: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O3 - Toolbar: (no name) - (DE9C389F-3316-41A7-809B-AA305ED9D922) - (no file)
O4 - HKLM \ .. \ Run: [QuickTime Task] "D: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [googletalk] D: \ Program Files \ Google \ Google Talk \ googletalk.exe / autostart
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKCU \ .. \ Run: [Ctfmon.exe] D: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "D: \ Program Files \ DNA \ btdna.exe"
O8 - Extra kontekst meni stavka: & & s pecati Download - D: \ programa ~ 1 \ pecati \ dapextie.htm
O8 - Extra kontekst meni stavka: Download & all s pecati - D: \ programa ~ 1 \ pecati \ dapextie2.htm
O8 - Extra kontekst meni stavka: E & zvezi u Microsoft Excel - res: / / D: \ programa ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - D: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O9 - Extra button: (no name) - (85d1f590-48f4-11d9-9669-0800200c9a66) - D: \ WINDOWS \ bdoscandel.exe
O9 - Extra 'Tools' MENUITEM: Deinstalacija BitDefender Online Scanner V8 - (85d1f590-48f4-11d9-9669-0800200c9a66) - D: \ WINDOWS \ bdoscandel.exe
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - D: \ programa ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (56762DEC-6B0D-4AB4-A8AD-989993B5D08B) -- http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://www.update.microsoft.com/micr...?1222679603245
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - D: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O20 - Winlogon Obavijesti:! SASWinLogon - D: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - D: \ Program Files \ Ares \ chatServer.exe
O23 - Service: Distribuirani - Unknown vlasnika - D: \ Program Files \ Common Files \ Microsoft Shared \ MSINFO \ ServerNet.exe (file missing)
O23 - Service: PC Tools AntiVirus Motor (PCTAVSvc) - PC Tools Research Pty Ltd - D: \ Program Files \ PC Tools AntiVirus \ PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - D: \ Program Files \ PC Connectivity Solution \ ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - D: \ Windows \ System32 \ slserv.exe

--
End of file - 4970 bytes

====== Registrara izvatkom ======

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (0000CC75-ACF3-4cac-A0A9-DD3868E06852)]
DAPHelper klasa - D: \ Program Files \ pecati \ DAPBHO.dll [2007-11-27 98304]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (22BF413B-C6D2-4d91-82A9-A0F997BA588C)]
Skype dodati-na (kapacitet) - D: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll [2008-05-30 1410344]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (761497BB-D6F0-462C-B6EB-D4DAF1D92D43)]
SSVHelper klasa - D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (7E853D72-626A-48EC-A868-BA8D5E23E045)]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
(DE9C389F-3316-41A7-809B-AA305ED9D922)

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Run]
"QuickTime Task" = D: \ Program Files \ QuickTime \ qttask.exe [2006-09-01 282624]
"googletalk" = D: \ Program Files \ Google \ Google Talk \ googletalk.exe [2007-01-02 3739648]
"SunJavaUpdateSched" = D: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe [2008-06-10 144784]

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run]
"Ctfmon.exe" = D: \ WINDOWS \ system32 \ Ctfmon.exe [2004-08-03 15360]
"BitTorrent DNA" = D: \ Program Files \ DNA \ btdna.exe [2008-12-30 342848]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ shared tools \ msconfig \ startupreg \ Ctfmon.exe]
D: \ WINDOWS \ system32 \ Ctfmon.exe [2004-08-03 15360]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ shared tools \ msconfig \ startupreg \ PCSuiteTrayApplication]
[]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ shared tools \ msconfig \ startupreg \ PCTAVApp]
D: \ Program Files \ PC Tools AntiVirus \ PCTAV.exe [2008-09-25 1370000]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Obavijesti \! SASWinLogon]
D: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ ShellExecuteHooks]
"(5AE067D3-9AFB-48E0-853A-EBB7F4A000DA)" = D: \ Program Files \ SUPERAntiSpyware \ SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Contro l \ SafeBoot \ Minimal \ SBCSSvc]

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Contro l \ SafeBoot \ mreže \ PCTAVSvc]

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Contro l \ SafeBoot \ mreže \ SBCSSvc]

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Policies \ System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Policies \ Explorer]
"NoDrives" = 0
"NoDriveAutoRun" = FFFFFFFF
"NoDriveTypeAutoRun" = 36

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Policies \ Explorer]
"NoDriveTypeAutoRun" =
"NoDrives" =
"NoDriveAutoRun" =

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ servic ES \ sharedaccess \ Parameters \ firewallpolicy \ standardnih profila \ authorizedapplications \ list]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: enabled: @ xpsp2res.dll, -22019"
"D: \ Program Files \ Ares \ Ares.exe" = "D: \ Program Files \ Ares \ Ares.exe: *: Omogućen: Ares P2P for Windows"
"D: \ Program Files \ NetMeeting \ conf.exe" = "D: \ Program Files \ NetMeeting \ conf.exe: *: Omogućen: Windows NetMeeting ® ®"
"D: \ Program Files \ Opera \ Opera.exe" = "D: \ Program Files \ Opera \ Opera.exe: *: Omogućen: Opera Internet Browser"
"D: \ Program Files \ Google \ Google Talk \ googletalk.exe" = "D: \ Program Files \ Google \ Google Talk \ googletalk.exe: *: Omogućen: Google Talk"
"D: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe" = "D: \ Pro gram Files \ Yahoo! \ Messenger \ YahooMessenger.exe: *: Omogućite d: Yahoo Messenger"
"D: \ Program Files \ Yahoo! \ Messenger \ YServer.exe" = "D: \ Program Files \ Yahoo! \ Messenger \ YServer.exe: *: Omogućen: Yahoo! FT Server"
"D: \ Program Files \ AIM6 \ aim6.exe" = "D: \ Program Files \ AIM6 \ aim6.exe: *: Omogućen: AIM"
"D: \ Program Files \ Skype \ Phone \ Skype.exe" = "D: \ Program Files \ Skype \ Phone \ Skype.exe: *: Omogućen: Skype"
"D: \ Program Files \ Trillian \ trillian.exe" = "D: \ Program Files \ Trillian \ trillian.exe: *: Omogućen: Trillian"
"D: \ Program Files \ Miranda IM \ miranda32.exe" = "D: \ Program Files \ Miranda IM \ miranda32.exe: *: Omogućen: Miranda IM"
"D: \ Program Files \ LimeWire \ LimeWire.exe" = "D: \ Program Files \ LimeWire \ LimeWire.exe: *: Omogućen: LimeWire»
"D: \ Program Files \ MSN Messenger \ msnmsgr.exe" = "D: \ Program Files \ MSN Messenger \ msnmsgr.exe: *: Omogućen: Windows Live Messenger 8,1"
"D: \ Program Files \ MSN Messenger \ livecall.exe" = "D: \ Program Files \ MSN Messenger \ livecall.exe: *: Omogućen: Windows Live Messenger 8,1 (Phone)"
"D: \ Program Files \ DNA \ btdna.exe" = "D: \ Program Files \ DNA \ btdna.exe: *: Omogućen: DNA"
"D: \ Program Files \ BitTorrent \ bittorrent.exe" = "D: \ Program Files \ BitTorrent \ bittorrent.exe: *: Omogućen: BitTorre nt"

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ servic ES \ sharedaccess \ Parameters \ firewallpolicy \ domainpr ofile \ authorizedapplications \ list]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: enabled: @ xpsp2res.dll, -22019"
"D: \ Program Files \ MSN Messenger \ msncall.exe" = "D: \ Program Files \ MSN Messenger \ msncall.exe: *: Omogućen: Windows Live Messenger 8,0 (Phone)"
"D: \ Program Files \ MSN Messenger \ msnmsgr.exe" = "D: \ Program Files \ MSN Messenger \ msnmsgr.exe: *: Omogućen: Windows Live Messenger 8,1"
"D: \ Program Files \ MSN Messenger \ livecall.exe" = "D: \ Program Files \ MSN Messenger \ livecall.exe: *: Omogućen: Windows Live Messenger 8,1 (Phone)"

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ curre ntversion \ Explorer \ mountpoints2 \ (dafa2220-8123-11dd-aa9c-00065b298742)]
shell \ autorun \ naredbu - G: \ CONFIG \ S-1-5-21-1482476501-1644491937-682003330-1013 \ Cfg.exe
shell \ otvoriti \ naredbu - G: \ CONFIG \ S-1-5-21-1482476501-1644491937-682003330-1013 \ Cfg.exe

====== Popis datoteka / mapa kreirana u zadnjih 1 mjesec ======

2009-01-01 20:51:34 ---- ---- SHD D: \ FOUND.174
2008-12-31 19:12:10 ---- ---- SHD D: \ FOUND.173
2008-12-30 23:08:48 ---- ---- SHD D: \ FOUND.172
2008-12-30 18:53:42 ---- ---- SHD D: \ FOUND.171
2008-12-30 16:16:01 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ BitTorrent
2008-12-30 16:15:44 ---- D ---- D: \ Program Files \ DNA
2008-12-30 16:15:44 ---- D ---- D: \ Program Files \ BitTorrent
2008-12-30 16:15:44 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ DNA
2008-12-30 14:46:46 ---- ---- SHD D: \ FOUND.170
2008-12-29 23:24:22 ---- ---- SHD D: \ FOUND.169
2008-12-29 15:06:17 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ IDM
2008-12-29 13:39:04 ---- ---- SHD D: \ FOUND.168
2008-12-28 05:25:52 ---- D ---- D: \ Program Files \ IrfanView
2008-12-26 22:39:46 ---- ---- SHD D: \ FOUND.167
2008-12-26 15:36:18 ---- ---- SHD D: \ FOUND.166
2008-12-26 12:37:24 ---- ---- SHD D: \ FOUND.165
2008-12-25 21:19:38 ---- ---- SHD D: \ FOUND.164
2008-12-20 14:47:41 ---- D ---- D: \ Program Files \ HyCam2
2008-12-20 12:02:48 ---- D ---- D: \ Program Files \ Frets na Fire
2008-12-20 09:54:02 ---- ---- SHD D: \ FOUND.163
2008-12-17 11:38:48 ---- ---- SHD D: \ FOUND.162
2008-12-15 23:31:13 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ LimeWire
2008-12-15 23:03:16 ---- ---- SHD D: \ FOUND.161
2008-12-15 16:52:14 ---- ---- SHD D: \ FOUND.160
2008-12-13 13:47:12 ---- ---- SHD D: \ FOUND.159
2008-12-10 21:05:58 ---- ---- SHD D: \ FOUND.158
2008-12-09 23:27:12 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ J River
2008-12-09 13:10:10 ---- D ---- D: \ Program Files \ Common Files \ NSV
2008-12-06 05:52:44 ---- ---- SHD D: \ FOUND.157
2008-12-06 01:43:41 ---- N ---- D: \ WINDOWS \ system32 \ vxblock.dll
2008-12-06 01:43:41 ---- N ---- D: \ WINDOWS \ system32 \ pxwave.dll
2008-12-06 01:43:41 ---- N ---- D: \ WINDOWS \ system32 \ pxmas.dll
2008-12-06 01:43:41 ---- N ---- D: \ WINDOWS \ system32 \ pxhpinst.exe
2008-12-06 01:43:41 ---- N ---- D: \ WINDOWS \ system32 \ pxdrv.dll
2008-12-06 01:43:40 ---- N ---- D: \ WINDOWS \ system32 \ px.dll
2008-12-06 01:43:14 ---- D ---- D: \ Program Files \ Winamp
2008-12-06 01:43:14 ---- A ---- D: \ WINDOWS \ winamp.ini
2008-12-05 14:40:22 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ Netscape
2008-12-05 14:39:56 ---- D ---- D: \ Program Files \ Netscape
2008-12-04 17:34:26 ---- ---- SHD D: \ FOUND.156
2008-12-04 08:55:46 ---- ---- SHD D: \ FOUND.155
2008-12-02 22:24:47 ---- D ---- D: \ Documents and Settings \ Burhan \ Application Data \ InstallShield

====== Popis datoteka / mapa modificirana u zadnjih 1 mjesec ======

2008-12-31 05:00:54 ---- N ---- D: \ WINDOWS \ SchedLgU.Txt
2008-12-24 22:49:44 ---- A ---- D: \ WINDOWS \ ModemLog_Smart Link 56K Voice Modem.txt

====== Popis vozača (R = Trčanje, S = zaustavljen, 0 = Boot, 1 = System, Auto-2 =, 3 = Demand, 4 = Disabled )======

R1 P3; Intel Processor Driver PentiumIII; D: \ Windows \ System32 \ Drivers \ p3.sys [2004-08-03 42496]
R1 SASDIFSV; SASDIFSV; \? \ D: \ Program Files \ SUPERAntiSpyware \ SASDIFSV.SYS []
R1 SASKUTIL; SASKUTIL; \? \ D: \ Program Files \ SUPERAntiSpyware \ SASKUTIL.sys []
R1 WS2IFSL; Windows Socket 2,0 Non-IFS Service Provider Support Environment; D: \ Windows \ System32 \ Drivers \ ws2ifsl.sys [2001-08-23 12032]
R2 AVFilter; AVFilter; D: \ Windows \ System32 \ Drivers \ AVFilter.sys [2008-02-12 21904]
R2 dmsmbios; dmsmbios; \? \ D: \ WINDOWS \ system32 \ dmsmbios.sys []
R3 ac97intc; Intel (R) 82801 Audio Driver Install Service (WDM); D: \ Windows \ System32 \ Drivers \ ac97intc.sys [2001-08-17 96256]
R3 AVHook; AVHook; D: \ Windows \ System32 \ Drivers \ AVHook.sys [2007-12-06 28568]
R3 AVRec; AVRec; D: \ Windows \ System32 \ Drivers \ AVRec.sys [2007-12-06 21912]
R3 EL90XBC; 3Com EtherLink XL 90XB / C adapter Driver; D: \ Windows \ System32 \ Drivers \ el90xbc5.sys [2001-08-17 66591]
R3 i81x; i81x; D: \ Windows \ System32 \ Drivers \ i81xnt5.sys [2004-08-03 161020]
R3 MODEMCSA; Unimodem Streaming Filter Device; D: \ Windows \ System32 \ Drivers \ MODEMCSA.sys [2001-08-17 16128]
R3 Mtlmnt5; Mtlmnt5; D: \ Windows \ System32 \ Drivers \ Mtlmnt5.sys [2004-08-03 126686]
R3 Slntamr; Smart Link 56K Modem Driver; D: \ Windows \ System32 \ Drivers \ slntamr.sys [2004-08-03 404990]
R3 SlWdmSup; SlWdmSup; D: \ Windows \ System32 \ Drivers \ SlWdmSup.sys [2004-08-03 13240]
R3 usbhub; USB2 Omogućene Hub, D: \ Windows \ System32 \ Drivers \ usbhub.sys [2004-08-03 57600]
R3 usbuhci; Microsoft USB Universal Host Controller Miniport Driver; D: \ Windows \ System32 \ Drivers \ usbuhci.sys [2004-08-03 20480]
S1 b88b9e8e; b88b9e8e; D: \ Windows \ System32 \ Drivers \ b88b9e8e.sys [2008-08-05 109150]
S3 AvFlt; Antivirusi Filter Driver; D: \ Windows \ System32 \ Drivers \ av5flt.sys []
S3 CCDECODE; Closed Caption dekoder; D: \ Windows \ System32 \ Drivers \ CCDECODE.sys [2004-08-03 17024]
S3 iAimFP0; iAimFP0; D: \ Windows \ System32 \ Drivers \ wADV01nt.sys [2004-08-03 12415]
S3 iAimFP1; iAimFP1; D: \ Windows \ System32 \ Drivers \ wADV02NT.sys [2004-08-03 12127]
S3 iAimFP2; iAimFP2; D: \ Windows \ System32 \ Drivers \ wADV05NT.sys [2004-08-03 11775]
S3 iAimFP3; iAimFP3; D: \ Windows \ System32 \ Drivers \ wSiINTxx.sys [2004-08-03 12063]
S3 iAimFP4; iAimFP4; D: \ Windows \ System32 \ Drivers \ wVchNTxx.sys [2004-08-03 19455]
S3 iAimFP5; iAimFP5; D: \ Windows \ System32 \ Drivers \ wADV07nt.sys [2004-08-03 11807]
S3 iAimFP6; iAimFP6; D: \ Windows \ System32 \ Drivers \ wADV08nt.sys [2004-08-03 11295]
S3 iAimFP7; iAimFP7; D: \ Windows \ System32 \ Drivers \ wADV09nt.sys [2004-08-03 11871]
S3 iAimTV0; iAimTV0; D: \ Windows \ System32 \ Drivers \ wATV01nt.sys [2004-08-03 29311]
S3 iAimTV1; iAimTV1; D: \ Windows \ System32 \ Drivers \ wATV02NT.sys [2004-08-03 19551]
S3 iAimTV3; iAimTV3; D: \ Windows \ System32 \ Drivers \ wATV04nt.sys [2004-08-03 33599]
S3 iAimTV4; iAimTV4; D: \ Windows \ System32 \ Drivers \ wCh7xxNT.sys [2004-08-03 23615]
S3 iAimTV5; iAimTV5; D: \ Windows \ System32 \ Drivers \ wATV10nt.sys [2004-08-03 25471]
S3 iAimTV6; iAimTV6; D: \ Windows \ System32 \ Drivers \ wATV06nt.sys [2004-08-03 22271]
S3 MBAMSwissArmy; MBAMSwissArmy; \? \ D: \ Windows \ System32 \ Drivers \ mbamswissarmy.sys []
S3 MSTEE; Microsoft Streaming trojnik / Sink-to-Sink Converter; D: \ Windows \ System32 \ Drivers \ MSTEE.sys [2004-08-03 5504]
S3 Mtlstrm; Mtlstrm; D: \ Windows \ System32 \ Drivers \ Mtlstrm.sys [2004-08-03 1309184]
S3 NABTSFEC; NABTS / FEC VBI Codec; D: \ Windows \ System32 \ Drivers \ NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP; Microsoft TV / video vezu; D: \ Windows \ System32 \ Drivers \ NdisIP.sys [2004-08-03 10880]
S3 nmwcd; Nokia USB Telefon Parent; D: \ Windows \ System32 \ Drivers \ nmwcd.sys [2007-02-22 137216]
S3 nmwcdc; Nokia Generic USB; D: \ Windows \ System32 \ Drivers \ nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj; Nokia USB port, D: \ Windows \ System32 \ Drivers \ nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm; Nokia USB Modem, D: \ Windows \ System32 \ Drivers \ nmwcdcm.sys [2007-02-22 12288]
S3 NtMtlFax; NtMtlFax; D: \ Windows \ System32 \ Drivers \ NtMtlFax.sys [2004-08-03 180360]
S3 SASENUM; SASENUM; \? \ D: \ Program Files \ SUPERAntiSpyware \ SASENUM.SYS []
S3 SBRE; SBRE; \? \ D: \ Windows \ System32 \ Drivers \ SBREdrv.sys []
S3 Listić; BDA Listić De-Framer; D: \ Windows \ System32 \ Drivers \ SLIP.sys [2004-08-03 11136]
S3 SlNtHal; SlNtHal; D: \ Windows \ System32 \ Drivers \ Slnthal.sys [2004-08-03 95424]
S3 streamip; BDA IPSink; D: \ Windows \ System32 \ Drivers \ StreamIP.sys [2004-08-03 15360]
S3 usbprint; Microsoft USB Printer Klasa; D: \ Windows \ System32 \ Drivers \ usbprint.sys [2004-08-03 25856]
S3 USBSTOR; USB Mass Storage Driver; D: \ Windows \ System32 \ Drivers \ USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb; WpdUsb; D: \ WINDOWS \ System32 \ Drivers \ wpdusb.sys [2004-08-11 18944]
S3 WSTCODEC; World Standard Teletext Codec; D: \ Windows \ System32 \ Drivers \ WSTCODEC.SYS [2004-08-03 19328]
S3 XIRLINK; IBM PC Camera; D: \ Windows \ System32 \ Drivers \ C-itnt.sys [1999-10-19 435655]

====== Popis usluga (R = Trčanje, S = zaustavljen, 0 = Boot, 1 = System, Auto-2 =, 3 = Demand, 4 = Disabled )======

R2 MDM; Machine Debug Manager; D: \ Program Files \ Common Files \ Microsoft Shared \ VS7DEBUG \ MDM.EXE [2003-06-19 322120]
R2 UMWdf; Windows User Mode Driver Framework; D: \ WINDOWS \ system32 \ wdfmgr.exe [2004-08-11 38912]
S2 distribuirani; distribuirani; D: \ Program Files \ Common Files \ Microsoft Shared \ MSINFO \ ServerNet.exe []
S2 PCTAVSvc; PC Tools AntiVirus Motor; D: \ Program Files \ PC Tools AntiVirus \ PCTAVSvc.exe [2008-09-23 995520]
S2 SLService; SmartLinkService; D: \ WINDOWS \ system32 \ slserv.exe [2004-08-04 73796]
S3 AresChatServer; Ares Chatroom servera; D: \ Program Files \ Ares \ chatServer.exe [2007-03-20 263168]
S3 aspnet_state; ASP.NET State Service; D: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ aspn et_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;. NET Runtime Service Optimizacija v2.0.50727_X86; D: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ msco rsvw.exe [2005-09-23 66240]
S3 ose; Office Source Engine; D: \ Program Files \ Common Files \ Microsoft Shared \ Source Engine \ OSE.EXE [2003-07-28 89136]
S3 ServiceLayer; ServiceLayer; D: \ Program Files \ PC Connectivity Solution \ ServiceLayer.exe [2007-06-15 300544]
S3 usnjsvc; Messenger Sharing Direktorije USN Journal Reader usluga; D: \ Program Files \ MSN Messenger \ usnsvc.exe [2007-01-19 97136]
S3 WLSetupSvc; Windows Live Setup Service; D: \ Program Files \ Windows Live \ Installer \ WLSetupSvc.exe [2007-10-25 266240]

----------------- ----------------- EOF

**Mohi212** · #4 1 siječnja 2009, 11:11

info.txt logfile slučajnih sustav informacija alat 1,02 2008-09-26 23:02:40

====== Deinstaliraj liste ======

-> D: \ WINDOWS \ IsUninst.exe-f "D: \ Program Files \ IbmPcCamera \ Uninst.isu"
-> rundll32.exe setupapi.dll, InstallHinfSection DefaultUninstall 132 D: \ WINDOWS \ INF \ PCHealth.inf
ACDSee -> D: \ programa ~ 1 \ ACDSYS ~ 1 \ ACDSEE \ UNWISE.EXE D: \ programa ~ 1 \ ACDSYS ~ 1 \ ACDSEE \ INSTALL.LOG
Adobe Flash Player ActiveX -> D: \ WINDOWS \ system32 \ Macromed \ flash \ uninstall_acti veX.exe
Adobe Flash Player Plugin -> D: \ WINDOWS \ system32 \ Macromed \ flash \ uninstall_plug in.exe
AIM 6 -> D: \ Program Files \ AIM6 \ uninst.exe
Ares 2.0.9 -> "D: \ Program Files \ Ares \ uninstall.exe"
Astro123 v1.40--> "D: \ Program Files \ Astro123 \ unins000.exe"
Axialis AX-Ikoni 4,5 -> D: \ Program Files \ Axialis \ AX-Ikoni \ UnInstall.exe "AX-Ikoni 4,5" "AXIcons.exe"
CCleaner (ukloni samo )-->" D: \ Program Files \ CCleaner \ uninst.exe "
CDisplay 1.8 -> "D: \ Program Files \ CDisplay \ unins000.exe"
Download Accelerator Plus -> D: \ programa ~ 1 \ pecati \ UNWISE.EXE D: \ programa ~ 1 \ pecati \ INSTALL.LOG
ESET Online Scanner -> D: \ WINDOWS \ system32 \ OnlineScannerUninstaller.ex e
ffdshow [rev 2019] [2008/06/22 ]-->" D: \ Program Files \ ffdshow \ unins000.exe "
Flash Studio PRO Trial -> "D: \ Program Files \ Flash Studio PRO Probne \ unins000.exe"
FLV Player 2.0, sagraditi 24 -> C: \ Program Files \ FLV Player \ uninst.exe
Foxit Reader -> C: \ Program Files \ Foxit Software \ Foxit Reader \ Uninstall.exe
Glary Registry Repair 2,9 -> "D: \ Program Files \ Glary Registry Repair \ unins000.exe"
Google Earth -> Msiexec.exe / I (1D14373E-7970-4F2F-A467-ACA4F0EA21E3)
Google Talk (samo ukloniti )-->" D: \ Program Files \ Google \ Google Talk \ uninstall.exe "
Google Toolbar za Internet Explorer -> Msiexec.exe / I (DBEA1034-5882-4A88-8033-81C4EF0CFA29)
Google Toolbar za Internet Explorer -> regsvr32 / u / S "d: \ program files \ google \ googletoolbar2.dll"
HijackThis 2.0.2 -> "D: \ Documents and Settings \ Burhan \ My Documents \ SVI softvera \ HijackThis.exe" / deinstalirati
Hotfix za Windows XP (KB915865 )-->" D: \ WINDOWS \ $ NtUninstallKB915865 $ \ spuninst \ spunin st.exe "
Internet Download Manager -> D: \ Program Files \ Internet Download Manager \ Uninstall.exe
Malwarebytes' Anti-zaštita od zlonamjernih programa -> "D: \ Program Files \ Malwarebytes' Anti-zaštita od zlonamjernih programa \ unins000.exe"
Microsoftov National Language Support Downlevel API -> "D: \ WINDOWS \ $ NtServicePackUninstallNLSDownlevelMa pping $ \ spuninst \ Spuninst.exe"
Microsoft Office Excel Viewer 2003 -> Msiexec.exe / I (90840409-6000-11D3-8CFE-0150048383C9)
Microsoft Office XP Professional sa FrontPage -> Msiexec.exe / I (90280409-6000-11D3-8CFE-0050048383C9)
Microsoft Visual Basic 6,0 Enterprise Edition -> "D: \ Program Files \ Microsoft Visual Studio \ VB98 \ Setup \ 1033 \ Setup.exe"
Microsoft Web Publishing Wizard 1,53 -> rundll32 ADVPACK.DLL, LaunchINFSection D: \ WINDOWS \ INF \ wpie3x86.inf, WebPostUninstall
Mobysaurus tezaurus -> "D: \ WINDOWS \ system32 \ SpoonUninstall.exe" <uninstall> D: \ WINDOWS \ system32 \ SpoonUninstall-Mobysaurus Thesaurus.dat
Nokia Connectivity Cable Driver -> Msiexec.exe / X-805F (11964613-432D-A12B-169554B793E7)
Nokia Multimedia Player -> D: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ instaliranjem ~ 1 \ Driver \ 7 \ INTEL3 ~ 1 \ I Driver.exe / M (4D6183C0-005C-4B1F-8261-4B0F71F1C4A5)
Nokia PC Suite -> D: \ Documents and Settings \ All Users \ Application Data \ Instalacije \ (A982E6CC-9F0D-4948-9B18-BDFD55DE4A72) \ Nokia_PC_Suite_6_84_10_3_EA.exe
Nokia PC Suite -> Msiexec.exe / I (A982E6CC-9F0D-4948-9B18-BDFD55DE4A72)
Opera 9,51 -> Msiexec.exe / X 179624B1 (-2683-45ED-965A-B72189EB5820)
PC Connectivity Solution -> Msiexec.exe / I (99A40651-0BC2-4095-8F9A-A40FAB224FEF)
PowerDVD -> rundll32 D: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ instaliranjem ~ 1 \ motor \ 6 \ INTEL3 ~ 1 \ CT or.dll, LaunchSetup "D: \ Program Files \ InstallShield Installation Information \ (6811CAA0-BF12 - 9EA1-11D4-0050BAE317E1) \ Setup.exe "-uninstall
QuickTime -> Msiexec.exe / I (F07B861C-72B9-40A4-8B1A-AAED4C06A7E8)
RichFX Igrač -> rundll32 D: \ programa ~ 1 \ UOBIČAJENA ~ 1 \ RichFX \ npvpg004.dll, Uninstall _Player
Skype ™ 3,8 -> Msiexec.exe / X (5C82DAE5-6EB0-4374-9254-BE3319BA4E82)
Obrazovanje PUTA - A Level Physics -> D: \ WINDOWS \ uninst.exe-f "D: \ Program Files \ PUTA Obrazovanje \ razine \ fizika \ DeIsL2.isu"-CD: \ programa ~ 1 \ TIMESE ~ 1 \ ALEVEL ~ 1 \ fizika \ _ISREG32.DL L
TZ Connection pobuđivač 2.6 -> "D: \ Program Files \ TZ Connection pobuđivač \ unins000.exe"
USB Drive AntiVirus 2.3 -> "D: \ Program Files \ USBAntiVirus \ unins000.exe"
Glediąta Media Player -> D: \ Program Files \ glediąta \ glediąta Media Player \ mtsAxInstaller.exe / u
Windows Driver Package - Nokia (WUDFRd) WPD (06/01/2007 6.84.33.0) -> D: \ programa ~ 1 \ DIFX \ 270581355A767BF1 \ dpinst.exe / u D: \ WINDOWS \ system32 \ DRVSTORE \ pccswpddri_044C8712DB 44F83D9DE6C376991EE9254E0A69E4 \ pccswpddriver.inf
Windows Driver Package - Nokia Modem (02/15/2007 3,1) -> D: \ programa ~ 1 \ DIFX \ 270581355A767BF1 \ dpinst.exe / u D: \ WINDOWS \ system32 \ DRVSTORE \ pccs_bluet_8B37DC7291 8CCD58A6EC20373AF6242B037A293B \ pccs_bluetooth.inf
Windows Driver Package - Nokia Modem (02/15/2007 3,1) -> D: \ programa ~ 1 \ DIFX \ 270581355A767BF1 \ dpinst.exe / u D: \ WINDOWS \ system32 \ DRVSTORE \ pccs_bluet_F12A08B6F7 76984A95553486F64C541356F86E38 \ pccs_bluetooth.inf
Windows Driver Package - Nokia Modem (05/24/2007 6.84.0.1) -> D: \ programa ~ 1 \ DIFX \ 270581355A767BF1 \ dpinst.exe / u D: \ WINDOWS \ system32 \ DRVSTORE \ nokbtmdm_5E1541AFF1E1 EA3554CE566743CCAD323ED1C108 \ nokbtmdm.inf
Windows Installer 3.1 (KB893803 )-->" D: \ WINDOWS \ $ MSI31Uninstall_KB893803v2 $ \ spuninst \ Spuninst.exe "
Windows Live Installer -> Msiexec.exe / X (A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320)
Windows Live Messenger -> Msiexec.exe / I (571700F0-DB9D-4B3A-B03D-35A14BB5939F)
Windows Media Format Runtime -> "D: \ Program Files \ Windows Media Player \ wmsetsdk.exe" / UninstallAll
Windows Media Player 10 -> "D: \ Program Files \ Windows Media Player \ Setup_wm.exe" / Uninstall
WinRAR archiver -> D: \ Program Files \ WinRAR \ uninstall.exe
Yahoo! Messenger -> D: \ programa ~ 1 \ YAHOO! \ Messen ~ 1 \ UNWISE.EXE / UD: \ programa ~ 1 \ YAHOO! \ Messen ~ 1 \ INSTALL.LOG

====== Varijable okruženja ======

"ComSpec" =% SystemRoot% \ system32 \ cmd.exe
"Path" =% systemroot% \ system32;% systemroot%;% systemr oot% \ system32 \ wbem; D: \ Program Files \ PC Connectivity Solution; D: \ Program Files \ QuickTime \ QTSYSTEM
"windir" =% SystemRoot%
"FP_NO_HOST_CHECK" = NO
"OS" = Windows_NT
"PROCESSOR_ARCHITECTURE" = x86
"PROCESSOR_LEVEL" = 6
"PROCESSOR_IDENTIFIER" = x86 Family 6 Model 10 Stepping 8, GenuineIntel
"PROCESSOR_REVISION" = 080a
"NUMBER_OF_PROCESSORS" = 1
"PATHEXT" =. COM;. Exe;. BAT;. Cmd;. VBS;. VBE;. JS;. JSE;. WSF;. WSH
"Temp" =% SystemRoot% \ Temp
"TMP" =% SystemRoot% \ Temp
"CLASSPATH" =.; D: \ Program Files \ QuickTime \ QTSystem \ QTJava.zip
"QTJAVA" = D: \ Program Files \ QuickTime \ QTSystem \ QTJava.zip

----------------- ----------------- EOF

**Mohi212** · #5 1 siječnja 2009, 11:14

Malwarebytes' Anti-zaštita od zlonamjernih programa 1,28
Database version: 1234
5/1/2600 Windows Service Pack 2

12/31/2008 6:04:35 AM
mbam-log-2008-12-31 (06-04-35). txt

Scan type: Full Scan (D: \ |)
Objekti skenirane: 107121
Vrijeme proteklo: 24 minute (s), 0 Drugi (a / e)

Memory Processes zaraženih: 0
Memorijske module zaraženih: 0
Ključevi registra zaraženih: 2
Registry Values zaraženih: 0
Registry Data Items zaraženih: 0
Mape zaraženih: 0
Zaraženih datoteka: 0

Memory Processes zaraženih:
(Nema stavki otkrivenih zlonamjernih)

Memorijske module zaraženih:
(Nema stavki otkrivenih zlonamjernih)

Ključevi registra zaraženih:
HKEY_CLASSES_ROOT \ AppID \ (bdbebf18-7615-4971-9ac3-bd6ffb7ad6c1) (Adware.WebDir) -> karanteni i uspješno izbrisan.
HKEY_CLASSES_ROOT \ AppID \ DLP.DLL (Trojan.BHO) -> karanteni i uspješno izbrisan.

Registry Values zaraženih:
(Nema stavki otkrivenih zlonamjernih)

Registry Data Items zaraženih:
(Nema stavki otkrivenih zlonamjernih)

Mape zaraženih:
(Nema stavki otkrivenih zlonamjernih)

Zaražene datoteke:
(Nema stavki otkrivenih zlonamjernih)

**evilfantasy** · #6 1 siječnja 2009, 12:55

Otvori HijackThis i odaberite Da li je sustav skenirati samo.

Stavite oznaku uz sljedeće stavke: (ako postoji)

F2 - REG: SYSTEM.INI: Shell = Explorer.exe

Važno: Zatvorite sve otvorene prozore osim HijackThis, a zatim kliknite Fix checked.

Nakon završene izađite HijackThis.

----------

Download ComboFix © by sUBs jedan od linkova ispod. Budite sigurni da ste na vrhu u Desktop.

Link # 1
Link # 2

** Napomena: Važno je da se sprema izravno na svoj Desktop

NE pokrenite ga još!

Napomena: se upute u nastavku su izrađene specijalno za ovog korisnika. Ukoliko niste u ovom, NE slijedite ove smjerove, jer bi mogao oštetiti djelovanju vašeg sustava

Izbriši ove datoteke / mape, kako slijedi:

1. Idi na Početak > Pokrenuti > Tip Notepad.exe i kliknite U redu otvoriti Notepad.
To morati biti Notepad, WordPad ne.
2. Kopiraj tekst ispod u okvir code by označavanje svih tekstualnih i pritiskom na Ctrl + C

Code:

KillAll:: File:: D: \ FOUND.174 D: \ FOUND.173 D: \ FOUND.172 D: \ FOUND.171 D: \ FOUND.170 D: \ FOUND.169 D: \ FOUND.168 D: \ FOUND.167 D: \ FOUND.166 D: \ FOUND.165 D: \ FOUND.164 D: \ FOUND.163 D: \ FOUND.162 D: \ FOUND.161 D: \ FOUND.160 D: \ NAĐENO ,159 D: \ FOUND.158 D: \ FOUND.157 D: \ FOUND.156 D: \ FOUND.155 Registry:: [-HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (7E853D72 - 48EC-626A-A868-BA8D5E23E045)] [-HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar] (DE9C389F-3316-41A7-809B-AA305ED9D922) [-HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Explorer \ mountpoints2 \ ( dafa2220-8123-11dd-aa9c-00065b298742)]

3. Idi na Notepad prozor i kliknite na Uredi > Zalijepi
4. Zatim kliknite na Datoteka > Spremiti
5. Ime datoteke CFScript.txt - Spremi datoteku na svoj Desktop
6. Zatim povucite CFScript (držite lijevu tipku miša dok povučete datoteku), a pad je (otpustite lijevu tipku miša) u ComboFix.exe kao što vidite na sliki ispod. Važno: Obavi ovo uputstvo pažljivo!

ComboFix će se početi izvršavati, samo slijedite upute.
Nakon što ponovno podizanje sustava (u slučaju da ga zatraži ponovno podizanje sustava), on će proizvesti prijava za vas.
Pošta koja log (Combofix.txt) u sljedeći odgovor.

Napomena: Ne mouseclick ComboFix's prozor dok je pokrenut. To svibanj nanijeti tvoj sistem za zamrzavanje

Slične teme
Nit	Temu Započeo	Forum	Odgovori	Zadnji Post
High Speed Internet LAN brzina Pitanje Hvala!	P5200	Networking, Modemi & VoIP	4	24 studeni 2009 22:46
Spori internet-upload speed 4 puta brži od download	palmermcfc	Networking, Modemi & VoIP	12	31. svibanj 2009 21:46
Real CPU Bus Speed Pogrełan - Intel Pentium Dual Core E2200	Nikronius	CPU, Matične ploče i RAM	3	10. svibanj 2009 23:10
Računalo trčanje trom, fino je prethodno, HJT Prijavite iznutra	computernoob64	Virus, Spyware i sigurnost	43	22. veljača 2009 21:34
Laptop brzini veze spore	Poeticsoul44	Networking, Modemi & VoIP	13	25 siječanj 2009 14:03