Премини към съдържанието

AHybuC

Потребител
  • Публикации

    56
  • Регистрация

  • Последно онлайн

Харесвания

2 Неутрална репутация

Всичко за AHybuC

  • Титла
    Редовен потребител
  1. Качване на Windows 8.1 на флашка

    Не намерих никакъв код за активация на Windows, но мисля, че разбрах какво са направили вместо това. Лаптопа съхранява в скрито пространство фабричните настройки, които също така включват самата операционна система. От Lenovo са предоставили функция, наречена Lenovo OneKey Recovery System, която на практика връща лаптопа до фабричните му настройки и по този начин ще работи така, както си го закупил. То поради тази причина вместо да имам 1TB памет, имам в наличност около 930GB - част от паметта е заета за тези фабрични настройки. Единствено не разбирам защо ми бяха предложили да кача операционната система на флашка. Предполагам, че сте прави, като казвате, че и те не знаят какво говорят.
  2. Качване на Windows 8.1 на флашка

    Здравейте, преди няколко дена си купих лаптоп от Технополис с операционна система Windows 8.1. Консултанта ми обясни, че операционната система е лицензирана само за този лаптоп и да си кача Windows-a на флашка. Каза, че по принцип се събира на 16GB флашка цялата система и наистина е така, но не разбирам как от папката C:\Windows може да се извърши инсталация. До колкото знам, нужно е или да имаш диск с инсталационните файлове, или флашка, съдържаща iso изображение с тези инсталационни файлове. Това, което консултанта ми е казал, вярно ли е или просто е баламосвал и не е възможно да възстановя операционната система с това, което ми е предоставено? Предполагам, че подобен въпрос вече е бил зададен във форума, но не намерих никакви резултати. Извинявам се, ако наистина е бил зададен такъв въпрос вече.
  3. Както винаги сте точни HJT, много Ви благодаря за помощта.
  4. Нищо нередно не съм забелязал, единствено се надявам да нямам keylogger в системата си. Много Ви благодаря за помощта.
  5. ComboFix 13-04-05.01 - Administrator 04.2013 г. 20:29:29.3.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1251.359.1033.18.3583.2883 [GMT 3:00] Running from: c:documents and settingsAdministratorDesktopComboFix.exe Command switches used :: c:documents and settingsAdministratorDesktopCFScript.txt AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . FILE :: "c:system volume information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076499.exe" "c:system volume information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076539.exe" . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:system volume information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076499.exe c:system volume information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076539.exe . . ((((((((((((((((((((((((( Files Created from 2013-03-07 to 2013-04-07 ))))))))))))))))))))))))))))))) . . 2013-04-06 11:15 . 2013-04-06 11:15 -------- d-----w- c:windowssystem32configsystemprofileLocal SettingsApplication DataESET 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:documents and settingsAdministratorApplication DataMalwarebytes 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:documents and settingsAll UsersApplication DataMalwarebytes 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:program filesMalwarebytes' Anti-Malware 2013-04-05 13:42 . 2012-12-14 13:49 21104 ----a-w- c:windowssystem32driversmbam.sys 2013-04-05 11:48 . 2013-04-05 15:05 -------- d-sh--r- c:documents and settingsAdministratorS-100-4902-8593-5693 2013-03-29 18:41 . 2013-03-29 18:41 -------- d-----w- c:documents and settingsAdministratorApplication DataIceCold-WoW 2013-03-22 14:47 . 2001-09-05 03:18 77824 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32ctor.dll 2013-03-22 14:47 . 2001-09-05 03:18 225280 ----a-w- c:program filesCommon FilesInstallShieldIScriptiscript.dll 2013-03-22 14:47 . 2001-09-05 03:14 176128 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32iuser.dll 2013-03-22 14:47 . 2001-09-05 03:13 32768 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32objectps.dll 2013-03-22 14:47 . 2002-10-08 11:00 610436 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32IKernel.exe 2013-03-20 20:21 . 2013-02-12 00:32 12928 -c----w- c:windowssystem32dllcacheusb8023x.sys 2013-03-20 20:21 . 2013-02-12 00:32 12928 -c----w- c:windowssystem32dllcacheusb8023.sys 2013-03-13 17:29 . 2013-03-13 17:29 16486616 ----a-w- c:windowssystem32FlashPlayerInstaller.exe 2013-03-12 08:29 . 2013-03-12 08:29 -------- d-----w- c:program filesCommon FilesSkype 2013-03-12 08:28 . 2013-03-12 08:29 -------- d-----w- c:program filesCommon FilesOverwolf 2013-03-10 13:09 . 2013-03-10 13:09 -------- d-----w- c:program filesFree Mouse Auto Clicker . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-03-13 17:29 . 2012-12-07 13:49 693976 ----a-w- c:windowssystem32FlashPlayerApp.exe 2013-03-13 17:29 . 2011-11-19 14:51 73432 ----a-w- c:windowssystem32FlashPlayerCPLApp.cpl 2013-02-12 19:39 . 2012-04-06 18:15 33512 ----a-w- c:windowssystem32driverstaphss.sys 2013-02-12 00:32 . 2008-04-13 18:56 12928 ------w- c:windowssystem32driversusb8023x.sys 2013-02-12 00:32 . 2004-08-03 22:04 12928 ----a-w- c:windowssystem32driversusb8023.sys 2013-02-06 10:48 . 2004-08-03 23:56 667136 ----a-w- c:windowssystem32wininet.dll 2013-02-06 10:48 . 2004-08-03 23:56 81920 ----a-w- c:windowssystem32ieencode.dll 2013-02-06 10:48 . 2004-08-03 21:59 61952 ----a-w- c:windowssystem32tdc.ocx 2013-02-05 06:38 . 2004-08-03 21:59 369664 ----a-w- c:windowssystem32html.iec 2013-01-26 03:55 . 2004-08-03 23:56 552448 ----a-w- c:windowssystem32oleaut32.dll 2012-07-03 13:40 . 2012-07-08 15:03 265120 ----a-w- c:program filesCommon FilesWireHelpSvc.exe 2013-03-08 05:42 . 2013-03-08 05:42 263064 ----a-w- c:program filesmozilla firefoxcomponentsbrowsercomps.dll 2006-05-03 10:06 163328 --sha-r- c:windowssystem32flvDX.dll 2007-02-21 11:47 31232 --sha-r- c:windowssystem32msfDX.dll 2008-03-16 13:30 216064 --sha-r- c:windowssystem32nbDX.dll 2010-01-06 22:00 107520 --sha-r- c:windowssystem32TAKDSDecoder.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun] "VistaSwitcher"="c:program filesVistaSwitchervswitch.exe" [2010-11-24 204296] "SandboxieControl"="c:program filesSandboxieSbieCtrl.exe" [2011-09-11 434960] "Overwolf"="c:program filesOverwolfOverwolf.exe" [2013-03-05 35256] "Dyyno Launcher"="c:program filesDyynoDyyno Broadcasterdyyno_launcher.exe" [2012-01-19 2146304] "DAEMON Tools Lite"="c:program filesDAEMON Tools LiteDTLite.exe" [2009-10-30 369200] . [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun] "Vistadrv"="c:icon modsWindows Vista and 7 Drive Status Bar for XPVista Drive Statusvsdrv.exe" [2006-07-30 121089] "SwitchBoard"="c:program filesCommon FilesAdobeSwitchBoardSwitchBoard.exe" [2010-02-19 517096] "RTHDCPL"="RTHDCPL.EXE" [2011-02-17 20029032] "QuickTime Task"="c:program filesQuickTimeqttask.exe" [2008-05-27 413696] "Freecorder FLV Service"="c:program filesFreecorderFLVSrvc.exe" [2011-03-24 167936] "egui"="c:program filesESETESET NOD32 Antivirusegui.exe" [2011-01-12 2219184] "DivXUpdate"="c:program filesDivXDivX UpdateDivXUpdate.exe" [2011-07-28 1259376] "AdobeCS5.5ServiceManager"="c:program filesCommon FilesAdobeCS5.5ServiceManagerCS5.5ServiceManager.exe" [2011-01-12 1523360] "AdobeAAMUpdater-1.0"="c:program filesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe" [2011-03-15 499608] "SunJavaUpdateSched"="c:program filesCommon FilesJavaJava Updatejusched.exe" [2012-07-03 252848] "NvCplDaemon"="c:windowssystem32NvCpl.dll" [2012-09-23 15512424] "NvMediaCenter"="NvMCTray.dll" [2012-09-23 108392] "nwiz"="c:program filesNVIDIA Corporationnviewnwiz.exe" [2012-09-23 1634112] "APSDaemon"="c:program filesCommon FilesAppleApple Application SupportAPSDaemon.exe" [2012-11-28 59280] "Adobe ARM"="c:program filesCommon FilesAdobeARM1.0AdobeARM.exe" [2012-12-03 946352] . c:documents and settingsAll UsersStart MenuProgramsStartup FlexType 2K.lnk - c:windowsDatecsFType2K.exe [2011-12-26 95232] . [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionpoliciesexplorer] "NoResolveTrack"= 1 (0x1) . [HKEY_USERS.defaultsoftwaremicrosoftwindowscurrentversionpoliciesexplorer] "NoResolveTrack"= 1 (0x1) . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalhitmanpro36] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalhitmanpro36.sys] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalHitmanPro36Crusader] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalHitmanPro36CrusaderBoot] @="" . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregESL Wire] 2013-01-30 11:09 2767360 ----a-w- c:program filesEslWirewire.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregGameCenterMailRu] 2013-02-08 05:14 3400728 ----a-w- c:documents and settingsAdministratorLocal SettingsApplication DataMail.RuGameCenterGameCenter@Mail.Ru.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregiTunesHelper] 2012-12-12 11:57 152544 ----a-w- c:program filesiTunesiTunesHelper.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMurGee.com Auto Keyboard] 2012-07-24 22:06 67920 ----a-w- c:program filesAuto KeyboardAutoKeyboard.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter] 2012-09-23 13:04 108392 ----a-w- c:windowssystem32nvmctray.dll . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregXoftSpySE] 2012-03-07 14:40 3399168 ----a-r- c:program filesXoftSpySE6XoftSpySE.exe . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofile] "EnableFirewall"= 0 (0x0) . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList] "%windir%system32sessmgr.exe"= "c:Program FilesBitCometBitComet.exe"= "c:Program FilesNVIDIA CorporationNVIDIA Updatusdaemonu.exe"= "d:GamesBlackShoteFusionBlackShotsystemblackshot.exe"= "%windir%Network Diagnosticxpnetdiag.exe"= "c:Program FilesSkypePhoneSkype.exe"= "d:GamesLokiLoki.exe"= "d:GamesLokiAutorunAutoRun.exe"= "c:Documents and SettingsAdministratorLocal SettingsApplication DataKamuseKCSTrayDownloaderKCSTrayDownloaderEngine.exe"= "d:GamesDragon NestDragonNest.exe"= "c:Program FilesVentriloVentrilo.exe"= "c:Program FilesDyynoDyyno Broadcasterdppm_source.exe"= "c:Program FilesDyynoDyyno Broadcasterdgcsrv.exe"= "d:GamesNFS Hot PursuitLauncher.exe"= "c:Program FilesPando NetworksMedia BoosterPMB.exe"= "c:Documents and SettingsAll UsersApplication DataNexonEUNGMNGM.exe"= "d:GamesCoD MW1iw3mp.exe"= "c:Program FilesEslWirewire.exe"= "d:GamesSteamSteamAppscommonblacklightretributionBlacklight Retribution.exe"= "c:WINDOWSsystem32PnkBstrA.exe"= "c:WINDOWSsystem32PnkBstrB.exe"= "d:GamesSteamSteamAppscommondungeons and dragons onlineTurbineInvoker.exe"= "d:gamesACEonlineLauncher.atm"= d:gamesACEonlineLauncher.atm:Enabled:GameExe2 "d:gamesACEonlineRes-VoipSCVoIP.exe"= d:gamesACEonlineRes-VoipSCVoIP.exe:Enabled:GameVoIP "d:GamesBattleForgeBootstrapper.exe"= "d:GamesBattleForgeBattleForge.exe"= "d:GamesSevencoreLauncher.exe"= "d:GamesSevencoreSEVENCORE.exe"= "d:GamesSteamSteamAppscommonavaREACTOR.exe"= "d:GamesSteamSteamAppscommonavaNWZLauncher.exe"= "c:Program FilesNVIDIA CorporationNVIDIA Update Coredaemonu.exe"= "d:GamesStar Wars-The Old Republiclauncher.exe"= "c:Program FilesCommon FilesAppleApple Application SupportWebKit2WebProcess.exe"= "c:Program FilesBonjourmDNSResponder.exe"= "c:Program FilesiTunesiTunes.exe"= "d:GamesSteamSteamAppsangel0bgcounter-strikehl.exe"= . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofileGloballyOpenPortsList] "16582:TCP"= 16582:TCP:BitComet 16582 TCP "16582:UDP"= 16582:UDP:BitComet 16582 UDP "56770:TCP"= 56770:TCP:Pando Media Booster "56770:UDP"= 56770:UDP:Pando Media Booster "58597:TCP"= 58597:TCP:Pando Media Booster "58597:UDP"= 58597:UDP:Pando Media Booster . R0 pe3agqwb;Loki Environment Driver (pe3agqwb);c:windowssystem32driverspe3agqwb.sys [04.7.2007 і. 19:07 64616] R0 ps6agqwb;Loki Synchronization Driver (ps6agqwb);c:windowssystem32driversps6agqwb.sys [04.7.2007 і. 19:06 54896] R0 sptd;sptd;c:windowssystem32driverssptd.sys [20.11.2011 і. 14:15 691696] R1 ehdrv;ehdrv;c:windowssystem32driversehdrv.sys [21.12.2010 і. 17:04 115008] R1 epfwtdir;epfwtdir;c:windowssystem32driversepfwtdir.sys [21.12.2010 і. 15:47 94872] R1 oreans32;oreans32;c:windowssystem32driversoreans32.sys [27.6.2012 і. 17:57 33824] R2 Dyyno Launcher;Dyyno Service;c:program filesDyynoDyyno Broadcasterlauncherd.exe [19.1.2012 і. 08:26 409600] R2 ekrn;ESET Service;c:program filesESETESET NOD32 Antivirusekrn.exe [12.1.2011 і. 18:41 810144] R2 ESLWireAC;ESLWireAC;c:windowssystem32driversESLWireACD.sys [08.7.2012 і. 18:03 867344] R2 EslWireHelper;ESL Wire Helper Service;c:program filesEslWireserviceWireHelperSvc.exe [31.1.2013 і. 22:46 615440] R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;d:gamesHi-Rez StudiosHiPatchService.exe [26.11.2012 і. 16:39 8704] R2 MBAMScheduler;MBAMScheduler;c:program filesMalwarebytes' Anti-Malwarembamscheduler.exe [05.4.2013 і. 16:42 398184] R3 MBAMProtector;MBAMProtector;c:windowssystem32driversmbam.sys [05.4.2013 і. 16:42 21104] S2 MBAMService;MBAMService;c:program filesMalwarebytes' Anti-Malwarembamservice.exe [05.4.2013 і. 16:42 682344] S2 pr2agqwb;Loki Drivers Auto Removal (pr2agqwb);c:windowssystem32pr2agqwb.exe svc --> c:windowssystem32pr2agqwb.exe svc [?] S3 1394hub;1394 Enabled Hub;c:windowssystem32svchost.exe -k netsvcs [04.8.2004 і. 02:56 14336] S3 Ambfilt;Ambfilt;c:windowssystem32driversAmbfilt.sys [20.11.2011 і. 13:29 1691480] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:windowssystem32driversssudbus.sys [22.12.2012 і. 19:10 80824] S3 EagleXNt;EagleXNt;??c:windowssystem32driversEagleXNt.sys --> c:windowssystem32driversEagleXNt.sys [?] S3 GGSAFERDriver;GGSAFER Driver;??c:program filesGarena PlusRoomsafedrv.sys --> c:program filesGarena PlusRoomsafedrv.sys [?] S3 LLRING0;LLRING0;d:gamesInfinity MUMuGuardllck.sys [15.1.2012 і. 19:50 3840] S3 NetHook_ControlCenter;ArtOfPing ControlCenter;??c:program filesAutoTunnel GGControlCenter.sys --> c:program filesAutoTunnel GGControlCenter.sys [?] S3 NetHook_Interceptor;ArtOfPing TDI Interceptor;??c:program filesAutoTunnel GGInterceptor.sys --> c:program filesAutoTunnel GGInterceptor.sys [?] S3 npggsvc;nProtect GameGuard Service;c:windowssystem32GameMon.des -service --> c:windowssystem32GameMon.des -service [?] S3 OverwolfUpdaterService;Overwolf Updater Service;c:program filesOverwolfOverwolfUpdater.exe [19.5.2012 і. 16:19 18360] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:windowssystem32driversssudmdm.sys [22.12.2012 і. 19:10 181432] S3 SwitchBoard;Adobe SwitchBoard;c:program filesCommon FilesAdobeSwitchBoardSwitchBoard.exe [19.2.2010 і. 14:37 517096] S3 vtany;vtany;??c:windowsvtany.sys --> c:windowsvtany.sys [?] S3 XDva398;XDva398;??c:windowssystem32XDva398.sys --> c:windowssystem32XDva398.sys [?] S3 xhunter1;xhunter1;??c:windowsxhunter1.sys --> c:windowsxhunter1.sys [?] S3 XoftSpyService;XoftSpyService;c:program filesCommon FilesXoftSpySE6xoftspyservice.exe [29.8.2009 і. 00:15 582424] S3 xsherlock;xsherlock;c:windowssystem32xsherlock.xem [02.12.2011 і. 16:42 666720] . Contents of the 'Scheduled Tasks' folder . 2013-04-07 c:windowsTasksAdobe Flash Player Updater.job - c:windowssystem32MacromedFlashFlashPlayerUpdateService.exe [2012-12-07 17:29] . 2013-03-17 c:windowsTasksAdobeAAMUpdater-1.0-COMP-Administrator.job - c:program filesCommon FilesAdobeOOBEPDAppUWAupdaterstartuputility.exe [2012-03-06 15:42] . 2013-04-07 c:windowsTasksGoogleUpdateTaskMachineCore.job - c:program filesGoogleUpdateGoogleUpdate.exe [2012-10-18 11:48] . 2013-04-07 c:windowsTasksGoogleUpdateTaskMachineUA.job - c:program filesGoogleUpdateGoogleUpdate.exe [2012-10-18 11:48] . 2013-03-03 c:windowsTasksParetoLogic Update Version3.job - c:program filesCommon FilesParetoLogicUUS3Pareto_Update3.exe [2009-08-28 21:15] . 2013-04-07 c:windowsTasksWGASetup.job - c:windowssystem32KB905474wgasetup.exe [2011-11-21 21:18] . 2013-03-17 c:windowsTasksXoftSpySE.job - c:program filesXoftSpySE6XoftSpySELauncher.exe [2009-08-28 21:13] . . ------- Supplementary Scan ------- . mStart Page = hxxp://www.google.com uInternet Settings,ProxyOverride = *.local IE: &D&ownload &with BitComet - c:program filesBitCometBitComet.exe/AddLink.htm IE: &D&ownload all with BitComet - c:program filesBitCometBitComet.exe/AddAllLink.htm IE: Free YouTube Download - c:documents and settingsAdministratorApplication DataDVDVideoSoftIEHelpersfreeytvdownloader.htm Trusted Zone: champions-online.com launcher Trusted Zone: startrekonline.com launcher TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:documents and settingsAdministratorApplication DataMozillaFirefoxProfilesd6fk92gx.default FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - Freecorder Customized Web Search FF - prefs.js: browser.startup.homepage - google.bg FF - ExtSQL: 2013-02-09 00:43; cryenginebrowserplugin@crytek.com; c:documents and settingsAdministratorApplication DataMozillaFirefoxProfilesd6fk92gx.defaultextensionscryenginebrowserplugin@crytek.com . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-04-07 20:37 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINESystemControlSet001Servicesnpggsvc] "ImagePath"="c:windowssystem32GameMon.des -service" . [HKEY_LOCAL_MACHINESystemControlSet001Servicesxsherlock] "ImagePath"="c:windowssystem32xsherlock.xem" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:WINDOWSsystem32MacromedFlashFlashUtil32_11_6_602_180_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}LocalServer32] @="c:WINDOWSsystem32MacromedFlashFlashUtil32_11_6_602_180_ActiveX.exe" . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'explorer.exe'(1992) c:windowssystem32newdll.dll c:program filesNVIDIA CorporationnViewnview.dll c:program filesOverwolfOWExplorer-10616.dll c:documents and settingsAdministratorLocal SettingsApplication DataFLVServicelibFLVSrvLib.dll c:windowssystem32WPDShServiceObj.dll c:windowssystem32PortableDeviceTypes.dll c:windowssystem32PortableDeviceApi.dll . ------------------------ Other Running Processes ------------------------ . c:program filesSandboxieSbieSvc.exe c:program filesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe c:program filesBonjourmDNSResponder.exe c:windowssystem32inetsrvinetinfo.exe c:program filesJavajre7binjqs.exe c:windowssystem32nvsvc32.exe c:windowssystem32PnkBstrA.exe c:windowsRTHDCPL.EXE c:windowssystem32RunDLL32.exe c:windowssystem32rundll32.exe c:windowssystem32wscntfy.exe c:windowssystem32rundll32.exe . ************************************************************************** . Completion time: 2013-04-07 20:41:45 - machine was rebooted ComboFix-quarantined-files.txt 2013-04-07 17:41 ComboFix2.txt 2013-04-05 19:28 . Pre-Run: 59 887 296 512 bytes free Post-Run: 59 901 595 648 bytes free . - - End Of File - - 734783BC47B1CEE4F4FC7698F982D265
  6. След като свърши сканирването с Malwarebytes бях попитан дали искам да рестартирам компютъра. Потвърдих, че искам да бъде рестартиран, и след това взех лог файла от програмата под раздел Logs. Malwarebytes Anti-Malware (Trial) 1.70.0.1100 www.malwarebytes.org Database version: v2013.04.06.04 Windows XP Service Pack 3 x86 NTFS Internet Explorer 6.0.2900.5512 Administrator :: COMP [administrator] Protection: Disabled 07.4.2013 г. 10:25:07 mbam-log-2013-04-07 (10-25-07).txt Scan type: Full scan (C:|D:|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 783925 Time elapsed: 2 hour(s), 30 minute(s), 11 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 1 HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Data: 1 -> Quarantined and deleted successfully. Registry Data Items Detected: 1 HKLMSOFTWAREMicrosoftInternet ExplorerMain|Start Page (Hijack.StartPage) -> Bad: (http://startsear.ch/?aff=1&cf=FFFFFFFF-FFFF-FFFF-FFFF-FFFFFFFFFFFF) Good: (http://www.google.com) -> Quarantined and repaired successfully. Folders Detected: 0 (No malicious items detected) Files Detected: 15 C:SandboxAdministratorMU3driveDGamesPartyMu Season 6 Episode 3main.exe (Backdoor.Bot) -> Quarantined and deleted successfully. C:System Volume Information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP636A0065796.exe (PUP.Adware.RKN) -> Quarantined and deleted successfully. C:System Volume Information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076536.exe (Trojan.Agent.VB) -> Quarantined and deleted successfully. C:WINDOWSDatecsRemove.exe (Trojan.FakeAlert.SecGen) -> Quarantined and deleted successfully. D:Gamesdoom3RLD-D3KG.EXE (Trojan.Downloader) -> Quarantined and deleted successfully. D:GamesZMU Client VERSION 0.5main.exe (Backdoor.Bot) -> Quarantined and deleted successfully. D:GamesCall_Of_Duty_4_Crackfix_And_Keygen-Razor1911Keygenrzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. D:GamesDark BloodDarkBloodDarkBlood.exe (Backdoor.Bot) -> Quarantined and deleted successfully. D:GamesDarkSide MUSCFAutoUpdate.exe (Trojan.Downloader) -> Quarantined and deleted successfully. D:GamesPandoraMUGame.dll (Malware.Gen) -> Quarantined and deleted successfully. D:GamesPandoraMUmain.exe (Malware.Gen) -> Quarantined and deleted successfully. D:GamesPartyMu Season 6 Episode 3main.exe (Backdoor.Bot) -> Quarantined and deleted successfully. D:GamesPartyMu.net Season6ep2_v1main.exe (Backdoor.Bot) -> Quarantined and deleted successfully. D:System Volume Information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076555.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. C:Documents and SettingsAdministratorApplication Datawinsvcns.sys (Malware.Trace) -> Quarantined and deleted successfully. (end) ESET Online Scanner ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=cd8b2f495d67cb46b1b8407ad79c03ab # engine=13559 # end=finished # remove_checked=true # archives_checked=false # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-04-05 05:28:45 # local_time=2013-04-05 08:28:45 (+0200, GTB Daylight Time) # country="Bulgaria" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=8199 16776701 100 100 11851 72246279 0 0 # scanned=532139 # found=5 # cleaned=4 # scan_time=8096 # nod_component=V3 Build:0x30000000 sh=1164B0BF9EE2798DD58D52640332E47E25677F2E ft=1 fh=70d32ac2031e713c vn="a variant of Win32/Kryptik.AYCS trojan (cleaned by deleting - quarantined)" ac=C fn="C:Documents and SettingsAdministratorLocal SettingsTemp2182498797.exe" sh=1164B0BF9EE2798DD58D52640332E47E25677F2E ft=1 fh=70d32ac2031e713c vn="a variant of Win32/Kryptik.AYCS trojan (cleaned by deleting - quarantined)" ac=C fn="C:Documents and SettingsAdministratorLocal SettingsTemp4350304438.exe" sh=1164B0BF9EE2798DD58D52640332E47E25677F2E ft=1 fh=70d32ac2031e713c vn="a variant of Win32/Kryptik.AYCS trojan (cleaned by deleting - quarantined)" ac=C fn="C:Documents and SettingsAdministratorLocal SettingsTemp5002697144.exe" sh=1164B0BF9EE2798DD58D52640332E47E25677F2E ft=1 fh=70d32ac2031e713c vn="a variant of Win32/Kryptik.AYCS trojan (cleaned by deleting - quarantined)" ac=C fn="C:Documents and SettingsAdministratorLocal SettingsTemporary Internet FilesContent.IE59MQ9GK0M11bo[1].exe" sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="a variant of Win32/Tofsee.AX trojan" ac=I fn="${Memory}" # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=cd8b2f495d67cb46b1b8407ad79c03ab # engine=13567 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2013-04-07 03:40:14 # local_time=2013-04-07 06:40:14 (+0200, GTB Daylight Time) # country="Bulgaria" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=8199 16776701 100 100 85352 72412568 0 0 # scanned=539499 # found=6 # cleaned=0 # scan_time=20048 # nod_component=V3 Build:0x30000000 sh=06D315E206C62B3041C943EFC3A774CF3934CCDD ft=0 fh=0000000000000000 vn="a variant of Java/JShrink.A application" ac=I fn="C:Documents and SettingsAdministratorLocal SettingsApplication DataSunJavaDeploymentcache6.0149bb9c4e-18d2c96a" sh=C8FDABDE8765355DB5D707688158205E0B6B79A7 ft=1 fh=47d2d6fc0c26c4f7 vn="a variant of Win32/Keygen.AR application" ac=I fn="C:Program FilesSonyVegas Pro 9.0Keygen.exe" sh=B8BFF07F4C958C02F41D69F44B9774D9846D1A77 ft=1 fh=3ee20c366fdd70ce vn="probably a variant of Win32/CNETInstaller.A application" ac=I fn="C:System Volume Information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076499.exe" sh=E14197EE16D9D82A82825C118274D592DC982217 ft=1 fh=70d32ac2e92108d1 vn="a variant of Win32/Kryptik.AYCS trojan" ac=I fn="C:System Volume Information_restore{73FC6137-DB0F-4E22-BBEC-AD31F6C9FA15}RP720A0076539.exe" sh=BC80CCCFC592CE386E747BF616EB381689F9E9CE ft=0 fh=0000000000000000 vn="a variant of Win32/HackTool.Patcher.A application" ac=I fn="D:GamesNeed For Speed Most Wanted PC DVDNFSMWBE PC DVD.ISO" sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.AAD trojan" ac=I fn="D:GamesNeed.for.Speed.Hot.Pursuit-RELOADEDrld-nshp.iso"
  7. Благодаря, че се зае с моя случай. ComboFix 13-04-05.01 - Administrator 04.2013 г. 22:20:52.2.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1251.359.1033.18.3583.2847 [GMT 3:00] Running from: c:documents and settingsAdministratorDesktopComboFix.exe AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:documents and settingsAdministratorApplication DataDyyno c:documents and settingsAdministratorApplication DataDyynodgcsrv.xml c:documents and settingsAdministratorApplication DataDyynodyyno.xml c:documents and settingsAdministratorApplication DataPriceGong c:documents and settingsAdministratorApplication DataPriceGongDatamru.xml c:documents and settingsAdministratorLocal SettingsApplication Dataassemblytmp c:program filesComplitly c:program filesComplitlychromeComplitlyChrome.crx c:program filesComplitlyFireFoxExtension.exe c:program filesComplitlyInstTracker.exe c:program filesComplitlysupport@Complitly.comchrome.manifest c:program filesComplitlysupport@Complitly.comchromecontentappIcon.png c:program filesComplitlysupport@Complitly.comchromecontentbrowserOverlay.xul c:program filesComplitlysupport@Complitly.comchromecontentoptions.js c:program filesComplitlysupport@Complitly.comchromecontentoptions.xul c:program filesComplitlysupport@Complitly.comchromecontentutils.js c:program filesComplitlysupport@Complitly.comdefaultspreferencespredictad.js c:program filesComplitlysupport@Complitly.cominstall.rdf c:program filesComplitlyunins000.dat c:program filesComplitlyunins000.exe c:windowssystem32Cache c:windowssystem32msconfig.exe c:windowssystem32NEW68.tmp c:windowssystem32NEW6E.tmp c:windowssystem32NEW6F.tmp c:windowssystem32URTTemp c:windowssystem32URTTempregtlib.exe c:windowsXSxS D:install.exe . . ((((((((((((((((((((((((( Files Created from 2013-03-05 to 2013-04-05 ))))))))))))))))))))))))))))))) . . 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:documents and settingsAdministratorApplication DataMalwarebytes 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:documents and settingsAll UsersApplication DataMalwarebytes 2013-04-05 13:42 . 2013-04-05 13:42 -------- d-----w- c:program filesMalwarebytes' Anti-Malware 2013-04-05 13:42 . 2012-12-14 13:49 21104 ----a-w- c:windowssystem32driversmbam.sys 2013-04-05 11:48 . 2013-04-05 11:48 0 ---ha-w- c:documents and settingsAdministratorApplication Datawinsvcns.sys 2013-04-05 11:48 . 2013-04-05 15:05 -------- d-sh--r- c:documents and settingsAdministratorS-100-4902-8593-5693 2013-03-29 18:41 . 2013-03-29 18:41 -------- d-----w- c:documents and settingsAdministratorApplication DataIceCold-WoW 2013-03-22 14:47 . 2001-09-05 03:18 77824 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32ctor.dll 2013-03-22 14:47 . 2001-09-05 03:18 225280 ----a-w- c:program filesCommon FilesInstallShieldIScriptiscript.dll 2013-03-22 14:47 . 2001-09-05 03:14 176128 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32iuser.dll 2013-03-22 14:47 . 2001-09-05 03:13 32768 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32objectps.dll 2013-03-22 14:47 . 2002-10-08 11:00 610436 ----a-w- c:program filesCommon FilesInstallShieldEngine6Intel 32IKernel.exe 2013-03-20 20:21 . 2013-02-12 00:32 12928 -c----w- c:windowssystem32dllcacheusb8023x.sys 2013-03-20 20:21 . 2013-02-12 00:32 12928 -c----w- c:windowssystem32dllcacheusb8023.sys 2013-03-13 17:29 . 2013-03-13 17:29 16486616 ----a-w- c:windowssystem32FlashPlayerInstaller.exe 2013-03-12 08:29 . 2013-03-12 08:29 -------- d-----w- c:program filesCommon FilesSkype 2013-03-12 08:28 . 2013-03-12 08:29 -------- d-----w- c:program filesCommon FilesOverwolf 2013-03-10 13:09 . 2013-03-10 13:09 -------- d-----w- c:program filesFree Mouse Auto Clicker . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-03-13 17:29 . 2012-12-07 13:49 693976 ----a-w- c:windowssystem32FlashPlayerApp.exe 2013-03-13 17:29 . 2011-11-19 14:51 73432 ----a-w- c:windowssystem32FlashPlayerCPLApp.cpl 2013-02-12 19:39 . 2012-04-06 18:15 33512 ----a-w- c:windowssystem32driverstaphss.sys 2013-02-12 00:32 . 2008-04-13 18:56 12928 ------w- c:windowssystem32driversusb8023x.sys 2013-02-12 00:32 . 2004-08-03 22:04 12928 ----a-w- c:windowssystem32driversusb8023.sys 2013-02-06 10:48 . 2004-08-03 23:56 667136 ----a-w- c:windowssystem32wininet.dll 2013-02-06 10:48 . 2004-08-03 23:56 81920 ----a-w- c:windowssystem32ieencode.dll 2013-02-06 10:48 . 2004-08-03 21:59 61952 ----a-w- c:windowssystem32tdc.ocx 2013-02-05 06:38 . 2004-08-03 21:59 369664 ----a-w- c:windowssystem32html.iec 2013-01-26 03:55 . 2004-08-03 23:56 552448 ----a-w- c:windowssystem32oleaut32.dll 2013-01-07 01:19 . 2004-08-03 22:18 2148864 ----a-w- c:windowssystem32ntoskrnl.exe 2013-01-07 00:37 . 2005-03-20 17:29 2027520 ----a-w- c:windowssystem32ntkrnlpa.exe 2012-07-03 13:40 . 2012-07-08 15:03 265120 ----a-w- c:program filesCommon FilesWireHelpSvc.exe 2013-03-08 05:42 . 2013-03-08 05:42 263064 ----a-w- c:program filesmozilla firefoxcomponentsbrowsercomps.dll 2006-05-03 10:06 163328 --sha-r- c:windowssystem32flvDX.dll 2007-02-21 11:47 31232 --sha-r- c:windowssystem32msfDX.dll 2008-03-16 13:30 216064 --sha-r- c:windowssystem32nbDX.dll 2010-01-06 22:00 107520 --sha-r- c:windowssystem32TAKDSDecoder.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun] "VistaSwitcher"="c:program filesVistaSwitchervswitch.exe" [2010-11-24 204296] "SandboxieControl"="c:program filesSandboxieSbieCtrl.exe" [2011-09-11 434960] "Overwolf"="c:program filesOverwolfOverwolf.exe" [2013-03-05 35256] "Dyyno Launcher"="c:program filesDyynoDyyno Broadcasterdyyno_launcher.exe" [2012-01-19 2146304] "DAEMON Tools Lite"="c:program filesDAEMON Tools LiteDTLite.exe" [2009-10-30 369200] . [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun] "Vistadrv"="c:icon modsWindows Vista and 7 Drive Status Bar for XPVista Drive Statusvsdrv.exe" [2006-07-30 121089] "SwitchBoard"="c:program filesCommon FilesAdobeSwitchBoardSwitchBoard.exe" [2010-02-19 517096] "RTHDCPL"="RTHDCPL.EXE" [2011-02-17 20029032] "QuickTime Task"="c:program filesQuickTimeqttask.exe" [2008-05-27 413696] "Freecorder FLV Service"="c:program filesFreecorderFLVSrvc.exe" [2011-03-24 167936] "egui"="c:program filesESETESET NOD32 Antivirusegui.exe" [2011-01-12 2219184] "DivXUpdate"="c:program filesDivXDivX UpdateDivXUpdate.exe" [2011-07-28 1259376] "AdobeCS5.5ServiceManager"="c:program filesCommon FilesAdobeCS5.5ServiceManagerCS5.5ServiceManager.exe" [2011-01-12 1523360] "AdobeAAMUpdater-1.0"="c:program filesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe" [2011-03-15 499608] "SunJavaUpdateSched"="c:program filesCommon FilesJavaJava Updatejusched.exe" [2012-07-03 252848] "NvCplDaemon"="c:windowssystem32NvCpl.dll" [2012-09-23 15512424] "NvMediaCenter"="NvMCTray.dll" [2012-09-23 108392] "nwiz"="c:program filesNVIDIA Corporationnviewnwiz.exe" [2012-09-23 1634112] "APSDaemon"="c:program filesCommon FilesAppleApple Application SupportAPSDaemon.exe" [2012-11-28 59280] "Adobe ARM"="c:program filesCommon FilesAdobeARM1.0AdobeARM.exe" [2012-12-03 946352] . c:documents and settingsAll UsersStart MenuProgramsStartup FlexType 2K.lnk - c:windowsDatecsFType2K.exe [2011-12-26 95232] . [HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionpoliciesexplorer] "ForceClassicControlPanel"= 1 (0x1) . [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionpoliciesexplorer] "NoResolveTrack"= 1 (0x1) . [HKEY_USERS.defaultsoftwaremicrosoftwindowscurrentversionpoliciesexplorer] "NoResolveTrack"= 1 (0x1) . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalhitmanpro36] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalhitmanpro36.sys] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalHitmanPro36Crusader] @="" . [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalHitmanPro36CrusaderBoot] @="" . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregESL Wire] 2013-01-30 11:09 2767360 ----a-w- c:program filesEslWirewire.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregGameCenterMailRu] 2013-02-08 05:14 3400728 ----a-w- c:documents and settingsAdministratorLocal SettingsApplication DataMail.RuGameCenterGameCenter@Mail.Ru.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregiTunesHelper] 2012-12-12 11:57 152544 ----a-w- c:program filesiTunesiTunesHelper.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMurGee.com Auto Keyboard] 2012-07-24 22:06 67920 ----a-w- c:program filesAuto KeyboardAutoKeyboard.exe . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter] 2012-09-23 13:04 108392 ----a-w- c:windowssystem32nvmctray.dll . [HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregXoftSpySE] 2012-03-07 14:40 3399168 ----a-r- c:program filesXoftSpySE6XoftSpySE.exe . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofile] "EnableFirewall"= 0 (0x0) . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList] "%windir%system32sessmgr.exe"= "c:Program FilesBitCometBitComet.exe"= "c:Program FilesNVIDIA CorporationNVIDIA Updatusdaemonu.exe"= "d:GamesBlackShoteFusionBlackShotsystemblackshot.exe"= "%windir%Network Diagnosticxpnetdiag.exe"= "c:Program FilesSkypePhoneSkype.exe"= "d:GamesLokiLoki.exe"= "d:GamesLokiAutorunAutoRun.exe"= "c:Documents and SettingsAdministratorLocal SettingsApplication DataKamuseKCSTrayDownloaderKCSTrayDownloaderEngine.exe"= "d:GamesDragon NestDragonNest.exe"= "c:Program FilesVentriloVentrilo.exe"= "c:Program FilesDyynoDyyno Broadcasterdppm_source.exe"= "c:Program FilesDyynoDyyno Broadcasterdgcsrv.exe"= "d:GamesNFS Hot PursuitLauncher.exe"= "c:Program FilesPando NetworksMedia BoosterPMB.exe"= "c:Documents and SettingsAll UsersApplication DataNexonEUNGMNGM.exe"= "d:GamesCoD MW1iw3mp.exe"= "c:Program FilesEslWirewire.exe"= "d:GamesSteamSteamAppscommonblacklightretributionBlacklight Retribution.exe"= "c:WINDOWSsystem32PnkBstrA.exe"= "c:WINDOWSsystem32PnkBstrB.exe"= "d:GamesSteamSteamAppscommondungeons and dragons onlineTurbineInvoker.exe"= "d:gamesACEonlineLauncher.atm"= d:gamesACEonlineLauncher.atm:Enabled:GameExe2 "d:gamesACEonlineRes-VoipSCVoIP.exe"= d:gamesACEonlineRes-VoipSCVoIP.exe:Enabled:GameVoIP "d:GamesBattleForgeBootstrapper.exe"= "d:GamesBattleForgeBattleForge.exe"= "d:GamesSevencoreLauncher.exe"= "d:GamesSevencoreSEVENCORE.exe"= "d:GamesSteamSteamAppscommonavaREACTOR.exe"= "d:GamesSteamSteamAppscommonavaNWZLauncher.exe"= "c:Program FilesNVIDIA CorporationNVIDIA Update Coredaemonu.exe"= "d:GamesStar Wars-The Old Republiclauncher.exe"= "c:Program FilesCommon FilesAppleApple Application SupportWebKit2WebProcess.exe"= "c:Program FilesBonjourmDNSResponder.exe"= "c:Program FilesiTunesiTunes.exe"= "d:GamesSteamSteamAppsangel0bgcounter-strikehl.exe"= . [HKLM~servicessharedaccessparametersfirewallpolicystandardprofileGloballyOpenPortsList] "16582:TCP"= 16582:TCP:BitComet 16582 TCP "16582:UDP"= 16582:UDP:BitComet 16582 UDP "56770:TCP"= 56770:TCP:Pando Media Booster "56770:UDP"= 56770:UDP:Pando Media Booster "58597:TCP"= 58597:TCP:Pando Media Booster "58597:UDP"= 58597:UDP:Pando Media Booster . R0 pe3agqwb;Loki Environment Driver (pe3agqwb);c:windowssystem32driverspe3agqwb.sys [04.7.2007 і. 19:07 64616] R0 ps6agqwb;Loki Synchronization Driver (ps6agqwb);c:windowssystem32driversps6agqwb.sys [04.7.2007 і. 19:06 54896] R0 sptd;sptd;c:windowssystem32driverssptd.sys [20.11.2011 і. 14:15 691696] R1 ehdrv;ehdrv;c:windowssystem32driversehdrv.sys [21.12.2010 і. 17:04 115008] R1 epfwtdir;epfwtdir;c:windowssystem32driversepfwtdir.sys [21.12.2010 і. 15:47 94872] R1 oreans32;oreans32;c:windowssystem32driversoreans32.sys [27.6.2012 і. 17:57 33824] R2 Dyyno Launcher;Dyyno Service;c:program filesDyynoDyyno Broadcasterlauncherd.exe [19.1.2012 і. 08:26 409600] R2 ekrn;ESET Service;c:program filesESETESET NOD32 Antivirusekrn.exe [12.1.2011 і. 18:41 810144] R2 ESLWireAC;ESLWireAC;c:windowssystem32driversESLWireACD.sys [08.7.2012 і. 18:03 867344] R2 EslWireHelper;ESL Wire Helper Service;c:program filesEslWireserviceWireHelperSvc.exe [31.1.2013 і. 22:46 615440] R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;d:gamesHi-Rez StudiosHiPatchService.exe [26.11.2012 і. 16:39 8704] R2 MBAMScheduler;MBAMScheduler;c:program filesMalwarebytes' Anti-Malwarembamscheduler.exe [05.4.2013 і. 16:42 398184] R3 MBAMProtector;MBAMProtector;c:windowssystem32driversmbam.sys [05.4.2013 і. 16:42 21104] S2 MBAMService;MBAMService;c:program filesMalwarebytes' Anti-Malwarembamservice.exe [05.4.2013 і. 16:42 682344] S2 pr2agqwb;Loki Drivers Auto Removal (pr2agqwb);c:windowssystem32pr2agqwb.exe svc --> c:windowssystem32pr2agqwb.exe svc [?] S3 1394hub;1394 Enabled Hub;c:windowssystem32svchost.exe -k netsvcs [04.8.2004 і. 02:56 14336] S3 Ambfilt;Ambfilt;c:windowssystem32driversAmbfilt.sys [20.11.2011 і. 13:29 1691480] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:windowssystem32driversssudbus.sys [22.12.2012 і. 19:10 80824] S3 EagleXNt;EagleXNt;??c:windowssystem32driversEagleXNt.sys --> c:windowssystem32driversEagleXNt.sys [?] S3 GGSAFERDriver;GGSAFER Driver;??c:program filesGarena PlusRoomsafedrv.sys --> c:program filesGarena PlusRoomsafedrv.sys [?] S3 LLRING0;LLRING0;d:gamesInfinity MUMuGuardllck.sys [15.1.2012 і. 19:50 3840] S3 NetHook_ControlCenter;ArtOfPing ControlCenter;??c:program filesAutoTunnel GGControlCenter.sys --> c:program filesAutoTunnel GGControlCenter.sys [?] S3 NetHook_Interceptor;ArtOfPing TDI Interceptor;??c:program filesAutoTunnel GGInterceptor.sys --> c:program filesAutoTunnel GGInterceptor.sys [?] S3 npggsvc;nProtect GameGuard Service;c:windowssystem32GameMon.des -service --> c:windowssystem32GameMon.des -service [?] S3 OverwolfUpdaterService;Overwolf Updater Service;c:program filesOverwolfOverwolfUpdater.exe [19.5.2012 і. 16:19 18360] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:windowssystem32driversssudmdm.sys [22.12.2012 і. 19:10 181432] S3 SwitchBoard;Adobe SwitchBoard;c:program filesCommon FilesAdobeSwitchBoardSwitchBoard.exe [19.2.2010 і. 14:37 517096] S3 vtany;vtany;??c:windowsvtany.sys --> c:windowsvtany.sys [?] S3 XDva398;XDva398;??c:windowssystem32XDva398.sys --> c:windowssystem32XDva398.sys [?] S3 xhunter1;xhunter1;??c:windowsxhunter1.sys --> c:windowsxhunter1.sys [?] S3 XoftSpyService;XoftSpyService;c:program filesCommon FilesXoftSpySE6xoftspyservice.exe [29.8.2009 і. 00:15 582424] S3 xsherlock;xsherlock;c:windowssystem32xsherlock.xem [02.12.2011 і. 16:42 666720] . --- Other Services/Drivers In Memory --- . *NewlyCreated* - WS2IFSL . Contents of the 'Scheduled Tasks' folder . 2013-04-05 c:windowsTasksAdobe Flash Player Updater.job - c:windowssystem32MacromedFlashFlashPlayerUpdateService.exe [2012-12-07 17:29] . 2013-03-17 c:windowsTasksAdobeAAMUpdater-1.0-COMP-Administrator.job - c:program filesCommon FilesAdobeOOBEPDAppUWAupdaterstartuputility.exe [2012-03-06 15:42] . 2013-04-05 c:windowsTasksGoogleUpdateTaskMachineCore.job - c:program filesGoogleUpdateGoogleUpdate.exe [2012-10-18 11:48] . 2013-04-05 c:windowsTasksGoogleUpdateTaskMachineUA.job - c:program filesGoogleUpdateGoogleUpdate.exe [2012-10-18 11:48] . 2013-03-03 c:windowsTasksParetoLogic Update Version3.job - c:program filesCommon FilesParetoLogicUUS3Pareto_Update3.exe [2009-08-28 21:15] . 2013-04-05 c:windowsTasksWGASetup.job - c:windowssystem32KB905474wgasetup.exe [2011-11-21 21:18] . 2013-03-17 c:windowsTasksXoftSpySE.job - c:program filesXoftSpySE6XoftSpySELauncher.exe [2009-08-28 21:13] . . ------- Supplementary Scan ------- . mStart Page = hxxp://startsear.ch/?aff=1&cf=FFFFFFFF-FFFF-FFFF-FFFF-FFFFFFFFFFFF uInternet Settings,ProxyOverride = *.local IE: &D&ownload &with BitComet - c:program filesBitCometBitComet.exe/AddLink.htm IE: &D&ownload all with BitComet - c:program filesBitCometBitComet.exe/AddAllLink.htm IE: Free YouTube Download - c:documents and settingsAdministratorApplication DataDVDVideoSoftIEHelpersfreeytvdownloader.htm Trusted Zone: champions-online.com launcher Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com Trusted Zone: startrekonline.com launcher TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:documents and settingsAdministratorApplication DataMozillaFirefoxProfilesd6fk92gx.default FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - Freecorder Customized Web Search FF - prefs.js: browser.startup.homepage - google.bg FF - ExtSQL: 2013-02-09 00:43; cryenginebrowserplugin@crytek.com; c:documents and settingsAdministratorApplication DataMozillaFirefoxProfilesd6fk92gx.defaultextensionscryenginebrowserplugin@crytek.com . - - - - ORPHANS REMOVED - - - - . URLSearchHooks-{1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) Toolbar-{1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) Toolbar-{26c9e18c-3717-4be1-a225-04e4471f5b6e} - (no file) WebBrowser-{1392B8D2-5C05-419F-A8F6-B9F15A596612} - (no file) HKCU-Run-PlayNC Launcher - (no file) HKCU-Run-Microsoft Windows Manager - c:documents and settingsAdministratorS-100-4902-8593-5693winmgr.exe MSConfigStartUp-MurGee - c:program filesAuto ClickerAutoClicker.exe AddRemove-AutoTunnel GG - c:program filesAutoTunnel GGuninstall.exe AddRemove-BlackShot - d:gamesNew FoldereFusionuninstall.exe AddRemove-Sandboxie - c:windowsInstallerSandboxieInstall32.exe AddRemove-Steam App 102700 - c:program filesSteamsteam.exe AddRemove-Xvid Video Codec 1.3.2 - c:program filesXviduninstall.exe AddRemove-{1A36CF15-DF66-4756-9482-A9ABF3DDACE6}_is1 - c:program filesDriver Robot2.5.4.1unins000.exe AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:program filesComplitlyunins000.exe AddRemove-{6033673D-2530-4587-8AD0-EB059FC263F9}_is1 - d:gamesCrysis 2unins000.exe AddRemove-01_Simmental - c:program filesSAMSUNGUSB Drivers01_SimmentalUninstall.exe AddRemove-02_Siberian - c:program filesSAMSUNGUSB Drivers02_SiberianUninstall.exe AddRemove-03_Swallowtail - c:program filesSAMSUNGUSB Drivers03_SwallowtailUninstall.exe AddRemove-04_semseyite - c:program filesSAMSUNGUSB Drivers04_semseyiteUninstall.exe AddRemove-05_Sloan - c:program filesSAMSUNGUSB Drivers05_SloanUninstall.exe AddRemove-06_Spencer - c:program filesSAMSUNGUSB Drivers06_SpencerUninstall.exe AddRemove-07_Schorl - c:program filesSAMSUNGUSB Drivers07_SchorlUninstall.exe AddRemove-08_EMPChipset - c:program filesSAMSUNGUSB Drivers08_EMPChipsetUninstall.exe AddRemove-09_Hsp - c:program filesSAMSUNGUSB Drivers09_HspUninstall.exe AddRemove-11_HSP_Plus_Default - c:program filesSAMSUNGUSB Drivers11_HSP_Plus_DefaultUninstall.exe AddRemove-16_Shrewsbury - c:program filesSAMSUNGUSB Drivers16_ShrewsburyUninstall.exe AddRemove-17_EMP_Chipset2 - c:program filesSAMSUNGUSB Drivers17_EMP_Chipset2Uninstall.exe AddRemove-18_Zinia_Serial_Driver - c:program filesSAMSUNGUSB Drivers18_Zinia_Serial_DriverUninstall.exe AddRemove-19_VIA_driver - c:program filesSAMSUNGUSB Drivers19_VIA_driverUninstall.exe AddRemove-20_NXP_Driver - c:program filesSAMSUNGUSB Drivers20_NXP_DriverUninstall.exe AddRemove-21_Searsburg - c:program filesSAMSUNGUSB Drivers21_SearsburgUninstall.exe AddRemove-22_WiBro_WiMAX - c:program filesSAMSUNGUSB Drivers22_WiBro_WiMAXUninstall.exe AddRemove-24_flashusbdriver - c:program filesSAMSUNGUSB Drivers24_flashusbdriverUninstall.exe AddRemove-25_escape - c:program filesSAMSUNGUSB Drivers25_escapeUninstall.exe AddRemove-Planetside 2 - d:gamesPlanetside 2Uninstaller.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-04-05 22:26 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINESystemControlSet001Servicesnpggsvc] "ImagePath"="c:windowssystem32GameMon.des -service" . [HKEY_LOCAL_MACHINESystemControlSet001Servicesxsherlock] "ImagePath"="c:windowssystem32xsherlock.xem" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:WINDOWSsystem32MacromedFlashFlashUtil32_11_6_602_180_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}LocalServer32] @="c:WINDOWSsystem32MacromedFlashFlashUtil32_11_6_602_180_ActiveX.exe" . [HKEY_LOCAL_MACHINEsoftwareClassesCLSID{73C9DFA0-750D-11E1-B0C4-0800200C9A66}TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINEsoftwareClassesInterface{6AE38AE0-750C-11E1-B0C4-0800200C9A66}TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . Completion time: 2013-04-05 22:28:40 ComboFix-quarantined-files.txt 2013-04-05 19:28 . Pre-Run: 58 471 870 464 bytes free Post-Run: 60 257 468 416 bytes free . - - End Of File - - 99BFD4C855EA5C662C9CACB9A983A714
  8. След сканиране с антивирусната си програма, бе открит вирус, който не може да бъде изчистен. След малко проучване из интернет за този вирус, смятам, че е добре да бъде изчистен възможно най-бързо. DDS.txt DDS (Ver_2011-09-30.01) - NTFS_x86 Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 10.9.2 Run by Administrator at 20:40:24 on 2013-04-05 Microsoft Windows XP Professional 5.1.2600.3.1251.359.1033.18.3583.2265 [GMT 3:00] . AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ============== Running Processes ================ . C:Program FilesSandboxieSbieSvc.exe C:WINDOWSsystem32spoolsv.exe C:WINDOWSExplorer.EXE C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe C:Program FilesBonjourmDNSResponder.exe C:Program FilesDyynoDyyno Broadcasterlauncherd.exe C:Program FilesESETESET NOD32 Antivirusekrn.exe C:Program FilesEslWireserviceWireHelperSvc.exe D:GamesHi-Rez StudiosHiPatchService.exe C:WINDOWSsystem32inetsrvinetinfo.exe C:Program FilesJavajre7binjqs.exe C:WINDOWSsystem32nvsvc32.exe C:WINDOWSsystem32PnkBstrA.exe C:WINDOWSSystem32alg.exe C:WINDOWSRTHDCPL.EXE C:Program FilesFreecorderFLVSrvc.exe C:Program FilesESETESET NOD32 Antivirusegui.exe C:Program FilesDivXDivX UpdateDivXUpdate.exe C:Program FilesCommon FilesJavaJava Updatejusched.exe C:WINDOWSsystem32RunDLL32.exe C:Program FilesVistaSwitchervswitch.exe C:WINDOWSsystem32rundll32.exe C:Program FilesSandboxieSbieCtrl.exe C:Program FilesDyynoDyyno Broadcasterdyyno_launcher.exe C:Program FilesDAEMON Tools LiteDTLite.exe C:WINDOWSsystem32ctfmon.exe C:WINDOWSDatecsFType2K.exe C:WINDOWSsystem32wscntfy.exe C:WINDOWSsystem32wuauclt.exe C:Program FilesSkypePhoneSkype.exe C:Program FilesMozilla Firefoxfirefox.exe C:Program FilesCommon FilesJavaJava Updatejucheck.exe C:Program FilesESETESET Online ScannerOnlineScannerApp.exe C:Program FilesESETESET Online ScannerOnlineCmdLineScanner.exe C:WINDOWSsystem32wbemwmiprvse.exe C:WINDOWSSystem32svchost.exe -k netsvcs C:WINDOWSsystem32svchost.exe -k WudfServiceGroup C:WINDOWSsystem32svchost.exe -k NetworkService C:WINDOWSsystem32svchost.exe -k LocalService C:WINDOWSsystem32svchost.exe -k LocalService C:WINDOWSSystem32svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . mStart Page = hxxp://startsear.ch/?aff=1&cf=FFFFFFFF-FFFF-FFFF-FFFF-FFFFFFFFFFFF uURLSearchHooks: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - <orphaned> mWinlogon: SFCDisable = dword:-99 BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:program filesjavajre7binssv.dll TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - c:program filesdaemon tools toolbarDTToolbar.dll TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - c:program filesdaemon tools toolbarDTToolbar.dll uRun: [VistaSwitcher] "c:program filesvistaswitchervswitch.exe" /startup uRun: [sandboxieControl] "c:program filessandboxieSbieCtrl.exe" uRun: [PlayNC Launcher] <no file> mRun: [Vistadrv] c:icon modswindows vista and 7 drive status bar for xpvista drive statusvsdrv.exe mRun: [switchBoard] c:program filescommon filesadobeswitchboardSwitchBoard.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [QuickTime Task] "c:program filesquicktimeqttask.exe" -atboottime mRun: [Freecorder FLV Service] "c:program filesfreecorderFLVSrvc.exe" /run mRun: [egui] "c:program fileseseteset nod32 antivirusegui.exe" /hide /waitservice mRun: [DivXUpdate] "c:program filesdivxdivx updateDivXUpdate.exe" /CHECKNOW mRun: [AdobeCS5.5ServiceManager] "c:program filescommon filesadobecs5.5servicemanagerCS5.5ServiceManager.exe" -launchedbylogin mRun: [AdobeAAMUpdater-1.0] "c:program filescommon filesadobeoobepdappuwaUpdaterStartupUtility.exe" mRun: [sunJavaUpdateSched] "c:program filescommon filesjavajava updatejusched.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:windowssystem32NvCpl.dll,NvStartup mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login mRun: [nwiz] c:program filesnvidia corporationnviewnwiz.exe /installquiet mRun: [APSDaemon] "c:program filescommon filesappleapple application supportAPSDaemon.exe" mRun: [Adobe ARM] "c:program filescommon filesadobearm1.0AdobeARM.exe" StartupFolder: c:docume~1alluse~1startm~1programsstartupflexty~1.lnk - c:windowsdatecsFType2K.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 uPolicies-Explorer: NoResolveTrack = dword:1 mPolicies-Explorer: ForceClassicControlPanel = dword:1 mPolicies-WindowsSystem: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoResolveTrack = dword:1 IE: &D&ownload &with BitComet - c:program filesbitcometBitComet.exe/AddLink.htm IE: &D&ownload all with BitComet - c:program filesbitcometBitComet.exe/AddAllLink.htm IE: Free YouTube Download - c:documents and settingsadministratorapplication datadvdvideosoftiehelpersfreeytvdownloader.htm IE: {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - {17A84966-F1E9-4645-AA9E-5E771EE1C859} - c:program filesnuclear coffeevideogetpluginsVideoGet_IE.dll IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - c:program filesbitcomettoolsBitCometBHO_1.5.4.11.dll/206 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1344337707328 DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab TCP: NameServer = 192.168.1.1 TCP: Interfaces{798E2A7F-884D-48A0-B47F-9DBEE17C9206} : DHCPNameServer = 192.168.1.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:program filesoverwolfSKYPE4~2.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:windowssystem32WPDShServiceObj.dll . ================= FIREFOX =================== . FF - ProfilePath - c:documents and settingsadministratorapplication datamozillafirefoxprofilesd6fk92gx.default FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - Freecorder Customized Web Search FF - prefs.js: browser.startup.homepage - google.bg FF - plugin: c:documents and settingsadministratorapplication datamozillafirefoxprofilesd6fk92gx.defaultextensionsbattlefieldplay4free@ea.compluginsnpBP4FUpdater.dll FF - plugin: c:documents and settingsadministratorapplication datamozillafirefoxprofilesd6fk92gx.defaultextensionscryenginebrowserplugin@crytek.compluginsnpcry29.dll FF - plugin: c:documents and settingsadministratorapplication datatriangleplayerNPTrianglePlayer.dll FF - plugin: c:documents and settingsadministratorlocal settingsapplication datamail.rugamecenternpdetector.dll FF - plugin: c:documents and settingsadministratorlocal settingsapplication dataunitywebplayerloadernpUnity3D32.dll FF - plugin: c:documents and settingsall usersapplication datanexoneungmnpNxGameeu.dll FF - plugin: c:program filesadobereader 11.0readerairnppdf32.dll FF - plugin: c:program filesdivxdivx ovs helpernpovshelper.dll FF - plugin: c:program filesgooglegoogle earthpluginnpgeplugin.dll FF - plugin: c:program filesgoogleupdate1.3.21.135npGoogleUpdate3.dll FF - plugin: c:program filesjavajre7bindtpluginnpdeployJava1.dll FF - plugin: c:program filesjavajre7binplugin2npjp2.dll FF - plugin: c:program filesmozilla firefoxpluginsnpvsharetvplg.dll FF - plugin: c:program filespando networksmedia boosternpPandoWebPlugin.dll FF - plugin: c:program fileswebzenbrowserextensionNPWZCmnCtrl.dll FF - plugin: c:windowssystem32macromedflashNPSWF32_11_6_602_180.dll . ============= SERVICES / DRIVERS =============== . R0 pe3agqwb;Loki Environment Driver (pe3agqwb);c:windowssystem32driverspe3agqwb.sys [2007-7-4 64616] R0 ps6agqwb;Loki Synchronization Driver (ps6agqwb);c:windowssystem32driversps6agqwb.sys [2007-7-4 54896] R1 ehdrv;ehdrv;c:windowssystem32driversehdrv.sys [2010-12-21 115008] R1 epfwtdir;epfwtdir;c:windowssystem32driversepfwtdir.sys [2010-12-21 94872] R1 oreans32;oreans32;c:windowssystem32driversoreans32.sys [2012-6-27 33824] R2 Dyyno Launcher;Dyyno Service;c:program filesdyynodyyno broadcasterlauncherd.exe [2012-1-19 409600] R2 ekrn;ESET Service;c:program fileseseteset nod32 antivirusekrn.exe [2011-1-12 810144] R2 ESLWireAC;ESLWireAC;c:windowssystem32driversESLWireACD.sys [2012-7-8 867344] R2 EslWireHelper;ESL Wire Helper Service;c:program fileseslwireserviceWireHelperSvc.exe [2013-1-31 615440] R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;d:gameshi-rez studiosHiPatchService.exe [2012-11-26 8704] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:windowssystem32driversnvhda32.sys [2012-12-2 124264] R3 SbieDrv;SbieDrv;c:program filessandboxieSbieDrv.sys [2011-9-11 122880] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:windowsmicrosoft.netframeworkv4.0.30319mscorsvw.exe [2010-3-18 130384] S2 gupdate;Ус»уі° Ѕ° Google рєту°»ё·°цёя (gupdate);c:program filesgoogleupdateGoogleUpdate.exe [2012-10-18 116648] S2 MBAMScheduler;MBAMScheduler;c:program filesmalwarebytes' anti-malwarembamscheduler.exe [2013-4-5 398184] S2 MBAMService;MBAMService;c:program filesmalwarebytes' anti-malwarembamservice.exe [2013-4-5 682344] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:program filesnvidia corporationnvidia update coredaemonu.exe [2012-12-2 1258856] S2 pr2agqwb;Loki Drivers Auto Removal (pr2agqwb);c:windowssystem32pr2agqwb.exe svc --> c:windowssystem32pr2agqwb.exe svc [?] S3 1394hub;1394 Enabled Hub;c:windowssystem32svchost.exe -k netsvcs [2004-8-4 14336] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:windowssystem32macromedflashFlashPlayerUpdateService.exe [2012-12-7 253656] S3 Ambfilt;Ambfilt;c:windowssystem32driversAmbfilt.sys [2011-11-20 1691480] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:windowssystem32driversssudbus.sys [2012-12-22 80824] S3 EagleXNt;EagleXNt;??c:windowssystem32driverseaglexnt.sys --> c:windowssystem32driversEagleXNt.sys [?] S3 GGSAFERDriver;GGSAFER Driver;??c:program filesgarena plusroomsafedrv.sys --> c:program filesgarena plusroomsafedrv.sys [?] S3 gupdatem;Ус»уі° Ѕ° Google рєту°»ё·°цёя (gupdatem);c:program filesgoogleupdateGoogleUpdate.exe [2012-10-18 116648] S3 LLRING0;LLRING0;d:gamesinfinity mumuguardllck.sys [2012-1-15 3840] S3 MBAMProtector;MBAMProtector;c:windowssystem32driversmbam.sys [2013-4-5 21104] S3 MozillaMaintenance;Mozilla Maintenance Service;c:program filesmozilla maintenance servicemaintenanceservice.exe [2012-4-26 115608] S3 NetHook_ControlCenter;ArtOfPing ControlCenter;??c:program filesautotunnel ggcontrolcenter.sys --> c:program filesautotunnel ggControlCenter.sys [?] S3 NetHook_Interceptor;ArtOfPing TDI Interceptor;??c:program filesautotunnel gginterceptor.sys --> c:program filesautotunnel ggInterceptor.sys [?] S3 npggsvc;nProtect GameGuard Service;c:windowssystem32gamemon.des -service --> c:windowssystem32GameMon.des -service [?] S3 OverwolfUpdaterService;Overwolf Updater Service;c:program filesoverwolfOverwolfUpdater.exe [2012-5-19 18360] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:windowssystem32driversssudmdm.sys [2012-12-22 181432] S3 SwitchBoard;Adobe SwitchBoard;c:program filescommon filesadobeswitchboardSwitchBoard.exe [2010-2-19 517096] S3 vtany;vtany;??c:windowsvtany.sys --> c:windowsvtany.sys [?] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:windowsmicrosoft.netframeworkv4.0.30319wpfWPFFontCache_v0400.exe [2010-3-18 753504] S3 XDva398;XDva398;??c:windowssystem32xdva398.sys --> c:windowssystem32XDva398.sys [?] S3 xhunter1;xhunter1;??c:windowsxhunter1.sys --> c:windowsxhunter1.sys [?] S3 XoftSpyService;XoftSpyService;c:program filescommon filesxoftspyse6xoftspyservice.exe [2009-8-29 582424] S3 xsherlock;xsherlock;c:windowssystem32xsherlock.xem [2011-12-2 666720] . =============== File Associations =============== . ShellExec: BitComet.exe: open="c:program filesbitcometBitComet.exe" . =============== Created Last 30 ================ . 2013-04-05 13:42:38 -------- d-----w- c:documents and settingsadministratorapplication dataMalwarebytes 2013-04-05 13:42:09 -------- d-----w- c:documents and settingsall usersapplication dataMalwarebytes 2013-04-05 13:42:05 21104 ----a-w- c:windowssystem32driversmbam.sys 2013-04-05 13:42:05 -------- d-----w- c:program filesMalwarebytes' Anti-Malware 2013-04-05 11:48:22 0 ---ha-w- c:documents and settingsadministratorapplication datawinsvcns.sys 2013-04-05 11:48:15 -------- d-sh--r- c:documents and settingsadministratorS-100-4902-8593-5693 2013-03-29 18:41:30 -------- d-----w- c:documents and settingsadministratorapplication dataIceCold-WoW 2013-03-22 14:47:43 77824 ----a-w- c:program filescommon filesinstallshieldengine6intel 32ctor.dll 2013-03-22 14:47:43 32768 ----a-w- c:program filescommon filesinstallshieldengine6intel 32objectps.dll 2013-03-22 14:47:43 225280 ----a-w- c:program filescommon filesinstallshieldiscriptiscript.dll 2013-03-22 14:47:43 176128 ----a-w- c:program filescommon filesinstallshieldengine6intel 32iuser.dll 2013-03-22 14:47:42 610436 ----a-w- c:program filescommon filesinstallshieldengine6intel 32IKernel.exe 2013-03-20 20:21:26 12928 -c----w- c:windowssystem32dllcacheusb8023x.sys 2013-03-20 20:21:26 12928 -c----w- c:windowssystem32dllcacheusb8023.sys 2013-03-13 17:29:22 16486616 ----a-w- c:windowssystem32FlashPlayerInstaller.exe 2013-03-12 08:28:53 -------- d-----w- c:program filescommon filesOverwolf 2013-03-10 13:09:12 -------- d-----w- c:program filesFree Mouse Auto Clicker . ==================== Find3M ==================== . 2013-03-13 17:29:25 73432 ----a-w- c:windowssystem32FlashPlayerCPLApp.cpl 2013-03-13 17:29:25 693976 ----a-w- c:windowssystem32FlashPlayerApp.exe 2013-02-12 19:39:32 33512 ----a-w- c:windowssystem32driverstaphss.sys 2013-02-12 00:32:23 12928 ----a-w- c:windowssystem32driversusb8023.sys 2013-02-12 00:32:23 12928 ------w- c:windowssystem32driversusb8023x.sys 2013-02-06 10:48:44 81920 ----a-w- c:windowssystem32ieencode.dll 2013-02-06 10:48:44 667136 ----a-w- c:windowssystem32wininet.dll 2013-02-06 10:48:44 61952 ----a-w- c:windowssystem32tdc.ocx 2013-02-05 06:38:31 369664 ----a-w- c:windowssystem32html.iec 2013-01-26 03:55:44 552448 ----a-w- c:windowssystem32oleaut32.dll 2013-01-07 01:19:45 2148864 ----a-w- c:windowssystem32ntoskrnl.exe 2013-01-07 00:37:01 2027520 ----a-w- c:windowssystem32ntkrnlpa.exe 2012-07-03 13:40:32 265120 ----a-w- c:program filescommon filesWireHelpSvc.exe 2006-05-03 10:06:54 163328 --sha-r- c:windowssystem32flvDX.dll 2007-02-21 11:47:16 31232 --sha-r- c:windowssystem32msfDX.dll 2008-03-16 13:30:52 216064 --sha-r- c:windowssystem32nbDX.dll 2010-01-06 22:00:00 107520 --sha-r- c:windowssystem32TAKDSDecoder.dll . ============= FINISH: 20:40:30,39 =============== Attach.txt . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-09-30.01) . Microsoft Windows XP Professional Boot Device: DeviceHarddiskVolume1 Install Date: 19.11.2011 г. 06:26:48 System Uptime: 05.4.2013 г. 18:04:03 (2 hours ago) . Motherboard: eMachines | | EL1352 Processor: AMD Athlon II X2 220 Processor | CPU 1 | 2812/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 98 GiB total, 54,347 GiB free. D: is FIXED (NTFS) - 834 GiB total, 261,779 GiB free. E: is Removable F: is Removable G: is CDROM () H: is CDROM () I: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {4D36E96F-E325-11CE-BFC1-08002BE10318} Description: Microsoft PS/2 Mouse Device ID: ACPIPNP0F034&38D79619&0 Manufacturer: Microsoft Name: Microsoft PS/2 Mouse PNP Device ID: ACPIPNP0F034&38D79619&0 Service: i8042prt . ==== System Restore Points =================== . RP594: 12.1.2013 г. 00:00:21 - Software Distribution Service 3.0 RP595: 13.1.2013 г. 00:00:18 - Software Distribution Service 3.0 RP596: 14.1.2013 г. 00:00:17 - Software Distribution Service 3.0 RP597: 14.1.2013 г. 00:07:00 - Software Distribution Service 3.0 RP598: 15.1.2013 г. 00:00:16 - Software Distribution Service 3.0 RP599: 15.1.2013 г. 00:17:27 - Software Distribution Service 3.0 RP600: 16.1.2013 г. 00:00:17 - Software Distribution Service 3.0 RP601: 16.1.2013 г. 00:16:21 - Software Distribution Service 3.0 RP602: 16.1.2013 г. 23:23:32 - Software Distribution Service 3.0 RP603: 18.1.2013 г. 00:00:16 - Software Distribution Service 3.0 RP604: 18.1.2013 г. 00:41:36 - Software Distribution Service 3.0 RP605: 19.1.2013 г. 00:00:17 - Software Distribution Service 3.0 RP606: 19.1.2013 г. 01:21:25 - Software Distribution Service 3.0 RP607: 19.1.2013 г. 23:57:24 - Software Distribution Service 3.0 RP608: 20.1.2013 г. 23:30:40 - Software Distribution Service 3.0 RP609: 21.1.2013 г. 22:39:19 - Software Distribution Service 3.0 RP610: 22.1.2013 г. 23:44:27 - System Checkpoint RP611: 22.1.2013 г. 23:48:20 - Software Distribution Service 3.0 RP612: 24.1.2013 г. 00:00:21 - Software Distribution Service 3.0 RP613: 24.1.2013 г. 01:04:27 - Software Distribution Service 3.0 RP614: 25.1.2013 г. 00:00:19 - Software Distribution Service 3.0 RP615: 25.1.2013 г. 01:21:46 - Software Distribution Service 3.0 RP616: 26.1.2013 г. 00:00:18 - Software Distribution Service 3.0 RP617: 27.1.2013 г. 00:00:16 - Software Distribution Service 3.0 RP618: 28.1.2013 г. 00:00:18 - Software Distribution Service 3.0 RP619: 28.1.2013 г. 02:31:04 - Software Distribution Service 3.0 RP620: 29.1.2013 г. 00:00:19 - Software Distribution Service 3.0 RP621: 29.1.2013 г. 00:37:27 - Software Distribution Service 3.0 RP622: 30.1.2013 г. 00:00:17 - Software Distribution Service 3.0 RP623: 30.1.2013 г. 00:50:39 - Software Distribution Service 3.0 RP624: 31.1.2013 г. 00:00:18 - Software Distribution Service 3.0 RP625: 31.1.2013 г. 00:30:50 - Software Distribution Service 3.0 RP626: 31.1.2013 г. 23:50:15 - Software Distribution Service 3.0 RP627: 02.2.2013 г. 00:00:17 - Software Distribution Service 3.0 RP628: 02.2.2013 г. 00:57:37 - Software Distribution Service 3.0 RP629: 03.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP630: 03.2.2013 г. 00:21:42 - Software Distribution Service 3.0 RP631: 03.2.2013 г. 23:09:22 - Software Distribution Service 3.0 RP632: 04.2.2013 г. 22:45:10 - Software Distribution Service 3.0 RP633: 06.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP634: 06.2.2013 г. 00:21:57 - Software Distribution Service 3.0 RP635: 07.2.2013 г. 00:00:18 - Software Distribution Service 3.0 RP636: 07.2.2013 г. 01:21:11 - Software Distribution Service 3.0 RP637: 08.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP638: 08.2.2013 г. 00:46:09 - Software Distribution Service 3.0 RP639: 09.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP640: 09.2.2013 г. 02:14:57 - Software Distribution Service 3.0 RP641: 10.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP642: 10.2.2013 г. 02:05:29 - Software Distribution Service 3.0 RP643: 11.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP644: 11.2.2013 г. 01:44:03 - Software Distribution Service 3.0 RP645: 12.2.2013 г. 00:00:17 - Software Distribution Service 3.0 RP646: 12.2.2013 г. 00:33:56 - Software Distribution Service 3.0 RP647: 13.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP648: 14.2.2013 г. 01:08:44 - Software Distribution Service 3.0 RP649: 15.2.2013 г. 00:00:24 - Software Distribution Service 3.0 RP650: 15.2.2013 г. 00:38:35 - Software Distribution Service 3.0 RP651: 16.2.2013 г. 00:00:18 - Software Distribution Service 3.0 RP652: 16.2.2013 г. 00:46:24 - Software Distribution Service 3.0 RP653: 17.2.2013 г. 00:00:17 - Software Distribution Service 3.0 RP654: 17.2.2013 г. 01:28:39 - Software Distribution Service 3.0 RP655: 18.2.2013 г. 00:00:18 - Software Distribution Service 3.0 RP656: 18.2.2013 г. 00:14:09 - Software Distribution Service 3.0 RP657: 19.2.2013 г. 00:00:21 - Software Distribution Service 3.0 RP658: 19.2.2013 г. 00:32:23 - Software Distribution Service 3.0 RP659: 19.2.2013 г. 23:37:37 - Software Distribution Service 3.0 RP660: 20.2.2013 г. 23:17:37 - Software Distribution Service 3.0 RP661: 21.2.2013 г. 23:29:02 - Software Distribution Service 3.0 RP662: 22.2.2013 г. 21:32:24 - Software Distribution Service 3.0 RP663: 24.2.2013 г. 00:00:17 - Software Distribution Service 3.0 RP664: 24.2.2013 г. 02:08:36 - Software Distribution Service 3.0 RP665: 25.2.2013 г. 00:00:27 - Software Distribution Service 3.0 RP666: 26.2.2013 г. 00:00:18 - Software Distribution Service 3.0 RP667: 26.2.2013 г. 01:14:41 - Software Distribution Service 3.0 RP668: 27.2.2013 г. 00:00:19 - Software Distribution Service 3.0 RP669: 27.2.2013 г. 00:02:14 - Software Distribution Service 3.0 RP670: 28.2.2013 г. 00:00:17 - Software Distribution Service 3.0 RP671: 01.3.2013 г. 00:00:16 - Software Distribution Service 3.0 RP672: 02.3.2013 г. 00:00:16 - Software Distribution Service 3.0 RP673: 03.3.2013 г. 00:00:17 - Software Distribution Service 3.0 RP674: 04.3.2013 г. 00:00:20 - Software Distribution Service 3.0 RP675: 05.3.2013 г. 00:00:21 - Software Distribution Service 3.0 RP676: 06.3.2013 г. 00:00:16 - Software Distribution Service 3.0 RP677: 07.3.2013 г. 00:00:20 - Software Distribution Service 3.0 RP678: 07.3.2013 г. 01:05:23 - Software Distribution Service 3.0 RP679: 07.3.2013 г. 23:57:25 - Software Distribution Service 3.0 RP680: 09.3.2013 г. 00:00:19 - Software Distribution Service 3.0 RP681: 09.3.2013 г. 01:34:37 - Software Distribution Service 3.0 RP682: 10.3.2013 г. 00:00:23 - Software Distribution Service 3.0 RP683: 10.3.2013 г. 01:31:05 - Software Distribution Service 3.0 RP684: 11.3.2013 г. 00:00:18 - Software Distribution Service 3.0 RP685: 11.3.2013 г. 00:38:02 - Software Distribution Service 3.0 RP686: 12.3.2013 г. 00:00:18 - Software Distribution Service 3.0 RP687: 12.3.2013 г. 01:04:57 - Software Distribution Service 3.0 RP688: 13.3.2013 г. 00:00:19 - Software Distribution Service 3.0 RP689: 14.3.2013 г. 00:00:18 - Software Distribution Service 3.0 RP690: 14.3.2013 г. 00:46:27 - Software Distribution Service 3.0 RP691: 15.3.2013 г. 00:00:19 - Software Distribution Service 3.0 RP692: 15.3.2013 г. 01:19:24 - Software Distribution Service 3.0 RP693: 16.3.2013 г. 00:00:18 - Software Distribution Service 3.0 RP694: 16.3.2013 г. 01:47:14 - Software Distribution Service 3.0 RP695: 17.3.2013 г. 00:00:21 - Software Distribution Service 3.0 RP696: 17.3.2013 г. 02:47:24 - Software Distribution Service 3.0 RP697: 18.3.2013 г. 00:00:18 - Software Distribution Service 3.0 RP698: 18.3.2013 г. 00:41:05 - Software Distribution Service 3.0 RP699: 18.3.2013 г. 23:37:01 - Software Distribution Service 3.0 RP700: 19.3.2013 г. 23:40:37 - Software Distribution Service 3.0 RP701: 21.3.2013 г. 00:00:16 - Software Distribution Service 3.0 RP702: 21.3.2013 г. 00:03:10 - Software Distribution Service 3.0 RP703: 22.3.2013 г. 00:00:21 - Software Distribution Service 3.0 RP704: 22.3.2013 г. 01:06:14 - Software Distribution Service 3.0 RP705: 22.3.2013 г. 16:48:35 - Installed Hard Truck 18 Wheels of Steel RP706: 23.3.2013 г. 00:00:17 - Software Distribution Service 3.0 RP707: 23.3.2013 г. 00:41:04 - Software Distribution Service 3.0 RP708: 23.3.2013 г. 23:15:45 - Software Distribution Service 3.0 RP709: 24.3.2013 г. 23:01:10 - Software Distribution Service 3.0 RP710: 25.3.2013 г. 23:27:36 - Software Distribution Service 3.0 RP711: 26.3.2013 г. 22:38:00 - Software Distribution Service 3.0 RP712: 28.3.2013 г. 00:00:19 - Software Distribution Service 3.0 RP713: 28.3.2013 г. 23:54:52 - Software Distribution Service 3.0 RP714: 29.3.2013 г. 23:45:50 - Software Distribution Service 3.0 RP715: 30.3.2013 г. 23:32:32 - Software Distribution Service 3.0 RP716: 31.3.2013 г. 23:21:00 - Software Distribution Service 3.0 RP717: 01.4.2013 г. 23:25:50 - Software Distribution Service 3.0 RP718: 02.4.2013 г. 23:16:25 - Software Distribution Service 3.0 RP719: 03.4.2013 г. 23:10:58 - Software Distribution Service 3.0 RP720: 04.4.2013 г. 23:03:00 - Software Distribution Service 3.0 . ==== Installed Programs ====================== . ИірѕІѕ№ цµЅтр@Mail.Ru ACE Online EP3-5 3.6.2.6 Full Adobe AIR Adobe Community Help Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Photoshop CS5.1 Adobe Reader XI Alliance of Valiant Arms Amnesia - The Dark Descent Apple Application Support Apple Mobile Device Support Apple Software Update applicationupdater ATI Catalyst Install Manager Auto Keyboard v1.2 Auto Mouse Click version 1.1 AutoTunnel GG Bandicam Bandisoft MPEG-1 Decoder Battle of the Immortals Battlefield Play4Free BattleForge™ BenVista PhotoZoom Pro 4.1.2 BitComet 1.30 Black Prophecy Tactics - Nexus Conflict version 1 Blacklight: Retribution BlackShot Bonjour C9 CABAL Online - Saint's Requiem Client Call of Duty® 4 - Modern Warfare Call of Duty® 4 - Modern Warfare 1.6 Patch Call of Duty® 4 - Modern Warfare 1.7 Patch Camtasia Studio 8 CCleaner Chinese (Traditional) Language Support Complitly Counter-Strike 1.6 Crysis 2 Crysis® 2 DAEMON Tools Toolbar DarkBloodOnline Dekaron Devil May Cry 3 Special Edition DiskAid 5.4 DivX H.264 decoder 8.2.0.26 DivX Setup Doom 3 DOOM 3: Resurrection of Evil Dragon Nest SEA Driver Robot Dungeons & Dragons Online® Dyyno Broadcaster ESET NOD32 Antivirus ESET Online Scanner v3 ESL Wire 1.15.3 EVEREST Ultimate Edition v5.30 ffdshow v1.1.3853 [2011-05-12] FlexType 2K Fraps (remove only) Free Mouse Auto Clicker 3.0 Free YouTube Download version 3.1.39.1015 Freecorder 5 Freecorder Toolbar Gamehi SpecCheck gamelauncher-ps2-psg GlobalDK Google Earth Plug-in Google Update Helper Grand Theft Auto Vice City HD Hard Truck 18 Wheels of Steel Hi-Rez Studios Authenticate and Update Service High Definition Audio Driver Package - KB888111 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB2779562) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB976002-v5) Hotfix for Windows XP (KB981793) IconTweaker 1.12 iTunes Java 7 Update 9 Java Auto Updater Java 6 Update 29 JavaFX 2.1.0 League of Legends Lineage II Loki Malwarebytes Anti-Malware version 1.70.0.1100 Microsoft .NET Framework 1.1 Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Excel Viewer Microsoft Office PowerPoint Viewer 2007 (English) Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_ATL_x86 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFCLOC_x86 Might & Magic Heroes VI Mozilla Firefox 19.0.2 (x86 bg) Mozilla Maintenance Service NCsoft Launcher Need for Speed Underground 2 Need for Speed Hot Pursuit Need for Speed™ Carbon Need for Speed™ Most Wanted Need For Speed™ World Nexon Game Manager No-IP DUC Nuclear Coffee - VideoGet NVIDIA Control Panel 306.81 NVIDIA Drivers NVIDIA Graphics Driver 306.81 NVIDIA HD Audio Driver 1.3.18.0 NVIDIA Install Application NVIDIA nView 136.28 NVIDIA nView Desktop Manager NVIDIA PhysX NVIDIA PhysX System Software 9.12.0604 NVIDIA Update 1.10.8 NVIDIA Update Components OpenAL Overwolf Pando Media Booster Path of Exile PDF Settings CS5 PunkBuster Services QuickTime Realtek High Definition Audio Driver Resource Hacker Version 3.6.0 Rose Online Runes of Magic SAMSUNG USB Driver for Mobile Phones Sandboxie 3.59.02 (32-bit) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2124261) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2290570) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2544521) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2586448) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618444) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647516) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2660465) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2675157) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2699988) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2722913) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB2744842) Security Update for Windows XP (KB2753842-v2) Security Update for Windows XP (KB2753842) Security Update for Windows XP (KB2757638) Security Update for Windows XP (KB2758857) Security Update for Windows XP (KB2761226) Security Update for Windows XP (KB2761465) Security Update for Windows XP (KB2770660) Security Update for Windows XP (KB2778344) Security Update for Windows XP (KB2779030) Security Update for Windows XP (KB2780091) Security Update for Windows XP (KB2792100) Security Update for Windows XP (KB2797052) Security Update for Windows XP (KB2799329) Security Update for Windows XP (KB2799494) Security Update for Windows XP (KB2802968) Security Update for Windows XP (KB2807986) Security Update for Windows XP (KB2809289) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB953155) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB970483) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982381) Security Update for Windows XP (KB982665) SEVENCORE Skype™ 5.5 Spam Free Search Bar SpeedSim Star Conflict Launcher 1.0.1.13 Star Wars: The Old Republic Steam SUPER © v2011.build.49 (July 1st, 2011) version v2011.build.49 System Requirements Lab System Requirements Lab CYRI The Sims 2 TrackMania 2 - Canyon Tribes Ascend Uninstall TrianglePlayer Unity Web Player Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Windows XP (KB2345886) Update for Windows XP (KB2541763) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) VC80CRTRedist - 8.0.50727.6195 Vegas Pro 9.0 Ventrilo Client VistaSwitcher VLC media player 1.1.11 vShare.tv plugin 1.3 Warface WebFldrs XP WEBZEN Browser Extension Windows Genuine Advantage Validation Tool (KB892130) Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 WinRAR 4.01 (32-±ётѕІ° Іµрсёя) World of Warcraft World of Warcraft Model Viewer 32-bit Xfire (remove only) Xiph.Org Open Codecs 0.85.17777 XoftSpySE XP Codec Pack Xpand Rally XSplit Xvid Video Codec . ==== Event Viewer Messages From Past Week ======== . 31.3.2013 і. 23:21:37, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 31.3.2013 і. 12:30:35, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 31.3.2013 і. 12:30:35, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 31.3.2013 і. 12:30:14, error: NetBT [4321] - The name "COMP :0" could not be registered on the Interface with IP address 192.168.1.4. The machine with the IP address 192.168.1.5 did not allow the name to be claimed by this machine. 30.3.2013 і. 23:33:04, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 30.3.2013 і. 20:44:07, error: NetBT [4321] - The name "COMP :0" could not be registered on the Interface with IP address 192.168.1.4. The machine with the IP address 192.168.1.5 did not allow the name to be claimed by this machine. 30.3.2013 і. 10:56:30, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 30.3.2013 і. 10:56:30, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 29.3.2013 і. 23:46:20, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 29.3.2013 і. 11:33:47, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 29.3.2013 і. 11:33:47, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 05.4.2013 і. 18:05:48, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service. 05.4.2013 і. 18:04:57, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 05.4.2013 і. 18:04:57, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 05.4.2013 і. 09:10:27, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 05.4.2013 і. 09:10:27, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 04.4.2013 і. 23:03:29, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 04.4.2013 і. 20:51:46, error: Server [2505] - The server could not bind to the transport DeviceNetBT_Tcpip_{798E2A7F-884D-48A0-B47F-9DBEE17C9206} because another computer on the network has the same name. The server could not start. 04.4.2013 і. 20:51:46, error: NetBT [4321] - The name "COMP :20" could not be registered on the Interface with IP address 192.168.1.4. The machine with the IP address 192.168.1.5 did not allow the name to be claimed by this machine. 04.4.2013 і. 07:40:02, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service. 04.4.2013 і. 07:39:00, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 04.4.2013 і. 07:39:00, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 03.4.2013 і. 23:11:22, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 03.4.2013 і. 09:01:50, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 03.4.2013 і. 09:01:50, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 02.4.2013 і. 23:16:56, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 02.4.2013 і. 10:40:34, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 02.4.2013 і. 10:40:34, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 01.4.2013 і. 23:26:26, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x8007f0f4: Security Update for Windows XP (KB2686509). 01.4.2013 і. 09:32:23, error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 01.4.2013 і. 09:32:23, error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. . ==== End Of File ===========================
  9. Shaolin Kung Fu - Basic forms training

    http://www.youtube.com/watch?v=09VW8SWf2gc&list=LLA8gzxYadDgX5gnhHGuHzwA&feature=mh_lolz Главно с кросфитнес се занимаваме, но решихме това да направим през почивния ден.
  10. Оправих се. Просто не бях инсталирал всички драйвери от Device Manager. Бяха излезли няколко ерора по време на инсталациите, но ги оправих. Благодаря sheky.
  11. Нямам си на представа какво е дъното. Никъде не пише.
  12. ОС е Windows XP SP2, но не съм сигурен дали съм изтеглил точния драйвер.
  13. Системата е чисто нова, туко що инсталирана и започнах да инсталирвам важните драйвери. Обаче след като инсталирам Realtek, хем нямам звук, хем не се показва контрол панела на програмата. След проверка на dxdiag/sound панела, пише ми, че нямам звукова карта. Някой би ли ми обяснил какво не правя както трябва?
  14. Дали е възможно от покупката да се махне монитора, така че да излезе 300 лева? http://obiavi.data.bg/single/211986
  • Разглеждащи в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Този сайт използва бисквитки (cookies), за най-доброто потребителско изживяване. С използването му, вие приемате нашите Условия за ползване.