- This topic has 9 ответов, 2 участника, and was last updated 16 years назад by
.
-
Сообщения
-
При выходе в интернет на всех страничках появляется реклама порносайта.Для удаления рекламы просят отправить СМС.Антивирусник ESET NOD32,программы Combofix,deljob и ОТMoveIt3 не помогают,попробовал запустить RSIT,полученные файлы info.txt и log.txt прилагаются.Что еще можно сделать?
Здравствуйте, добро пожаловать на Spyware-ru форум.
Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите OTMoveIt3 и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.:Processes
explorer.exe
:reg
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9D64F819-9380-8473-DAB2-702FCB3D7A3E}]
:Commands
[emptytemp]
[start explorer]
[Reboot]Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMoveItMovedFiles.Вставьте в ваше ответное сообщение содержимое этого лога. И ещё приложите свежий RSIT лог.
Оба лога не вставляйте в виде вложений, а скопируйте и вставьте содержимое логов в ваше сообщение.Здравствуйте,спасибо что ответили.Сделал все как вы сказали,высылаю логи: ========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9D64F819-9380-8473-DAB2-702FCB3D7A3E}\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:DOCUME~192A6~1LOCALS~1TempPerflib_Perfdata_140.dat scheduled to be deleted on reboot.
User’s Temp folder emptied.
User’s Internet Explorer cache folder emptied.
File delete failed. C:Documents and SettingsадминLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
User’s Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps009adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps009md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps009url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps009w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps009wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps008adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps008md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps008url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps008w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps008wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps007adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps007md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps007url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps007w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps007wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps003adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps003md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps003url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps003w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps003wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps002adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps002md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps002url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps002w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps002wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps001adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps001md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps001url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps001w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps001wb.vx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps000adoc.bx scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps000md.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps000url.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps000w.ax scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsадминLocal SettingsApplication DataOperaOperaProfilevps000wb.vx scheduled to be deleted on reboot.
Opera cache emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.11.0 log created on 04142009_185833
RSIT log.txt: Logfile of random’s system information tool 1.06 (written by random/random)
Run by админ at 2009-04-14 19:01:13
Microsoft Windows XP Professional Service Pack 3
System drive C: has 31 GB (78%) free of 40 GB
Total RAM: 1023 MB (46% free)HijackThis download failed
======Registry dump======
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2008-09-30 16864768]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2008-06-19 57344]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-08-01 61440]
«OutpostMonitor»=C:PROGRA~1AgnitumOUTPOS~1op_mon.exe [2008-12-25 1227080]
«OutpostFeedBack»=C:Program FilesAgnitumOutpost Firewall Profeedback.exe [2008-12-25 432968]
«WinampAgent»=C:Program FilesWinampwinampa.exe [2008-09-12 36352]
«egui»=C:Program FilesESETESET NOD32 Antivirusegui.exe [2009-02-06 2021400]
«KernelFaultCheck»=C:WINDOWSsystem32dumprep 0 -k [][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunOnce]
«OTMoveIt»=D:OTMoveIt3.exe [2009-04-14 389632][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-15 15360]
«MSMSGS»=C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232]C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Microsoft Office.lnk — C:Program FilesMicrosoft OfficeOffice10OSA.EXE[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyAtiExtEvent]
C:WINDOWSsystem32Ati2evxx.dll [2008-09-03 143360][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalprocexp90.Sys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkprocexp90.Sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«F:Настройка домолинкаutorrent.exe»=»F:Настройка домолинкаutorrent.exe:*:Enabled:µTorrent»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»======List of files/folders created in the last 1 months======
2009-04-14 19:01:13 —-D—- C:rsit
2009-04-14 16:22:18 —-D—- C:32788R22FWJFW
2009-04-11 11:47:23 —-HDC—- C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$
2009-04-11 11:47:09 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
2009-04-11 11:46:57 —-HD—- C:WINDOWS$hf_mig$
2009-04-09 22:58:38 —-D—- C:Program Filestrend micro
2009-04-09 22:46:41 —-HD—- C:WINDOWSsystem32GroupPolicy
2009-04-09 18:56:56 —-A—- C:Bug.txt
2009-04-09 18:56:54 —-A—- C:WINDOWSsystem32cmd.execf
2009-04-09 18:55:34 —-D—- C:WINDOWSERDNT
2009-04-09 18:55:31 —-D—- C:ComboFix
2009-04-09 18:55:31 —-A—- C:WINDOWSsystem32CF16919.exe
2009-04-09 18:55:12 —-D—- C:Qoobox
2009-04-09 18:19:50 —-A—- C:logit.txt
2009-04-09 00:33:12 —-A—- C:Documents and SettingsадминApplication Databpfeed.dll
2009-04-08 13:15:07 —-D—- C:WINDOWSMinidump
2009-04-07 19:36:04 —-D—- C:Program FilesESET
2009-04-07 18:33:27 —-D—- C:Documents and SettingsAll UsersApplication DataESET
2009-04-07 18:15:18 —-D—- C:WINDOWSsystem32appmgmt
2009-04-05 16:47:36 —-D—- C:Documents and SettingsадминApplication DataThinstall
2009-04-03 20:44:00 —-D—- C:Documents and SettingsадминApplication DataMedia Player Classic
2009-04-03 17:15:51 —-A—- C:WINDOWSsystem32rmoc3260.dll
2009-04-03 17:15:51 —-A—- C:WINDOWSsystem32pndx5032.dll
2009-04-03 17:15:51 —-A—- C:WINDOWSsystem32pndx5016.dll
2009-04-03 17:15:51 —-A—- C:WINDOWSsystem32pncrt.dll
2009-04-03 17:15:47 —-A—- C:WINDOWSsystem32yv12vfw.dll
2009-04-03 17:15:46 —-A—- C:WINDOWSsystem32xvidvfw.dll
2009-04-03 17:15:46 —-A—- C:WINDOWSsystem32xvidcore.dll
2009-04-03 17:15:46 —-A—- C:WINDOWSsystem32qt-dx331.dll
2009-04-03 17:15:46 —-A—- C:WINDOWSsystem32dpl100.dll
2009-04-03 17:15:46 —-A—- C:WINDOWSsystem32divx.dll
2009-04-03 17:15:45 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2009-04-03 17:15:45 —-A—- C:WINDOWSsystem32ff_vfw.dll
2009-04-03 17:15:43 —-A—- C:WINDOWSsystem32pthreadGC2.dll
2009-04-03 17:15:38 —-D—- C:Program FilesK-Lite Codec Pack
2009-04-03 17:15:38 —-D—- C:Documents and SettingsадминApplication DataReal
2009-04-03 17:15:38 —-D—- C:Documents and SettingsAll UsersApplication DataReal
2009-04-01 15:12:43 —-D—- C:Documents and SettingsадминApplication DataMacromedia
2009-04-01 15:12:43 —-D—- C:Documents and SettingsадминApplication DataAdobe
2009-03-31 22:06:41 —-A—- C:WINDOWS~GLH0000.TMP
2009-03-31 22:06:40 —-A—- C:WINDOWS~GLC0000.TMP
2009-03-28 12:44:20 —-A—- C:WINDOWSsystem32digirlpt.dll
2009-03-24 20:08:10 —-D—- C:Program Files1C
2009-03-22 18:36:28 —-D—- C:Program FilesCossacks — Back To War
2009-03-22 18:36:18 —-A—- C:WINDOWSsystem32unrar.dll
2009-03-22 18:36:17 —-A—- C:WINDOWSuna2setup.exe
2009-03-22 14:32:33 —-D—- C:Documents and SettingsадминApplication Datadvdcss
2009-03-21 22:06:10 —-D—- C:Documents and SettingsадминApplication Datavlc
2009-03-21 22:02:33 —-D—- C:Documents and SettingsадминApplication DataNero
2009-03-19 21:04:27 —-D—- C:Program FilesuTorrent
2009-03-19 00:37:36 —-A—- C:WINDOWSsystem32h323log.txt
2009-03-19 00:35:31 —-A—- C:WINDOWSsystem32usbui.dll
2009-03-19 00:35:17 —-SHD—- C:RECYCLER
2009-03-19 00:34:45 —-A—- C:WINDOWSimsins.BAK
2009-03-19 00:34:43 —-SHD—- C:WINDOWSInstaller
2009-03-19 00:34:43 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-03-19 00:34:42 —-D—- C:Program FilesCommon FilesODBC
2009-03-19 00:34:42 —-A—- C:WINDOWSODBCINST.INI
2009-03-19 00:34:40 —-D—- C:Program FilesCommon FilesSpeechEngines
2009-03-19 00:34:39 —-RD—- C:Program Files
2009-03-19 00:34:39 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-03-19 00:34:39 —-D—- C:Program FilesCommon Files
2009-03-19 00:34:36 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2009-03-19 00:34:36 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2009-03-19 00:34:36 —-RA—- C:WINDOWSsystem32kbdazel.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhept.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdhe.dll
2009-03-19 00:34:34 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2009-03-19 00:34:33 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2009-03-19 00:34:33 —-RA—- C:WINDOWSsystem32kbdlt.dll
2009-03-19 00:34:32 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2009-03-19 00:34:32 —-RA—- C:WINDOWSsystem32kbdlv.dll
2009-03-19 00:34:32 —-RA—- C:WINDOWSsystem32kbdest.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdsl.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdro.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdpl.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdhu.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdcz.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32kbdcr.dll
2009-03-19 00:34:31 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2009-03-19 00:34:30 —-RA—- C:WINDOWSsystem32kbdycl.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdycc.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbduzb.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdur.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdtat.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdmon.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdkyr.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdkaz.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdbu.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdblr.dll
2009-03-19 00:34:26 —-RA—- C:WINDOWSsystem32kbdaze.dll
2009-03-19 00:34:24 —-A—- C:WINDOWSsystem32spxcoins.dll
2009-03-19 00:34:24 —-A—- C:WINDOWSsystem32irclass.dll
2009-03-19 00:34:24 —-A—- C:WINDOWSsystem32EqnClass.Dll
2009-03-19 00:34:24 —-A—- C:WINDOWSsystem32dgsetup.dll
2009-03-19 00:34:24 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2009-03-19 00:34:22 —-N—- C:WINDOWSsystem32CONFIG.TMP
2009-03-19 00:34:22 —-A—- C:WINDOWSTASKMAN.EXE
2009-03-19 00:34:21 —-A—- C:WINDOWSsystem32batt.dll
2009-03-19 00:34:21 —-A—- C:WINDOWSNOTEPAD.EXE
2009-03-19 00:34:20 —-A—- C:WINDOWSsystem32storprop.dll
2009-03-19 00:34:15 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2009-03-19 00:34:11 —-RA—- C:WINDOWSSET8.tmp
2009-03-19 00:34:08 —-RA—- C:WINDOWSSET4.tmp
2009-03-19 00:34:06 —-RA—- C:WINDOWSSET3.tmp
2009-03-19 00:34:02 —-D—- C:WINDOWSsystem32CatRoot2
2009-03-19 00:34:02 —-D—- C:WINDOWSsystem32CatRoot
2009-03-19 00:33:56 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-03-19 00:33:25 —-A—- C:WINDOWSsetuplog.txt
2009-03-19 00:33:23 —-D—- C:Documents and Settings
2009-03-19 00:33:22 —-SHD—- C:System Volume Information
2009-03-19 00:32:58 —-SH—- C:boot.ini
2009-03-19 00:31:15 —-D—- C:Program FilesWinamp
2009-03-19 00:31:15 —-D—- C:Documents and SettingsадминApplication DataWinamp
2009-03-19 00:29:15 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-03-19 00:29:15 —-RSD—- C:WINDOWSFonts
2009-03-19 00:29:15 —-RD—- C:WINDOWSWeb
2009-03-19 00:29:15 —-HD—- C:WINDOWSinf
2009-03-19 00:29:15 —-D—- C:WINDOWSWinSxS
2009-03-19 00:29:15 —-D—- C:WINDOWStwain_32
2009-03-19 00:29:15 —-D—- C:WINDOWSTemp
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32wins
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32wbem
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32usmt
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32spool
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32ShellExt
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32Setup
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32ru-ru
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32ru
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32ras
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32oobe
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32npp
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32mui
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32inetsrv
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32IME
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32icsxml
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32ias
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32export
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32drivers
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32dhcp
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32config
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem323com_dmi
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem323076
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem322052
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321054
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321049
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321042
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321041
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321037
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321033
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321031
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321028
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem321025
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem32
2009-03-19 00:29:15 —-D—- C:WINDOWSsystem
2009-03-19 00:29:15 —-D—- C:WINDOWSsecurity
2009-03-19 00:29:15 —-D—- C:WINDOWSResources
2009-03-19 00:29:15 —-D—- C:WINDOWSrepair
2009-03-19 00:29:15 —-D—- C:WINDOWSProvisioning
2009-03-19 00:29:15 —-D—- C:WINDOWSPeerNet
2009-03-19 00:29:15 —-D—- C:WINDOWSpchealth
2009-03-19 00:29:15 —-D—- C:WINDOWSNetwork Diagnostic
2009-03-19 00:29:15 —-D—- C:WINDOWSmui
2009-03-19 00:29:15 —-D—- C:WINDOWSmsapps
2009-03-19 00:29:15 —-D—- C:WINDOWSmsagent
2009-03-19 00:29:15 —-D—- C:WINDOWSMedia
2009-03-19 00:29:15 —-D—- C:WINDOWSL2Schemas
2009-03-19 00:29:15 —-D—- C:WINDOWSjava
2009-03-19 00:29:15 —-D—- C:WINDOWSime
2009-03-19 00:29:15 —-D—- C:WINDOWSHelp
2009-03-19 00:29:15 —-D—- C:WINDOWSehome
2009-03-19 00:29:15 —-D—- C:WINDOWSDriver Cache
2009-03-19 00:29:15 —-D—- C:WINDOWSDebug
2009-03-19 00:29:15 —-D—- C:WINDOWSCursors
2009-03-19 00:29:15 —-D—- C:WINDOWSConnection Wizard
2009-03-19 00:29:15 —-D—- C:WINDOWSConfig
2009-03-19 00:29:15 —-D—- C:WINDOWSAppPatch
2009-03-19 00:29:15 —-D—- C:WINDOWSaddins
2009-03-19 00:29:15 —-D—- C:WINDOWS
2009-03-19 00:28:36 —-D—- C:Program FilesVideoLAN
2009-03-18 23:26:05 —-D—- C:GAMES
2009-03-18 23:23:51 —-A—- C:WINDOWSIsUn0419.exe
2009-03-18 23:00:14 —-D—- C:Documents and SettingsадминApplication DatauTorrent
2009-03-18 22:52:49 —-D—- C:WINDOWSsystem32Filt
2009-03-18 22:52:49 —-D—- C:Program FilesAgnitum
2009-03-18 22:52:26 —-D—- C:Documents and SettingsAll UsersApplication DataAgnitum
2009-03-18 22:51:52 —-A—- C:WINDOWSsystem32imagXpr7.dll
2009-03-18 22:51:52 —-A—- C:WINDOWSsystem32imagX7.dll
2009-03-18 22:51:46 —-D—- C:Program FilesNero 9 Micro
2009-03-18 22:48:07 —-D—- C:Program FilesKaspersky Lab
2009-03-18 22:47:28 —-D—- C:Program FilesQIP
2009-03-18 22:47:02 —-D—- C:Documents and SettingsадминApplication DataOpera
2009-03-18 22:46:55 —-D—- C:Program FilesOpera
2009-03-18 22:23:43 —-D—- C:Program FilesWinRAR
2009-03-18 22:22:50 —-A—- C:WINDOWSODBC.INI
2009-03-18 22:22:16 —-D—- C:Program FilesMicrosoft Visual Studio
2009-03-18 22:22:16 —-D—- C:Program FilesCommon FilesDesigner
2009-03-18 22:21:49 —-D—- C:WINDOWSShellNew
2009-03-18 22:21:47 —-D—- C:Program FilesMicrosoft Office
2009-03-18 22:18:50 —-D—- C:Documents and SettingsадминApplication DataATI
2009-03-18 22:18:50 —-D—- C:Documents and SettingsAll UsersApplication DataATI
2009-03-18 22:15:22 —-D—- C:Program FilesCommon FilesATI Technologies
2009-03-18 22:15:02 —-D—- C:WINDOWSRegisteredPackages
2009-03-18 22:14:54 —-A—- C:WINDOWSsystem32psisdecd.dll
2009-03-18 22:14:53 —-A—- C:WINDOWSsystem32dxdllreg.exe
2009-03-18 22:12:34 —-N—- C:WINDOWSsystem32ati2sgag.exe
2009-03-18 22:12:32 —-RA—- C:WINDOWSsystem32atiiiexx.dll
2009-03-18 22:12:30 —-RA—- C:WINDOWSsystem32ATIDEMGX.dll
2009-03-18 22:12:11 —-D—- C:Program FilesATI Technologies
2009-03-18 22:02:45 —-D—- C:WINDOWSsystem32Lang
2009-03-18 22:01:38 —-D—- C:WINDOWSAsusInstAll
2009-03-18 21:57:29 —-D—- C:Documents and SettingsадминApplication DataSymantec
2009-03-18 21:55:32 —-D—- C:Documents and SettingsAll UsersApplication DataSymantec
2009-03-18 21:55:12 —-D—- C:Program FilesCommon FilesSymantec Shared
2009-03-18 21:54:20 —-A—- C:WINDOWSAscd_log.ini
2009-03-18 21:53:56 —-D—- C:WINDOWSOPTIONS
2009-03-18 21:53:50 —-D—- C:Documents and SettingsадминApplication DataInstallShield
2009-03-18 21:53:12 —-D—- C:WINDOWSsystem32RTCOM
2009-03-18 21:53:11 —-A—- C:WINDOWSsystem32ksuser.dll
2009-03-18 21:53:08 —-A—- C:WINDOWSSOUNDMAN.EXE
2009-03-18 21:53:07 —-A—- C:WINDOWSSkyTel.exe
2009-03-18 21:53:07 —-A—- C:WINDOWSRtlUpd.exe
2009-03-18 21:53:06 —-A—- C:WINDOWSRTLCPL.EXE
2009-03-18 21:53:02 —-A—- C:WINDOWSRTHDCPL.EXE
2009-03-18 21:53:01 —-A—- C:WINDOWSMicCal.exe
2009-03-18 21:52:59 —-A—- C:WINDOWSALCWZRD.EXE
2009-03-18 21:52:59 —-A—- C:WINDOWSALCMTR.EXE
2009-03-18 21:52:58 —-D—- C:Program FilesRealtek
2009-03-18 21:52:57 —-HD—- C:Program FilesInstallShield Installation Information
2009-03-18 21:52:52 —-R—- C:WINDOWSRtlExUpd.dll
2009-03-18 21:52:52 —-A—- C:WINDOWSHideWin.exe
2009-03-18 21:52:49 —-D—- C:Program FilesCommon FilesInstallShield
2009-03-18 21:50:50 —-D—- C:WINDOWSsystem32ReinstallBackups
2009-03-18 21:50:49 —-RA—- C:WINDOWSsystem32CSVer.dll
2009-03-18 21:50:49 —-DC—- C:WINDOWSsystem32DRVSTORE
2009-03-18 21:50:48 —-D—- C:Program FilesIntel
2009-03-18 21:50:34 —-D—- C:Intel
2009-03-18 21:50:03 —-A—- C:WINDOWSAscd_tmp.ini
2009-03-18 21:47:31 —-D—- C:Documents and SettingsадминApplication DataIdentities
2009-03-18 21:47:30 —-HD—- C:Program FilesUninstall Information
2009-03-18 21:47:24 —-SD—- C:Documents and SettingsадминApplication DataMicrosoft
2009-03-18 21:47:24 —-ASH—- C:Documents and SettingsадминApplication Datadesktop.ini
2009-03-18 21:46:17 —-D—- C:WINDOWSPrefetch
2009-03-18 21:46:15 —-SD—- C:WINDOWSsystem32Microsoft
2009-03-18 21:46:15 —-A—- C:WINDOWSSchedLgU.Txt
2009-03-18 21:43:51 —-D—- C:WINDOWSsystem32xircom
2009-03-18 21:43:51 —-D—- C:Program Filesxerox
2009-03-18 21:43:51 —-D—- C:Program Filesmicrosoft frontpage
2009-03-18 21:43:05 —-D—- C:Program FilesWindows Media Connect 2
2009-03-18 21:42:55 —-N—- C:WINDOWSsystem32spmsg.dll
2009-03-18 21:42:55 —-A—- C:WINDOWSsystem32spupdsvc.exe
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32WUDFx.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32WudfSvc.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32WudfPlatform.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32WUDFCoinstaller.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32wpdsp.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32WPDShServiceObj.dll
2009-03-18 21:42:53 —-N—- C:WINDOWSsystem32wpd_ci.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WpdShext.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wpdmtpus.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wpdmtp.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wpdconns.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVXENCD.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVSENCD.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVSDECD.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVENCOD.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wmvdecod.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVADVE.DLL
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32WMVADVD.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wmpsrcwp.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wmpps.dll
2009-03-18 21:42:52 —-N—- C:WINDOWSsystem32wmpmde.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wmpencen.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wmpeffects.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wmdrmsdk.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wmdrmnet.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wmdrmdev.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32wdfapi.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32PortableDeviceWMDRM.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32PortableDeviceWiaCompat.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32PortableDeviceTypes.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32PortableDeviceClassExtension.dll
2009-03-18 21:42:51 —-N—- C:WINDOWSsystem32PortableDeviceApi.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32WudfHost.exe
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32wpdshextautoplay.exe
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32wdfmgr.exe
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32uwdf.exe
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32msdelta.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32MPG4DECD.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32MP4SDECD.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32MP43DECD.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32MFPLAT.dll
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32drmupgds.exe
2009-03-18 21:42:50 —-N—- C:WINDOWSsystem32audiodev.dll
2009-03-18 21:42:41 —-N—- C:WINDOWSsystem32wpdshextres.dll
2009-03-18 21:42:38 —-RSD—- C:WINDOWSassembly
2009-03-18 21:42:37 —-D—- C:WINDOWSMicrosoft.NET
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32zlib1.dll
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32wrap_oal.dll
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32wnaspi32.dll
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32Vbrun300.dll
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32vbrun200.dll
2009-03-18 21:42:30 —-A—- C:WINDOWSsystem32vbrun100.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32Vb40032.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32Vb40016.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32ssleay32.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32OpenAL32.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msvcrt10.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msvcr71.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msvcr70.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msvcp71.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MSVCP70.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msvci70.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MSSTKPRP.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32msstdfmt.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71u.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71KOR.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71JPN.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71ITA.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71FRA.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71ESP.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71ENU.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71DEU.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71CHT.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71CHS.DLL
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32MFC71.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70u.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70kor.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70jpn.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70ita.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70fra.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70esp.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70enu.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70deu.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70cht.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70chs.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32mfc70.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32libssl32.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32libeay32.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32atl71.dll
2009-03-18 21:42:29 —-A—- C:WINDOWSsystem32atl70.dll
2009-03-18 21:42:26 —-D—- C:Program FilesMSXML 4.0
2009-03-18 21:42:14 —-A—- C:WINDOWScontrol.ini
2009-03-18 21:42:14 —-A—- C:AUTOEXEC.BAT
2009-03-18 21:42:07 —-A—- C:WINDOWSOEWABLog.txt
2009-03-18 21:42:04 —-A—- C:WINDOWSsystem32mapi32.dll
2009-03-18 21:41:27 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2009-03-18 21:41:24 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2009-03-18 21:41:20 —-HD—- C:Program FilesWindowsUpdate
2009-03-18 21:41:17 —-D—- C:Program FilesOnline Services
2009-03-18 21:41:04 —-D—- C:WINDOWSsystem32DirectX
2009-03-18 21:40:57 —-A—- C:WINDOWSsystem32atrace.dll
2009-03-18 21:40:55 —-A—- C:WINDOWSsystem32desktop.ini
2009-03-18 21:40:55 —-A—- C:WINDOWSdesktop.ini
2009-03-18 21:40:48 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2009-03-18 21:40:47 —-A—- C:WINDOWSsystem32acctres.dll
2009-03-18 21:40:46 —-D—- C:Program FilesCommon FilesServices
2009-03-18 21:40:44 —-SD—- C:WINDOWSTasks
2009-03-18 21:40:44 —-A—- C:WINDOWSsystem32icfgnt5.dll
2009-03-18 21:40:43 —-D—- C:Program FilesCommon FilesMSSoap
2009-03-18 21:40:40 —-D—- C:WINDOWSsrchasst
2009-03-18 21:40:39 —-D—- C:WINDOWSsystem32Macromed
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuweb.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wups.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wucltui.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuauserv.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuaueng1.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuaueng.dll
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuauclt1.exe
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuauclt.exe
2009-03-18 21:40:36 —-A—- C:WINDOWSsystem32wuapi.dll
2009-03-18 21:40:35 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2009-03-18 21:40:35 —-A—- C:WINDOWSsystem32qmgr.dll
2009-03-18 21:40:35 —-A—- C:WINDOWSsystem32bitsprx4.dll
2009-03-18 21:40:35 —-A—- C:WINDOWSsystem32bitsprx3.dll
2009-03-18 21:40:35 —-A—- C:WINDOWSsystem32bitsprx2.dll
2009-03-18 21:40:32 —-D—- C:Program FilesMovie Maker
2009-03-18 21:40:16 —-A—- C:WINDOWSsystem32safrslv.dll
2009-03-18 21:40:16 —-A—- C:WINDOWSsystem32safrdm.dll
2009-03-18 21:40:16 —-A—- C:WINDOWSsystem32safrcdlg.dll
2009-03-18 21:40:16 —-A—- C:WINDOWSsystem32racpldlg.dll
2009-03-18 21:40:13 —-A—- C:WINDOWSsystem32fltMc.exe
2009-03-18 21:40:13 —-A—- C:WINDOWSsystem32fltlib.dll
2009-03-18 21:40:12 —-D—- C:WINDOWSsystem32Restore
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32srsvc.dll
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32srrstr.dll
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32srclient.dll
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32mnmdd.dll
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32isrdbg32.dll
2009-03-18 21:40:12 —-A—- C:WINDOWSsystem32ils.dll
2009-03-18 21:40:11 —-A—- C:WINDOWSsystem32nmmkcert.dll
2009-03-18 21:40:11 —-A—- C:WINDOWSsystem32msconf.dll
2009-03-18 21:40:11 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2009-03-18 21:40:08 —-D—- C:Program FilesNetMeeting
2009-03-18 21:40:08 —-A—- C:WINDOWSsystem32msoert2.dll
2009-03-18 21:40:08 —-A—- C:WINDOWSsystem32msoeacct.dll
2009-03-18 21:40:07 —-A—- C:WINDOWSsystem32inetres.dll
2009-03-18 21:40:07 —-A—- C:WINDOWSsystem32inetcomm.dll
2009-03-18 21:40:06 —-D—- C:Program FilesOutlook Express
2009-03-18 21:40:06 —-A—- C:WINDOWSsystem32schedsvc.dll
2009-03-18 21:40:06 —-A—- C:WINDOWSsystem32mstinit.exe
2009-03-18 21:40:05 —-A—- C:WINDOWSsystem32mstask.dll
2009-03-18 21:40:05 —-A—- C:WINDOWSsystem32isign32.dll
2009-03-18 21:40:05 —-A—- C:WINDOWSsystem32inetcfg.dll
2009-03-18 21:40:05 —-A—- C:WINDOWSsystem32icwphbk.dll
2009-03-18 21:40:05 —-A—- C:WINDOWSsystem32icwdial.dll
2009-03-18 21:40:00 —-D—- C:Program FilesCommon FilesSystem
2009-03-18 21:39:27 —-D—- C:Program FilesComPlus Applications
2009-03-18 21:39:25 —-A—- C:WINDOWSvbaddin.ini
2009-03-18 21:39:25 —-A—- C:WINDOWSvb.ini
2009-03-18 21:39:22 —-D—- C:WINDOWSRegistration
2009-03-18 21:39:16 —-D—- C:Program FilesWindows Media Player
2009-03-18 21:39:10 —-SD—- C:WINDOWSDownloaded Program Files
2009-03-18 21:39:10 —-RD—- C:WINDOWSOffline Web Pages
2009-03-18 21:39:10 —-A—- C:WINDOWSsystem32winfxdocobj.exe
2009-03-18 21:39:09 —-D—- C:WINDOWSwbem
2009-03-18 21:39:09 —-A—- C:WINDOWSsystem32msfeedssync.exe
2009-03-18 21:39:09 —-A—- C:WINDOWSsystem32msfeedsbs.dll
2009-03-18 21:39:07 —-A—- C:WINDOWSsystem32ieframe.dll.mui
2009-03-18 21:39:06 —-D—- C:Program FilesInternet Explorer
2009-03-18 21:39:06 —-A—- C:WINDOWSsystem32advpack.dll.mui
2009-03-18 21:39:05 —-D—- C:WINDOWSsystem32PreInstall
2009-03-18 21:39:05 —-A—- C:WINDOWSsystem32muweb.dll
2009-03-18 21:39:04 —-D—- C:WINDOWSSoftwareDistribution
2009-03-18 21:39:04 —-A—- C:WINDOWSsystem32mucltui.dll.mui
2009-03-18 21:39:04 —-A—- C:WINDOWSsystem32mucltui.dll
2009-03-18 21:39:04 —-A—- C:WINDOWSsystem32gpprefcl.dll
2009-03-18 21:39:02 —-D—- C:Program FilesMessenger
2009-03-18 21:38:59 —-D—- C:Program FilesMSN Gaming Zone
2009-03-18 21:38:59 —-A—- C:WINDOWSsystem32write.exe
2009-03-18 21:38:50 —-A—- C:WINDOWSsystem32sndvol32.exe
2009-03-18 21:38:50 —-A—- C:WINDOWSsystem32hticons.dll
2009-03-18 21:38:50 —-A—- C:WINDOWSsystem32avwav.dll
2009-03-18 21:38:50 —-A—- C:WINDOWSsystem32avtapi.dll
2009-03-18 21:38:50 —-A—- C:WINDOWSsystem32avmeter.dll
2009-03-18 21:38:49 —-A—- C:WINDOWSsystem32winchat.exe
2009-03-18 21:38:43 —-A—- C:WINDOWSsystem32getuname.dll
2009-03-18 21:38:43 —-A—- C:WINDOWSsystem32charmap.exe
2009-03-18 21:38:43 —-A—- C:WINDOWSsystem32calc.exe
2009-03-18 21:38:42 —-A—- C:WINDOWSsystem32winmine.exe
2009-03-18 21:38:42 —-A—- C:WINDOWSsystem32sol.exe
2009-03-18 21:38:42 —-A—- C:WINDOWSsystem32mshearts.exe
2009-03-18 21:38:42 —-A—- C:WINDOWSsystem32freecell.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32usrlogon.cmd
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32tsshutdn.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32tslabels.ini
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32tskill.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32tsdiscon.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32tscon.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32shadow.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32rwinsta.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32reset.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32regini.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32qwinsta.exe
2009-03-18 21:38:41 —-A—- C:WINDOWSsystem32qappsrv.exe
2009-03-18 21:38:40 —-A—- C:WINDOWSsystem32msg.exe
2009-03-18 21:38:40 —-A—- C:WINDOWSsystem32msdtcprf.ini
2009-03-18 21:38:40 —-A—- C:WINDOWSsystem32logoff.exe
2009-03-18 21:38:40 —-A—- C:WINDOWSsystem32cdmodem.dll
2009-03-18 21:38:34 —-A—- C:WINDOWSsystem32wmimgmt.msc
2009-03-18 21:38:34 —-A—- C:WINDOWSsystem32accwiz.exe
2009-03-18 21:38:33 —-A—- C:WINDOWSsystem32sndrec32.exe
2009-03-18 21:38:33 —-A—- C:WINDOWSsystem32mplay32.exe
2009-03-18 21:38:33 —-A—- C:WINDOWSsystem32hypertrm.dll
2009-03-18 21:38:32 —-D—- C:Program FilesWindows NT
2009-03-18 21:38:32 —-A—- C:WINDOWSsystem32spider.exe
2009-03-18 21:38:32 —-A—- C:WINDOWSsystem32mspaint.exe
2009-03-18 21:38:32 —-A—- C:WINDOWSsystem32clipbrd.exe
2009-03-18 21:38:31 —-A—- C:WINDOWSsystem32tsgqec.dll
2009-03-18 21:38:31 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2009-03-18 21:38:31 —-A—- C:WINDOWSsystem32rhttpaa.dll
2009-03-18 21:38:31 —-A—- C:WINDOWSsystem32aaclient.dll
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32sessmgr.exe
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32remotepg.dll
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32rdshost.exe
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32rdsaddin.exe
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32rdchost.dll
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32mstscax.dll
2009-03-18 21:38:30 —-A—- C:WINDOWSsystem32mstsc.exe
2009-03-18 21:38:29 —-D—- C:WINDOWSsystem32MsDtc
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32termsrv.dll
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32rdpwsx.dll
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32rdpsnd.dll
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32rdpclip.exe
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32qprocess.exe
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32icaapi.dll
2009-03-18 21:38:29 —-A—- C:WINDOWSsystem32cfgbkend.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32xolehlp.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32mtxoci.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32msdtctm.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32msdtcprx.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32msdtclog.dll
2009-03-18 21:38:28 —-A—- C:WINDOWSsystem32msdtc.exe
2009-03-18 21:38:27 —-D—- C:WINDOWSsystem32Com
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32mtxlegih.dll
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32mtxex.dll
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32mtxdm.dll
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32comrepl.dll
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32comaddin.dll
2009-03-18 21:38:27 —-A—- C:WINDOWSsystem32colbact.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32stclient.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32comsvcs.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32clbcatex.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32catsrvut.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32catsrvps.dll
2009-03-18 21:38:26 —-A—- C:WINDOWSsystem32catsrv.dll
2009-03-18 21:38:25 —-A—- C:WINDOWSsystem32comuid.dll
2009-03-18 21:38:25 —-A—- C:WINDOWSsystem32comsnap.dll
2009-03-18 21:38:25 —-A—- C:WINDOWSsystem32clbcatq.dll
2009-03-18 21:38:20 —-A—- C:WINDOWSsystem32servdeps.dll
2009-03-18 21:38:20 —-A—- C:WINDOWSsystem32mmfutil.dll
2009-03-18 21:38:20 —-A—- C:WINDOWSsystem32licwmi.dll
2009-03-18 21:38:20 —-A—- C:WINDOWSsystem32cmprops.dll======List of files/folders modified in the last 1 months======
2009-04-06 13:36:09 —-A—- C:WINDOWSwin.ini
2009-03-19 00:34:39 —-A—- C:WINDOWSsystem.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ehdrv;ehdrv; C:WINDOWSsystem32DRIVERSehdrv.sys [2009-02-06 106208]
R1 epfwtdir;epfwtdir; C:WINDOWSsystem32DRIVERSepfwtdir.sys [2009-02-06 93336]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-15 40704]
R1 SandBox;SandBox; ??C:WINDOWSsystem32driversSandBox.sys []
R2 eamon;eamon; C:WINDOWSsystem32DRIVERSeamon.sys [2009-02-06 113448]
R2 exFat;exFat; C:WINDOWSsystem32driversexFat.sys [2009-01-28 133632]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2008-10-11 62848]
R3 afw;Agnitum firewall driver; C:WINDOWSsystem32DRIVERSafw.sys [2008-06-20 30864]
R3 afwcore;afwcore; C:WINDOWSsystem32driversafwcore.sys [2008-12-17 257176]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2008-09-03 3300864]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:WINDOWSsystem32driversAtiHdmi.sys [2008-07-02 89600]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-15 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2008-10-02 4878336]
R3 MTsensor;ATK0110 ACPI UTILITY; C:WINDOWSsystem32DRIVERSASACPI.sys [2004-08-13 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2008-01-04 105856]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-14 59520]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-14 20608]
S3 ASWFilt;ASWFilt; ??C:WINDOWSsystem32FiltASWFilt.dll []
S3 DIGIRPS;Драйвер Digi PortServer; C:WINDOWSsystem32DRIVERSdigirlpt.sys [2001-10-19 42432]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:WINDOWSsystem32DRIVERSSymIM.sys []
S3 SymIMMP;SymIMMP; C:WINDOWSsystem32DRIVERSSymIM.sys []
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-14 26368]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 acssrv;Agnitum Client Security Service; C:PROGRA~1AgnitumOUTPOS~1acs.exe [2008-12-25 1267016]
R2 Ati HotKey Poller;Ati HotKey Poller; C:WINDOWSsystem32Ati2evxx.exe [2008-09-03 573440]
R2 ekrn;ESET Service; C:Program FilesESETESET NOD32 Antivirusekrn.exe [2009-02-06 727720]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7Debugmdm.exe [2001-02-23 270336]
S2 ATI Smart;ATI Smart; C:WINDOWSsystem32ati2sgag.exe [2008-09-02 593920]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET NOD32 AntivirusEHttpSrv.exe [2009-02-06 20680]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
EOF
RSIT info.txt: info.txt logfile of random’s system information tool 1.06 2009-04-14 19:02:04======Uninstall list======
«Спокойной ночи, малыши! Приключения Степашки» v1.0—>»C:Program Files1CСпокойной ночи, малыши! Приключения Степашкиunins000.exe»
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
ATI — Утилита деинсталляции—>C:Program FilesATI TechnologiesUninstallAllAtiCimUn.exe
ATI AVIVO Codecs—>MsiExec.exe /I{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}
ATI Catalyst Control Center—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{055EE59D-217B-43A7-ABFF-507B966405D8}setup.exe» -l0x0
ATI Display Driver—>rundll32 C:WINDOWSsystem32atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI HYDRAVISION—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}setup.exe»
ATI Parental Control & Encoder—>MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
ATI Problem Report Wizard—>MsiExec.exe /X{5DA6F06A-B389-407B-BF8C-1548767914D8}
Catalyst Control Center — Branding—>MsiExec.exe /I{FA3A247D-437A-455E-A88F-7EB6E5F9E799}
Grand Theft Auto Vice City—>C:WINDOWSIsUn0419.exe -f»C:GAMESTRIADAGrand Theft Auto Vice CityUninst.isu»
K-Lite Mega Codec Pack 4.7.5—>»C:Program FilesK-Lite Codec Packunins000.exe»
Microsoft .NET Framework 2.0—>C:WINDOWSMicrosoft.NETFrameworkv2.0.50727Microsoft .NET Framework 2.0install.exe
Microsoft Internationalized Domain Names Mitigation APIs—>»C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$spuninstspuninst.exe»
Microsoft National Language Support Downlevel APIs—>»C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$spuninstspuninst.exe»
Microsoft Office XP (профессиональный выпуск)—>MsiExec.exe /I{91110419-6000-11D3-8CFE-0050048383C9}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.21022—>MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
MSXML 4.0 SP3 Parser—>MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
Nero 9.0.9.4c Micro—>»C:Program FilesNero 9 Microunins000.exe»
Opera 9.63—>MsiExec.exe /X{1BC4026B-1957-4514-9058-2B542557F143}
Outpost Firewall Pro—>»C:Program FilesAgnitumOutpost Firewall Prounins000.exe»
QIP 2005 8082—>»C:Program FilesQIPunins000.exe»
REALTEK GbE & FE Ethernet PCI-E NIC Driver—>C:Program FilesInstallShield Installation Information{C9BED750-1211-4480-B1A5-718A3BE15525}Setup.exe -runfromtemp -l0x0019 -removeonly
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}setup.exe» -l0x19 -removeonly
VLC media player 0.9.8a—>C:Program FilesVideoLANVLCuninstall.exe
Winamp—>»C:Program FilesWinampUninstWA.exe»
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Архиватор WinRAR (только удаление)—>C:Program FilesWinRARuninstall.exe
Казаки — Снова Война—>C:WINDOWSuna2setup.exe
Проигрыватель Windows Media 11—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall======Security center information======
AV: ESET NOD32 Antivirus 4.0
FW: Outpost Firewall Pro======System event log======
Computer Name: WINXPSP3-PC
Event Code: 7035
Message: Служба «Служба сетевого расположения (NLA)» успешно отправила управляющий элемент «запустить».Record Number: 2835
Source Name: Service Control Manager
Time Written: 20090407091400.000000+240
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: WINXPSP3-PC
Event Code: 7036
Message: Служба «Служба сетевого расположения (NLA)» перешла в состояние Работает.Record Number: 2834
Source Name: Service Control Manager
Time Written: 20090407091400.000000+240
Event Type: информация
User:Computer Name: WINXPSP3-PC
Event Code: 7035
Message: Служба «Служба COM записи компакт-дисков IMAPI» успешно отправила управляющий элемент «запустить».Record Number: 2833
Source Name: Service Control Manager
Time Written: 20090407091400.000000+240
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: WINXPSP3-PC
Event Code: 6005
Message: Запущена служба журнала событий.Record Number: 2832
Source Name: EventLog
Time Written: 20090407091348.000000+240
Event Type: информация
User:Computer Name: WINXPSP3-PC
Event Code: 6009
Message: Microsoft (R) Windows 2000 (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.Record Number: 2831
Source Name: EventLog
Time Written: 20090407091348.000000+240
Event Type: информация
User:=====Application event log=====
Computer Name: WINXPSP3-PC
Event Code: 105
Message: The service was started.Record Number: 618
Source Name: ATI Smart
Time Written: 20090402115601.000000+240
Event Type: информация
User:Computer Name: WINXPSP3-PC
Event Code: 4097
Message: Приложение C:Program FilesVideoLANVLCvlc.exe вызвало ошибку
Ошибка в 02/04/2009 @ 11:29:50.234
Вызвано исключение c0000005 по адресу 6906B2B2 (libqt4_plugin!vlc_entry__0_9_0m)Record Number: 617
Source Name: DrWatson
Time Written: 20090402112950.000000+240
Event Type: информация
User:Computer Name: WINXPSP3-PC
Event Code: 1000
Message: Ошибка приложения vlc.exe, версия 0.9.8.1, модуль libqt4_plugin.dll, версия 0.0.0.0, адрес 0x001eb2b2.Record Number: 616
Source Name: Application Error
Time Written: 20090402112942.000000+240
Event Type: ошибка
User:Computer Name: WINXPSP3-PC
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 615
Source Name: SecurityCenter
Time Written: 20090402102333.000000+240
Event Type: информация
User:Computer Name: WINXPSP3-PC
Event Code: 105
Message: The service was started.Record Number: 614
Source Name: ATI Smart
Time Written: 20090402102328.000000+240
Event Type: информация
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;C:Program FilesATI TechnologiesATI.ACECore-Static
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 15 Stepping 13, GenuineIntel
«PROCESSOR_REVISION»=0f0d
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
Да вирус еще сидит,все по прежнему.
В каком браузере наблюдается реклама ?
Запустите Оперу.
Кликните Инструменты ->Настройки.
Откройте вкладку Дополнительно.
Выберите раздел Содержимое.
Кликните по кнопке Настроить JavaScrypt.
Найдите строку «Папка пользовательских файлов JavaScrypt».
Удалите всё содержимое.
Сохраните настройки.
Закройте Оперу.Запустите Оперу снова и проверьте её в работе.
Здравствуйте!Сделал все как вы велели.Реклама исчезла, большое Вам за это спасибо,выручили.
Рад вам помочь 🙂
Несколько завершающих действий.
1. Обновите ваши программы.
Зайдите на сайт update.microsoft.com и обновите Windows.
2. Удалите все программы, которые вы использовали в процессе лечения, в случае необходимости, вы всегда сможете скачать их заново. Удаление их необходимо по-причине того, что они содержат компоненты, которые вирусы и трояны могут использовать в плохих целях.
Запустите программу OTMoveIT3. Кликните по кнопке CleanUp. Если появится запрос на перезагрузку компьютера, то кликните Да/Yes.
Удалите RSIT и другие скачанные вами сканеры и небольшие утилиты, а так же все файлы и каталоги который были созданы в процессе лечения компьютера.3. Подойдите к защите вашего компьютера более серьёзно.
Установите программу Spybot Search and Destroy, это довольно неплохая дополнительная защита от шпионских и других вредоносных программ.
Большинство троянов и вирусов разработаны для поражения Internet Explorer`а, поэтому рекомендую использовать только Оперу или Firefox.
4. Создайте новую точку восстановления и удалите все старые.
Удалите старые точки восстановления, так как в них возможно нахождения инфицированных файлов, троянов и других вредоносных программ. Для этого кликните по иконке Мой компьютер, выберите пункт Свойства. В открывшемся окне выберите вкладку Восстановление системы. Поставьте галочку напротив пункта Отключить восстановление системы на всех дисках. Кликните по кнопке Применить. Подтвердите свои действия кликнув по кнопке OK в открывшемся диалоге. Закройте окно Свойства системы, кликнув по кнопке OK.
После загрузки компьютера выполните действия описанные выше, только в этот раз снимите галочку.
Создайте новую точку восстановления. Это поможет вам в случае необходимости загрузить текущую конфигурацию Windows и быстро излечиться от спайваре/вируса. Для этого кликните по кнопке Пуск, далее выберите пункт Стандартные, в нём Служебные и запустите программу Восстановление системы. В открывшемся окне выберите задачу Создать точку восстановления и нажмите кнопку Далее и следуйте указаниям.
5. И несколько дополнительных советов.
Запустите ваш антивирус и проверьте состояние автоматической защиты. Включите, если она выключена.
Не забывайте обновлять Windows, ваши программы и особенно ваш антивирус.
Не посещайте незнакомые сайты, очень внимательно относитесь к файлам скаченным с Интернета.
Всего доброго!
- Для ответа в этой теме необходимо авторизоваться.
