Microsoft Pop Up, spune-mi Am un Nume

**hopthwoks** · #1 3 iulie 2009, 00:31

Am avut Microsoft pop sus spune-mi Am avut un virus trecut malwarebyts nimic. Fugit super anti-virus a arătat 16 problema. Amintit apoi că am avut Drweb scanerului în calculator şi el a fugit. Dar am observat că aceeaşi aşa-numitele Trojan păstrează vii.

aolcinst.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ Program Files \ Common Files \ aolback \ Comps \ antrenor \ aolcinst.exe; Adware.Gdow n;;
aolcinst.exe; C: \ Program Files \ Common Files \ aolback \ Comps \ antrenor; Arhiva conţine infectate obiecte; Moved.;
TSSetup.exe \ data002; C: \ Program Files \ Common Files \ aolback \ Comps \ tpspd \ TSSetup.exe; Probabil DLOADER.Trojan;;
TSSetup.exe; C: \ Program Files \ Common Files \ aolback \ Comps \ tpspd; Arhiva conţine infectate obiecte; Moved.;
ppctl.dll; C: \ Program Files \ Common Files \ Scanner; Probabil DLOADER.Trojan; Moved.;
AIM.exe \ data090; C: \ AOL Instant Messenger \ AIM.exe; Adware.Aws;;
AIM.exe; C: \ AOL Instant Messenger; Arhiva conţine infectate obiecte; Moved.;
setup.exe; C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4; Probabil BACKDOOR.Trojan; Moved.;
A0089111.ocx; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP212; Adware.Gdown; Moved.;
A0089113.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP212; Probabil BACKDOOR.Trojan; Moved.;
A0101519.exe \ data090; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP217 \ A0101519.exe; Adware.Aws;;
A0101519.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP217; Arhiva conţine infectate obiecte; Moved.;
A0122098.bat; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP257; Probabil BATCH.Virus; Moved.;
A0122542.bat; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP265; Probabil BATCH.Virus; Moved.;
A0122632.bat; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP265; Probabil BATCH.Virus; Moved.;
A0138379.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP292 \ A0138379.exe; Adware.Gdown;;
A0138379.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP292; Arhiva conţine infectate obiecte; Moved.;
A0139338.exe \ data090; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139338.exe; Adware.Aws;;
A0139338.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arhiva conţine infectate obiecte; Moved.;
A0139364.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139364.exe; Adware.Gdown;;
A0139364.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arhiva conţine infectate obiecte; Moved.;
A0139386.exe \ data002; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139386.exe; Probabil DLOADER.Trojan;;
A0139386.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arhiva conţine infectate obiecte; Moved.;
A0139531.DLL; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP296; Probabil DLOADER.Trojan; Moved.;
A0156077.exe \ data090; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156077.exe; Adware.Aws;;
A0156077.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arhiva conţine infectate obiecte; Moved.;
A0156103.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156103.exe; Adware.Gdown;;
A0156103.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arhiva conţine infectate obiecte; Moved.;
A0156125.exe \ data002; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156125.exe; Probabil DLOADER.Trojan;;
A0156125.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arhiva conţine infectate obiecte; Moved.;
A0156545.DLL; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP317; Probabil DLOADER.Trojan; Moved.;
A0157937.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157937.exe; Adware.Gdown;;
A0157937.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arhiva conţine infectate obiecte; Moved.;
A0157938.exe \ data002; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157938.exe; Probabil DLOADER.Trojan;;
A0157938.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arhiva conţine infectate obiecte; Moved.;
A0157939.exe \ data090; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157939.exe; Adware.Aws;;
A0157939.exe; C: \ System Volume Information \ _Restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arhiva conţine infectate obiecte; Moved.;
Şi aceasta nu se va rezolva problema doar misca.
Ce ar trebui să utilizez pentru a obţine că trojan off de pe computer o dată pentru totdeauna?
Chiar acum nu am nici anti-virus care rulează din acest motiv am tryed toată lumea, indiferent dacă este plătit pentru a păstra sau gratuit trăgând AOL. (ISP-ul meu), ca un virus.

**evilfantasy** · #2 3 iulie 2009, 10:09

Update Malwarebytes şi executaţi o scanare completă, atunci vă rugăm să post de jurnal.

**hopthwoks** · #3 3 iulie 2009, 13:29

actualizat malwarebytes
Malwarebytes' Anti-Malware 1.38
Baza de date versiune: 2297
Windows 5.1.2600 Service Pack 2
7.2.2009 3:06:04
mbam-log-2009-07-02 (15-06-04). txt
Scan type: Full Scan (C: \ |)
Obiecte scanate: 168556
Timpul scurs: 17 minute (s), 16 secunde (s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Chei de Registry Infected: 0
Registry Values Infected: 0
Registrul de date Elemente Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(Nici un rău elemente detectat)
Memory Modules Infected:
(Nici un rău elemente detectat)
Chei de Registry Infected:
(Nici un rău elemente detectat)
Registry Values Infected:
(Nici un rău elemente detectat)
Registrul de date Elemente Infected:
(Nici un rău elemente detectat)
Folders Infected:
(Nici un rău elemente detectat)
Files Infected:
(Nici un rău elemente detectat)

Dar, după această scanare a fost de peste o fereastră poped până spui acolo a fost o eroare si ferestre necesare pentru a închide.

**evilfantasy** · #4 3 iulie 2009, 14:52

Descarca DDS de la | Aici | sau | Aici | sau | Aici | şi salvaţi-l pe desktop.

Vista utilizatori click dreapta pe DDS şi selectaţi Executare ca administrator (veţi primi o UAC prompt, vă rugăm să îi permită)

* XP users Faceţi dublu clic pe DDS să îl rulaţi.
* Dacă antivirus sau firewall, încercaţi să blocaţi DDS atunci vă rugăm să îi permită să ruleze.
* După ce aţi terminat DDS va deschide două (2) jurnalele.

1) DDS.txt
2) Attach.txt

* Salvaţi ambele jurnalele de pe desktop.
* Vă rugăm să copiaţi şi să inseraţi întregul conţinut al ambele jurnalele la următoarea replică.

Notă: DDS va instrui te pentru a posta Attach.txt jurnal ca o ataşare.
Vă rugăm să-l doar post pe care l-aţi orice alt jurnal de copiaţi şi lipiţi-o în răspunsul.

----------

Descărca Rooter.exe pe spaţiul de lucru

* Rooter.exe dublu clic pentru a începe instrument .* A DOS va apărea fereastra de scanare şi a arăta progresul.
* După ce completează un notepad dosar conţinând raport se va deschide.
* Copy & paste rezultatele în următoarea replică.
* Close notepad Rooter şi se va închide.

Un jurnal de asemenea, va salva de la % systemdrive% \ Rooter.txt (În cazul în care% systemdrive% este, de obicei, C: sau unitatea de stocare pe care le-aţi instalat Windows).

**hopthwoks** · #5 3 iulie 2009, 17:13

DDS (Ver_09-06 - 26.01) - FAT32x86
Fugi de utilizator Windows la 19:43:32.90 pe Vineri 07.03.2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1023.788 [GMT -4:00]

============== Running Processes ===============
C: \ Windows \ system32 \ Svchost-k DcomLaunch
Svchost.exe
C: \ Windows \ system32 \ svchost.exe-k netsvcs
Svchost.exe
Svchost.exe
C: \ Windows \ system32 \ Spoolsv.exe
Svchost.exe
C: \ Program Files \ Common Files \ AOL \ ACS \ AOLAcsd.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ Windows \ system32 \ snmp.exe
C: \ Windows \ system32 \ svchost.exe-k imgsvc
C: \ WINDOWS \ Explorer.exe
C: \ Program Files \ Lexmark 5200 serii \ lxbtbmgr.exe
C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files \ Lexmark 5200 serii \ lxbtbmon.exe
C: \ Program Files \ Common Files \ AOL \ 1246084174 \ ee \ AOLSoftware.exe
C: \ Program Files \ Common Files \ AOL \ ACS \ AOLDial.exe
C: \ Windows \ system32 \ Ctfmon.exe
C: \ Program Files \ Jet Screenshot \ jetScreenshot.exe
C: \ Windows \ system32 \ wuauclt.exe
C: \ Program Files \ America Online 9.0 \ waol.exe
C: \ Program Files \ America Online 9.0 \ shellmon.exe
C: \ Windows \ system32 \ rundll32.exe
C: \ DOCUME ~ 1 \ WINDOW ~ 1 \ MYDOCU ~ 1 \ dds.scr
============== Pseudo HJT Raport ===============
uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q = (searchTerms) & sourceid = ie7 & SLR = com.micros oft: en-US & ie = utf8 & OE = utf8
uStart Page = hxxp: / / www.aol.com/
uWindow title = Internet Explorer, oferit de epix ®
mWindow title = Internet Explorer, oferit de epix ®
BHO: AskBar BHO: (201f27d4-3704-41d6-89c1-aa35e39143ed) - C: \ Program Files \ askbardis \ bar \ bin \ askBar.dll
BHO: Java (tm) Plug-in 2 SSV Helper: (dbc80044-a445-435b-bc74-9c25c1c588a9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
BHO: JQSIEStartDetectorImpl Clasa: (e7e6f031-17ce-4c07-bc86-eabfe594f69c) - C: \ Program Files \ Java \ jre6 \ lib \ implica \ jqs \ ie \ jqs_plugin.dll
TB: AIM Cautati: (40d41a8b-d79b-43d7-99a7-9ee0f344c385) --
TB: AOL Toolbar: (4982d40a-c53b-4615-b15b-b5b5e98d167c) - C: \ Program Files \ AOL bara de instrumente \ toolbar.dll
TB: Pune Toolbar: (3041d03e-fd4b-44e0-b742-2d9b88305f98) - C: \ Program Files \ askbardis \ bar \ bin \ askBar.dll
EB: Real.com: (fe54fa40-d68c-11D2-98fa-00c0f0318afe) - c: \ windows \ system32 \ Shdocvw.dll
uRun: [Ctfmon.exe] c: \ windows \ system32 \ Ctfmon.exe
uRun: [AOL Fast Start] "C: \ Program Files \ America Online 9.0 \ AOL.EXE"-b
uRun: [Jet Screenshot] "C: \ Program Files \ jet screenshot \ jetScreenshot.exe"
mRun: [Lexmark 5200 serie] "C: \ Program Files \ Lexmark 5200 serii \ lxbtbmgr.exe"
mRun: [LXBTCATS] rundll32 C: \ windows \ system32 \ bobina \ drivers \ w32x86 \ 3 \ LXBTtim e.dll, _RunDLLEntry @ 16
mRun: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
mRun: [HostManager] C: \ Program Files \ Common Files \ AOL \ 1246084174 \ ee \ AOLSoftware.exe
mRun: [AOLDialer] C: \ Program Files \ Common Files \ AOL \ ACS \ AOLDial.exe
mRun: [Pure Networks Port Magic] "c: \ progra ~ 1 \ purene ~ 1 \ portma ~ 1 \ PortAOL.exe"-Run
mRun: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
IE: & Adăugaţi animaţie la IncrediMail Stil Box - C: \ Program Files \ incredimail \ bin \ resurse \ WebMenuImg.htm
IE: & AIM Căutare
IE: & AOL Toolbar Search - C: \ Program Files \ AOL bara de instrumente \ toolbar.dll / SEARCH.HTML
IE: (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network de diagnostic \ xpnetdiag.exe
IE: (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
IE: (4982D40A-C53B-4615-B15B-B5B5E98D167C) - (4982D40A-C53B-4615-B15B-B5B5E98D167C) - C: \ Program Files \ AOL bara de instrumente \ toolbar.dll
IE: (CD67F990-D8E9-11D2-98FE-00C0F0318AFE) - (FE54FA40-D68C-11D2-98FA-00C0F0318AFE) - c: \ windows \ system32 \ Shdocvw.dll
LSP: FarLsp.dll
Zona de încredere: 88sears.com \ www
Zona de încredere: aol.com \ www
Zona de încredere: comodo.com \ www
Zona de încredere: computer-juice.com \ www
Zona de încredere: giveawayoftheday.com \ www
Zona de încredere: newegg.com \ www
Zona de încredere: pchelpforum.com \ www
Zona de încredere: searscard.com \ www
Zona de încredere: statefarm.com \ www
Zona de încredere: winpatrol.com \ www
DPF: DirectAnimation Java Classes
DPF: Internet Explorer clasele pentru Java
DPF: Microsoft XML Parser pentru Java
DPF: Win32 Classes
DPF: (05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8) - hxxp: / / download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab
DPF: (15589FA1-C456-11CE-BF01-00AA0055595A) - hxxp: / / w4s2.work4sure.com/c/ge/w4sgeen9.exe
DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) - hxxp: / / download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) - hxxp: / / update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab? 1181748806125
DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) - hxxp: / / update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab? 1223016488385
DPF: (8AD9C840-044E-11D1-B3E9-00805F499D93) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: (A90A5822-F108-45AD-8482-9BC8B12DD539) - hxxp: / / www.crucial.com / controale / cpcScanner.cab
DPF: (B1E2B96C-12FE-45E2-BEF1-44A219113CDD) - hxxp: / / www.superadblocker.com / ActiveX / sabspx.cab
DPF: (CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: (CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) - hxxp: / / download.macromedia.com / pub / Shockwave / cabinelor / flash / swflash.cab
DPF: (E8F628B5-259A-4734-97EE-BA914D7BE941) - hxxp: / / plugin.driveragent.com / imagini / driveragent.cab
AppInit_DLLs: c: \ windows \ system32 \ cssdll32.dll
LSA: Notificarea Pachete = scecli
============= SERVICII / DRIVERELOR ===============
R1 SASDIFSV; SASDIFSV; C: \ Program Files \ superantispyware \ sasdifsv.sys [2006-10-10 5632]
R1 SASKUTIL; SASKUTIL; C: \ Program Files \ superantispyware \ SASKUTIL.SYS [2007-2-27 32256]
R3 Winacusb; Winacusb; c: \ windows \ system32 \ drivers \ wina cusb.sys [2008-3-25 902860]
S2 ioloFileInfoList; iolo FileInfoList Service; C: \ Program Files \ iolo \ comun \ lib \ ioloservicemanager.exe -> C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe [?]
S2 ioloSystemService; iolo System Service; C: \ Program Files \ iolo \ comun \ lib \ ioloservicemanager.exe -> C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe [?]
S3 FarStoneFireWallDrive; FarStoneFireWallDrive; C: \ win dows \ system32 \ drivers \ FarDrive.sys [2003-4-2 140256]
S3 ousb2hub; OrangeWare hub USB 2.0 de suport; c: \ windows \ system32 \ drivers \ ousb2hub.sys [2008-2-27 53248]
S3 PavSRK.sys; PavSRK.sys; \?? \ C: \ windows \ system32 \ pavs rk.sys -> c: \ windows \ system32 \ PavSRK.sys [?]
S3 PavTPK.sys; PavTPK.sys; \?? \ C: \ windows \ system32 \ pavt pk.sys -> c: \ windows \ system32 \ PavTPK.sys [?]
S3 SASENUM; SASENUM; C: \ Program Files \ superantispyware \ SASENUM.SYS [2006-2-16 4096]
S3 SIVDRIVER; SIV Kernel driver; c: \ windows \ system32 \ drivers \ SIVX32.sys [2008-4-9 48480]
============== Asocierile de fişiere ===============
JSEFile = NOTEPAD.EXE% 1
VBEFile = NOTEPAD.EXE% 1
Vbsfile = NOTEPAD.EXE% 1
=============== Creat Ultimele 30 de ================
2009-07-03 02:49 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ licente
2009-07-03 02:49 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ PCMM2009
2009-07-03 02:48 <DIR> - d ----- C: \ Program Files \ PC MightyMax 2009
2009-07-01 09:43 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ ArcticLine
2009-07-01 09:43 <DIR> - d ----- C: \ Program Files \ Jet Screenshot
2009-06-27 02:36 <DIR> - d ----- C: \ windows \ system32 \ CatRoot_bak
2009-06-27 02:30 <DIR> - d ----- C: \ Install iTunes
2009-06-27 02:30 <DIR> - d ----- C: \ Install ICQ
2009-06-27 02:30 <DIR> - d ----- C: \ AOL Instant Messenger
2009-06-27 02:30 <DIR> - d ----- C: \ MAV
2009-06-27 02:29 <DIR> - d ----- C: \ Program Files \ Common Files \ aolshare
2009-06-27 02:29 <DIR> - d ----- C: \ Program Files \ America Online 9.0
2009-06-24 22:33 221.184 un ------- c: \ windows \ system32 \ wmpns.dll
2009-06-24 22:05 <DIR> - d ----- C: \ windows \ system32 \ scripting
2009-06-24 22:05 <DIR> - d ----- C: \ windows \ l2schemas
2009-06-24 22:05 <DIR> - d ----- C: \ windows \ system32 \ en
2009-06-24 22:05 <DIR> - d ----- C: \ windows \ system32 \ biţi
2009-06-24 21:56 67.584 o ------- C: \ windows \ system32 \ drivers \ sdbus.sys
2009-06-24 21:56 36.096 o ------- C: \ windows \ system32 \ drivers \ intelppm.sys
2009-06-24 21:56 15.488 o ------- C: \ windows \ system32 \ drivers \ mssmbios.sys
2009-06-24 21:56 12.416 o ------- C: \ windows \ system32 \ drivers \ tunmp.sys
2009-06-24 21:56 11.136 o ------- C: \ windows \ system32 \ drivers \ sffdisk.sys
2009-06-24 21:56 10.240 o ------- C: \ windows \ system32 \ drivers \ sffp_sd.sys
2009-06-24 21:56 262.784 un ------- C: \ windows \ system32 \ drivers \ Http.sys
2009-06-24 21:54 2.012.670 un ------- c: \ windows \ system32 \ dllcache \ nt5.cat
2009-06-24 21:53 114.688 un ------- c: \ windows \ system32 \ dllcache \ wscript.exe
2009-06-24 21:50 <DIR> - d ----- C: \ windows \ EHome
2009-06-24 02:10 <DIR> - d ----- C: \ Program Files \ SNSafe & Software
2009-06-24 02:10 <DIR> - d ----- C: \ docume ~ 1 \ alluse ~ 1 \ applic ~ 1 \ SNSafe & Software
2009-06-20 20:46 246.272 -------- C: \ windows \ system32 \ dllcache \ ieproxy.dll
2009-06-20 20:46 12.800 -------- C: \ windows \ system32 \ dllcache \ xpshims.dll
2009-06-17 20:32 <DIR> - dsh --- C: \ FOUND.020
2009-06-17 10:03 <DIR> - DH --- c: \ windows \ ie8
2009-06-16 19:54 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ AVS4YOU
2009-06-16 19:54 <DIR> - d ----- C: \ docume ~ 1 \ alluse ~ 1 \ applic ~ 1 \ AVS4YOU
2009-06-16 19:53 <DIR> - d ----- C: \ Program Files \ Common Files \ AVSMedia
2009-06-16 19:53 1.700.352 un ------- c: \ windows \ system32 \ GdiPlus.dll
2009-06-16 19:53 974.848 un ------- c: \ windows \ system32 \ mfc70.dll
2009-06-16 19:53 487.424 un ------- c: \ windows \ system32 \ msvcp70.dll
2009-06-16 19:53 344.064 un ------- c: \ windows \ system32 \ msvcr70.dll
2009-06-16 19:53 <DIR> - d ----- C: \ Program Files \ AVS4YOU
2009-06-12 21:45 3.120 o ------- c: \ windows \ MF_C426.lfa
2009-06-11 16:27 <DIR> - d ----- C: \ Program Files \ proaspete RAM
2009-06-11 16:21 <DIR> - dsh --- C: \ FOUND.019
2009-06-11 11:55 5.465.088 un ------- C: \ proaspete RAM.msi
2009-06-09 02:29 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ Blitware
2009-06-09 02:29 <DIR> - d ----- C: \ Program Files \ Driver Robot
2009-06-08 22:24 <DIR> - d ----- C: \ docume ~ 1 \ alluse ~ 1 \ applic ~ 1 \ Drivers Sediul PC
2009-06-07 23:00 <DIR> - d ----- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ GetRightToGo
2009-06-07 19:38 7.680 o ------- c: \ windows \ system32 \ spdwnwxp.exe
2009-06-07 19:38 19.569 o ------- c: \ windows \ 002865_.tmp
2009-06-06 23:57 <DIR> - dsh --- C: \ reciclate
2009-06-06 10:46 <DIR> - d ----- C: \ Program Files \ filehippo.com
2009-06-04 23:59 <DIR> - d ----- C: \ Program Files \ DrWeb
2009-06-03 23:57 <DIR>-o dshr - C: \ cmdcons
2009-06-03 23:28 161.792 un ------- c: \ windows \ SWREG.exe
2009-06-03 23:28 98.816 o ------- c: \ windows \ sed.exe
==================== Find3M ====================
2009-06-27 02:16 76.487 o ------- c: \ windows \ pchealth \ helpctr \ offlinecache \ index.dat
2009-06-17 11:27 38.160 o ------- C: \ windows \ system32 \ drivers \ mbamswissarmy.sys
2009-06-17 11:27 19.096 o ------- C: \ windows \ system32 \ drivers \ mbam.sys
2009-06-11 18:43 1.744 o ------- c: \ windows \ system32 \ d3d9caps.dat
2009-05-27 11:21 372 o ------- C: \ Program Files \ ujhonz.txt
2009-05-21 11:33 410.984 un ------- c: \ windows \ system32 \ deploytk.dll
2009-05-13 01:15 5.936.128 un ------- c: \ windows \ system32 \ dllcache \ Mshtml.dll
2009-05-13 01:15 915.456 un ------- c: \ windows \ system32 \ Wininet.dll
2009-05-13 01:15 915.456 un ------- c: \ windows \ system32 \ dllcache \ Wininet.dll
2009-05-12 01:11 102.912 -------- C: \ windows \ system32 \ dllcache \ iecompat.dll
2009-05-07 11:44 344.064 un ------- c: \ windows \ system32 \ localspl.dll
2009-05-07 11:44 344.064 un ------- c: \ windows \ system32 \ dllcache \ localspl.dll
2009-04-30 17:22 1.985.024 un ------- c: \ windows \ system32 \ dllcache \ iertutil.dll
2009-04-30 17:22 11.064.832 un ------- c: \ windows \ system32 \ dllcache \ ieframe.dll
2009-04-30 17:22 1.207.808 un ------- c: \ windows \ system32 \ dllcache \ urlmon.dll
2009-04-30 17:22 385.536 un ------- c: \ windows \ system32 \ dllcache \ iedkcs32.dll
2009-04-30 17:22 25.600 o ------- c: \ windows \ system32 \ dllcache \ jsproxy.dll
2009-04-30 07:21 173.056 un ------- c: \ windows \ system32 \ dllcache \ ie4uinit.exe
2009-04-22 00:07 253.688 un ------- c: \ windows \ system32 \ cssdll32.dll
2009-04-17 05:58 1.846.656 un ------- c: \ windows \ system32 \ Win32k.sys
2009-04-17 05:58 1.846.656 un ------- c: \ windows \ system32 \ dllcache \ Win32k.sys
2009-04-15 11:26 583.168 un ------- c: \ windows \ system32 \ Rpcrt4.dll
2009-04-15 11:26 583.168 un ------- c: \ windows \ system32 \ dllcache \ Rpcrt4.dll
2008-03-18 03:11 332 o ------- C: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ wklnhst.dat
2007-06-10 23:19 11.079 o ------- C: \ Program Files \ folder.htt
2007-06-10 23:19 266 sh --- --- C: \ Program Files \ Desktop.ini
============= FINISH: 19:43:58.97 ===============
Cu excepţia cazurilor SPECIFIC instruiţi, NU POSTA PREZENTUL LOG.
Dacă este solicitat, ZIP-l Ataşaţi & IT
DDS (Ver_09-06 - 26.01)
Microsoft Windows XP Home Edition
Boot Device: \ Device \ HarddiskVolume1
Instalaţi Data: 6/13/2007 12:27:51
Sistemul de uptime: 7/3/2009 6:50:56 PM (1 oră în urmă)
Plăci de bază: ECS | | K7S5A
Procesor: AMD Athlon (tm) XP 1900 + | Socket-A | 1593/66mhz
==== Disk Partiţiile =========================
R: este Removable
C: este fix (FAT32) - 112 scoabă total, 90.479 scoabă liberă.
D: este CDROM-ul ()
==== Disabled Device Manager Elemente =============
==== Sistemul de puncte de restaurare ===================
RP205: 3/27/2009 3:00:16 AM - Software Distribution Service 3.0
RP206: 3/27/2009 3:38:07 AM - Software Distribution Service 3.0
RP207: 3/28/2009 3:52:35 AM - Sistemul de Checkpoint
RP208: 3/29/2009 10:01:09 PM - Software Distribution Service 3.0
RP209: 6-6-2009 10:52:13 - Installed sturz cântător Beacon predă Tastarea 15
RP210: 6-6-2009 10:52:30 - Ştearsă sturz cântător Beacon predă Tastarea 15
RP211: 6-6-2009 10:52:49 - instalat Panda Internet Security 2007
RP212: 6-6-2009 10:53:06 - Ştearsă Panda Internet Security 2007
RP213: 5/16/2009 12:48:17 PM - Software Distribution Service 3.0
RP214: 5/17/2009 4:49:29 PM - Software Distribution Service 3.0
RP215: 5/17/2009 5:35:08 PM - Software Distribution Service 3.0
RP216: 5/18/2009 8:44:14 AM - Software Distribution Service 3.0
RP217: 5/18/2009 8:51:46 AM - Software Distribution Service 3.0
RP218: 5/19/2009 12:10:32 PM - Software Distribution Service 3.0
RP219: 5/19/2009 1:35:25 PM - Software Distribution Service 3.0
RP220: 5/20/2009 8:09:36 AM - Software Distribution Service 3.0
RP221: 5/20/2009 9:17:11 AM - Software Distribution Service 3.0
RP222: 5/21/2009 8:36:45 AM - Software Distribution Service 3.0
RP223: 5/21/2009 9:24:15 AM - Software Distribution Service 3.0
RP224: 5/21/2009 3:40:47 PM - Software Distribution Service 3.0
RP225: 5/21/2009 11:38:45 PM - Software Distribution Service 3.0
RP226: 5/22/2009 7:54:23 PM - Software Distribution Service 3.0
RP227: 5/22/2009 10:48:21 PM - Software Distribution Service 3.0
RP228: 5/23/2009 7:15:10 PM - Software Distribution Service 3.0
RP229: 5/24/2009 4:32:34 PM - Software Distribution Service 3.0
RP230: 5/24/2009 6:46:46 PM - Software Distribution Service 3.0
RP231: 5/24/2009 8:21:48 PM - Software Distribution Service 3.0
RP232: 5/24/2009 11:47:56 PM - Software Distribution Service 3.0
RP233: 5/25/2009 8:18:22 AM - Software Distribution Service 3.0
RP234: 5/25/2009 8:39:45 AM - Software Distribution Service 3.0
RP235: 5/25/2009 11:41:13 PM - Software Distribution Service 3.0
RP236: 5/26/2009 10:33:23 AM - Software Distribution Service 3.0
RP237: 5/27/2009 8:13:50 AM - Software Distribution Service 3.0
RP238: 5/27/2009 8:45:24 AM - Software Distribution Service 3.0
RP239: 5/27/2009 7:16:04 PM - Software Distribution Service 3.0
RP240: 5/28/2009 4:52:25 PM - Software Distribution Service 3.0
RP241: 5/28/2009 4:58:56 PM - Software Distribution Service 3.0
RP242: 5/28/2009 5:05:35 PM - instalat Windows Internet Explorer 8.
RP243: 5/28/2009 5:06:37 PM - Software Distribution Service 3.0
RP244: 5/29/2009 8:39:44 AM - Software Distribution Service 3.0
RP245: 5/29/2009 8:52:41 AM - Software Distribution Service 3.0
RP246: 5/30/2009 5:01:53 AM - Software Distribution Service 3.0
RP247: 5/31/2009 9:08:55 PM - Software Distribution Service 3.0
RP248: 6.1.2009 12:30:50 - instalat Windows Internet Explorer 8.
RP249: 6.1.2009 12:31:29 - Software Distribution Service 3.0
RP250: 6/1/2009 1:01:01 AM - Software Distribution Service 3.0
RP251: 6/1/2009 9:59:00 AM - Software Distribution Service 3.0
RP252: 6/2/2009 1:25:10 AM - Software Distribution Service 3.0
RP253: 6/2/2009 1:44:44 PM - Software Distribution Service 3.0
RP254: 6/2/2009 9:42:45 PM - Software Distribution Service 3.0
RP255: 6/3/2009 2:52:20 AM - Software Distribution Service 3.0
RP256: 6.3.2009 10:07:30 - Software Distribution Service 3.0
RP257: 6/3/2009 9:03:54 PM - Software Distribution Service 3.0
RP258: 6/4/2009 1:16:16 AM - Installed MSXML 4.0 SP2 (KB925672)
RP259: 6/4/2009 3:00:13 AM - Software Distribution Service 3.0
RP260: 6/4/2009 3:13:34 AM - Software Distribution Service 3.0
RP261: 6.4.2009 11:59:13 - Installed Dr.Web anti-virus pentru Windows 5.0.
RP262: 6.5.2009 12:36:30 - Ştearsă Dr.Web anti-virus pentru Windows 5.0.
RP263: 6.5.2009 12:38:54 - Ştearsă Dr.Web anti-virus pentru Windows 5.0.
RP264: 6/5/2009 2:22:38 AM - Software Distribution Service 3.0
RP265: 6/6/2009 3:00:14 - Software Distribution Service 3.0
RP266: 6-6-2009 10:51:09 - Software Distribution Service 3.0
RP267: 6.7.2009 12:10:12 - Software Distribution Service 3.0
RP268: 6.8.2009 12:20:37 - Software Distribution Service 3.0
RP269: 6.8.2009 10:03:39 - Software Distribution Service 3.0
RP270: 6.8.2009 10:23:28 - Installed Driver Detective
RP271: 6.8.2009 10:41:57 - Software Distribution Service 3.0
RP272: 6/9/2009 2:32:24 AM - Software Distribution Service 3.0
RP273: 6/9/2009 8:29:05 AM - Software Distribution Service 3.0
RP274: 6/9/2009 1:25:29 PM - Software Distribution Service 3.0
RP275: 6.9.2009 11:06:13 - Software Distribution Service 3.0
RP276: 6/10/2009 8:56:06 AM - Software Distribution Service 3.0
RP277: 6/10/2009 9:40:44 AM - Software Distribution Service 3.0
RP278: 6/11/2009 1:45:31 AM - Software Distribution Service 3.0
RP279: 6/11/2009 4:27:14 PM - Installed proaspete RAM
RP280: 6/11/2009 6:45:39 PM - Configured Driver Detective
RP281: 6/12/2009 1:51:36 AM - Software Distribution Service 3.0
RP282: 6/12/2009 8:55:19 AM - Software Distribution Service 3.0
RP283: 6/13/2009 11:02:27 AM - Software Distribution Service 3.0
RP284: 6/13/2009 11:13:50 AM - Software Distribution Service 3.0
RP285: 6/14/2009 10:49:45 PM - Software Distribution Service 3.0
RP286: 6/15/2009 9:16:53 AM - Software Distribution Service 3.0
RP287: 6/15/2009 11:09:18 PM - Software Distribution Service 3.0
RP288: 6/16/2009 10:07:34 AM - Software Distribution Service 3.0
RP289: 6/17/2009 9:01:20 AM - Software Distribution Service 3.0
RP290: 6/17/2009 10:05:33 AM - instalat Windows Internet Explorer 8.
RP291: 6/18/2009 10:16:10 AM - Software Distribution Service 3.0
RP292: 6/18/2009 10:41:06 AM - instalat Windows Media Format 9 Seria Runtime Setup
RP293: 6/18/2009 1:11:48 PM - instalat Windows Media Format 9 Seria Runtime Setup
RP294: 6/18/2009 1:29:13 PM - Software Distribution Service 3.0
RP295: 6/19/2009 3:01:54 AM - Software Distribution Service 3.0
RP296: 6/19/2009 9:29:35 AM - Software Distribution Service 3.0
RP297: 6/19/2009 5:47:01 PM - Software Distribution Service 3.0
RP298: 6/20/2009 6:59:50 PM - Software Distribution Service 3.0
RP299: 6/20/2009 7:05:46 PM - instalat Java (TM) 6 Update 14
RP300: 6/21/2009 4:07:26 PM - Software Distribution Service 3.0
RP301: 6/21/2009 4:14:22 PM - Software Distribution Service 3.0
RP302: 6/22/2009 9:44:00 AM - Software Distribution Service 3.0
RP303: 6/22/2009 11:31:38 AM - Software Distribution Service 3.0
RP304: 6/23/2009 3:00:23 AM - Software Distribution Service 3.0
RP305: 6/24/2009 9:44:31 AM - Software Distribution Service 3.0
RP306: 6/24/2009 9:55:45 AM - Software Distribution Service 3.0
RP307: 6/24/2009 10:14:50 AM - Software Distribution Service 3.0
RP308: 6/24/2009 9:41:13 PM - Software Distribution Service 3.0
RP309: 6/25/2009 2:52:04 AM - Software Distribution Service 3.0
RP310: 6/25/2009 12:17:49 PM - Software Distribution Service 3.0
RP311: 6/26/2009 9:27:47 PM - Software Distribution Service 3.0
RP312: 6/27/2009 12:41:14 AM - operaţiuni de restaurare
RP313: 6/27/2009 1:35:40 AM - operaţiuni de restaurare
RP314: 6/27/2009 2:25:58 AM - Software Distribution Service 3.0
RP315: 6/27/2009 2:30:41 AM - instalat Windows Media Format 9 Seria Runtime Setup
RP316: 6/28/2009 8:31:27 AM - Software Distribution Service 3.0
RP317: 6/29/2009 10:03:24 AM - Software Distribution Service 3.0
RP318: 6/29/2009 6:35:12 PM - Software Distribution Service 3.0
RP319: 6/29/2009 9:00:14 PM - Software Distribution Service 3.0
RP320: 6/30/2009 3:32:09 AM - Software Distribution Service 3.0
RP321: 6/30/2009 11:45:20 AM - Software Distribution Service 3.0
RP322: 7/1/2009 9:15:52 AM - Software Distribution Service 3.0
RP323: 7.1.2009 11:21:44 - Software Distribution Service 3.0
RP324: 7.1.2009 10:38:39 - Software Distribution Service 3.0
RP325: 7/2/2009 3:16:53 AM - Software Distribution Service 3.0
RP326: 7.2.2009 12:22:35 - Software Distribution Service 3.0
RP327: 7/2/2009 7:09:25 PM - Software Distribution Service 3.0
RP328: 7/3/2009 4:04:54 AM - Software Distribution Service 3.0
==== Programe instalate ======================

ABBYY FineReader 5.0 Sprint Plus
Adobe Flash Player 10 ActiveX
AOL Antrenor Version 2.0 (Build: 20,041,026.5 en)
AOL Connectivity Services
AOL Deskbar
AOL Toolbar
AOL dezinstalare (Alegeţi care Produse Pentru a elimina)
AOL ai Imagini Screensaver
C-Media Audio
C-Media Audio WDM Driver
COMODO SafeSurf
Pachet de compatibilitate pentru sistemul Office 2007
Cool PDF Reader 1.0
Robot Driver 1.0.6.0
filehippo.com Update Checker
Proaspete RAM
HackerSmacker
HijackThis 2.0.2
Remedierea rapidă pentru Windows XP (KB896344)
Remedierea rapidă pentru Windows XP (KB914440)
Remedierea rapidă pentru Windows XP (KB915865)
Remedierea rapidă pentru Windows XP (KB952287)
IncrediMail Xe
Java (TM) 6 Update 14
Jet Screenshot v 2.0
Lexmark 5200 Series
Macromedia Shockwave Player
Magentic
Malwarebytes' Anti-Malware
Microsoft. NET Framework 1.1
Microsoft. NET Framework 2.0
Microsoft internaţional Domain Names atenuare API-uri
Microsoft suport pentru limbile naţionale Downlevel API-uri
Microsoft Office PowerPoint Viewer 2007 (în limba engleză)
Microsoft Visual C + + 2005 redistribuibil
Web Microsoft Editura Expert 1.52
Microsoft Works
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6 Service Pack 2 (KB954459)
Pure Networks Port Magic
QuickTime
RealPlayer Basic
Actualizare de securitate pentru Windows Internet Explorer 7 (KB933566)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB937143)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB938127)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB939653)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB942615)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB944533)
Actualizare de securitate pentru Windows Internet Explorer 7 (KB963027)
Actualizare de securitate pentru Windows Internet Explorer 8 (KB969897)
Actualizare de securitate pentru Windows Media Player (KB911564)
Actualizare de securitate pentru Windows Media Player (KB952069)
Actualizare de securitate pentru Windows Media Player 6.4 (KB925398)
Actualizare de securitate pentru Windows Media Player 9 (KB917734)
Actualizare de securitate pentru Windows Media Player 9 (KB936782)
Actualizare de securitate pentru Windows XP (KB893756)
Actualizare de securitate pentru Windows XP (KB896358)
Actualizare de securitate pentru Windows XP (KB896423)
Actualizare de securitate pentru Windows XP (KB896428)
Actualizare de securitate pentru Windows XP (KB899587)
Actualizare de securitate pentru Windows XP (KB899591)
Actualizare de securitate pentru Windows XP (KB900725)
Actualizare de securitate pentru Windows XP (KB901017)
Actualizare de securitate pentru Windows XP (KB901214)
Actualizare de securitate pentru Windows XP (KB902400)
Actualizare de securitate pentru Windows XP (KB904706)
Actualizare de securitate pentru Windows XP (KB905414)
Actualizare de securitate pentru Windows XP (KB905749)
Actualizare de securitate pentru Windows XP (KB908519)
Actualizare de securitate pentru Windows XP (KB911562)
Actualizare de securitate pentru Windows XP (KB911927)
Actualizare de securitate pentru Windows XP (KB913580)
Actualizare de securitate pentru Windows XP (KB914388)
Actualizare de securitate pentru Windows XP (KB914389)
Actualizare de securitate pentru Windows XP (KB917344)
Actualizare de securitate pentru Windows XP (KB917953)
Actualizare de securitate pentru Windows XP (KB918118)
Actualizare de securitate pentru Windows XP (KB918439)
Actualizare de securitate pentru Windows XP (KB919007)
Actualizare de securitate pentru Windows XP (KB920213)
Actualizare de securitate pentru Windows XP (KB920670)
Actualizare de securitate pentru Windows XP (KB920683)
Actualizare de securitate pentru Windows XP (KB920685)
Actualizare de securitate pentru Windows XP (KB921503)
Actualizare de securitate pentru Windows XP (KB922819)
Actualizare de securitate pentru Windows XP (KB923191)
Actualizare de securitate pentru Windows XP (KB923414)
Actualizare de securitate pentru Windows XP (KB923561)
Actualizare de securitate pentru Windows XP (KB923689)
Actualizare de securitate pentru Windows XP (KB923980)
Actualizare de securitate pentru Windows XP (KB924191)
Actualizare de securitate pentru Windows XP (KB924270)
Actualizare de securitate pentru Windows XP (KB924496)
Actualizare de securitate pentru Windows XP (KB924667)
Actualizare de securitate pentru Windows XP (KB925902)
Actualizare de securitate pentru Windows XP (KB926247)
Actualizare de securitate pentru Windows XP (KB926255)
Actualizare de securitate pentru Windows XP (KB926436)
Actualizare de securitate pentru Windows XP (KB927779)
Actualizare de securitate pentru Windows XP (KB927802)
Actualizare de securitate pentru Windows XP (KB928255)
Actualizare de securitate pentru Windows XP (KB928843)
Actualizare de securitate pentru Windows XP (KB929123)
Actualizare de securitate pentru Windows XP (KB930178)
Actualizare de securitate pentru Windows XP (KB931261)
Actualizare de securitate pentru Windows XP (KB931784)
Actualizare de securitate pentru Windows XP (KB932168)
Actualizare de securitate pentru Windows XP (KB933566)
Actualizare de securitate pentru Windows XP (KB933729)
Actualizare de securitate pentru Windows XP (KB935839)
Actualizare de securitate pentru Windows XP (KB935840)
Actualizare de securitate pentru Windows XP (KB936021)
Actualizare de securitate pentru Windows XP (KB938464)
Actualizare de securitate pentru Windows XP (KB938829)
Actualizare de securitate pentru Windows XP (KB941202)
Actualizare de securitate pentru Windows XP (KB941568)
Actualizare de securitate pentru Windows XP (KB941569)
Actualizare de securitate pentru Windows XP (KB941644)
Actualizare de securitate pentru Windows XP (KB941693)
Actualizare de securitate pentru Windows XP (KB943055)
Actualizare de securitate pentru Windows XP (KB943460)
Actualizare de securitate pentru Windows XP (KB943485)
Actualizare de securitate pentru Windows XP (KB944653)
Actualizare de securitate pentru Windows XP (KB945553)
Actualizare de securitate pentru Windows XP (KB946026)
Actualizare de securitate pentru Windows XP (KB946648)
Actualizare de securitate pentru Windows XP (KB948590)
Actualizare de securitate pentru Windows XP (KB948881)
Actualizare de securitate pentru Windows XP (KB950749)
Actualizare de securitate pentru Windows XP (KB950760)
Actualizare de securitate pentru Windows XP (KB950762)
Actualizare de securitate pentru Windows XP (KB950974)
Actualizare de securitate pentru Windows XP (KB951066)
Actualizare de securitate pentru Windows XP (KB951376-v2)
Actualizare de securitate pentru Windows XP (KB951376)
Actualizare de securitate pentru Windows XP (KB951698)
Actualizare de securitate pentru Windows XP (KB951748)
Actualizare de securitate pentru Windows XP (KB952004)
Actualizare de securitate pentru Windows XP (KB952954)
Actualizare de securitate pentru Windows XP (KB953839)
Actualizare de securitate pentru Windows XP (KB954211)
Actualizare de securitate pentru Windows XP (KB954600)
Actualizare de securitate pentru Windows XP (KB955069)
Actualizare de securitate pentru Windows XP (KB956391)
Actualizare de securitate pentru Windows XP (KB956572)
Actualizare de securitate pentru Windows XP (KB956802)
Actualizare de securitate pentru Windows XP (KB956803)
Actualizare de securitate pentru Windows XP (KB956841)
Actualizare de securitate pentru Windows XP (KB957095)
Actualizare de securitate pentru Windows XP (KB957097)
Actualizare de securitate pentru Windows XP (KB958644)
Actualizare de securitate pentru Windows XP (KB958687)
Actualizare de securitate pentru Windows XP (KB958690)
Actualizare de securitate pentru Windows XP (KB959426)
Actualizare de securitate pentru Windows XP (KB960225)
Actualizare de securitate pentru Windows XP (KB960715)
Actualizare de securitate pentru Windows XP (KB960803)
Actualizare de securitate pentru Windows XP (KB961373)
Actualizare de securitate pentru Windows XP (KB961501)
Actualizare de securitate pentru Windows XP (KB968537)
Actualizare de securitate pentru Windows XP (KB969898)
Actualizare de securitate pentru Windows XP (KB970238)
SiS 900 PCI Fast Ethernet Adapter Driver
SIW versiune 2008-04-02
SUPERAntiSpyware Free Edition
The Print Shop 21
US Robotics 56K Faxmodem USB
Actualizare pentru Windows XP (KB894391)
Actualizare pentru Windows XP (KB898461)
Actualizare pentru Windows XP (KB900485)
Actualizare pentru Windows XP (KB904942)
Actualizare pentru Windows XP (KB908531)
Actualizare pentru Windows XP (KB910437)
Actualizare pentru Windows XP (KB911280)
Actualizare pentru Windows XP (KB916595)
Actualizare pentru Windows XP (KB920342)
Actualizare pentru Windows XP (KB920872)
Actualizare pentru Windows XP (KB922582)
Actualizare pentru Windows XP (KB927891)
Actualizare pentru Windows XP (KB930916)
Actualizare pentru Windows XP (KB931836)
Actualizare pentru Windows XP (KB932823-v3)
Actualizare pentru Windows XP (KB933360)
Actualizare pentru Windows XP (KB938828)
Actualizare pentru Windows XP (KB942763)
Actualizare pentru Windows XP (KB955839)
Actualizare pentru Windows XP (KB967715)
Punct de vedere Media Player
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Dezinstalaţi
WinPatrol 2009
Mareste V.92 PCI Voice Faxmodem
Mareste V92 PC Card Voice Faxmodem
==== Event Viewer de mesaje de la Săptămâna trecută ========
7/3/2009 4:23:49 PM, eroare: Eroare de sistem [1003] - Codul de eroare 00000077, parametru1 c000000e, parametru2 c000000e, parametru3 00000000, parametru4 01422000.
7/3/2009 2:33:40 PM, eroare: Eroare de sistem [1003] - Codul de eroare 000000f4, parametru1 00000003, parametru2 86cdb430, parametru3 86cdb5a4, parametru4 805fa1f0.
7/1/2009 10:39:09 PM, eroare: Service Control Manager [7034] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru timp 6 (e).
6/30/2009 5:05:18 PM, eroare: Print [6161] - Documentul Syslog - Notepad deţinute de utilizator Windows nu a reuşit să imprimaţi pe imprimanta Lexmark 5200 Series. Tip de date: LEMF. Dimensiune fişier de ţeavă în bytes: 1208022. Numărul de octeţi tipărite: 1208022. Numărul total de pagini în document: 3. Număr de pagini imprimate: 0. Maşină de clienţi: \ \ SUNPORCH. Win32 codul de eroare returnat de imprimare procesor: 126 (0x7e).
6/29/2009 11:36:01 PM, eroare: Service Control Manager [7000] - SASDIFSV de serviciu nu a reuşit să înceapă din cauza următoarea eroare: Nu se poate crea un fişier, atunci când acest fişier există deja.
6/27/2009 2:24:45 AM, eroare: Service Control Manager [7000] - Încărcaţi Manager serviciu nu a reuşit să înceapă din cauza următoarea eroare: The cont specificat pentru acest serviciu este diferită de cont specificat pentru alte servicii care rulează în acelaşi proces.
6/27/2009 2:24:37 AM, eroare: BITS [16391] - de BITS lista de locuri de muncă nu este recunoscută într-un format. Este posibil să fi fost creat de către o altă versiune de biţi. În lista de locuri de muncă a fost golită.
6/27/2009 2:08:32 AM, eroare: SnsCore [20] --
6/27/2009 2:08:24 AM, eroare: Service Control Manager [7000] - The iolo FileInfoList Serviciul de servicii nu şi-a porni din cauza următoarea eroare: Sistemul nu poate găsi fişierul specificat.
6/27/2009 1:41:24 AM, eroare: Service Control Manager [7023] - The HID Input Service serviciu încheiată cu următoarea eroare: Sistemul nu poate găsi fişierul specificat.
6/27/2009 1:41:24 AM, eroare: Service Control Manager [7000] - iolo de serviciu de sistem de servicii nu şi-a porni din cauza următoarea eroare: Sistemul nu poate găsi fişierul specificat.
6/27/2009 1:36:19 AM, eroare: Service Control Manager [7034] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru timp 5 (e).
6/27/2009 1:36:09 AM, eroare: Service Control Manager [7031] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru 4 timp (e). Următoarele acţiuni de corectare, vor fi luate în 1000 milisecunde: Reporniţi serviciul.
6/27/2009 1:36:01 AM, eroare: Service Control Manager [7031] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru 3 timp (e). Următoarele acţiuni de corectare, vor fi luate în 1000 milisecunde: Reporniţi serviciul.
6/27/2009 1:35:53 AM, eroare: Service Control Manager [7031] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru 2 ora (e). Următoarele acţiuni de corectare, vor fi luate în 1000 milisecunde: Reporniţi serviciul.
6/27/2009 1:35:35 AM, eroare: Service Control Manager [7031] - AOL TopSpeed Monitorul serviciu încetează în mod neaşteptat. Ea a făcut acest lucru 1 ora (e). Următoarele acţiuni de corectare, vor fi luate în 1000 milisecunde: Reporniţi serviciul.
6/27/2009 1:32:44 AM, eroare: DCOM [10005] - DCOM-am eroare "% 1084" a încerca să porniţi serviciul EventSystem cu argumente "" pentru a rula pe server: (1BE1F766-5536-11D1 - B726-00C04FB926AF)
6/27/2009 1:30:38 AM, eroare: Service Control Manager [7026] - Următoarele boot-start sau sistem de start-driver (e) nu a reuşit să sarcină: AFD AmdK7 Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL SnsCore Tcpip WS2IFSL
6/27/2009 1:30:38 AM, eroare: Service Control Manager [7001] - TCP / IP NetBIOS Helper serviciu depinde de AFD serviciu care nu a reuşit să înceapă, din cauza următoarea eroare: Un dispozitiv ataşat la sistem este nu funcţionează.
6/27/2009 1:30:38 AM, eroare: Service Control Manager [7001] - IPsec Servicii serviciu depinde de serviciul IPSec şofer care nu a reuşit să înceapă, din cauza următoarea eroare: Un dispozitiv ataşat la sistem nu funcţionează .
6/27/2009 1:30:38 AM, eroare: Service Control Manager [7001] - DNS Client serviciu depinde de protocolul TCP / IP Driver serviciu care nu a reuşit să înceapă, din cauza următoarea eroare: Un dispozitiv ataşat la sistem nu funcţionează.
6/27/2009 1:30:38 AM, eroare: Service Control Manager [7001] - The DHCP Client Service depinde de NetBIOS peste Tcpip serviciu de care nu şi-a pornit, deoarece din următoarele eroare: Un dispozitiv ataşat la sistem nu este funcţionare.
6/27/2009 1:29:52 AM, eroare: DCOM [10005] - DCOM-am eroare "% 1084" a încerca să porniţi serviciul netman cu argumente "" pentru a rula pe server: (BA126AE5-2166-11D1 - B1D0-00805FC1270E)
6/27/2009 1:19:01 AM, eroare: Service Control Manager [7009] - Timeout (30000 milisecunde) de aşteptare pentru IMAPI CD-Burning COM Service servicii pentru a vă conecta.
6/27/2009 1:19:01 AM, eroare: Service Control Manager [7000] - The IMAPI CD-Burning COM Service serviciu nu a reuşit să înceapă din cauza următoarea eroare: Serviciul nu a răspuns la cererea a începe sau de control în un timp rezonabil.
6/27/2009 1:16:56 AM, eroare: Service Control Manager [7023] - Terminal Services serviciu încheiată cu următoarea eroare: Invalid acces la locaţia de memorie.
6/27/2009 1:16:56 AM, eroare: Service Control Manager [7023] - Serviciul Actualizări automate încheiată cu următoarea eroare:%% 3228369023
6/27/2009 1:16:56 AM, eroare: Service Control Manager [7001] - Comutare rapidă între utilizatori de servicii de compatibilitate depinde de Terminal Services serviciu care nu a reuşit să înceapă, din cauza următoarea eroare: Invalid acces la locaţia de memorie.
6/27/2009 1:05:23 AM, eroare: DCOM [10005] - DCOM-am eroare "% 1084" a încerca să porniţi serviciul wuauserv cu argumente "" pentru a rula pe server: (E60687F7-01A1-40AA - 86AC-DB1CBF673334)
6/26/2009 9:29:28 PM, eroare: Windows Update Agent [20] - Instalare Failure: Windows nu a reuşit să instalaţi următoarea actualizare cu eroare 0x80070643: Microsoft. NET Framework 1.1 Service Pack 1.
==== Sfârşit de fişier ===========================
Rooter.exe (v1.0.2), prin Eric_71
.
SeDebugPrivilege acordat cu succes ...
.
Windows XP Home Edition (5.1.2600) Service Pack 2
[32_bits] - x86 Familiei 6 Model 6 intensificarea 2, AuthenticAMD
.
[wscsvc] (Centrul de securitate) să fie difuzate (de stat: 4)
[SharedAccess] să fie difuzate (de stat: 4)
Windows Firewall -> Enabled
.
Internet Explorer 8.0.6001.18702
.
A: \ [Removable]
C: \ [fix-FAT32] .. (Total: 112 Du-te - Libera: 90 Du-te)
D: \ [CD_Rom]
.
Scan: 19:57.51
Cale: C: \ Documents and Settings \ Windows utilizator \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EI7LBMQF \ Rooter [1]. Exe
User: utilizator Windows (Administrator -> YES)
.
---------------------- \ \ Procese
.
Blocat [System Process] (0)
______ Sistem (4)
______ \ SystemRoot \ System32 \ smss.exe (292)
______ \?? \ C: \ Windows \ system32 \ csrss.exe (348)
______ \?? \ C: \ Windows \ system32 \ winlogon.exe (372)
______ C: \ Windows \ system32 \ services.exe (416)
______ C: \ Windows \ system32 \ lsass.exe (428)
______ C: \ Windows \ system32 \ svchost.exe (576)
______ C: \ Windows \ system32 \ svchost.exe (620)
______ C: \ Windows \ system32 \ svchost.exe (664)
______ C: \ Windows \ system32 \ svchost.exe (708)
______ C: \ Windows \ system32 \ svchost.exe (804)
______ C: \ Windows \ system32 \ Spoolsv.exe (900)
______ C: \ Windows \ system32 \ svchost.exe (980)
______ C: \ Program Files \ Common Files \ AOL \ ACS \ AOLAcsd.exe (1012)
______ C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe (1056)
______ C: \ Windows \ system32 \ snmp.exe (1148)
______ C: \ Windows \ system32 \ svchost.exe (1180)
______ C: \ Windows \ system32 \ alg.exe (1900)
______ C: \ WINDOWS \ Explorer.exe (1124)
______ C: \ Program Files \ Lexmark 5200 serii \ lxbtbmgr.exe (528)
______ C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe (1736)
______ C: \ Program Files \ Lexmark 5200 serii \ lxbtbmon.exe (1468)
______ C: \ Program Files \ Common Files \ AOL \ 1246084174 \ ee \ AOLSoftware.exe (1316)
______ C: \ Program Files \ Common Files \ AOL \ ACS \ AOLDial.exe (1572)
______ C: \ Windows \ system32 \ Ctfmon.exe (1648)
______ C: \ Program Files \ Jet Screenshot \ jetScreenshot.exe (1216)
______ C: \ Windows \ system32 \ wbem \ wmiprvse.exe (2148)
______ C: \ Windows \ system32 \ wuauclt.exe (2428)
______ C: \ Program Files \ America Online 9.0 \ waol.exe (596)
______ C: \ Program Files \ America Online 9.0 \ shellmon.exe (756)
______ C: \ Documents and Settings \ Windows utilizator \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EI7LBMQF \ Rooter [1]. Exe (3388)
.
---------------------- \ \ Device \ HardDisk0 \
.
\ Device \ HardDisk0 [sectoare: 63 x 512 octeţi]
.
\ Device \ HardDisk0 \ Partition1 - [MBR] - (Start_Offset: 32256 | Lungime: 120681275904)
.
---------------------- \ \ Activităţi programate
.
C: \ WINDOWS \ Tasks \ SA.DAT
C: \ WINDOWS \ Tasks \ Desktop.ini
C: \ WINDOWS \ Tasks \ Driver Robot.job
.
---------------------- \ \ Registri
.
.
---------------------- \ \ Fişiere şi foldere
.
C: \ DOCUME ~ 1 \ WINDOW ~ 1 \ APPLIC ~ 1 \ PrivacyControl
==> Rogues <==
.
---------------------- \ \ Scanare finalizată la 19:57.56
.
C: \ Rooter $ \ Rooter_1.txt - (03.07.2009 | 19:57.56)

**evilfantasy** · #6 3 iulie 2009, 19:01

Ştergeţi aceste fişiere / foldere, după cum urmează:

1. Du-te la Porni > Fugi > Tip Notepad.exe şi faceţi clic pe OK pentru a deschide Notepad.
El / ea trebui fi Notepad, nu Wordpad.
2. Copia textul în caseta de mai jos codul de evidenţă tot textul şi apăsând Ctrl + C

Cod:

Killall:: DDS:: BHO: AskBar BHO: (201f27d4-3704-41d6-89c1-aa35e39143ed) - C: \ Program Files \ askbardis \ bar \ bin \ askBar.dll TB: Pune Toolbar: (3041d03e-fd4b-44e0 - b742-2d9b88305f98) - C: \ Program Files \ askbardis \ bar \ bin \ askBar.dll IE: (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe Folder:: c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ licente c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ PCMM2009 C: \ Program Files \ PC MightyMax 2009 C: \ Program Files \ askbardis C: \ Program Files \ Messenger

3. Du-te la fereastră şi faceţi clic pe Notepad Editare > Lipire
4. Apoi, faceţi clic pe Dosar > Economisi
5. Nume de fişier CFScript.txt - Salvaţi fişierul pe spaţiul de lucru
6. Apoi, glisaţi CFScript (ţineţi butonul stânga al mouse-ului în timp ce fişierul de lungă durată) şi fixaţi-l (de eliberare din stânga mouse-ul) în ComboFix.exe după cum puteţi vedea în imaginea de mai jos. Important: Efectua această instrucţiune cu atenţie!

ComboFix vor începe să execute, urmaţi solicitările.
După repornirea sistemului (în cazul în care le cere să reporniţi), aceasta va produce un jurnal pentru tine.
Post că jurnal (Combofix.txt) în următoarea replică.

Notă: Nu mouseclick ComboFix de fereastră în timp ce se execută. Care pot determina sistemul dvs. pentru a se congela

**hopthwoks** · #7 5 iulie 2009, 14:04

Doar trebuie să reîncărcaţi ComboFix. Se pare că fişierul Wes delrtrd Tot ce am este de fişiere text combofix.

**evilfantasy** · #8 5 iulie 2009, 14:28

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

**hopthwoks** · #9 5 iulie 2009, 21:33

Îmi pare rău că a durat atât de mult timp. Am muşcătură de păianjen şi a cheltuielilor a fost de cele mai multe ori căutarea pentru a vedea dacă aş putea afla ce-mi ceva.
Aici este de scanare.
ComboFix 09-07-05.01 - Windows utilizatorului 07/06/2009 0:04.4 - FAT32x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1023.742 [GMT -4:00]
Rularea de la: C: \ Documents and Settings \ utilizator Windows \ Desktop \ ComboFix.exe
Command comutatoare utilizat:: c: \ Documents and Settings \ utilizator Windows \ Desktop \ CFScript.txt
.
Alte ((((((((((((((((((((((((((((((((((((((( ştergerile ))))))))) ))))))))))))))))))))))))))))))))))))))))
.
c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ licente
c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ licente \ PCMightyMax c27fe264-0186-4910-8a97-50c383296a11
c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ PCMM2009
c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ PCMM2009 \ diagnostic \ ultima-scanare
c: \ docume ~ 1 \ fereastra ~ 1 \ applic ~ 1 \ PCMM2009 \ pcmm2009-configurare
C: \ Program Files \ askbardis
C: \ Program Files \ askbardis \ bar \ bin \ askBar.dll
C: \ Program Files \ askbardis \ bar \ bin \ askPopStp.dll
C: \ Program Files \ askbardis \ bar \ bin \ psvince.dll
C: \ Program Files \ askbardis \ bar \ Cache \ files.ini
C: \ Program Files \ askbardis \ bar \ istoric \ căutare
C: \ Program Files \ askbardis \ bar \ Settings \ config.dat
C: \ Program Files \ askbardis \ bar \ Settings \ config.dat.bak
C: \ Program Files \ askbardis \ unins000.dat
C: \ Program Files \ askbardis \ unins000.exe
C: \ Program Files \ Messenger
C: \ Program Files \ Messenger \ custsat.dll
C: \ Program Files \ Messenger \ logowin.gif
C: \ Program Files \ Messenger \ lvback.gif
C: \ Program Files \ Messenger \ msgsc.dll
C: \ Program Files \ Messenger \ msgslang.dll
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Messenger \ newalert.wav
C: \ Program Files \ Messenger \ newemail.wav
C: \ Program Files \ Messenger \ online.wav
C: \ Program Files \ Messenger \ type.wav
C: \ Program Files \ Messenger \ xpmsgr.chm
C: \ Program Files \ PC MightyMax 2009
C: \ Program Files \ PC MightyMax 2009 \ pcmm2009.error.log
.
((((((((((((((((((((((((( Fişierele create de 2009-06-06 la 2009-07-06 ))))))))))) ))))))))))))))))))))
.
2009-07-06 02:18. 2008-12-03 16:09 59184 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ toolbarsud.exe
2009-07-06 02:18. 2006-04-06 15:33 81000 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ ProgUpd.dll
2009-07-06 02:18. 2006-04-06 15:33 33896 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ postproc.exe
2009-07-06 02:18. 2006-04-06 15:33 156264 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ setup.exe
2009-07-06 02:18. 2008-12-02 18:34 2316392 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ ocpinst.exe
2009-07-06 02:18. 2008-11-12 21:12 1370528 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ msvc9rt.exe
2009-07-06 02:18. 2008-11-06 14:42 2100984 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ aol_toolbar_dual.exe
2009-07-06 02:18. 2008-07-23 18:35 62248 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ ocpgc.exe
2009-07-06 02:18. 2008-07-23 18:35 15144 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ ocpchk.dll
2009-07-06 02:18. 2008-07-23 18:35 74536 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ instSup.dll
2009-07-06 02:18. 2006-07-31 18:41 474184 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ gui.dll
2009-07-06 02:18. 2006-04-06 15:33 25088 -------w C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ Cache \ 4381.3.4 \ EEStart.exe
2009-07-03 23:57. 2009-07-03 23:57 ----- -------- d-w C: \ $ Rooter
2009-07-01 13:43. 2009-07-01 13:43 ----- -------- d-w C: \ Documents and Settings \ utilizator Windows \ Application Data \ ArcticLine
2009-07-01 13:43. 2009-07-01 13:43 ----- -------- d-w C: \ Program Files \ Jet Screenshot
2009-06-30 03:17. 2006-10-12 16:29 83504 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ Suds \ temp \ ProgUpd.dll
2009-06-30 03:11. 2009-06-30 03:11 ----- -------- d-w C: \ Documents and Settings \ All Users \ Application Data \ AOL OCP
2009-06-30 03:11. 2009-06-30 03:11 ----- -------- d-w C: \ Documents and Settings \ Windows utilizator \ Local Settings \ Application Data \ AOL OCP
2009-06-30 03:05. 2009-06-30 03:07 370496 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CC UInst.exe
2009-06-30 03:05. 2009-06-30 03:05 94256 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ în stph.dll
2009-06-30 02:57. 2009-06-30 03:05 2439824 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pinsti.exe
2009-06-30 02:56. 2009-06-30 02:57 260040 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CE uinst.exe
2009-06-30 02:55. 2009-06-30 02:56 237616 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ gu i.dll
2009-06-30 02:55. 2009-06-30 02:55 127224 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ af ixlang.exe
2009-06-30 02:55. 2009-06-30 02:55 83504 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ Pr ogUpd.dll
2009-06-30 02:54. 2009-06-30 02:55 223152 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ a fost finst.exe
2009-06-30 02:53. 2009-06-30 02:54 355592 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ af ixinst.exe
2009-06-30 02:52. 2009-06-30 02:52 11056 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CC NdInst.dll
2009-06-30 02:52. 2009-06-30 02:52 11312 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CE uchk.dll
2009-06-30 02:52. 2009-06-30 02:52 11568 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ TB inst.dll
2009-06-30 02:52. 2009-06-30 02:52 170544 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ se tup.exe
2009-06-30 02:51. 2009-06-30 02:52 98992 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ mp instlp.exe
2009-06-30 02:51. 2009-06-30 02:51 11568 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc fcheck.dll
2009-06-30 02:51. 2009-06-30 02:51 15920 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pchk.dll
2009-06-30 02:49. 2009-06-30 02:51 580136 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ mu inst.exe
2009-06-30 02:48. 2009-06-30 02:49 282056 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ cc ulang.exe
2009-06-30 02:48. 2009-06-30 02:48 36912 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ po stproc.exe
2009-06-30 02:47. 2009-06-30 02:48 359184 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ setup.exe TB
2009-06-30 02:36. 2009-06-30 02:47 3147256 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pinsts.exe
2009-06-30 02:36. 2009-06-30 02:36 10800 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ a fost fixchk.dll
2009-06-30 02:35. 2009-06-30 02:36 174752 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ st mninst.exe
2009-06-30 02:35. 2009-06-30 02:35 142040 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ al setup.exe
2009-06-30 02:34. 2009-06-30 02:34 67120 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ în stSup.dll
2009-06-27 06:36. 2009-06-27 06:36 ----- -------- d-w C: \ windows \ system32 \ CatRoot_bak
2009-06-27 06:31. 2009-06-27 06:31 167999 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL \ C_America Online 9.0 \ aolEULanPack \ cswitch.exe
2009-06-27 06:31. 2009-06-27 06:31 3298040 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ AOL \ C_America Online 9.0 \ aolEULanPack \ langpack.exe
2009-06-27 06:30. 2009-06-27 06:30 ----- -------- d-w C: \ Install iTunes
2009-06-27 06:30. 2009-06-27 06:30 ----- -------- d-w C: \ Install ICQ
2009-06-27 06:30. 2009-06-27 06:30 ----- -------- d-w C: \ AOL Instant Messenger
2009-06-27 06:30. 2009-06-27 06:30 ----- -------- d-w C: \ MAV
2009-06-27 06:29. 2009-06-27 06:29 ----- -------- d-w C: \ Program Files \ Common Files \ aolshare
2009-06-27 06:29. 2009-06-27 06:29 ----- -------- d-w C: \ Program Files \ America Online 9.0
2009-06-27 05:04. 2009-06-27 05:04 -------- d-sh - W-C: \ Documents and Settings \ Administrator \ IETldCache
2009-06-27 05:03. 2007-12-04 03:49 487323 ---- AW-C: \ Documents and Settings \ Administrator \ Application Data \ IE7Pro \ prosetup.exe
2009-06-27 05:03. 2007-12-04 03:43 -------- d --- AW-C: \ Documents and Settings \ Administrator \ Application Data \ IE7Pro
2009-06-27 05:03. 2009-06-27 05:03 ----- -------- d-w C: \ Documents and Settings \ Administrator
2009-06-27 05:03. 2007-12-04 03:43 ----- -------- d-w C: \ Documents and Settings \ Administrator \ Local Settings \ Application Data \ SITEguard
2009-06-27 05:03. 2007-06-13 04:19 ----- -------- d-w C: \ Documents and Settings \ Administrator \ Local Settings \ Application Data \ Microsoft
2009-06-25 02:33. 2008-04-14 00:12 221184 ---- AW-c: \ windows \ system32 \ wmpns.dll
2009-06-25 02:05. 2009-06-25 02:05 ----- -------- d-w C: \ windows \ system32 \ scripting
2009-06-25 02:05. 2009-06-25 02:05 ----- -------- d-w C: \ windows \ l2schemas
2009-06-25 02:05. 2009-06-25 02:05 ----- -------- d-w C: \ windows \ system32 \ en
2009-06-25 02:05. 2009-06-25 02:05 ----- -------- d-w C: \ windows \ system32 \ biţi
2009-06-25 01:56. 2006-02-28 16:00 67584 ---- AW-c: \ windows \ system32 \ drivers \ sdbus.sys
2009-06-25 01:56. 2006-02-28 16:00 36096 ---- AW-c: \ windows \ system32 \ drivers \ intelppm.sys
2009-06-25 01:56. 2006-02-28 16:00 15488 ---- AW-c: \ windows \ system32 \ drivers \ mssmbios.sys
2009-06-25 01:56. 2006-02-28 16:00 12416 ---- AW-c: \ windows \ system32 \ drivers \ tunmp.sys
2009-06-25 01:56. 2006-02-28 16:00 11136 ---- AW-c: \ windows \ system32 \ drivers \ sffdisk.sys
2009-06-25 01:56. 2006-02-28 16:00 10240 ---- AW-c: \ windows \ system32 \ drivers \ sffp_sd.sys
2009-06-25 01:56. 2006-03-17 00:33 262784 ---- AW-c: \ windows \ system32 \ drivers \ Http.sys
2009-06-25 01:54. 2006-02-28 16:00 15360 ---- AW-c: \ windows \ system32 \ dllcache \ nppagent.exe
2009-06-25 01:53. 2006-02-28 16:00 82944 ---- AW-c: \ windows \ system32 \ dllcache \ ws2_32.dll
2009-06-25 01:50. 2009-06-25 01:51 ----- -------- d-w C: \ windows \ EHome
2009-06-24 06:11. 2009-06-24 06:11 -------- d-sh - W-C: \ Documents and Settings \ LocalService \ IETldCache
2009-06-24 06:10. 2009-06-24 06:10 ----- -------- d-w C: \ Program Files \ SNSafe & Software
2009-06-24 06:10. 2009-06-24 06:10 ----- -------- d-w C: \ Documents and Settings \ All Users \ Application Data \ SNSafe & Software
2009-06-21 00:46. 2009-04-30 21:22 12800 ------ m-c: \ windows \ system32 \ dllcache \ xpshims.dll
2009-06-21 00:46. 2009-04-30 21:22 246272 ------ m-c: \ windows \ system32 \ dllcache \ ieproxy.dll
2009-06-20 23:05. 2009-06-20 23:05 152576 ---- AW-C: \ Documents and Settings \ utilizator Windows \ Application Data \ duminică \ Java \ jre1.6.0_14 \ lzma.dll
2009-06-18 00:32. 2009-06-18 00:32 -------- d-sh - W-C: \ FOUND.020
2009-06-17 14:03. 2009-06-17 14:03 -------- d - h - w-c: \ windows \ ie8
2009-06-16 23:54. 2009-06-16 23:54 ----- -------- d-w C: \ Documents and Settings \ utilizator Windows \ Application Data \ AVS4YOU
2009-06-16 23:54. 2009-06-16 23:54 ----- -------- d-w C: \ Documents and Settings \ All Users \ Application Data \ AVS4YOU
2009-06-16 23:53. 2009-06-16 23:53 ----- -------- d-w C: \ Program Files \ Common Files \ AVSMedia
2009-06-16 23:53. 2007-02-27 22:36 974848 ---- AW-c: \ windows \ system32 \ mfc70.dll
2009-06-16 23:53. 2007-02-27 22:36 487424 ---- AW-c: \ windows \ system32 \ msvcp70.dll
2009-06-16 23:53. 2007-02-27 22:36 344064 ---- AW-c: \ windows \ system32 \ msvcr70.dll
2009-06-16 23:53. 2007-02-27 22:36 1700352 ---- AW-c: \ windows \ system32 \ GdiPlus.dll
2009-06-16 23:53. 2009-06-16 23:53 ----- -------- d-w C: \ Program Files \ AVS4YOU
2009-06-12 05:15. 2009-06-12 05:15 ----- -------- d-w C: \ Program Files \ Alwil Software
2009-06-11 20:27. 2009-06-11 20:27 18942 ---- AR-C: \ Documents and Settings \ utilizator Windows \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2ce7ed6.exe
2009-06-11 20:27. 2009-06-11 20:27 18942 ---- AR-C: \ Documents and Settings \ utilizator Windows \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2447235c.exe
2009-06-11 20:27. 2009-06-11 20:27 ----- -------- d-w C: \ Program Files \ proaspete RAM
2009-06-11 20:21. 2009-06-11 20:21 -------- d-sh - W-C: \ FOUND.019
2009-06-11 15:55. 2009-06-10 17:39 5465088 ---- AW-C: \ proaspete RAM.msi
2009-06-09 06:29. 2009-06-09 06:29 ----- -------- d-w C: \ Documents and Settings \ utilizator Windows \ Application Data \ Blitware
2009-06-09 06:29. 2009-06-09 06:29 ----- -------- d-w C: \ Program Files \ Driver Robot
2009-06-09 02:24. 2009-06-09 02:24 ----- -------- d-w C: \ Documents and Settings \ All Users \ Application Data \ PC Drivere Sediul
2009-06-09 02:23. 2009-06-09 02:23 ----- -------- d-w C: \ Documents and Settings \ Windows utilizator \ Local Settings \ Application Data \ Downloaded Instalatii
2009-06-08 03:00. 2009-06-08 03:00 ----- -------- d-w C: \ Documents and Settings \ utilizator Windows \ Application Data \ GetRightToGo
2009-06-07 23:38. 2008-04-14 00:12 7680 ---- AW-c: \ windows \ system32 \ spdwnwxp.exe
2009-06-06 14:46. 2009-06-06 14:46 ----- -------- d-w C: \ Program Files \ filehippo.com
.
(((((((((((((((((((((((((((((((((((((((( Find3M Raport )))))))) ))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-03 06:49. 2007-06-16 18:55 302080 ---- AW-C: \ Documents and Settings \ Windows utilizator \ Local Settings \ Application Data \ GDIPFONTCACHEV1.DAT
2009-06-30 03:32. 2009-05-21 02:29 3561743 ---- AW-C: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes \ Malwarebytes' Anti-Malware \ mbam-setup.exe
2009-06-27 06:16. 2007-06-13 04:18 76487 ---- AW-c: \ windows \ pchealth \ helpctr \ OfflineCache \ index.dat
2009-06-17 15:27. 2009-05-21 02:17 38160 ---- AW-c: \ windows \ system32 \ drivers \ mbamswissarmy.sys
2009-06-17 15:27. 2009-05-21 02:17 19096 ---- AW-c: \ windows \ system32 \ drivers \ mbam.sys
2009-06-11 22:43. 2007-06-21 02:45 1744 ---- AW-c: \ windows \ system32 \ d3d9caps.dat
2009-06-05 03:59. 2009-06-05 03:59 ----- -------- d-w C: \ Program Files \ DrWeb
2009-05-28 23:14. 2009-05-28 23:14 ----- -------- d-w C: \ Program Files \ Java
2009-05-28 23:14. 2009-05-28 23:14 152576 ---- AW-C: \ Documents and Settings \ utilizator Windows \ Application Data \ duminică \ Java \ jre1.6.0_13 \ lzma.dll
2009-05-27 15:21. 2009-05-27 15:21 372 ---- AW-C: \ Program Files \ ujhonz.txt
2009-05-21 15:33. 2009-05-28 23:15 410984 ---- AW-c: \ windows \ system32 \ deploytk.dll
2009-05-21 02:17. 2009-05-21 02:17 ----- -------- d-w C: \ Program Files \ Malwarebytes' Anti-Malware
2009-05-17 00:04. 2009-05-17 00:04 ----- -------- d-w C: \ Documents and Settings \ utilizator Windows \ Application Data \ WinPatrol
2009-05-17 00:03. 2009-05-17 00:03 ----- -------- d-w C: \ Program Files \ BillP Studios
2009-05-13 05:15. 2007-06-13 03:56 915456 ---- AW-c: \ windows \ system32 \ Wininet.dll
2009-05-07 15:44. 2009-06-25 01:53 344064 ---- AW-c: \ windows \ system32 \ localspl.dll
2009-04-22 04:07. 2009-04-22 04:07 253688 ---- AW-c: \ windows \ system32 \ cssdll32.dll
2009-04-17 09:58. 2009-06-25 01:53 1846656 ---- AW-c: \ windows \ system32 \ Win32k.sys
2009-04-15 15:26. 2007-06-13 03:55 583168 ---- AW-c: \ windows \ system32 \ Rpcrt4.dll
2007-06-11 03:19. 2007-06-07 04:37 11079 ---- AW-C: \ Program Files \ folder.htt
.
((((((((((((((((((((((((((((( SnapShot_2009-07-06_03.59.12 )))))))))))))) )))))))))))))))))))))))))))
.
+ 2009-07-06 04:08. 2009-07-06 04:08 16384 C: \ windows \ temp \ Perflib_Perfdata_468.dat
+ 2009-07-06 04:08. 2009-07-06 04:08 16384 C: \ windows \ temp \ Perflib_Perfdata_430.dat
.
((((((((((((((((((((((((((((((((((((( Reg Se incarca Puncte )))))))))) ))))))))))))))))))))))))))))))))))))))))
.
.
* Nota * gol intrări & legit default intrări nu sunt afişate
REGEDIT4
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ windows \ curr entversion \ Explorer \ shelliconoverlayidentifiers \ Sl owFile de icoane Acoperire]
@ = "(7D688A77-C613-11D0-999B-00C04FD655E1)"
[HKEY_CLASSES_ROOT \ CLSID \ (7D688A77-C613-11D0-999B-00C04FD655E1)]
2008-07-03 13:03 8460800 ---- AW-C: \ windows \ system32 \ shell32.dll
[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curre ntVersion \ Run]
"Ctfmon.exe" = "c: \ windows \ system32 \ Ctfmon.exe" [2006-02-28 15360]
"AOL Fast Start" = "C: \ Program Files \ America Online 9.0 \ AOL.EXE" [2005-07-12 50776]
"Jet Screenshot" = "C: \ Program Files \ Jet Screenshot \ jetScreenshot.exe" [2009-05-10 3804160]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run]
"Lexmark 5200 seria" = "C: \ Program Files \ Lexmark 5200 serii \ lxbtbmgr.exe" [2004-06-04 57344]
"LXBTCATS" = "c: \ windows \ system32 \ bobina \ DRIVERS \ W32X 86 \ 3 \ LXBTtime.dll" [2004-03-17 65536]
"SunJavaUpdateSched" = "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe" [2009-05-21 148888]
"HostManager" = "C: \ Program Files \ Common Files \ AOL \ 1246084174 \ ee \ AOLSoftware.exe" [2007-04-12 42032]
"AOLDialer" = "C: \ Program Files \ Common Files \ AOL \ ACS \ AOLDial.exe" [2004-10-20 34904]
"Pure Networks Port Magic" = "c: \ progra ~ 1 \ PURENE ~ 1 \ PORTMA ~ 1 \ PortAOL.exe" [2004-04-05 99480]
"QuickTime Task" = "C: \ Program Files \ QuickTime \ qttask.exe" [2008-02-20 98304]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Windows]
"AppInit_DLLs" = C: \ windows \ system32 \ cssdll32.dl l
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ contro l \ Session Manager]
BootExecute REG_MULTI_SZ Automată Autochk * \ 0autocheck smrgdf C: \ Documents and Settings \ utilizator Windows \ Application Data \ iolo \
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ windows \ curr entversion \ Setup \ disabledrunkeys]
"Cmaudio" = rundll32 cmicnfg.cpl, CMICtrlWnd
"NvCplDaemon" = RUNDLL32.EXE NvQTwk, NvCplDaemon iniţializa
"nwiz" = nwiz.exe / install
"RegistrySmart" = "C: \ Program Files \ RegistrySmart \ RegistrySmart.exe"-boot
"<NO Name>" =
"LoadPowerProfile" = Rundll32.exe powrprof.dll, LoadCurrentPwrScheme
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Security Center]
"AntiVirusOverride" = dword: 00000001
[HKLM \ ~ \ Services \ sharedaccess \ Parameters \ firewallpo licy \ standardprofile \ AuthorizedApplications \ Lista]
"c: \ \ WINDOWS \ \ system32 \ \ sessmgr.exe" =
"c: \ \ Program Files \ \ IncrediMail \ \ bin \ \ ImApp.exe" =
"c: \ \ Program Files \ \ IncrediMail \ \ bin \ \ IncMail.exe" =
"c: \ \ Program Files \ \ IncrediMail \ \ bin \ \ ImpCnt.exe" =
"c: \ \ Program Files \ \ Magentic \ \ bin \ \ MgImp.exe" =
"c: \ \ Program Files \ \ Magentic \ \ bin \ \ Magentic.exe" =
"c: \ \ Program Files \ \ Magentic \ \ bin \ \ MgApp.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ Loader \ \ aolload.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ ACS \ \ AOLDial.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ ACS \ \ AOLacsd.exe" =
"c: \ \ Program Files \ \ America Online 9.0 \ \ waol.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ TopSpeed \ \ 2.0 \ \ aoltsmon.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ TopSpeed \ \ 2.0 \ \ aoltpspd.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ System Information \ \ sinf.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AolCoach \ \ en_en \ \ player \ \ AOLNySEV.exe" =
"c: \ \ Program Files \ \ Malwarebytes' Anti-Malware \ \ mbam.exe" =
"c: \ \ Program Files \ \ BillP Studios \ \ WinPatrol \ \ WinPatrol.exe" =
"c: \ \ WINDOWS \ \ Reţeaua de diagnostic \ \ xpnetdiag.exe" =
"% WINDIR% \ \ system32 \ \ sessmgr.exe" =
"c: \ \ Program Files \ \ Common Files \ \ AOL \ \ 1246084174 \ \ EE \ \ AOLServiceHost.exe" =
R1 SASDIFSV; SASDIFSV; C: \ Program Files \ SUPERAntiSpyware \ sasdifsv.sys [10.10.2006 1:53 5632]
R1 SASKUTIL; SASKUTIL; C: \ Program Files \ SUPERAntiSpyware \ SASKUTIL.SYS [2.27.2007 12:39 32256]
R3 Winacusb; Winacusb; c: \ windows \ system32 \ drivers \ wina cusb.sys [3.25.2008 6:57 902860]
S2 ioloFileInfoList; iolo FileInfoList Service; C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe -> C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe [?]
S2 ioloSystemService; iolo System Service; C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe -> C: \ Program Files \ iolo \ comun \ lib \ ioloServiceManager.exe [?]
S3 FarStoneFireWallDrive; FarStoneFireWallDrive; C: \ win dows \ system32 \ drivers \ FarDrive.sys [4/2/2003 2:36 PM 140256]
S3 ousb2hub; OrangeWare hub USB 2.0 de suport; c: \ windows \ system32 \ drivers \ ousb2hub.sys [2.27.2008 7:17 53248]
S3 PavSRK.sys; PavSRK.sys; \?? \ C: \ windows \ system32 \ PavS RK.sys -> c: \ windows \ system32 \ PavSRK.sys [?]
S3 PavTPK.sys; PavTPK.sys; \?? \ C: \ windows \ system32 \ PavT PK.sys -> c: \ windows \ system32 \ PavTPK.sys [?]
S3 SASENUM; SASENUM; C: \ Program Files \ SUPERAntiSpyware \ SASENUM.SYS [2.16.2006 5:51 4096]
S3 SIVDRIVER; SIV Kernel driver; c: \ windows \ system32 \ drivers \ SIVX32.sys [4/9/2008 9:47 AM 48480]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Active Setup \ instalate componente \> (60B49E34-C7CC-11D0-8953-00A0C90347FF)]
"c: \ windows \ system32 \ rundll32.exe" "c: \ windows \ system32 \ iedkcs32.dll", BrandIEActiveSe mârli Înscriere
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Active Setup \ instalate componente \ (9EF0045A-CDD9-438e-95E6-02B9AFEC8E11)]
C: \ windows \ system32 \ updcrl.exe e-mail-uc: \ windows \ SYSTEM \ verisignpub1.crl
.
Cuprins de la "Activităţi programate" dosar
2009-06-09 C: \ windows \ Tasks \ Driver Robot.job
- C: \ Program Files \ Driver Robot \ 1.0.6.0 \ DriverRobot.exe [2009-06-09 13:02]
.
- - - - ORFANI ELIMINAT - - - --
BHO-201f27d4 (-3704-41d6-89c1-aa35e39143ed) - (no file)

.
------- Suplimentare Scan -------
.
uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q = (searchTerms) & sourceid = ie7 & SLR = com.micros oft: en-US & ie = utf8 & OE = utf8
uStart Page = hxxp: / / www.aol.com/
mWindow title = Internet Explorer, oferit de epix
IE: & Adăugaţi animaţie la IncrediMail Stil Box - C: \ Program Files \ IncrediMail \ bin \ resurse \ WebMenuImg.htm
IE: & AIM Căutare
IE: & AOL Toolbar Search - C: \ Program Files \ AOL Toolbar \ toolbar.dll / SEARCH.HTML
LSP: FarLsp.dll
Zona de încredere: 88sears.com \ www
Zona de încredere: aol.com \ www
Zona de încredere: comodo.com \ www
Zona de încredere: computer-juice.com \ www
Zona de încredere: giveawayoftheday.com \ www
Zona de încredere: newegg.com \ www
Zona de încredere: pchelpforum.com \ www
Zona de încredere: searscard.com \ www
Zona de încredere: statefarm.com \ www
Zona de încredere: winpatrol.com \ www
TCP: (68589BEF-2503-4090-B404-9FB7D2105BB4) = 205.188.146.145
DPF: DirectAnimation Java Classes
DPF: Internet Explorer clasele pentru Java
DPF: Microsoft XML Parser pentru Java
DPF: Win32 Classes
.
************************************************** ************************
catchme 0.3.1398 W2K/XP/Vista - rootkit / stealth malware detector de Gmer, http://www.gmer.net
Rootkit scan 2009-07-06 00:08
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanare ascuns procese ...
scanare ascuns autostart intrări ...
HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run
LXBTCATS = rundll32 C: \ windows \ system32 \ bobina \ DRIVERS \ W32X86 \ 3 \ LXBTtim e.dll, _RunDLLEntry @ 16 ???????????????????????? ????? ?????????????????????????????????????????????????? ?????????????????????????????????????????????????? ??????????????????????????????????????????????????
scanare fişiere ascunse ...
scanare sa finalizat cu succes
fişiere ascunse: 0
************************************************** ************************
.
--------------------- Blocat chei din registri ---------------------
[HKEY_USERS \ $ $ $ \ Software \ Microsoft \ SystemCertificat es \ AddressBook *]
@ Permise: (Citeste) (RestrictedCode)
@ Permise: (Citeste) (RestrictedCode)
.
--------------------- DLLs Loaded Sub Running Processes ---------------------
- - - - - - -> "Lsass.exe" (428)
c: \ windows \ system32 \ FarLsp.dll
- - - - - - -> "Explorer.exe" (2420)
c: \ windows \ system32 \ Wininet.dll
C: \ Program Files \ Common Files \ AOL \ ACS \ WLHook.dll
C: \ Program Files \ AOL Deskbar \ deskbar.dll
C: \ Program Files \ Common Files \ AOL \ AOL Toolbar \ AOLHelper.dll
c: \ windows \ system32 \ ieframe.dll
c: \ windows \ system32 \ webcheck.dll
.
------------------------ Other Running Processes ----------------------- --
.
C: \ Program Files \ Common Files \ AOL \ ACS \ AOLACSD.EXE
C: \ Program Files \ JAVA \ JRE6 \ bin \ JQS.EXE
C: \ windows \ system32 \ SNMP.EXE
C: \ Program Files \ LEXMARK 5200 SERIILE \ LXBTBMON.EXE
C: \ Program Files \ America Online 9.0 \ WAOL.EXE
C: \ Program Files \ America Online 9.0 \ SHELLMON.EXE
.
************************************************** ************************
.
Completion time: 2009-07-06 0:10 - masina a fost repornită
ComboFix-carantină-files.txt 2009-07-06 04:10
ComboFix2.txt 2009-07-06 04:01
ComboFix3.txt 2009-06-06 14:20
ComboFix4.txt 2009-06-04 04:03
Pre-Run: 97549156352 bytes liber
Post-Run: 97532772352 bytes liber
320 --- EOF --- 2009-07-05 21:28

**evilfantasy** · #10 6 iulie 2009, 09:43

Scan suspecte fişier (e)

Vă rugăm să mergeţi la VirusTotal.com
(Dacă mai mult de un fişier scanat are nevoie de ele trebuie să fie realizat separat şi jurnalele de post pentru fiecare dintre ele)

1. Copiere calea fişierului în caseta de mai jos Code:

Cod:

C: \ Documents and Settings \ utilizator Windows \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2ce7ed6.exe

2. La încărcare site, faceţi clic o dată în interiorul ferestrei de lângă Răsfoire.
3. Apăsaţi Ctrl + V de pe tastatură (ambele în acelaşi timp) pentru a lipi fişierul calea în fereastra.
4. Faceţi clic pe Next Trimite fişier
Fişierul dvs. va fi, eventual, a intrat într-o coadă, care în mod normal durează mai puţin de un minut pentru a şterge.
Aceasta va efectua o scanare diferite pe mai multe motoare de scanare împotriva viruşilor.
Important: Aşteptaţi pentru toate motoarele de scanare pentru a finaliza.
5. Copiere şi Lipire apoi pe link-ul de la rezultatele din următoarea replică

Similar Threads
Fir	Thread Starter	Forum	Răspunsurile	Ultimul mesaj
Trecerea de la Microsoft Office Outlook 2007 pe PC 2 Microsoft Office X Entoutage pe MAC	jjuli	Office Suites & Aplicatii	0	11 iunie 2009 15:52
Nume Întrebare - Poate cineva sa-mi spui dacă am putea avea un virus	billozz	Nume, Spyware & Securitate	1	2 aprilie 2009 13:58
$ 250,000 (£ 172,000) a fost oferit de Microsoft pentru a Găsiţi Cine este în spatele Downadup / Conficker Nume	Hybr! D	Nume, Spyware & Securitate	1	17 februarie 2009 11:03
Prietenii mei MAC are un virus ... Umm ... da ... un virus ...	cheesepuff	Nume, Spyware & Securitate	3	29 octombrie 2008 12:58
Microsoft renunţă la Vista	philthomas	Sisteme de operare Windows	2	8 aprilie 2008 16:09