|
| |||||||
| Registruotis | Svetainės spy | Narių sąrašas | Donate | Ieškoti | Šiandien Žinutės | Pažymėti forumus kaip skaitytus | Forumo taisyklės |
 |
 |
| | Temos įrankiai |
|
#1
Kovas 25, 2008, 08:58
| |||
| |||
| Labas, Aš su Trojos arklys problema. Įspėjimas pranešimas "C: \ Windows \ system32 \ crypt32n.dll Trojan Horse BHO.CVX Turiu paleisti AVG, ir tai nustato failo persikelia Tom Vault bet vėl paleisti tai ten vėl. Mėginau ištrinti Windows, kad nepavyko failas. Aš bandžiau pervadinti jį į "Windows" (kad būtų pašalintas), kad nepavyko. I've tried grįžti ir iš naujo nustatyti savo kompiuteryje, bet aš negaliu grįžti po mėnesio pradžioje ir aš turėjau, nes prieš Kalėdas. Mano PC atrodo OK, bet aš vis dar nerimauja, kad turiu virusas! Ar yra kas nors, ką galiu padaryti? Help much appreciated linkėjimai Ian |
|
#2
Kovas 25, 2008, 10:47
| |||
| |||
Sveiki atvykę į CJ.
__________________  |
|
#3
Kovas 25, 2008, 14:33
| |||
| |||
| Labas Evil Fantansy Aš bandžiau šį mėnesio pradžioje čia yra žurnalo. Tikiuosi, kad tai reiškia kažką jums Mano pirštai kirto Ta Ian StartupList pranešimą, 05/03/2008, 14:49:42 StartupList Versija: 1.52.2 Pradėjau nuo C: \ Documents and Settings \ Jono \ Desktop \ HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v7.00 (7.00.6000.16608) * Naudoti numatytąsias parinktis * Įskaitant tuščia ir neįdomu skyriai * Rodoma retai svarbi skyriai ==========================================\u0 Veikia procesus: C: \ WINDOWS \ System32 \ smss.exe C: \ WINDOWS \ system32 \ winlogon.exe C: \ WINDOWS \ system32 \ services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ system32 \ brsvc01a.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ WINDOWS \ system32 \ brss01a.exe C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ guard.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ explorer.exe C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe C: \ Program Files \ Toshiba \ Windows Utilities \ Hotkey.exe C: \ WINDOWS \ system32 \ TPSMain.exe C: \ Program Files \ Synaptics \ SynTP \ Toshiba.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ NDSTray.exe C: \ WINDOWS \ system32 \ TPSBattM.exe C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe C: \ Program Files \ TOSHIBA \ Touch ir Launch \ PadExe.exe C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSServ.exe C: \ Program Files \ Atheros \ ACU.exe C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe C: \ Program Files \ QuickTime \ qttask.exe C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ avgas.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ CFXFER.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ OpwareSE2.exe C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Messenger \ msmsgs.exe C: \ Program Files \ FinePixViewer \ QuickDCF.exe C: \ Documents and Settings \ Jono \ Desktop \ HijackThis.exe -------------------------------------------------- Sąrašas aplanke: Shell Folders Startup: [C: \ Documents and Settings \ Jono \ Start Menu \ Programs \ Startup] * No files * Shell Folders AltStartup: * Aplankas nerastas * User Shell Folders Startup: * Aplankas nerastas * User Shell Folders AltStartup: * Aplankas nerastas * Shell Folders Bendra Startup: [C: \ Documents and Settings \ All Users \ Start Menu \ Programs \ Startup] Exif Launcher.lnk = C: \ Program Files \ FinePixViewer \ QuickDCF.exe Microsoft Office.lnk = C: \ Program Files \ Microsoft Office \ Office \ OSA9.exe Shell Folders Bendra AltStartup: * Aplankas nerastas * User Shell Folders Bendra Startup: * Aplankas nerastas * User Shell Folders Pakaitinis Bendra Startup: * Aplankas nerastas * -------------------------------------------------- Checking Windows NT UserInit: [HKLM \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon] UserInit = C: \ WINDOWS \ system32 \ userinit.exe, [HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Win prisijungti] * Registro raktas nerastas * [HKCU \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon] * Kanceliarija vertė nerastas * [HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Win prisijungti] * Registro raktas nerastas * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run SynTPEnh = C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe Toshiba Hotkey Naudingumas = "C: \ Program Files \ Toshiba \ Windows Įvairūs \ Hotkey.exe" / lang en TPSMain = TPSMain.exe NDSTray.exe = NDSTray.exe SmoothView = C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe PadTouch = C: \ Program Files \ TOSHIBA \ Touch ir Launch \ PadExe.exe DLA = C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE CFSServ.exe = CFSServ.exe-NoClient REGSHAVE = C: \ Program Files \ REGSHAVE \ REGSHAVE.EXE / autorun ACU = "C: \ Program Files \ Atheros \ ACU.exe"-nogui TkBellExe = "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot QuickTime Task = "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime ! AVG Anti-spyware = "C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ avgas.exe" / mažinimą AVG7_CC = C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / autostart SunJavaUpdateSched = "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" Salestart = "C: \ Program Files \ Common Files \ AVSystemCare \ bm.exe" dm = http://avsystemcare.com; AD = http://avsystemcare.com Adobe Reader Speed Launcher = "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe" OpwareSE2 = "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ OpwareSE2.exe" OPSE priminimas = "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ EregEng \ Ereg.exe"-r "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ EregEng \ ereg.ini" -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Kartą * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run OnceEx * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Services * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run ServicesOnce * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run TOSCDSPD = C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe Ctfmon.exe = C: \ WINDOWS \ system32 \ Ctfmon.exe PnPUI registratorius = C: \ Program Files \ Common Files \ Sitecom Shared \ PnP Universal Installer \ PnPUIReg.exe-S MSMSGS = "C: \ Program Files \ Messenger \ msmsgs.exe" / background -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Kartą * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run OnceEx * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Services * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run ServicesOnce * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Run * Registro raktas nerastas * -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Run * Registro raktas nerastas * -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run [OptionalComponents] = -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Kartą [Ti] * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run OnceEx * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Services * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run ServicesOnce * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Kartą [setup] * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run OnceEx * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run Services * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Run ServicesOnce * Nr raktai Rasta * -------------------------------------------------- Autorun entries registro raktus į: HKLM \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Run * Registro raktas nerastas * -------------------------------------------------- Autorun entries registro raktus į: HKCU \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Run * Registro raktas nerastas * -------------------------------------------------- Failo asociacija įrašas. Exe: HKEY_CLASSES_ROOT \ exefile \ shell \ open \ command (Default) = "% 1"% * -------------------------------------------------- Failo asociacija įrašas. Com: HKEY_CLASSES_ROOT \ comfile \ shell \ open \ command (Default) = "% 1"% * -------------------------------------------------- Failo asociacija įrašas. GPGB: HKEY_CLASSES_ROOT \ batfile \ shell \ open \ command (Default) = "% 1"% * -------------------------------------------------- Failo asociacija įrašas. MTP: HKEY_CLASSES_ROOT \ piffile \ shell \ open \ command (Default) = "% 1"% * -------------------------------------------------- Failo asociacija įrašas. MKR: HKEY_CLASSES_ROOT \ scrfile \ shell \ open \ command (Default) = "% 1" / S -------------------------------------------------- Failo asociacija įrašas. HTA: HKEY_CLASSES_ROOT \ htafile \ shell \ open \ command (Default) = C: \ WINDOWS \ system32 \ Mshta.exe "% 1"% * -------------------------------------------------- Failo asociacija įrašas. TXT: HKEY_CLASSES_ROOT \ NetLog.Document \ shell \ open \ kableliais nd (Default) = C: \ EPICOM ~ 1,02 \ EPICom2.02 \ EPICOM ~ 1.EXE / DDE -------------------------------------------------- Išvardijant Active Setup nebaigtas takai: HKLM \ Software \ Microsoft \ Active Setup \ Installed Components (* = Išjungta HKCU Twin) [<(12d0ed0d-0ee0-4f90-8827-78cefb8f4988)] * StubPath = C: \ WINDOWS \ system32 \ ieudinit.exe [> (22d6f312-b0f6-11d0-94ab-0080c74c7e95)] StubPath = C: \ Windows \ inf \ unregmp2.exe / ShowWMP [> (26923b43-4d38-484f-9b9e-de460746276c)] * StubPath = C: \ WINDOWS \ system32 \ ie4uinit.exe-UserIconConfig [> (881dd1c5-3dcf-431b-b061-f3f88e8be88a)] * StubPath = "% SystemRoot% \ System32 \ shmgrate.exe OCInstallUserConfigOE [(2C7339CF-2B09-4501-B3F3-F3508C9228ED)] * StubPath = "% SystemRoot% \ system32 \ regsvr32.exe / s / n / i: / UserInstall% SystemRoot% \ system32 \ themeui.dll [(44BBA840-CC51-11CF-AAFA-00AA00B6015C)] * StubPath = "% ProgramFiles% \ Outlook Express \ setup50.exe" / app: OE / skambinančiojo: winnt / user / install [(7790769C-0471-11D2-AF11-00C04FA35D02)] * StubPath = "% ProgramFiles% \ Outlook Express \ setup50.exe" / app: UAB / skambinančiojo: winnt / user / install [(89820200-ECBD-11cf-8B85-00AA005B4340)] * StubPath = regsvr32.exe / s / n / i: U Shell32.dll [(89820200-ECBD-11cf-8B85-00AA005B4383)] * StubPath = C: \ WINDOWS \ system32 \ ie4uinit.exe-BaseSettings -------------------------------------------------- Išvardijant ICQ Konsultantas Paleistis Apps: HKCU \ Software \ Mirabilis \ ICQ \ Agent \ Apps * Registro raktas nerastas * -------------------------------------------------- Apkrova / Run "iš C: \ WINDOWS \ win.ini: apkrova =* INI skirsnis nerastas * paleisti =* INI skirsnis nerastas * Apkrova / Run iš registro: HKLM \ .. \ Windows NT \ CurrentVersion \ Winlogon: Load =* Registry vertė nerastas * HKLM \ .. \ Windows NT \ CurrentVersion \ Winlogon: run =* Registry vertė nerastas * HKLM \ .. \ Windows \ CurrentVersion \ Winlogon: Load =* registro raktas nerastas * HKLM \ .. \ Windows \ CurrentVersion \ Winlogon: run =* registro raktas nerastas * HKCU \ .. \ Windows NT \ CurrentVersion \ Winlogon: Load =* Registry vertė nerastas * HKCU \ .. \ Windows NT \ CurrentVersion \ Winlogon: run =* Registry vertė nerastas * HKCU \ .. \ Windows \ CurrentVersion \ Winlogon: Load =* registro raktas nerastas * HKCU \ .. \ Windows \ CurrentVersion \ Winlogon: run =* registro raktas nerastas * HKCU \ .. \ Windows NT \ CurrentVersion \ Windows: load = HKCU \ .. \ Windows NT \ CurrentVersion \ Windows Run =* Registry vertė nerastas * HKLM \ .. \ Windows NT \ CurrentVersion \ Windows: load =* Registry vertė nerastas * HKLM \ .. \ Windows NT \ CurrentVersion \ Windows Run =* Registry vertė nerastas * HKLM \ .. \ Windows NT \ CurrentVersion \ Windows: AppInit_DLLs = -------------------------------------------------- Shell & screensaver raktą iš C: \ WINDOWS \ System.ini: Shell =* INI skirsnis nerastas * SCRNSAVE.EXE =* INI skirsnis nerastas * vairuotojų =* INI skirsnis nerastas * Shell & screensaver iš registro raktas: Shell = Explorer.exe SCRNSAVE.EXE = C: \ WINDOWS \ system32 \ Logon.scr vairuotojų =* Registry vertė nerastas * Policies Shell key: HKCU \ .. \ Policies: Shell =* Registry vertė nerastas * HKLM \ .. \ Policies: Shell =* Registry vertė nerastas * -------------------------------------------------- Tikrinimas EXPLORER.EXE atvejais: C: \ WINDOWS \ Explorer.exe: Yra! C: \ explorer.exe: nekelia C: \ WINDOWS \ Explorer \ Explorer.exe: nekelia C: \ WINDOWS \ SYSTEM \ Explorer.exe: nekelia C: \ WINDOWS \ System32 \ Explorer.exe: nekelia C: \ WINDOWS \ COMMAND \ Explorer.exe: nekelia C: \ Windows \ Fonts \ Explorer.exe: nekelia -------------------------------------------------- Tikrinimas superhidden pratęsimų skaičius . Lnk: HIDDEN! (arrow overlay: YES) . Pif: HIDDEN! (arrow overlay: YES) . Exe: nėra paslėptas . com: nėra paslėptas . BAT: ne paslėptas . HTA: nėra paslėptas . Scr: nėra paslėptas . SHS: HIDDEN! . SHB: HIDDEN! . VBS: nėra paslėptas . VBE: nėra paslėptas . Wsh: nėra paslėptas . SCF: HIDDEN! (arrow overlay: NE!) . URL: HIDDEN! (arrow overlay: YES) . Js: nėra paslėptas . Jse: nėra paslėptas -------------------------------------------------- Tikrinamas regedit.exe vientisumas: - Regedit.exe rasti C: \ WINDOWS -. Raj atvira komanda yra normalus (Regedit.exe 1%) - Įmonės pavadinimas OK: "Microsoft Corporation" - Original Filename Gerai: "regedit.exe" - Failo aprašymas: "Registry Editor" Patikrinkite, ar registro priimtas -------------------------------------------------- Išvardijant Browser Helper Objects: (no name) - C: \ windows \ system32 \ athcfg11c.dll (file missing) - (51610169-C280-4F36-84AB-82D92ED1F68B) (no name) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) (no name) - c: \ program files \ google \ GoogleToolbar1.dll - (AA58ED58-01DD-4d91-8333-CF10577473F7) (no name) - C: \ WINDOWS \ system32 \ crypt32n.dll - (EA389261-1100-451F-8582-815CAB488AE6) -------------------------------------------------- Išvardijant Task Scheduler užsakymai: AppleSoftwareUpdate.job At1.job Norton Security Scan.job RegCure programa Check.job RegCure.job -------------------------------------------------- Išvardijant Download Program Files: [Microsoft XML Parser for Java] Codebase = file: / / / C: / Windows / Java / classes / xmldso.cab OSD = C: \ WINDOWS \ Downloaded Program Files \ Microsoft XML Parser for Java.osd [IPIX ActiveX] InProcServer32 = C: \ WINDOWS \ DOWNLO ~ 1 \ ipixx.ocx Codebase = http://www.ipix.com/download/ipixx.cab [Shockwave ActiveX] InProcServer32 = C: \ WINDOWS \ system32 \ Macromed \ direktorė \ SwDir.dll Codebase = http://fpdownload.macromedia.com/get...irector/sw.cab [MUWebControl klasei] InProcServer32 = C: \ WINDOWS \ system32 \ muweb.dll Codebase = http://www.update.microsoft.com/micr...?1197453622703 [Java Plug-in 1.6.0_05] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll Codebase = http://javadl-esd.sun.com/update/1.6...ws-i586-jc.cab [(8FFBE65D-2C9C-4669-84BD-5829DC0B603C)] Codebase = http://fpdownload.macromedia.com/get.../ultrashim.cab [a-squared Skeneriai] InProcServer32 = C: \ WINDOWS \ DOWNLO ~ 1 \ asquared.ocx Codebase = http://ax.emsisoft.com/asquared.cab [Java Plug-in 1.5.0_06] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll Codebase = http://java.sun.com/update/1.5.0/jin...ndows-i586.cab [Java Plug-in 1.5.0_11] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll Codebase = http://java.sun.com/update/1.5.0/jin...ndows-i586.cab [Java Plug-in 1.6.0_03] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll Codebase = http://java.sun.com/update/1.6.0/jin...ndows-i586.cab [Java Plug-in 1.6.0_05] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll Codebase = http://java.sun.com/update/1.6.0/jin...ndows-i586.cab [Java Plug-in 1.6.0_05] InProcServer32 = C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ npjpi160_05.dll Codebase = http://java.sun.com/update/1.6.0/jin...ndows-i586.cab [Shockwave Flash Object] InProcServer32 = C: \ WINDOWS \ system32 \ Macromed \ "Flash \ Flash9e.ocx Codebase = http://fpdownload2.macromedia.com/ge...sh/swflash.cab -------------------------------------------------- Išvardijant Winsock LSP failai: Namespace # 1: C: \ WINDOWS \ system32 \ mswsock.dll Namespace # 2: C: \ WINDOWS \ system32 \ winrnr.dll Namespace # 3: C: \ WINDOWS \ system32 \ mswsock.dll Namespace # 4: C: \ WINDOWS \ system32 \ nwprovau.dll Protokolo # 1: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 2: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 3: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 4: C: \ WINDOWS \ system32 \ rsvpsp.dll Protokolo # 5: C: \ WINDOWS \ system32 \ rsvpsp.dll Protokolas # 6: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 7: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 8: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 9: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 10: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 11: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 12: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 13: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 14: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 15: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 16: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 17: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 18: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 19: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 20: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 21: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 22: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 23: C: \ WINDOWS \ system32 \ mswsock.dll Protokolo # 24: C: \ WINDOWS \ system32 \ mswsock.dll -------------------------------------------------- Išvardijant Windows NT/2000/XP paslaugos Microsoft ACPI Driver: system32 \ drivers \ ACPI.sys (sistema) Microsoft Embedded Controller Driver: system32 \ drivers \ ACPIEC.sys (sistema) Atheros Configuration Service: C: \ WINDOWS \ system32 \ acs.exe (autostart) Microsoft Kernel Acoustic Echo Canceller: system32 \ drivers \ aec.sys (paleidimo) AFD: \ SystemRoot \ System32 \ Drivers \ Afd.sys (sistema) Alertowanie:% SystemRoot% \ System32 \ svchost.exe-k LocalService (išjungta) Application Layer Gateway Service:% SystemRoot% \ System32 \ alg.exe (paleidimo) Application Management:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) Atheros Wireless Network Adapter Service: system32 \ drivers \ ar5211.sys (paleidimo) ASP.NET Valstybinė tarnyba:% SystemRoot% \ Microsoft.NET \ Framework \ v1.1.4322 \ ASP net_state.exe (paleidimo) Anksčiau Asynchronous Media Driver: system32 \ drivers \ asyncmac.sys (paleidimo) Standartinis IDE / ESDI Hard disk controller: system32 \ drivers \ Atapi.sys (sistema) ATI HotKey Rinkėjas:% SystemRoot% \ System32 \ Ati2evxx.exe (autostart) ati2mtag: system32 \ drivers \ ati2mtag.sys (paleidimo) ATM ARP protokolas Klientas: system32 \ drivers \ atmarpc.sys (paleidimo) Windows Audio:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Garso stub Driver: system32 \ drivers \ audstub.sys (paleidimo) AVG Anti-spyware Driver: \? \ C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ guard.sys (sistema) AVG Anti-Spyware Guard: C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7,5 \ guard.exe (autostart) AVG7 Alert Manager Server: C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe (autostart) AVG7 Branduolys: \ SystemRoot \ System32 \ Drivers \ avg7core.sys (sistema) AVG7 Wrap Driver: \ SystemRoot \ System32 \ Drivers \ avg7rsw.sys (sistema) AVG7 Imbuvys Driver XP ": \ SystemRoot \ System32 \ Drivers \ avg7rsxp.sys (sistema) AVG7 Update Service "C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe (autostart) AVG Anti-spyware Švarus Driver: system32 \ drivers \ AvgAsCln.sys (sistema) AVG7 Švarus Driver: \ SystemRoot \ System32 \ Drivers \ avgclean.sys (sistema) Background Intelligent Transfer Service ":% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Prieiga 32bits int15 įprasta: system32 \ drivers \ BoiHwSetup.sys (paleidimo) BrSplService: C: \ WINDOWS \ system32 \ brsvc01a.exe (autostart) Kompiuterių Naršyklė:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Logical Disk Manager Monitorius:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Conexant AMC 3D Aplinkos Audio: system32 \ drivers \ camc6aud.sys (paleidimo) CAMCHALA: system32 \ drivers \ camc6hal.sys (paleidimo) CD-ROM Driver: system32 \ drivers \ cdrom.sys (sistema) ConfigFree Service: C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe (autostart) Indexing Service:% SystemRoot% \ System32 \ cisvc.exe (paleidimo) ClipBook:% SystemRoot% \ System32 \ clipsrv.exe (išjungta) Microsoft ACPI kontrolės metodas Battery Driver: system32 \ drivers \ Cmbatt.sys (paleidimo) Microsoft Composite Battery Driver: system32 \ drivers \ compbatt.sys (sistema) COM + System Application: C: \ WINDOWS \ system32 \ dllhost.exe / processID: (02D4B3F1-FD88-11D1-960D-00805FC79235) (paleidimo) Kriptografiniai Paslaugos:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) DCOM Server Process Launcher:% SystemRoot% \ System32 \ Svchost-k DcomLaunch (autostart) DHCP klientas:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Disk Driver: system32 \ drivers \ Disk.sys (sistema) DLABOIOM: System32 \ DLA \ DLABOIOM.SYS (autostart) DLACDBHM: System32 \ Drivers \ DLACDBHM.SYS (sistema) DLADResN: System32 \ DLA \ DLADResN.SYS (autostart) DLAIFS_M: System32 \ DLA \ DLAIFS_M.SYS (autostart) DLAOPIOM: System32 \ DLA \ DLAOPIOM.SYS (autostart) DLAPoolM: System32 \ DLA \ DLAPoolM.SYS (autostart) DLARTL_N: System32 \ Drivers \ DLARTL_N.SYS (sistema) DLAUDFAM: System32 \ DLA \ DLAUDFAM.SYS (autostart) DLAUDF_M: System32 \ DLA \ DLAUDF_M.SYS (autostart) Logical Disk Manager administracinių paslaugų:% SystemRoot% \ System32 \ dmadmin.exe / COM (paleidimo) dmboot: system32 \ drivers \ Dmboot.sys (išjungta) Logical Disk Manager Driver: system32 \ drivers \ dmio.sys (sistema) dmload: system32 \ drivers \ dmload.sys (sistema) Logical Disk Manager:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Microsoft Kernel DLS Syntheiszer: system32 \ drivers \ Dmusic.sys (paleidimo) DNINDIS5 NDIS protokolo Driver: \? \ C: \ PROGRA ~ 1 \ Belkin \ BELKIN ~ 1.11G \ DNINDIS5.SYS (paleidimo) DNS Client:% SystemRoot% \ System32 \ svchost.exe-k NetworkService (autostart) Microsoft Kernel DRM, Audio Descrambler: system32 \ drivers \ drmkaud.sys (paleidimo) DRVMCDB: System32 \ Drivers \ DRVMCDB.SYS (sistema) DRVNDDM: System32 \ Drivers \ DRVNDDM.SYS (autostart) Error Reporting Service:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Įvykio Prisijungti:% SystemRoot% \ system32 \ services.exe (autostart) COM + Event System: C: \ WINDOWS \ System32 \ svchost.exe-k netsvcs (paleidimo) "Fast User Switching Compatibility:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) FltMgr: system32 \ drivers \ fltMgr.sys (sistema) Volume Manager Driver: system32 \ drivers \ ftdisk.sys (sistema) Bendrasis paketinis klasifikacija: system32 \ drivers \ msgpc.sys (paleidimo) GTNDIS5 NDIS protokolo Driver: \? \ C: \ WINDOWS \ system32 \ GTNDIS5.SYS (paleidimo) Google Updater Service: "C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe" (paleidimo) Pagalba ir parama ":% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Human Interface Device Access:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (išjungta) "Microsoft" HID klasė Driver: system32 \ drivers \ hidusb.sys (paleidimo) hlkvythd: system32 \ drivers \ vzrpdamf.dat (sistema) HSFHWATI: system32 \ drivers \ HSFHWATI.sys (paleidimo) HSF_DPV: system32 \ drivers \ HSF_DPV.sys (paleidimo) HTTP: System32 \ Drivers \ Http.sys (paleidimo) HTTP, SSL:% SystemRoot% \ System32 \ svchost.exe-k HTTPFilter (paleidimo) i8042 Klaviatūros ir PS / 2 Mouse Port Driver: system32 \ drivers \ I8042prt.sys (sistema) InstallDriver lentelė vadybininkas: "C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe" (paleidimo) CD-Burning Filter Driver: system32 \ drivers \ Imapi.sys (sistema) IMAPI CD-Burning COM Service: C: \ WINDOWS \ system32 \ imapi.exe (paleidimo) Intel Processor Driver: system32 \ drivers \ Intelppm.sys (sistema) IPv6 Windows ugniasienė Driver: system32 \ drivers \ Ip6Fw.sys (paleidimo) IP eismo Filtruoti Driver: system32 \ drivers \ ipfltdrv.sys (paleidimo) IP ip tunnel Driver: system32 \ drivers \ ipinip.sys (paleidimo) IP Network Address Translator: system32 \ drivers \ ipnat.sys (paleidimo) IPSEC vairuotojas: system32 \ drivers \ ipsec.sys (sistema) IR skaitliukas Paslaugos: system32 \ drivers \ irenum.sys (paleidimo) PnP ISA / EISA Bus Driver: system32 \ Drivers \ Isapnp.sys (sistema) IVI ASPI Shell: system32 \ drivers \ iviaspi.sys (paleidimo) Klaviatūros klasė Driver: system32 \ drivers \ Kbdclass.sys (sistema) Microsoft Kernel Wave Audio Mixer: system32 \ drivers \ Kmixer.sys (paleidimo) Server:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Kompiuterizuotos darbo vietos:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) TCP / IP NetBIOS:% SystemRoot% \ System32 \ svchost.exe-k LocalService (autostart) mdmxsdk: system32 \ drivers \ mdmxsdk.sys (autostart) Messenger:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (išjungta) NetMeeting Remote Desktop Sharing: C: \ WINDOWS \ system32 \ mnmsrvc.exe (paleidimo) Pelės klasė Driver: system32 \ drivers \ mouclass.sys (sistema) Pelė HID Driver: system32 \ drivers \ mouhid.sys (paleidimo) WebDav klientų readresatora: system32 \ drivers \ mrxdav.sys (paleidimo) MRxSmb: system32 \ drivers \ Mrxsmb.sys (sistema) Distributed Transaction Coordinator: C: \ WINDOWS \ system32 \ msdtc.exe (paleidimo) "Windows Installer" C: \ WINDOWS \ System32 \ Msiexec.exe / V (paleidimo) Microsoft Streaming Service Proxy: system32 \ drivers \ MSKSSRV.sys (paleidimo) Microsoft Streaming Laikrodis Proxy: system32 \ drivers \ MSPCLOCK.sys (paleidimo) Microsoft Streaming Quality Manager Proxy: system32 \ drivers \ MSPQM.sys (paleidimo) Microsoft System Management BIOS: system32 \ drivers \ mssmbios.sys (paleidimo) Remote Access NDIS TAPI Driver: system32 \ drivers \ ndistapi.sys (paleidimo) NDIS UserMode I / O protokolas: system32 \ drivers \ Ndisuio.sys (paleidimo) Remote Access NDIS WAN Driver: system32 \ drivers \ Ndiswan.sys (paleidimo) NetBIOS sąsaja: system32 \ drivers \ netbios.sys (sistema) NetBIOS over Tcpip: system32 \ drivers \ netbt.sys (sistema) Network DDE:% SystemRoot% \ System32 \ NetDDE.exe (išjungta) Network DDE DSDM:% SystemRoot% \ System32 \ NetDDE.exe (išjungta) Toshiba Network Device UserMode I / O protokolas: system32 \ drivers \ netdevio.sys (autostart) Grynasis prisijungimo:% SystemRoot% \ system32 \ lsass.exe (autostart) Network Connections ":% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) Network Location Awareness (NLA):% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) NT LM Security Support Provider:% SystemRoot% \ system32 \ lsass.exe (paleidimo) Removable Storage:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) Client Service for NetWare:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) IPX Eismo Filter Driver: system32 \ drivers \ nwlnkflt.sys (paleidimo) IPX Eismo Ekspeditorius Driver: system32 \ drivers \ nwlnkfwd.sys (paleidimo) NWLink IPX / SPX / NetBIOS Compatible Transport Protocol: system32 \ drivers \ Nwlnkipx.sys (autostart) NWLink NetBIOS: system32 \ drivers \ nwlnknb.sys (autostart) NWLink SPX / SPXII protokolas: system32 \ drivers \ nwlnkspx.sys (autostart) NetWare Rdr: system32 \ drivers \ nwrdr.sys (paleidimo) Office Source Engine: "C: \ Program Files \ Common Files \ Microsoft Shared \ Source Engine \ OSE.EXE" (paleidimo) PCI Bus Driver: system32 \ drivers \ Pci.sys (sistema) PCIIde: system32 \ drivers \ pciide.sys (sistema) PCMCIA: system32 \ drivers \ pcmcia.sys (sistema) Padus ASPI Shell: system32 \ drivers \ pfc.sys (paleidimo) Plug and Play ":% SystemRoot% \ system32 \ services.exe (autostart) IPSEC Services:% SystemRoot% \ system32 \ lsass.exe (autostart) WAN miniprievado (PPTP): system32 \ drivers \ raspptp.sys (paleidimo) Protected Storage:% SystemRoot% \ system32 \ lsass.exe (autostart) QoS Packet Scheduler: system32 \ drivers \ psched.sys (paleidimo) Tiesioginė Parallel Nuoroda Driver: system32 \ drivers \ ptilink.sys (paleidimo) PxHelp20: System32 \ Drivers \ PxHelp20.sys (sistema) Quanta HotKey Klaviatūros Filter Driver: system32 \ drivers \ qkbfiltr.sys (paleidimo) Quanta HotKey pelė Filter Driver: system32 \ drivers \ qmofiltr.sys (paleidimo) Remote Access Auto Connection Driver: system32 \ drivers \ rasacd.sys (sistema) Remote Access Auto Connection Manager:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) WAN miniprievado L2TP (): system32 \ drivers \ rasl2tp.sys (paleidimo) Remote Access Connection Manager:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) Remote Access PPPoE Driver: system32 \ drivers \ raspppoe.sys (paleidimo) Tiesioginė Parallel: system32 \ drivers \ raspti.sys (paleidimo) Rdbss: system32 \ drivers \ Rdbss.sys (sistema) RDPCDD: system32 \ drivers \ RDPCDD.sys (sistema) Terminal Server Device readresatora Driver: system32 \ drivers \ rdpdr.sys (paleidimo) Remote Desktop Help Session Manager: C: \ WINDOWS \ system32 \ sessmgr.exe (paleidimo) Digital Audio CD Playback Filter Driver: system32 \ drivers \ redbook.sys (sistema) Routing and Remote Access:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (išjungta) Nuotolinis registras:% SystemRoot% \ System32 \ svchost.exe-k LocalService (autostart) Remote Procedure Call (RPC) Locator:% SystemRoot% \ System32 \ locator.exe (paleidimo) Remote Procedure Call (RPC):% SystemRoot% \ System32 \ Svchost-k RPCSS (autostart) QoS RSVP:% SystemRoot% \ System32 \ rsvp.exe (paleidimo) Belkin Wireless rt2500 Driver: system32 \ drivers \ RT61.sys (paleidimo) Realtek 10/100/1000 NIC Šeimos viskas viename NDIS XP Driver: system32 \ drivers \ Rtlnicxp.sys (paleidimo) Realtek RTL8139 (A / B / C), pagrįsta PCI Fast Ethernet Adapter Windows NT Driver: system32 \ drivers \ RTL8139.SYS (paleidimo) Security Accounts Manager:% SystemRoot% \ system32 \ lsass.exe (autostart) Smart Card:% SystemRoot% \ System32 \ SCardSvr.exe (paleidimo) Tvarkaraštis užduotis:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Secdrv: system32 \ drivers \ secdrv.sys (paleidimo) Vidurinis prisijungimo:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Sistemos įvykių Pranešimas:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Sitecom Serial port driver: system32 \ drivers \ ser2pl.sys (paleidimo) Serenum Filtruoti Driver: system32 \ drivers \ serenum.sys (paleidimo) High-Capacity Floppy Disk Drive: system32 \ drivers \ sfloppy.sys (paleidimo) Windows Firewall / Internet Connection Sharing (ICS):% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Shell Hardware Detection:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Microsoft Kernel Audio splitter: system32 \ drivers \ Splitter.sys (paleidimo) Spausdinti buferinės:% SystemRoot% \ System32 \ Spoolsv.exe (autostart) System Restore Filter Driver: system32 \ drivers \ sr.sys (sistema) System Restore Service:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) SRV: system32 \ drivers \ srv.sys (paleidimo) SSDP Discovery Paslaugos:% SystemRoot% \ System32 \ svchost.exe-k LocalService (paleidimo) Dar Serijos Digital Camera Driver: system32 \ drivers \ serscan.sys (paleidimo) Windows Image Acquisition (WIA):% SystemRoot% \ System32 \ svchost.exe-k imgsvc (autostart) Programinė įranga Bus Driver: system32 \ drivers \ swenum.sys (paleidimo) Microsoft Kernel GS Wavetable Synthesizer: system32 \ drivers \ swmidi.sys (paleidimo) MS Software Shadow Copy Provider: C: \ WINDOWS \ system32 \ dllhost.exe / processID: (6C222AAE-7AD3-43BE-AC4B-02239FF8DEC6) (paleidimo) Synaptics Touchpad Driver: system32 \ drivers \ SynTP.sys (paleidimo) Microsoft Kernel sistemos Audio Device: system32 \ drivers \ sysaudio.sys (paleidimo) Efektyvumas ir žurnalai Perspėjimai:% SystemRoot% \ System32 \ smlogsvc.exe (paleidimo) Telefonija:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) TCP / IP protokolo Driver: system32 \ drivers \ Tcpip.sys (sistema) Terminalo Device Driver: system32 \ drivers \ termdd.sys (sistema) Terminal Services:% SystemRoot% \ System32 \ Svchost-k DComLaunch (paleidimo) Temos:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Telnet: C: \ WINDOWS \ system32 \ tlntsvr.exe (išjungta) tmcomm: \? \ C: \ WINDOWS \ system32 \ drivers \ tmcomm.sys (autostart) Distributed Link Tracking Client:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Microcode Update Driver: system32 \ drivers \ update.sys (paleidimo) Universal Plug and Play Device Host:% SystemRoot% \ System32 \ svchost.exe-k LocalService (paleidimo) Nepertraukiamo maitinimo:% SystemRoot% \ System32 \ ups.exe (paleidimo) "Microsoft" Generic USB Parent Driver: system32 \ drivers \ usbccgp.sys (paleidimo) Microsoft USB 2.0 Enhanced Host Controller miniprievado Driver: system32 \ drivers \ Usbehci.sys (paleidimo) USB2 Įjungta Hub: system32 \ drivers \ Usbhub.sys (paleidimo) Microsoft USB Open Host Controller miniprievado Driver: system32 \ drivers \ Usbohci.sys (paleidimo) Microsoft USB spausdintuvo klasė: system32 \ drivers \ usbprint.sys (paleidimo) USB Skaitytuvas Driver: system32 \ drivers \ usbscan.sys (paleidimo) USB Mass Storage Driver: system32 \ drivers \ USBSTOR.SYS (paleidimo) Linksys Wireless-G USB tinklo adapteris su SpeedBooster Vairuotojas v2: system32 \ drivers \ usb8023.sys (paleidimo) VgaSave: \ SystemRoot \ System32 \ Drivers \ Vga.sys (sistema) Volume Shadow Copy:% SystemRoot% \ System32 \ vssvc.exe (paleidimo) Windows Time:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Remote Access TL ARP Driver: system32 \ drivers \ wanarp.sys (paleidimo) Windows CE USB Host Serial Driver: system32 \ drivers \ wceusbsh.sys (paleidimo) Microsoft WINMM WDM Audio suderinamumas Driver: system32 \ drivers \ Wdmaud.sys (paleidimo) WebClient:% SystemRoot% \ System32 \ svchost.exe-k LocalService (autostart) winachsf: system32 \ drivers \ HSF_CNXT.sys (paleidimo) Windows Management Instrumentation:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Portable Media Serial Number Service:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) Windows Management Instrumentation Driver Extensions:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) WMI Performance Adapter: C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe (paleidimo) Windows Media Player "tinklo dalijimosi paslaugą:" C: \ Program Files \ Windows Media Player \ WMPNetwk.exe "(paleidimo) Windows Socket 2,0 Non-IFS Service Provider Support Aplinka: \ SystemRoot \ System32 \ Drivers \ ws2ifsl.sys (išjungta) Saugos centras:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Automatiniai naujinimai:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Windows Driver fondas - User-mode Driver Framework platforma Driver: system32 \ drivers \ WudfPf.sys (paleidimo) Windows Driver fondas - User-mode Driver Framework Reflector: system32 \ drivers \ wudfrd.sys (paleidimo) Windows Driver fondas - User-mode Driver Framework:% SystemRoot% \ System32 \ svchost.exe-k WudfServiceGroup (paleidimo) Nekonfig? ":% SystemRoot% \ System32 \ svchost.exe-k netsvcs (autostart) Tinklo Atidėjimų Paslaugos:% SystemRoot% \ System32 \ svchost.exe-k netsvcs (paleidimo) -------------------------------------------------- Išvardijant Windows NT Prisijungti / Atsijungti scripts: * Nr scenarijus nustatyti paleisti * Windows NT checkdisk komandą: BootExecute = AutoCheck Autochk * "Windows NT" Wininit.ini ": PendingFileRenameOperations: * kanceliarija vertė nerastas * -------------------------------------------------- Išvardijant ShellServiceObjectDelayLoad elementai: PostBootReminder: C: \ WINDOWS \ system32 \ shell32.dll CDBurn: C: \ WINDOWS \ system32 \ shell32.dll WebCheck: C: \ WINDOWS \ system32 \ Webcheck.dll SysTray: C: \ WINDOWS \ system32 \ stobject.dll UPnPMonitor: C: \ WINDOWS \ system32 \ upnpui.dll WPDShServiceObj: C: \ WINDOWS \ system32 \ WPDShServiceObj.dll -------------------------------------------------- Autorun įrašų iš registro: HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Pol icies \ Explorer \ Run * Neturi jokios reikšmės, rasta * -------------------------------------------------- Autorun įrašų iš registro: HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Pol icies \ Explorer \ Run * Neturi jokios reikšmės, rasta * -------------------------------------------------- Pabaiga pranešimą, 38.242 baitų Report generated in 0,266 seconds Komandų eilutės parinktis: / Verbose - pridėti papildomą informaciją apie kiekvieną skyrių / baigti - įtraukti tušti skyriai ir Net neįtaria duomenų / Full - įtraukti keletą retai svarbi skyriai / force9x - įtraukti Win9x tik pradedantiesiems, net jei veikia WinNT / forcent - įtraukti WINNT tik pradedantiesiems, net jei veikia ant Win9x / forceall - įtraukti visas Win9x ir WinNT pradedantiesiems, nepriklausomai nuo platformos / history - to list version history tik |
|
#4
Kovas 25, 2008, 14:47
| |||
| |||
| Thats Startup sąrašą iš HJT kuri yra naudinga, bet man reikia Pagrindinis nuskaitymas. Atidaryti HJT ir pasirinkite Ar sistema nuskaito ir išsaugokite failą mygtuką. Rašyti, kad žurnalas prašom.
__________________ |
|
#5
Kovas 27, 2008, 12:47
| |||
| |||
| Labas, Atsiprašau, jei man atrodo, neskuba atsakyti, bet man kyla sunkumų taupymo skenavimas! Buvau HJT paleisti "Ar sistema nuskaityti ir išsaugoti failą, bet kai jis bando atidaryti failą jis nesugestų. Tik taip galiu pamatyti teikti šios informacijos yra, jei aš išgelbėti nuo ekrano kopiją, bet ir rašyti, kad ji bus didelė byla Ar manote, kad tai gera idėja, ar yra ten ką nors galiu pabandyti? Linkėjimai Ian |
|
#6
Kovas 27, 2008, 12:58
| |||
| |||
| Išbandykite šią vietoj ir po to iš rąstų. Atsisiųsti Deckard sistemos Scanner (DSS) Jūsų Desktop. Pastaba Jūs turite būti prisijungę prie paskyros administratoriaus.
Kas DSS atliks:
__________________ |
|
#7
Kovas 28, 2008, 14:41
| |||
| |||
| Labas Man reikia galvoti! Mėginau ketinate karšto nuorodą Deckards skaitytuvas, bet aš negaliu rasti dss.exe. Deckards manes paprašo registro į kitą svetainę forumas panašus į vieną aš jau Prašome paaiškinti Ian |
|
#8
Kovas 28, 2008, 14:46
| |||
| |||
| Naudokite šią nuorodą. http://www.techsupportforum.com/sect...eckard/dss.exe
__________________ |
|
#9
Balandis 7, 2008, 00:56
| |||
| |||
| Labas, Atsiprašau, jei kada nors, nes aš atgal, bet buvau toli Aš jau pavyko padaryti nuskaityti ir čia rezultatus System Restore ------------------------------------------------ -------------- Sėkmingai sukūrė Deckard sistemos Skeneriai Restore Point. - Paskutinės 5 atkūrimo tašką (-us) -- 49: 2008-04-07 07:50:49 UTC - RP160 - Deckard sistemos Skeneris Restore punktas 48: 2008-04-07 06:07:59 UTC - RP159 - System Checkpoint 47: 2008-04-01 17:50:42 UTC - RP158 - System Checkpoint 46: 2008-03-28 20:48:03 UTC - RP157 - įrengtos SUPERAntiSpyware Free Edition 45: 2008-03-28 19:02:25 UTC - RP156 - System Checkpoint - Pirmasis Restore punktas -- 1: 2008-01-04 07:54:54 UTC - RP112 - System Checkpoint Paremtas registro aviliai. Atlikti Disko valymas. Procentas Naudojama atmintis: 76% (daugiau negu 75%). Viso fizinė atmintis: 447 MiB (512 MiB rekomenduojama). - HijackThis (veikia kaip iana.exe) ---------------------------------------- -------- Logfile Trend Micro HijackThis v2.0.2 Skaitymo išsaugotas 08:52:30, on 07/04/2008 Platforma: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Boot mode: Normal Veikia procesus: C: \ WINDOWS \ System32 \ smss.exe C: \ WINDOWS \ system32 \ winlogon.exe C: \ WINDOWS \ system32 \ services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ system32 \ brsvc01a.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ WINDOWS \ system32 \ brss01a.exe C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ guard.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ explorer.exe C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe C: \ Program Files \ Toshiba \ Windows Utilities \ Hotkey.exe C: \ WINDOWS \ system32 \ TPSMain.exe C: \ Program Files \ Synaptics \ SynTP \ Toshiba.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ NDSTray.exe C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe C: \ Program Files \ TOSHIBA \ Touch ir Launch \ PadExe.exe C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSServ.exe C: \ Program Files \ Atheros \ ACU.exe C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe C: \ Program Files \ QuickTime \ qttask.exe C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ avgas.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ OpwareSE2.exe C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Messenger \ msmsgs.exe C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe C: \ WINDOWS \ system32 \ TPSBattM.exe C: \ Program Files \ FinePixViewer \ QuickDCF.exe C: \ Program Files \ TOSHIBA \ ConfigFree \ CFXFER.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ Program Files \ Adobe \ Acrobat 6.0 \ Reader \ AcroRd32.exe C: \ WINDOWS \ system32 \ WISPTIS.EXE C: \ Documents and Settings \ Jono \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EL9EICW6 \ DSS [1]. Exe C: \ PROGRA ~ 1 \ TRENDM ~ 1 \ hijack ~ 1 \ iana.exe R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/ R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch = R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Žiniasklaida ernet Nustatymai, ProxyServer = flotechsvr: 8080 O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 6.0 \ Reader \ ActiveX \ AcroIEHelper.dll O2 - BHO: (no name) - (51610169-C280-4F36-84AB-82D92ED1F68B) - C: \ Windows \ system32 \ athcfg11c.dll (file missing) O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ GoogleToolbar1.dll O2 - BHO: (no name) - (EA389261-1100-451F-8582-815CAB488AE6) - C: \ WINDOWS \ system32 \ crypt32n.dll O3 - Toolbar: & Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ GoogleToolbar1.dll O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe O4 - HKLM \ .. \ Run: [Toshiba Hotkey Utility] C: \ Program Files \ Toshiba \ Windows Įvairūs \ Hotkey.exe "/ lang en O4 - HKLM \ .. \ Run: [TPSMain] TPSMain.exe O4 - HKLM \ .. \ Run: [NDSTray.exe] NDSTray.exe O4 - HKLM \ .. \ Run: [SmoothView] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Naudingumas \ SmoothView.exe O4 - HKLM \ .. \ Run: [PadTouch] C: \ Program Files \ TOSHIBA \ Touch ir Launch \ PadExe.exe O4 - HKLM \ .. \ Run: [DLA] C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE O4 - HKLM \ .. \ Run: [CFSServ.exe] CFSServ.exe-NoClient O4 - HKLM \ .. \ Run: [REGSHAVE] C: \ Program Files \ REGSHAVE \ REGSHAVE.EXE / autorun O4 - HKLM \ .. \ Run: [ACU] "C: \ Program Files \ Atheros \ ACU.exe"-nogui O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7,5 \ avgas.exe" / mažinimą O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / autostart O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" O4 - HKLM \ .. \ Run: [OpwareSE2] "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ OpwareSE2.exe" O4 - HKLM \ .. \ Run: [OPSE priminimo] "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ EregEng \ Ereg.exe"-r "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ EregEng \ Ereg . Ini " O4 - HKCU \ .. \ Run: [TOSCDSPD] C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [PnPUI registratorius] C: \ Program Files \ Common Files \ Sitecom Shared \ PnP Universal Installer \ PnPUIReg.exe-S O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe O4 - HKUS \ S-1-5-19 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'LOCAL SERVICE') O4 - HKUS \ S-1-5-20 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'NETWORK SERVICE') O4 - HKUS \ S-1-5-18 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'SYSTEM') O4 - HKUS \. DEFAULT \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'Default user') O4 - Global Startup: Exif Launcher.lnk = C: \ Program Files \ FinePixViewer \ QuickDCF.exe O4 - Global Startup: Microsoft Office.lnk = C: \ Program Files \ Microsoft Office \ Office \ OSA9.exe O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MI05E6 ~ 1 \ Office11 \ REFIEBAR.DLL O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O10 - Unknown file in Winsock LSP: c: \ windows \ system32 \ nwprovau.dll O14 - IERESET.INF: START_PAGE_URL = http://Companyweb O16 - DPF: (11260943-421B-11D0-8EAC-0000C07D88CF) (IPIX ActiveX Control) -- http://www.ipix.com/download/ipixx.cab O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl klasė) -- http://www.update.microsoft.com/micr...?1197453622703 O16 - DPF: (8AD9C840-044E-11D1-B3E9-00805F499D93) (Java Runtime Environment 1.6.0) -- http://javadl-esd.sun.com/update/1.6...ws-i586-jc.cab O16 - DPF: (BB21F850-63F4-4EC9-BF9D-565BD30C9AE9) (-squared Scanner) -- http://ax.emsisoft.com/asquared.cab O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab Ø17 - HKLM \ System \ CCS \ Services \ Tcpip \ Parameters: Domain = flotech.local Ø17 - HKLM \ Software \ .. \ Telephony: domain = flotech.local Ø17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (3C838800-1126-48EC-8092-81CB4BD5BA88): NameServer = 208.67.220.220,208.67.222.222 Ø17 - HKLM \ System \ CS1 \ Services \ Tcpip \ Parameters: Domain = flotech.local Ø17 - HKLM \ System \ CS1 \ Services \ Tcpip \ Parameters: NameServer = 208.67.220.220,208.67.222.222 Ø17 - HKLM \ System \ CS1 \ Services \ Tcpip \ .. \ (3C838800-1126-48EC-8092-81CB4BD5BA88): NameServer = 208.67.220.220,208.67.222.222 Ø17 - HKLM \ System \ CS3 \ Services \ Tcpip \ Parameters: Domain = flotech.local Ø17 - HKLM \ System \ CS3 \ Services \ Tcpip \ Parameters: NameServer = 208.67.220.220,208.67.222.222 Ø17 - HKLM \ System \ CS3 \ Services \ Tcpip \ .. \ (3C838800-1126-48EC-8092-81CB4BD5BA88): NameServer = 208.67.220.220,208.67.222.222 Ø17 - HKLM \ System \ CCS \ Services \ Tcpip \ Parameters: NameServer = 208.67.220.220,208.67.222.222 Ø20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll Ø20 - Winlogon Notify: detcdzqc - athcfg11c.dll (file missing) O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C: \ WINDOWS \ system32 \ acs.exe O23 - Service: ATI HotKey Rinkėjas - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Grisoft sro - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7,5 \ guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - Grisoft, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - Grisoft, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe O23 - Service: BrSplService (Brolis SPL XP Service) - Brother Industries Ltd - C: \ WINDOWS \ system32 \ brsvc01a.exe O23 - Service: ConfigFree tarnybos (CFSvcs) - "Toshiba Corporation - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: InstallDriver lentelė Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe -- Pabaiga failą - 9.862 baitų - HijackThis Fiksuotas įrašai (C: \ PROGRA ~ 1 \ TRENDM ~ 1 \ hijack ~ 1 \ backups \) ----------- backup-20071217-070814-188 O4 - HKLM \ .. \ Run: [\ \ WKS-216 \ "Epson Stylus C46 Serija] C: \ WINDOWS \ system32 \ spool \ drivers \ W32x86 \ 3 \ E_S4I0T 1.EXE / P33"\ \ WKS-216 \ EPSON Stylus C46 Serija "/ O6" USB002 "/ M" Stylus C46 " backup-20071217-071110-763 O16 - DPF: (935F9B04-0C7B-4454-A391-348C54AD7ADD) (Jolly Bear Žaidimai Player) -- http://games.bigfishgames.com/en_big...GamePlayer.cab backup-20071219-071455-100 Ø20 - Winlogon Notify: detcdzqc - C: \ WINDOWS \ SYSTEM32 \ athcfg11c.dll backup-20071219-071455-320 O4 - Global Startup: EPSON Status Monitor 3 Environment Check (3). lnk = C: \ WINDOWS \ system32 \ spool \ drivers \ W32x86 \ 3 \ E_SRCV0 3.exe backup-20071219-071455-780 O2 - BHO: (no name) - (EA389261-1100-451F-8582-815CAB488AE6) - C: \ WINDOWS \ system32 \ crypt32n.dll backup-20080327-194111-931 O2 - BHO: (no name) - (51610169-C280-4F36-84AB-82D92ED1F68B) - C: \ WINDOWS \ system32 \ athcfg11c.dll (file missing) backup-20080327-194139-797 O2 - BHO: (no name) - (EA389261-1100-451F-8582-815CAB488AE6) - C: \ WINDOWS \ system32 \ crypt32n.dll backup-20080327-194247-663 O2 - BHO: (no name) - (EA389261-1100-451F-8582-815CAB488AE6) - C: \ WINDOWS \ system32 \ crypt32n.dll - Failų asociacijų ---------------------------------------------- ------------- . txt - NetLog.Document - DefaultIcon - C: \ EPICOM ~ 1,02 \ EPICom2.02 \ EPICOM ~ 1.EXE, 8 . txt - NetLog.Document - shell \ open \ command - C: \ EPICOM ~ 1,02 \ EPICom2.02 \ EPICOM ~ 1.EXE / DDE - Tvarkyklės: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-neįgaliųjų --------------------- R0 hlkvythd - C: \ Windows \ system32 \ drivers \ vzrpdamf.dat R1 SASDIFSV - C: \ Program Files \ superantispyware \ sasdifsv.sys R1 SASKUTIL - C: \ Program Files \ superantispyware \ saskutil.sys R2 MASPINT - C: \ Windows \ system32 \ drivers \ maspint.sys <Nėra.> Verified; MicroStaff Co.,Ltd.; Aspi32 Driver WinNT> R2 mdmxsdk - C: \ Windows \ system32 \ drivers \ mdmxsdk.sys <Nėra.> Verified; Conexant; Diagnostikos Interface> R2 Netdevio (Toshiba Network Device UserMode I / O protokolas) - C: \ windows \ system32 \ drivers \ netdevio.sys <Nėra.> Verified; TOSHIBA TOSHIBA Corporation.; Network Device UserMode I/O protocol> R3 AR5211 (Atheros Wireless Network Adapter Service) - c: \ windows \ system32 \ drivers \ ar5211.sys <Nėra.> Verified; Atheros Communications, Inc.; Atheros AR5001 Wireless Network Adapter> R3 BoiHwsetup (Prieigos 32bits int15 įprasta) - C: \ windows \ system32 \ drivers \ boihwsetup.sys <Nėra.> Verified; Quanta Computer Corp; Toshiba HwSetup Driver> R3 CAMCAUD (Conexant AMC 3D Aplinkos Audio) - C: \ windows \ system32 \ drivers \ camc6aud.sys <Nėra.> Verified; Conexant Systems Inc.; Conexant Audio Driver> R3 CAMCHALA - C: \ Windows \ system32 \ drivers \ camc6hal.sys <Nėra.> Verified; Conexant Systems Inc.; Conexant AmcHal Driver> R3 HSF_DPV - C: \ Windows \ system32 \ drivers \ hsf_dpv.sys <Nėra.> Verified; Conexant Systems, Inc.; SoftK56 Modemas Driver> R3 HSFHWATI - C: \ Windows \ system32 \ drivers \ hsfhwati.sys <Nėra.> Verified; Conexant Systems, Inc.; SoftK56 Modemas Driver> R3 Iviaspi (IVI ASPI "Shell") - C: \ Windows \ system32 \ drivers \ iviaspi.sys <Nėra.> Verified; InterVideo, Inc.; InterVideo ASPI Shell> R3 PFC (padus ASPI "Shell") - C: \ Windows \ system32 \ drivers \ pfc.sys <Nėra.> Verified; Padus, Inc.; Padus(R) ASPI Shell> R3 qkbfiltr (Quanta HotKey Klaviatūros filtro tvarkyklė) - C: \ windows \ system32 \ drivers \ qkbfiltr.sys <Nėra.> Verified; Quanta Computer, Inc.; Quanta HotKey Klaviatūros Filtruoti Driver> R3 qmofiltr (Quanta HotKey pelė filtro tvarkyklė) - C: \ windows \ system32 \ drivers \ qmofiltr.sys <Nėra.> Verified; Quanta Computer, Inc.; Quanta pelė Filtruoti Device Driver> R3 SASENUM - C: \ Program Files \ superantispyware \ sasenum.sys <Nėra.> Verified; SuperAdBlocker, Inc.; SuperAntiSpyware> R3 winachsf - C: \ Windows \ system32 \ drivers \ hsf_cnxt.sys <Nėra.> Verified; Conexant Systems, Inc.; SoftK56 Modemas Driver> S3 DNINDIS5 (DNINDIS5 NDIS protokolo Driver) - C: \ PROGRA ~ 1 \ BELKIN \ BELKIN ~ 1.11g \ dnindis5.sys (file missing) S3 GTNDIS5 (GTNDIS5 NDIS protokolo Driver) - C: \ Windows \ system32 \ gtndis5.sys (file missing) S3 RT61 (Belkin rt2500 Wireless tvarkyklės) - C: \ windows \ system32 \ drivers \ rt61.sys (file missing) S3 Ser2pl (Sitecom Serial port driver) - C: \ windows \ system32 \ drivers \ ser2pl.sys <Nėra.> Verified; Prolific Technology Inc.; Prolific USB-to-Serial tiltas Cable> S3 wceusbsh (Windows CE USB Host Serial Driver) - C: \ windows \ system32 \ drivers \ wceusbsh.sys <Nėra.> Verified; Microsoft Corporation; Windows CE USB Serial Host Driver> - Paslaugos: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-neįgaliųjų -------------------- R2 CFSvcs (ConfigFree Service) - C: \ Program Files \ Toshiba \ configfree \ cfsvcs.exe <Nėra.> Verified; TOSHIBA CORPORATION; ConfigFree(TM)> S2 ACS (Atheros Configuration Service) - C: \ windows \ system32 \ acs.exe - Device Manager ": Disabled -------------------------------------------- -------- Nr neįgaliesiems prietaisų nerasta. - Tvarkaraštyje Uždaviniai ---------------------------------------------- --------------- 2008-04-07 06:48:40 436 - ------ C: \ WINDOWS \ Uždaviniai \ RegCure programa Check.job 2008-04-04 12:33:04 438 - ------ C: \ WINDOWS \ Uždaviniai \ At1.job 2008-03-15 17:25:00 284 - ------ C: \ WINDOWS \ Uždaviniai \ AppleSoftwareUpdate.job 2008-01-31 16:37:13 370 - ------ C: \ WINDOWS \ Uždaviniai \ RegCure.job - Failus, sukurtus nuo 2008/03/07 ir 2008/04/07 ----------------------------- 2008-03-28 21:48:16 0 d -------- C: \ Documents and Settings \ All Users \ Application Data \ SUPERAntiSpyware.com 2008-03-28 21:48:05 0 d -------- C: \ Program Files \ SUPERAntiSpyware 2008-03-28 21:48:05 0 d -------- C: \ Documents and Settings \ Jono \ Application Data \ SUPERAntiSpyware.com 2008-03-28 21:47:28 0 d -------- C: \ Program Files \ Common Files \ Wise Installation Wizard - Find3M Pranešimas ---------------------------------------------- ----------------- 2008-04-07 06:51:23 0 d -------- C: \ Documents and Settings \ Jono \ Application Data \ AVG7 2008-04-04 16:30:58 0 d -------- C: \ Program Files \ Hansa52Client 2008-04-04 15:41:49 0 d -------- C: \ Documents and Settings \ Jono \ Application Data \ AdobeUM 2008-03-28 21:47:28 0 d -------- C: \ Program Files \ Common Files 2008-03-25 10:03:27 0 d -------- C: \ Program Files \ Common Files \ Adobe 2008-03-25 09:31:28 0 d -------- C: \ Program Files \ Common Files \ Symantec Shared 2008-03-05 15:04:08 0 d -------- C: \ Program Files \ Canon 2008-03-05 11:57:28 0 d -------- C: \ Program Files \ Java 2008-02-25 09:26:29 0 d -------- C: \ Documents and Settings \ Jono \ Application Data \ ScanSoft 2008-02-25 09:26:26 0 d -------- C: \ Program Files \ Common Files \ ScanSoft Bendri 2008-02-25 09:25:40 0 d -------- C: \ Program Files \ ScanSoft 2008-02-25 08:32:09 0 d -------- C: \ Program Files \ Google 2008-02-21 18:33:48 0 d -------- C: \ Program Files \ MumbleJumble 2008-02-21 18:10:04 0 d -------- C: \ Program Files \ Mahjong Deluxe 2008-02-21 12:06:28 0 d -------- C: \ Program Files \ RogueRemover NEMOKAMAI 2008-02-21 12:04:40 0 d -------- C: \ Program Files \ Walls of Jericho 2008-02-21 12:04:31 0 d -------- C: \ Program Files \ HP kūrybinę idėją CD 2008-02-21 12:04:11 0 d -------- C: \ Program Files \ XviD 2008-02-21 12:03:54 0 d -------- C: \ Program Files \ RegCure 2008-02-21 12:02:55 0 d -------- C: \ Program Files \ išbraukimas Vyras 2008-02-21 12:02:55 0 d -------- C: \ Program Files \ Polarkubes 2008-02-21 12:01:40 0 d -------- C: \ Program Files \ PopCap Žaidimai 2008-02-18 19:38:17 16 - ------ C: \ WINDOWS \ popcinfot.dat 2008-02-18 19:19:59 0 - ------ C: \ WINDOWS \ popcreg.dat 2008-02-11 17:53:24 0 d -------- C: \ Program Files \ IDIGICON Limited 2008-01-21 18:36:58 1024 - ------ C: \ WINDOWS \ jericho_game_ra.dat - Registry Savivartis ---------------------------------------------- ----------------- * Pastaba: * tuščių įrašų ir teisėtu default įrašai nerodoma [HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (51610169-C280-4F36-84AB-82D92ED1F68B)] [HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (EA389261-1100-451F-8582-815CAB488AE6)] [HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run] "SynTPEnh" = "C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe" [17/12/2005 00:32] "Toshiba Hotkey Utility" = "C: \ Program Files \ Toshiba \ Windows Įvairūs \ Hotkey.exe" [28/01/2006 05:13] "TPSMain" = "TPSMain.exe" [08/02/2006 16:02 C: \ WINDOWS \ system32 \ TPSMain.exe] "NDSTray.exe" = "NDSTray.exe" [] "SmoothView" = "C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe" [12/05/2005 11:31] "PadTouch" = "C: \ Program Files \ TOSHIBA \ Touch ir Launch \ PadExe.exe" [21/12/2005 14:52] "DLA" = "C: \ WINDOWS \ System32 \ DLA \ DLACTRLW.EXE" [06/10/2005 06:20] "CFSServ.exe" = "CFSServ.exe" [] "REGSHAVE" = "C: \ Program Files \ REGSHAVE \ REGSHAVE.exe" [04/02/2002 23:32] "ACU" = "C: \ Program Files \ Atheros \ ACU.exe" [11/07/2005 16:04] "TkBellExe" = "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe" [04/03/2007 17:39] "QuickTime Task" = "C: \ Program Files \ QuickTime \ qttask.exe" [01/09/2006 16:57] "! AVG Anti-spyware" = "C: \ Program Files \ Grisoft \ AVG Anti-spyware 7,5 \ avgas.exe" [11/06/2007 10:25] "AVG7_CC" = "C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe" [02/01/2008 12:20] "SunJavaUpdateSched" = "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" [22/02/2008 05:25] "OpwareSE2" = "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ OpwareSE2.exe" [08/05/2003 12:00] "OPSE priminimas" = "C: \ Program Files \ ScanSoft \ OmniPageSE2.0 \ EregEng \ Ereg.exe" [07/07/2003 10:29] "RegistryMechanic" = "" [] [HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run] "TOSCDSPD" = "C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe" [11/04/2005 12:26] "Ctfmon.exe" = "C: \ WINDOWS \ system32 \ Ctfmon.exe" [04/08/2004 14:00] "PnPUI registratoriui" = "C: \ Program Files \ Common Files \ Sitecom Shared \ PnP Universal Installer \ PnPUIReg.exe" [22/11/2004 21:04] "MSMSGS" = "C: \ Program Files \ Messenger \ msmsgs.exe" [13/10/2004 17:24] "SUPERAntiSpyware" = "C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe" [27/02/2007 12:39] C: \ Documents and Settings \ All Users \ Start Menu \ Programs \ Startup \ Exif Launcher.lnk - C: \ Program Files \ FinePixViewer \ QuickDCF.exe [09/01/2002 22:53:14] Microsoft Office.lnk - C: \ Program Files \ Microsoft Office \ Office \ OSA9.exe [21/01/2000 09:15:54] [HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntversion \ Policies \ System] "DisableRegistryTools" = 0 (0x0) [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entversion \ Policies \ Explorer] "NoWelcomeScreen" = 1 (0x1) [HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ ShellExecuteHooks] (5AE067D3-9AFB-48E0-853A-EBB7F4A000DA) "= C: \ Program Files \ SUPERAntiSpyware \ SASSEH.DLL [20/12/2006 13:55 77824] [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \! SASWinLogon] C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll 27/02/2007 12:39 282624 C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ detcdzqc] athcfg11c.dll [HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ contro l \ Lsa] "Tapatybės Paketai" = msv1_0 nwprovau HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Svchost - netsvcs buznlwxw [HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntversion \ Explorer \ mountpoints2 \ (a2fd87dd-A192-11DC-B600-0016e375ed46)] Autorun \ command-E: \ LaunchU3.exe - End of Deckard sistemos Skeneris baigiama ne 2008-04-07 08:53:08 ------------ Vilties visa tai turi prasmę jums Linkėjimai Jono |
