Brisanje datotek na C-disku

Na C-disku sem zbrisala nek software, ki ga ne potrebujem, pa se ni sprostilo nič prostora. Kaj moram storiti? Računalnik je nov.

Nič ali pa pobriši še ostale SW

Koliko pa je zasedal prostora tisti SW ?

Najbrž je vse ostalo v košu, sprazni še tega. Sicer pa predlagam, da programov ne brišeš kar neposredno z diska. Pravi način je iz nadzorne plošče… Dodaj in odstrani programe, da boš res odstranil vse, kar je bilo nameščeno za določeni program, katerega ne potrebuješ več.

SW ni zasedal niti 0,5 GB prostora, samo je bil nepotreben, ker imam bluetooth. Zanima me še nekaj: zakaj prostor na Cju kar kopni po vsaki rabi računalnika, brskanju po netu … čeprav ničesar ne shranjujem ali downloadam. Vsakič je za kako desetinko GB manj prostora.

… in če se spomnim, da je imel moj prvi računalnik celih 10 MB velik disk… 😉

0.5 GB velik program je že hudo velik.. ko pa nekaj izbrišeš, pa gre tisto ponavadi prej v koš in šele ko izprazneš koš, se ti tudi poveča številka kao praznega prostora.
Ko brskaš po netu, se tu ustvarjajo začasne datoteke, teh je pa toliko, kot je nastavljeno v programih. To je ena od možnih razlag

Mogoče imaš vklopljeno avtomatsko posodabljanje xp ali viste, poglej še v
upravitelja opravil, če tečejo kakšni sumljivi prosesi in še, upam, da ni okužen z ozirom, da je pc nov, seveda samo ugibam.

v upravitelju opravil teče cca 74 procesov. katera uporabniška imena pa naj bi bila sumljiva in koliko pominilnika naj bi zasedala?

Je to možno, da med 3× pregledovanjem parih že obiskanih spletnih strani in prebiranjem pošte, pri čemer ničesar ne shranjujem na računalnik, porabim 3 GB na C: disku?

Pa napiši že ekrat kakšen OS imaš, mislim, da visto glede na število procesov
3 GB je daleč preveč celo nenormalno. Koliko pomnilnika naj bi bilo v uporabi,
to ne vem, ne bo nič narobe, če bo do 1 GB za visto.
Si napisala “katera uporabniška imena pa naj bi bila sumljiva in koliko pominilnika naj bi zasedala?” ne razumem, kaj hočeš povedati.
Preglej pc z antivirusnim prog. in ad-aware ali http://www.download.com/Spybot-Search-amp-Destroy/3000-8022_4-10122137.html?cdlPid=10861988

imama visto. rač pa je nov. antivirusni ni odkril ničesar, le kup datotek ni mogel odpreti, ker naj bi jih uporabljal drug OS ali uporabnik. ad-aware je odkril nekaj cookijev in nek MRU object (naj ga zbrišem?). kako naj v upravitelju opravil prepoznam sumljive procese – po imenu, zasedanju pomnilnika …? če je nenormalno, da se porablja toliko prostora, naj naredim kaj? hvala za pomoč.

kar je ad-aware našel, obeleži in zbriši in ad-aware zaženi še enkrat, da boš videla,
če si zbrisala. Potegni dol http://www.download.com/Trend-Micro-HijackThis/3000-8022_4-10227353.html ga zaženi in logfile prilepi sem (zagonski procesi).
Antivirusni prog. zaženi še enkrat v varnem zagonu in izklopi obnovitev sistema
potem ti bo lahko prebral tudi ostale datoteke.

Hijackthis sem potegnila dol, nanizal mi je kup filov, kako naprej? Sem laik, have mercy 😉
Katere logfile naj prilepim in kam?
Antivirusni pa zaženem v varnem zagonu kako in obnovitev sistema izklopim kje?

Varni zagon, ko vžgeš pc, takoj začni pritiskati F8 1x sek.
tam se s smernimi tipkami preseliš na safe mode enter poiščeš AV prog. in zaženeš.

Obn. sistema, start-vsi prog.-pripomočki-sistem. orodja-obnovitev sistema-nastavitve
obnovitve sistema in tam daš kljukico uporabi in v redu.

Hijackthis klikni “do a system scan and save logfile in na beležnici ti piše
Logfile of HijackThis cel list kopiraš in prilepiš sem na forum.

Toda najprej AV poženi, če ti AV kaj najde, daj v karanteno in ne pozabi
po pregledu obnovitev vklopiti nazaj.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:10:56, on 25.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jusched.exe
D:\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\VIAudioi\SBADeck\ADeck.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\WINDOWS\system32\goofoquoki.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
D:\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\ASTSRV.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NCH Software\Inventoria\inventoria.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lkads.exe
C:\WINDOWS\system32\lktsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
C:\WINDOWS\system32\nisvcloc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\SYSTEM32\taskmgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R3 – URLSearchHook: Winamp Search Class – {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} – C:\Program Files\Winamp Toolbar\winamptb.dll (file missing)
R3 – URLSearchHook: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 – Hosts: 134.63.89.110 msnfix.changelog.fr
O1 – Hosts: 134.63.89.110 http://www.incodesolutions.com
O1 – Hosts: 134.63.89.110 virusinfo.prevx.com
O1 – Hosts: 134.63.89.110 download.bleepingcomputer.com
O1 – Hosts: 134.63.89.110 http://www.dazhizhu.cn
O1 – Hosts: 134.63.89.110 foro.noticias3d.com
O1 – Hosts: 134.63.89.110 http://www.spybotupdates.com
O1 – Hosts: 134.63.89.110 club.myce.com
O1 – Hosts: 134.63.89.110 http://www.k7computing.com
O1 – Hosts: 134.63.89.110 softwaresecuritysolutions.com
O1 – Hosts: 134.63.89.110 http://www.nabble.com
O1 – Hosts: 134.63.89.110 lurker.clamav.net
O1 – Hosts: 134.63.89.110 lexikon.ikarus.at
O1 – Hosts: 134.63.89.110 research.sunbelt-software.com
O1 – Hosts: 134.63.89.110 http://www.virusdoctor.jp
O1 – Hosts: 134.63.89.110 http://www.elitepvpers.de
O1 – Hosts: 134.63.89.110 guru.avg.com
O1 – Hosts: 134.63.89.110 downloads.sophos.com
O1 – Hosts: 134.63.89.110 share.skype.com
O1 – Hosts: 134.63.89.110 myantispyware.com
O1 – Hosts: 134.63.89.110 http://www.computerhilfen.de
O1 – Hosts: 134.63.89.110 http://www.superuser.co.kr
O1 – Hosts: 134.63.89.110 ntfaq.co.kr
O1 – Hosts: 134.63.89.110 v.dreamwiz.com
O1 – Hosts: 134.63.89.110 cit.kookmin.ac.kr
O1 – Hosts: 134.63.89.110 forums.whatthetech.com
O1 – Hosts: 134.63.89.110 forum.hijackthis.de
O1 – Hosts: 134.63.89.110 avg.vo.llnwd.net
O1 – Hosts: 134.63.89.110 http://ftp.drweb.com
O1 – Hosts: 134.63.89.110 http://www.zonealarm.com
O1 – Hosts: 134.63.89.110 smadaver.com
O1 – Hosts: 134.63.89.110 support.emsisoft.com
O1 – Hosts: 134.63.89.110 psychoski.blogspot.com
O1 – Hosts: 134.63.89.110 http://www.huaifai.go.th
O1 – Hosts: 134.63.89.110 http://www.mostz.com
O1 – Hosts: 134.63.89.110 http://www.krupunmai.com
O1 – Hosts: 134.63.89.110 http://www.cddchiangmai.net
O1 – Hosts: 134.63.89.110 forum.malekal.com
O1 – Hosts: 134.63.89.110 tech.pantip.com
O1 – Hosts: 134.63.89.110 sapcupgrades.com
O1 – Hosts: 134.63.89.110 http://www.elguruinformatico.com
O1 – Hosts: 134.63.89.110 forums.avg.com
O1 – Hosts: 134.63.89.110 zastita.com
O1 – Hosts: 134.63.89.110 support.kaspersky.com
O1 – Hosts: 134.63.89.110 foro.msgpluslive.es
O1 – Hosts: 134.63.89.110 http://www.247fixes.com
O1 – Hosts: 134.63.89.110 forum.sysinternals.com
O1 – Hosts: 134.63.89.110 forum.telecharger.01net.com
O1 – Hosts: 134.63.89.110 sophos.com
O1 – Hosts: 134.63.89.110 foros.softonic.com
O1 – Hosts: 134.63.89.110 avast-home.uptodown.com
O1 – Hosts: 134.63.89.110 dr-web-cureit.softonic.com
O1 – Hosts: 134.63.89.110 heavenward.ru
O1 – Hosts: 134.63.89.110 forum.smadav.net
O1 – Hosts: 134.63.89.110 http://www.forum.kaspersky.com
O1 – Hosts: 134.63.89.110 http://www.dl4all.com
O1 – Hosts: 134.63.89.110 http://www.f-secure.com
O1 – Hosts: 134.63.89.110 http://www.chkrootkit.org
O1 – Hosts: 134.63.89.110 diamondcs.com.au
O1 – Hosts: 134.63.89.110 http://www.rootkit.nl
O1 – Hosts: 134.63.89.110 http://www.sysinternals.com
O1 – Hosts: 134.63.89.110 z-oleg.com
O1 – Hosts: 134.63.89.110 espanol.dir.groups.yahoo.com
O1 – Hosts: 134.63.89.110 ftp01net.telechargement.fr
O1 – Hosts: 134.63.89.110 modelayu.com
O1 – Hosts: 134.63.89.110 vaksin.com
O1 – Hosts: 134.63.89.110 bbs.kaspersky.com.cn
O1 – Hosts: 134.63.89.110 sf.tapuz.co.il
O1 – Hosts: 134.63.89.110 http://www.castlecrops.com
O1 – Hosts: 134.63.89.110 http://www.misec.net
O1 – Hosts: 134.63.89.110 safecomputing.umn.edu
O1 – Hosts: 134.63.89.110 http://www.antirootkit.com
O1 – Hosts: 134.63.89.110 http://www.greatis.com
O1 – Hosts: 134.63.89.110 ar.answers.yahoo.com
O1 – Hosts: 134.63.89.110 http://www.elhacker.org
O1 – Hosts: 134.63.89.110 research.pandasecurity.com
O1 – Hosts: 134.63.89.110 http://www.tpu.ro
O1 – Hosts: 134.63.89.110 http://www.pinoyden.com
O1 – Hosts: 134.63.89.110 forum.avira.de
O1 – Hosts: 134.63.89.110 http://www.tanya-it.com
O1 – Hosts: 134.63.89.110 http://www.rootkit.com
O1 – Hosts: 134.63.89.110 http://www.pctools.com
O1 – Hosts: 134.63.89.110 http://www.pcsupportadvisor.com
O1 – Hosts: 134.63.89.110 http://www.resplendence.com
O1 – Hosts: 134.63.89.110 http://www.personal.psu.edu
O1 – Hosts: 134.63.89.110 foro.ethek.com
O1 – Hosts: 134.63.89.110 foro.elhacker.net
O1 – Hosts: 134.63.89.110 download.zonealarm.com
O1 – Hosts: 134.63.89.110 spywarehammer.com
O1 – Hosts: 134.63.89.110 http://www.codelain.com
O1 – Hosts: 134.63.89.110 http://www.thaicert.org
O1 – Hosts: 134.63.89.110 vil.nail.com
O1 – Hosts: 134.63.89.110 search.mcafee.com
O1 – Hosts: 134.63.89.110 wwww.mcafee.com
O1 – Hosts: 134.63.89.110 download.nai.com
O1 – Hosts: 134.63.89.110 wwww.experts-exchange.com
O1 – Hosts: 134.63.89.110 http://www.bakunos.com
O1 – Hosts: 134.63.89.110 http://www.darkclockers.com
O1 – Hosts: 134.63.89.110 www2.gmer.net
O1 – Hosts: 134.63.89.110 ariefew.com
O1 – Hosts: 134.63.89.110 http://www.emsisoft.com
O2 – BHO: &Yahoo! Toolbar Helper – {02478D38-C3F9-4efb-9B51-7695ECA05670} – C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 – BHO: AcroIEHlprObj Class – {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} – C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 – BHO: Groove GFS Browser Helper – {72853161-30C5-4D22-B7F9-0BBC1D38A37E} – C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 – BHO: Windows Live – Pomoc pri vpisu – {9030D464-4C02-4ABF-8ECC-5164760863C6} – C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} – C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 – HKLM\..\Run: [nwiz] nwiz.exe /install
O4 – HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 – HKLM\..\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre6\bin\jusched.exe”
O4 – HKLM\..\Run: [Sony Ericsson PC Suite] “D:\Application Launcher\Application Launcher.exe” /startoptions
O4 – HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1
O4 – HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 – HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 – HKLM\..\Run: [PDFHook] C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe
O4 – HKLM\..\Run: [PDF6 Registry Controller] C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe
O4 – HKLM\..\Run: [PDFProfessional-reminder] “C:\Program Files\Nuance\PDF Professional 6\Ereg\Ereg.exe” -r “C:\Documents and Settings\All Users\Application Data\Nuance\\Ereg\Ereg.ini”
O4 – HKLM\..\Run: [GrooveMonitor] “C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe”
O4 – HKLM\..\Run: [WinampAgent] D:\Winamp\winampa.exe
O4 – HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 – HKLM\..\Run: [NI Background Service] C:\Program Files\National Instruments\Shared\Update Service\BackgroundService.exe
O4 – HKLM\..\Run: [ctfmon.exe] ctfmon.exe
O4 – HKLM\..\Run: [pounouvi] C:\WINDOWS\system32\jequessu.exe
O4 – HKLM\..\Run: [hyzalouz] C:\WINDOWS\system32\goofoquoki.exe
O4 – HKLM\..\Run: [lyda] C:\WINDOWS\system32\joowo.exe
O4 – HKLM\..\Run: [egui] “C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe” /hide /waitservice
O4 – HKCU\..\Run: [DAEMON Tools Lite] “C:\Program Files\DAEMON Tools Lite\daemon.exe” -autorun
O4 – HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 – HKCU\..\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background
O4 – HKCU\..\Run: [swg] “C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
O4 – HKUS\S-1-5-21-1957994488-2139871995-725345543-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘postgres’)
O4 – HKUS\S-1-5-21-1957994488-2139871995-725345543-1006\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User ‘postgres’)
O4 – HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘SYSTEM’)
O4 – HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘Default user’)
O4 – Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 – Extra context menu item: &Winamp Search – C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 – Extra context menu item: Append the content of the link to existing PDF file – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 – Extra context menu item: Append the content of the selected links to existing PDF file – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 – Extra context menu item: Append to existing PDF file – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 – Extra context menu item: Create PDF file – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 – Extra context menu item: Create PDF file from the content of the link – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 – Extra context menu item: Create PDF files from the selected links – res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 – Extra context menu item: Google Sidewiki… – res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O8 – Extra context menu item: I&zvoz v Microsoft Excel – res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 – Extra context menu item: Open with PDF Professional 6 – res://C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
O9 – Extra button: Objavi v spletnem dnevniku – {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} – C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 – Extra ‘Tools’ menuitem: &Objavi v spletnem dnevniku v Windows Live Writer – {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} – C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 – Extra button: Send to OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 – Extra ‘Tools’ menuitem: S&end to OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 – Extra button: PokerStars – {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} – C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 – Extra button: Research – {92780B25-18CC-41C8-B9BE-3C9C571A8263} – C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 – Extra button: PartyCasino – {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} – D:\\PartyCasino\RunApp.exe (file missing)
O9 – Extra ‘Tools’ menuitem: PartyCasino – {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} – D:\\PartyCasino\RunApp.exe (file missing)
O9 – Extra button: PartyPoker.com – {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} – D:\\PartyPoker\RunApp.exe
O9 – Extra ‘Tools’ menuitem: PartyPoker.com – {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} – D:\\PartyPoker\RunApp.exe
O9 – Extra button: HP Smart Select – {DDE87865-83C5-48c4-8357-2F5B1AA84522} – C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (file missing)
O9 – Extra button: (no name) – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra button: Bodog Poker – {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} – D:\Bodog Poker\BPGame.exe (file missing)
O9 – Extra button: Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra ‘Tools’ menuitem: Windows Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra button: 32Red Casino – 737BAAD0-097A-4902-8D05-435E61F1290E – C:\Microgaming\Casino\32Red\Casinogame.exe (file missing) (HKCU)
O9 – Extra button: PokerTime – {00000000-0000-0000-0000-000000000000} – C:\MicroGaming\Poker\PokerTimeMPP\MPPoker.exe (file missing) (HKCU)
O17 – HKLM\System\CCS\Services\Tcpip\..\{298FA17C-A35C-4AC0-A801-CD343161ACD5}: NameServer = 193.189.160.13 193.189.160.23
O18 – Protocol: grooveLocalGWS – {88FED34C-F0CA-4636-A375-3CB6248B04CD} – C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 – Service: BsHelpCS (aaeulysxpy1) – Four-F – C:\WINDOWS\system32\pidoogouz.exe
O23 – Service: Crypkey License (aiyo4aezirczu) – Four-F – C:\WINDOWS\system32\hocoopefo.exe
O23 – Service: AST Service (astcc) – Nalpeiron Ltd. – C:\WINDOWS\system32\ASTSRV.EXE
O23 – Service: ESET HTTP Server (EhttpSrv) – ESET – C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 – Service: ESET Service (ekrn) – ESET – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 – Service: Storitev Google Update Service (gupdate) (gupdate) – Google Inc. – C:\Program Files\Google\Update\GoogleUpdate.exe
O23 – Service: Google Software Updater (gusvc) – Google – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 – Service: InstallDriver Table Manager (IDriverT) – Macrovision Corporation – C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 – Service: Inventoria Stock Manager (InventoriaService) – NCH Software – C:\Program Files\NCH Software\Inventoria\inventoria.exe
O23 – Service: Java Quick Starter (JavaQuickStarterService) – Sun Microsystems, Inc. – C:\Program Files\Java\jre6\bin\jqs.exe
O23 – Service: Lookout Citadel Server (LkCitadelServer) – National Instruments, Inc. – C:\WINDOWS\system32\lkcitdl.exe
O23 – Service: National Instruments PSP Server Locator (lkClassAds) – National Instruments Corporation – C:\WINDOWS\system32\lkads.exe
O23 – Service: National Instruments Time Synchronization (lkTimeSync) – National Instruments Corporation – C:\WINDOWS\system32\lktsrv.exe
O23 – Service: National Instruments Domain Service (NIDomainService) – National Instruments Corporation – C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 – Service: NI Service Locator (niSvcLoc) – National Instruments Corporation – C:\WINDOWS\system32\nisvcloc.exe
O23 – Service: NVIDIA Display Driver Service (NVSvc) – NVIDIA Corporation – C:\WINDOWS\system32\nvsvc32.exe
O23 – Service: Canon BJ Memory Card Manager (owoe8qeiua) – Four-F – C:\WINDOWS\system32\logookoot.exe
O23 – Service: PostgreSQL Database Server 8.3 (pgsql-8.3) – PostgreSQL Global Development Group – C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe

—

Katastrofa, to je zato, ker si programe brisala ne pa odinstalirala, pa še kakšna oslarija.
Zaženi še enkrat HIJACKTHIS in tisto, kar si dala na forum, skopiraj tukaj
in klikni “analiziraj” in potem vse vnose, ki imajo x in ? obeleži na HijackThis-u in klikni spodnji gumb
“fix checked” in še enkrat ponovi vajo, da boš videla, če ti je uspelo. Delaj previdno.