• Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы

SPYWARE-RU.COM
Меню
  • Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы
В начало › Как удалить mediamodule.js
Adguard
 

Как удалить mediamodule.js

Удаление вирусов и троянов. Защита компьютера. › Помощь в удалении вирусов, троянов, рекламы и других зловредов › Как удалить mediamodule.js

  • This topic has 2 ответа, 3 участника, and was last updated 15 years, 9 months назад by garegin.
Просмотр 3 сообщений - с 1 по 3 (из 3 всего)
  • Автор
    Сообщения
  • 4 ноября, 2009 в 7:46 пп #17359
    47
    Participant
    • Темы:1
    • Сообщений:1
    • ☆

    Подскажите, пожалуйста, как избавиться от информера mediamodule.js. Через explorer непомогает.
    Вот лог полученный через RSIT.:

    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by Dmitriy at 2009-11-04 22:36:37
    Microsoft® Windows Vista™ Ultimate Service Pack 1
    System drive C: has 7 GB (13%) free of 50 GB
    Total RAM: 1790 MB (48% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:36:59, on 04.11.2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:Windowssystem32Dwm.exe
    C:WindowsExplorer.EXE
    C:Windowssystem32taskeng.exe
    C:Program FilesESETESET Smart Securityegui.exe
    C:Program FilesSynapticsSynTPSynTPEnh.exe
    C:Windowsehomeehtray.exe
    C:Program FilesCommon FilesYandexYupdateyupdate.exe
    C:Windowsehomeehmsas.exe
    C:Program FilesOperaopera.exe
    C:Program FilesSynapticsSynTPSynTPHelper.exe
    D:Program FilesПрограммыRSIT.exe
    C:Program Filestrend microDmitriy.exe
    C:Windowssystem32DllHost.exe

    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.qip.ru/ie
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://search.qip.ru
    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.apeha.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = Root: HKCU; Subkey: SoftwareMicrosoftInternet ExplorerSearchUrl; ValueType: string; ValueName: ‘; ValueData: ‘; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,First Home Page = http://www.apeha.ru
    R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
    R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
    R3 — URLSearchHook: Yahoo! Toolbar — {EF99BD32-C1FB-11D2-892F-0090271D4F88} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
    R3 — URLSearchHook: (no name) — — (no file)
    R3 — URLSearchHook: QIPBHO Class — {95289393-33EA-4F8D-B952-483415B9C955} — C:UsersDmitriyAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    R3 — URLSearchHook: (no name) — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — (no file)
    R3 — URLSearchHook: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program FilesICQ6ToolbarICQToolBar.dll
    R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
    O1 — Hosts: ::1 localhost
    O2 — BHO: Yahoo! Toolbar Helper — {02478D38-C3F9-4EFB-9B51-7695ECA05670} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
    O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
    O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll
    O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
    O2 — BHO: QIPBHO — {95289393-33EA-4F8D-B952-483415B9C955} — C:UsersDmitriyAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
    O2 — BHO: MS Media Module — {DB57DC83-5B50-B294-DAC5-E568216871FE} — %APPDATA%msmedia.dll (file missing)
    O3 — Toolbar: Yahoo! Toolbar — {EF99BD32-C1FB-11D2-892F-0090271D4F88} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
    O3 — Toolbar: DAEMON Tools Toolbar — {32099AAC-C132-4136-9E9A-4E364A424E17} — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll
    O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
    O3 — Toolbar: DM Bar — {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — C:Program FilesDownload Masterdmbar.dll
    O3 — Toolbar: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program FilesICQ6ToolbarICQToolBar.dll
    O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
    O4 — HKLM..Run: [egui] «C:Program FilesESETESET Smart Securityegui.exe» /hide /waitservice
    O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 9.0ReaderReader_sl.exe»
    O4 — HKLM..Run: [Adobe ARM] «C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe»
    O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentmagent.exe -LM
    O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
    O4 — HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
    O4 — HKCU..Run: [Yupdate!] «C:Program FilesCommon FilesYandexYupdateyupdate.exe»
    O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
    O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://D:PROGRA~1MICROS~1OFFICE11EXCEL.EXE/3000
    O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
    O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
    O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
    O8 — Extra context menu item: Поиск@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/282
    O8 — Extra context menu item: Словари@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/283
    O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
    O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
    O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
    O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
    O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
    O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
    O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
    O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
    O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
    O13 — Gopher Prefix:
    O17 — HKLMSystemCCSServicesTcpip..{4014CEAE-350C-43F9-B561-42902CEC2529}: NameServer = 85.158.48.34 85.158.50.50
    O17 — HKLMSystemCCSServicesTcpip..{8A5AF2D3-C7C1-40F4-8288-A9435CCF696B}: NameServer = 85.158.48.34,85.158.50.50
    O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:Program FilesMicrosoft OfficeOffice12GrooveSystemServices.dll
    O23 — Service: Adobe LM Service — Adobe Systems — C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe
    O23 — Service: Com4QLBEx — Hewlett-Packard Development Company, L.P. — C:Program FilesHewlett-PackardHP Quick Launch ButtonsCom4QLBEx.exe
    O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
    O23 — Service: ESET HTTP Server (EhttpSrv) — ESET — C:Program FilesESETESET Smart SecurityEHttpSrv.exe
    O23 — Service: ESET Service (ekrn) — ESET — C:Program FilesESETESET Smart Securityekrn.exe
    O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
    O23 — Service: hpqwmiex — Hewlett-Packard Development Company, L.P. — C:Program FilesHewlett-PackardSharedhpqwmiex.exe
    O23 — Service: Nero BackItUp Scheduler 3 — Nero AG — C:Program FilesNeroNero8Nero BackItUpNBService.exe
    O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesNeroLibNMIndexingService.exe
    O23 — Service: NVIDIA Display Driver Service (nvsvc) — NVIDIA Corporation — C:Windowssystem32nvvsvc.exe
    O23 — Service: Splinter Cell. Double Agent Drivers Auto Removal (pr2ajewe) (pr2ajewe) — Russobit-M — C:Windowssystem32pr2ajewe.exe
    O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — C:Program FilesCyberLinkShared filesRichVideo.exe
    O23 — Service: ServiceLayer — Nokia. — C:Program FilesPC Connectivity SolutionServiceLayer.exe
    O23 — Service: @%SystemRoot%System32TuneUpDefragService.exe,-1 (TuneUp.Defrag) — TuneUp Software — C:WindowsSystem32TuneUpDefragService.exe
    O23 — Service: Поиск Windows (WSearch) — Корпорация Майкрософт — C:Windowssystem32SearchIndexer.exe
    O23 — Service: XAudioService — Conexant Systems, Inc. — C:Windowssystem32DRIVERSxaudio.exe

    —
    End of file — 9841 bytes

    ======Scheduled tasks folder======

    C:WindowstasksОдним Щелчком.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper — C:Program FilesYahoo!CompanionInstallscpnyt.dll [2006-11-29 436288]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
    Groove GFS Browser Helper — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
    MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-11-01 676704]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{95289393-33EA-4F8D-B952-483415B9C955}]
    QIPBHO Class — C:UsersDmitriyAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll [2009-07-14 150768]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
    IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2009-04-16 158208]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DB57DC83-5B50-B294-DAC5-E568216871FE}]
    MS Media Module — C:UsersDmitriyAppDataRoamingmsmedia.dll []

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} — Yahoo! Toolbar — C:Program FilesYahoo!CompanionInstallscpnyt.dll [2006-11-29 436288]
    {32099AAC-C132-4136-9E9A-4E364A424E17} — DAEMON Tools Toolbar — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll [2008-07-17 691656]
    {91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2008-10-16 1578248]
    {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — DM Bar — C:Program FilesDownload Masterdmbar.dll [2007-11-26 180224]
    {855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — C:Program FilesICQ6ToolbarICQToolBar.dll [2008-12-09 958200]
    {09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-11-01 676704]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «egui»=C:Program FilesESETESET Smart Securityegui.exe [2009-02-06 2021400]
    «Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
    «Adobe ARM»=C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe [2009-09-04 935288]
    «MAgent»=C:Program FilesMail.RuAgentmagent.exe [2009-11-01 5598392]
    «SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2008-04-17 1049896]

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «ehTray.exe»=C:WindowsehomeehTray.exe [2008-01-21 125952]
    «Yupdate!»=C:Program FilesCommon FilesYandexYupdateyupdate.exe [2008-10-20 479496]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
    C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregBDRegion]
    C:Program FilesCyberlinkShared Filesbrs.exe [2008-06-27 91432]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregBgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
    C:Program FilesCommon FilesNeroLibNMBgMonitor.exe [2007-09-20 202024]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregcFosSpeed]
    C:Program FilescFosSpeedcFosSpeed.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDAEMON Tools Lite]
    D:Program FilesDAEMON Tools Litedaemon.exe [2008-07-24 490952]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregehTray.exe]
    C:WindowsehomeehTray.exe [2008-01-21 125952]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregGrooveMonitor]
    C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2008-10-25 31072]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
    []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
    C:Program FilesMail.RuAgentMAgent.exe [2009-11-01 5598392]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvCplDaemon]
    C:Windowssystem32NvCpl.dll [2008-07-12 13543968]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter]
    C:Windowssystem32NvMcTray.dll [2008-07-12 92704]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregPC Suite Tray]
    C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2008-06-18 1122816]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregQlbCtrl.exe]
    C:Program FilesHewlett-PackardHP Quick Launch ButtonsQlbCtrl.exe [2008-08-01 202032]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl8]
    C:Program FilesCyberLinkPowerDVD8PDVD8Serv.exe [2008-03-20 83240]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSynTPEnh]
    C:Program FilesSynapticsSynTPSynTPEnh.exe [2008-04-17 1049896]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregTray Temperature]
    []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWinampAgent]
    C:Program FilesWinampwinampa.exe [2008-08-04 36352]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWMPNSCFG]
    C:Program FilesWindows Media PlayerWMPNSCFG.exe [2008-01-21 202240]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregYupdate!]
    C:Program FilesCommon FilesYandexYupdateyupdate.exe [2008-10-20 479496]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]
    []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
    C:PROGRA~1AdobeREADER~1.0ReaderREADER~1.EXE [2009-10-03 35696]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
    C:PROGRA~1AdobeREADER~1.0ReaderADOBEC~1.EXE [2009-02-27 542096]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
    []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Users^Dmitriy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
    C:PROGRA~1COMMON~1AdobeCALIBR~1ADOBEG~1.EXE [2005-03-16 113664]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderCCleaner.exe]
    CCleaner.exe []

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
    «{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalPEVSystemStart]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalprocexp90.Sys]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkPEVSystemStart]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkprocexp90.Sys]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «EnableLUA»=0
    «PromptOnSecureDesktop»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1
    «EnableUIADesktopToggle»=0

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «NoDriveTypeAutoRun»=247
    «NoDriveAutoRun»=67108851
    «NoDrives»=00000000

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049183-edfa-11dd-9a0a-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049185-edfa-11dd-9a0a-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{326d61ae-ee20-11dd-bbba-e686921d07d2}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{559006ff-ed77-11dd-8938-8b911f06bb8b}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d1a-a8be-11de-86ae-fac5055017b3}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d2e-a8be-11de-86ae-fac5055017b3}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{68d71dc6-2269-11de-80a1-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\wmuscmgr.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{7300f133-f053-11dd-8059-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1a8d-0d39-11de-858e-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\pmspf.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1aa0-0d39-11de-858e-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\inetcomk.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{81780b96-1772-11de-926f-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\dprgres.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{856ef1ae-d322-11dd-9ffa-0021004cb13e}]
    shellAutoRuncommand — F:setup.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85787906-197e-11de-b915-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85953781-b164-11de-96c4-a342b677a7a9}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf506-1842-11de-8a91-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf507-1842-11de-8a91-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b212098-ef9b-11dd-a96a-a185819adcc3}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b21209a-ef9b-11dd-a96a-a185819adcc3}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c88287e-eeed-11dd-bacf-806e6f6e6963}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c8828c1-eeed-11dd-bacf-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{99be78c2-af5f-11de-b591-d7b3c289508c}]
    shellAutoRuncommand — H:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{9afc8d10-1903-11de-9148-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ba97aac7-2332-11de-be49-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\ifsutys.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032055-ed5a-11dd-8fef-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032084-ed5a-11dd-8fef-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ec3ebd6b-cc0b-11dd-a513-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\digesq.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9111-17d1-11de-a8dc-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9132-17d1-11de-a8dc-0021004cb13e}]
    shellAutoRuncommand — G:AutoRun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{eed46686-ed04-11dd-8ef6-0021004cb13e}]
    shellAutoRuncommand — F:

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{efad9743-eebc-11dd-b25c-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\kbdmp.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f1c0472b-f674-11dd-984a-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\tsaphcmp.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f58b70c2-d33e-11dd-a7f2-0021004cb13e}]
    shellAutoRuncommand — F:
    shellopencommand — rundll32.exe .\tqpelib.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fa49e110-e6b7-11dd-8c26-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\sfriptpw.dll,InstallM

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fbe7ce85-f1b8-11dd-8b69-0021004cb13e}]
    shellAutoRuncommand — G:
    shellopencommand — rundll32.exe .\p2pnetmh.dll,InstallM

    ======List of files/folders created in the last 1 months======

    2009-11-04 22:23:59 —-A—- C:Windowsntbtlog.txt
    2009-11-04 22:23:45 —-A—- C:Bug.txt
    2009-11-04 22:23:21 —-D—- C:32788R22FWJFW
    2009-11-04 21:58:07 —-D—- C:WindowsERDNT
    2009-11-04 21:57:52 —-SD—- C:ComboFix
    2009-11-04 21:57:28 —-D—- C:Qoobox
    2009-11-04 18:42:42 —-N—- C:Windowssystem32MpSigStub.exe
    2009-11-04 18:26:38 —-D—- C:Program Filestrend micro
    2009-11-04 18:26:37 —-D—- C:rsit
    2009-11-04 17:52:43 —-A—- C:Windowssystem32wups2.dll
    2009-11-04 17:52:42 —-A—- C:Windowssystem32wucltux.dll
    2009-11-04 17:52:42 —-A—- C:Windowssystem32wuaueng.dll
    2009-11-04 17:52:42 —-A—- C:Windowssystem32wuauclt.exe
    2009-11-04 17:52:19 —-A—- C:Windowssystem32wuwebv.dll
    2009-11-04 17:52:19 —-A—- C:Windowssystem32wuapp.exe
    2009-11-04 14:14:15 —-D—- C:Program FilesGabest
    2009-11-04 14:14:07 —-A—- C:Windowssystem32avisynth.dll
    2009-11-04 14:13:46 —-A—- C:Windowssystem32DivXc32f.dll
    2009-11-04 14:13:46 —-A—- C:Windowssystem32DivXc32.dll
    2009-11-04 14:13:36 —-A—- C:Windowssystem32HUFFYUV.DLL
    2009-11-04 14:13:35 —-D—- C:Program FilesGordianKnot
    2009-11-01 18:54:50 —-D—- C:Program FilesICQ6Toolbar
    2009-11-01 18:54:44 —-D—- C:ProgramDataICQ
    2009-11-01 18:53:21 —-D—- C:Program FilesICQ6.5
    2009-11-01 18:49:44 —-D—- C:Program FilesStamp
    2009-11-01 18:48:26 —-D—- C:Program FilesGRM
    2009-11-01 18:47:40 —-D—- C:WindowsDownloaded Installations
    2009-10-14 19:32:47 —-A—- C:Windowssystem32uxtuneup.dll
    2009-10-14 19:11:32 —-D—- C:ProgramDataTuneUp Software
    2009-10-14 19:01:23 —-A—- C:Windowssystem32TuneUpDefragService.exe
    2009-10-14 18:35:28 —-D—- C:UsersDmitriyAppDataRoamingTuneUp Software
    2009-10-14 18:18:24 —-D—- C:Program FilescFosSpeed
    2009-10-08 07:42:12 —-D—- C:UsersDmitriyAppDataRoamingTranscend

    ======List of files/folders modified in the last 1 months======

    2009-11-04 22:36:57 —-D—- C:WindowsTemp
    2009-11-04 22:34:26 —-D—- C:WindowsSystem32
    2009-11-04 22:34:25 —-D—- C:Windowsinf
    2009-11-04 22:34:25 —-A—- C:Windowssystem32PerfStringBackup.INI
    2009-11-04 22:23:59 —-D—- C:Windowssystem32drivers
    2009-11-04 22:23:59 —-D—- C:Windows
    2009-11-04 20:18:00 —-SHD—- C:System Volume Information
    2009-11-04 20:06:55 —-SHD—- C:WindowsInstaller
    2009-11-04 20:06:48 —-D—- C:Program FilesOpera
    2009-11-04 19:59:25 —-D—- C:Program FilesMozilla Firefox
    2009-11-04 19:59:24 —-D—- C:UsersDmitriyAppDataRoamingMozilla
    2009-11-04 19:43:16 —-D—- C:Windowswinsxs
    2009-11-04 19:42:48 —-D—- C:Windowsrescache
    2009-11-04 19:00:52 —-D—- C:Windowssystem32Boot
    2009-11-04 19:00:43 —-D—- C:Windowssystem32manifeststore
    2009-11-04 19:00:42 —-D—- C:Program FilesInternet Explorer
    2009-11-04 19:00:41 —-D—- C:Windowssystem32migration
    2009-11-04 19:00:27 —-D—- C:Windowssystem32XPSViewer
    2009-11-04 19:00:26 —-D—- C:Windowssystem32wbem
    2009-11-04 18:59:56 —-D—- C:WindowsAppPatch
    2009-11-04 18:59:41 —-D—- C:Windowssystem32en-US
    2009-11-04 18:59:40 —-D—- C:Windowssystem32ru-RU
    2009-11-04 18:59:37 —-D—- C:Program FilesWindows Media Player
    2009-11-04 18:49:21 —-D—- C:ProgramDataMicrosoft Help
    2009-11-04 18:47:12 —-RSD—- C:Windowsassembly
    2009-11-04 18:39:20 —-D—- C:Windowssystem32catroot
    2009-11-04 18:26:38 —-D—- C:Program Files
    2009-11-04 18:21:26 —-D—- C:Windowsehome
    2009-11-04 18:10:25 —-D—- C:Windowssystem32catroot2
    2009-11-04 17:53:21 —-D—- C:WindowsPolicyDefinitions
    2009-11-04 01:04:29 —-A—- C:WindowsNeroDigital.ini
    2009-11-03 11:07:39 —-HD—- C:ProgramData
    2009-11-03 11:07:39 —-D—- C:ProgramDataAlawarWrapper
    2009-11-03 10:47:51 —-D—- C:ProgramDataBluetooth
    2009-11-01 20:27:55 —-D—- C:Program FilesMail.Ru
    2009-11-01 18:48:37 —-RSD—- C:WindowsFonts
    2009-11-01 12:13:33 —-D—- C:ProgramDataAdobe
    2009-11-01 12:11:54 —-D—- C:Program FilesCommon FilesAdobe
    2009-10-31 15:46:27 —-D—- C:Program FilesDownload Master
    2009-10-23 19:51:49 —-D—- C:Program FilesBonjour
    2009-10-23 18:47:22 —-D—- C:WindowsModemLogs
    2009-10-19 23:21:44 —-D—- C:Windowssystem32Msdtc
    2009-10-19 23:20:47 —-D—- C:Windowssystem32config
    2009-10-19 23:20:40 —-D—- C:WindowsTasks
    2009-10-19 23:20:40 —-D—- C:Windowssystem32spool
    2009-10-19 23:20:40 —-D—- C:Windowssystem32CodeIntegrity
    2009-10-19 23:20:40 —-D—- C:UsersDmitriyAppDataRoamingWinamp
    2009-10-19 23:20:39 —-D—- C:Windowsregistration
    2009-10-19 23:20:39 —-D—- C:Program FilesTotal Commander
    2009-10-19 23:09:33 —-D—- C:WindowsMinidump
    2009-10-18 16:51:27 —-HD—- C:UsersDmitriyAppDataRoamingPC Suite
    2009-10-18 12:19:40 —-D—- C:Temp
    2009-10-17 16:51:15 —-D—- C:Program FilesQIP
    2009-10-17 16:49:37 —-D—- C:Program FilesAlawar
    2009-10-15 18:51:45 —-SHD—- C:Boot
    2009-10-15 18:45:02 —-D—- C:Windowssystem32Tasks
    2009-10-14 20:53:34 —-D—- C:WindowsShellNew
    2009-10-14 20:53:27 —-D—- C:Program FilesCommon Filesmicrosoft shared

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 CSC;Offline Files Driver; C:Windowssystem32driverscsc.sys [2008-01-21 350720]
    R1 ehdrv;ehdrv; C:Windowssystem32DRIVERSehdrv.sys [2009-02-06 106208]
    R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; ??C:Program FilesCyberLinkPowerDVD800.fcl [2008-06-27 61424]
    R2 eamon;eamon; C:Windowssystem32DRIVERSeamon.sys [2009-02-06 113448]
    R2 epfw;epfw; C:Windowssystem32DRIVERSepfw.sys [2009-02-06 130952]
    R2 epfwwfp;epfwwfp; C:Windowssystem32DRIVERSepfwwfp.sys [2009-02-06 38240]
    R2 mdmxsdk;mdmxsdk; C:Windowssystem32DRIVERSmdmxsdk.sys [2006-06-19 12672]
    R2 XAudio;XAudio; C:Windowssystem32DRIVERSxaudio.sys [2007-10-18 8704]
    R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
    R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:Windowssystem32driversCHDRT32.sys [2008-06-05 222208]
    R3 Epfwndis;Eset Personal Firewall; C:Windowssystem32DRIVERSEpfwndis.sys [2009-02-06 33096]
    R3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
    R3 HpqKbFiltr;HpqKbFilter Driver; C:Windowssystem32DRIVERSHpqKbFiltr.sys [2007-06-18 16768]
    R3 HSF_DPV;HSF_DPV; C:Windowssystem32DRIVERSHSX_DPV.sys [2007-11-01 985600]
    R3 HSXHWAZL;HSXHWAZL; C:Windowssystem32DRIVERSHSXHWAZL.sys [2007-11-01 208896]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:Windowssystem32DRIVERSnvmfdx32.sys [2008-01-29 1042464]
    R3 nvlddmkm;nvlddmkm; C:Windowssystem32DRIVERSnvlddmkm.sys [2008-07-12 7530656]
    R3 nvsmu;nvsmu; C:Windowssystem32DRIVERSnvsmu.sys [2008-04-24 14848]
    R3 RTSTOR;Realtek USB 2.0 Card Reader; C:Windowssystem32driversRTSTOR.SYS [2009-03-26 64000]
    R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2008-04-17 199344]
    R3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
    R3 winachsf;winachsf; C:Windowssystem32DRIVERSHSX_CNXT.sys [2007-11-01 661504]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-21 11264]
    S3 adlinzrh;adlinzrh; C:Windowssystem32driversadlinzrh.sys []
    S3 BCM43XX;Драйвер сетевого адаптера Broadcom 802.11; C:Windowssystem32DRIVERSbcmwl6.sys [2008-12-15 1207288]
    S3 BlueletAudio;Bluetooth Audio Service; C:Windowssystem32DRIVERSblueletaudio.sys []
    S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:Windowssystem32DRIVERSBlueletSCOAudio.sys []
    S3 BT;Bluetooth PAN Network Adapter; C:Windowssystem32DRIVERSbtnetdrv.sys []
    S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:WindowsSystem32Driversbtcusb.sys []
    S3 BthEnum;Служба перечислителя Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
    S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
    S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-01-21 219648]
    S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-01-21 29184]
    S3 Dot4;Драйвер MS IEEE-1284.4; C:Windowssystem32DRIVERSDot4.sys [2008-01-21 131584]
    S3 Dot4Print;Драйвер класса принтеров для IEEE-1284.4; C:Windowssystem32DRIVERSDot4Prt.sys [2008-01-21 16384]
    S3 Dot4Scan;Драйвер класса сканеров для IEEE-1284.4; C:Windowssystem32DRIVERSDot4Scan.sys [2008-01-21 10752]
    S3 dot4usb;Dot4USB фильтр Dot4USB Filter; C:Windowssystem32DRIVERSdot4usb.sys [2008-01-21 36864]
    S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
    S3 HPFXBULK;HPFXBULK; C:Windowssystem32drivershpfxbulk.sys [2007-07-16 17432]
    S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:Windowssystem32DRIVERSewusbmdm.sys [2008-12-13 102784]
    S3 hwusbfake;Huawei DataCard USB Fake; C:Windowssystem32DRIVERSewusbfake.sys [2008-12-30 103040]
    S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
    S3 nmwcd;Nokia USB Phone Parent; C:Windowssystem32driversccdcmb.sys [2009-02-09 17664]
    S3 nmwcdc;Nokia USB Generic; C:Windowssystem32driversccdcmbo.sys [2009-02-09 22016]
    S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:Windowssystem32driversnmwcdnsu.sys [2009-03-19 136704]
    S3 nmwcdnsuc;Nokia USB Flashing Generic; C:Windowssystem32driversnmwcdnsuc.sys [2009-03-19 8320]
    S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:Windowssystem32driversnvhda32v.sys [2008-05-10 43040]
    S3 pccsmcfd;PCCS Mode Change Filter Driver; C:Windowssystem32DRIVERSpccsmcfd.sys [2007-09-17 21632]
    S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
    S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:WindowsSystem32DriversRootMdm.sys [2008-01-21 8192]
    S3 upperdev;upperdev; C:Windowssystem32DRIVERSusbser_lowerflt.sys [2009-02-09 7808]
    S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
    S3 usbser;USB Modem Driver; C:Windowssystem32driversusbser.sys [2008-01-21 28160]
    S3 UsbserFilt;UsbserFilt; C:Windowssystem32DRIVERSusbser_lowerfltj.sys [2009-02-09 7808]
    S3 VComm;Virtual Serial port driver; C:Windowssystem32DRIVERSVComm.sys []
    S3 VcommMgr;Bluetooth VComm Manager Service; C:WindowsSystem32DriversVcommMgr.sys []
    S3 WpdUsb;WpdUsb; C:Windowssystem32DRIVERSwpdusb.sys [2008-01-21 39936]
    S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
    R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 ekrn;ESET Service; C:Program FilesESETESET Smart Securityekrn.exe [2009-02-06 727720]
    R2 Net Driver HPZ12;Net Driver HPZ12; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2008-07-12 196608]
    R2 Pml Driver HPZ12;Pml Driver HPZ12; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 UxTuneUp;@%SystemRoot%System32uxtuneup.dll,-4096; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 XAudioService;XAudioService; C:Windowssystem32DRIVERSxaudio.exe [2007-10-18 386560]
    S2 pr2ajewe;Splinter Cell. Double Agent Drivers Auto Removal (pr2ajewe); C:Windowssystem32pr2ajewe.exe [2007-02-14 407200]
    S3 Adobe LM Service;Adobe LM Service; C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2009-07-10 72704]
    S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2008-01-21 21504]
    S3 Com4QLBEx;Com4QLBEx; C:Program FilesHewlett-PackardHP Quick Launch ButtonsCom4QLBEx.exe [2008-04-03 193840]
    S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET Smart SecurityEHttpSrv.exe [2009-02-06 20680]
    S3 Fax;@%systemroot%system32fxsresm.dll,-118; C:Windowssystem32fxssvc.exe [2008-01-21 523776]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2008-12-27 654848]
    S3 hpqwmiex;hpqwmiex; C:Program FilesHewlett-PackardSharedhpqwmiex.exe [2008-05-01 165192]
    S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
    S3 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:Program FilesNeroNero8Nero BackItUpNBService.exe [2007-09-20 853288]
    S3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesNeroLibNMIndexingService.exe [2007-09-20 382248]
    S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
    S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-14 145184]
    S3 RichVideo;Cyberlink RichVideo Service(CRVS); C:Program FilesCyberLinkShared filesRichVideo.exe [2005-08-08 167936]
    S3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2008-05-30 572416]
    S3 TuneUp.Defrag;@%SystemRoot%System32TuneUpDefragService.exe,-1; C:WindowsSystem32TuneUpDefragService.exe [2009-10-14 362240]
    S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    S3 wbengine;@%systemroot%system32wbengine.exe,-104; C:Windowssystem32wbengine.exe [2008-01-21 917504]
    S4 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe []

    EOF

    8 ноября, 2009 в 4:28 пп #26666
    Admin
    Keymaster
    • Темы:40
    • Сообщений:5676
    • ☆☆☆☆☆

    Здравствуйте, добро пожаловать на Spyware-ru форум.

    Скачайте OTM by OldTimer кликнув по этой ссылке.
    Запустите OTM и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.

    :reg
    
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DB57DC83-5B50-B294-DAC5-E568216871FE}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049183-edfa-11dd-9a0a-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049185-edfa-11dd-9a0a-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{326d61ae-ee20-11dd-bbba-e686921d07d2}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{559006ff-ed77-11dd-8938-8b911f06bb8b}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d1a-a8be-11de-86ae-fac5055017b3}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d2e-a8be-11de-86ae-fac5055017b3}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{68d71dc6-2269-11de-80a1-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{7300f133-f053-11dd-8059-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1a8d-0d39-11de-858e-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1aa0-0d39-11de-858e-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{81780b96-1772-11de-926f-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{856ef1ae-d322-11dd-9ffa-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85787906-197e-11de-b915-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85953781-b164-11de-96c4-a342b677a7a9}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf506-1842-11de-8a91-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf507-1842-11de-8a91-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b212098-ef9b-11dd-a96a-a185819adcc3}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b21209a-ef9b-11dd-a96a-a185819adcc3}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c88287e-eeed-11dd-bacf-806e6f6e6963}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c8828c1-eeed-11dd-bacf-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{99be78c2-af5f-11de-b591-d7b3c289508c}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{9afc8d10-1903-11de-9148-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ba97aac7-2332-11de-be49-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032055-ed5a-11dd-8fef-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032084-ed5a-11dd-8fef-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ec3ebd6b-cc0b-11dd-a513-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9111-17d1-11de-a8dc-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9132-17d1-11de-a8dc-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{eed46686-ed04-11dd-8ef6-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{efad9743-eebc-11dd-b25c-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f1c0472b-f674-11dd-984a-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f58b70c2-d33e-11dd-a7f2-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fa49e110-e6b7-11dd-8c26-0021004cb13e}]
    
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fbe7ce85-f1b8-11dd-8b69-0021004cb13e}]
    

    
:files
    
C:UsersDmitriyAppDataRoamingmsmedia.dll
    

    
:Commands
    
[emptytemp]
    
[Reboot]

    Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
    По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMMovedFiles.

    Вставьте в ваше ответное сообщение содержимое этого лога. И приложите свежий RSIT лог (только log.txt).

    26 января, 2010 в 2:28 пп #26667
    garegin
    Participant
    • Темы:0
    • Сообщений:1
    • ☆

    All processes killed
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DB57DC83-5B50-B294-DAC5-E568216871FE} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{DB57DC83-5B50-B294-DAC5-E568216871FE} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049183-edfa-11dd-9a0a-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{2a049183-edfa-11dd-9a0a-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{2a049185-edfa-11dd-9a0a-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{2a049185-edfa-11dd-9a0a-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{326d61ae-ee20-11dd-bbba-e686921d07d2} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{326d61ae-ee20-11dd-bbba-e686921d07d2} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{559006ff-ed77-11dd-8938-8b911f06bb8b} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{559006ff-ed77-11dd-8938-8b911f06bb8b} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d1a-a8be-11de-86ae-fac5055017b3} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{5f487d1a-a8be-11de-86ae-fac5055017b3} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5f487d2e-a8be-11de-86ae-fac5055017b3} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{5f487d2e-a8be-11de-86ae-fac5055017b3} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{68d71dc6-2269-11de-80a1-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{68d71dc6-2269-11de-80a1-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{7300f133-f053-11dd-8059-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{7300f133-f053-11dd-8059-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1a8d-0d39-11de-858e-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{774d1a8d-0d39-11de-858e-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{774d1aa0-0d39-11de-858e-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{774d1aa0-0d39-11de-858e-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{81780b96-1772-11de-926f-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{81780b96-1772-11de-926f-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{856ef1ae-d322-11dd-9ffa-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{856ef1ae-d322-11dd-9ffa-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85787906-197e-11de-b915-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{85787906-197e-11de-b915-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{85953781-b164-11de-96c4-a342b677a7a9} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{85953781-b164-11de-96c4-a342b677a7a9} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf506-1842-11de-8a91-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{860bf506-1842-11de-8a91-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{860bf507-1842-11de-8a91-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{860bf507-1842-11de-8a91-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b212098-ef9b-11dd-a96a-a185819adcc3} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8b212098-ef9b-11dd-a96a-a185819adcc3} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b21209a-ef9b-11dd-a96a-a185819adcc3} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8b21209a-ef9b-11dd-a96a-a185819adcc3} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c88287e-eeed-11dd-bacf-806e6f6e6963} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8c88287e-eeed-11dd-bacf-806e6f6e6963} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8c8828c1-eeed-11dd-bacf-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8c8828c1-eeed-11dd-bacf-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{99be78c2-af5f-11de-b591-d7b3c289508c} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{99be78c2-af5f-11de-b591-d7b3c289508c} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{9afc8d10-1903-11de-9148-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{9afc8d10-1903-11de-9148-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ba97aac7-2332-11de-be49-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{ba97aac7-2332-11de-be49-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032055-ed5a-11dd-8fef-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{d0032055-ed5a-11dd-8fef-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d0032084-ed5a-11dd-8fef-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{d0032084-ed5a-11dd-8fef-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ec3ebd6b-cc0b-11dd-a513-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{ec3ebd6b-cc0b-11dd-a513-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9111-17d1-11de-a8dc-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{ed3d9111-17d1-11de-a8dc-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{ed3d9132-17d1-11de-a8dc-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{ed3d9132-17d1-11de-a8dc-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{eed46686-ed04-11dd-8ef6-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{eed46686-ed04-11dd-8ef6-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{efad9743-eebc-11dd-b25c-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{efad9743-eebc-11dd-b25c-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f1c0472b-f674-11dd-984a-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{f1c0472b-f674-11dd-984a-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f58b70c2-d33e-11dd-a7f2-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{f58b70c2-d33e-11dd-a7f2-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fa49e110-e6b7-11dd-8c26-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{fa49e110-e6b7-11dd-8c26-0021004cb13e} not found.
    Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{fbe7ce85-f1b8-11dd-8b69-0021004cb13e} not found.
    Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{fbe7ce85-f1b8-11dd-8b69-0021004cb13e} not found.
    ========== FILES ==========
    File/Folder C:UsersDmitriyAppDataRoamingmsmedia.dll not found.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Public

    User: Все пользователи

    User: Катрина
    ->Temp folder emptied: 54643038 bytes
    ->Temporary Internet Files folder emptied: 27348767 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%System32 .tmp files removed: 0 bytes
    %systemroot%System32drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 3186702 bytes
    RecycleBin emptied: 18321113 bytes

    Total Files Cleaned = 99,00 mb

    OTM by OldTimer — Version 3.1.6.0 log created on 01262010_171538

    Files moved on Reboot…
    File C:Windowstemp_avast4_Webshlock.txt not found!

    Registry entries deleted on Reboot…

  • Автор
    Сообщения
Просмотр 3 сообщений - с 1 по 3 (из 3 всего)
  • Для ответа в этой теме необходимо авторизоваться.
Войти

Добро пожаловать

На нашем сайте размещены инструкции и программы, которые помогут вам абсолютно бесплатно и самостоятельно удалить навязчивую рекламу, вирусы и трояны.

Поиск

Последние темы

  • Странность в Malwebytes опубликовано Artem225
    5 years, 12 months назад
  • SUSPICIOUS.FakedMBR.1 что делать, помогите!!! опубликовано White
    6 years назад
  • Помогите пожалуйста вирус замучил. опубликовано dimazons1233211
    6 years, 2 months назад
  • Замучила реклама опубликовано Данила Беспятов
    6 years, 3 months назад
  • Замучила реклама опубликовано Марк
    6 years назад
  • Вирус S1.video.ru.net опубликовано ludovik
    6 years, 5 months назад
  • Чертов Safe Finder!!!! опубликовано kosta savo
    6 years, 2 months назад
  • ESET блокирует неизвестный сайт , вход на который не осуществлялся. опубликовано trollhamaren
    6 years, 6 months назад

СПАЙВАРЕ РУ

  • О Спайваре Ру
  • Контакты
  • Реклама на сайте
  • Политика конфиденциальности
  • Правила использования

Нужна помощь?

Задайте свой вопрос прямо сейчас кликнув по следующей ссылке Задать вопрос.

Или обратитесь на наш форум, где команда Spyware-ru поможет вам. Узнайте, как попросить о помощи здесь.

Ссылки

  • Инструкции
  • Скачать программы
  • Помощь в удалении вирусов
  • Как вылечить компьютер
Copyright © 2008 - 2024 Spyware-RU.com (en)