Премини към съдържанието

zxzx

Потребител
  • Публикации

    90
  • Регистрация

  • Последно онлайн

Харесвания

13 Добра репутация

Всичко за zxzx

  • Титла
    Редовен потребител
  • Рожден ден 3.06.1974

Информация

  • Пол
    Мъж
  • Град
    Бургас
  1. zxzx

    Загряване на процесора!

    Да кутията има място тази е кутията http://www.coolermaster.com/product.php?product_id=5239/ ще го взема това охлаждане че не се трае това боксовото,в стаята ме 30градуса ще взема да отида до плажа то така и така се пека.Мерси за предложението
  2. zxzx

    Загряване на процесора!

    Ще използвам тази тема и аз да питам нормални ли са тези температури ? Компютъра е чистен от прах, но адски фучи някой от вентилаторите предполагам този на процесора а тои е QuadCore AMD Phenom II X4 925 BOX видео ATI Radeon HD 5700 Series Отзад на кутията имам 1 вентилатор 120мм захранването и то е с 120мм затова предполагам че целия този шум идва от процесорния охладител.Ако мислете че е от него съотвено и някакво предложение за подмяна в този сенови диапазон 50лв. благодаря
  3. Благодаря за оказаната помощ,всичко което е писано в погорният пост е направено.CCleaner да ползвам го да чистя регистрите всичко е по подразбиране дори и през него си деинсталирам програми,Нод32 махнал съм го и на негово място аваст фрее. Отново благодаря може да се сложи на темата РЕШЕН
  4. 2011/04/21 09:22:41.0549 6096 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28 2011/04/21 09:22:41.0979 6096 ================================================================================ 2011/04/21 09:22:41.0979 6096 SystemInfo: 2011/04/21 09:22:41.0979 6096 2011/04/21 09:22:41.0979 6096 OS Version: 6.1.7601 ServicePack: 1.0 2011/04/21 09:22:41.0979 6096 Product type: Workstation 2011/04/21 09:22:41.0979 6096 ComputerName: ЛЮБОМИР-PC 2011/04/21 09:22:41.0979 6096 UserName: Любомир 2011/04/21 09:22:41.0979 6096 Windows directory: C:\Windows 2011/04/21 09:22:41.0979 6096 System windows directory: C:\Windows 2011/04/21 09:22:41.0979 6096 Processor architecture: Intel x86 2011/04/21 09:22:41.0979 6096 Number of processors: 2 2011/04/21 09:22:41.0979 6096 Page size: 0x1000 2011/04/21 09:22:41.0979 6096 Boot type: Normal boot 2011/04/21 09:22:41.0979 6096 ================================================================================ 2011/04/21 09:22:45.0999 6096 Initialize success 2011/04/21 09:23:07.0999 5404 ================================================================================ 2011/04/21 09:23:07.0999 5404 Scan started 2011/04/21 09:23:07.0999 5404 Mode: Manual; 2011/04/21 09:23:07.0999 5404 ================================================================================ 2011/04/21 09:23:09.0429 5404 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys 2011/04/21 09:23:09.0489 5404 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 2011/04/21 09:23:09.0539 5404 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 2011/04/21 09:23:09.0609 5404 adatadrv (5ee8aaa16951e46d197392ba6f2402ea) C:\Windows\system32\DRIVERS\adatadrv.sys 2011/04/21 09:23:09.0709 5404 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/04/21 09:23:09.0759 5404 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 2011/04/21 09:23:09.0789 5404 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 2011/04/21 09:23:09.0889 5404 AFD (1151fd4fb0216cfed887bfde29ebd516) C:\Windows\system32\drivers\afd.sys 2011/04/21 09:23:09.0969 5404 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 2011/04/21 09:23:10.0049 5404 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 2011/04/21 09:23:10.0149 5404 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 2011/04/21 09:23:10.0219 5404 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 2011/04/21 09:23:10.0249 5404 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 2011/04/21 09:23:10.0289 5404 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 2011/04/21 09:23:10.0319 5404 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 2011/04/21 09:23:10.0459 5404 amdsata (e7f4d42d8076ec60e21715cd11743a0d) C:\Windows\system32\drivers\amdsata.sys 2011/04/21 09:23:10.0509 5404 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/04/21 09:23:10.0549 5404 amdxata (146459d2b08bfdcbfa856d9947043c81) C:\Windows\system32\drivers\amdxata.sys 2011/04/21 09:23:10.0599 5404 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 2011/04/21 09:23:10.0699 5404 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 2011/04/21 09:23:10.0729 5404 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 2011/04/21 09:23:10.0769 5404 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/04/21 09:23:10.0809 5404 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 2011/04/21 09:23:11.0009 5404 atikmdag (04f09923a393e4e0e8453a8f78361e73) C:\Windows\system32\DRIVERS\atikmdag.sys 2011/04/21 09:23:11.0229 5404 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 2011/04/21 09:23:11.0279 5404 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 2011/04/21 09:23:11.0349 5404 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 2011/04/21 09:23:11.0389 5404 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/04/21 09:23:11.0419 5404 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 2011/04/21 09:23:11.0449 5404 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/04/21 09:23:11.0479 5404 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/04/21 09:23:11.0509 5404 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 2011/04/21 09:23:11.0539 5404 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/04/21 09:23:11.0569 5404 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/04/21 09:23:11.0589 5404 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/04/21 09:23:11.0619 5404 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/04/21 09:23:11.0679 5404 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 2011/04/21 09:23:11.0739 5404 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys 2011/04/21 09:23:11.0789 5404 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 2011/04/21 09:23:11.0829 5404 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 2011/04/21 09:23:12.0009 5404 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/04/21 09:23:12.0069 5404 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 2011/04/21 09:23:12.0109 5404 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 2011/04/21 09:23:12.0149 5404 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 2011/04/21 09:23:12.0289 5404 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys 2011/04/21 09:23:12.0409 5404 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/04/21 09:23:12.0469 5404 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 2011/04/21 09:23:12.0559 5404 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 2011/04/21 09:23:12.0609 5404 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 2011/04/21 09:23:12.0659 5404 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 2011/04/21 09:23:12.0709 5404 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 2011/04/21 09:23:12.0769 5404 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 2011/04/21 09:23:12.0849 5404 eamonm (6c10fabc31dfa155de5ce75c62a6222b) C:\Windows\system32\DRIVERS\eamonm.sys 2011/04/21 09:23:12.0989 5404 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 2011/04/21 09:23:13.0159 5404 ehdrv (132537f85fcd8aaab097bfb9525ef175) C:\Windows\system32\DRIVERS\ehdrv.sys 2011/04/21 09:23:13.0239 5404 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 2011/04/21 09:23:13.0289 5404 epfwwfpr (b6b5a8870aededdb05e16dd5623708c0) C:\Windows\system32\DRIVERS\epfwwfpr.sys 2011/04/21 09:23:13.0339 5404 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 2011/04/21 09:23:13.0389 5404 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 2011/04/21 09:23:13.0419 5404 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 2011/04/21 09:23:13.0459 5404 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 2011/04/21 09:23:13.0499 5404 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 2011/04/21 09:23:13.0529 5404 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 2011/04/21 09:23:13.0549 5404 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/04/21 09:23:13.0569 5404 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 2011/04/21 09:23:13.0629 5404 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 2011/04/21 09:23:13.0649 5404 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 2011/04/21 09:23:13.0709 5404 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 2011/04/21 09:23:13.0759 5404 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/04/21 09:23:13.0919 5404 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 2011/04/21 09:23:13.0979 5404 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 2011/04/21 09:23:14.0039 5404 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys 2011/04/21 09:23:14.0089 5404 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/04/21 09:23:14.0129 5404 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 2011/04/21 09:23:14.0159 5404 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 2011/04/21 09:23:14.0229 5404 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys 2011/04/21 09:23:14.0309 5404 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 2011/04/21 09:23:14.0369 5404 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 2011/04/21 09:23:14.0409 5404 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 2011/04/21 09:23:14.0479 5404 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 2011/04/21 09:23:14.0529 5404 iaStorV (a3cae5d281db4cff7cff8233507ee5ad) C:\Windows\system32\drivers\iaStorV.sys 2011/04/21 09:23:14.0579 5404 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 2011/04/21 09:23:14.0749 5404 IntcAzAudAddService (5a4aad2240cb8b50ffeaedb2bf747abd) C:\Windows\system32\drivers\RTKVHDA.sys 2011/04/21 09:23:14.0909 5404 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 2011/04/21 09:23:14.0969 5404 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 2011/04/21 09:23:15.0019 5404 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/04/21 09:23:15.0069 5404 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 2011/04/21 09:23:15.0089 5404 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 2011/04/21 09:23:15.0119 5404 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 2011/04/21 09:23:15.0169 5404 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 2011/04/21 09:23:15.0209 5404 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 2011/04/21 09:23:15.0269 5404 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys 2011/04/21 09:23:15.0319 5404 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys 2011/04/21 09:23:15.0359 5404 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 2011/04/21 09:23:15.0399 5404 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 2011/04/21 09:23:15.0479 5404 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/04/21 09:23:15.0549 5404 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/04/21 09:23:15.0569 5404 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/04/21 09:23:15.0589 5404 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/04/21 09:23:15.0629 5404 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/04/21 09:23:15.0649 5404 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 2011/04/21 09:23:15.0679 5404 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 2011/04/21 09:23:15.0729 5404 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/04/21 09:23:15.0779 5404 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 2011/04/21 09:23:15.0809 5404 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 2011/04/21 09:23:15.0879 5404 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys 2011/04/21 09:23:15.0929 5404 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 2011/04/21 09:23:15.0969 5404 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 2011/04/21 09:23:16.0019 5404 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 2011/04/21 09:23:16.0049 5404 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 2011/04/21 09:23:16.0099 5404 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 2011/04/21 09:23:16.0159 5404 mrxsmb (ed3d3419b064f28d812995ed8cadc541) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/04/21 09:23:16.0279 5404 mrxsmb10 (dc914446049169a964e27fd8888ffaee) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/04/21 09:23:16.0329 5404 mrxsmb20 (e7d90388d14fae057c166c1801e0bf94) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/04/21 09:23:16.0369 5404 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 2011/04/21 09:23:16.0419 5404 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 2011/04/21 09:23:16.0479 5404 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 2011/04/21 09:23:16.0509 5404 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 2011/04/21 09:23:16.0549 5404 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 2011/04/21 09:23:16.0599 5404 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 2011/04/21 09:23:16.0629 5404 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/04/21 09:23:16.0649 5404 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 2011/04/21 09:23:16.0679 5404 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 2011/04/21 09:23:16.0739 5404 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys 2011/04/21 09:23:16.0779 5404 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 2011/04/21 09:23:16.0809 5404 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/04/21 09:23:16.0869 5404 MTsensor (97affa9d95ffe20eee6229bc6be166cf) C:\Windows\system32\DRIVERS\ATKACPI.sys 2011/04/21 09:23:16.0909 5404 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 2011/04/21 09:23:16.0969 5404 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 2011/04/21 09:23:17.0039 5404 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 2011/04/21 09:23:17.0089 5404 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/04/21 09:23:17.0129 5404 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/04/21 09:23:17.0189 5404 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/04/21 09:23:17.0249 5404 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/04/21 09:23:17.0309 5404 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 2011/04/21 09:23:17.0339 5404 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 2011/04/21 09:23:17.0389 5404 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 2011/04/21 09:23:17.0629 5404 NETw5s32 (ef51b405ad8acaae6f0231290d20f516) C:\Windows\system32\DRIVERS\NETw5s32.sys 2011/04/21 09:23:18.0019 5404 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys 2011/04/21 09:23:18.0199 5404 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/04/21 09:23:18.0219 5404 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 2011/04/21 09:23:18.0259 5404 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 2011/04/21 09:23:18.0329 5404 Ntfs (33c3093d09017cfe2e219f2472bff6eb) C:\Windows\system32\drivers\Ntfs.sys 2011/04/21 09:23:18.0409 5404 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 2011/04/21 09:23:18.0459 5404 nvraid (af2eec9580c1d32fb7eaf105d9784061) C:\Windows\system32\drivers\nvraid.sys 2011/04/21 09:23:18.0489 5404 nvstor (9283c58ebaa2618f93482eb5dabcec82) C:\Windows\system32\drivers\nvstor.sys 2011/04/21 09:23:18.0539 5404 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 2011/04/21 09:23:18.0599 5404 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 2011/04/21 09:23:18.0699 5404 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 2011/04/21 09:23:18.0749 5404 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 2011/04/21 09:23:18.0779 5404 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 2011/04/21 09:23:18.0839 5404 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 2011/04/21 09:23:18.0869 5404 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 2011/04/21 09:23:18.0909 5404 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/04/21 09:23:18.0939 5404 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 2011/04/21 09:23:18.0969 5404 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 2011/04/21 09:23:19.0089 5404 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 2011/04/21 09:23:19.0119 5404 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 2011/04/21 09:23:19.0159 5404 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 2011/04/21 09:23:19.0209 5404 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 2011/04/21 09:23:19.0269 5404 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/04/21 09:23:19.0309 5404 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 2011/04/21 09:23:19.0329 5404 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 2011/04/21 09:23:19.0369 5404 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/04/21 09:23:19.0419 5404 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/04/21 09:23:19.0469 5404 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/04/21 09:23:19.0489 5404 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 2011/04/21 09:23:19.0559 5404 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 2011/04/21 09:23:19.0589 5404 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/04/21 09:23:19.0629 5404 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/04/21 09:23:19.0689 5404 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 2011/04/21 09:23:19.0739 5404 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 2011/04/21 09:23:19.0779 5404 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 2011/04/21 09:23:19.0869 5404 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys 2011/04/21 09:23:19.0919 5404 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 2011/04/21 09:23:19.0959 5404 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 2011/04/21 09:23:20.0069 5404 rimmptsk (c35ca13d3627ebd9dd12a23ce781bc3d) C:\Windows\system32\DRIVERS\rimmptsk.sys 2011/04/21 09:23:20.0129 5404 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys 2011/04/21 09:23:20.0169 5404 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys 2011/04/21 09:23:20.0249 5404 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 2011/04/21 09:23:20.0309 5404 RTL8167 (94a48c15d32d69867f03894a4e70a87a) C:\Windows\system32\DRIVERS\Rt86win7.sys 2011/04/21 09:23:20.0359 5404 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 2011/04/21 09:23:20.0399 5404 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 2011/04/21 09:23:20.0449 5404 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 2011/04/21 09:23:20.0529 5404 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys 2011/04/21 09:23:20.0589 5404 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/04/21 09:23:20.0629 5404 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 2011/04/21 09:23:20.0659 5404 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 2011/04/21 09:23:20.0699 5404 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 2011/04/21 09:23:20.0769 5404 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 2011/04/21 09:23:20.0799 5404 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 2011/04/21 09:23:20.0819 5404 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 2011/04/21 09:23:20.0869 5404 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/04/21 09:23:20.0929 5404 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 2011/04/21 09:23:20.0959 5404 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/04/21 09:23:20.0979 5404 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/04/21 09:23:21.0019 5404 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 2011/04/21 09:23:21.0089 5404 smserial (19301c27f3425dc39f6c599f527e507d) C:\Windows\system32\DRIVERS\smserial.sys 2011/04/21 09:23:21.0269 5404 SNTNLUSB (9de6e60ce7fd82b4985de5d9c22265ad) C:\Windows\system32\DRIVERS\SNTNLUSB.SYS 2011/04/21 09:23:21.0319 5404 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 2011/04/21 09:23:21.0469 5404 sptd (d15da1ba189770d93eea2d7e18f95af9) C:\Windows\system32\Drivers\sptd.sys 2011/04/21 09:23:21.0469 5404 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: d15da1ba189770d93eea2d7e18f95af9 2011/04/21 09:23:21.0469 5404 sptd - detected Locked file (1) 2011/04/21 09:23:21.0519 5404 srv (4e636465a8653ba3bf29f929aa578e6f) C:\Windows\system32\DRIVERS\srv.sys 2011/04/21 09:23:21.0569 5404 srv2 (4e4e17a3865f650ee8c67726872d9431) C:\Windows\system32\DRIVERS\srv2.sys 2011/04/21 09:23:21.0639 5404 srvnet (1346dff5be932939997d373d61a35626) C:\Windows\system32\DRIVERS\srvnet.sys 2011/04/21 09:23:21.0729 5404 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 2011/04/21 09:23:21.0799 5404 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 2011/04/21 09:23:21.0829 5404 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 2011/04/21 09:23:21.0879 5404 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys 2011/04/21 09:23:22.0019 5404 Tcpip (37e8fa3779668837ca9e2c36d2415949) C:\Windows\system32\drivers\tcpip.sys 2011/04/21 09:23:22.0109 5404 TCPIP6 (37e8fa3779668837ca9e2c36d2415949) C:\Windows\system32\DRIVERS\tcpip.sys 2011/04/21 09:23:22.0169 5404 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 2011/04/21 09:23:22.0249 5404 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 2011/04/21 09:23:22.0289 5404 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 2011/04/21 09:23:22.0339 5404 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 2011/04/21 09:23:22.0379 5404 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys 2011/04/21 09:23:22.0469 5404 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/04/21 09:23:22.0529 5404 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 2011/04/21 09:23:22.0619 5404 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 2011/04/21 09:23:22.0659 5404 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 2011/04/21 09:23:22.0699 5404 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 2011/04/21 09:23:22.0789 5404 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 2011/04/21 09:23:22.0849 5404 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys 2011/04/21 09:23:22.0899 5404 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 2011/04/21 09:23:22.0969 5404 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys 2011/04/21 09:23:23.0009 5404 usbccgp (7e72e7d7e0757d59481d530fd2b0bfae) C:\Windows\system32\drivers\usbccgp.sys 2011/04/21 09:23:23.0069 5404 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 2011/04/21 09:23:23.0129 5404 usbehci (0eeedd78c2bedac75e8ed1ba8d77878b) C:\Windows\system32\DRIVERS\usbehci.sys 2011/04/21 09:23:23.0189 5404 usbhub (9d22aad9ac6a07c691a1113e5f860868) C:\Windows\system32\drivers\usbhub.sys 2011/04/21 09:23:23.0239 5404 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 2011/04/21 09:23:23.0279 5404 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 2011/04/21 09:23:23.0319 5404 USBSTOR (bf63ebfc6979fefb2bc03df7989a0c1a) C:\Windows\system32\drivers\USBSTOR.SYS 2011/04/21 09:23:23.0349 5404 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/04/21 09:23:23.0419 5404 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys 2011/04/21 09:23:23.0499 5404 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 2011/04/21 09:23:23.0539 5404 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/04/21 09:23:23.0569 5404 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 2011/04/21 09:23:23.0639 5404 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 2011/04/21 09:23:23.0709 5404 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 2011/04/21 09:23:23.0749 5404 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 2011/04/21 09:23:23.0799 5404 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 2011/04/21 09:23:23.0849 5404 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 2011/04/21 09:23:23.0889 5404 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 2011/04/21 09:23:23.0939 5404 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 2011/04/21 09:23:23.0979 5404 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 2011/04/21 09:23:24.0039 5404 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 2011/04/21 09:23:24.0099 5404 vpcbus (b26536add1d748cda104d856c979ae79) C:\Windows\system32\DRIVERS\vpchbus.sys 2011/04/21 09:23:24.0159 5404 vpcnfltr (a0f7e923a6261760130f22b85df9040e) C:\Windows\system32\DRIVERS\vpcnfltr.sys 2011/04/21 09:23:24.0189 5404 vpcusb (5f4b55e91ce7e2523c9e1e0ece858869) C:\Windows\system32\DRIVERS\vpcusb.sys 2011/04/21 09:23:24.0249 5404 vpcvmm (b487191fe18d6863381a1ac55482469a) C:\Windows\system32\drivers\vpcvmm.sys 2011/04/21 09:23:24.0309 5404 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/04/21 09:23:24.0339 5404 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 2011/04/21 09:23:24.0379 5404 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/04/21 09:23:24.0419 5404 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 2011/04/21 09:23:24.0479 5404 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/04/21 09:23:24.0489 5404 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/04/21 09:23:24.0549 5404 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 2011/04/21 09:23:24.0589 5404 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 2011/04/21 09:23:24.0689 5404 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/04/21 09:23:24.0729 5404 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 2011/04/21 09:23:24.0819 5404 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 2011/04/21 09:23:24.0899 5404 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/04/21 09:23:24.0959 5404 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 2011/04/21 09:23:25.0019 5404 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/04/21 09:23:25.0079 5404 ================================================================================ 2011/04/21 09:23:25.0079 5404 Scan finished 2011/04/21 09:23:25.0079 5404 ================================================================================ 2011/04/21 09:23:25.0089 3276 Detected object count: 1 2011/04/21 09:25:08.0522 3276 Locked file(sptd) - User select action: Skip
  5. ако не е проблем да продължим утре,сега трябва да излеза по работа
  6. All processes killed ========== FILES ========== C:\Program Files\ESET\MiNODLogin\MiNODLogin.jar moved successfully. C:\Program Files\ESET\MiNODLogin\MiNODLoginLib.dll moved successfully. C:\Users\Любомир\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\7a90939c-1dca63b8 moved successfully. C:\Users\Любомир\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5ad49d29-45fcafd5 moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Desktop User: Public User: Любомир ->Temp folder emptied: 1973520188 bytes ->Temporary Internet Files folder emptied: 59843501 bytes ->Java cache emptied: 17535191 bytes ->FireFox cache emptied: 85959452 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 12089 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 52504 bytes RecycleBin emptied: 1670452 bytes Total Files Cleaned = 2 040,00 mb OTL by OldTimer - Version 3.2.22.3 log created on 04202011_193138 Files\Folders moved on Reboot... C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWP59756\adsCAMPMGZO.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWP59756\adsCANP63UW.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6SWVD8K0\bg_PBT_kaldata_728x90;;sz=728x90;ord=2142107555758608[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6SWVD8K0\kaldata_com[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6SWVD8K0\recommendations[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6SWVD8K0\sh39[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\adsCA24OG8L.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\adsCA60023W.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\adsCAIS6C4W.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\adsCAXCAE7F.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\likebox[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2QU7IRO3\likebox[2].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1KWKYGIA\adsCASIIX7B.htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1KWKYGIA\like[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1KWKYGIA\search[1].htm moved successfully. C:\Users\Любомир\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1KWKYGIA\xd_proxy[1].htm moved successfully. Registry entries deleted on Reboot... Фаила е прекалено голям от D.D.S ето atach.txt . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_11-03-05.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 21.11.2009 г. 15:32:35 System Uptime: 20.4.2011 г. 19:34:05 (0 hours ago) . Motherboard: ASUSTeK Computer Inc. | | M51Vr Processor: Intel® Core2 Duo CPU T5800 @ 2.00GHz | Socket 478 | 2000/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 39 GiB total, 16,425 GiB free. D: is FIXED (NTFS) - 259 GiB total, 162,164 GiB free. E: is CDROM () G: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: Device ID: USB\VID_04B9&PID_8000\1&2B53A856&0&01 Manufacturer: Name: PNP Device ID: USB\VID_04B9&PID_8000\1&2B53A856&0&01 Service: . ==== System Restore Points =================== . RP385: 20.4.2011 г. 13:52:46 - Планирана контролна точка . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) Архиватор WinRAR Асистент за влизане на Windows Live Инструмент за качване на Windows Live Фотогалерия на Windows Live µTorrent Български интерфейсен пакет за PowerDVD v7.0 2007 Microsoft Office Suite Service Pack 2 (SP2) 3D Four Seasons Premium Screen Saver AC3Filter (remove only) Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 9.4.3 - Bulgarian ATI Catalyst Install Manager AXIS Media Control Embedded BS.Player PRO Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner DivX Setup Easy CD-DA Extractor 2010 ESET NOD32 Antivirus ESET Online Scanner v3 Feedback Tool Google Toolbar for Internet Explorer Google Update Helper Java 6 Update 17 Junk Mail filter update K-Lite Codec Pack 5.2.0 (Full) Malwarebytes' Anti-Malware Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Office Access MUI (Bulgarian) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel 2007 Help Актуализация (KB963678) Microsoft Office Excel MUI (Bulgarian) 2007 Microsoft Office Groove MUI (Bulgarian) 2007 Microsoft Office InfoPath MUI (Bulgarian) 2007 Microsoft Office OneNote MUI (Bulgarian) 2007 Microsoft Office Outlook MUI (Bulgarian) 2007 Microsoft Office Powerpoint 2007 Help Актуализация (KB963669) Microsoft Office PowerPoint MUI (Bulgarian) 2007 Microsoft Office Proof (Bulgarian) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Russian) 2007 Microsoft Office Proofing (Bulgarian) 2007 Microsoft Office Publisher MUI (Bulgarian) 2007 Microsoft Office Shared MUI (Bulgarian) 2007 Microsoft Office Word 2007 Help Актуализация (KB963665) Microsoft Office Word MUI (Bulgarian) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable - KB2467175 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Mozilla Firefox (3.6.16) MSVCRT PowerDVD Realtek High Definition Audio Driver Security Update for 2007 Microsoft Office System (KB2288621) Security Update for 2007 Microsoft Office System (KB2288931) Security Update for 2007 Microsoft Office System (KB2345043) Security Update for 2007 Microsoft Office System (KB2466156) Security Update for 2007 Microsoft Office System (KB2509488) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft Office Access 2007 (KB979440) Security Update for Microsoft Office Excel 2007 (KB2464583) Security Update for Microsoft Office Groove 2007 (KB2494047) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office PowerPoint 2007 (KB2464594) Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) Security Update for Microsoft Office Publisher 2007 (KB2284697) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2344993) Skype™ 5.3 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office Outlook 2007 (KB2509470) Update for Outlook 2007 Junk Email Filter (KB2522999) VC80CRTRedist - 8.0.50727.4053 VLC media player 1.0.5 Winamp Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live Sync Windows Media Player Firefox Plugin . ==== Event Viewer Messages From Past Week ======== . 20.4.2011 г. 19:34:24, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 20.4.2011 г. 19:34:24, Error: atikmdag [43029] - Display is not active 20.4.2011 г. 19:31:38, Error: Service Control Manager [7034] - Услуга AMD External Events Utility беше прекъсната неочаквано. Това се е случвало с нея 1 път(и). 20.4.2011 г. 14:22:25, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 20.4.2011 г. 14:22:25, Error: atikmdag [43029] - Display is not active 20.4.2011 г. 12:03:12, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 20.4.2011 г. 12:03:12, Error: atikmdag [43029] - Display is not active 20.4.2011 г. 11:55:21, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. 20.4.2011 г. 09:45:39, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 20.4.2011 г. 09:45:39, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 20:03:28, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 20:03:28, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 18:56:25, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 18:56:25, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 18:41:46, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 18:41:46, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:34:00, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 19.4.2011 г. 18:34:00, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 19.4.2011 г. 18:33:59, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:59, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:59, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89} 19.4.2011 г. 18:33:59, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E} 19.4.2011 г. 18:33:57, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 19.4.2011 г. 18:33:50, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 19.4.2011 г. 18:33:45, Error: Service Control Manager [7026] - Неуспешно зареждане на следния драйвер, който се активира с включване на компютъра или стартиране на системата: AFD CSC DfsC discache ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vpcnfltr vpcvmm vwififlt Wanarpv6 WfpLwf ws2ifsl 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга Workstation зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга TCP/IP NetBIOS Helper зависи от услуга Ancillary Function Driver for Winsock, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга SMB MiniRedirector Wrapper and Engine зависи от услуга Redirected Buffering Sub Sysytem, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга SMB 2.0 MiniRedirector зависи от услуга SMB MiniRedirector Wrapper and Engine, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга SMB 1.x MiniRedirector зависи от услуга SMB MiniRedirector Wrapper and Engine, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга Network Store Interface Service зависи от услуга NSI proxy service driver., която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга Network Location Awareness зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга IP Helper зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга DNS Client зависи от услуга Драйвер за поддържане на TDI при NetIO онаследяване, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:33:43, Error: Service Control Manager [7001] - Услуга DHCP Client зависи от услуга Ancillary Function Driver for Winsock, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:13:53, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 18:13:53, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 18:12:00, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:43, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 19.4.2011 г. 18:08:43, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 19.4.2011 г. 18:08:41, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:40, Error: Service Control Manager [7001] - Услуга Network List Service зависи от услуга Network Location Awareness, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:40, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89} 19.4.2011 г. 18:08:40, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E} 19.4.2011 г. 18:08:39, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 19.4.2011 г. 18:08:33, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 19.4.2011 г. 18:08:30, Error: Service Control Manager [7026] - Неуспешно зареждане на следния драйвер, който се активира с включване на компютъра или стартиране на системата: AFD CSC DfsC discache ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vpcnfltr vpcvmm vwififlt Wanarpv6 WfpLwf ws2ifsl 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга Workstation зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга TCP/IP NetBIOS Helper зависи от услуга Ancillary Function Driver for Winsock, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга SMB MiniRedirector Wrapper and Engine зависи от услуга Redirected Buffering Sub Sysytem, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга SMB 2.0 MiniRedirector зависи от услуга SMB MiniRedirector Wrapper and Engine, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга SMB 1.x MiniRedirector зависи от услуга SMB MiniRedirector Wrapper and Engine, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга Network Store Interface Service зависи от услуга NSI proxy service driver., която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга Network Location Awareness зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга IP Helper зависи от услуга Network Store Interface Service, която не може да бъде стартирана поради следната грешка: Подчинената услуга или група не успя да стартира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга DNS Client зависи от услуга Драйвер за поддържане на TDI при NetIO онаследяване, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 18:08:30, Error: Service Control Manager [7001] - Услуга DHCP Client зависи от услуга Ancillary Function Driver for Winsock, която не може да бъде стартирана поради следната грешка: Свързано към системата устройство не функционира. 19.4.2011 г. 17:37:26, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 17:37:26, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 17:19:33, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 17:19:33, Error: atikmdag [43029] - Display is not active 19.4.2011 г. 11:31:46, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 19.4.2011 г. 11:31:46, Error: atikmdag [43029] - Display is not active 18.4.2011 г. 17:47:20, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 18.4.2011 г. 17:47:20, Error: atikmdag [43029] - Display is not active 17.4.2011 г. 18:31:18, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 17.4.2011 г. 18:31:18, Error: atikmdag [43029] - Display is not active 16.4.2011 г. 08:53:45, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 16.4.2011 г. 08:53:45, Error: atikmdag [43029] - Display is not active 15.4.2011 г. 21:07:05, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. 15.4.2011 г. 19:44:29, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 15.4.2011 г. 19:44:29, Error: atikmdag [43029] - Display is not active 15.4.2011 г. 09:22:54, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 15.4.2011 г. 09:22:54, Error: atikmdag [43029] - Display is not active 15.4.2011 г. 08:01:09, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 15.4.2011 г. 08:01:09, Error: atikmdag [43029] - Display is not active 14.4.2011 г. 19:03:26, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 14.4.2011 г. 19:03:26, Error: atikmdag [43029] - Display is not active 14.4.2011 г. 06:33:24, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 14.4.2011 г. 06:33:24, Error: atikmdag [43029] - Display is not active 13.4.2011 г. 19:25:47, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 13.4.2011 г. 19:25:47, Error: atikmdag [43029] - Display is not active 13.4.2011 г. 17:53:56, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 13.4.2011 г. 17:53:56, Error: atikmdag [43029] - Display is not active . ==== End Of File =========================== и D.D.S.txt . DDS (Ver_11-03-05.01) - NTFSx86 Run by ‹оЎ®¬Ёа at 19:42:15,77 on ба 20.04.2011 Ј. Internet Explorer: 9.0.8112.16421 Microsoft Windows 7 Ultimate 6.1.7601.1.1251.359.1026.18.2047.1190 [GMT 3:00] . AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5} SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Cyberlink\Shared files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\rundll32.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Любомир\Desktop\dds.scr C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uSearch Page = uStart Page = hxxp://google.bg/ uSearch Bar = mStart Page = hxxp://home.sweetim.com BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\npdivx32.dll BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - c:\program files\divx\divx plus web player\npdivx32.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Помощ за влизане на Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s mRun: [startCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice uPolicies-explorer: HideSCAHealth = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: &Експортиране към Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://84.54.135.77/activex/AMC.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\5b0b~1\appdata\roaming\mozilla\firefox\profiles\qjqzi692.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.bg/ FF - prefs.js: keyword.URL - hxxp://www.google.com/search?sourceid=navclient&hl=bg&q= FF - component: c:\users\любомир\appdata\roaming\mozilla\firefox\profiles\qjqzi692.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll FF - component: c:\users\любомир\appdata\roaming\mozilla\firefox\profiles\qjqzi692.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: ABV Notifier: abvnotifier@netinfo.bg - %profile%\extensions\abvnotifier@netinfo.bg FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - %profile%\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} FF - Ext: DivX Plus Web Player HTML5 &lt;video&gt;: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\html5video FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\divx\divx plus web player\firefox\wpa . ============= SERVICES / DRIVERS =============== . R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128] R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128] R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-5-20 133512] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2010-5-20 810120] R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-5-20 96896] R3 adatadrv;Autodata Protection Service;c:\windows\system32\drivers\adatadrv.sys [2010-3-21 762112] R3 NETw5s32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETw5s32.sys [2009-9-15 6114816] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2011-1-21 328808] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate;Услуга Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-7 135664] S2 StarWindServiceAE;StarWind AE Service;c:\program files\alcohol 120\starwind\StarWindServiceAE.exe [2007-5-28 275968] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888] S3 c2wts;Claims to Windows Token Service;c:\program files\windows identity foundation\v3.5\c2wtshost.exe [2010-2-16 13080] S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-11 4231168] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-3-2 15872] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-3-2 52224] . =============== Created Last 30 ================ . 2011-04-20 08:18:06 -------- d-----w- C:\_OTL 2011-04-19 15:23:56 -------- d-----w- c:\users\5b0b~1\appdata\roaming\Malwarebytes 2011-04-19 15:23:49 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-04-19 15:23:47 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-04-19 15:23:47 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-04-19 15:23:47 -------- d-----w- c:\progra~2\Malwarebytes 2011-04-19 15:00:06 -------- d-----w- c:\program files\PC Tools Security 2011-04-14 19:34:06 -------- d-----w- c:\users\5b0b~1\appdata\local\DDMSettings 2011-04-14 19:28:46 -------- d-----w- c:\program files\common files\DivX Shared 2011-04-14 19:26:31 -------- d-----w- c:\program files\DivX 2011-04-13 16:31:29 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-04-13 16:27:40 -------- d-----w- c:\progra~2\Skype Extras 2011-04-13 16:04:59 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys 2011-04-13 16:04:59 69632 ----a-w- c:\windows\system32\drivers\bowser.sys 2011-04-13 16:04:59 223232 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2011-04-13 16:04:59 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys . ==================== Find3M ==================== . 2011-03-11 05:33:59 1164288 ----a-w- c:\windows\system32\mfc42u.dll 2011-03-11 05:33:59 1137664 ----a-w- c:\windows\system32\mfc42.dll 2011-03-08 05:28:29 741376 ----a-w- c:\windows\system32\inetcomm.dll 2011-03-03 05:38:01 132608 ----a-w- c:\windows\system32\dnsrslvr.dll 2011-03-03 05:36:16 28672 ----a-w- c:\windows\system32\dnscacheugc.exe 2011-03-03 03:42:34 2333184 ----a-w- c:\windows\system32\win32k.sys 2011-03-02 11:17:21 152576 ----a-w- c:\windows\system32\msclmd.dll 2011-02-19 06:30:54 805376 ----a-w- c:\windows\system32\FntCache.dll 2011-02-19 06:30:51 1076736 ----a-w- c:\windows\system32\DWrite.dll 2011-02-19 06:30:50 739840 ----a-w- c:\windows\system32\d2d1.dll 2011-02-19 06:30:46 34304 ----a-w- c:\windows\system32\atmlib.dll 2011-02-19 04:34:54 294912 ----a-w- c:\windows\system32\atmfd.dll 2011-02-16 15:32:18 1784832 ----a-w- c:\windows\system32\iertutil.dll_old0 2011-02-16 15:32:18 1125376 ----a-w- c:\windows\system32\wininet.dll_old0 2011-02-16 15:32:18 1098240 ----a-w- c:\windows\system32\urlmon.dll_old0 2011-02-12 05:35:31 191488 ----a-w- c:\windows\system32\FXSCOVER.exe 2011-01-21 04:36:02 80416 ----a-w- c:\windows\system32\RtNicProp32.dll 2011-01-21 04:36:02 100896 ----a-w- c:\windows\system32\RTNUninst32.dll . ============= FINISH: 19:43:18,74 ===============
  7. ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6427 # api_version=3.0.2 # EOSSerial=f02262c5fc87e8409a6f386f05cf8469 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2011-04-20 12:49:04 # local_time=2011-04-20 03:49:04 ) # country="Bulgaria" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 66 94 4238788 54931350 0 0 # compatibility_mode=8199 39157117 100 98 1280720 28960379 0 0 # scanned=116042 # found=4 # cleaned=0 # scan_time=3585 # nod_component=V3 Build:0x30000000 C:\Program Files\ESET\MiNODLogin\MiNODLogin.jar a variant of Java/HackAV.A application (unable to clean) 00000000000000000000000000000000 I C:\Program Files\ESET\MiNODLogin\MiNODLoginLib.dll Win32/HackAV.GI application (unable to clean) 00000000000000000000000000000000 I C:\Users\Любомир\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\7a90939c-1dca63b8 multiple threats (unable to clean) 00000000000000000000000000000000 I C:\Users\Любомир\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5ad49d29-45fcafd5 Java/Exploit.CVE-2010-0844.A trojan (unable to clean) 00000000000000000000000000000000 I
  8. ========== OTL ========== Registry value HKEY_USERS\S-1-5-21-2842412421-93293534-3806686765-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{472734EA-242A-422b-ADF8-83D1E48CC825} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422b-ADF8-83D1E48CC825}\ not found. Registry value HKEY_USERS\S-1-5-21-2842412421-93293534-3806686765-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-A1AD-4243D8127440} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-A1AD-4243D8127440}\ not found. Registry value HKEY_USERS\S-1-5-21-2842412421-93293534-3806686765-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{d9288080-1baa-4bc4-9cf8-a92d743db949}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d9288080-1baa-4bc4-9cf8-a92d743db949}\ not found. C:\Users\Любомир\AppData\Local\0v128yg110yy544h80wqr2 moved successfully. C:\ProgramData\0v128yg110yy544h80wqr2 moved successfully. C:\Windows\System32\klipxm32.dll moved successfully. ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully. ========== FILES ========== File\Folder C:\Users\5B0B~1\AppData\Local\Temp\IXP000.TMP\fghf.exe not found. C:\Users\Public\E-32948-2987-28740 folder moved successfully. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Users\5B0B~1\AppData\Local\Temp\IXP000.TMP\fghf.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Users\Public\E-32948-2987-28740\hostraid.exe deleted successfully. ========== COMMANDS ========== OTL by OldTimer - Version 3.2.22.3 log created on 04202011_142114
  9. съжелявам не знаех че твябва да бъде на всеки ред по отделно,сега го направих и ми поиска рестарт компа,но няма лог които да прикача,какво да правя сега да пускам ли пак OTL да сканира
  10. Error: Unable to interpret <:OTLIE - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not foundO3 - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.O3 - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - File not found[2011.04.19 18:24:33 | 000,012,386 | -HS- | M] () -- C:\Users\Любомир\AppData\Local\0v128yg110yy544h80wqr2[2011.04.19 18:24:33 | 000,012,386 | -HS- | M] () -- C:\ProgramData\0v128yg110yy544h80wqr2[2010.06.14 12:16:01 | 000,003,584 | ---- | C] () -- C:\Windows\System32\klipxm32.dll@Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:DFC5A2B2:filesC:\Users\5B0B~1\AppData\Local\Temp\IXP000.TMP\fghf.exeC:\Users\Public\E-32948-2987-28740:reg[HKEY_LOCAL_MACHINE\SYSTEM\CurrentCont> in the current context! Error: Unable to interpret <rolSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]"C:\Users\5B0B~1\AppData\Local\Temp\IXP000.TMP\fghf.exe" =-"C:\Users\Public\E-32948-2987-28740\hostraid.exe" =-:commands[Reboot]> in the current context! OTL by OldTimer - Version 3.2.22.3 log created on 04202011_130943 Няма грешка с двете точки е и дава това
  11. OTL Error: Unable to interpret <:OTLIE - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not foundO3 - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.O3 - HKU\S-1-5-21-2842412421-93293534-3806686765-1000\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - File not found[2011.04.19 18:24:33 | 000,012,386 | -HS- | M] () -- C:\Users\Любомир\AppData\Local\0v128yg110yy544h80wqr2[2011.04.19 18:24:33 | 000,012,386 | -HS- | M] () -- C:\ProgramData\0v128yg110yy544h80wqr2[2010.06.14 12:16:01 | 000,003,584 | ---- | C] () -- C:\Windows\System32\klipxm32.dll@Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:DFC5A2B2:commands[Reboot]> in the current context! OTL by OldTimer - Version 3.2.22.3 log created on 04202011_112108 Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Версия на базата от данни: 6404 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 20.4.2011 г. 11:27:45 mbam-log-2011-04-20 (11-27-45).txt Тип сканиране: Бързо сканиране Сканирани обекти: 147398 Изминало време: 4 минута(и), 5 секунда(и) Заразени процеси в паметта: 0 Заразени модули в паметта: 0 Заразени ключове в регистратурата: 0 Заразени стойности в регистратурата: 0 Заразени информационни обекти в регистратурата: 0 Заразени папки: 0 Заразени файлове: 0 Заразени процеси в паметта: (Не бяха открити зловредни обекти) Заразени модули в паметта: (Не бяха открити зловредни обекти) Заразени ключове в регистратурата: (Не бяха открити зловредни обекти) Заразени стойности в регистратурата: (Не бяха открити зловредни обекти) Заразени информационни обекти в регистратурата: (Не бяха открити зловредни обекти) Заразени папки: (Не бяха открити зловредни обекти) Заразени файлове: (Не бяха открити зловредни обекти) стъпка 3 този фаил не го намирам C:\Users\5B0B~1\AppData\Local\Temp\IXP000.TMP\fghf.exe а този C:\Users\Public\E-32948-2987-28740\ папката е празна
  12. Привет и благораря за бързата реакция,За стъпка 2 фаила е прекалено голям затова само го поствам RkU Version: 3.8.388.590, Type LE (SR2) ============================================== OS Name: Windows 7 Version 6.1.7601 (Service Pack 1) Number of processors #2 ============================================== >Drivers ============================================== 0x95E01000 C:\Windows\system32\DRIVERS\NETw5s32.sys 6156288 bytes (Intel Corporation, Intel® Wireless WiFi Link Driver) 0x8FA1F000 C:\Windows\system32\DRIVERS\atikmdag.sys 5328896 bytes (ATI Technologies Inc., ATI Radeon Kernel Mode Driver) 0x82C06000 C:\Windows\system32\ntkrnlpa.exe 4268032 bytes (Microsoft Corporation, NT Kernel & System) 0x82C06000 PnpManager 4268032 bytes 0x82C06000 RAW 4268032 bytes 0x82C06000 WMIxWDM 4268032 bytes 0x98231000 C:\Windows\system32\drivers\RTKVHDA.sys 3108864 bytes (Realtek Semiconductor Corp., Realtek® High Definition Audio Function Driver) 0x98AB0000 Win32k 2416640 bytes 0x98AB0000 C:\Windows\System32\win32k.sys 2416640 bytes (Microsoft Corporation, Драйвер на Win32 за много потребители) 0x8961D000 C:\Windows\System32\drivers\tcpip.sys 1351680 bytes (Microsoft Corporation, TCP/IP драйвер) 0x89417000 C:\Windows\System32\Drivers\Ntfs.sys 1241088 bytes (Microsoft Corporation, NT File System Driver) 0x98618000 C:\Windows\system32\DRIVERS\smserial.sys 1130496 bytes (Motorola Inc., Motorola SM56 Modem WDM Driver) 0x88E82000 PCI_PNP8824 1052672 bytes 0x88E82000 sptd 1052672 bytes 0x88E82000 C:\Windows\System32\Drivers\spuh.sys 1052672 bytes 0x98528000 C:\Windows\system32\DRIVERS\eamonm.sys 786432 bytes (ESET, Amon monitor) 0x97224000 C:\Windows\system32\DRIVERS\adatadrv.sys 765952 bytes (none, Autodata Licensing System) 0x8FF34000 C:\Windows\System32\drivers\dxgkrnl.sys 749568 bytes (Microsoft Corporation, DirectX Graphics Kernel) 0x892FE000 C:\Windows\system32\drivers\ndis.sys 749568 bytes (Microsoft Corporation, NDIS 6.20 driver) 0x832F9000 C:\Windows\system32\CI.dll 700416 bytes (Microsoft Corporation, Code Integrity Module) 0x89259000 C:\Windows\system32\drivers\pctEFA.sys 675840 bytes (PC Tools, PC Tools Extended File Attributes) 0x9BB66000 C:\Windows\system32\drivers\peauth.sys 618496 bytes (Microsoft Corporation, Protected Environment Authentication and Authorization Export Driver) 0x9BA0C000 C:\Windows\system32\drivers\HTTP.sys 544768 bytes (Microsoft Corporation, HTTP Protocol Stack) 0x83219000 C:\Windows\system32\mcupdate_GenuineIntel.dll 544768 bytes (Microsoft Corporation, Intel Microcode Update Library) 0x88E03000 C:\Windows\system32\drivers\Wdf01000.sys 462848 bytes (Microsoft Corporation, Kernel Mode Driver Framework Runtime) 0x8F59A000 C:\Windows\system32\drivers\csc.sys 409600 bytes (Microsoft Corporation, Windows Client Side Caching Driver) 0x89584000 C:\Windows\System32\Drivers\cng.sys 380928 bytes (Microsoft Corporation, Kernel Cryptography, Next Generation) 0x8999C000 C:\Windows\system32\drivers\afd.sys 368640 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock) 0x89202000 C:\Windows\system32\drivers\pctDS.sys 356352 bytes (PC Tools, PC Tools Data Store) 0x90380000 C:\Windows\system32\DRIVERS\rixdptsk.sys 335872 bytes (REDC, RICOH XD SM Driver) 0x902D4000 C:\Windows\system32\DRIVERS\Rt86win7.sys 335872 bytes (Realtek , Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver ) 0x9EE51000 C:\Windows\System32\DRIVERS\srv.sys 335872 bytes (Microsoft Corporation, Server driver) 0x97391000 C:\Windows\system32\drivers\HdAudio.sys 327680 bytes (Microsoft Corporation, High Definition Audio Function Driver) 0x9EE01000 C:\Windows\System32\DRIVERS\srv2.sys 327680 bytes (Microsoft Corporation, Smb 2.0 Server driver) 0x9027A000 C:\Windows\system32\DRIVERS\USBPORT.SYS 307200 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver) 0x8908C000 C:\Windows\System32\drivers\volmgrx.sys 307200 bytes (Microsoft Corporation, Volume Manager Extension Driver) 0x88FB2000 C:\Windows\system32\drivers\ACPI.sys 294912 bytes (Microsoft Corporation, ACPI Driver for NT) 0x8F4E1000 C:\Windows\system32\drivers\vpcvmm.sys 290816 bytes (Microsoft Corporation, Virtual PC Virtual Machine Monitor) 0x96F9E000 C:\Windows\system32\DRIVERS\nwifi.sys 286720 bytes (Microsoft Corporation, NativeWiFi Miniport Driver) 0x9733C000 C:\Windows\system32\drivers\usbhub.sys 278528 bytes (Microsoft Corporation, Default Hub Driver for USB) 0x832B7000 C:\Windows\system32\CLFS.SYS 270336 bytes (Microsoft Corporation, Common Log File System Driver) 0x8F539000 C:\Windows\system32\DRIVERS\rdbss.sys 266240 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver) 0x897A1000 C:\Windows\system32\drivers\volsnap.sys 258048 bytes (Microsoft Corporation, Volume Shadow Copy Driver) 0x893B5000 C:\Windows\system32\drivers\NETIO.SYS 253952 bytes (Microsoft Corporation, Network I/O Subsystem) 0x89187000 C:\Windows\system32\drivers\PCTCore.sys 249856 bytes (PC Tools, PC Tools KDS Core Driver) 0x9BADF000 C:\Windows\system32\DRIVERS\mrxsmb10.sys 241664 bytes (Microsoft Corporation, Longhorn SMB Downlevel SubRdr) 0x90217000 C:\Windows\System32\drivers\dxgmms1.sys 233472 bytes (Microsoft Corporation, DirectX Graphics MMS) 0x83018000 ACPI_HAL 225280 bytes 0x96E34000 C:\Windows\System32\Drivers\afqemsw0.SYS 225280 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver) 0x83018000 C:\Windows\system32\halmacpi.dll 225280 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL) 0x97306000 C:\Windows\system32\DRIVERS\vpchbus.sys 221184 bytes (Microsoft Corporation, Virtual PC Host Bus Driver) 0x833A4000 C:\Windows\system32\drivers\fltmgr.sys 212992 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager) 0x96F2D000 C:\Windows\system32\drivers\ks.sys 212992 bytes (Microsoft Corporation, Kernel CSA Library) 0x89827000 C:\Windows\System32\DRIVERS\fvevol.sys 204800 bytes (Microsoft Corporation, BitLocker Drive Encryption Driver) 0x8F43E000 C:\Windows\System32\DRIVERS\netbt.sys 204800 bytes (Microsoft Corporation, MBT Transport driver) 0x89767000 C:\Windows\System32\drivers\fwpkclnt.sys 200704 bytes (Microsoft Corporation, FWP/IPsec Kernel-Mode API) 0x96F6F000 C:\Windows\system32\drivers\portcls.sys 192512 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices)) 0x90326000 C:\Windows\system32\drivers\1394ohci.sys 184320 bytes (Microsoft Corporation, 1394 OpenHCI Driver) 0x89000000 C:\Windows\System32\drivers\rdyboost.sys 184320 bytes (Microsoft Corporation, ReadyBoost Driver) 0x89546000 C:\Windows\System32\Drivers\msrpc.sys 176128 bytes (Microsoft Corporation, Kernel Remote Procedure Call Provider) 0x8902E000 C:\Windows\system32\drivers\pci.sys 172032 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator) 0x890ED000 C:\Windows\system32\drivers\vmbus.sys 172032 bytes (Microsoft Corporation, Virtual Machine Bus) 0x88F8C000 C:\Windows\System32\Drivers\SCSIPORT.SYS 155648 bytes (Microsoft Corporation, SCSI Port Driver) 0x8986A000 C:\Windows\system32\DRIVERS\CLASSPNP.SYS 151552 bytes (Microsoft Corporation, SCSI Class System Dll) 0x891C4000 C:\Windows\System32\Drivers\ksecpkg.sys 151552 bytes (Microsoft Corporation, Kernel Security Support Provider Interface Packages) 0x98798000 C:\Windows\System32\Drivers\usbvideo.sys 147456 bytes (Microsoft Corporation, USB Video Class Driver) 0x89132000 C:\Windows\system32\drivers\ataport.SYS 143360 bytes (Microsoft Corporation, ATAPI Driver Extension) 0x9BABC000 C:\Windows\system32\DRIVERS\mrxsmb.sys 143360 bytes (Microsoft Corporation, Windows NT SMB Minirdr) 0x96EB9000 C:\Windows\system32\DRIVERS\ndiswan.sys 139264 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption)) 0x97200000 C:\Windows\System32\DRIVERS\srvnet.sys 135168 bytes (Microsoft Corporation, Server Network driver) 0x89800000 C:\Windows\system32\DRIVERS\tunnel.sys 135168 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver) 0x8991A000 C:\Windows\System32\drivers\VIDEOPRT.SYS 135168 bytes (Microsoft Corporation, Video Port Driver) 0x898C2000 C:\Windows\system32\drivers\cdrom.sys 126976 bytes (Microsoft Corporation, SCSI CD-ROM Driver) 0x898EF000 C:\Windows\system32\DRIVERS\ehdrv.sys 126976 bytes (ESET, ESET Helper driver) 0x90250000 C:\Windows\system32\drivers\HDAudBus.sys 126976 bytes (Microsoft Corporation, High Definition Audio Bus Driver) 0x8F480000 C:\Windows\system32\DRIVERS\pacer.sys 126976 bytes (Microsoft Corporation, QoS Packet Scheduler) 0x98D40000 C:\Windows\System32\cdd.dll 122880 bytes (Microsoft Corporation, Canonical Display Driver) 0x987BC000 C:\Windows\system32\drivers\luafv.sys 110592 bytes (Microsoft Corporation, LUA File Virtualization Filter Driver) 0x9BB1A000 C:\Windows\system32\DRIVERS\mrxsmb20.sys 110592 bytes (Microsoft Corporation, Longhorn SMB 2.0 Redirector) 0x987D7000 C:\Windows\system32\drivers\WudfPf.sys 106496 bytes (Microsoft Corporation, Windows Driver Foundation - User-mode Driver Framework Platform Driver) 0x9BA91000 C:\Windows\system32\DRIVERS\bowser.sys 102400 bytes (Microsoft Corporation, NT Lan Manager Datagram Receiver Driver) 0x973E1000 C:\Windows\system32\drivers\drmk.sys 102400 bytes (Microsoft Corporation, Microsoft Trusted Audio Drivers) 0x9BB4D000 C:\Windows\system32\DRIVERS\epfwwfpr.sys 102400 bytes (ESET, ESET Personal Firewall driver) 0x90353000 C:\Windows\system32\drivers\sdbus.sys 102400 bytes (Microsoft Corporation, SecureDigital Bus Driver) 0x8F400000 C:\Windows\System32\Drivers\dfsc.sys 98304 bytes (Microsoft Corporation, DFS Namespace Client Driver) 0x903D2000 C:\Windows\system32\drivers\i8042prt.sys 98304 bytes (Microsoft Corporation, i8042 Port Driver) 0x96E96000 C:\Windows\system32\DRIVERS\rasl2tp.sys 98304 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver) 0x96EDB000 C:\Windows\system32\DRIVERS\raspppoe.sys 98304 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver) 0x972DF000 C:\Windows\system32\DRIVERS\vpcusb.sys 98304 bytes (Microsoft Corporation, Virtual USB Connector Driver) 0x96EF3000 C:\Windows\system32\DRIVERS\raspptp.sys 94208 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol) 0x96F0A000 C:\Windows\system32\DRIVERS\rassstp.sys 94208 bytes (Microsoft Corporation, RAS SSTP Miniport Call Manager) 0x89979000 C:\Windows\system32\DRIVERS\tdx.sys 94208 bytes (Microsoft Corporation, TDI Translation Driver) 0x98781000 C:\Windows\system32\drivers\usbccgp.sys 94208 bytes (Microsoft Corporation, USB Common Class Generic Parent Driver) 0x890D7000 C:\Windows\System32\drivers\mountmgr.sys 90112 bytes (Microsoft Corporation, Mount Point Manager) 0x9036C000 C:\Windows\system32\DRIVERS\rimsptsk.sys 81920 bytes (REDC, RICOH MS Driver) 0x89571000 C:\Windows\System32\Drivers\ksecdd.sys 77824 bytes (Microsoft Corporation, Kernel Security Support Provider Interface) 0x98200000 C:\Windows\system32\DRIVERS\rspndr.sys 77824 bytes (Microsoft Corporation, Link-Layer Topology Responder Driver for NDIS 6) 0x8F4CE000 C:\Windows\system32\DRIVERS\wanarp.sys 77824 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver) 0x89117000 00000095 73728 bytes 0x96E84000 C:\Windows\system32\DRIVERS\AgileVpn.sys 73728 bytes (Microsoft Corporation, RAS Agile Vpn Miniport Call Manager) 0x8F426000 C:\Windows\system32\DRIVERS\intelppm.sys 73728 bytes (Microsoft Corporation, Processor Device Driver) 0x9BAAA000 C:\Windows\System32\drivers\mpsdrv.sys 73728 bytes (Microsoft Corporation, Microsoft Protection Service Driver) 0x89117000 C:\Windows\system32\drivers\winhv.sys 73728 bytes (Microsoft Corporation, Windows Hypervisor Interface Driver) 0x89859000 C:\Windows\system32\DRIVERS\disk.sys 69632 bytes (Microsoft Corporation, PnP Disk Driver) 0x98770000 C:\Windows\System32\Drivers\dump_dumpfve.sys 69632 bytes 0x89176000 C:\Windows\system32\drivers\fileinfo.sys 69632 bytes (Microsoft Corporation, FileInfo Filter Driver) 0x97380000 C:\Windows\System32\Drivers\NDProxy.SYS 69632 bytes (Microsoft Corporation, NDIS Proxy) 0x89058000 C:\Windows\System32\drivers\partmgr.sys 69632 bytes (Microsoft Corporation, Partition Management Driver) 0x8329E000 C:\Windows\system32\PSHED.dll 69632 bytes (Microsoft Corporation, Platform Specific Hardware Error Driver) 0x963EA000 C:\Windows\system32\DRIVERS\rimmptsk.sys 69632 bytes (REDC, RICOH SD Driver) 0x8F528000 C:\Windows\system32\drivers\termdd.sys 69632 bytes (Microsoft Corporation, Remote Desktop Server Driver) 0x8F49F000 C:\Windows\system32\DRIVERS\vwififlt.sys 69632 bytes (Microsoft Corporation, Virtual WiFi Filter Driver) 0x98600000 C:\Windows\system32\DRIVERS\lltdio.sys 65536 bytes (Microsoft Corporation, Link-Layer Topology Mapper I/O Driver) 0x897E8000 C:\Windows\System32\Drivers\mup.sys 65536 bytes (Microsoft Corporation, Multiple UNC Provider Driver) 0x985E8000 C:\Windows\system32\DRIVERS\ndisuio.sys 65536 bytes (Microsoft Corporation, NDIS User mode I/O driver) 0x8907C000 C:\Windows\system32\drivers\volmgr.sys 65536 bytes (Microsoft Corporation, Volume Manager Driver) 0x8F4B0000 C:\Windows\system32\DRIVERS\vpcnfltr.sys 65536 bytes (Microsoft Corporation, Virtual PC Network Filter Driver) 0x902C5000 C:\Windows\system32\DRIVERS\usbehci.sys 61440 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver) 0x8F418000 C:\Windows\system32\DRIVERS\blbdrive.sys 57344 bytes (Microsoft Corporation, BLB Drive Driver) 0x8F4C0000 C:\Windows\system32\DRIVERS\netbios.sys 57344 bytes (Microsoft Corporation, NetBIOS interface driver) 0x8996B000 C:\Windows\System32\Drivers\Npfs.SYS 57344 bytes (Microsoft Corporation, NPFS Driver) 0x8915F000 C:\Windows\system32\drivers\PCIIDEX.SYS 57344 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension) 0x895E1000 C:\Windows\System32\drivers\pcw.sys 57344 bytes (Microsoft Corporation, Performance Counters for Windows Driver) 0x96F61000 C:\Windows\system32\drivers\umbus.sys 57344 bytes (Microsoft Corporation, User-Mode Bus Enumerator) 0x88E74000 C:\Windows\system32\drivers\WDFLDR.SYS 57344 bytes (Microsoft Corporation, Kernel Mode Driver Framework Loader) 0x96E77000 C:\Windows\system32\drivers\CompositeBus.sys 53248 bytes (Microsoft Corporation, Multi-Transport Composite Bus Enumerator) 0x98743000 C:\Windows\System32\Drivers\crashdmp.sys 53248 bytes (Microsoft Corporation, Crash Dump Driver) 0x903EA000 C:\Windows\system32\drivers\kbdclass.sys 53248 bytes (Microsoft Corporation, Keyboard Class Driver) 0x9872C000 C:\Windows\system32\drivers\modem.sys 53248 bytes (Microsoft Corporation, Modem Device Driver) 0x90200000 C:\Windows\system32\drivers\mouclass.sys 53248 bytes (Microsoft Corporation, Mouse Class Driver) 0x9BB35000 C:\Windows\System32\drivers\tcpipreg.sys 53248 bytes (Microsoft Corporation, TCP/IP Registry Compatibility Driver) 0x972F7000 C:\Windows\system32\DRIVERS\usbrpm.sys 53248 bytes (Microsoft Corporation, Windows USB Redirection Policy Manager) 0x8993B000 C:\Windows\System32\drivers\watchdog.sys 53248 bytes (Microsoft Corporation, Watchdog Driver) 0x8F58E000 C:\Windows\System32\drivers\discache.sys 49152 bytes (Microsoft Corporation, System Indexer/Cache Driver) 0x89990000 C:\Windows\system32\DRIVERS\TDI.SYS 49152 bytes (Microsoft Corporation, TDI Wrapper) 0x8990E000 C:\Windows\System32\drivers\vga.sys 49152 bytes (Microsoft Corporation, VGA/Super VGA Video Driver) 0x89071000 C:\Windows\system32\DRIVERS\BATTC.SYS 45056 bytes (Microsoft Corporation, Battery Class Driver) 0x98750000 C:\Windows\System32\Drivers\dump_dumpata.sys 45056 bytes 0x9875B000 C:\Windows\system32\DRIVERS\monitor.sys 45056 bytes (Microsoft Corporation, Monitor Driver) 0x89960000 C:\Windows\System32\Drivers\Msfs.SYS 45056 bytes (Microsoft Corporation, Mailslot driver) 0x96EAE000 C:\Windows\system32\DRIVERS\ndistapi.sys 45056 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver) 0x9026F000 C:\Windows\system32\DRIVERS\usbuhci.sys 45056 bytes (Microsoft Corporation, UHCI USB Miniport Driver) 0x833E0000 C:\Windows\system32\drivers\vdrvroot.sys 45056 bytes (Microsoft Corporation, Virtual Drive Root Enumerator) 0x98766000 C:\Windows\System32\Drivers\dump_msahci.sys 40960 bytes 0x98739000 C:\Windows\System32\drivers\Dxapi.sys 40960 bytes (Microsoft Corporation, DirectX API Driver) 0x89155000 C:\Windows\system32\drivers\msahci.sys 40960 bytes (Microsoft Corporation, MS AHCI 1.0 Standard Driver) 0x8F584000 C:\Windows\system32\drivers\mssmbios.sys 40960 bytes (Microsoft Corporation, System Management BIOS Driver) 0x8F57A000 C:\Windows\system32\drivers\nsiproxy.sys 40960 bytes (Microsoft Corporation, NSI Proxy) 0x96F21000 C:\Windows\system32\DRIVERS\rdpbus.sys 40960 bytes (Microsoft Corporation, Microsoft RDP Bus Device driver) 0x9BA00000 C:\Windows\System32\Drivers\secdrv.SYS 40960 bytes (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., Macrovision SECURITY Driver) 0x963E0000 C:\Windows\System32\drivers\vwifibus.sys 40960 bytes (Microsoft Corporation, Virtual WiFi Bus Driver) 0x8916D000 C:\Windows\system32\drivers\amdxata.sys 36864 bytes (Advanced Micro Devices, Storage Filter Driver) 0x89129000 C:\Windows\system32\drivers\atapi.sys 36864 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver) 0x895EF000 C:\Windows\System32\Drivers\Fs_Rec.sys 36864 bytes (Microsoft Corporation, File System Recognizer Driver) 0x9EF16000 C:\Windows\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver) 0x98D10000 C:\Windows\System32\TSDDD.dll 36864 bytes (Microsoft Corporation, Framebuffer Display Driver) 0x89798000 C:\Windows\system32\drivers\vmstorfl.sys 36864 bytes (Microsoft Corporation, Virtual Storage Filter Driver) 0x88F83000 C:\Windows\System32\Drivers\WMILIB.SYS 36864 bytes (Microsoft Corporation, WMILIB WMI support library Dll) 0x8F470000 C:\Windows\system32\drivers\ws2ifsl.sys 36864 bytes (Microsoft Corporation, Winsock2 IFS Layer) 0x96E6F000 C:\Windows\system32\DRIVERS\ATKACPI.sys 32768 bytes (ATK0100, ATK0100 ACPI Utility) 0x832AF000 C:\Windows\system32\BOOTVID.dll 32768 bytes (Microsoft Corporation, VGA Boot Driver) 0x89069000 C:\Windows\system32\DRIVERS\compbatt.sys 32768 bytes (Microsoft Corporation, Composite Battery Driver) 0x897F8000 C:\Windows\System32\drivers\hwpolicy.sys 32768 bytes (Microsoft Corporation, Hardware Policy Driver) 0x80BCE000 C:\Windows\system32\kdcom.dll 32768 bytes (Microsoft Corporation, Serial Kernel Debugger) 0x833D8000 C:\Windows\system32\drivers\msisadrv.sys 32768 bytes (Microsoft Corporation, ISA Driver) 0x89948000 C:\Windows\System32\DRIVERS\RDPCDD.sys 32768 bytes (Microsoft Corporation, RDP Miniport) 0x89950000 C:\Windows\system32\drivers\rdpencdd.sys 32768 bytes (Microsoft Corporation, RDP Encoder Miniport) 0x89958000 C:\Windows\system32\drivers\rdprefmp.sys 32768 bytes (Microsoft Corporation, RDP Reflector Driver Miniport) 0x897E0000 C:\Windows\System32\Drivers\spldr.sys 32768 bytes (Microsoft Corporation, loader for security processor) 0x898E8000 C:\Windows\System32\Drivers\Beep.SYS 28672 bytes (Microsoft Corporation, BEEP Driver) 0x898E1000 C:\Windows\System32\Drivers\Null.SYS 28672 bytes (Microsoft Corporation, NULL Driver) 0x8F479000 C:\Windows\system32\DRIVERS\wfplwf.sys 28672 bytes (Microsoft Corporation, WFP NDIS 6.20 Lightweight Filter Driver) 0x96E6B000 C:\Windows\system32\DRIVERS\CmBatt.sys 16384 bytes (Microsoft Corporation, Control Method Battery Driver) 0x96F2B000 C:\Windows\system32\drivers\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator) 0x97304000 C:\Windows\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver) 0x8527A1F8 unknown_irp_handler 3592 bytes 0x8635C1F8 unknown_irp_handler 3592 bytes 0x852771F8 unknown_irp_handler 3592 bytes 0x852791F8 unknown_irp_handler 3592 bytes 0x868FA1F8 unknown_irp_handler 3592 bytes 0x852751F8 unknown_irp_handler 3592 bytes 0x869D71F8 unknown_irp_handler 3592 bytes 0x852781F8 unknown_irp_handler 3592 bytes 0x86A64500 unknown_irp_handler 2816 bytes 0x86668500 unknown_irp_handler 2816 bytes 0x8AE32500 unknown_irp_handler 2816 bytes ============================================== >Stealth ============================================== 0x07110000 Hidden Image-->CLI.Aspect.Radeon3D.Graphics.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 102400 bytes 0x080B0000 Hidden Image-->CLI.Aspect.DisplaysOptions.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 102400 bytes 0x00720000 Hidden Image-->CLI.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 110592 bytes 0x06490000 Hidden Image-->CLI.Aspect.MMVideo.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 110592 bytes 0x00440000 Hidden Image-->MOM.Implementation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 118784 bytes 0x03950000 Hidden Image-->MOM.Implementation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 118784 bytes 0x07890000 Hidden Image-->CLI.Component.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 1232896 bytes 0x08750000 Hidden Image-->CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 126976 bytes 0x081D0000 Hidden Image-->CLI.Aspect.DisplaysManager2.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 1306624 bytes 0x04EB0000 Hidden Image-->CLI.Caste.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 159744 bytes 0x079D0000 Hidden Image-->CLI.Aspect.DisplaysManager2.Graphics.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 1716224 bytes 0x08360000 Hidden Image-->CLI.Aspect.TransCode.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 192512 bytes 0x08070000 Hidden Image-->CLI.Aspect.InfoCentre.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 208896 bytes 0x073D0000 Hidden Image-->CLI.Aspect.InfoCentre.Graphics.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 217088 bytes 0x8681EF13 Unknown page with executable code, 237 bytes 0x08310000 Hidden Image-->CLI.Aspect.CrossDisplay.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 282624 bytes 0x014A0000 Hidden Image-->MOM.Foundation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 28672 bytes 0x03890000 Hidden Image-->LOG.Foundation.Implementation.Private.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 28672 bytes 0x00340000 Hidden Image-->MOM.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x00460000 Hidden Image-->LOG.Foundation.Implementation.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x03B40000 Hidden Image-->CLI.Component.Runtime.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x03EF0000 Hidden Image-->AEM.Server.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04060000 Hidden Image-->AEM.Plugin.WinMessages.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x03F40000 Hidden Image-->AEM.Plugin.DPPE.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04050000 Hidden Image-->AEM.Plugin.Hotkeys.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04350000 Hidden Image-->DEM.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04360000 Hidden Image-->DEM.Graphics.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04750000 Hidden Image-->DEM.Graphics.I0709.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04790000 Hidden Image-->AEM.Plugin.GD.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x04FE0000 Hidden Image-->ResourceManagement.Foundation.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x05010000 Hidden Image-->DEM.Graphics.I0804.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x05030000 Hidden Image-->AEM.Actions.CCAA.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06370000 Hidden Image-->DEM.Graphics.I0805.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06200000 Hidden Image-->CLI.Caste.Graphics.Runtime.Shared.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06230000 Hidden Image-->CLI.Aspect.HotkeysHandling.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06250000 Hidden Image-->CLI.Aspect.HotkeysHandling.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x063C0000 Hidden Image-->DEM.Graphics.I0912.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06440000 Hidden Image-->DEM.Graphics.I0706.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06870000 Hidden Image-->DEM.Graphics.I0906.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x068B0000 Hidden Image-->CLI.Aspect.Welcome.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x068C0000 Hidden Image-->DEM.Graphics.I0712.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x068E0000 Hidden Image-->DEM.Graphics.I0812.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06F50000 Hidden Image-->AEM.Plugin.REG.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06A20000 Hidden Image-->atixclib.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06A40000 Hidden Image-->APM.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06DD0000 Hidden Image-->CLI.Component.Runtime.Extension.EEU.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06E10000 Hidden Image-->CLI.Component.Client.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06E40000 Hidden Image-->AEM.Plugin.EEU.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06E30000 Hidden Image-->CLI.Component.Wizard.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x06F80000 Hidden Image-->CLI.Caste.Graphics.Wizard.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x072C0000 Hidden Image-->CLI.Component.Dashboard.Shared.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes 0x07680000 Hidden Image-->CLI.Caste.Graphics.Dashboard.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 28672 bytes WARNING: File locked for read access [C:\Windows\system32\drivers\sptd.sys] 0x084A0000 Hidden Image-->CLI.Aspect.Radeon3D.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 364544 bytes 0x03C00000 Hidden Image-->NEWAEM.Foundation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 36864 bytes 0x03990000 Hidden Image-->CLI.Foundation.XManifest.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x03DE0000 Hidden Image-->NEWAEM.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x06240000 Hidden Image-->CLI.Aspect.CustomFormats.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x063B0000 Hidden Image-->CLI.Aspect.DisplaysColour2.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x064D0000 Hidden Image-->CLI.Aspect.TransCode.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x06890000 Hidden Image-->CLI.Aspect.DisplaysOptions.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x06850000 Hidden Image-->CLI.Aspect.PowerPlayDPPE.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x06840000 Hidden Image-->CLI.Aspect.Welcome.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x06F60000 Hidden Image-->CLI.Component.Wizard.Shared.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x072B0000 Hidden Image-->CLI.Component.Dashboard.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 36864 bytes 0x04E10000 Hidden Image-->CLI.Caste.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 389120 bytes 0x070A0000 Hidden Image-->CLI.Component.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 413696 bytes 0x07130000 Hidden Image-->CLI.Aspect.MMVideo.Graphics.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 421888 bytes 0x00610000 Hidden Image-->LOG.Foundation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 45056 bytes 0x00640000 Hidden Image-->LOG.Foundation.Private.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 45056 bytes 0x03BF0000 Hidden Image-->CCC.Implementation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 45056 bytes 0x00330000 Hidden Image-->LOG.Foundation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x00310000 Hidden Image-->CCC.Implementation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x008B0000 Hidden Image-->LOG.Foundation.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x03CA0000 Hidden Image-->ATICCCom.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x063D0000 Hidden Image-->CLI.Aspect.DeviceLCD.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x06430000 Hidden Image-->CLI.Aspect.DeviceLCD.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 45056 bytes 0x03A30000 Hidden Image-->CLI.Foundation.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x03CD0000 Hidden Image-->AEM.Server.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x03F20000 Hidden Image-->AEM.Plugin.Source.Kit.Server.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x04340000 Hidden Image-->DEM.Graphics.I0601.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06220000 Hidden Image-->CLI.Aspect.DeviceCV.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06360000 Hidden Image-->CLI.Aspect.DisplaysColour2.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06390000 Hidden Image-->CLI.Aspect.DeviceCRT.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06380000 Hidden Image-->CLI.Aspect.DisplaysOptions.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x064C0000 Hidden Image-->CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x068A0000 Hidden Image-->CLI.Aspect.TransCode.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06E00000 Hidden Image-->CLI.Component.Client.Shared.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x06F70000 Hidden Image-->CLI.Caste.Graphics.Wizard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 53248 bytes 0x08500000 Hidden Image-->CLI.Aspect.DisplaysColour2.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 585728 bytes 0x9EECDF2E Unknown thread object [ ETHREAD 0x9D4BC460 ] , 600 bytes 0x86769DA4 Unknown page with executable code, 604 bytes 0x03A20000 Hidden Image-->CLI.Component.Runtime.Shared.Private.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 61440 bytes 0x06450000 Hidden Image-->CLI.Aspect.DeviceDFP.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 61440 bytes 0x064B0000 Hidden Image-->CLI.Aspect.DeviceProperty.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 61440 bytes 0x06880000 Hidden Image-->CLI.Aspect.DeviceCRT.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 61440 bytes 0x03A00000 Hidden Image-->CLI.Component.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 69632 bytes 0x03970000 Hidden Image-->CLI.Component.SkinFactory.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 69632 bytes 0x06460000 Hidden Image-->CLI.Aspect.Radeon3D.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 69632 bytes 0x06DA0000 Hidden Image-->APM.Server.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 69632 bytes 0x86771D46 Unknown page with executable code, 698 bytes 0x01480000 Hidden Image-->LOG.Foundation.Implementation.DLL [ EPROCESS 0x9D4378A0 ] PID: 2336, 77824 bytes 0x00740000 Hidden Image-->LOG.Foundation.Implementation.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x05390000 Hidden Image-->CLI.Aspect.DeviceCV.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x063E0000 Hidden Image-->CLI.Aspect.DeviceDFP.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x06410000 Hidden Image-->CLI.Aspect.Radeon3D.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x066E0000 Hidden Image-->CLI.Aspect.MMVideo.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x06700000 Hidden Image-->CLI.Aspect.DeviceTV.Graphics.Shared.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x076A0000 Hidden Image-->CLI.Aspect.Welcome.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 77824 bytes 0x03CB0000 Hidden Image-->ADL.Foundation.dll [ EPROCESS 0xA12B8458 ] PID: 3020, 86016 bytes 0x053B0000 Hidden Image-->CLI.Aspect.DeviceTV.Graphics.Runtime.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 86016 bytes 0x07660000 Hidden Image-->CLI.Caste.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 86016 bytes 0x08670000 Hidden Image-->CLI.Aspect.MMVideo.Graphics.Dashboard.DLL [ EPROCESS 0xA12B8458 ] PID: 3020, 864256 bytes ============================================== >Files ============================================== ============================================== >Hooks ============================================== [1956]ekrn.exe-->kernel32.dll-->SetUnhandledExceptionFilter, Type: Inline - PushRet 0x76C33D01-->00000000 [unknown_code_page] [2428]msnmsgr.exe-->advapi32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77C617B8-->00000000 [apphelp.dll] [2428]msnmsgr.exe-->gdi32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77B611BC-->00000000 [apphelp.dll] [2428]msnmsgr.exe-->user32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77D114E0-->00000000 [apphelp.dll] [2428]msnmsgr.exe-->wininet.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x630013FC-->00000000 [apphelp.dll] [2636]iexplore.exe-->user32.dll-->DialogBoxIndirectParamA, Type: Inline - RelativeJump 0x7669D274-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->DialogBoxIndirectParamW, Type: Inline - RelativeJump 0x76683B7F-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->DialogBoxParamA, Type: Inline - RelativeJump 0x7669CF42-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->DialogBoxParamW, Type: Inline - RelativeJump 0x76673B9B-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->EnableWindow, Type: Inline - RelativeJump 0x76658D02-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->MessageBoxExA, Type: Inline - RelativeJump 0x766AE9C9-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->MessageBoxExW, Type: Inline - RelativeJump 0x766AE9ED-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->MessageBoxIndirectA, Type: Inline - RelativeJump 0x766AE869-->00000000 [ieframe.dll] [2636]iexplore.exe-->user32.dll-->MessageBoxIndirectW, Type: Inline - RelativeJump 0x766AE963-->00000000 [ieframe.dll] [3208]iexplore.exe-->kernel32.dll-->CreateThread, Type: Inline - RelativeJump 0x76C3375D-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->CallNextHookEx, Type: Inline - RelativeJump 0x7665ABE1-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->CreateWindowExA, Type: Inline - RelativeJump 0x7665BF40-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->CreateWindowExW, Type: Inline - RelativeJump 0x7665EC7C-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - RelativeJump 0x7665BB1C-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - SEH 0x7665BB21 [unknown_code_page] [3208]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - SEH 0x7665BB22 [unknown_code_page] [3208]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - RelativeJump 0x7666507D-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - SEH 0x76665082 [unknown_code_page] [3208]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - SEH 0x76665083 [unknown_code_page] [3208]iexplore.exe-->user32.dll-->DialogBoxIndirectParamA, Type: Inline - RelativeJump 0x7669D274-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DialogBoxIndirectParamW, Type: Inline - RelativeJump 0x76683B7F-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DialogBoxParamA, Type: Inline - RelativeJump 0x7669CF42-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->DialogBoxParamW, Type: Inline - RelativeJump 0x76673B9B-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->EnableWindow, Type: Inline - RelativeJump 0x76658D02-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->MessageBoxExA, Type: Inline - RelativeJump 0x766AE9C9-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->MessageBoxExW, Type: Inline - RelativeJump 0x766AE9ED-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->MessageBoxIndirectA, Type: Inline - RelativeJump 0x766AE869-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->MessageBoxIndirectW, Type: Inline - RelativeJump 0x766AE963-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x7665E30C-->00000000 [ieframe.dll] [3208]iexplore.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x7665ADF9-->00000000 [ieframe.dll] [3988]iexplore.exe-->kernel32.dll-->CreateThread, Type: Inline - RelativeJump 0x76C3375D-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->CallNextHookEx, Type: Inline - RelativeJump 0x7665ABE1-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->CreateWindowExA, Type: Inline - RelativeJump 0x7665BF40-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->CreateWindowExW, Type: Inline - RelativeJump 0x7665EC7C-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - RelativeJump 0x7665BB1C-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - SEH 0x7665BB21 [unknown_code_page] [3988]iexplore.exe-->user32.dll-->DefWindowProcA, Type: Inline - SEH 0x7665BB22 [unknown_code_page] [3988]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - RelativeJump 0x7666507D-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - SEH 0x76665082 [unknown_code_page] [3988]iexplore.exe-->user32.dll-->DefWindowProcW, Type: Inline - SEH 0x76665083 [unknown_code_page] [3988]iexplore.exe-->user32.dll-->DialogBoxIndirectParamA, Type: Inline - RelativeJump 0x7669D274-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DialogBoxIndirectParamW, Type: Inline - RelativeJump 0x76683B7F-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DialogBoxParamA, Type: Inline - RelativeJump 0x7669CF42-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->DialogBoxParamW, Type: Inline - RelativeJump 0x76673B9B-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->EnableWindow, Type: Inline - RelativeJump 0x76658D02-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->MessageBoxExA, Type: Inline - RelativeJump 0x766AE9C9-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->MessageBoxExW, Type: Inline - RelativeJump 0x766AE9ED-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->MessageBoxIndirectA, Type: Inline - RelativeJump 0x766AE869-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->MessageBoxIndirectW, Type: Inline - RelativeJump 0x766AE963-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x7665E30C-->00000000 [ieframe.dll] [3988]iexplore.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x7665ADF9-->00000000 [ieframe.dll] Extras.Txt OTL.Txt
  13. Здравейте,вчера мой приятел лепна това win 7 home security 2011,много неприятна история ,посках да го деинсталиран но греда не намерих ехе на въпросната програма.Порових се в нета и разбрах че това вирус и по точно тази статия http://www.2-viruses.com/remove-win-7-home-security-2011 свалих тази програма Malwarebytes' Anti-Malware и сканирах с нея тя изчисти донякаде поне вируса не стартираше с операционната система,после пуснахме подробно сканиране и имаше още зарази.приятеля ми доста е притеснен понеже използва пейпал и алертпей получава пари,праща и го е страх за сметките му.Чакам инструкции как да изчистим системата.Благодаря
  14. icotonev Можете да затворите темата проблема е решен за което Благодаря отново системата работи отново бързо и проблема с постоянното запълване на рам го няма
  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.