|
| |||||||
| Registruotis | Svetainės spy | Narių sąrašas | Donate | Ieškoti | Šiandien Žinutės | Pažymėti forumus kaip skaitytus | Forumo taisyklės |
 |
 |
| | Temos įrankiai |
|
#1
Lapkritis 6, 2008, 02:16
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas I can't seem uždaryti iexplore.exe net kai nėra Windows Explorer atidaryta. Skelbimai visada Iššokantis laikas nuo laiko. Aš taip pat išgirsti skelbimas balsai / triukšmas fone. Tai erzina ir jaučiu, kaip sistemos funkcionavimo buvo sulėtintas. Please help. Tai yra mano HijackThis: Logfile of HijackThis v1.99.1 Skaitymo išsaugotas 4:15:28 dėl 11/6/2008 Platforma: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Veikia procesus: C: \ WINDOWS \ System32 \ smss.exe C: \ WINDOWS \ system32 \ winlogon.exe C: \ WINDOWS \ system32 \ services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe C: \ WINDOWS \ explorer.exe C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe C: \ WINDOWS \ RTHDCPL.EXE C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ Program Files \ ASUS \ AASP \ 1.00.61 \ aaCenter.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Nokia \ MPAPI \ MPAPI3s.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ WINDOWS \ system32 \ nvsvc32.exe C: \ WINDOWS \ system32 \ PSIService.exe C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe C: \ Program Files \ Common Files \ pcsuite \ Services \ ServiceLayer.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ Program Files \ Winamp \ winamp.exe C: \ Program Files \ Real \ "RealPlayer \ RealPlay.exe C: \ WINDOWS \ system32 \ s1S8Dh6X.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ Program Files \ HijackThis \ HijackThis.exe O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll O2 - BHO: IE2EMBHO Class - (0A0DDBD3-6641-40B9-873F-BBDD26D6C14E) - C: \ Program Files \ easyMule \ modules \ IE2EM.dll O2 - BHO: RealPlayer Atsisiųsti ir įrašų Įskiepis Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ "RealPlayer \ rpbrowserrecordplugin.dll O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file) O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / Sync O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName O4 - HKLM \ .. \ Run: [Ai Nap] "C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe" O4 - HKLM \ .. \ Run: [CPU Monitor Power] "C: \ Program Files \ ASUS \ Ai Suite \ AiGear3 \ CpuPowerMonitor.exe" O4 - HKLM \ .. \ Run: [CPU Level Up Pagalba] C: \ Program Files \ ASUS \ Ai Suite \ CpuLevelUpHelp.exe O4 - HKLM \ .. \ Run: [ASUS Energijos taupymas] "C: \ Program Files \ ASUS \ Ai Suite \ energiją taupančias \ PwSave.exe" O4 - HKLM \ .. \ Run: [Ulead AutoDetector v2] C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM \ .. \ Run: [Alcmtr] ALCMTR.EXE O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe" O4 - HKLM \ .. \ Run: [NSLauncher] C: \ Program Files \ Nokia \ Nokia Software launcher \ NSLauncher.exe / startup O4 - HKLM \ .. \ Run: [avast!] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [\ \ MING3 \ Epson Stylus C120 Series] C: \ WINDOWS \ system32 \ spool \ drivers \ W32x86 \ 3 \ E_FATIC ca.exe / FU "C: \ DOCUME ~ 1 \ MKJ \ locals ~ 1 \ Temp \ E_S13.tmp "/ EF" HKCU " O4 - HKCU \ .. \ Run: [PcSync] C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe / NoDialog O8 - Extra kontekstinio meniu punktą: Pridėti prie "Google Photos Screensa & ver - res: / / C: \ WINDOWS \ system32 \ GPhotos.scr/200 O8 - Extra kontekstinio meniu punktą: Atsisiųsti pagal easyMule - C: \ Program Files \ easyMule \ IE2EM.htm O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ network diagnostic \ xpnetdiag.exe (file missing) O9 - Extra 'Tools' MENUITEM: @ Xpsp3res.dll, -20.001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ network diagnostic \ xpnetdiag.exe (file missing) O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O10 - Unknown file in Winsock LSP: c: \ program files \ bonjour \ mdnsnsp.dll O11 - Options group: [INTERNATIONAL] International * O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Nuotraukų Uploader 5 Control) -- http://upload.facebook.com/controls/...oUploader5.cab O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl klasė) -- http://www.update.microsoft.com/wind...?1224821007296 O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl klasė) -- http://www.update.microsoft.com/micr...?1224825458984 O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL Ø20 - Winlogon Notify: dimsntfy -% SystemRoot% \ System32 \ dimsntfy.dll (file missing) Ø20 - Winlogon Notify: WgaLogon - C: \ WINDOWS \ SYSTEM32 \ WgaLogon.dll O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - C: \ WINDOWS \ system32 \ WPDShServiceObj.dll O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 kontrolės tarnybos (aswUpdSv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe "/ service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe "/ service (file missing) O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C: \ WINDOWS \ system32 \ PSIService.exe O23 - Service: ServiceLayer - Nokia. - C: \ Program Files \ Common Files \ pcsuite \ Services \ ServiceLayer.exe O23 - Service: Požiūris vadybininkas Paslaugos - Požiūris Corporation - C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe |
|
#2
Lapkritis 6, 2008, 09:37
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Atsisiųsti CCleaner Slim ir išsaugokite jį darbalaukyje. Jei failas buvo išsaugotas, eikite į savo darbastalio ir dukart paspauskite ccsetupxxx_slim.exe Vykdykite nurodymus, kad įdiegti šią programą. Užbaigti diegimo tada:
---------- Dabar įdiekite naują versiją HijackThis ir rašyti žurnale nuo jo. Atsisiųsti TrendMicro HijackThis.exe (HJT) į Desktop.
__________________  |
|
#3
Lapkritis 6, 2008, 16:19
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Išbėgau CCleaner ir diegti naują versiją HijackThis. Logfile Trend Micro HijackThis v2.0.2 Skaitymo išsaugotas 6:18:15 dėl 11/6/2008 Platforma: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Veikia procesus: C: \ WINDOWS \ System32 \ smss.exe C: \ WINDOWS \ system32 \ winlogon.exe C: \ WINDOWS \ system32 \ services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe C: \ WINDOWS \ explorer.exe C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe C: \ WINDOWS \ RTHDCPL.EXE C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ Program Files \ ASUS \ AASP \ 1.00.61 \ aaCenter.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ WINDOWS \ system32 \ nvsvc32.exe C: \ WINDOWS \ system32 \ PSIService.exe C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe C: \ Program Files \ Common Files \ pcsuite \ Services \ ServiceLayer.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe C: \ WINDOWS \ System32 \ svchost.exe C: \ WINDOWS \ system32 \ s1S8Dh6X.exe C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ AcroRd32.exe C: \ PROGRA ~ 1 \ COMMON ~ 1 \ pcsuite \ DATALA ~ 1 \ DATALA ~ 1.EXE C: \ WINDOWS \ system32 \ conime.exe C: \ Program Files \ CCleaner \ CCleaner.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll O2 - BHO: IE2EMBHO Class - (0A0DDBD3-6641-40B9-873F-BBDD26D6C14E) - C: \ Program Files \ easyMule \ modules \ IE2EM.dll O2 - BHO: RealPlayer Atsisiųsti ir įrašų Įskiepis Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ "RealPlayer \ rpbrowserrecordplugin.dll O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file) O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / Sync O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName O4 - HKLM \ .. \ Run: [Ai Nap] "C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe" O4 - HKLM \ .. \ Run: [CPU Monitor Power] "C: \ Program Files \ ASUS \ Ai Suite \ AiGear3 \ CpuPowerMonitor.exe" O4 - HKLM \ .. \ Run: [CPU Level Up Pagalba] C: \ Program Files \ ASUS \ Ai Suite \ CpuLevelUpHelp.exe O4 - HKLM \ .. \ Run: [ASUS Energijos taupymas] "C: \ Program Files \ ASUS \ Ai Suite \ energiją taupančias \ PwSave.exe" O4 - HKLM \ .. \ Run: [Ulead AutoDetector v2] C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM \ .. \ Run: [Alcmtr] ALCMTR.EXE O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe" O4 - HKLM \ .. \ Run: [NSLauncher] C: \ Program Files \ Nokia \ Nokia Software launcher \ NSLauncher.exe / startup O4 - HKLM \ .. \ Run: [avast!] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [\ \ MING3 \ Epson Stylus C120 Series] C: \ WINDOWS \ system32 \ spool \ drivers \ W32x86 \ 3 \ E_FATIC ca.exe / FU "C: \ DOCUME ~ 1 \ MKJ \ locals ~ 1 \ Temp \ E_S13.tmp "/ EF" HKCU " O4 - HKCU \ .. \ Run: [PcSync] C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe / NoDialog O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster 2009] C: \ Program Files \ Uniblue \ RegistryBooster \ RegistryBooster.exe / S O4 - HKUS \ S-1-5-19 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'LOCAL SERVICE') O4 - HKUS \ S-1-5-20 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'NETWORK SERVICE') O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM') O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user') O8 - Extra kontekstinio meniu punktą: Pridėti prie "Google Photos Screensa & ver - res: / / C: \ WINDOWS \ system32 \ GPhotos.scr/200 O8 - Extra kontekstinio meniu punktą: Atsisiųsti pagal easyMule - C: \ Program Files \ easyMule \ IE2EM.htm O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe O9 - Extra 'Tools' MENUITEM: @ Xpsp3res.dll, -20.001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O9 - Extra 'Tools' MENUITEM: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe O15 - ESC Patikimas Zona: http:// *. update.microsoft.com O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Nuotraukų Uploader 5 Control) -- http://upload.facebook.com/controls/...oUploader5.cab O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl klasė) -- http://www.update.microsoft.com/wind...?1224821007296 O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl klasė) -- http://www.update.microsoft.com/micr...?1224825458984 O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 kontrolės tarnybos (aswUpdSv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C: \ WINDOWS \ system32 \ PSIService.exe O23 - Service: ServiceLayer - Nokia. - C: \ Program Files \ Common Files \ pcsuite \ Services \ ServiceLayer.exe O23 - Service: Požiūris vadybininkas Paslaugos - Požiūris Corporation - C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe -- End of file - 7.422 baitų Koks sekantis žingsnis? Thanks for your help. |
|
#4
Lapkritis 6, 2008, 16:53
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Įtartinas failų skenavimas Eikite į VirSCAN.org Free on-line nuskaitymo paslaugos (Jei daugiau nei vienas failas turi nuskaityti turi būti daroma atskirai ir žurnalai Posted už kiekvieną) 1. Nukopijuokite ir įklijuokite šį failą į kelias Įtartinas failų skenavimas laukelyje puslapio viršuje. Kodas C: \ WINDOWS \ system32 \ s1S8Dh6X.exe 3. Spauda Ctrl + V klaviatūra (ir tuo pačiu metu), įrašykite kelią iki failo į langą. 4. Spauskite Įkelti mygtuką. Tai atliks nuskaitymo daugelyje skirtingų virusų skanavimo sistemos. Jūsų byla greičiausiai bus įrašytas į eilę, kuri paprastai trunka mažiau nei minutę, aišku. Svarbu: Palaukite, visos skanavimo variklių užpildyti. 5. Kai nuskaitymas baigiamas slinkite žemyn ir pasirinkite Kopijuoti į mainų sritį mygtuką. Tai bus nukopijuoti į mainų sritį ataskaitos nuorodą. 6. Įklijuoti mainų srities turinį į kitą atsakymą.
__________________ |
|
#5
Lapkritis 6, 2008, 17:19
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Čia yra Mainų Info failą s1S8Dh6X.exe. Failo informacija Failo vardas: s1S8Dh6X.exeFile dydis: 62.464 byteFile Tipas: PE32 executable MS Windows (GUI), "Intel" 80386 32-bitMD5: 895f4e2eed5a30e317460e66989042d0SHA1: 8d133ba222ce2d511ff28d900586e79041a8b4cfScanner rezultatai Scanner results: 8% Scanner (3 / 39) rasta kenkėjiška programa! Laikas: 2008 / 11/06 19:15:08 (EST)Skeneris  Variklio VerSig VerSig dataSkaitymo rezultatasLaikas-squared4.0.0.232008.11.032008-11-03--1.832AhnLab V32008.11.07.012008.11.072008-11-07-- 0.987AntiVir7.9.0.267.1.0.492008-11-06-- 1.503Antiy2.0.1820081106.15602992008-11-06-- 0.122Arcavir1.0.52008110611442008-11-06-- 1.227Authentium5.1.12008110611422008-11-06-- 1.367AVAST! 3.0.1081106-02008-11-06-- 0.725AVG7.5.52.442270.9.0/17722008-11-06Clicker.TXO 1.691BitDefender7.60825.20709477.217192008-11-07-- 3.401CA (VET) 9.0.0.14331.6.61952008-11-06-- 7.230ClamAV0.9485842008-11-07-- 0.021Comodo2.112.0.0.6992008-11-06-- 0.422CP Secure1.1.0.7152008.11.062008-11-06-- 6.447Dr.Web4.44.0.91702008.11.062008-11-06-- 3.465ewido4.0.0.22008.11.062008-11-06-- 3.024F-Prot4.4.4.56200811062008-11-06-- 1.293F-Secure5.51.61002008.11.06.112008-11-06-- 3.681Fortinet2.81-3.1179.6922008-11-06-- 0.215GData19.1393/19.94200811072008-11-07-- 2.739IkarusT3.1.01.452008.11.06.718072008-11-06-- 3.517JiangMin11.0.7062008.11.062008-11-06-- 1.312Kaspersky5.5.102008.11.062008-11-06-- 0.034KingSoft2008.9.8.182008.11.6.202008-11-06-- 0.690McAfee5.3.0054262008-11-06-- 2.352Microsoft1.41042008.11.072008-11-07-- 8.785mks_vir2.012008.11.062008-11-06-- 2.720Norman5.93.015.93.002008-11-06-- 5.480nProtect2008-11-06,0023828662008-11-06-- 5.379Panda9.05.012008.11.062008-11-06-- 3.744Quick Heal9.502008.09.122008-09-12-- 2.520Rising20.021.02.32.002008-11-06-- 3.054Sophos2.80.04.352008-11-07Mal / EncPk-CZ 1.881Sunbelt3.1.1783.223742008-11-04-- 1.058Symantec1.3.0.2420081106.0042008-11-06Infostealer 0.046The Hacker6.3.1.1v001432008-11-06-- 0.445Trend Micro8.700-10045.642.172008-11-06-- 0.028VBA323.12.8.920081106.17172008-11-06-- 1.390ViRobot200811052008.11.052008-11-05-- 0.398VirusBuster4.5.11.1010.90.27/6712492008-11-06-- 0.876Thanks |
|
#6
Lapkritis 6, 2008, 17:30
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas |
|
#7
Lapkritis 6, 2008, 17:39
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Parsisiųsti ComboFix iki einantys iš vienos iš žemiau nuorodų. Būtinai įrašykite jį į viršų Desktop. Link # 1 Link # 2 ** Pastaba: Svarbu, kad ji yra saugomi tiesiai darbalaukyje Uždarykite visus atidarytus interneto naršyklių. (Firefox, Internet Explorer, ir tt) prieš pradedant ComboFix. Laikinai daryti nepajėgų tavo AntivirusIr bet Antispyware realaus laiko apsauga prieš atlikti nuskaitymo. Spauskite šį saitą matyti saugumo programų sąrašą, kuris turėtų būti išjungtas ir kaip juos išjungti. Dukart spustelėkite combofix.exe ir vykdykite ekrane pateikiamas instrukcijas. Windows XP sistemos diegimo atkūrimo konsolė: - Jei naudojate Windows XP ir dar neturite atkūrimo konsolę, įrengtas, prašome įsitikinti, kad jūsų interneto ryšys yra aktyvus (jeigu įmanoma) ir spauskite Taip. - Jeigu dėl kažkokių priežasčių jūsų internetas yra ne darbo paspauskite Ne. -- Jei naudojate Windows XP, jums nebus pasiūlyta. - Kai esate raginami sutikti su EULA paspauskite Gerai. - Priimti Microsoft EULA (Paspauskite Taip). - Kai jūs pasakė, kad RC yra įdiegtas spustelėkite TAIP toliau nuskaitymo kenkėjiškų programų. Baigę ComboFix gamins žurnalas Jums. Skelbti ComboFix Prisijungti Jūsų kitą atsakymą. Svarbu: Don't mouseclick ComboFix lango kol jis veikia. Tai gali sukelti ją gardas. Atminkite, kad vėl įjungti antivirusinės ir apsaugos nuo šnipinėjimo programų, kai ComboFix baigtas.
__________________ |
|
#8
Lapkritis 6, 2008, 17:57
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas ComboFix Prisijungti ComboFix 08-11-05.02 - MKJ 2008-11-06 19:51:34.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3144 [GMT -5:00] Veikia nuo: C: \ Documents and Settings \ MKJ \ Desktop \ ComboFix.exe . ((((((((((((((((((((((((( Failus, sukurtus nuo 2008/10/07 iki 2008/11/07 ))))))))))) )))))))))))))))))))) . 2008-11-06 18:15. 2008-11-06 18:15 <DIR> d -------- C: \ Program Files \ CCleaner 2008-11-06 03:51. 2008-11-06 03:51 <DIR> d -------- C: \ Program Files \ Trend Micro 2008-11-06 03:22. 2008-11-06 03:22 <DIR> d -------- C: \ Program Files \ Alwil Software 2008-11-06 02:10. 2008-11-06 02:10 <DIR> d -------- C: \ Program Files \ Nuoroda Agregatai 2008-11-06 02:07. 2008-11-06 02:07 <DIR> DR-h ----- C: \ AHCache 2008-11-05 23:11. 2008-11-06 02:12 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Uniblue 2008-11-05 22:05. 2008-11-05 22:05 <DIR> d -------- C: \ Documents and Settings \ Administrator \ Application Data \ Malwarebytes 2008-11-05 22:04. 2008-11-05 22:04 <DIR> d -------- C: \ Documents and Settings \ Administrator 2008-11-05 16:34. 2008-11-05 16:34 <DIR> d -------- C: \ Program Files \ Xanga Uploader 2008-11-05 16:34. 2008-11-05 16:34 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \. Xuploader 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Program Files \ Malwarebytes 'Anti-Malware 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Malwarebytes 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes 2008-11-05 16:08. 2008-10-22 16:10 38.496 - ------ c: \ windows \ system32 \ drivers \ mbamswissarmy.sys 2008-11-05 16:08. 2008-10-22 16:10 15.504 - ------ c: \ windows \ system32 \ drivers \ mbam.sys 2008-11-05 15:38. 2008-11-05 15:38 62.464 - ------ C: \ Windows \ system32 \ s1S8Dh6X.exe 2008-11-01 16:18. 2008-11-01 16:18 <DIR> d -------- C: \ Windows \ system32 \ IOSUBSYS 2008-11-01 16:18. 2008-11-01 16:18 <DIR> d -------- C: \ Program Files \ Google 2008-10-28 02:00. 2008-10-28 02:00 <DIR> d -------- C: \ Program Files \ MSXML 4.0 2008-10-28 01:19. 2008-10-28 01:19 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Nokia 2008-10-28 01:19. 2008-10-28 01:19 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Datalayer 2008-10-28 01:18. 2008-10-30 05:43 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Phone Browser 2008-10-28 00:55. 2008-10-28 00:55 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ DIVX 2008-10-28 00:54. 2008-10-28 00:54 <DIR> d -------- C: \ Program Files \ Windows Media komponentai 2008-10-28 00:54. 2005-06-10 09:43 73.728 - ------ C: \ Windows \ system32 \ ISUSPM.cpl 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ DIFX 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ Common Files \ Nokia 2008-10-28 00:50. 2008-10-28 00:58 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ PC Suite " 2008-10-28 00:50. 2008-10-28 00:58 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ PC Suite " 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Downloaded Installations 2008-10-28 00:50. 2006-05-29 07:26 127.488 - ------ c: \ windows \ system32 \ drivers \ nmwcd.sys 2008-10-28 00:50. 2006-05-29 07:26 50.688 - ------ C: \ Windows \ system32 \ nmwcdcls.dll 2008-10-28 00:50. 2006-05-29 07:26 30.720 - ------ C: \ Windows \ system32 \ nmwcdcocls.dll 2008-10-28 00:50. 2006-05-29 07:26 13.312 - ------ c: \ windows \ system32 \ drivers \ nmwcdcm.sys 2008-10-28 00:50. 2006-05-29 07:26 13.312 - ------ c: \ windows \ system32 \ drivers \ nmwcdcj.sys 2008-10-28 00:50. 2006-05-29 07:26 8.704 - ------ c: \ windows \ system32 \ drivers \ nmwcdc.sys 2008-10-28 00:50. 2006-05-29 07:26 4.608 - ------ C: \ Windows \ system32 \ nmwcdlog.dll 2008-10-28 00:49. 2008-10-28 00:49 <DIR> d -------- C: \ Windows \ Downloaded Installations 2008-10-28 00:49. 2008-10-28 00:51 <DIR> d -------- C: \ Program Files \ Nokia 2008-10-28 00:49. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ Common Files \ pcsuite 2008-10-27 23:54. 2008-10-27 23:54 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ EPSON 2008-10-27 21:55. 2008-10-27 21:55 <DIR> d -------- C: \ Program Files \ Ventrilo 2008-10-27 21:55. 2008-10-27 21:55 <DIR> d -------- C: \ Program Files \ Common Files \ Wise Installation Wizard 2008-10-27 21:55. 2008-10-27 21:56 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Ventrilo 2008-10-27 21:13. 2008-11-06 19:50 160.100 - ------ C: \ Windows \ system32 \ nvapps.xml 2008-10-27 21:05. 2008-11-05 16:09 <DIR> da ------ C: \ Documents and Settings \ All Users \ Application Data \ TEMP 2008-10-26 23:48. 2008-11-06 05:29 <DIR> d -------- C: \ Program Files \ easyMule 2008-10-26 13:53. 2008-10-26 13:53 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Požiūris 2008-10-25 19:37. 2008-10-25 19:37 <DIR> d -------- C: \ Program Files \ iPod 2008-10-25 19:37. 2008-10-25 19:37 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Apple Computer 2008-10-25 19:37. 2008-04-17 12:12 107.368 - ------ C: \ Windows \ system32 \ GEARAspi.dll 2008-10-25 19:37. 2008-04-17 12:12 15.464 - ------ c: \ windows \ system32 \ drivers \ GEARAspiWDM.sys 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ QuickTime 2008-10-25 19:36. 2008-10-25 19:37 <DIR> d -------- C: \ Program Files \ iTunes 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Bonjour 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Apple Software Update 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Apple Computer 2008-10-25 19:36. 2008-10-25 19:37 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ (3276BE95_AF08_429F_A64F_CA64CB79BCF6) 2008-10-25 19:35. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Common Files \ Apple 2008-10-25 19:35. 2008-10-25 19:35 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Apple 2008-10-24 18:11. 2007-07-30 18:19 271.224 - ------ C: \ Windows \ system32 \ mucltui.dll 2008-10-24 18:11. 2007-07-30 18:19 30.072 - ------ C: \ Windows \ system32 \ mucltui.dll.mui 2008-10-24 15:39. 2008-10-24 15:39 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Pūga 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Real 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Common Files \ Xing bendrai 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Common Files \ Real 2008-10-24 14:07. 2008-10-24 14:07 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Įrašai 2008-10-24 13:59. 2008-10-24 13:59 <DIR> d -------- C: \ Įrašai 2008-10-24 10:05. 2008-10-27 21:15 <DIR> d -------- C: \ Windows \ nView 2008-10-24 10:05. 2008-01-10 01:30 442.368-RA ------ C: \ Windows \ system32 \ nvusmb.exe 2008-10-24 10:05. 2008-03-06 15:23 442.368 - ------ C: \ Windows \ system32 \ NVUNINST.EXE 2008-10-24 10:05. 2008-03-19 04:04 442.368 - ------ C: \ Windows \ system32 \ nvudisp.exe 2008-10-24 10:05. 2007-09-27 22:32 356.352-RA ------ C: \ Windows \ system32 \ nvusmu.exe 2008-10-24 10:05. 2008-01-03 17:26 17.737 - ------ C: \ Windows \ system32 \ nvdisp.nvu 2008-10-24 10:05. 2007-10-12 03:53 13.312-RA ------ C: \ windows \ system32 \ drivers \ nvsmu.sys 2008-10-24 10:05. 2007-12-07 03:12 5.836 - ------ C: \ Windows \ system32 \ nvnrm.nvu 2008-10-24 10:05. 2008-01-16 17:17 3.948-RA ------ C: \ windows \ system32 \ drivers \ nvphy.bin 2008-10-24 10:05. 2007-12-07 01:34 2.016-RA ------ C: \ Windows \ system32 \ nvsmb.nvu 2008-10-24 10:05. 2007-09-12 01:14 659-RA ------ C: \ Windows \ system32 \ nvsmu.nvu 2008-10-24 10:04. 2008-10-23 22:44 35.647 - ------ C: \ Windows \ Ascd_log.ini . (((((((((((((((((((((((((((((((((((((((( Find3M Pranešimas )))))))) )))))))))))))))))))))))))))))))))))))))))))) . 2008-11-06 10:37 --------- ----- WC d: \ Program Files \ AIMTunes 2008-11-04 21:36 --------- d ----- WC: \ Program Files \ World of Warcraft 2008-10-28 05:55 --------- d ----- WC: \ Program Files \ Common Files \ Ulead Systems 2008-10-28 05:55 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ Ulead Systems 2008-10-28 05:54 --------- d ----- WC: \ Program Files \ Ulead Systems 2008-10-28 05:54 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Ulead Systems 2008-10-28 05:53 --------- D - h - WC: \ Program Files \ InstallShield įrengimas Informacija 2008-10-28 05:02 --------- d ----- WC: \ Program Files \ Common Files \ Adobe 2008-10-24 19:24 499.712 ---- AW C: \ Windows \ system32 \ msvcp71.dll 2008-10-24 19:24 348.160 ---- AW C: \ Windows \ system32 \ msvcr71.dll 2008-10-24 14:51 --------- d ----- WC: \ Program Files \ Microsoft FrontPage 2008-10-24 07:55 --------- ----- WC d: \ Program Files \ MSN Messenger 2008-10-24 06:09 --------- d ----- WC: \ Program Files \ Microsoft CAPICOM 2.1.0.2 2008-10-24 05:44 --------- d ----- WC: \ Program Files \ Winamp 2008-10-24 05:44 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ Winamp 2008-10-24 05:40 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ acccore 2008-10-24 05:39 --------- ----- WC d: \ Program Files \ AIM6 2008-10-24 05:39 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL Atsisiuntimai 2008-10-24 05:38 --------- ----- WC d: \ Program Files \ Požiūris 2008-10-24 05:38 --------- d ----- WC: \ Program Files \ Common Files \ AOL 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Požiūris 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL OCP 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ acccore 2008-10-24 05:32 --------- d ----- WC: \ Program Files \ Common Files \ Blizzard Entertainment 2008-10-24 05:20 --------- d ----- WC: \ Program Files \ Windows Media Connect 2 2008-10-24 05:10 --------- ----- WC d: \ Program Files \ DIVX 2008-10-24 05:08 --------- ----- WC d: \ Program Files \ DefilerPak 2008-10-24 04:37 --------- ----- WC d: \ Program Files \ Realtek 2008-10-24 04:33 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Symantec 2008-10-24 04:18 --------- d ----- WC: \ Program Files \ Common Files \ Symantec Shared 2008-10-24 03:58 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ InstallShield 2008-10-24 03:57 --------- d ----- WC: \ Program Files \ Common Files \ InstallShield 2008-10-24 03:54 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Corel 2008-10-24 03:33 --------- d ----- WC: \ Program Files \ ASUS 2008-10-24 03:08 315.392 ---- AW C: \ Windows \ HideWin.exe 2008-10-24 03:08 --------- ----- WC d: \ Program Files \ profilis 2008-10-24 00:18 2.302.017 ---- AW C: \ Windows \ system32 \ GPhotos.scr 2008-09-23 22:46 245.408 ---- AW C: \ Windows \ system32 \ unicows.dll 2008-09-15 12:12 1.846.400 ---- AW C: \ Windows \ system32 \ Win32k.sys 2008-09-08 10:41 333.824 ---- AW C: \ Windows \ system32 \ drivers \ srv.sys 2008-08-29 14:18 87.336 ---- AW C: \ Windows \ system32 \ dns-sd.exe 2008-08-29 13:53 61.440 ---- AW C: \ Windows \ system32 \ dnssd.dll 2008-08-26 07:24 826.368 ---- AW C: \ Windows \ system32 \ wininet.dll 2008-08-14 10:09 2.145.280 ---- AW C: \ Windows \ System32 \ Ntoskrnl.exe 2008-08-14 09:33 2.023.936 ---- AW C: \ Windows \ system32 \ Ntkrnlpa.exe . ((((((((((((((((((((((((((((((((((((( Reg Kraunasi Taškai )))))))))) )))))))))))))))))))))))))))))))))))))))) . . * Pastaba: * tuščių įrašų ir teisėtu default įrašai nerodoma REGEDIT4 [HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (0A0DDBD3-6641-40B9-873F-BBDD26D6C14E)] 2008-10-23 02:37 147928 - ------ C: \ Program Files \ easyMule \ modules \ IE2EM.dll [HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run] "Ctfmon.exe" = "C: \ Windows \ system32 \ Ctfmon.exe" [2008-04-13 15360] "\ \ MING3 \ EPSON Stylus C120 serija "=" C: \ Windows \ System32 \ spool \ drivers \ W32x86 \ 3 \ E_FATICCA.EXE "[2007-03-12 182272] "PcSync" = "C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe" [2006-06-27 1449984] [HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run] "PHIME2002ASync" = "c: \ windows \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE" [2004-08-04 455168] "PHIME2002A" = "c: \ windows \ system32 \ IME \ TINTLGNT \ TIN TSETP.EXE" [2004-08-04 455168] "Ai Nap" = "C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe" [2008-01-28 1413120] "CPU Monitor Power" = "C: \ Program Files \ ASUS \ Ai Suite \ AiGear3 \ CpuPowerMonitor.exe" [2008-01-09 627200] "CPU Level Up Pagalba" = "C: \ Program Files \ ASUS \ Ai Suite \ CpuLevelUpHelp.exe" [2007-11-30 881152] "ASUS Energy Saving" = "C: \ Program Files \ ASUS \ Ai Suite \ energiją taupančias \ PwSave.exe" [2008-01-28 1352704] "Ulead AutoDetector v2" = "C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe" [2006-11-29 90112] "TkBellExe" = "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe" [2008-10-24 185872] "QuickTime Task" = "C: \ Program Files \ QuickTime \ qttask.exe" [2008-09-06 413696] "iTunesHelper" = "C: \ Program Files \ iTunes \ iTunesHelper.exe" [2008-10-01 289576] "NvCplDaemon" = "C: \ Windows \ system32 \ NvCpl.dll" [2008-01-03 13508608] "NvMediaCenter" = "C: \ Windows \ system32 \ NvMcTray. Dll" [2008-01-03 86016] "Adobe Reader Speed Launcher" = "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe" [2008-01-11 39792] "NSLauncher" = "C: \ Program Files \ Nokia \ Nokia Software launcher \ NSLauncher.exe" [2006-11-28 2658304] "Avast!" = "C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp. Exe" [2008-07-19 78008] "RTHDCPL" = "RTHDCPL.EXE" [2008/05/07 C: \ Windows \ RTHDCPL.exe] "nwiz" = "nwiz.exe" [2008/01/03 C: \ WINDOWS \ system32 \ nwiz.exe] [HKEY_USERS \. DEFAULT \ Software \ Microsoft \ Windows \ Cur rentVersion \ Run] "Ctfmon.exe" = "C: \ Windows \ System32 \ Ctfmon.exe" [2008-04-13 15360] [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ drivers32] "msacm.dvacm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ Vio \ Dvacm.acm "msacm.divxa32" = DivXa32.acm "msacm.ulmp3acm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ MPEG \ ulmp3acm.acm "msacm.mpegacm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ MPEG \ mpegacm.acm [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKLM \ ~ \ Services \ SharedAccess \ Parameters \ firewallpo licy \ standardprofile \ AuthorizedApplications \ List] "% windir% \ \ System32 \ \ sessmgr.exe" = "% windir% \ \ network diagnostic \ \ xpnetdiag.exe" = "C: \ Program Files \ Common Files \ \ AOL \ \ krautuvas \ \ aolload.exe" = "C: \ Program Files \ \ AIM6 \ \ aim6.exe" = "C: \ Program Files \ World of Warcraft \ \ WoW-2.3.0-ENU-downloader.exe" = "C: \ Program Files \ MSN Messenger \ \ msnmsgr.exe" = "C: \ Program Files \ MSN Messenger \ \ livecall.exe" = "C: \ Program Files \ Bonjour \ \ mDNSResponder.exe" = "C: \ Program Files \ iTunes \ \ iTunes.exe" = "C: \ Program Files \ \ easyMule \ \ emule.exe" = [HKLM \ ~ \ Services \ SharedAccess \ Parameters \ firewallpo licy \ standardprofile \ GloballyOpenPorts \ List] "3.724 TCP" = 3.724: TCP: Blizzard Downloader: 3724 "12.178 TCP" = 12.178: TCP: BitComet 12.178 TCP "12.178: UDP" = 12.178: UDP: BitComet 12.178 UDP R1 aswSP; Avast! Savigynai; c: \ windows \ system32 \ drivers \ aswSP.sys [2008-07-19 78416] R2 aswFsBlk; aswFsBlk; c: \ windows \ system32 \ drivers \ aswF sBlk.sys [2008-07-19 20560] R2 Požiūris Manager paslaugos; Požiūris Manager paslaugos; C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe [2007-01-04 24652] R3 NVHDA; Paslaugos NVIDIA High Definition Audio Driver; c: \ windows \ system32 \ drivers \ nvhda32.sys [2008-05-04 38560] . Turinys "Scheduled Tasks" katalogą 2008/11/01 C: \ Windows \ Uždaviniai \ AppleSoftwareUpdate.job - C: \ Program Files \ Apple Software Update \ SoftwareUpdate.exe [2008-07-30 11:34] 2008/11/06 C: \ Windows \ Uždaviniai \ At1.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At10.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At11.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At12.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At13.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At14.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At15.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At16.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At17.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At18.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At19.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At2.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/07 C: \ Windows \ Uždaviniai \ At20.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At21.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At22.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At23.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At24.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At3.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At4.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At5.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At6.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At7.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At8.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] 2008/11/06 C: \ Windows \ Uždaviniai \ At9.job - C: \ Windows \ system32 \ s1S8Dh6X.exe [2008-11-05 15:38] . - - - - Orphans nuimti - - - -- HKCU-run-Uniblue RegistryBooster 2009 - C: \ Program Files \ Uniblue \ RegistryBooster \ RegistryBooster.exe MSConfigStartUp-Uniblue RegistryBooster 2009 - C: \ Program Files \ Uniblue \ RegistryBooster \ RegistryBooster.exe . ------- Papildomos Scan ------- . R0 -: HKCU-Main, Start Page = aboutšvarūs R1 -: HKCU-Internet Settings, ProxyOverride = *. vietos O8 -: Pridėti prie "Google Photos Screensa & ver - C: \ Windows \ system32 \ GPhotos.scr/200 O8 -: Atsisiųsti iki easyMule - C: \ Program Files \ easyMule \ IE2EM.htm . ************************************************** ************************ catchme 0.3.1367 W2K/XP/Vista - rootkit / Stealth kenkėjiškų detektorius pagal Gmer, http://www.gmer.net Rootkit scan 2008-11-06 19:54:20 Windows 5.1.2600 Service Pack 3 NTFS skenavimo paslėptus procesus ... skenavimo paslėptas autostart entries ... skenavimo paslėptus failus ... skenavimas baigtas sėkmingai paslėptus failus: 0 ************************************************** ************************ . Atlikimo laikas: 2008-11-06 19:54:45 ComboFix-karantine-files.txt 2008-11-07 00:54:42 Pre-Rida: 41621639168 bytes nemokamai Post-Rida: 41699291136 bytes nemokamai 396 --- EOF --- 2008-10-28 07:00:21 |
|
#9
Lapkritis 6, 2008, 18:28
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas Pastaba Toliau instrukcijos buvo sukurtas specialiai šiam vartotojui. Jei nėra šio vartotojo NĖRA laikytis šių nurodymų, nes jie gali sugadinti jūsų sistemos veikimą Ištrinti šiuos failus / aplankus, taip: 1. Pereiti į Pradžia > Bėgti > Pagal tipą Notepad.exe ir paspauskite Gerai atidarykite "Notepad". Tai privalėti būti Notepad, WordPad nėra. 2. Kopijuoti tekstą žemiau kodą langelyje, pabrėžiant visą tekstą ir paspausdami Ctrl + C Kodas Killall: Failas: C: \ Windows \ system32 \ s1S8Dh6X.exe C: \ Windows \ Uždaviniai \ At1.job C: \ Windows \ Uždaviniai \ At10.job C: \ Windows \ Uždaviniai \ At11.job C: \ Windows \ Uždaviniai \ At12.job C: \ Windows \ Uždaviniai \ At13.job C: \ Windows \ Uždaviniai \ At14.job C: \ Windows \ Uždaviniai \ At15.job C: \ Windows \ Uždaviniai \ At16.job C: \ Windows \ Uždaviniai \ At17.job C: \ Windows \ Uždaviniai \ At18.job C: \ Windows \ Uždaviniai \ At19.job C: \ Windows \ Uždaviniai \ At2.job C: \ Windows \ Uždaviniai \ At20.job C: \ Windows \ Uždaviniai \ At21.job C: \ Windows \ Uždaviniai \ At22.job C: \ Windows \ Uždaviniai \ At23.job C: \ Windows \ Uždaviniai \ At24.job C: \ Windows \ Uždaviniai \ At3.job C: \ Windows \ Uždaviniai \ At4.job C: \ Windows \ Uždaviniai \ At5.job C: \ Windows \ Uždaviniai \ At6.job C: \ Windows \ Uždaviniai \ At7.job C: \ Windows \ Uždaviniai \ At8.job C: \ Windows \ Uždaviniai \ At9.job 4. Tada spustelėkite Failas > Saugoti 5. Bylos pavadinimas CFScript.txt - Išsaugokite šį failą savo darbalaukyje 6. Vilkite CFScript (paspauskite ir laikykite kairįjį pelės klavišą, vilkite failą) ir palikite jį (spaudai kairįjį pelės mygtuką) į ComboFix.exe kaip matote ekrano apačioje. Svarbu: Atlikti šį nurodymą atidžiai!  ComboFix bus pradėti vykdyti, tiesiog vykdykite ekrane pateikiamas instrukcijas. Po perkrovimo (jei ji prašo paleisti), tai duos žurnalas Jums. Rašyti, kad žurnalas (Combofix.txt) į jūsų kitą atsakymą. Pastaba Don't mouseclick ComboFix lango kol jis veikia. Tai gali sukelti jūsų sistema įšaldyti
__________________ |
|
#10
Lapkritis 6, 2008, 18:37
| |||
| |||
| Virus: iexplore.exe kaip sistemos procesas ComboFix Prisijungti ComboFix 08-11-05.02 - MKJ 2008-11-06 20:31:01.3 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2458 [GMT -5:00] Veikia nuo: C: \ Documents and Settings \ MKJ \ Desktop \ ComboFix.exe Command jungikliai naudojami: C: \ Documents and Settings \ MKJ \ Desktop \ CFScript.txt * Sukurtas naujas atkūrimo taškas Failas: C: \ Windows \ system32 \ s1S8Dh6X.exe C: \ Windows \ Uždaviniai \ At1.job C: \ Windows \ Uždaviniai \ At10.job C: \ Windows \ Uždaviniai \ At11.job C: \ Windows \ Uždaviniai \ At12.job C: \ Windows \ Uždaviniai \ At13.job C: \ Windows \ Uždaviniai \ At14.job C: \ Windows \ Uždaviniai \ At15.job C: \ Windows \ Uždaviniai \ At16.job C: \ Windows \ Uždaviniai \ At17.job C: \ Windows \ Uždaviniai \ At18.job C: \ Windows \ Uždaviniai \ At19.job C: \ Windows \ Uždaviniai \ At2.job C: \ Windows \ Uždaviniai \ At20.job C: \ Windows \ Uždaviniai \ At21.job C: \ Windows \ Uždaviniai \ At22.job C: \ Windows \ Uždaviniai \ At23.job C: \ Windows \ Uždaviniai \ At24.job C: \ Windows \ Uždaviniai \ At3.job C: \ Windows \ Uždaviniai \ At4.job C: \ Windows \ Uždaviniai \ At5.job C: \ Windows \ Uždaviniai \ At6.job C: \ Windows \ Uždaviniai \ At7.job C: \ Windows \ Uždaviniai \ At8.job C: \ Windows \ Uždaviniai \ At9.job . ((((((((((((((((((((((((((((((((((((((( Kiti deletions ))))))))) )))))))))))))))))))))))))))))))))))))))) . C: \ Windows \ system32 \ s1S8Dh6X.exe C: \ Windows \ Uždaviniai \ At1.job C: \ Windows \ Uždaviniai \ At10.job C: \ Windows \ Uždaviniai \ At11.job C: \ Windows \ Uždaviniai \ At12.job C: \ Windows \ Uždaviniai \ At13.job C: \ Windows \ Uždaviniai \ At14.job C: \ Windows \ Uždaviniai \ At15.job C: \ Windows \ Uždaviniai \ At16.job C: \ Windows \ Uždaviniai \ At17.job C: \ Windows \ Uždaviniai \ At18.job C: \ Windows \ Uždaviniai \ At19.job C: \ Windows \ Uždaviniai \ At2.job C: \ Windows \ Uždaviniai \ At20.job C: \ Windows \ Uždaviniai \ At21.job C: \ Windows \ Uždaviniai \ At22.job C: \ Windows \ Uždaviniai \ At23.job C: \ Windows \ Uždaviniai \ At24.job C: \ Windows \ Uždaviniai \ At3.job C: \ Windows \ Uždaviniai \ At4.job C: \ Windows \ Uždaviniai \ At5.job C: \ Windows \ Uždaviniai \ At6.job C: \ Windows \ Uždaviniai \ At7.job C: \ Windows \ Uždaviniai \ At8.job C: \ Windows \ Uždaviniai \ At9.job . ((((((((((((((((((((((((( Failus, sukurtus nuo 2008/10/07 iki 2008/11/07 ))))))))))) )))))))))))))))))))) . 2008-11-06 18:15. 2008-11-06 18:15 <DIR> d -------- C: \ Program Files \ CCleaner 2008-11-06 03:51. 2008-11-06 03:51 <DIR> d -------- C: \ Program Files \ Trend Micro 2008-11-06 03:22. 2008-11-06 03:22 <DIR> d -------- C: \ Program Files \ Alwil Software 2008-11-06 02:10. 2008-11-06 02:10 <DIR> d -------- C: \ Program Files \ Nuoroda Agregatai 2008-11-06 02:07. 2008-11-06 02:07 <DIR> DR-h ----- C: \ AHCache 2008-11-05 23:11. 2008-11-06 02:12 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Uniblue 2008-11-05 22:05. 2008-11-05 22:05 <DIR> d -------- C: \ Documents and Settings \ Administrator \ Application Data \ Malwarebytes 2008-11-05 22:04. 2008-11-05 22:04 <DIR> d -------- C: \ Documents and Settings \ Administrator 2008-11-05 16:34. 2008-11-05 16:34 <DIR> d -------- C: \ Program Files \ Xanga Uploader 2008-11-05 16:34. 2008-11-05 16:34 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \. Xuploader 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Program Files \ Malwarebytes 'Anti-Malware 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Malwarebytes 2008-11-05 16:08. 2008-11-05 16:08 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes 2008-11-05 16:08. 2008-10-22 16:10 38.496 - ------ c: \ windows \ system32 \ drivers \ mbamswissarmy.sys 2008-11-05 16:08. 2008-10-22 16:10 15.504 - ------ c: \ windows \ system32 \ drivers \ mbam.sys 2008-11-01 16:18. 2008-11-01 16:18 <DIR> d -------- C: \ Windows \ system32 \ IOSUBSYS 2008-11-01 16:18. 2008-11-01 16:18 <DIR> d -------- C: \ Program Files \ Google 2008-10-28 02:00. 2008-10-28 02:00 <DIR> d -------- C: \ Program Files \ MSXML 4.0 2008-10-28 01:19. 2008-10-28 01:19 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Nokia 2008-10-28 01:19. 2008-10-28 01:19 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Datalayer 2008-10-28 01:18. 2008-10-30 05:43 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Phone Browser 2008-10-28 00:55. 2008-10-28 00:55 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ DIVX 2008-10-28 00:54. 2008-10-28 00:54 <DIR> d -------- C: \ Program Files \ Windows Media komponentai 2008-10-28 00:54. 2005-06-10 09:43 73.728 - ------ C: \ Windows \ system32 \ ISUSPM.cpl 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ DIFX 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ Common Files \ Nokia 2008-10-28 00:50. 2008-10-28 00:58 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ PC Suite " 2008-10-28 00:50. 2008-10-28 00:58 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ PC Suite " 2008-10-28 00:50. 2008-10-28 00:50 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Downloaded Installations 2008-10-28 00:50. 2006-05-29 07:26 127.488 - ------ c: \ windows \ system32 \ drivers \ nmwcd.sys 2008-10-28 00:50. 2006-05-29 07:26 50.688 - ------ C: \ Windows \ system32 \ nmwcdcls.dll 2008-10-28 00:50. 2006-05-29 07:26 30.720 - ------ C: \ Windows \ system32 \ nmwcdcocls.dll 2008-10-28 00:50. 2006-05-29 07:26 13.312 - ------ c: \ windows \ system32 \ drivers \ nmwcdcm.sys 2008-10-28 00:50. 2006-05-29 07:26 13.312 - ------ c: \ windows \ system32 \ drivers \ nmwcdcj.sys 2008-10-28 00:50. 2006-05-29 07:26 8.704 - ------ c: \ windows \ system32 \ drivers \ nmwcdc.sys 2008-10-28 00:50. 2006-05-29 07:26 4.608 - ------ C: \ Windows \ system32 \ nmwcdlog.dll 2008-10-28 00:49. 2008-10-28 00:49 <DIR> d -------- C: \ Windows \ Downloaded Installations 2008-10-28 00:49. 2008-10-28 00:51 <DIR> d -------- C: \ Program Files \ Nokia 2008-10-28 00:49. 2008-10-28 00:50 <DIR> d -------- C: \ Program Files \ Common Files \ pcsuite 2008-10-27 23:54. 2008-10-27 23:54 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ EPSON 2008-10-27 21:55. 2008-10-27 21:55 <DIR> d -------- C: \ Program Files \ Ventrilo 2008-10-27 21:55. 2008-10-27 21:55 <DIR> d -------- C: \ Program Files \ Common Files \ Wise Installation Wizard 2008-10-27 21:55. 2008-10-27 21:56 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Ventrilo 2008-10-27 21:13. 2008-11-06 20:34 160.100 - ------ C: \ Windows \ system32 \ nvapps.xml 2008-10-27 21:05. 2008-11-05 16:09 <DIR> da ------ C: \ Documents and Settings \ All Users \ Application Data \ TEMP 2008-10-26 23:48. 2008-11-06 05:29 <DIR> d -------- C: \ Program Files \ easyMule 2008-10-26 13:53. 2008-10-26 13:53 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Požiūris 2008-10-25 19:37. 2008-10-25 19:37 <DIR> d -------- C: \ Program Files \ iPod 2008-10-25 19:37. 2008-10-25 19:37 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Application Data \ Apple Computer 2008-10-25 19:37. 2008-04-17 12:12 107.368 - ------ C: \ Windows \ system32 \ GEARAspi.dll 2008-10-25 19:37. 2008-04-17 12:12 15.464 - ------ c: \ windows \ system32 \ drivers \ GEARAspiWDM.sys 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ QuickTime 2008-10-25 19:36. 2008-10-25 19:37 <DIR> d -------- C: \ Program Files \ iTunes 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Bonjour 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Apple Software Update 2008-10-25 19:36. 2008-10-25 19:36 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Apple Computer 2008-10-25 19:36. 2008-10-25 19:37 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ (3276BE95_AF08_429F_A64F_CA64CB79BCF6) 2008-10-25 19:35. 2008-10-25 19:36 <DIR> d -------- C: \ Program Files \ Common Files \ Apple 2008-10-25 19:35. 2008-10-25 19:35 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Apple 2008-10-24 18:11. 2007-07-30 18:19 271.224 - ------ C: \ Windows \ system32 \ mucltui.dll 2008-10-24 18:11. 2007-07-30 18:19 30.072 - ------ C: \ Windows \ system32 \ mucltui.dll.mui 2008-10-24 15:39. 2008-10-24 15:39 <DIR> d -------- C: \ Documents and Settings \ All Users \ Application Data \ Pūga 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Real 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Common Files \ Xing bendrai 2008-10-24 14:24. 2008-10-24 14:24 <DIR> d -------- C: \ Program Files \ Common Files \ Real 2008-10-24 14:07. 2008-10-24 14:07 <DIR> d -------- C: \ Documents and Settings \ MKJ \ Įrašai 2008-10-24 13:59. 2008-10-24 13:59 <DIR> d -------- C: \ Įrašai 2008-10-24 10:05. 2008-10-27 21:15 <DIR> d -------- C: \ Windows \ nView 2008-10-24 10:05. 2008-01-10 01:30 442.368-RA ------ C: \ Windows \ system32 \ nvusmb.exe 2008-10-24 10:05. 2008-03-06 15:23 442.368 - ------ C: \ Windows \ system32 \ NVUNINST.EXE 2008-10-24 10:05. 2008-03-19 04:04 442.368 - ------ C: \ Windows \ system32 \ nvudisp.exe 2008-10-24 10:05. 2007-09-27 22:32 356.352-RA ------ C: \ Windows \ system32 \ nvusmu.exe 2008-10-24 10:05. 2008-01-03 17:26 17.737 - ------ C: \ Windows \ system32 \ nvdisp.nvu 2008-10-24 10:05. 2007-10-12 03:53 13.312-RA ------ C: \ windows \ system32 \ drivers \ nvsmu.sys 2008-10-24 10:05. 2007-12-07 03:12 5.836 - ------ C: \ Windows \ system32 \ nvnrm.nvu 2008-10-24 10:05. 2008-01-16 17:17 3.948-RA ------ C: \ windows \ system32 \ drivers \ nvphy.bin 2008-10-24 10:05. 2007-12-07 01:34 2.016-RA ------ C: \ Windows \ system32 \ nvsmb.nvu 2008-10-24 10:05. 2007-09-12 01:14 659-RA ------ C: \ Windows \ system32 \ nvsmu.nvu 2008-10-24 10:04. 2008-10-23 22:44 35.647 - ------ C: \ Windows \ Ascd_log.ini . (((((((((((((((((((((((((((((((((((((((( Find3M Pranešimas )))))))) )))))))))))))))))))))))))))))))))))))))))))) . 2008-11-06 10:37 --------- ----- WC d: \ Program Files \ AIMTunes 2008-11-04 21:36 --------- d ----- WC: \ Program Files \ World of Warcraft 2008-10-28 05:55 --------- d ----- WC: \ Program Files \ Common Files \ Ulead Systems 2008-10-28 05:55 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ Ulead Systems 2008-10-28 05:54 --------- d ----- WC: \ Program Files \ Ulead Systems 2008-10-28 05:54 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Ulead Systems 2008-10-28 05:53 --------- D - h - WC: \ Program Files \ InstallShield įrengimas Informacija 2008-10-28 05:02 --------- d ----- WC: \ Program Files \ Common Files \ Adobe 2008-10-24 19:24 499.712 ---- AW C: \ Windows \ system32 \ msvcp71.dll 2008-10-24 19:24 348.160 ---- AW C: \ Windows \ system32 \ msvcr71.dll 2008-10-24 14:51 --------- d ----- WC: \ Program Files \ Microsoft FrontPage 2008-10-24 07:55 --------- ----- WC d: \ Program Files \ MSN Messenger 2008-10-24 06:09 --------- d ----- WC: \ Program Files \ Microsoft CAPICOM 2.1.0.2 2008-10-24 05:44 --------- d ----- WC: \ Program Files \ Winamp 2008-10-24 05:44 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ Winamp 2008-10-24 05:40 --------- ----- WC d: \ Documents and Settings \ MKJ \ Application Data \ acccore 2008-10-24 05:39 --------- ----- WC d: \ Program Files \ AIM6 2008-10-24 05:39 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL Atsisiuntimai 2008-10-24 05:38 --------- ----- WC d: \ Program Files \ Požiūris 2008-10-24 05:38 --------- d ----- WC: \ Program Files \ Common Files \ AOL 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Požiūris 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL OCP 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ AOL 2008-10-24 05:38 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ acccore 2008-10-24 05:32 --------- d ----- WC: \ Program Files \ Common Files \ Blizzard Entertainment 2008-10-24 05:20 --------- d ----- WC: \ Program Files \ Windows Media Connect 2 2008-10-24 05:10 --------- ----- WC d: \ Program Files \ DIVX 2008-10-24 05:08 --------- ----- WC d: \ Program Files \ DefilerPak 2008-10-24 04:37 --------- ----- WC d: \ Program Files \ Realtek 2008-10-24 04:33 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Symantec 2008-10-24 04:18 --------- d ----- WC: \ Program Files \ Common Files \ Symantec Shared 2008-10-24 03:58 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ InstallShield 2008-10-24 03:57 --------- d ----- WC: \ Program Files \ Common Files \ InstallShield 2008-10-24 03:54 --------- ----- WC d: \ Documents and Settings \ All Users \ Application Data \ Corel 2008-10-24 03:33 --------- d ----- WC: \ Program Files \ ASUS 2008-10-24 03:08 315.392 ---- AW C: \ Windows \ HideWin.exe 2008-10-24 03:08 --------- ----- WC d: \ Program Files \ profilis 2008-10-24 00:18 2.302.017 ---- AW C: \ Windows \ system32 \ GPhotos.scr 2008-09-23 22:46 245.408 ---- AW C: \ Windows \ system32 \ unicows.dll 2008-09-15 12:12 1.846.400 ---- AW C: \ Windows \ system32 \ Win32k.sys 2008-09-08 10:41 333.824 ---- AW C: \ Windows \ system32 \ drivers \ srv.sys 2008-08-29 14:18 87.336 ---- AW C: \ Windows \ system32 \ dns-sd.exe 2008-08-29 13:53 61.440 ---- AW C: \ Windows \ system32 \ dnssd.dll 2008-08-26 07:24 826.368 ---- AW C: \ Windows \ system32 \ wininet.dll 2008-08-14 10:09 2.145.280 ---- AW C: \ Windows \ System32 \ Ntoskrnl.exe 2008-08-14 09:33 2.023.936 ---- AW C: \ Windows \ system32 \ Ntkrnlpa.exe . ((((((((((((((((((((((((((((( Snapshot@2008-11-06_19.54.31.75 )))))))))) ))))))))))))))))))))))))))))))) . - 2008-11-06 23:26:54 49.198 ---- AW C: \ Windows \ system32 \ perfc009.dat + 2008-11-07 00:54:48 49.198 ---- AW C: \ Windows \ system32 \ perfc009.dat - 2008-11-06 23:26:54 390.094 ---- AW C: \ Windows \ system32 \ perfh009.dat + 2008-11-07 00:54:48 390.094 ---- AW C: \ Windows \ system32 \ perfh009.dat + 2008-11-07 01:33:47 16.384 ---- Atw C: \ Windows \ Temp \ Perflib_Perfdata_584.dat . ((((((((((((((((((((((((((((((((((((( Reg Kraunasi Taškai )))))))))) )))))))))))))))))))))))))))))))))))))))) . . * Pastaba: * tuščių įrašų ir teisėtu default įrašai nerodoma REGEDIT4 [HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (0A0DDBD3-6641-40B9-873F-BBDD26D6C14E)] 2008-10-23 02:37 147928 - ------ C: \ Program Files \ easyMule \ modules \ IE2EM.dll [HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run] "Ctfmon.exe" = "C: \ Windows \ system32 \ Ctfmon.exe" [2008-04-13 15360] "\ \ MING3 \ EPSON Stylus C120 serija "=" C: \ Windows \ System32 \ spool \ drivers \ W32x86 \ 3 \ E_FATICCA.EXE "[2007-03-12 182272] "PcSync" = "C: \ Program Files \ Nokia \ Nokia PC Suite 6 \ PcSync2.exe" [2006-06-27 1449984] [HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run] "PHIME2002ASync" = "c: \ windows \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE" [2004-08-04 455168] "PHIME2002A" = "c: \ windows \ system32 \ IME \ TINTLGNT \ TIN TSETP.EXE" [2004-08-04 455168] "Ai Nap" = "C: \ Program Files \ ASUS \ Ai Suite \ AiNap \ AiNap.exe" [2008-01-28 1413120] "CPU Monitor Power" = "C: \ Program Files \ ASUS \ Ai Suite \ AiGear3 \ CpuPowerMonitor.exe" [2008-01-09 627200] "CPU Level Up Pagalba" = "C: \ Program Files \ ASUS \ Ai Suite \ CpuLevelUpHelp.exe" [2007-11-30 881152] "ASUS Energy Saving" = "C: \ Program Files \ ASUS \ Ai Suite \ energiją taupančias \ PwSave.exe" [2008-01-28 1352704] "Ulead AutoDetector v2" = "C: \ Program Files \ Common Files \ Ulead Systems \ AutoDetector \ monitor.exe" [2006-11-29 90112] "TkBellExe" = "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe" [2008-10-24 185872] "QuickTime Task" = "C: \ Program Files \ QuickTime \ qttask.exe" [2008-09-06 413696] "iTunesHelper" = "C: \ Program Files \ iTunes \ iTunesHelper.exe" [2008-10-01 289576] "NvCplDaemon" = "C: \ Windows \ system32 \ NvCpl.dll" [2008-01-03 13508608] "NvMediaCenter" = "C: \ Windows \ system32 \ NvMcTray. Dll" [2008-01-03 86016] "Adobe Reader Speed Launcher" = "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe" [2008-01-11 39792] "NSLauncher" = "C: \ Program Files \ Nokia \ Nokia Software launcher \ NSLauncher.exe" [2006-11-28 2658304] "RTHDCPL" = "RTHDCPL.EXE" [2008/05/07 C: \ Windows \ RTHDCPL.exe] "nwiz" = "nwiz.exe" [2008/01/03 C: \ WINDOWS \ system32 \ nwiz.exe] [HKEY_USERS \. DEFAULT \ Software \ Microsoft \ Windows \ Cur rentVersion \ Run] "Ctfmon.exe" = "C: \ Windows \ System32 \ Ctfmon.exe" [2008-04-13 15360] [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ drivers32] "msacm.dvacm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ Vio \ Dvacm.acm "msacm.divxa32" = DivXa32.acm "msacm.ulmp3acm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ MPEG \ ulmp3acm.acm "msacm.mpegacm" = C: \ PROGRA ~ 1 \ COMMON ~ 1 \ ULEADS ~ 1 \ MPEG \ mpegacm.acm [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnet3 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx30SP1setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx35 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3setup [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx3_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ dotnetfx [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP1_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx20SP2_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx30SP1_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_ia64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx35_x86 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64.exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64 [1]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ vaizdo failo vykdymas Options \ NetFx64 [2]. Exe] "Debugger" = "c: \ Windows \ Microsoft.NET \ Framework \ v2.0 ,50727 \ DotNetFxInstallBlock.exe [HKLM \ ~ \ Services \ SharedAccess \ Parameters \ firewallpo licy \ standardprofile \ AuthorizedApplications \ List] "% windir% \ \ System32 \ \ sessmgr.exe" = "% windir% \ \ network diagnostic \ \ xpnetdiag.exe" = "C: \ Program Files \ Common Files \ \ AOL \ \ krautuvas \ \ aolload.exe" = "C: \ Program Files \ \ AIM6 \ \ aim6.exe" = "C: \ Program Files \ World of Warcraft \ \ WoW-2.3.0-ENU-downloader.exe" = "C: \ Program Files \ MSN Messenger \ \ msnmsgr.exe" = "C: \ Program Files \ MSN Messenger \ \ livecall.exe" = "C: \ Program Files \ Bonjour \ \ mDNSResponder.exe" = "C: \ Program Files \ iTunes \ \ iTunes.exe" = "C: \ Program Files \ \ easyMule \ \ emule.exe" = [HKLM \ ~ \ Services \ SharedAccess \ Parameters \ firewallpo licy \ standardprofile \ GloballyOpenPorts \ List] "3.724 TCP" = 3.724: TCP: Blizzard Downloader: 3724 "12.178 TCP" = 12.178: TCP: BitComet 12.178 TCP "12.178: UDP" = 12.178: UDP: BitComet 12.178 UDP R1 aswSP; Avast! Savigynai; c: \ windows \ system32 \ drivers \ aswSP.sys [2008-07-19 78416] R2 aswFsBlk; aswFsBlk; c: \ windows \ system32 \ drivers \ aswF sBlk.sys [2008-07-19 20560] R2 Požiūris Manager paslaugos; Požiūris Manager paslaugos; C: \ Program Files \ Požiūris \ Common \ ViewpointService.exe [2007-01-04 24652] R3 NVHDA; Paslaugos NVIDIA High Definition Audio Driver; c: \ windows \ system32 \ drivers \ nvhda32.sys [2008-05-04 38560] . Turinys "Scheduled Tasks" katalogą 2008/11/01 C: \ Windows \ Uždaviniai \ AppleSoftwareUpdate.job - C: \ Program Files \ Apple Software Update \ SoftwareUpdate.exe [2008-07-30 11:34] . ************************************************** ************************ catchme 0.3.1367 W2K/XP/Vista - rootkit / Stealth kenkėjiškų detektorius pagal Gmer, http://www.gmer.net Rootkit scan 2008-11-06 20:34:11 Windows 5.1.2600 Service Pack 3 NTFS skenavimo paslėptus procesus ... skenavimo paslėptas autostart entries ... skenavimo paslėptus failus ... skenavimas baigtas sėkmingai paslėptus failus: 0 ************************************************** ************************ . ------------------------ Kitos aktyvūs procesai ----------------------- -- . C: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ Windows \ system32 \ nvsvc32.exe C: \ Windows \ system32 \ PSIService.exe C: \ Program Files \ ASUS \ AASP \ 1.00.61 \ aaCenter.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe C: \ Windows \ system32 \ rundll32.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ Common Files \ pcsuite \ Services \ ServiceLayer.exe C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Nokia \ MPAPI \ MPAPI3s.exe . ************************************************** ************************ . Atlikimo laikas: 2008-11-06 20:36:06 - mašina buvo paleistas ComboFix-karantine-files.txt 2008-11-07 01:36:02 ComboFix2.txt 2008-11-07 00:54:46 Pre-Rida: 41668276224 bytes nemokamai Post-Rida: 41678303232 bytes nemokamai 418 --- EOF --- 2008-10-28 07:00:21 Ačiū |
|
| |
| Bookmarks |
Panašios Temos | ||||
| Siūlas | Thread Starter | Forumas | Atsakymai | Last Post |
| System Idle procesas yra mažesnė arba lygi 99 CPU | sgonzalez90 | Windows "operacinės sistemos | 4 | 6 balandis 2009 14:50 |
| System idle process - Windows Task Manager | pest79456 | Windows "operacinės sistemos | 3 | 8 vasaris 2009 09:20 |
| Paspaudus, garso signalų ir paslėptas iexplore.exe procesas | ADHOC | Virus, Spyware & Security | 5 | 7 spalis 2008 18:44 |
| IEXPLORE.EXE sistemos virusas? HijackThis, Pažiūrėk. | samDd | Virus, Spyware & Security | 4 | 29 rugsėjis 2008 17:13 |
| Problemos su langų ir Iexplore rodyti procesas | 1carly1 | Virus, Spyware & Security | 3 | 15 vasaris 2008 10:36 |
| Temos įrankiai | |
| |
