Results 1 to 13 of 13
Thread: HDD ?
Hybrid View
-
1st November 2011 13:41 #1
HDD ?
: PC- NETSCAPE . , HDD , Java Java . HDD , , TASK MANAGER CPU 100 % RAM- 300 MB 800 MB. TaskBar START BUTON IE, Netscape, Opera, Windows Explorer WinAmp - Microsoft Windows Screen Saver 3D Flying Objects "" Windows , . : You will have problem with hard disk! Fix now or restart? Yes / No" . TaskBar System Restore . . START BUTON / ALL PROGRAMS START MENU System Restore Microsoft Windows! WINDOWS EXPLORER HIDDEN WINDOWS . . HDD 80 GB NTFS , 20 GB , , 12 GB . , , 60 GB , 20 GB , , , Linux, . HDD 80 GB , NTFS, HDD MASTER, 80 GB 30 GB C:\ FAT32 NTFS, , ( ). C:\ . PC- HDD SLAVE, 80 GB 20 GB . WINDOWS, . C:\ , TASK MANAGER RAM- . HDD 80 GB 20 GB. , KILL DISK , . .
P.S. , TASK MANAGER 200 MB , HDD . HDD TASK MANAGER RAM 1200 GB, CPU . . .Last edited by USAF; 1st November 2011 at 20:30.
, , ! , , !
SUN MICROSYSTEMS
-
1st November 2011 13:59 #2
-
1st November 2011 23:11 #3
ComboFix 20 GB , . :
ComboFix 11-11-01.02 - System Administrator 11.2011 . 20:53:49.1.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1251.359.1033.18.511.153 [GMT 2:00]
Running from: F:\ComboFix.exe
.
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))) )))))))))
.
.
c:\winxp\help\tours\htmltour\unlock_play ing.htm
c:\winxp\pkunzip.pif
c:\winxp\pkzip.pif
c:\winxp\system32\CONFIG.exe
c:\winxp\system32\drivers\hwinterface.sy s
c:\winxp\system32\drivers\RKHit.sys
c:\winxp\system32\encapi32.dll
c:\winxp\system32\inter32.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))) )))))))))
.
.
-------\Legacy_RKHIT
-------\Legacy_hwinterface
-------\Service_hwinterface
.
.
((((((((((((((((((((((((( Files Created from 2011-10-01 to 2011-11-01 )))))))))))))))))))))))))))))))
.
.
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))) ))))))))))))
.
2011-09-19 22:50 . 2009-01-27 00:33 22016 ----a-w- c:\winxp\system32\prefscpl.cpl
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))) ))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wi ndows\CurrentVersion\Run]
"C-Media Mixer"="Mixer.exe" [2003-03-20 1855488]
"NvCplDaemon"="c:\winxp\system32\NvCpl.d ll" [2008-05-16 13529088]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\W indows\CurrentVersion\Run]
"CTFMON.EXE"="c:\winxp\system32\CTFMON.E XE" [2004-08-03 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\W indows\CurrentVersion\RunOnce]
"ShowDeskFix"="shell32" [X]
"IE7-10"="advpack.dll" [2007-09-20 124928]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
FlexType 2K.lnk - c:\winxp\Datecs\Flex2K.exe [2009-1-27 151552]
.
[HKLM\~\services\sharedaccess\parameters\ firewallpolicy\standardprofile\Authorize dApplications\List]
"c:\\WINXP\\system32\\sessmgr.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
[HKLM\~\services\sharedaccess\parameters\ firewallpolicy\standardprofile\IcmpSetti ngs]
"AllowInboundEchoRequest"= 1 (0x1)
.
R2 Iprip;RIP Listener;c:\winxp\System32\svchost.exe -k netsvcs [03.8.2004 . 23:56 14336]
S3 V0220Dev;Live! Cam Video IM;c:\winxp\system32\drivers\V0220Dev.sy s [08.5.2011 . 14:50 145472]
S3 V0220Vfx;V0220VFX;c:\winxp\system32\driv ers\V0220Vfx.sys [08.5.2011 . 14:50 6272]
.
[HKEY_LOCAL_MACHINE\software\microsoft\wi ndows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Open using &Advanced JPEG Compressor - c:\program files\PHOTO\RESIZERS\Advanced JPEG Compressor\ajcieex.htm
IE: FlashGet - c:\program files\DOWNLOAD PROGRAMS\FlashGet\jc_all.htm
IE: FlashGet - c:\program files\DOWNLOAD PROGRAMS\FlashGet\jc_link.htm
IE: {{60237576-b24c-4ba9-9740-c9f3ec9db557} - {EAADF17C-B6EA-4511-8549-A67CFD406EAF} - c:\progra~1\SkyCode\WEBTRA~1\wt2ie.dll
TCP: Interfaces\{EA8FCEFA-5A7A-4592-A371-4CE55C215051}: NameServer = 192.168.0.1
Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DOWNLO~1\DAP\dapie.dll
Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DOWNLO~1\DAP\dapie.dll
FF - ProfilePath - c:\documents and settings\System Administrator\Application Data\Mozilla\Firefox\Profiles\863numau.d efault\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage -
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
.
.
------- File Associations -------
.
.scr=AutoCADScriptFile
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-AnyTV Free_is1 - c:\program files\TV\AnyTV\unins000.exe
AddRemove-CCleaner - c:\program files\TEST\UNINSTALLERS\CCleaner\uninst. exe
AddRemove-Free YouTube Uploader_is1 - c:\program files\TV\Free YouTube Uploader\unins000.exe
AddRemove-JLC's Internet TV - c:\program files\TV\Internet TV\Uninstall.exe
AddRemove-MSMONEYV4 - c:\program files\office\other\ms money\setup.exe
AddRemove-POLYGLOT 7 - DEMO_is1 - c:\program files\TEXT\Polyglot 7 - DEMO\unins000.exe
AddRemove-SA Dictionary 2002 - c:\program files\SA Dictionary 2002\DeIsL1.isu
AddRemove-SA Dictionary 2005 T2 - c:\program files\SA Dictionary 2005 T2\DeIsL1.isu
AddRemove-WebTrance25 - c:\program files\SkyCode\WebTrance25\uninstall.exe
AddRemove-world TVRT Special Edition - c:\program files\worldTVRT\uninst.exe
.
.
.
**************************************** **********************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-01 21:34
Windows 5.1.2600 Service Pack 2 FAT NTAPI
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************** **********************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-57989841-1708537768-1417001333-1003\Software\Microsoft\Windows\CurrentV ersion\Shell Extensions\Approved\{B0000A21-C873-5DF0-1ADD-A3F9796E9929}*]
"jangkpdnimnleheffnko"=hex:62,61,64,69,0 0,00
"ianhpcofjnkmboagea"=hex:6b,61,61,6a,6e, 67,65,64,6f,69,65,70,6c,69,63,6e,6f,66,
6a,69,6a,65,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(644)
c:\winxp\system32\NavLogon.dll
.
- - - - - - - > 'explorer.exe'(1628)
c:\winxp\system32\newdll.dll
c:\winxp\system32\wpdshserviceobj.dll
c:\winxp\system32\portabledevicetypes.dl l
c:\winxp\system32\portabledeviceapi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\winxp\system32\msdtc.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\winxp\system32\inetsrv\inetinfo.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\winxp\system32\nvsvc32.exe
c:\winxp\system32\tcpsvcs.exe
c:\winxp\System32\snmp.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\winxp\system32\mqsvc.exe
c:\winxp\system32\mqtgsvc.exe
c:\winxp\system32\wscntfy.exe
c:\winxp\Mixer.exe
c:\program files\Internet Explorer\iexplore.exe
.
**************************************** **********************************
.
Completion time: 2011-11-01 21:51:30 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-01 19:51
.
Pre-Run: 7 983 529 984 bytes free
Post-Run: 7 853 244 416 bytes free
.
- - End Of File - - D65557A098F875C42269D6979ADB8C97, , ! , , !
SUN MICROSYSTEMS
-
2nd November 2011 09:05 #4
-
2nd November 2011 09:46 #5Registered User
Join Date: Jul:2006
Location: Sofia
Posts: 584
- - 10.1 " " . , .
-
2nd November 2011 13:48 #6
HIREN LIVE WINDOWS XP, , . PC- , F:\ - HDD 80 GB 20 GB, BAD TRACK...... C:\ HDD MASTER , Error boot sector ! PC- . ...... - ... .
, , ! , , !
SUN MICROSYSTEMS




Reply With Quote
R9 280,
7th May 2023, 21:28 in