• Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы

SPYWARE-RU.COM
Меню
  • Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы
В начало
Adguard
 

ge5an

  • Профиль
  • Начатые темы
  • Созданные ответы
  • Engagements
  • Избранное

Созданные ответы форума

Просмотр 4 сообщений - с 1 по 4 (из 4 всего)
  • Автор
    Сообщения
  • 19 апреля, 2009 в 11:56 дп в ответ на: Лента с фотографиями #23138
    ge5an
    Participant
    • Темы:1
    • Сообщений:5
    • ☆

    Хорошо.Спасибо за помощь!

    15 апреля, 2009 в 11:08 дп в ответ на: Лента с фотографиями #23136
    ge5an
    Participant
    • Темы:1
    • Сообщений:5
    • ☆

    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifydivxrs\ deleted successfully.
    ========== COMMANDS ==========
    User’s Temp folder emptied.
    User’s Internet Explorer cache folder emptied.
    File delete failed. C:Documents and SettingsЛЕХА.E0F5063BC4524F7Local SettingsTemporary Internet FilesContent.IE5GDIJCHMNOTMoveIt3[1].exe scheduled to be deleted on reboot.
    File delete failed. C:Documents and SettingsЛЕХА.E0F5063BC4524F7Local SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
    User’s Temporary Internet Files folder emptied.
    Local Service Temp folder emptied.
    Local Service Temporary Internet Files folder emptied.
    Network Service Temp folder emptied.
    Network Service Temporary Internet Files folder emptied.
    File delete failed. C:WINDOWStemp_avast4_Webshlock.txt scheduled to be deleted on reboot.
    File delete failed. C:WINDOWStempPerflib_Perfdata_618.dat scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Temp folders emptied.
    Explorer started successfully

    OTMoveIt3 by OldTimer — Version 1.0.11.0 log created on 04152009_145628

    Files moved on Reboot…
    C:Documents and SettingsЛЕХА.E0F5063BC4524F7Local SettingsTemporary Internet FilesContent.IE5GDIJCHMNOTMoveIt3[1].exe moved successfully.
    File move failed. C:WINDOWStemp_avast4_Webshlock.txt scheduled to be moved on reboot.
    File C:WINDOWStempPerflib_Perfdata_618.dat not found!

    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by ЛЕХА at 2009-04-15 15:06:47
    Microsoft Windows XP Professional Service Pack 2
    System drive C: has 191 GB (63%) free of 305 GB
    Total RAM: 1023 MB (66% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:06:50, on 15.04.2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:WINDOWSSystem32smss.exe
    C:WINDOWSsystem32winlogon.exe
    C:WINDOWSsystem32services.exe
    C:WINDOWSsystem32lsass.exe
    C:WINDOWSsystem32svchost.exe
    C:WINDOWSSystem32svchost.exe
    C:WINDOWSExplorer.EXE
    C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
    C:Program FilesAlwil SoftwareAvast4ashServ.exe
    C:WINDOWSsystem32spoolsv.exe
    C:WINDOWSsystem32nvsvc32.exe
    C:WINDOWSsystem32PnkBstrA.exe
    C:WINDOWSsystem32PnkBstrB.exe
    C:WINDOWSsystem32svchost.exe
    C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
    C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
    C:WINDOWSRTHDCPL.EXE
    C:PROGRA~1ALWILS~1Avast4ashDisp.exe
    C:WINDOWSsystem32ctfmon.exe
    C:Program FilesMessengermsmsgs.exe
    C:Program FilesYandexOnlineonline.exe
    C:Program FilesYandexOnlineYaChatyachat.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:WINDOWSsystem32wuauclt.exe
    C:Documents and SettingsЛЕХА.E0F5063BC4524F7Рабочий столRSIT.exe
    C:Program Filestrend microЛЕХА.exe

    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/?clid=40316
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
    O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
    O4 — HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
    O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
    O4 — HKLM..Run: [adstopper] C:Program FilesAdStoperAdStopperTrayApp.exe
    O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
    O4 — HKCU..Run: [MSMSGS] «C:Program FilesMessengermsmsgs.exe» /background
    O4 — HKCU..Run: [YandexOnline] «C:Program FilesYandexOnlineonline.exe» -AutoStart
    O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
    O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
    O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
    O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
    O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
    O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
    O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
    O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
    O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
    O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
    O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
    O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
    O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
    O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
    O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
    O23 — Service: PnkBstrA — Unknown owner — C:WINDOWSsystem32PnkBstrA.exe
    O23 — Service: PnkBstrB — Unknown owner — C:WINDOWSsystem32PnkBstrB.exe
    O23 — Service: UFO Afterlight Drivers Auto Removal (pr2ah2gb) (pr2ah2gb) — 1C Multimedia — C:WINDOWSsystem32pr2ah2gb.exe
    O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
    O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
    O23 — Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) — Protection Technology (StarForce) — C:WINDOWSsystem32sfrem01.exe
    O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
    O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
    O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

    —
    End of file — 4744 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2006-04-04 16120832]
    «avast!»=C:PROGRA~1ALWILS~1Avast4ashDisp.exe [2009-02-06 81000]
    «NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2006-10-22 7700480]
    «adstopper»=C:Program FilesAdStoperAdStopperTrayApp.exe []

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-17 15360]
    «MSMSGS»=C:Program FilesMessengermsmsgs.exe [2004-08-17 1667584]
    «YandexOnline»=C:Program FilesYandexOnlineonline.exe [2009-04-10 2558728]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAlcmtr]
    C:WINDOWSALCMTR.EXE [2005-05-03 69632]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDAEMON Tools-1033]
    C:Program FilesDRToolsdaemon.exe [2004-08-22 81920]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregEDLauncher]
    C:Program FilesPRMT6PRMTEDEDLauncher.exe [2002-03-28 81920]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregKernelFaultCheck]
    C:WINDOWSsystem32dumprep 0 -k []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
    C:Program FilesMessengermsmsgs.exe [2004-08-17 1667584]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
    C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvCplDaemon]
    C:WINDOWSsystem32NvCpl.dll [2006-10-22 7700480]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter]
    C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregnwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
    C:Program FilesCyberLinkPowerDVDPDVDServ.exe [2004-11-02 32768]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSony Ericsson PC Suite]
    C:Program FilesSony EricssonMobile2Application LauncherApplication Launcher.exe [2007-01-26 495616]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWinampAgent]
    C:Program FilesWinampwinampa.exe [2006-03-10 35328]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^All Users.WINDOWS^Главное меню^Программы^Автозагрузка^Adobe Reader Speed Launch.lnk]
    C:PROGRA~1AdobeACROBA~2.0ReaderREADER~1.EXE [2005-09-23 29696]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalSystem Reserved]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkSystem Reserved]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «dontdisplaylastusername»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «NoDriveTypeAutoRun»=B1000000

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
    «%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
    «C:Program FilesNetIntellGamesNetIntellGames Packdurak.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packdurak.exe:*:Enabled:Net Durak»
    «C:Program FilesNetIntellGamesNetIntellGames Packpoker.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packpoker.exe:*:Enabled:Net Poker»
    «C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
    «C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
    «C:Program FilesPro Evolution Soccer 2008PES2008.exe»=»C:Program FilesPro Evolution Soccer 2008PES2008.exe:*:Enabled:Pro Evolution Soccer 2008»
    «C:WINDOWSwinlogon.exe»=»C:WINDOWSwinlogon.exe:*:Disabled:winlogon»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4Civilization4.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4Civilization4.exe:*:Enabled:Sid Meier’s Civilization 4»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords.exe:*:Enabled:Sid Meier’s Civilization 4 — Warlords»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords_PitBoss.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords_PitBoss.exe:*:Enabled:Sid Meier’s Civilization 4 — Warlords — Pitboss»
    «%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
    «C:Program FilesHeroes of Might & Magic V — Hammers of Fatebina1H5_Game.exe»=»C:Program FilesHeroes of Might & Magic V — Hammers of Fatebina1H5_Game.exe:*:Enabled:Heroes of Might and Magic V: Hammers of Fate»
    «C:Program FilesBattlefield2_IranConflictBF2.exe»=»C:Program FilesBattlefield2_IranConflictBF2.exe:*:Enabled:BF2»
    «C:Program FilesGameSpy ArcadeAphex.exe»=»C:Program FilesGameSpy ArcadeAphex.exe:*:Enabled:GameSpy Arcade»
    «C:Program FilesNetIntellGamesNetIntellGames Packgin.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packgin.exe:*:Enabled:Gin»
    «C:Program FilesNetIntellGamesNetIntellGames Packspades.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packspades.exe:*:Enabled:Spades»
    «C:Program FilesGSC World PublishingS.T.A.L.K.E.R. МультиплеерbinXR_3DA.exe»=»C:Program FilesGSC World PublishingS.T.A.L.K.E.R. МультиплеерbinXR_3DA.exe:*:Enabled:XR_3DA»

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
    «%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
    «%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{56d71424-2361-11dd-b2e9-0016178ed156}]
    shellAutoRuncommand — E:
    shellopencommand — rundll32.exe .desktop.dll,InstallM

    ======List of files/folders created in the last 1 months======

    2009-04-15 14:56:28 —-D—- C:_OTMoveIt
    2009-04-14 18:57:55 —-D—- C:Documents and SettingsЛЕХА.E0F5063BC4524F7Application DataYaChatData
    2009-04-14 18:57:16 —-D—- C:Documents and SettingsЛЕХА.E0F5063BC4524F7Application DataYandex
    2009-04-14 18:57:15 —-D—- C:Program FilesYandex
    2009-04-08 11:41:49 —-SHD—- C:found.001
    2009-03-30 21:04:03 —-D—- C:Program Filestrend micro
    2009-03-30 21:04:02 —-D—- C:rsit
    2009-03-26 23:33:51 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2$
    2009-03-26 23:33:46 —-HDC—- C:WINDOWS$NtUninstallKB952954$
    2009-03-26 23:33:41 —-HDC—- C:WINDOWS$NtUninstallKB946648$
    2009-03-26 23:33:36 —-HDC—- C:WINDOWS$NtUninstallKB956803$
    2009-03-26 23:33:31 —-HDC—- C:WINDOWS$NtUninstallKB935448$
    2009-03-26 23:32:50 —-D—- C:WINDOWSie7updates
    2009-03-26 23:32:36 —-D—- C:WINDOWSWBEM
    2009-03-26 23:32:36 —-D—- C:WINDOWSsystem32ru-ru
    2009-03-26 23:31:24 —-HDC—- C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$
    2009-03-26 23:31:12 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
    2009-03-26 23:30:54 —-HDC—- C:WINDOWS$NtUninstallKB915865$
    2009-03-26 23:30:53 —-N—- C:WINDOWSsystem32xmllite.dll
    2009-03-26 23:29:45 —-A—- C:WINDOWSsystem32MRT.exe
    2009-03-26 23:29:41 —-D—- C:WINDOWSnetwork diagnostic
    2009-03-26 23:29:40 —-HDC—- C:WINDOWS$NtUninstallKB914440$
    2009-03-26 23:29:34 —-HDC—- C:WINDOWS$NtUninstallKB904942$
    2009-03-26 23:23:40 —-HDC—- C:WINDOWS$NtUninstallKB958215$
    2009-03-26 23:23:33 —-HDC—- C:WINDOWS$NtUninstallKB950974$
    2009-03-26 23:23:28 —-HDC—- C:WINDOWS$NtUninstallKB951698$
    2009-03-26 23:23:19 —-HDC—- C:WINDOWS$NtUninstallKB956841$
    2009-03-26 23:23:12 —-HDC—- C:WINDOWS$NtUninstallKB960714$
    2009-03-26 23:23:06 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
    2009-03-26 23:23:02 —-HDC—- C:WINDOWS$NtUninstallKB950762$
    2009-03-26 23:22:58 —-HDC—- C:WINDOWS$NtUninstallKB957097$
    2009-03-26 23:22:53 —-HDC—- C:WINDOWS$NtUninstallKB958687$
    2009-03-26 23:22:47 —-HDC—- C:WINDOWS$NtUninstallKB951066$
    2009-03-26 23:22:41 —-HDC—- C:WINDOWS$NtUninstallKB951748$
    2009-03-26 23:22:35 —-HDC—- C:WINDOWS$NtUninstallKB954600$
    2009-03-26 23:22:30 —-HDC—- C:WINDOWS$NtUninstallKB958644$
    2009-03-26 23:22:25 —-HDC—- C:WINDOWS$NtUninstallKB955069$
    2009-03-26 23:22:20 —-HDC—- C:WINDOWS$NtUninstallKB956802$
    2009-03-26 23:22:18 —-D—- C:Program FilesMSXML 4.0
    2009-03-26 23:21:07 —-HDC—- C:WINDOWS$NtUninstallKB944338-v2$
    2009-03-26 20:25:22 —-D—- C:WINDOWSpss
    2009-03-26 20:19:43 —-A—- C:WINDOWSsystem32aswBoot.exe
    2009-03-26 20:19:38 —-D—- C:Program FilesAlwil Software
    2009-03-26 20:19:02 —-D—- C:Program FilesCCleaner
    2009-03-25 22:33:54 —-D—- C:WINDOWSNV30483052.TMP
    2009-03-25 22:03:54 —-D—- C:NV38723876.TMP
    2009-03-25 22:03:54 —-D—- C:NV38243828.TMP
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32NVCOI.DLL
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32idecoiins.dll
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32idecoi.dll
    2009-03-25 22:03:52 —-N—- C:WINDOWSsystem32nvuide.exe
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l2052.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1046.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1042.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1041.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1040.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco1ins.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1036.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1034.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1031.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1028.dll
    2009-03-25 22:03:16 —-A—- C:WINDOWSsystem32fdco1.dll
    2009-03-25 22:03:12 —-RA—- C:WINDOWSsystem32bdco1ins.dll
    2009-03-25 22:03:12 —-D—- C:WINDOWSNV4088424.TMP
    2009-03-25 22:03:12 —-A—- C:WINDOWSsystem32nvconrm.dll
    2009-03-25 22:03:12 —-A—- C:WINDOWSsystem32bdco1.dll
    2009-03-24 20:53:31 —-D—- C:Netgear
    2009-03-22 19:35:21 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataEgoset
    2009-03-16 20:50:02 —-D—- C:Program FilesGp3

    ======List of files/folders modified in the last 1 months======

    2009-04-15 14:58:31 —-D—- C:WINDOWSTemp
    2009-04-15 14:56:51 —-A—- C:WINDOWSSchedLgU.Txt
    2009-04-15 14:53:08 —-D—- C:WINDOWSPrefetch
    2009-04-14 18:57:15 —-RD—- C:Program Files
    2009-04-08 12:20:46 —-D—- C:Games
    2009-04-03 18:31:19 —-D—- C:WINDOWSsystem32
    2009-04-03 11:22:53 —-D—- C:WINDOWSsystem32drivers
    2009-04-03 11:22:51 —-D—- C:WINDOWS
    2009-04-02 13:58:10 —-A—- C:WINDOWSNeroDigital.ini
    2009-03-30 18:35:44 —-D—- C:WINDOWSsystem32CatRoot2
    2009-03-30 18:08:35 —-D—- C:WINDOWSSoftwareDistribution
    2009-03-30 18:07:39 —-RSHDC—- C:WINDOWSsystem32dllcache
    2009-03-30 18:07:38 —-HD—- C:WINDOWSinf
    2009-03-30 18:07:38 —-D—- C:WINDOWSHelp
    2009-03-30 18:07:38 —-D—- C:Program FilesInternet Explorer
    2009-03-30 18:05:43 —-D—- C:WINDOWSMedia
    2009-03-30 14:15:07 —-D—- C:WINDOWSsystem32CatRoot
    2009-03-30 14:13:26 —-D—- C:WINDOWSsystem32CatRoot_bak
    2009-03-30 13:55:45 —-HD—- C:WINDOWS$hf_mig$
    2009-03-30 13:41:18 —-D—- C:WINDOWSMinidump
    2009-03-30 13:41:18 —-D—- C:WINDOWSDebug
    2009-03-30 13:29:36 —-D—- C:Program FilesGSC World Publishing
    2009-03-29 13:39:05 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
    2009-03-26 23:33:43 —-D—- C:Program FilesMessenger
    2009-03-26 23:32:38 —-D—- C:WINDOWSsystem32config
    2009-03-26 23:22:18 —-SHD—- C:WINDOWSInstaller
    2009-03-26 23:22:18 —-D—- C:WINDOWSWinSxS
    2009-03-26 20:25:42 —-SH—- C:boot.ini
    2009-03-26 20:25:42 —-A—- C:WINDOWSwin.ini
    2009-03-26 20:25:42 —-A—- C:WINDOWSsystem.ini
    2009-03-26 20:24:44 —-ASD—- C:Program FilesNewDotNet
    2009-03-26 20:18:47 —-D—- C:Program FilesWinRAR
    2009-03-25 21:56:05 —-HD—- C:Program FilesInstallShield Installation Information
    2009-03-25 21:55:52 —-D—- C:NVIDIA
    2009-03-25 20:26:47 —-D—- C:Documents and SettingsЛЕХА.E0F5063BC4524F7Application DataMSN6
    2009-03-24 22:08:00 —-D—- C:Program FilesNetMeeting
    2009-03-22 19:33:21 —-D—- C:WINDOWSsystem32DirectX
    2009-03-22 19:26:41 —-D—- C:Program FilesBuka

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2009-02-06 26944]
    R1 AmdK8;AMD Processor Driver; C:WINDOWSsystem32DRIVERSAmdK8.sys [2005-03-09 36352]
    R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2009-02-06 114768]
    R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2009-02-06 51376]
    R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-02-06 20560]
    R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2009-02-06 94032]
    R2 irda;ИК-протокол IrDA; C:WINDOWSsystem32DRIVERSirda.sys [2004-08-04 87424]
    R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2009-02-06 23152]
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2006-04-06 4258816]
    R3 irsir;Драйвер для инфракрасного последовательного порта Microsoft; C:WINDOWSsystem32DRIVERSirsir.sys [2001-08-18 18688]
    R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:WINDOWSsystem32DRIVERSNVENETFD.sys [2006-03-22 52736]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:WINDOWSsystem32DRIVERSnvnetbus.sys [2006-03-22 18944]
    R3 Rasirda;Минипорт WAN (IrDA); C:WINDOWSsystem32DRIVERSrasirda.sys [2001-08-18 19584]
    R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-04 26624]
    R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-04 57600]
    R3 usbohci;Драйвер минипорта Microsoft USB открытого хост-контроллера; C:WINDOWSsystem32DRIVERSusbohci.sys [2004-08-04 17024]
    S3 dtscsi;dtscsi; C:WINDOWSSystem32Driversdtscsi.sys [2007-10-16 223128]
    S3 GMSIPCI;GMSIPCI; ??D:INSTALLGMSIPCI.SYS []
    S3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
    S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2007-08-30 55216]
    S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2007-08-30 6576]
    S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2007-08-30 89872]
    S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2007-08-30 81728]
    S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2007-08-30 79488]
    S3 NTACCESS;NTACCESS; ??D:NTACCESS.sys []
    S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM); C:WINDOWSsystem32DRIVERSsea1bus.sys [2007-02-08 61536]
    S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSsea1mdfl.sys [2007-02-08 9360]
    S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSsea1mdm.sys [2007-02-08 97088]
    S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSsea1mgmt.sys [2007-02-08 88624]
    S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS); C:WINDOWSsystem32DRIVERSsea1nd5.sys [2007-02-08 18704]
    S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSsea1obex.sys [2007-02-08 86432]
    S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM); C:WINDOWSsystem32DRIVERSsea1unic.sys [2007-02-08 90800]
    S3 SetupNTGLM7X;SetupNTGLM7X; ??D:NTGLM7X.sys []
    S3 SONYPVU1;Драйвер Sony USB фильтра (SONYPVU1); C:WINDOWSsystem32DRIVERSSONYPVU1.SYS [2001-08-17 7552]
    S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
    S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
    S3 usbser;Motorola USB Modem Driver; C:WINDOWSsystem32DRIVERSusbser.sys [2004-08-03 25600]
    S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
    S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-02-06 18752]
    R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-02-06 138680]
    R2 Irmon;Монитор инфракрасной связи; C:WINDOWSsystem32svchost.exe [2008-04-12 14336]
    R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
    R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2008-01-17 66872]
    R2 PnkBstrB;PnkBstrB; C:WINDOWSsystem32PnkBstrB.exe [2008-01-17 103736]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-02-06 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-02-06 352920]
    S2 pr2ah2gb;UFO Afterlight Drivers Auto Removal (pr2ah2gb); C:WINDOWSsystem32pr2ah2gb.exe [2007-02-22 407168]
    S2 sfrem01;SF FrontLine Drivers Auto Removal (v1); C:WINDOWSsystem32sfrem01.exe [2006-07-05 358008]
    S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]

    EOF

    4 апреля, 2009 в 6:42 дп в ответ на: Лента с фотографиями #23134
    ge5an
    Participant
    • Темы:1
    • Сообщений:5
    • ☆

    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by ЛЕХА at 2009-04-04 10:30:13
    Microsoft Windows XP Professional Service Pack 2
    System drive C: has 187 GB (61%) free of 305 GB
    Total RAM: 1023 MB (66% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:30:18, on 04.04.2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:WINDOWSSystem32smss.exe
    C:WINDOWSsystem32winlogon.exe
    C:WINDOWSsystem32services.exe
    C:WINDOWSsystem32lsass.exe
    C:WINDOWSsystem32svchost.exe
    C:WINDOWSSystem32svchost.exe
    C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
    C:Program FilesAlwil SoftwareAvast4ashServ.exe
    C:WINDOWSExplorer.EXE
    C:WINDOWSRTHDCPL.EXE
    C:PROGRA~1ALWILS~1Avast4ashDisp.exe
    C:WINDOWSsystem32ctfmon.exe
    C:Program FilesMessengermsmsgs.exe
    C:WINDOWSsystem32spoolsv.exe
    C:WINDOWSsystem32nvsvc32.exe
    C:WINDOWSsystem32PnkBstrA.exe
    C:WINDOWSsystem32PnkBstrB.exe
    C:WINDOWSsystem32svchost.exe
    C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
    C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
    C:Documents and SettingsЛЕХА.E0F5063BC4524F7Рабочий столRSIT.exe
    C:Program Filestrend microЛЕХА.exe

    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/?clid=40316
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
    O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
    O4 — HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
    O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
    O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
    O4 — HKCU..Run: [MSMSGS] «C:Program FilesMessengermsmsgs.exe» /background
    O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
    O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
    O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
    O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
    O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
    O20 — Winlogon Notify: divxrs — divxrs.dll (file missing)
    O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
    O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
    O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
    O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
    O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
    O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
    O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
    O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
    O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
    O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
    O23 — Service: PnkBstrA — Unknown owner — C:WINDOWSsystem32PnkBstrA.exe
    O23 — Service: PnkBstrB — Unknown owner — C:WINDOWSsystem32PnkBstrB.exe
    O23 — Service: UFO Afterlight Drivers Auto Removal (pr2ah2gb) (pr2ah2gb) — 1C Multimedia — C:WINDOWSsystem32pr2ah2gb.exe
    O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
    O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
    O23 — Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) — Protection Technology (StarForce) — C:WINDOWSsystem32sfrem01.exe
    O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
    O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
    O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

    —
    End of file — 4461 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2006-04-04 16120832]
    «avast!»=C:PROGRA~1ALWILS~1Avast4ashDisp.exe [2009-02-06 81000]
    «NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2006-10-22 7700480]

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-17 15360]
    «MSMSGS»=C:Program FilesMessengermsmsgs.exe [2004-08-17 1667584]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAlcmtr]
    C:WINDOWSALCMTR.EXE [2005-05-03 69632]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDAEMON Tools-1033]
    C:Program FilesDRToolsdaemon.exe [2004-08-22 81920]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregEDLauncher]
    C:Program FilesPRMT6PRMTEDEDLauncher.exe [2002-03-28 81920]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregKernelFaultCheck]
    C:WINDOWSsystem32dumprep 0 -k []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
    C:Program FilesMessengermsmsgs.exe [2004-08-17 1667584]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
    C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvCplDaemon]
    C:WINDOWSsystem32NvCpl.dll [2006-10-22 7700480]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter]
    C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregnwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
    C:Program FilesCyberLinkPowerDVDPDVDServ.exe [2004-11-02 32768]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSony Ericsson PC Suite]
    C:Program FilesSony EricssonMobile2Application LauncherApplication Launcher.exe [2007-01-26 495616]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWinampAgent]
    C:Program FilesWinampwinampa.exe [2006-03-10 35328]

    [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^All Users.WINDOWS^Главное меню^Программы^Автозагрузка^Adobe Reader Speed Launch.lnk]
    C:PROGRA~1AdobeACROBA~2.0ReaderREADER~1.EXE [2005-09-23 29696]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifydivxrs]
    divxrs.dll []

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalSystem Reserved]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkSystem Reserved]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «dontdisplaylastusername»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «NoDriveTypeAutoRun»=B1000000

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
    «%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
    «C:Program FilesNetIntellGamesNetIntellGames Packdurak.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packdurak.exe:*:Enabled:Net Durak»
    «C:Program FilesNetIntellGamesNetIntellGames Packpoker.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packpoker.exe:*:Enabled:Net Poker»
    «C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
    «C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
    «C:Program FilesPro Evolution Soccer 2008PES2008.exe»=»C:Program FilesPro Evolution Soccer 2008PES2008.exe:*:Enabled:Pro Evolution Soccer 2008»
    «C:WINDOWSwinlogon.exe»=»C:WINDOWSwinlogon.exe:*:Disabled:winlogon»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4Civilization4.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4Civilization4.exe:*:Enabled:Sid Meier’s Civilization 4»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords.exe:*:Enabled:Sid Meier’s Civilization 4 — Warlords»
    «C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords_PitBoss.exe»=»C:Program FilesFiraxis GamesSid Meier’s Civilization 4WarlordsCiv4Warlords_PitBoss.exe:*:Enabled:Sid Meier’s Civilization 4 — Warlords — Pitboss»
    «%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
    «C:Program FilesHeroes of Might & Magic V — Hammers of Fatebina1H5_Game.exe»=»C:Program FilesHeroes of Might & Magic V — Hammers of Fatebina1H5_Game.exe:*:Enabled:Heroes of Might and Magic V: Hammers of Fate»
    «C:Program FilesBattlefield2_IranConflictBF2.exe»=»C:Program FilesBattlefield2_IranConflictBF2.exe:*:Enabled:BF2»
    «C:Program FilesGameSpy ArcadeAphex.exe»=»C:Program FilesGameSpy ArcadeAphex.exe:*:Enabled:GameSpy Arcade»
    «C:Program FilesNetIntellGamesNetIntellGames Packgin.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packgin.exe:*:Enabled:Gin»
    «C:Program FilesNetIntellGamesNetIntellGames Packspades.exe»=»C:Program FilesNetIntellGamesNetIntellGames Packspades.exe:*:Enabled:Spades»
    «C:Program FilesGSC World PublishingS.T.A.L.K.E.R. МультиплеерbinXR_3DA.exe»=»C:Program FilesGSC World PublishingS.T.A.L.K.E.R. МультиплеерbinXR_3DA.exe:*:Enabled:XR_3DA»

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
    «%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
    «%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{56d71424-2361-11dd-b2e9-0016178ed156}]
    shellAutoRuncommand — E:
    shellopencommand — rundll32.exe .desktop.dll,InstallM

    ======List of files/folders created in the last 1 months======

    2009-03-30 21:04:03 —-D—- C:Program Filestrend micro
    2009-03-30 21:04:02 —-D—- C:rsit
    2009-03-26 23:33:51 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2$
    2009-03-26 23:33:46 —-HDC—- C:WINDOWS$NtUninstallKB952954$
    2009-03-26 23:33:41 —-HDC—- C:WINDOWS$NtUninstallKB946648$
    2009-03-26 23:33:36 —-HDC—- C:WINDOWS$NtUninstallKB956803$
    2009-03-26 23:33:31 —-HDC—- C:WINDOWS$NtUninstallKB935448$
    2009-03-26 23:32:50 —-D—- C:WINDOWSie7updates
    2009-03-26 23:32:36 —-D—- C:WINDOWSWBEM
    2009-03-26 23:32:36 —-D—- C:WINDOWSsystem32ru-ru
    2009-03-26 23:31:24 —-HDC—- C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$
    2009-03-26 23:31:12 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
    2009-03-26 23:30:54 —-HDC—- C:WINDOWS$NtUninstallKB915865$
    2009-03-26 23:30:53 —-N—- C:WINDOWSsystem32xmllite.dll
    2009-03-26 23:29:45 —-A—- C:WINDOWSsystem32MRT.exe
    2009-03-26 23:29:41 —-D—- C:WINDOWSnetwork diagnostic
    2009-03-26 23:29:40 —-HDC—- C:WINDOWS$NtUninstallKB914440$
    2009-03-26 23:29:34 —-HDC—- C:WINDOWS$NtUninstallKB904942$
    2009-03-26 23:23:40 —-HDC—- C:WINDOWS$NtUninstallKB958215$
    2009-03-26 23:23:33 —-HDC—- C:WINDOWS$NtUninstallKB950974$
    2009-03-26 23:23:28 —-HDC—- C:WINDOWS$NtUninstallKB951698$
    2009-03-26 23:23:19 —-HDC—- C:WINDOWS$NtUninstallKB956841$
    2009-03-26 23:23:12 —-HDC—- C:WINDOWS$NtUninstallKB960714$
    2009-03-26 23:23:06 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
    2009-03-26 23:23:02 —-HDC—- C:WINDOWS$NtUninstallKB950762$
    2009-03-26 23:22:58 —-HDC—- C:WINDOWS$NtUninstallKB957097$
    2009-03-26 23:22:53 —-HDC—- C:WINDOWS$NtUninstallKB958687$
    2009-03-26 23:22:47 —-HDC—- C:WINDOWS$NtUninstallKB951066$
    2009-03-26 23:22:41 —-HDC—- C:WINDOWS$NtUninstallKB951748$
    2009-03-26 23:22:35 —-HDC—- C:WINDOWS$NtUninstallKB954600$
    2009-03-26 23:22:30 —-HDC—- C:WINDOWS$NtUninstallKB958644$
    2009-03-26 23:22:25 —-HDC—- C:WINDOWS$NtUninstallKB955069$
    2009-03-26 23:22:20 —-HDC—- C:WINDOWS$NtUninstallKB956802$
    2009-03-26 23:22:18 —-D—- C:Program FilesMSXML 4.0
    2009-03-26 23:21:07 —-HDC—- C:WINDOWS$NtUninstallKB944338-v2$
    2009-03-26 20:25:22 —-D—- C:WINDOWSpss
    2009-03-26 20:19:43 —-A—- C:WINDOWSsystem32aswBoot.exe
    2009-03-26 20:19:38 —-D—- C:Program FilesAlwil Software
    2009-03-26 20:19:02 —-D—- C:Program FilesCCleaner
    2009-03-25 22:33:54 —-D—- C:WINDOWSNV30483052.TMP
    2009-03-25 22:03:54 —-D—- C:NV38723876.TMP
    2009-03-25 22:03:54 —-D—- C:NV38243828.TMP
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32NVCOI.DLL
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32idecoiins.dll
    2009-03-25 22:03:53 —-RA—- C:WINDOWSsystem32idecoi.dll
    2009-03-25 22:03:52 —-N—- C:WINDOWSsystem32nvuide.exe
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l2052.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1046.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1042.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1041.dll
    2009-03-25 22:03:17 —-RA—- C:WINDOWSsystem32fdco_l1040.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco1ins.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1036.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1034.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1031.dll
    2009-03-25 22:03:16 —-RA—- C:WINDOWSsystem32fdco_l1028.dll
    2009-03-25 22:03:16 —-A—- C:WINDOWSsystem32fdco1.dll
    2009-03-25 22:03:12 —-RA—- C:WINDOWSsystem32bdco1ins.dll
    2009-03-25 22:03:12 —-D—- C:WINDOWSNV4088424.TMP
    2009-03-25 22:03:12 —-A—- C:WINDOWSsystem32nvconrm.dll
    2009-03-25 22:03:12 —-A—- C:WINDOWSsystem32bdco1.dll
    2009-03-24 20:53:31 —-D—- C:Netgear
    2009-03-22 19:35:21 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataEgoset
    2009-03-16 20:50:02 —-D—- C:Program FilesGp3

    ======List of files/folders modified in the last 1 months======

    2009-04-04 10:29:40 —-D—- C:WINDOWSTemp
    2009-04-03 18:31:19 —-D—- C:WINDOWSsystem32
    2009-04-03 11:22:53 —-D—- C:WINDOWSsystem32drivers
    2009-04-03 11:22:51 —-D—- C:WINDOWS
    2009-04-02 18:42:47 —-D—- C:WINDOWSPrefetch
    2009-04-02 15:49:07 —-A—- C:WINDOWSSchedLgU.Txt
    2009-04-02 13:58:10 —-A—- C:WINDOWSNeroDigital.ini
    2009-03-30 21:04:03 —-RD—- C:Program Files
    2009-03-30 18:35:44 —-D—- C:WINDOWSsystem32CatRoot2
    2009-03-30 18:08:35 —-D—- C:WINDOWSSoftwareDistribution
    2009-03-30 18:07:39 —-RSHDC—- C:WINDOWSsystem32dllcache
    2009-03-30 18:07:38 —-HD—- C:WINDOWSinf
    2009-03-30 18:07:38 —-D—- C:WINDOWSHelp
    2009-03-30 18:07:38 —-D—- C:Program FilesInternet Explorer
    2009-03-30 18:05:43 —-D—- C:WINDOWSMedia
    2009-03-30 14:15:07 —-D—- C:WINDOWSsystem32CatRoot
    2009-03-30 14:13:26 —-D—- C:WINDOWSsystem32CatRoot_bak
    2009-03-30 13:55:45 —-HD—- C:WINDOWS$hf_mig$
    2009-03-30 13:41:18 —-D—- C:WINDOWSMinidump
    2009-03-30 13:41:18 —-D—- C:WINDOWSDebug
    2009-03-30 13:29:36 —-D—- C:Program FilesGSC World Publishing
    2009-03-29 13:39:05 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
    2009-03-26 23:33:43 —-D—- C:Program FilesMessenger
    2009-03-26 23:32:38 —-D—- C:WINDOWSsystem32config
    2009-03-26 23:22:18 —-SHD—- C:WINDOWSInstaller
    2009-03-26 23:22:18 —-D—- C:WINDOWSWinSxS
    2009-03-26 20:25:42 —-SH—- C:boot.ini
    2009-03-26 20:25:42 —-A—- C:WINDOWSwin.ini
    2009-03-26 20:25:42 —-A—- C:WINDOWSsystem.ini
    2009-03-26 20:24:44 —-ASD—- C:Program FilesNewDotNet
    2009-03-26 20:18:47 —-D—- C:Program FilesWinRAR
    2009-03-25 21:56:05 —-HD—- C:Program FilesInstallShield Installation Information
    2009-03-25 21:55:52 —-D—- C:NVIDIA
    2009-03-25 20:26:47 —-D—- C:Documents and SettingsЛЕХА.E0F5063BC4524F7Application DataMSN6
    2009-03-24 22:08:00 —-D—- C:Program FilesNetMeeting
    2009-03-22 19:33:21 —-D—- C:WINDOWSsystem32DirectX
    2009-03-22 19:26:41 —-D—- C:Program FilesBuka
    2009-03-16 21:19:52 —-D—- C:Games

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2009-02-06 26944]
    R1 AmdK8;AMD Processor Driver; C:WINDOWSsystem32DRIVERSAmdK8.sys [2005-03-09 36352]
    R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2009-02-06 114768]
    R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2009-02-06 51376]
    R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-02-06 20560]
    R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2009-02-06 94032]
    R2 irda;ИК-протокол IrDA; C:WINDOWSsystem32DRIVERSirda.sys [2004-08-04 87424]
    R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2009-02-06 23152]
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2006-04-06 4258816]
    R3 irsir;Драйвер для инфракрасного последовательного порта Microsoft; C:WINDOWSsystem32DRIVERSirsir.sys [2001-08-18 18688]
    R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:WINDOWSsystem32DRIVERSNVENETFD.sys [2006-03-22 52736]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:WINDOWSsystem32DRIVERSnvnetbus.sys [2006-03-22 18944]
    R3 Rasirda;Минипорт WAN (IrDA); C:WINDOWSsystem32DRIVERSrasirda.sys [2001-08-18 19584]
    R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-04 26624]
    R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-04 57600]
    R3 usbohci;Драйвер минипорта Microsoft USB открытого хост-контроллера; C:WINDOWSsystem32DRIVERSusbohci.sys [2004-08-04 17024]
    S3 dtscsi;dtscsi; C:WINDOWSSystem32Driversdtscsi.sys [2007-10-16 223128]
    S3 GMSIPCI;GMSIPCI; ??D:INSTALLGMSIPCI.SYS []
    S3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
    S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2007-08-30 55216]
    S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2007-08-30 6576]
    S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2007-08-30 89872]
    S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2007-08-30 81728]
    S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2007-08-30 79488]
    S3 NTACCESS;NTACCESS; ??D:NTACCESS.sys []
    S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM); C:WINDOWSsystem32DRIVERSsea1bus.sys [2007-02-08 61536]
    S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSsea1mdfl.sys [2007-02-08 9360]
    S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSsea1mdm.sys [2007-02-08 97088]
    S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSsea1mgmt.sys [2007-02-08 88624]
    S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS); C:WINDOWSsystem32DRIVERSsea1nd5.sys [2007-02-08 18704]
    S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSsea1obex.sys [2007-02-08 86432]
    S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM); C:WINDOWSsystem32DRIVERSsea1unic.sys [2007-02-08 90800]
    S3 SetupNTGLM7X;SetupNTGLM7X; ??D:NTGLM7X.sys []
    S3 SONYPVU1;Драйвер Sony USB фильтра (SONYPVU1); C:WINDOWSsystem32DRIVERSSONYPVU1.SYS [2001-08-17 7552]
    S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
    S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
    S3 usbser;Motorola USB Modem Driver; C:WINDOWSsystem32DRIVERSusbser.sys [2004-08-03 25600]
    S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
    S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-02-06 18752]
    R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-02-06 138680]
    R2 Irmon;Монитор инфракрасной связи; C:WINDOWSsystem32svchost.exe [2008-04-12 14336]
    R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
    R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2008-01-17 66872]
    R2 PnkBstrB;PnkBstrB; C:WINDOWSsystem32PnkBstrB.exe [2008-01-17 103736]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-02-06 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-02-06 352920]
    S2 pr2ah2gb;UFO Afterlight Drivers Auto Removal (pr2ah2gb); C:WINDOWSsystem32pr2ah2gb.exe [2007-02-22 407168]
    S2 sfrem01;SF FrontLine Drivers Auto Removal (v1); C:WINDOWSsystem32sfrem01.exe [2006-07-05 358008]
    S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]

    EOF

    1 апреля, 2009 в 4:17 пп в ответ на: Лента с фотографиями #23131
    ge5an
    Participant
    • Темы:1
    • Сообщений:5
    • ☆

    Антивирус avast только что обнаружил вирус.После его удаления лента с фото исчезла! Надо ли теперь выполнять предложенные действия?

  • Автор
    Сообщения
Просмотр 4 сообщений - с 1 по 4 (из 4 всего)

Добро пожаловать

На нашем сайте размещены инструкции и программы, которые помогут вам абсолютно бесплатно и самостоятельно удалить навязчивую рекламу, вирусы и трояны.

Поиск

Важные инструкции

Этот параметр включен администратором
Рекламный вирус в Планировщике заданий
Проверка на вирусы Андроид телефона
Как удалить вирус с телефона Андроид (Инструкция)
Как запустить компьютер в безопасном режиме (Safe Mode)
Как удалить всплывающие окна

СПАЙВАРЕ РУ

  • О Спайваре Ру
  • Контакты
  • Реклама на сайте
  • Политика конфиденциальности
  • Правила использования

Нужна помощь?

Задайте свой вопрос прямо сейчас кликнув по следующей ссылке Задать вопрос.

Или обратитесь на наш форум, где команда Spyware-ru поможет вам. Узнайте, как попросить о помощи здесь.

Ссылки

  • Инструкции
  • Скачать программы
  • Помощь в удалении вирусов
  • Как вылечить компьютер
Copyright © 2008 - 2024 Spyware-RU.com (en)