Помогите Плиз ужасно лагает система =(

[jetstream]

вот лог

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Версия базы данных: 4263

Windows 5.1.2600 Service Pack 2

Internet Explorer 8.0.6001.18702

01.07.2010 16:12:17

mbam-log-2010-07-01 (16-12-17).txt

Тип сканирования: Полное сканирование (C:\|D:\|)

Просканированные объекты: 245874

Времени прошло: 2 часов, 40 минут, 20 секунд

Зараженные процессы в памяти: 0

Зараженные модули в памяти: 0

Зараженные ключи в реестре: 81

Зараженные параметры в реестре: 8

Объекты реестра заражены: 6

Зараженные папки: 9

Зараженные файлы: 25

Зараженные процессы в памяти:

(Вредоносных программ не обнаружено)

Зараженные модули в памяти:

(Вредоносных программ не обнаружено)

Зараженные ключи в реестре:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-21cx1c635622} (Generic.Bot.H) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{01690012-9fbf-4422-b830-bc1eee946333} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{03c39a03-bdb6-4539-9a35-b8513576a8b4} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{0a3c7fd8-4a49-4e13-8f2b-d406c2b28667} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{10bde295-fafd-4863-90bf-b9890bde7077} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{128304dd-33b4-4f05-87da-df5e4938a82f} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{1b55f2e0-7c78-4cfd-ac87-e3728d2b14f9} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{1f0fa04a-0f04-4816-9be4-879394959f58} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{2023b80e-f876-4a78-bd4c-e6a2c7409380} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{35ad961f-f78d-4ef3-a72c-6ed6f0cf6a05} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{377f63dc-5663-4237-b9ac-4f0376ce92da} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{37a13acb-e3f4-4884-b4e9-3cf666692bb0} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{3885f585-7ae7-4f51-909c-6d4c15d2d7f9} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{3b80c849-1aeb-4553-9b37-a836aca92261} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{3e069fee-b94a-45d8-bf98-601470907e9e} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{4483dae8-fefe-4a47-a2eb-d731e97a6f7d} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{4521f436-558c-4f50-a2c1-055e73303931} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{472683bd-3ac3-4838-a12c-a28605d49874} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{4c541bc9-7f2e-4d62-b396-6103116160e1} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{54f837ad-296f-4712-b918-d43335065ad0} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{55ab60a6-9115-4d30-8d61-284c2f2c9a26} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{5c3df6a7-f37f-44ec-b281-ca2d6d44d571} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{5e62facd-c790-4469-bd18-9e7bc55e6bac} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{619b2395-64e3-420c-a042-2f5f58dbe978} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{6549d8ac-47c7-46f8-875a-a90cee9d56d3} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{6aa0c658-5ee1-40cb-acc5-38c26aad4338} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{6ff56a16-e7f4-48d6-bbb5-496f4c73eddc} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{7c0972b6-be67-48ae-9c47-5c8a1f49c23f} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{7fc23e0d-13c2-4a69-9d1e-cc10e18e430e} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{7fddc940-7f5f-432e-be39-4446da142d50} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{81fea687-c096-461c-92aa-46a36d2c62de} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{82fe73c6-54b5-429d-91f0-0e596f7d2d31} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{86112591-8606-4331-8072-0f314f2155bc} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{8908dcdc-4f2c-48f5-bd83-c36fd90225a0} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{8e868b66-d540-4f46-9fb2-69e4c060a999} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{955d008b-ff96-4f89-bc62-1e2881955169} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{96c70546-dec9-4ca0-aab0-d940b24d1910} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{976e7209-cea6-48b6-9bc5-a31f6d037028} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{9a831198-a605-48b4-844d-13a009a9ea1c} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{9c290ef4-303e-4837-b30a-ed4cb0dc5219} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{ae54f9eb-3744-4c97-b38b-fe5f866479fc} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{b2c71b91-7ca7-4fd2-9138-8041178aab11} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{b3441f24-2612-450d-b87f-5a220663b0d8} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{bbf66ae7-e6bb-4b8e-accb-12862b6a5d0b} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{bca82348-c45b-4196-90ff-d0edd7d3357d} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{c9848473-0fe9-41f8-9380-9fd424d65c92} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{d3a50e7c-4c24-4466-9f4e-841dd756f186} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{dce84820-41f1-46c3-b6cc-353c5cd146a9} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e0cd2020-cfaf-4f6a-b461-fcbb21094b5e} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e23aa269-f610-47c1-b5f2-038dba096441} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e4a2c5d9-f682-461d-bd38-b4a65e835604} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e57abe81-f539-48ac-a77d-4c25c304cac3} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e5cc1b55-7bdb-4be6-b3f2-6de6ea73eb33} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{e6a1cd76-54d6-4534-8eab-9febe3e19e8f} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{eb953b20-9f91-4a11-b325-ee5d7079f68d} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{ef9e7d52-7625-4a4b-af85-eb7b494bff0c} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{f4b80c8d-77d0-4f05-bc55-d47b62407e91} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{f4f2d962-cb6f-4e41-8103-4c2d17ea97ad} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{f57c31c9-2b3b-4649-a975-bbc0d975e0f1} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{f81a895f-3184-416a-8fa0-d26818d1ad0f} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{fc1f2577-977b-4b32-b42d-e1ff7a579ced} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{5db18eb5-8cdb-46d2-9f7a-0bc563ded735} (Adware.Shopper) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_CLASSES_ROOT\AppID\{10a2afe5-a6c3-46a9-a3e9-dfbe934afcbb} (Adware.TMAagent) -> No action taken.

HKEY_CLASSES_ROOT\Typelib\{7f6edb84-901b-4309-a2f6-0058f38c4cc4} (Adware.TMAAgent) -> No action taken.

HKEY_CLASSES_ROOT\Typelib\{a1c7a1e6-6a3c-4d6f-a376-81c4bea13a62} (Adware.TMAAgent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-21cx1c635622} (Worm.AutoRun) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9d64f819-9380-8473-dab2-702fcb3d7a3e} (Trojan.Ransom) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9d64f819-9380-8473-dab2-702fcb3d7a3e} (Trojan.Ransom) -> No action taken.

HKEY_CLASSES_ROOT\AppID\tmasrv.exe (Adware.TMAagent) -> No action taken.

HKEY_CLASSES_ROOT\idid (Trojan.Sasfix) -> No action taken.

HKEY_CLASSES_ROOT\steadway.ieadapter (Adware.TMAagent) -> No action taken.

HKEY_CLASSES_ROOT\steadway.ieadapter.1 (Adware.TMAagent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Target Marketing Agency (Adware.TMAagent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\TMAgency (Adware.TMAagent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSMGR (Trojan.Downloader) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winemx32 (Trojan.Dialer) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Target Marketing Agency (Adware.TMAagent) -> No action taken.

Зараженные параметры в реестре:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{bc4be15d-6a34-4356-9e97-79e43da32b1d} (Adware.Shopper) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\nofolderoptions (Hijack.FolderOptions) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_1 (Rootkit.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_2 (Rootkit.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_3 (Rootkit.Agent) -> No action taken.

Объекты реестра заражены:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: c:\windows\system32\26eef1ca.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: system32\26eef1ca.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions (Hijack.FolderOptions) -> Bad: (1) Good: (0) -> No action taken.

Зараженные папки:

C:\Program Files\Common Files\Target Marketing Agency (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\chrome (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\components (Adware.TMAagent) -> No action taken.

C:\RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013 (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\олег\Local Settings\Application Data\Target Marketing Agency (Adware.TMAagent) -> No action taken.

C:\Documents and Settings\олег\Local Settings\Application Data\Target Marketing Agency\TMAgent (Adware.TMAagent) -> No action taken.

C:\Documents and Settings\олег\Local Settings\Application Data\Target Marketing Agency\TMAgent\update (Adware.TMAagent) -> No action taken.

Зараженные файлы:

C:\Program Files\P2P_Torrent\tbP2P_.dll (Adware.Shopper) -> No action taken.

C:\Program Files\Nikon\Capture NX 2\NIKON.CAPTURE.NX.V2.0.0.0-N.EXE (Trojan.Downloader) -> No action taken.

C:\Winamp\KeyMaker.DVT\cr_wp50.exe (RiskWare.Tool.CK) -> No action taken.

C:\WINDOWS\system32\26eef1ca.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\41bcwfi.exe (Trojan.Shiz.) -> No action taken.

C:\WINDOWS\system32\7t3PpGy.exe (Trojan.KeyLog) -> No action taken.

C:\WINDOWS\system32\p5AtnRC.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\PIM2m7b.exe (Trojan.Scar) -> No action taken.

C:\WINDOWS\system32\QBjICfY.exe (Trojan.Shiz) -> No action taken.

C:\WINDOWS\system32\bcvEKpy.exe (Trojan.Shiz.) -> No action taken.

C:\WINDOWS\system32\Jk2ULbL.exe (Trojan.KeyLog) -> No action taken.

C:\WINDOWS\system32\BJ7FnKf.exe (Trojan.Shiz.) -> No action taken.

C:\WINDOWS\system32\asLv1N6.exe (Trojan.Shiz) -> No action taken.

C:\WINDOWS\system32\Y0wP8hj.exe (Trojan.Scar) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\license.txt (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\chrome.manifest (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\install.rdf (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\components\nsIAdHandler.xpt (Adware.TMAagent) -> No action taken.

C:\Program Files\Common Files\Target Marketing Agency\TMAgent\extension\components\nsISteadway.xpt (Adware.TMAagent) -> No action taken.

C:\RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\олег\Local Settings\Application Data\Target Marketing Agency\TMAgent\params.bin (Adware.TMAagent) -> No action taken.

C:\Documents and Settings\олег\Local Settings\Application Data\Target Marketing Agency\TMAgent\tmagent.bin (Adware.TMAagent) -> No action taken.

C:\Documents and Settings\олег\Application Data\mrpky.exe (Trojan.Agent) -> No action taken.

C:\Program Files\Common Files\keylog.txt (Malware.Trace) -> No action taken.

C:\WINDOWS\system32\ (Trojan.Dialer) -> No action taken.

ещё msblast выскакивал пару раз, как его вылечить? есть таблетка, кроме форматирования?

[help?]

Здравствуйте.Выполните, пожалуйста, правила и приложите логи авз и RSIT.

http://www.softboard.ru/index.php?showtopic=51343