Results 1 to 13 of 13

Thread: HDD ?

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Registered User USAF's Avatar
    Join Date: Mar:2010
    Location:
    Posts: 575

    HDD ?

    : PC- NETSCAPE . , HDD , Java Java . HDD , , TASK MANAGER CPU 100 % RAM- 300 MB 800 MB. TaskBar START BUTON IE, Netscape, Opera, Windows Explorer WinAmp - Microsoft Windows Screen Saver 3D Flying Objects "" Windows , . : You will have problem with hard disk! Fix now or restart? Yes / No" . TaskBar System Restore . . START BUTON / ALL PROGRAMS START MENU System Restore Microsoft Windows! WINDOWS EXPLORER HIDDEN WINDOWS . . HDD 80 GB NTFS , 20 GB , , 12 GB . , , 60 GB , 20 GB , , , Linux, . HDD 80 GB , NTFS, HDD MASTER, 80 GB 30 GB C:\ FAT32 NTFS, , ( ). C:\ . PC- HDD SLAVE, 80 GB 20 GB . WINDOWS, . C:\ , TASK MANAGER RAM- . HDD 80 GB 20 GB. , KILL DISK , . .

    P.S. , TASK MANAGER 200 MB , HDD . HDD TASK MANAGER RAM 1200 GB, CPU . . .
    Last edited by USAF; 1st November 2011 at 20:30.
    , , ! , , !
    SUN MICROSYSTEMS

  2. #2
    MEGADETH mkp's Avatar
    Join Date: Jul:2003
    Location: _
    Posts: 1,746
    combofix, , . .

  3. #3
    Registered User USAF's Avatar
    Join Date: Mar:2010
    Location:
    Posts: 575
    ComboFix 20 GB , . :

    ComboFix 11-11-01.02 - System Administrator 11.2011 . 20:53:49.1.1 - FAT32x86
    Microsoft Windows XP Professional 5.1.2600.2.1251.359.1033.18.511.153 [GMT 2:00]
    Running from: F:\ComboFix.exe
    .
    WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))) )))))))))
    .
    .
    c:\winxp\help\tours\htmltour\unlock_play ing.htm
    c:\winxp\pkunzip.pif
    c:\winxp\pkzip.pif
    c:\winxp\system32\CONFIG.exe
    c:\winxp\system32\drivers\hwinterface.sy s
    c:\winxp\system32\drivers\RKHit.sys
    c:\winxp\system32\encapi32.dll
    c:\winxp\system32\inter32.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))) )))))))))
    .
    .
    -------\Legacy_RKHIT
    -------\Legacy_hwinterface
    -------\Service_hwinterface
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-10-01 to 2011-11-01 )))))))))))))))))))))))))))))))
    .
    .
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))) ))))))))))))
    .
    2011-09-19 22:50 . 2009-01-27 00:33 22016 ----a-w- c:\winxp\system32\prefscpl.cpl
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))) ))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wi ndows\CurrentVersion\Run]
    "C-Media Mixer"="Mixer.exe" [2003-03-20 1855488]
    "NvCplDaemon"="c:\winxp\system32\NvCpl.d ll" [2008-05-16 13529088]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\W indows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\winxp\system32\CTFMON.E XE" [2004-08-03 15360]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\W indows\CurrentVersion\RunOnce]
    "ShowDeskFix"="shell32" [X]
    "IE7-10"="advpack.dll" [2007-09-20 124928]
    .
    c:\documents and settings\All Users\Start Menu\Programs\Startup\
    FlexType 2K.lnk - c:\winxp\Datecs\Flex2K.exe [2009-1-27 151552]
    .
    [HKLM\~\services\sharedaccess\parameters\ firewallpolicy\standardprofile\Authorize dApplications\List]
    "c:\\WINXP\\system32\\sessmgr.exe"=
    "%windir%\\system32\\sessmgr.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\ firewallpolicy\standardprofile\IcmpSetti ngs]
    "AllowInboundEchoRequest"= 1 (0x1)
    .
    R2 Iprip;RIP Listener;c:\winxp\System32\svchost.exe -k netsvcs [03.8.2004 . 23:56 14336]
    S3 V0220Dev;Live! Cam Video IM;c:\winxp\system32\drivers\V0220Dev.sy s [08.5.2011 . 14:50 145472]
    S3 V0220Vfx;V0220VFX;c:\winxp\system32\driv ers\V0220Vfx.sys [08.5.2011 . 14:50 6272]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\wi ndows nt\currentversion\svchost]
    p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = about:blank
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    IE: Open using &Advanced JPEG Compressor - c:\program files\PHOTO\RESIZERS\Advanced JPEG Compressor\ajcieex.htm
    IE: FlashGet - c:\program files\DOWNLOAD PROGRAMS\FlashGet\jc_all.htm
    IE: FlashGet - c:\program files\DOWNLOAD PROGRAMS\FlashGet\jc_link.htm
    IE: {{60237576-b24c-4ba9-9740-c9f3ec9db557} - {EAADF17C-B6EA-4511-8549-A67CFD406EAF} - c:\progra~1\SkyCode\WEBTRA~1\wt2ie.dll
    TCP: Interfaces\{EA8FCEFA-5A7A-4592-A371-4CE55C215051}: NameServer = 192.168.0.1
    Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DOWNLO~1\DAP\dapie.dll
    Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DOWNLO~1\DAP\dapie.dll
    FF - ProfilePath - c:\documents and settings\System Administrator\Application Data\Mozilla\Firefox\Profiles\863numau.d efault\
    FF - prefs.js: browser.search.selectedEngine - ICQ Search
    FF - prefs.js: browser.startup.homepage -
    FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
    .
    .
    ------- File Associations -------
    .
    .scr=AutoCADScriptFile
    .
    - - - - ORPHANS REMOVED - - - -
    .
    AddRemove-AnyTV Free_is1 - c:\program files\TV\AnyTV\unins000.exe
    AddRemove-CCleaner - c:\program files\TEST\UNINSTALLERS\CCleaner\uninst. exe
    AddRemove-Free YouTube Uploader_is1 - c:\program files\TV\Free YouTube Uploader\unins000.exe
    AddRemove-JLC's Internet TV - c:\program files\TV\Internet TV\Uninstall.exe
    AddRemove-MSMONEYV4 - c:\program files\office\other\ms money\setup.exe
    AddRemove-POLYGLOT 7 - DEMO_is1 - c:\program files\TEXT\Polyglot 7 - DEMO\unins000.exe
    AddRemove-SA Dictionary 2002 - c:\program files\SA Dictionary 2002\DeIsL1.isu
    AddRemove-SA Dictionary 2005 T2 - c:\program files\SA Dictionary 2005 T2\DeIsL1.isu
    AddRemove-WebTrance25 - c:\program files\SkyCode\WebTrance25\uninstall.exe
    AddRemove-world TVRT Special Edition - c:\program files\worldTVRT\uninst.exe
    .
    .
    .
    **************************************** **********************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2011-11-01 21:34
    Windows 5.1.2600 Service Pack 2 FAT NTAPI
    .
    scanning hidden processes ...
    .
    scanning hidden autostart entries ...
    .
    scanning hidden files ...
    .
    scan completed successfully
    hidden files: 0
    .
    **************************************** **********************************
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-57989841-1708537768-1417001333-1003\Software\Microsoft\Windows\CurrentV ersion\Shell Extensions\Approved\{B0000A21-C873-5DF0-1ADD-A3F9796E9929}*]
    "jangkpdnimnleheffnko"=hex:62,61,64,69,0 0,00
    "ianhpcofjnkmboagea"=hex:6b,61,61,6a,6e, 67,65,64,6f,69,65,70,6c,69,63,6e,6f,66,
    6a,69,6a,65,00,00
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------
    .
    - - - - - - - > 'winlogon.exe'(644)
    c:\winxp\system32\NavLogon.dll
    .
    - - - - - - - > 'explorer.exe'(1628)
    c:\winxp\system32\newdll.dll
    c:\winxp\system32\wpdshserviceobj.dll
    c:\winxp\system32\portabledevicetypes.dl l
    c:\winxp\system32\portabledeviceapi.dll
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\winxp\system32\msdtc.exe
    c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
    c:\winxp\system32\inetsrv\inetinfo.exe
    c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    c:\winxp\system32\nvsvc32.exe
    c:\winxp\system32\tcpsvcs.exe
    c:\winxp\System32\snmp.exe
    c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    c:\winxp\system32\mqsvc.exe
    c:\winxp\system32\mqtgsvc.exe
    c:\winxp\system32\wscntfy.exe
    c:\winxp\Mixer.exe
    c:\program files\Internet Explorer\iexplore.exe
    .
    **************************************** **********************************
    .
    Completion time: 2011-11-01 21:51:30 - machine was rebooted
    ComboFix-quarantined-files.txt 2011-11-01 19:51
    .
    Pre-Run: 7 983 529 984 bytes free
    Post-Run: 7 853 244 416 bytes free
    .
    - - End Of File - - D65557A098F875C42269D6979ADB8C97
    , , ! , , !
    SUN MICROSYSTEMS

  4. #4
    MEGADETH mkp's Avatar
    Join Date: Jul:2003
    Location: _
    Posts: 1,746
    ? .

  5. #5
    Registered User
    Join Date: Jul:2006
    Location: Sofia
    Posts: 584
    - - 10.1 " " . , .

  6. #6
    Registered User USAF's Avatar
    Join Date: Mar:2010
    Location:
    Posts: 575
    HIREN LIVE WINDOWS XP, , . PC- , F:\ - HDD 80 GB 20 GB, BAD TRACK...... C:\ HDD MASTER , Error boot sector ! PC- . ...... - ... .
    , , ! , , !
    SUN MICROSYSTEMS

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Copyright © 1999-2011 . .
iskamPC.com | mobility.BG | Bloody's Techblog | | 3D Vision Blog |