Премини към съдържанието

leno

Потребител
  • Публикации

    8
  • Регистрация

  • Последно онлайн

Харесвания

3 Неутрална репутация

Всичко за leno

  • Титла
    Новобранец
  1. Благодаря ви. Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:23-07-2014 01Ran by Leno at 2014-07-23 22:09:47 Run:3Running from C:UsersLenoDesktopBoot Mode: Normal ============================================== Content of fixlist:*****************startDeleteQuarantine:end***************** "C:FRSTQuarantine" => removed successfully. ==== End of Fixlog ====стъпка 2:# DelFix v10.7 - Logfile created 23/07/2014 at 22:10:56# Updated 27/04/2014 by Xplode# Username : Leno - LENO-PC# Operating System : Windows 7 Ultimate (32 bits) ~ Removing disinfection tools ... Deleted : C:FRSTDeleted : C:AdwCleanerDeleted : C:UsersLenoDesktopFRST-OlderVersionDeleted : C:UsersLenoDesktopAddition.txtDeleted : C:UsersLenoDesktopFixlog.txtDeleted : C:UsersLenoDesktopFRST.exeDeleted : C:UsersLenoDesktopFRST.txtDeleted : C:UsersLenoDesktopJRT.txtDeleted : C:UsersLenoDesktopShortcut.txtDeleted : C:UsersLenoDownloadsadwcleaner_3.214.exeDeleted : C:UsersLenoDownloadsesetsmartinstaller_enu.exeDeleted : C:UsersLenoDownloadsJRT.exeDeleted : C:UsersLenoDownloadsSecurityCheck.exeDeleted : HKLMSOFTWAREAdwCleaner ########## - EOF - ##########Имам един последен въпрос. Имам и една настолна машина която се нуждае от Вашето внимание и компетентна помощ. Трябва ли да създам нова тема, или може да пишем в тази. Благодаря.
  2. Системата ми е много по добре отпреди . Работи по - леко, направо префектно, за което съм Ви безкрайно благодарен. Поздрави
  3. Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:21-07-2014Ran by Leno at 2014-07-22 19:35:47 Run:2Running from C:UsersLenoDesktopBoot Mode: Normal ============================================== Content of fixlist:*****************startReg: reg delete "HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASAPI32" /fReg: reg delete "HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASMANCS" /fReg: reg delete "HKU.DEFAULTSoftwareAppDataLowSoftwareConduit" /fReg: reg delete "HKU.DEFAULTSoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E}" /fReg: reg delete "HKUS-1-5-18SoftwareAppDataLowSoftwareConduit" /fReg: reg delete "HKUS-1-5-18SoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E}" /fE:downloadRevealer_Free_Edition_1.2.zipE:instaldialupass2.exeE:instaldialupass2.zipE:instalRevealer_Free_Edition_1.2.zipend***************** ========= reg delete "HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASAPI32" /f ========= ЋЇҐа жЁпв § ўкаиЁ гбЇҐи­®. ========= End of Reg: ========= ========= reg delete "HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASMANCS" /f ========= ЋЇҐа жЁпв § ўкаиЁ гбЇҐи­®. ========= End of Reg: ========= ========= reg delete "HKU.DEFAULTSoftwareAppDataLowSoftwareConduit" /f ========= ЋЇҐа жЁпв § ўкаиЁ гбЇҐи­®. ========= End of Reg: ========= ========= reg delete "HKU.DEFAULTSoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E}" /f ========= ЋЇҐа жЁпв § ўкаиЁ гбЇҐи­®. ========= End of Reg: ========= ========= reg delete "HKUS-1-5-18SoftwareAppDataLowSoftwareConduit" /f ========= ERROR: The system was unable to find the specified registry key or value. ========= End of Reg: ========= ========= reg delete "HKUS-1-5-18SoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E}" /f ========= ERROR: The system was unable to find the specified registry key or value. ========= End of Reg: ========= E:downloadRevealer_Free_Edition_1.2.zip => Moved successfully.E:instaldialupass2.exe => Moved successfully.E:instaldialupass2.zip => Moved successfully.E:instalRevealer_Free_Edition_1.2.zip => Moved successfully. ==== End of Fixlog ====
  4. Да, логовете са отдавна готови, но все не ми остава време да ги публикувам, за което се извинявам. Прикачам логовете: Хитмен ПРО: HitmanPro 3.7.9.220www.hitmanpro.com Computer name . . . . : LENO-PC Windows . . . . . . . : 6.1.0.7600.X86/2 User name . . . . . . : Leno-PCLeno UAC . . . . . . . . . : Disabled License . . . . . . . : Free Scan date . . . . . . : 2014-07-15 12:27:58 Scan mode . . . . . . : Normal Scan duration . . . . : 3m 5s Disk access mode . . : Direct disk access (SRB) Cloud . . . . . . . . : Internet Reboot . . . . . . . : No Threats . . . . . . . : 0 Traces . . . . . . . : 140 Objects scanned . . . : 919 843 Files scanned . . . . : 34 036 Remnants scanned . . : 186 648 files / 699 159 keys Miniport ____________________________________________________________________ Primary DriverObject . . . : 86526508 DriverName . . . . : Driveratapi DriverPath . . . . : SystemRootsystem32DRIVERSatapi.sys StartIo . . . . . : 00000000 +0 IRP_MJ_SCSI . . . : 857B61F8 +0 Solution DriverObject . . . : 86526508 DriverName . . . . : Driveratapi DriverPath . . . . : SystemRootsystem32DRIVERSatapi.sys StartIo . . . . . : 00000000 +0 IRP_MJ_SCSI . . . : 8B03B44E SystemRootsystem32DRIVERSataport.SYS+25678 Suspicious files ____________________________________________________________ C:UsersLenoAppDataLocalPunkBusterMOHpbpbcl.dll Size . . . . . . . : 895 844 bytes Age . . . . . . . : 1378.6 days (2010-10-05 22:16:20) Entropy . . . . . : 7.6 SHA-256 . . . . . : FC3B4CA8E757E4C9EE740E84419DDB76AE60D20711C49C993B74FCCFFB58F2F9 Fuzzy . . . . . . : 29.0 The .reloc (relocation) section in this program contains code. This is an indication of malware infection. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs. Authors name is missing in version info. This is not common to most programs. Version control is missing. This file is probably created by an individual. This is not typical for most programs. Program contains PE structure anomalies. This is not typical for most programs. C:UsersLenoAppDataLocalPunkBusterMOHpbPnkBstrK.sys Size . . . . . . . : 139 832 bytes Age . . . . . . . : 1378.6 days (2010-10-05 22:16:57) Entropy . . . . . : 7.8 SHA-256 . . . . . : 4DA51D1D0A2ECA3357EE2FF80015937CA648D8507F04CA06DE47D59601042F53 RSA Key Size . . . : 1024 Authenticode . . . : Valid Fuzzy . . . . . . : 22.0 The .reloc (relocation) section in this program contains code. This is an indication of malware infection. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs. Authors name is missing in version info. This is not common to most programs. Version control is missing. This file is probably created by an individual. This is not typical for most programs. Program contains PE structure anomalies. This is not typical for most programs. The file is a device driver. Device drivers run as trusted (highly privileged) code. Program is code signed with a valid Authenticode certificate. C:UsersLenoDesktopFRST-OlderVersionFRST.exe Size . . . . . . . : 1 074 688 bytes Age . . . . . . . : 10.9 days (2014-07-04 14:24:43) Entropy . . . . . : 8.0 SHA-256 . . . . . : 47D5851730A71982AB47D85E87786984C1B6531E67AEB47E28EE098F083D3602 Needs elevation . : Yes Source URL . . . . : hxxp://download.bleepingcomputer.com/dl/49e46497ffd10c46dd32d1469690da7d/53b98a91/windows/security/security-utilities/f/farbar-recovery-scan-tool/32/FRST.exe Fuzzy . . . . . . : 26.0 Program has no publisher information but prompts the user for permission elevation. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs. The file is downloaded from the Internet to this computer. Authors name is missing in version info. This is not common to most programs. Version control is missing. This file is probably created by an individual. This is not typical for most programs. Time indicates that the file appeared recently on this computer. C:UsersLenoDesktopFRST.exe Size . . . . . . . : 1 075 200 bytes Age . . . . . . . : 2.2 days (2014-07-13 08:30:10) Entropy . . . . . : 8.0 SHA-256 . . . . . : B1FE656FC65E3C8A6C73B8C87A8BB15CAAA3E4320D81F839C384DE257E541AEF Needs elevation . : Yes Source URL . . . . : hxxp://download.bleepingcomputer.com/dl/dd14d7f491c85c77a7bcd79fae7f47c3/53c21960/windows/security/security-utilities/f/farbar-recovery-scan-tool/32/FRST.exe Fuzzy . . . . . . : 27.0 Program has no publisher information but prompts the user for permission elevation. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs. The file is downloaded from the Internet to this computer. Authors name is missing in version info. This is not common to most programs. Version control is missing. This file is probably created by an individual. This is not typical for most programs. Time indicates that the file appeared recently on this computer. Forensic Cluster -1.2s C:WindowsPrefetchRUNDLL32.EXE-1304AE86.pf -0.4s C:UsersLenoAppDataRoamingMicrosoftWindowsCookiesleno@bleepingcomputer[2].txt -0.4s C:UsersLenoAppDataRoamingMicrosoftWindowsCookiesleno@www.bleepingcomputer[2].txt -0.0s C:UsersLenoAppDataLocalMicrosoftWindowsTemporary Internet FilesContent.IE5SSRSJSYVFRST[1].exe 0.0s C:UsersLenoDesktopFRST.exe 8.1s C:WindowsPrefetchFRST.EXE-8060C780.pf 13.3s C:UsersLenoAppDataLocalMicrosoftWindowsTemporary Internet FilesContent.IE5O2HI72KYup32[1] 15.4s C:FRSTLogsct 15.4s C:UsersLenoDesktopFixlog.txt Potential Unwanted Programs _________________________________________________ HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASAPI32 (iMesh) HKLMSOFTWAREMicrosoftTracingiMeshMediaBar_RASMANCS (iMesh) HKU.DEFAULTSoftwareAppDataLowSoftwareConduit (Conduit) HKU.DEFAULTSoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E} (iMesh) HKUS-1-5-18SoftwareAppDataLowSoftwareConduit (Conduit) HKUS-1-5-18SoftwareMicrosoftWindowsCurrentVersionExtSettings{474597C5-AB09-49D6-A4D5-2E8D7341384E} (iMesh) Cookies _____________________________________________________________________ C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:112.2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:247realmedia.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.360yield.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.auditude.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.bg.doubleclick.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.propellerads.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.sbb.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ad.yieldmanager.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.3bay.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.adk2.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.advertig.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.betfair.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.betweendigital.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.bigmage.biz C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.click-now.co C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.clipconverter.cc C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.cpxcenter.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.creative-serving.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.domainbg.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.fashionsupreme.co.uk C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.garga.biz C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.ibtracking.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.inews.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.kaldata.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.lzjl.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.mail3x.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.manager.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.p161.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.pik.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.pimdesign.org C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.playboy.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.pornerbros.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.pubmatic.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.stickyadstv.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.trkclk.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.tv7.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.videofen.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.videonews.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.yahoo.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.zamunda.se C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ads.zonaforhome.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:adserver.abv.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:adtech.de C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:adtechus.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:adultfriendfinder.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:advertising.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:advertstream.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:anysex.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:at.atwola.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:atdmt.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:banners.adultfriendfinder.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:bs.serving-sys.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:burstnet.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:c.atdmt.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:c1.atdmt.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:casalemedia.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:chitika.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:clickbank.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:clicksor.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:cnt.winporn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:collective-media.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:delivery.trafficforce.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:diff3.smartadserver.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:doubleclick.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:engine.phn.doublepimp.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ero-advertising.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:exoclick.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:fastclick.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:getclicky.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:googleadservices.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:hotlog.ru C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:img.pornoid.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:in.getclicky.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ixxx.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:izifuck.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:kontera.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:livejasmin.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:media6degrees.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:mediaplex.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:mm.chitika.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:montblanc.122.2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:msnbc.112.2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:mswmwpapolloprod.122.2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pool-eu-ie.creative-serving.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:porn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pornerbros.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pornhub.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pornoid.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pornsharia.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:pornsharing.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:porntubevidz.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:premiumtv.122.2o7.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:questionmarket.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:realgfporn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:revsci.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:ru4.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:serving-sys.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:sex.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:sexad.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:sexpartnior.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:sexyloca.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:smartadserver.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:specificclick.net C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:spylog.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:stat.dealtime.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:statcounter.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:static.getclicky.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:stats.activtrades.bg C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:stats.ebay.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:statse.webtrendslive.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:tacoda.at.atwola.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:track.hubrus.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:tradedoubler.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:tribalfusion.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:winporn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.flirt4free.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.googleadservices.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.ixxx.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.porn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.pornerbros.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.pornoid.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.porntubevidz.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.realgfporn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.sexpartnior.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:www.winporn.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:xiti.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:xxxylive.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:xxxymovies.com C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultCookies:yadro.ru Есет: ESETSmartInstaller@High as downloader log:all ok# product=EOS# version=8# OnlineScannerApp.exe=1.0.0.1# OnlineScanner.ocx=1.0.0.7623# api_version=3.0.2# EOSSerial=be98dc74d9c46041ba971c7f7b870916# engine=19181# end=finished# remove_checked=false# archives_checked=true# unwanted_checked=false# unsafe_checked=true# antistealth_checked=true# utc_time=2014-07-15 11:01:44# local_time=2014-07-15 02:01:44 )# country="Bulgaria"# lang=1033# osver=6.1.7600 NT # compatibility_mode_1='avast! Antivirus'# compatibility_mode=783 16777213 100 97 608957 169846194 0 0# compatibility_mode_1=''# compatibility_mode=5893 16776574 100 94 110033308 157053295 0 0# scanned=120602# found=5# cleaned=0# scan_time=5016sh=3AEF532A0211CE7869F0EB51E940D9E0C7CAE321 ft=1 fh=c7560653d3ee2314 vn="a variant of Win32/Adware.Yontoo.B application" ac=I fn="C:AdwCleanerQuarantineCProgramDataTarma Installer{361E80BE-388B-4270-BF54-A10C2B756504}_Setupx.dll.vir"sh=BD569915568579B5E0DFBCA15BFD2DCE663B2217 ft=0 fh=0000000000000000 vn="a variant of Generik.SBILAK trojan" ac=I fn="E:downloadRevealer_Free_Edition_1.2.zip"sh=5650557ADDDFF0B7841ACDFF094587EDE830193D ft=1 fh=485a72e0a4add69d vn="Win32/PSWTool.Dialupass.245 potentially unsafe application" ac=I fn="E:instaldialupass2.exe"sh=3BE53624E2EC0AA97D41E1C1270A5E2F868BDA59 ft=0 fh=0000000000000000 vn="Win32/PSWTool.Dialupass.245 potentially unsafe application" ac=I fn="E:instaldialupass2.zip"sh=BD569915568579B5E0DFBCA15BFD2DCE663B2217 ft=0 fh=0000000000000000 vn="a variant of Generik.SBILAK trojan" ac=I fn="E:instalRevealer_Free_Edition_1.2.zip"
  5. Ето резултата от проверката на Security Check : Results of screen317's Security Check version 0.99.85 Windows 7 x86 (UAC is disabled!) Out of date service pack!! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Windows Firewall Disabled! avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 14.0.0.145 Adobe Reader 9 Adobe Reader out of Date! Mozilla Firefox 27.0.1 Firefox out of Date! Google Chrome 34.0.1847.131 Google Chrome 35.0.1916.153 Google Chrome plugins... ````````Process Check: objlist.exe by Laurent```````` Alwil Software Avast5 AvastSvc.exe Alwil Software Avast5 AvastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 3% ````````````````````End of Log`````````````````````` Резултата от FRST:Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:11-07-2014Ran by Leno at 2014-07-13 08:30:25 Run:1Running from C:UsersLenoDesktopBoot Mode: Normal ============================================== Content of fixlist:*****************startHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: H - H:AutoInstall.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: I - I:AutoInstall.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {35e9d9e0-49d1-11e1-9e1e-90fba6a34ca1} - H:AutoRun.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {620b6db1-afac-11df-b668-90fba6a34ca1} - G:HyperFighters_EU.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {67c04f23-3181-11e1-a11b-00158315a310} - H:AutoRun.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {67c04f36-3181-11e1-a11b-00158315a310} - I:AutoRun.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {67c04fb1-3181-11e1-a11b-00158315a310} - H:AutoRun.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {8c8615ef-3a14-11e1-8298-00158315a310} - J:AutoInstall.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {8c861626-3a14-11e1-8298-00158315a310} - I:AutoInstall.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {97e0ba3f-e08e-11e0-81f0-00158315a310} - H:USBAutoRun.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {a40c121b-a416-11e1-9c5f-90fba6a34ca1} - H:Setup.exeHKUS-1-5-21-3191032625-2416224611-3908028942-1000...MountPoints2: {ff51ecbc-c866-11e1-8678-90fba6a34ca1} - I:Startme.exeURLSearchHook: HKCU - (No Name) - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - No FileBHO: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No FileToolbar: HKLM - No Name - !{687578b9-7132-4a7a-80e4-30ee31099e03} - No FileToolbar: HKLM - No Name - !{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No FileToolbar: HKCU - No Name - {E5A1E26F-0D1D-4307-868F-FBD9A374AB54} - No FileC:UsersLenoAppDataLocalTempASCSetup.exeC:UsersLenoAppDataLocalTempQuarantine.exeC:UsersLenoAppDataLocalTemptbuTor.dllC:UsersLenoAppDataLocalTemputt3EF4.tmp.exeAlternateDataStreams: C:ProgramDataTEMP:1CE11B51AlternateDataStreams: C:ProgramDataTEMP:D1B5B4F1end***************** 'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2S-1-5-21-3191032625-2416224611-3908028942-1000'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2S-1-5-21-3191032625-2416224611-3908028942-1000'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{35e9d9e0-49d1-11e1-9e1e-90fba6a34ca1}' => Key deleted successfully.'HKCRCLSID{35e9d9e0-49d1-11e1-9e1e-90fba6a34ca1}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{620b6db1-afac-11df-b668-90fba6a34ca1}' => Key deleted successfully.'HKCRCLSID{620b6db1-afac-11df-b668-90fba6a34ca1}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{67c04f23-3181-11e1-a11b-00158315a310}' => Key deleted successfully.'HKCRCLSID{67c04f23-3181-11e1-a11b-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{67c04f36-3181-11e1-a11b-00158315a310}' => Key deleted successfully.'HKCRCLSID{67c04f36-3181-11e1-a11b-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{67c04fb1-3181-11e1-a11b-00158315a310}' => Key deleted successfully.'HKCRCLSID{67c04fb1-3181-11e1-a11b-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{8c8615ef-3a14-11e1-8298-00158315a310}' => Key deleted successfully.'HKCRCLSID{8c8615ef-3a14-11e1-8298-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{8c861626-3a14-11e1-8298-00158315a310}' => Key deleted successfully.'HKCRCLSID{8c861626-3a14-11e1-8298-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{97e0ba3f-e08e-11e0-81f0-00158315a310}' => Key deleted successfully.'HKCRCLSID{97e0ba3f-e08e-11e0-81f0-00158315a310}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{a40c121b-a416-11e1-9c5f-90fba6a34ca1}' => Key deleted successfully.'HKCRCLSID{a40c121b-a416-11e1-9c5f-90fba6a34ca1}'=> Key not found.'HKUS-1-5-21-3191032625-2416224611-3908028942-1000SOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{ff51ecbc-c866-11e1-8678-90fba6a34ca1}' => Key deleted successfully.'HKCRCLSID{ff51ecbc-c866-11e1-8678-90fba6a34ca1}'=> Key not found.HKCUSoftwareMicrosoftInternet ExplorerURLSearchHooks{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} => value deleted successfully.'HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}' => Key deleted successfully.'HKCRCLSID{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}'=> Key not found.HKLMSOFTWAREMicrosoftInternet ExplorerToolbar!{687578b9-7132-4a7a-80e4-30ee31099e03} => value deleted successfully.'HKCRCLSID!{687578b9-7132-4a7a-80e4-30ee31099e03}'=> Key not found.HKLMSOFTWAREMicrosoftInternet ExplorerToolbar!{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} => value deleted successfully.'HKCRCLSID!{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}'=> Key not found.HKCUSoftwareMicrosoftInternet ExplorerToolbarWebBrowser{E5A1E26F-0D1D-4307-868F-FBD9A374AB54} => value deleted successfully.'HKCRCLSID{E5A1E26F-0D1D-4307-868F-FBD9A374AB54}'=> Key not found.C:UsersLenoAppDataLocalTempASCSetup.exe => Moved successfully.C:UsersLenoAppDataLocalTempQuarantine.exe => Moved successfully.C:UsersLenoAppDataLocalTemptbuTor.dll => Moved successfully.C:UsersLenoAppDataLocalTemputt3EF4.tmp.exe => Moved successfully.C:ProgramDataTEMP => ":1CE11B51" ADS removed successfully.C:ProgramDataTEMP => ":D1B5B4F1" ADS removed successfully. ==== End of Fixlog ====
  6. # AdwCleaner v3.214 - Създаден отчет 07/07/2014 на 21:28:15# Актуализиран 29/06/2014 от Xplode# Операционна система : Windows 7 Ultimate (32 bits)# Потребителско име : Leno - LENO-PC# Стартиран от : C:UsersLenoDownloadsadwcleaner_3.214.exe# Настройка : Почистване ***** [ Услуги ] ***** ***** [ Файлове / Папки ] ***** ***** [ Преки пътища ] ***** ***** [ Системен регистър ] ***** ***** [ Браузъри ] ***** - Internet Explorer v8.0.7600.16700 - Mozilla Firefox v26.0 (bg) [ Файл : C:UsersLenoAppDataRoamingMozillaFirefoxProfilesxlbmx523.defaultprefs.js ] - Google Chrome v [ Файл : C:UsersLenoAppDataLocalGoogleChromeUser DataDefaultpreferences ] ************************* AdwCleaner[R1].txt - [48034 octets] - [06/07/2014 21:31:19]AdwCleaner[R2].txt - [1021 octets] - [07/07/2014 21:26:16]AdwCleaner[s0].txt - [50882 octets] - [06/07/2014 21:32:14]AdwCleaner[s1].txt - [944 octets] - [07/07/2014 21:28:15] ########## EOF - C:AdwCleanerAdwCleaner[s1].txt - [1003 octets] ##########
  • Разглеждащи в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.