Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93083 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

[Resolved] Some errors with «wowfx.dll» and system shutdown.

Started by Flesh Golem , May 10 2008 05:10 AM

  • This topic is locked This topic is locked
18 replies to this topic

#16 Flesh Golem

Flesh Golem

    New Member

  • New Member
  • Pip
  • 10 posts

Posted 12 May 2008 - 12:23 AM

Dr.Web CureIt:

_desktop.ini;C:\Program Files\дрова;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Audio Driver 5.10.0.5273;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Audio Driver 5.10.0.5273\Audio;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\BlueTooth Driver and Application 5.0.1.1500;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\BlueTooth Driver and Application 5.0.1.1500\BTW;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Card Reader 2.0.0.2;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Card Reader 2.0.0.2\CardRdr;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ARA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CHS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CHT;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CSY;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\DAN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\DEU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ELL;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ENU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ESN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\FIN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\FRA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\HEB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\HUN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ITA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\JPN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\KOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\NLD;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\NOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PLK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PTB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PTG;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\RUS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\SVE;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\THA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\TRK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Vista;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\Vista\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\win2000;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\win2000\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\win2003;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\win2003\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\XP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Chipset Driver Intel 8.0.0.1009\Chipset\XP\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CHS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CHT;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\CSY;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\DAN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\DEU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ELL;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ENU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ESN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\FIN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\FRA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\HEB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\HUN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\ITA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\JPN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\KOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\NLD;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\NOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PLK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PTB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\PTG;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\RUS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\SVE;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\THA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Lang\TRK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Vista;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\Vista\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\win2000;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\win2000\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\win2003;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\win2003\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\XP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\Chipset Driver Intel 8.0.0.1009\Chipset\XP\SP;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\EZDock Modem Driver 2.1.53.0\EZDock;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Lan;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\LAN Driver Marvell 8.55.4.3;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\LAN Driver Marvell 8.55.4.3\Lan;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\LanRTL;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\Help;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\INFs;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\MMRes;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\OSDRC;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\Panel;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\WHQL;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Launch Manager 32-64 Ver.1.00.1e\LaunchM\WHQL64;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\MODEM;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Modem Driver 2.1.63.0;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Modem Driver 2.1.63.0\MODEM;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\TouchPad Driver 8.3.0.0;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\TouchPad Driver 8.3.0.0\Touchpad;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\ara;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\chs;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\cht;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\csy;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\dan;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\deu;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\ell;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\enu;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\esp;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\fin;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\fra;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\heb;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\hun;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\ita;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\jpn;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\kor;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\nld;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\nor;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\plk;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\ptb;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\ptg;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\rus;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\sve;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\tha;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Lang\trk;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Source;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Win2000;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\VGA Driver Intel 6.14.10.4543\Intel\Win2000\nms;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProData;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\ARA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\CHS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\CHT;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\CSY;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\DAN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\DEU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\ELL;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\ENU;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\ESN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\FIN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\FRA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\HEB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\HUN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\ITA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\JPN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\KOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\NLD;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\NOR;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\PLK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\PTB;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\PTG;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\RUS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\SVE;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\THA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Apps\iProLang\TRK;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs\ARA;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs\CHS;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs\CHT;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs\CSY;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 80211abg Intel Ver.10.1.1.3\80211abg_Intel_v.10.1.1.3\Docs\DAN;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802abg Atheros Ver.5.3.0.45;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802abg Atheros Ver.5.3.0.45\XP32_WHQL_5-3-0-45_(Negative-Pole)70510;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802bg Broadcom Ver.4.100.15.5V4.0;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802bg Broadcom Ver.4.100.15.5V4.0\Setup BCM 4311 Setup 4.100.15.5-QMI_V4.0;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802bg Broadcom Ver.4.100.15.5V4.0\Setup BCM 4311 Setup 4.100.15.5-QMI_V4.0\Driver Fi;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802bg Broadcom Ver.4.100.15.5V4.0\Setup BCM 4311 Setup 4.100.15.5-QMI_V4.0\Driver Fi;Win32.HLLW.Gavir.ini;Удален.;
_desktop.ini;C:\Program Files\дрова\Wireless Lan Driver 802bg Broadcom Ver.4.100.15.5V4.0\Setup BCM 4311 Setup 4.100.15.5-QMI_V4.0\Driver Fi;Win32.HLLW.Gavir.ini;Удален.;
autorun.inf.tmp.vir;C:\QooBox\Quarantine\C;BackDoor.Ekai;Удален.;
autorun.inf.vir;C:\QooBox\Quarantine\C;BackDoor.Ekai;Удален.;
msof425.exe.vir;C:\QooBox\Quarantine\C\WINDOWS\system32;Trojan.PWS.Ibank;Удален.;
mssrv32.exe.vir;C:\QooBox\Quarantine\C\WINDOWS\system32;Trojan.DownLoader.26661;Удален.;
_desktop.ini;D:\;Win32.HLLW.Gavir.ini;Удален.;
FND0.NFI;D:\Program Files\Eset\cache;Win32.HLLW.Gavir.104;Удален.;
FND1.NFI;D:\Program Files\Eset\cache;Trojan.Fakealert.443;Удален.;
FND2.NFI;D:\Program Files\Eset\cache;Trojan.Spambot.2551;Удален.;
FND3.NFI;D:\Program Files\Eset\cache;Win32.HLLW.Gavir.104;Удален.;
0LIDJVBA.NQF;D:\Program Files\Eset\infected;Trojan.PWS.Legmir.1925;Удален.;
21LUI3AA.NQF;D:\Program Files\Eset\infected;Trojan.PWS.LDPinch.1941;Удален.;
3TBGENBA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.49586;Удален.;
53SAU5AA.NQF;D:\Program Files\Eset\infected;Trojan.Click.18023;Удален.;
AGQTCTAA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.55671;Удален.;
AH5JDKBA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.56630;Удален.;
APHRDLBA.NQF;D:\Program Files\Eset\infected;Trojan.Click.18023;Удален.;
AYUEUBBA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.49586;Удален.;
C1GJ31DA.NQF;D:\Program Files\Eset\infected;Trojan.Fakealert.443;Удален.;
CB2KZ0AA.NQF;D:\Program Files\Eset\infected;Trojan.MulDrop.11967;Удален.;
E2W1J5BA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.56630;Удален.;
E4NGHJCA.NQF;D:\Program Files\Eset\infected;Trojan.MulDrop.11807;Удален.;
FYB0BSAA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.19256;Удален.;
G1TQ1PBA.NQF;D:\Program Files\Eset\infected;Trojan.Spambot.3086;Удален.;
GDOFBYAA.NQF;D:\Program Files\Eset\infected;Trojan.Proxy.2240;Удален.;
GRQSTKBA.NQF;D:\Program Files\Eset\infected;Win32.HLLW.Gavir.104;Удален.;
HJCONFDA.NQF;D:\Program Files\Eset\infected;Win32.HLLW.Gavir.104;Удален.;
HPXVRTDA.NQF;D:\Program Files\Eset\infected;Trojan.Spambot.2887;Удален.;
IN1YGTDA.NQF;D:\Program Files\Eset\infected;Trojan.PWS.Femail;Удален.;
JPNUYHAA.NQF;D:\Program Files\Eset\infected;Trojan.Packed.419;Удален.;
JPUCJXBA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.49586;Удален.;
LU3CSVDA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.19256;Удален.;
MTJIQYAA.NQF;D:\Program Files\Eset\infected;Trojan.Spambot.3086;Удален.;
P3ZVLECA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.50019;Удален.;
PVNDVVDA.NQF;D:\Program Files\Eset\infected;Trojan.Popuper.origin;Неизлечим.Удален.;
QBXMMQAA.NQF;D:\Program Files\Eset\infected;Trojan.Popuper.origin;Неизлечим.Удален.;
QDSZKGAA.NQF;D:\Program Files\Eset\infected;Adware.Bho;Неизлечим.Удален.;
RRQHGSDA.NQF;D:\Program Files\Eset\infected;BackDoor.Ekai;Удален.;
UU51ZVBA.NQF;D:\Program Files\Eset\infected;Trojan.Spambot.2569;Удален.;
WHUZGWAA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.56630;Удален.;
WPD0Z0DA.NQF;D:\Program Files\Eset\infected;Trojan.MulDrop.13008;Удален.;
YB1NTQBA.NQF;D:\Program Files\Eset\infected;Trojan.Packed.419;Удален.;
YXR4KHDA.NQF;D:\Program Files\Eset\infected;Trojan.NtRootKit.928;Удален.;
Z1JL5LAA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.47443;Удален.;
ZINU4ACA.NQF;D:\Program Files\Eset\infected;Trojan.MulDrop.13008;Удален.;
ZQXDZZAA.NQF;D:\Program Files\Eset\infected;Trojan.DownLoader.56630;Удален.;
_desktop.ini;D:\RECYCLER\S-1-5-21-1482476501-2049760794-682003330-1004;Win32.HLLW.Gavir.ini;Удален.;
Process.exe;D:\SDFIX\SDFix\apps;Tool.Prockill;Неизлечим.Удален.;
partnership.dll;D:\SDFIX\SDFix\backups;BackDoor.Bech;Удален.;
A0150485.dll;D:\System Volume Information\_restore{83CD7732-782E-4C50-BD23-C6D9867171F0}\RP71;BackDoor.Bech;Удален.;

Deckard's System Scanner:

main:

Deckard's System Scanner v20071014.68
Run by ххх on 2008-05-12 10:15:04
Computer is in Safe Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Failed to create restore point; computer is in safe mode.


Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 503 MiB (512 MiB recommended).
System Drive C: has 1.82 GiB (less than 15%) free.


-- HijackThis (run as ххх.exe) -------------------------------------------------

Unable to find log (file not found); running clone.
-- HijackThis Clone ------------------------------------------------------------


Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-05-12 10:15:46
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
F:\dss.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mail.ru/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Ссылки
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX520 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE /P31 "EPSON Stylus Photo RX520 Series" /O6 "USB001" /M "Stylus Photo RX520"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
O4 - HKLM\..\Run: [SpIDerNT] C:\PROGRA~1\DrWeb\spiderui.exe /agent
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [SDFix] D:\SDFIX\SDFix\RunThis.bat /second
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BTTray.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
O8 - Extra context menu item: &Отправить на устройство Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Справочные материалы - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macr...ash/swflash.cab
O17 - HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer = 85.255.114.71 85.255.112.60
O18 - Protocol: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL
O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Журнал событий (Eventlog) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Служба COM записи компакт-дисков IMAPI (ImapiService) - Корпорация Майкрософт - C:\WINDOWS\system32\imapi.exe
O23 - Service: Сервис iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerberos Key Distribution Centers (kkdc) - Unknown owner - C:\WINDOWS\lsass.exe -netsvcs
O23 - Service: NetMeeting Remote Desktop Sharing (mnmsrvc) - Корпорация Майкрософт - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Служба сетевого DDE (NetDDE) - Корпорация Майкрософт - C:\WINDOWS\system32\netdde.exe
O23 - Service: Диспетчер сетевого DDE (NetDDEdsdm) - Корпорация Майкрософт - C:\WINDOWS\system32\netdde.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: Plug and Play (PlugPlay) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: DiRT Drivers Auto Removal (pr2amd6b) (pr2amd6b) - Buka - C:\WINDOWS\system32\pr2amd6b.exe
O23 - Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) - Корпорация Майкрософт - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Смарт-карты (SCardSvr) - Корпорация Майкрософт - C:\WINDOWS\system32\scardsvr.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SpIDer Guard for Windows (SPIDERNT) - Unknown owner - C:\PROGRA~1\DrWeb\spidernt.exe
O23 - Service: Журналы и оповещения производительности (SysmonLog) - Корпорация Майкрософт - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Теневое копирование тома (VSS) - Корпорация Майкрософт - C:\WINDOWS\system32\vssvc.exe
O23 - Service: Адаптер производительности WMI (WmiApSrv) - Корпорация Майкрософт - C:\WINDOWS\system32\wbem\wmiapsrv.exe


--
End of file - 6759 bytes

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

S1 InCDPass - c:\windows\system32\drivers\incdpass.sys (file missing)
S1 InCDRm (InCD Reader) - c:\windows\system32\drivers\incdrm.sys (file missing)
S2 AMON - c:\windows\system32\drivers\amon.sys <Not Verified; Eset; NOD32 Antivirus System>
S2 BTSERIAL (Bluetooth Serial Driver) - c:\windows\system32\drivers\btserial.sys <Not Verified; Broadcom Corporation.; Bluetooth Software 5.0.1.1500>
S2 SPIDER (SpIDer Guard File System Monitor) - c:\progra~1\drweb\spider.sys (file missing)
S3 catchme - c:\combofix\catchme.sys (file missing)
S3 Stmatm (ZyXEL P-630S EE Минипорт) - c:\windows\system32\drivers\stmatm.sys <Not Verified; STMicroelectronics; Unicorn ADSL>
S3 TaurusUsb (Сервис ADSL-модема ZyXEL P-630S EE) - c:\windows\system32\drivers\torususb.sys
S4 InCDFs (InCD File System) - c:\windows\system32\drivers\incdfs.sys (file missing)


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S2 kkdc (Kerberos Key Distribution Centers) - c:\windows\lsass.exe -netsvcs (file missing)
S2 SPIDERNT (SpIDer Guard for Windows) - c:\progra~1\drweb\spidernt.exe (file missing)
S3 ServiceLayer - "c:\program files\pc connectivity solution\servicelayer.exe" <Not Verified; Nokia.; PC Connectivity Solution>


-- Device Manager: Disabled ----------------------------------------------------

Class GUID:
Description: Modem Device on High Definition Audio Bus
Device ID: HDAUDIO\FUNC_02&VEN_14F1&DEV_2BFA&SUBSYS_1025007F&REV_0900\4&5CA37AC&0&0102
Manufacturer:
Name: Modem Device on High Definition Audio Bus
PNP Device ID: HDAUDIO\FUNC_02&VEN_14F1&DEV_2BFA&SUBSYS_1025007F&REV_0900\4&5CA37AC&0&0102
Service:

Class GUID:
Description: Ethernet-контроллер
Device ID: PCI\VEN_14E4&DEV_170C&SUBSYS_00901025&REV_02\4&6B16D5B&0&08F0
Manufacturer:
Name: Ethernet-контроллер
PNP Device ID: PCI\VEN_14E4&DEV_170C&SUBSYS_00901025&REV_02\4&6B16D5B&0&08F0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Сетевой контроллер
Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_03121468&REV_02\4&6B16D5B&0&10F0
Manufacturer:
Name: Сетевой контроллер
PNP Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_03121468&REV_02\4&6B16D5B&0&10F0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI FLASH-память
Device ID: PCI\VEN_1524&DEV_0530&SUBSYS_00901025&REV_01\4&6B16D5B&0&21F0
Manufacturer:
Name: PCI FLASH-память
PNP Device ID: PCI\VEN_1524&DEV_0530&SUBSYS_00901025&REV_01\4&6B16D5B&0&21F0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI FLASH-память
Device ID: PCI\VEN_1524&DEV_0520&SUBSYS_00901025&REV_01\4&6B16D5B&0&23F0
Manufacturer:
Name: PCI FLASH-память
PNP Device ID: PCI\VEN_1524&DEV_0520&SUBSYS_00901025&REV_01\4&6B16D5B&0&23F0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI FLASH-память
Device ID: PCI\VEN_1524&DEV_0551&SUBSYS_00901025&REV_01\4&6B16D5B&0&24F0
Manufacturer:
Name: PCI FLASH-память
PNP Device ID: PCI\VEN_1524&DEV_0551&SUBSYS_00901025&REV_01\4&6B16D5B&0&24F0
Service:


-- Scheduled Tasks -------------------------------------------------------------

2008-04-22 22:56:08 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2008-04-12 and 2008-05-12 -----------------------------

2008-05-10 17:18:36 68096 --a------ C:\WINDOWS\zip.exe
2008-05-10 17:18:36 49152 --a------ C:\WINDOWS\VFind.exe
2008-05-10 17:18:36 212480 --a------ C:\WINDOWS\swxcacls.exe <Not Verified; SteelWerX; SteelWerX Extended Configurator ACLists>
2008-05-10 17:18:36 136704 --a------ C:\WINDOWS\swsc.exe <Not Verified; SteelWerX; SteelWerX Service Controller>
2008-05-10 17:18:36 161792 --a------ C:\WINDOWS\swreg.exe <Not Verified; SteelWerX; SteelWerX Registry Editor>
2008-05-10 17:18:36 98816 --a------ C:\WINDOWS\sed.exe
2008-05-10 17:18:36 80412 --a------ C:\WINDOWS\grep.exe
2008-05-10 17:18:36 73728 --a------ C:\WINDOWS\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-05-10 16:03:43 0 d-------- C:\WINDOWS\ERUNT
2008-04-25 13:33:10 274432 --a------ C:\WINDOWS\system32\imon.dll <Not Verified; Eset; NOD32 Antivirus System>
2008-04-25 13:33:10 502368 --a------ C:\WINDOWS\system32\drivers\amon.sys <Not Verified; Eset; NOD32 Antivirus System>


-- Find3M Report ---------------------------------------------------------------

2008-05-12 03:59:44 0 d-------- C:\Program Files\дрова
2008-05-12 03:18:03 349224 --a------ C:\WINDOWS\system32\perfh019.dat
2008-05-12 03:18:02 50206 --a------ C:\WINDOWS\system32\perfc019.dat
2008-05-10 22:14:24 0 d-------- C:\Program Files\MSXML 4.0
2008-05-10 22:07:31 0 d-------- C:\Program Files\ZyXEL P-630S EE
2008-05-10 22:07:31 0 d-------- C:\Program Files\XviD
2008-05-10 22:07:30 0 d-------- C:\Program Files\WIDCOMM
2008-05-10 22:07:26 0 d-------- C:\Program Files\Samsung
2008-05-10 22:07:26 0 d-------- C:\Program Files\Realtek
2008-05-10 22:06:34 0 d-------- C:\Program Files\QuickTime
2008-05-10 22:06:34 0 d-------- C:\Program Files\PC Connectivity Solution
2008-05-10 22:06:34 0 d-------- C:\Program Files\Online Services
2008-05-10 22:06:29 0 d-------- C:\Program Files\OLYMPUS
2008-05-10 22:06:28 0 d-------- C:\Program Files\Nokia
2008-05-10 22:06:16 0 d-------- C:\Program Files\Nero
2008-05-10 22:06:16 0 d-------- C:\Program Files\Microsoft.NET
2008-05-10 22:06:11 0 d-------- C:\Program Files\MarkAny
2008-05-10 22:06:11 0 d-------- C:\Program Files\Launch Manager
2008-05-10 22:06:11 0 d-------- C:\Program Files\Lame MP3 Codec
2008-05-10 22:06:04 0 d-------- C:\Program Files\iTunes
2008-05-10 22:06:02 0 d-------- C:\Program Files\iPod
2008-05-10 22:06:02 0 d-------- C:\Program Files\Intel
2008-05-10 22:06:01 0 d-------- C:\Program Files\EPSON
2008-05-10 22:06:01 0 d-------- C:\Program Files\DrWeb
2008-05-10 22:06:01 0 d-------- C:\Program Files\DIFX
2008-05-10 22:06:01 0 d-------- C:\Program Files\CCleaner
2008-05-10 22:04:14 0 d-------- C:\Program Files\Buka
2008-05-10 22:04:14 0 d-------- C:\Program Files\APX
2008-05-10 22:04:09 0 d-------- C:\Program Files\Apple Software Update
2008-04-22 23:08:09 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-31 23:01:14 0 d-------- C:\Documents and Settings\ххх\Application Data\SystemDefender


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [19.07.2006 09:42 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [19.07.2006 09:42 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [19.07.2006 09:41]
"LManager"="C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE" [14.07.2006 12:13]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [09.07.2001 10:50]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [08.11.2006 13:27]
"SMSTray"="C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe" [23.02.2007 16:32]
"MAAgent"="C:\Program Files\MarkAny\ContentSafer\MAAgent.exe" [30.01.2007 20:36]
"EPSON Stylus Photo RX520 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.exe" [07.04.2005 08:00]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [16.02.2007 10:54]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [14.03.2007 19:05]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [01.06.2007 16:13]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [01.06.2007 16:13]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [01.06.2007 16:13]
"AdslTaskBar"="stmctrl.dll" [22.10.2005 11:09 C:\WINDOWS\system32\stmctrl.dll]
"SpIDerNT"="C:\PROGRA~1\DrWeb\spiderui.exe" []
"nod32kui"="D:\Program Files\Eset\nod32kui.exe" [25.04.2008 13:35]
"UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" []
"SDFix"="D:\SDFIX\SDFix\RunThis.bat /second" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [18.08.2004 04:04]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [28.10.2005 16:25]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [17.08.2004 16:17]
"OM2_Monitor"="C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [08.02.2007 21:43]

C:\Documents and Settings\All Users\ѓ« ў­®Ґ ¬Ґ­о\Џа®Ја ¬¬л\Ђўв®§ Јаг§Є \
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [17.01.2006 10:45:32]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=1 (0x1)
"HideStartupScripts"=0 (0x0)
"DisableRegistryTools"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=1 (0x1)
"HideStartupScripts"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [23.11.2004 16:51 192512]




-- End of Deckard's System Scanner: finished at 2008-05-12 10:16:33 ------------

extra:

Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: Other (0419) - see http://preview.tinyurl.com/mhhp6

CPU 0: Intel® Celeron® M CPU 430 @ 1.73GHz
Percentage of Memory in Use: 25%
Physical Memory (total/avail): 502.05 MiB / 374.88 MiB
Pagefile Memory (total/avail): 1227.18 MiB / 1155.32 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1921.27 MiB

C: is Fixed (NTFS) - 19.53 GiB total, 1.82 GiB free.
D: is Fixed (NTFS) - 54.99 GiB total, 54.87 GiB free.
E: is CDROM (CDFS)
F: is Removable (FAT)

\\.\PHYSICALDRIVE0 - ST980811AS - 74.53 GiB - 2 partitions
\PARTITION0 (bootable) - Устанавливаемая файловая система - 19.53 GiB - C:
\PARTITION1 - Расшир. Win95/98 c расшир. IRQ13 - 54.99 GiB - D:

\\.\PHYSICALDRIVE1 - Multi Flash Reader USB Device - 1945.37 MiB - 1 partition
\PARTITION0 - MS-DOS V4 Huge - 1950.38 MiB - F:



-- Security Center -------------------------------------------------------------

AUOptions is disabled.
Windows Internal Firewall is enabled.

FirstRunDisabled is set.

AV: Doctor Web Anti-Virus v4.44.4.09260 (Doctor Web, Ltd.) Outdated
AV: Eset NOD32 antivirus system 2.51 v2.51 (Eset) Outdated

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\\WINDOWS\\shell.exe"="C:\\WINDOWS\\shell.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\system32\\printer.exe"="C:\\WINDOWS\\system32\\printer.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\system32\\spoolvs.exe"="C:\\WINDOWS\\system32\\spoolvs.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\ххх\\Главное меню\\Программы\\Автозагрузка\\findfast.exe"="C:\\Documents and Settings\\ххх\\Главное меню\\Программы\\Автозагрузка\\findfast.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\All Users\\Главное меню\\Программы\\Автозагрузка\\autorun.exe"="C:\\Documents and Settings\\All Users\\Главное меню\\Программы\\Автозагрузка\\autorun.exe:*:Enabled:@xpsp2res.dll,-22019"
"%windir%\\system32\\winav.exe"="%windir%\\system32\\winav.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\ххх\\Application Data\\mcrupdate.exe"="C:\\Documents and Settings\\ххх\\Application Data\\mcrupdate.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\ххх\\Application Data\\sysdefender.exe"="C:\\Documents and Settings\\ххх\\Application Data\\sysdefender.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\ххх\\Application Data\\avsyscare.exe"="C:\\Documents and Settings\\ххх\\Application Data\\avsyscare.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\ххх\\Application Data\\sysfixer.exe"="C:\\Documents and Settings\\ххх\\Application Data\\sysfixer.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\Администратор\\Главное меню\\Программы\\Автозагрузка\\findfast.exe"="C:\\Documents and Settings\\Администратор\\Главное меню\\Программы\\Автозагрузка\\findfast.exe:*:Enabled:@xpsp2res.dll,-22019"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\еее\Application Data
CLASSPATH=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=6026A68CA71E48A
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\еее
LOGONSERVER=\\6026A68CA71E48A
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\wbem;C:\Program Files\PC Connectivity Solution;C:\Program Files\Common Files\Adobe\AGL;C:\Program Files\QuickTime\QTSystem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 14 Stepping 8, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0e08
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\QuickTime\QTSystem\QTJava.zip
SAFEBOOT_OPTION=MINIMAL
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\2A9E~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\2A9E~1\LOCALS~1\Temp
USERDOMAIN=6026A68CA71E48A
USERNAME=еее
USERPROFILE=C:\Documents and Settings\еее
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

ххх (admin)
Администратор (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
--> C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
--> C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
--> C:\WINDOWS\UNNeroVision.exe /UNINSTALL
--> C:\WINDOWS\UNRecode.exe /UNINSTALL
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Архиватор WinRAR --> C:\Program Files\WinRAR\uninstall.exe
Adobe Acrobat 5.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Bridge 1.0 --> MsiExec.exe /I{B74D4E10-1033-0000-0000-000000000001}
Adobe Common File Installer --> MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39}
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Help Center 1.0 --> MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001}
Adobe Photoshop CS2 --> msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
Adobe Stock Photos 1.0 --> MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001}
ADSL-модем ZyXEL P-630S EE --> rundll32.exe stmcfg32.dll,Uninstall
Apple Software Update --> MsiExec.exe /I{A260B422-70E1-41E2-957D-F76FA21266D5}
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
EPSON Printer Software --> C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
High Definition Audio Driver Package - KB888111 --> "C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
Hijackthis 1.99.1 --> "D:\Program Files\Hijackthis\unins000.exe"
HijackThis 1.99.1 --> D:\Program Files\Hijackthis\HijackThis.exe /uninstall
Intel® Graphics Media Accelerator Driver --> C:\WINDOWS\system32\igxpun.exe -uninstall
iTunes --> MsiExec.exe /I{AB90749C-7422-4580-8A7A-66CC5E9E5F98}
Lame ACM MP3 Codec --> "C:\WINDOWS\IFinst26.exe" -UC:\Program Files\Lame MP3 Codec\IFU8.inf
Launch Manager --> C:\WINDOWS\UnInst32.exe QtZgAcer.UNI
Microsoft Office - профессиональный выпуск версии 2003 --> MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Nero 7 Demo --> MsiExec.exe /I{3F7C2E67-9FA7-4558-B335-DA0C509F1049}
NOD32 antivirus system --> D:\Program Files\Eset\Setup\setup.exe /UNINSTALL
Nokia Connectivity Cable Driver --> MsiExec.exe /X{0FF1922C-B6C4-40BB-AF30-BEF75A482444}
Nokia PC Suite --> MsiExec.exe /I{D89AC4DF-7A00-4D0B-BA99-D582C7974A09}
OLYMPUS Master 2 --> MsiExec.exe /X{CB49B376-1136-44B4-83FA-036334B59937}
PC Connectivity Solution --> MsiExec.exe /I{AB2347E4-153B-4194-AA3B-97C0A662B369}
QuickTime --> MsiExec.exe /I{5E863175-E85D-44A6-8968-82507D34AE7F}
Realtek High Definition Audio Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x19 -removeonly
Samsung Media Studio --> C:\Program Files\InstallShield Installation Information\{C20CE592-B0F8-4D20-BF31-0151CA6331A6}\Setup.exe -runfromtemp -l0x0019 -removeonly
Texas Instruments PCIxx21/x515/xx12 drivers. --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A} /l1033
WIDCOMM Bluetooth Software --> MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}


-- Application Event Log -------------------------------------------------------

Event Record #/Type3424 / Error
Event Submitted/Written: 05/12/2008 10:16:07 AM
Event ID/Source: 8 / crypt32
Event Description:
Ошибка получения автоматического обновления последовательного номера стороннего корневого списка из: <http://www.download....uthrootseq.txt> с кодом ошибки: Сетевое подключение не существует.

Event Record #/Type3423 / Error
Event Submitted/Written: 05/12/2008 10:16:07 AM
Event ID/Source: 8 / crypt32
Event Description:
Ошибка получения автоматического обновления последовательного номера стороннего корневого списка из: <http://www.download....uthrootseq.txt> с кодом ошибки: Сетевое подключение не существует.

Event Record #/Type3422 / Error
Event Submitted/Written: 05/12/2008 10:16:07 AM
Event ID/Source: 8 / crypt32
Event Description:
Ошибка получения автоматического обновления последовательного номера стороннего корневого списка из: <http://www.download....uthrootseq.txt> с кодом ошибки: Не удается найти сервер с таким именем или адресом

Event Record #/Type3412 / Error
Event Submitted/Written: 05/11/2008 04:03:51 PM
Event ID/Source: 1015 / Winlogon
Event Description:
Критический системный процесс, C:\WINDOWS\system32\lsass.exe, завершился ошибкой с кодом состояния c0000005.
Необходимо перезагрузить этот компьютер.

Event Record #/Type3379 / Error
Event Submitted/Written: 05/10/2008 02:58:20 PM
Event ID/Source: 1015 / Winlogon
Event Description:
Критический системный процесс, C:\WINDOWS\system32\lsass.exe, завершился ошибкой с кодом состояния c0000005.
Необходимо перезагрузить этот компьютер.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event Record #/Type15843 / Error
Event Submitted/Written: 05/12/2008 10:14:11 AM
Event ID/Source: 7026 / Service Control Manager
Event Description:
Сбой при загрузке драйвера(ов) перезагрузки или запуска системы:
AFD
Fips
intelppm
IPSec
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
Tcpip
WS2IFSL

Event Record #/Type15842 / Error
Event Submitted/Written: 05/12/2008 10:14:11 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Служба "Службы IPSEC" является зависимой от службы "Драйвер IPSEC", которую не удалось запустить из-за ошибки
%%31

Event Record #/Type15841 / Error
Event Submitted/Written: 05/12/2008 10:14:11 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Служба "Модуль поддержки NetBIOS через TCP/IP" является зависимой от службы "AFD", которую не удалось запустить из-за ошибки
%%31

Event Record #/Type15840 / Error
Event Submitted/Written: 05/12/2008 10:14:11 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Служба "DNS-клиент" является зависимой от службы "Драйвер протокола TCP/IP", которую не удалось запустить из-за ошибки
%%31

Event Record #/Type15839 / Error
Event Submitted/Written: 05/12/2008 10:14:11 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Служба "DHCP-клиент" является зависимой от службы "NetBios через TCP/IP", которую не удалось запустить из-за ошибки
%%31



-- End of Deckard's System Scanner: finished at 2008-05-12 10:16:33 ------------

    Advertisements

Register to Remove

#17 Rorschach112

Rorschach112

    Teacher Emeritus

  • Authentic Member
  • PipPipPipPipPip
  • 3,651 posts

Posted 12 May 2008 - 08:01 AM

Your logs are clean ! We need to do a few things

Follow these steps to uninstall Combofix and tools used in the removal of malware
  • Click START then RUN
  • Now type Combofix /u in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    Posted Image



Below I have included a number of recommendations for how to protect your computer against malware infections.

* Keep Windows updated by regularly checking their website at :
http://windowsupdate.microsoft.com/
This will ensure your computer has always the latest security updates available installed on your computer.

* To reduce re-infection for malware in the future, I strongly recommend installing these free programs:
SpywareBlaster protects against bad ActiveX
IE-SPYAD puts over 5000 sites in your restricted zone so you'll be protected when you visit innocent-looking sites that aren't actually innocent at all
Have a look at this tutorial for IE-Spyad here

* SpywareGuard offers realtime protection from spyware installation attempts.

Make Internet Explorer more secure
  • Click Start > Run
  • Type Inetcpl.cpl & click OK
  • Click on the Security tab
  • Click Reset all zones to default level
  • Make sure the Internet Zone is selected & Click Custom level
  • In the ActiveX section, set the first two options ("Download signed and unsigned ActiveX controls) to "Prompt", and ("Initialize and Script ActiveX controls not marked as safe") to "Disable".
  • Next Click OK, then Apply button and then OK to exit the Internet Properties page.

* MVPS Hosts file replaces your current HOSTS file with one containing well known ad sites and other bad sites. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer, meaning it will be difficult to infect yourself in the future.

* Please consider using an alternate browser. Mozilla's Firefox browser is fantastic; it is much more
secure than Internet Explorer, immune to almost all known browser hijackers, and also has the best built-in pop up
blocker (as an added benefit!) that I have ever seen. If you are interested, Firefox may be downloaded from
Here

* Take a good look at the following suggestions for malware prevention by reading Tony Klein’s article 'How Did I Get Infected In The First Place'
Here

Thank you for your patience, and performing all of the procedures requested.

#18 Flesh Golem

Flesh Golem

    New Member

  • New Member
  • Pip
  • 10 posts

Posted 12 May 2008 - 01:08 PM

Seems its works perfectly! Much appreciations! Rorschach112, success in your affairs!

#19 Rorschach112

Rorschach112

    Teacher Emeritus

  • Authentic Member
  • PipPipPipPipPip
  • 3,651 posts

Posted 12 May 2008 - 04:26 PM

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·