• Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы

SPYWARE-RU.COM
Меню
  • Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы
В начало › Рекламные окна ( не порно )
Adguard
 

Рекламные окна ( не порно )

Удаление вирусов и троянов. Защита компьютера. › Помощь в удалении вирусов, троянов, рекламы и других зловредов › Рекламные окна ( не порно )

  • This topic has 3 ответа, 2 участника, and was last updated 16 years назад by Admin.
Просмотр 4 сообщений - с 1 по 4 (из 4 всего)
  • Автор
    Сообщения
  • 15 октября, 2009 в 5:04 дп #17152
    vitalii1987
    Participant
    • Темы:1
    • Сообщений:3
    • ☆

    Добрый день уже попробовал много антивирусов , не помогает , Ваш антивирус тоже помог но не до конца …
    Окна с рекламой всплывают (не порно , иностранные сайты , армия США для примера … ) , это случается не зависимо от браузера ( будь то Fierfox или Google Chrome )

    Пожалуйста посоветуйте что делать , спасибо .

    15 октября, 2009 в 5:06 дп #25913
    vitalii1987
    Participant
    • Темы:1
    • Сообщений:3
    • ☆

    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by Bek at 2009-10-14 21:55:19
    Microsoft® Windows Vista™ Business Service Pack 2
    System drive C: has 13 GB (24%) free of 52 GB
    Total RAM: 1013 MB (21% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:56:03, on 14.10.2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v7.00 (7.00.6002.18005)
    Boot mode: Normal

    Running processes:
    C:Windowssystem32Dwm.exe
    C:WindowsExplorer.EXE
    C:WindowsSYSTEM32taskeng.exe
    C:Windowssystem32igfxsrvc.exe
    C:WindowsSystem32hkcmd.exe
    C:WindowsSystem32igfxpers.exe
    C:Program FilesSynapticsSynTPSynTPEnh.exe
    C:WindowsWindowsMobilewmdc.exe
    C:Windowssystem32wbemunsecapp.exe
    C:Program FilesMozilla Firefoxfirefox.exe
    C:Program FilesDownload Masterdmaster.exe
    C:Windowssystem32wuauclt.exe
    C:Program FilesInternet Explorerieuser.exe
    C:Windowssystem32MacromedFlashFlashUtil9b.exe
    C:Windowssystem32wuauclt.exe
    D:ЗакачалRSIT.exe
    C:Program FilesTrend MicroHijackThisBek.exe

    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.qip.ru/ie
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://search.qip.ru
    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://en.us.acer.yahoo.com
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://en.us.acer.yahoo.com
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = Root: HKCU; Subkey: SoftwareMicrosoftInternet ExplorerSearchUrl; ValueType: string; ValueName: ‘; ValueData: ‘; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
    R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
    R3 — URLSearchHook: QIPBHO Class — {95289393-33EA-4F8D-B952-483415B9C955} — C:UsersBekAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    R3 — URLSearchHook: Yahoo! Toolbar — {EF99BD32-C1FB-11D2-892F-0090271D4F88} — (no file)
    R3 — URLSearchHook: (no name) — — (no file)
    O1 — Hosts: ::1 localhost
    O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
    O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
    O2 — BHO: WormRadar.com IESiteBlocker.NavFilter — {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} — C:Program FilesAVGAVG8avgssie.dll (file missing)
    O2 — BHO: (no name) — {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} — (no file)
    O2 — BHO: QIPBHO — {95289393-33EA-4F8D-B952-483415B9C955} — C:UsersBekAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
    O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.1.1309.3572swg.dll
    O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
    O3 — Toolbar: PROMT — {892E81F6-EC63-4d13-8422-835A7A05D6EB} — C:Program FilesPRMT8PRMTIEprmtie.dll
    O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
    O4 — HKLM..Run: [MSConfig] «C:Windowssystem32msconfig.exe» /auto
    O4 — HKLM..Run: [IgfxTray] C:Windowssystem32igfxtray.exe
    O4 — HKLM..Run: [HotKeysCmds] C:Windowssystem32hkcmd.exe
    O4 — HKLM..Run: [Persistence] C:Windowssystem32igfxpers.exe
    O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
    O4 — HKLM..Run: [Windows Mobile Device Center] %windir%WindowsMobilewmdc.exe
    O4 — HKLM..Run: [Malwarebytes Anti-Malware (reboot)] «C:Program FilesMalwarebytes’ Anti-Malwarembam.exe» /runcleanupscript
    O4 — HKCU..Run: [QIP2005] C:Program FilesQIPqip.exe
    O4 — HKCU..Run: [Gluhuxabibidovu] rundll32.exe «C:UsersBekAppDataLocalagahukuh.dll»,Startup
    O4 — HKCU..Run: [fizoyaroj] Rundll32.exe «c:progra~2jiyekiyajiyekiya.dll»,a
    O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
    O8 — Extra context menu item: E&xport to Microsoft Excel — res://C:PROGRA~1MICROS~1Office12EXCEL.EXE/3000
    O8 — Extra context menu item: Online-словари — C:Program FilesPRMT8PRMTIEoda.htm
    O8 — Extra context menu item: Автоматически определить шаблон тематики — C:Program FilesPRMT8PRMTIEaot.htm
    O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
    O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
    O8 — Extra context menu item: Настроить параметры перевода — C:Program FilesPRMT8PRMTIEoptions.htm
    O8 — Extra context menu item: Незнакомые слова — C:Program FilesPRMT8PRMTIEinfopanel.htm
    O8 — Extra context menu item: Открыть словарную статью — C:Program FilesPRMT8PRMTIEaddentry.htm
    O8 — Extra context menu item: Перевести — C:Program FilesPRMT8PRMTIEtranslat.htm
    O8 — Extra context menu item: Перевести страницу — C:Program FilesPRMT8PRMTIEpage.htm
    O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
    O8 — Extra context menu item: Поиск в Интернете — C:Program FilesPRMT8PRMTIEsearch.htm
    O8 — Extra context menu item: Проверить ссылку Dr.Web — http://www.drweb.com/online/drweb-online-ru.html
    O9 — Extra button: @C:WindowsWindowsMobileINetRepl.dll,-222 — {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
    O9 — Extra button: (no name) — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
    O9 — Extra ‘Tools’ menuitem: @C:WindowsWindowsMobileINetRepl.dll,-223 — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
    O9 — Extra button: (no name) — {4034D172-4C52-49de-A6A1-E75F8F591FEC} — C:Program FilesPRMT8PRMTIEoptions.htm
    O9 — Extra ‘Tools’ menuitem: Настроить параметры перевода — {4034D172-4C52-49de-A6A1-E75F8F591FEC} — C:Program FilesPRMT8PRMTIEoptions.htm
    O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
    O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
    O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
    O9 — Extra button: (no name) — {A2DA13D5-AC77-43b7-963B-40445EBCB8E0} — C:Program FilesPRMT8PRMTIEprmtie5.htm
    O9 — Extra ‘Tools’ menuitem: Перевести — {A2DA13D5-AC77-43b7-963B-40445EBCB8E0} — C:Program FilesPRMT8PRMTIEprmtie5.htm
    O13 — Gopher Prefix:
    O16 — DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) — http://vkontakte.ru/uploader/ImageUploader4.cab
    O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:Program FilesCommon FilesSkypeSkype4COM.dll
    O23 — Service: Apple Mobile Device — Apple Inc. — C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe
    O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
    O23 — Service: eRecovery Service (eRecoveryService) — Acer Inc. — C:AcerEmpowering TechnologyeRecoveryeRecoveryService.exe
    O23 — Service: Служба Google Update (gupdate1c9a1252d3f12e0) (gupdate1c9a1252d3f12e0) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
    O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
    O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
    O23 — Service: PIXMA Extended Survey Program (IJPLMSVC) — Unknown owner — C:Program FilesCanonIJPLMIJPLMSVC.EXE
    O23 — Service: Сервис iPod (iPod Service) — Apple Inc. — C:Program FilesiPodbiniPodService.exe
    O23 — Service: LightScribeService Direct Disc Labeling Service (LightScribeService) — Hewlett-Packard Company — C:Program FilesCommon FilesLightScribeLSSrvc.exe
    O23 — Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) — Unknown owner — C:Program FilesWinPcaprpcapd.exe (file missing)
    O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe

    —
    End of file — 9503 bytes

    ======Scheduled tasks folder======

    C:WindowstasksDr.Web Daily scan.job
    C:WindowstasksDr.Web Update.job
    C:WindowstasksGoogle Software Updater.job
    C:WindowstasksGoogleUpdateTaskMachineCore.job
    C:WindowstasksGoogleUpdateTaskMachineUA.job
    C:WindowstasksGoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003Core.job
    C:WindowstasksGoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003UA.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2006-12-18 59032]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
    Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-02-04 1082880]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
    AVG Safe Search — C:Program FilesAVGAVG8avgssie.dll []

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{95289393-33EA-4F8D-B952-483415B9C955}]
    QIPBHO Class — C:UsersBekAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll [2009-06-17 119808]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
    IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2009-04-16 158208]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.1.1309.3572swg.dll [2009-03-23 668656]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-07-25 41760]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
    {892E81F6-EC63-4d13-8422-835A7A05D6EB} — PROMT — C:Program FilesPRMT8PRMTIEprmtie.dll [2007-03-21 749568]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-19 1008184]
    «MSConfig»=C:Windowssystem32msconfig.exe [2008-01-19 227840]
    «IgfxTray»=C:Windowssystem32igfxtray.exe [2007-10-18 141848]
    «HotKeysCmds»=C:Windowssystem32hkcmd.exe [2007-10-18 166424]
    «Persistence»=C:Windowssystem32igfxpers.exe [2007-10-18 133656]
    «SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2006-10-22 815104]
    «Windows Mobile Device Center»=C:WindowsWindowsMobilewmdc.exe [2007-05-31 648072]
    «Malwarebytes Anti-Malware (reboot)»=C:Program FilesMalwarebytes’ Anti-Malwarembam.exe [2009-09-10 1312080]

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «QIP2005″=C:Program FilesQIPqip.exe [2009-08-13 3276288]
    «Gluhuxabibidovu»=C:UsersBekAppDataLocalagahukuh.dll [2009-04-10 165888]
    «fizoyaroj»=c:progra~2jiyekiyajiyekiya.dll [2009-07-13 167424]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupreg2190618]
    C:ProgramData21906182190618.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAcer Product Registration]
    C:Program FilesAcer RegistrationACE1.exe [2007-02-02 3383296]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAcer Tour Reminder]
    C:AcerAcerTourReminder.exe [2007-01-17 151552]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAlcoholAutomount]
    C:Program FilesAlcohol SoftAlcohol 120axcmd.exe /automount []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAppleSyncNotifier]
    C:Program FilesCommon FilesAppleMobile Device SupportbinAppleSyncNotifier.exe [2009-05-13 177472]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCanonMyPrinter]
    C:Program FilesCanonMyPrinterBJMyPrt.exe /logon []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTRegRun]
    C:WindowsCTRegRun.EXE [2006-10-05 53248]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDownload Master]
    C:Program FilesDownload Masterdmaster.exe [2009-08-05 3777536]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregeDSMSNfix]
    C:AcerEmpowering TechnologyeDSMSNfix.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregfizoyaroj]
    c:progra~2jiyekiyajiyekiya.dll [2009-07-13 167424]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregGluhuxabibidovu]
    C:UsersBekAppDataLocalagahukuh.dll [2009-04-10 165888]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregGoogle Update]
    C:UsersBekAppDataLocalGoogleUpdateGoogleUpdate.exe [2008-09-03 133104]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHotKeysCmds]
    C:Windowssystem32hkcmd.exe [2007-10-18 166424]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIgfxTray]
    C:Windowssystem32igfxtray.exe [2007-10-18 141848]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInfium]
    C:Program FilesQIP Infiuminfium.exe /autorun []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupreginixs]
    C:Windowssystem32minix32.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregISUSPM Startup]
    C:Program FilesCommon FilesInstallShieldUpdateServiceISUSPM.exe [2005-08-11 249856]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregiTunesHelper]
    C:Program FilesiTunesiTunesHelper.exe [2009-07-13 292128]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLanguageShortcut]
    C:Program FilesCyberLinkPowerDVDLanguageLanguage.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLManager]
    C:PROGRA~1LAUNCH~1LManager.exe [2006-12-08 614400]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLVCOMSX]
    C:Program FilesCommon FilesLogitechLComMgrLVComSX.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregnelusamumo]
    C:ProgramDatalejufomulejufomu.dll,s []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregOpwareSE4]
    C:Program FilesScanSoftOmniPageSE4.0OpwareSE4.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregPersistence]
    C:Windowssystem32igfxpers.exe [2007-10-18 133656]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregQuickTime Task]
    C:Program FilesQuickTimeQTTask.exe [2009-05-26 413696]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
    C:Program FilesCyberLinkPowerDVDPDVDServ.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRtHDVCpl]
    C:WindowsRtHDVCpl.exe [2007-03-01 4390912]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSkype]
    C:Program FilesSkypePhoneSkype.exe [2009-02-04 23975720]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSpIDerAgent]
    C:Program FilesDrWebSpIDerAgent.exe [2009-06-01 447728]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSpIDerGate]
    C:Program FilesDrWebspidergate.exe [2009-07-03 1471728]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSpIDerMail]
    C:Program FilesDrWebspiderml.exe [2009-06-30 644336]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSpIDerNT]
    C:PROGRA~1DrWebspiderui.exe [2009-08-17 231840]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSSBkgdUpdate]
    C:Program FilesCommon FilesScansoft SharedSSBkgdUpdateSSBkgdupdate.exe -Embedding -boot []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
    C:Program FilesJavajre6binjusched.exe [2009-07-25 149280]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSynTPEnh]
    C:Program FilesSynapticsSynTPSynTPEnh.exe [2006-10-22 815104]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregupdateMgr]
    C:Program FilesAdobeAcrobat 7.0ReaderAdobeUpdateManager.exe [2006-03-30 313472]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupreguTorrent]
    C:Program FilesuTorrentuTorrent.exe [2009-10-12 267264]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWinampAgent]
    C:Program FilesWinampwinampa.exe []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregwmagent.exe]
    C:Program FilesWebMoney Agentwmagent.exe [2008-10-01 209376]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
    C:PROGRA~1AdobeACROBA~1.0ReaderREADER~1.EXE [2005-09-23 29696]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BDARemote.lnk]
    C:PROGRA~1USBTV~1EM28XXBDAREM~1.EXE []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk]
    C:AcerEMPOWE~1EAPLAU~1.EXE [2006-11-21 528384]

    C:ProgramDataMicrosoftWindowsStart MenuProgramsStartup
    Dr.Web Daily scan.job
    Dr.Web Update.job
    Google Software Updater.job
    GoogleUpdateTaskMachineCore.job
    GoogleUpdateTaskMachineUA.job
    GoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003Core.job
    GoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003UA.job
    SA.DAT
    SCHEDLGU.TXT

    C:UsersBekAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
    Dr.Web Daily scan.job
    Dr.Web Update.job
    Google Software Updater.job
    GoogleUpdateTaskMachineCore.job
    GoogleUpdateTaskMachineUA.job
    GoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003Core.job
    GoogleUpdateTaskUserS-1-5-21-609652047-33209471-141185227-1003UA.job
    SA.DAT
    SCHEDLGU.TXT

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyigfxcui]
    C:WindowsSYSTEM32igfxdev.dll [2007-10-18 200704]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «dontdisplaylastusername»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1
    «EnableUIADesktopToggle»=0

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «BindDirectlyToPropertySetStorage»=

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{00e4a8c1-73df-11dc-bb13-0016d4d94063}]
    shellAutoRuncommand — F:Autorun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{0a92df11-9477-11dc-843c-0016d4d94063}]
    shellAutoRuncommand — G:Autorun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{12ef01c3-6601-11dc-87ec-0016d4d94063}]
    shellОткрытьcommand — recycler.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{1909f765-73e2-11dc-ae62-0016d4d94063}]
    shellAutoRuncommand — G:Autorun.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5356777e-1173-11de-889b-0016d4d94063}]
    shellОткрытьcommand — G:recycler.exe

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{bb5fc73e-daa2-11dd-be08-0016d4d94063}]
    shellAutoRuncommand — H:LaunchU3.exe -a

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{c5c88da3-3417-11de-bcd3-0016d4d94063}]
    shellAutoRuncommand — G:qwtb.com
    shellopencommand — G:qwtb.com

    ======List of files/folders created in the last 1 months======

    2009-10-14 21:38:35 —-D—- C:rsit
    2009-10-14 21:26:19 —-D—- C:Program FilesTrend Micro
    2009-10-14 19:56:11 —-D—- C:UsersBekAppDataRoamingMalwarebytes
    2009-10-14 19:55:56 —-D—- C:ProgramDataMalwarebytes
    2009-10-14 19:55:54 —-D—- C:Program FilesMalwarebytes’ Anti-Malware
    2009-10-14 17:01:22 —-D—- C:Program FilesCommon FilesDoctor Web
    2009-10-14 17:00:57 —-D—- C:ProgramDataDoctor Web
    2009-10-14 17:00:54 —-D—- C:Program FilesDrWeb
    2009-10-13 22:20:59 —-D—- C:ProgramDataNorton
    2009-10-13 22:16:04 —-D—- C:ProgramDataNortonInstaller
    2009-10-13 16:31:16 —-D—- C:ProgramDatayekufubi
    2009-10-13 16:31:16 —-D—- C:ProgramDatanujarive
    2009-10-13 16:31:16 —-D—- C:ProgramDatalejufomu
    2009-10-13 16:30:44 —-D—- C:ProgramDatabonaguna
    2009-10-13 16:30:43 —-D—- C:ProgramDatatihonego
    2009-10-13 16:30:43 —-D—- C:ProgramDatapubuguwa
    2009-10-13 16:30:43 —-D—- C:ProgramDatapasusowi
    2009-10-13 16:30:43 —-D—- C:ProgramDatajiyekiya
    2009-10-13 16:30:43 —-D—- C:ProgramDatafofajivo
    2009-10-13 14:07:42 —-A—- C:Windowssystem32msv1_0.dll
    2009-10-13 14:07:35 —-A—- C:Windowssystem32wininet.dll
    2009-10-13 14:07:35 —-A—- C:Windowssystem32urlmon.dll
    2009-10-13 14:07:35 —-A—- C:Windowssystem32mshtml.dll
    2009-10-13 14:07:32 —-A—- C:Windowssystem32ieframe.dll
    2009-10-13 14:07:31 —-A—- C:Windowssystem32ieui.dll
    2009-10-13 14:07:28 —-A—- C:Windowssystem32ieencode.dll
    2009-10-13 14:07:26 —-A—- C:Windowssystem32ieapfltr.dll
    2009-10-13 14:07:03 —-A—- C:Windowssystem32ntoskrnl.exe
    2009-10-13 14:07:03 —-A—- C:Windowssystem32ntkrnlpa.exe
    2009-10-13 14:02:24 —-A—- C:Windowssystem32msasn1.dll
    2009-10-13 14:02:21 —-A—- C:Windowssystem32WMSPDMOD.DLL
    2009-10-13 04:30:26 —-D—- C:ProgramDatazalahobe
    2009-10-13 04:30:26 —-D—- C:ProgramDatamepawadi
    2009-10-12 21:27:49 —-A—- C:Windowssystem32wmvdmoe.dll
    2009-10-12 21:27:40 —-D—- C:ProgramDataPY_Software
    2009-10-12 21:27:29 —-D—- C:Program FilesActive WebCam
    2009-10-12 16:30:07 —-D—- C:ProgramDatarobuteza
    2009-10-12 04:30:00 —-D—- C:ProgramDatakuweloba
    2009-10-11 16:29:41 —-D—- C:ProgramDatajafejare
    2009-10-11 16:24:33 —-D—- C:ProgramDatatugubino
    2009-10-11 16:24:33 —-D—- C:ProgramDatagabawodo
    2009-10-11 16:24:33 —-D—- C:ProgramDatadisopiju
    2009-10-03 01:48:23 —-N—- C:Windowssystem32MpSigStub.exe
    2009-09-28 15:24:47 —-D—- C:UsersBekAppDataRoamingWebMoney
    2009-09-28 15:21:19 —-D—- C:Program FilesWebMoney Agent
    2009-09-28 15:20:58 —-D—- C:Program FilesWebMoney
    2009-09-22 00:59:45 —-D—- C:ProgramDataLast.fm
    2009-09-22 00:59:05 —-D—- C:Program FilesLast.fm
    2009-09-22 00:15:11 —-D—- C:Program FilesQIP
    2009-09-17 16:12:26 —-D—- C:UsersBekAppDataRoamingGlobalSCAPE
    2009-09-17 16:12:26 —-D—- C:ProgramDataGlobalSCAPE
    2009-09-17 16:12:13 —-D—- C:Program FilesCommon FilesSWF Studio
    2009-09-17 16:11:31 —-D—- C:Program FilesGlobalSCAPE
    2009-09-16 16:17:10 —-D—- C:Windowssystem32eu-ES
    2009-09-16 16:17:10 —-D—- C:Windowssystem32ca-ES
    2009-09-16 16:17:09 —-D—- C:Windowssystem32vi-VN
    2009-09-16 15:44:54 —-D—- C:Windowssystem32EventProviders

    ======List of files/folders modified in the last 1 months======

    2009-10-14 21:55:17 —-D—- C:Windowswinsxs
    2009-10-14 21:55:14 —-D—- C:WindowsTemp
    2009-10-14 21:54:39 —-D—- C:Windowssystem32catroot
    2009-10-14 21:54:34 —-D—- C:Windowssystem32catroot2
    2009-10-14 21:52:25 —-SHD—- C:System Volume Information
    2009-10-14 21:26:19 —-RD—- C:Program Files
    2009-10-14 21:20:17 —-D—- C:WindowsTasks
    2009-10-14 21:18:51 —-D—- C:WindowsPrefetch
    2009-10-14 21:15:56 —-A—- C:Windowsntbtlog.txt
    2009-10-14 20:33:06 —-HD—- C:Program FilesInstallShield Installation Information
    2009-10-14 20:33:05 —-HD—- C:ProgramData
    2009-10-14 19:55:58 —-D—- C:Windowssystem32drivers
    2009-10-14 17:13:55 —-D—- C:UsersBekAppDataRoaminguTorrent
    2009-10-14 17:12:57 —-SHD—- C:WindowsInstaller
    2009-10-14 17:01:43 —-D—- C:Windowssystem32Tasks
    2009-10-14 17:01:22 —-D—- C:Program FilesCommon Files
    2009-10-14 16:47:04 —-D—- C:WindowsSystem32
    2009-10-14 16:43:24 —-D—- C:Windows
    2009-10-14 14:35:06 —-D—- C:Program FilesCommon FilesSymantec Shared
    2009-10-14 14:34:57 —-D—- C:Windowsinf
    2009-10-14 05:52:35 —-A—- C:Windowssystem32PerfStringBackup.INI
    2009-10-14 04:44:15 —-D—- C:ProgramDataSymantec
    2009-10-13 23:15:37 —-D—- C:ProgramDataGoogle Updater
    2009-10-13 23:06:35 —-D—- C:Program FilesWinRAR
    2009-10-13 19:45:59 —-D—- C:WindowsMicrosoft.NET
    2009-10-13 19:45:58 —-RSD—- C:Windowsassembly
    2009-10-13 19:44:20 —-AD—- C:ProgramDataTEMP
    2009-10-13 19:40:08 —-D—- C:Program FilesWindows Mail
    2009-10-13 00:45:13 —-D—- C:UsersBekAppDataRoamingSkype
    2009-10-13 00:06:33 —-D—- C:UsersBekAppDataRoamingskypePM
    2009-10-11 02:47:16 —-D—- C:Доки
    2009-10-02 11:01:57 —-A—- C:Windowssystem32mrt.exe
    2009-09-22 00:59:50 —-D—- C:Program FilesWindows Media Player
    2009-09-22 00:12:31 —-D—- C:Program FilesDownload Master
    2009-09-16 16:38:58 —-D—- C:Windowsrescache
    2009-09-16 16:25:41 —-SHD—- C:Boot
    2009-09-16 16:17:46 —-D—- C:Program FilesWindows Sidebar
    2009-09-16 16:17:46 —-D—- C:Program FilesWindows Journal
    2009-09-16 16:17:46 —-D—- C:Program FilesWindows Collaboration
    2009-09-16 16:17:46 —-D—- C:Program FilesWindows Calendar
    2009-09-16 16:17:46 —-D—- C:Program FilesMovie Maker
    2009-09-16 16:17:46 —-D—- C:Program FilesInternet Explorer
    2009-09-16 16:17:45 —-D—- C:Windowsservicing
    2009-09-16 16:17:45 —-D—- C:Program FilesWindows Photo Gallery
    2009-09-16 16:17:45 —-D—- C:Program FilesWindows Defender
    2009-09-16 16:17:45 —-D—- C:Program FilesCommon FilesSystem
    2009-09-16 16:17:41 —-D—- C:Windowssystem32XPSViewer
    2009-09-16 16:17:41 —-D—- C:Windowssystem32sk-SK
    2009-09-16 16:17:41 —-D—- C:Windowssystem32lv-LV
    2009-09-16 16:17:41 —-D—- C:Windowssystem32ko-KR
    2009-09-16 16:17:41 —-D—- C:Windowssystem32hr-HR
    2009-09-16 16:17:41 —-D—- C:Windowssystem32et-EE
    2009-09-16 16:17:41 —-D—- C:Windowssystem32da-DK
    2009-09-16 16:17:41 —-D—- C:WindowsPolicyDefinitions
    2009-09-16 16:17:41 —-D—- C:WindowsIME
    2009-09-16 16:17:40 —-D—- C:Windowssystem32en-US
    2009-09-16 16:17:39 —-D—- C:Windowssystem32oobe
    2009-09-16 16:17:39 —-D—- C:Windowssystem32migration
    2009-09-16 16:17:39 —-D—- C:Windowssystem32it-IT
    2009-09-16 16:17:39 —-D—- C:Windowssystem32el-GR
    2009-09-16 16:17:39 —-D—- C:Windowssystem32de-DE
    2009-09-16 16:17:38 —-D—- C:Windowssystem32zh-CN
    2009-09-16 16:17:38 —-D—- C:Windowssystem32sv-SE
    2009-09-16 16:17:38 —-D—- C:Windowssystem32SLUI
    2009-09-16 16:17:38 —-D—- C:Windowssystem32setup
    2009-09-16 16:17:38 —-D—- C:Windowssystem32ru-RU
    2009-09-16 16:17:38 —-D—- C:Windowssystem32pt-PT
    2009-09-16 16:17:38 —-D—- C:Windowssystem32hu-HU
    2009-09-16 16:17:38 —-D—- C:Windowssystem32he-IL
    2009-09-16 16:17:38 —-D—- C:Windowssystem32fr-FR
    2009-09-16 16:17:38 —-D—- C:Windowssystem32fi-FI
    2009-09-16 16:17:38 —-D—- C:Windowssystem32cs-CZ
    2009-09-16 16:17:38 —-D—- C:Windowssystem32AdvancedInstallers
    2009-09-16 16:17:37 —-D—- C:Windowssystem32zh-TW
    2009-09-16 16:17:37 —-D—- C:Windowssystem32uk-UA
    2009-09-16 16:17:37 —-D—- C:Windowssystem32th-TH
    2009-09-16 16:17:37 —-D—- C:Windowssystem32sr-Latn-CS
    2009-09-16 16:17:37 —-D—- C:Windowssystem32sl-SI
    2009-09-16 16:17:37 —-D—- C:Windowssystem32ro-RO
    2009-09-16 16:17:37 —-D—- C:Windowssystem32pl-PL
    2009-09-16 16:17:37 —-D—- C:Windowssystem32manifeststore
    2009-09-16 16:17:37 —-D—- C:Windowssystem32ja-JP
    2009-09-16 16:17:37 —-D—- C:Windowssystem32es-ES
    2009-09-16 16:17:37 —-D—- C:Windowssystem32en
    2009-09-16 16:17:37 —-D—- C:Windowssystem32bg-BG
    2009-09-16 16:17:36 —-D—- C:Windowssystem32wbem
    2009-09-16 16:17:36 —-D—- C:Windowssystem32tr-TR
    2009-09-16 16:17:35 —-D—- C:Windowssystem32pt-BR
    2009-09-16 16:17:35 —-D—- C:Windowssystem32nl-NL
    2009-09-16 16:17:35 —-D—- C:Windowssystem32nb-NO
    2009-09-16 16:17:35 —-D—- C:Windowssystem32migwiz
    2009-09-16 16:17:35 —-D—- C:Windowssystem32lt-LT
    2009-09-16 16:17:35 —-D—- C:Windowssystem32ar-SA
    2009-09-16 16:17:17 —-RSD—- C:WindowsFonts
    2009-09-16 16:17:17 —-D—- C:WindowsAppPatch
    2009-09-16 16:17:09 —-D—- C:Windowssystem32Boot
    2009-09-16 16:14:05 —-D—- C:Windowssystem32RTCOM

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 CSC;Offline Files Driver; C:Windowssystem32driverscsc.sys [2009-04-10 351744]
    R1 DritekPortIO;Dritek General Port I/O; ??C:Program FilesLaunch ManagerDPortIO.sys [2006-11-02 20112]
    R2 int15;int15; ??C:AcerEmpowering TechnologyeRecoveryint15.sys [2006-12-07 76584]
    R2 mdmxsdk;mdmxsdk; C:Windowssystem32DRIVERSmdmxsdk.sys [2006-06-19 12672]
    R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys [2009-08-17 306464]
    R2 XAudio;XAudio; C:Windowssystem32DRIVERSxaudio.sys [2006-08-04 8192]
    R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:Windowssystem32DRIVERSbcm4sbxp.sys [2006-11-02 45056]
    R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:Windowssystem32DRIVERSCmBatt.sys [2008-01-18 14208]
    R3 DKbFltr;Dritek Keyboard Filter Driver; C:Windowssystem32DRIVERSDKbFltr.sys [2006-11-02 21264]
    R3 EMSCR;EMSCR; C:Windowssystem32DRIVERSEMS7SK.sys [2006-10-24 62208]
    R3 ESDCR;ESDCR; C:Windowssystem32DRIVERSESD7SK.sys [2006-10-24 42240]
    R3 ESMCR;ESMCR; C:Windowssystem32DRIVERSESM7SK.sys [2006-10-24 76928]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:WindowsSystem32DriversGEARAspiWDM.sys [2009-03-19 23400]
    R3 HSF_DPV;HSF_DPV; C:Windowssystem32DRIVERSHSX_DPV.sys [2006-11-08 986624]
    R3 HSXHWAZL;HSXHWAZL; C:Windowssystem32DRIVERSHSXHWAZL.sys [2006-11-08 206848]
    R3 igfx;igfx; C:Windowssystem32DRIVERSigdkmd32.sys [2007-10-18 2009088]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2007-03-01 1744928]
    R3 LVUSBSta;Logitech USB Monitor Filter; C:Windowssystem32driversLVUSBSta.sys [2008-07-26 41752]
    R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:Windowssystem32DRIVERSNETw4v32.sys [2007-02-24 2216448]
    R3 NTIDrvr;Upper Class Filter Driver; C:Windowssystem32DRIVERSNTIDrvr.sys [2007-03-23 6144]
    R3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2009-04-10 89088]
    R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2006-10-22 179896]
    R3 usbvideo;USB Video Device (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-18 134016]
    R3 winachsf;winachsf; C:Windowssystem32DRIVERSHSX_CNXT.sys [2006-11-08 659968]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-18 11264]
    S3 ASPI;Advanced SCSI Programming Interface Driver; ??C:WindowsSystem32DRIVERSASPI32.sys [2002-07-17 84832]
    S3 BVRPMPR5;BVRPMPR5 NDIS Protocol Driver; ??C:Windowssystem32driversBVRPMPR5.SYS [2007-05-23 49904]
    S3 Cam5607;Acer OrbiCam; C:WindowsSystem32DriversBisonC07.sys [2006-12-26 817968]
    S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:Windowssystem32driversdrmkaud.sys [2008-01-18 5632]
    S3 LVRS;Logitech RightSound Filter Driver; C:Windowssystem32DRIVERSlvrs.sys [2008-07-26 627864]
    S3 LVUVC;Logitech QuickCam S5500(UVC); C:Windowssystem32DRIVERSlvuvc.sys [2008-07-26 4658584]
    S3 MSKSSRV;Microsoft Streaming Service Proxy; C:Windowssystem32driversMSKSSRV.sys [2008-01-18 8192]
    S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:Windowssystem32driversMSPCLOCK.sys [2008-01-18 5888]
    S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:Windowssystem32driversMSPQM.sys [2008-01-18 5504]
    S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:Windowssystem32driversMSTEE.sys [2008-01-18 6016]
    S3 NPF;NetGroup Packet Filter Driver; C:Windowssystem32driversnpf.sys [2007-06-28 42512]
    S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:Windowssystem32DRIVERSs0017bus.sys [2008-05-27 90536]
    S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:Windowssystem32DRIVERSs0017mdfl.sys [2008-05-27 15016]
    S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:Windowssystem32DRIVERSs0017mdm.sys [2008-05-27 122152]
    S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:Windowssystem32DRIVERSs0017mgmt.sys [2008-05-27 115496]
    S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:Windowssystem32DRIVERSs0017nd5.sys [2008-05-27 25768]
    S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:Windowssystem32DRIVERSs0017obex.sys [2008-05-27 111912]
    S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:Windowssystem32DRIVERSs0017unic.sys [2008-05-27 117672]
    S3 USB28xxBGA;ATI TV Wonder 600 USB 2.0; C:Windowssystem32DRIVERSemBDA.sys [2007-05-16 459520]
    S3 USB28xxOEM;USB 28xx OEM Filter; C:Windowssystem32DRIVERSemOEM.sys [2007-05-16 39808]
    S3 USBAAPL;Apple Mobile USB Driver; C:WindowsSystem32Driversusbaapl.sys [2009-06-05 39424]
    S3 usbaudio;USB Audio Driver (WDM); C:Windowssystem32driversusbaudio.sys [2009-04-10 73216]
    S3 usbscan;USB Scanner Driver; C:Windowssystem32DRIVERSusbscan.sys [2006-11-02 35328]
    S3 winusb;WinUsb Driver; C:Windowssystem32DRIVERSwinusb.sys [2009-04-10 31616]
    S3 WpdUsb;WpdUsb; C:WindowsSystem32Driverswpdusb.sys [2008-01-18 39936]
    S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-18 83328]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe [2009-06-05 144712]
    R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2008-01-19 21504]
    R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-22 869688]
    R2 eRecoveryService;eRecovery Service; C:AcerEmpowering TechnologyeRecoveryeRecoveryService.exe [2007-01-31 53248]
    R2 IJPLMSVC;PIXMA Extended Survey Program; C:Program FilesCanonIJPLMIJPLMSVC.EXE [2007-04-13 101528]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2006-12-14 61440]
    R2 RapiMgr;@%windir%WindowsMobilerapimgr.dll,-104; C:Windowssystem32svchost.exe [2008-01-19 21504]
    R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2009-08-17 231328]
    R2 WcesComm;@%windir%WindowsMobilewcescomm.dll,-40079; C:Windowssystem32svchost.exe [2008-01-19 21504]
    S2 gupdate1c9a1252d3f12e0;Служба Google Update (gupdate1c9a1252d3f12e0); C:Program FilesGoogleUpdateGoogleUpdate.exe [2009-03-09 133104]
    S2 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-03-23 183280]
    S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2008-01-19 21504]
    S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
    S3 iPod Service;Сервис iPod; C:Program FilesiPodbiniPodService.exe [2009-07-13 542496]
    S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
    S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:Program FilesWinPcaprpcapd.exe -d -f C:Program FilesWinPcaprpcapd.ini []
    S3 SQLWriter;SQL Server VSS Writer; C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe [2006-04-14 87840]
    S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2008-01-19 21504]
    S3 wbengine;@%systemroot%system32wbengine.exe,-104; C:Windowssystem32wbengine.exe [2009-04-10 918528]
    S4 ALaunchService;ALaunch Service; C:AcerALaunchALaunchSvc.exe [2007-01-26 50688]
    S4 Fax;@%systemroot%system32fxsresm.dll,-118; C:Windowssystem32fxssvc.exe [2008-01-19 523776]
    S4 MobilityService;MobilityService; C:AcerMobility CenterMobilityService.exe [2006-11-24 107008]
    S4 XAudioService;XAudioService; C:Windowssystem32DRIVERSxaudio.exe [2006-08-04 386560]

    EOF

    16 октября, 2009 в 6:55 дп #25914
    vitalii1987
    Participant
    • Темы:1
    • Сообщений:3
    • ☆

    Ура , мне помогла странная но как оказалось очень эффективная программа ComboFix .

    19 октября, 2009 в 3:07 пп #25915
    Admin
    Keymaster
    • Темы:40
    • Сообщений:5676
    • ☆☆☆☆☆

    Запустите Combofix ещё раз и получившийся лог вставьте в ваш ответ.

  • Автор
    Сообщения
Просмотр 4 сообщений - с 1 по 4 (из 4 всего)
  • Для ответа в этой теме необходимо авторизоваться.
Войти

Добро пожаловать

На нашем сайте размещены инструкции и программы, которые помогут вам абсолютно бесплатно и самостоятельно удалить навязчивую рекламу, вирусы и трояны.

Поиск

Последние темы

  • Странность в Malwebytes опубликовано Artem225
    5 years, 11 months назад
  • SUSPICIOUS.FakedMBR.1 что делать, помогите!!! опубликовано White
    6 years назад
  • Помогите пожалуйста вирус замучил. опубликовано dimazons1233211
    6 years, 2 months назад
  • Замучила реклама опубликовано Данила Беспятов
    6 years, 3 months назад
  • Замучила реклама опубликовано Марк
    6 years назад
  • Вирус S1.video.ru.net опубликовано ludovik
    6 years, 5 months назад
  • Чертов Safe Finder!!!! опубликовано kosta savo
    6 years, 2 months назад
  • ESET блокирует неизвестный сайт , вход на который не осуществлялся. опубликовано trollhamaren
    6 years, 6 months назад

СПАЙВАРЕ РУ

  • О Спайваре Ру
  • Контакты
  • Реклама на сайте
  • Политика конфиденциальности
  • Правила использования

Нужна помощь?

Задайте свой вопрос прямо сейчас кликнув по следующей ссылке Задать вопрос.

Или обратитесь на наш форум, где команда Spyware-ru поможет вам. Узнайте, как попросить о помощи здесь.

Ссылки

  • Инструкции
  • Скачать программы
  • Помощь в удалении вирусов
  • Как вылечить компьютер
Copyright © 2008 - 2024 Spyware-RU.com (en)