Премини към съдържанието

marinious

Потребител
  • Публикации

    19
  • Регистрация

  • Последно онлайн

Харесвания

0 Неутрална репутация

Всичко за marinious

  • Титла
    Потребител
  1. abnow.com отново...

    Абсолютно от началото до края. Когато сканирах за премахването на Аваст обаче се махнаха доста регистри, но останаха около 10, които не искат да се махнат.
  2. abnow.com отново...

    Заповядайте. Извинявам се, че го прикачам като файл, но беше прекалено дълго за да го сложа като текст. ComboFix.txt
  3. abnow.com отново...

    Сърдечно благодаря! Приятна вечер!
  4. abnow.com отново...

    Най-накрая успях да го подкарам този комбофикс ComboFix.txt
  5. abnow.com отново...

    All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ deleted successfully. C:\Program Files (x86)\vShare\vshare_toolbar.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{043C5167-00BB-4324-AF7E-62013FAEDACF} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. File C:\Program Files (x86)\vShare\vshare_toolbar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully. Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found. Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found. Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_USERS\S-1-5-21-3004673125-4064137327-4027703221-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{043C5167-00BB-4324-AF7E-62013FAEDACF} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. File C:\Program Files (x86)\vShare\vshare_toolbar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SNM deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0304913d-3cbd-11df-a666-001f16caae36}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0304913d-3cbd-11df-a666-001f16caae36}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0304913d-3cbd-11df-a666-001f16caae36}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0304913d-3cbd-11df-a666-001f16caae36}\ not found. File H:\Installer.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1c241c6-f1d2-11de-a3bf-001f16caae36}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e1c241c6-f1d2-11de-a3bf-001f16caae36}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1c241c6-f1d2-11de-a3bf-001f16caae36}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e1c241c6-f1d2-11de-a3bf-001f16caae36}\ not found. File F:\Autorun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4f568f2-0f73-11df-9652-001f16caae36}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4f568f2-0f73-11df-9652-001f16caae36}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4f568f2-0f73-11df-9652-001f16caae36}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4f568f2-0f73-11df-9652-001f16caae36}\ not found. File G:\autorun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f6f42014-e96b-11de-8b1c-001f16caae36}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f6f42014-e96b-11de-8b1c-001f16caae36}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f6f42014-e96b-11de-8b1c-001f16caae36}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f6f42014-e96b-11de-8b1c-001f16caae36}\ not found. File G:\autoplay.exe not found. C:\Windows\SysNative\dds_log_trash.cmd moved successfully. C:\Windows\SysNative\dds_log_ad13.cmd moved successfully. C:\TDSSKiller.2.7.19.0_06.03.2012_01.14.15_log.txt moved successfully. C:\TDSSKiller.2.7.20.0_14.03.2012_19.11.32_log.txt moved successfully. C:\Windows\assembly\tmp\loader.tlb moved successfully. C:\Windows\assembly\tmp\{1B372133-BFFA-4dba-9CCF-5474BED6A9F6} moved successfully. C:\Windows\assembly\tmp\U\00000001.@ moved successfully. C:\Windows\assembly\tmp\U\000000c0.@ moved successfully. C:\Windows\assembly\tmp\U\000000cb.@ moved successfully. C:\Windows\assembly\tmp\U\000000cf.@ moved successfully. C:\Windows\assembly\tmp\U\80000000.@ moved successfully. C:\Windows\assembly\tmp\U\800000c0.@ moved successfully. C:\Windows\assembly\tmp\U\800000cb.@ moved successfully. C:\Windows\assembly\tmp\U\800000cf.@ moved successfully. C:\Windows\assembly\GAC_32\Desktop.ini moved successfully. C:\Windows\assembly\GAC_64\Desktop.ini moved successfully. ADS C:\ProgramData:$SS_DESCRIPTOR_MVPUV9PFSVXJKX69UK1CWPP0DTVNYKM1UVXPJCEPP4DMJ3K1XYE7LRJEM53EPPJCFLPXB564BPLBB5N14D0B8F0LFUTVLJVMVFVV14TE deleted successfully. ADS C:\ProgramData:$SS_DESCRIPTOR_LVVWVBGV0VFBTLX4D06YH7LVUTPXGJMBKE1R0WT1VH7E24F7PHCTVF4VMVFVVX4VM deleted successfully. ADS C:\ProgramData\Temp:30FD0CBD deleted successfully. ADS C:\ProgramData\Temp:5D7E5A8F deleted successfully. ADS C:\ProgramData\Temp:93DE1838 deleted successfully. ADS C:\ProgramData\Temp:4D066AD2 deleted successfully. ADS C:\ProgramData\Temp:1D32EC29 deleted successfully. ADS C:\ProgramData\Temp:430C6D84 deleted successfully. ADS C:\ProgramData\Temp:ABE89FFE deleted successfully. ADS C:\ProgramData\Temp:4CF61E54 deleted successfully. ADS C:\ProgramData\Temp:DFC5A2B2 deleted successfully. ========== REGISTRY ========== ========== FILES ========== autorun.inf not found in C:\ autorun.exe not found in C:\ recycler not found in C:\ < ipconfig /flushdns /c > Windows IP Configuration Successfully flushed the DNS Resolver Cache. C:\Users\DULO BULGAR\Downloads\cmd.bat deleted successfully. C:\Users\DULO BULGAR\Downloads\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: ANTIVIRUS ->Temp folder emptied: 41589 bytes ->Temporary Internet Files folder emptied: 4198406 bytes ->Flash cache emptied: 57035 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Flash cache emptied: 56504 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: DULO BULGAR ->Temp folder emptied: 266882751 bytes ->Temporary Internet Files folder emptied: 4634056 bytes ->Java cache emptied: 10947662 bytes ->FireFox cache emptied: 19103066 bytes ->Google Chrome cache emptied: 372015640 bytes ->Apple Safari cache emptied: 37457920 bytes ->Flash cache emptied: 68824 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 356352 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 5369750 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 81735156 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 766.00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully Restore point Set: OTL Restore Point [EMPTYFLASH] User: All Users User: ANTIVIRUS ->Flash cache emptied: 0 bytes User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: DULO BULGAR ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.39.1 log created on 03182012_223511 Files\Folders moved on Reboot... C:\Users\DULO BULGAR\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. C:\Windows\temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb moved successfully. C:\Windows\temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D12}.tlb moved successfully. Registry entries deleted on Reboot...
  6. abnow.com отново...

    Току що направих всичко обяснено. За жалост ми прихвана само Avira free antivirus.
  7. abnow.com отново...

    Ето ги резултатите. Нямам флашка.. Extras.Txt OTL.Txt
  8. abnow.com отново...

    GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-03-18 20:24:04 Windows 6.1.7601 Service Pack 1 Running: gmer.exe ---- Registry - GMER 1.0.15 ---- Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@C:\Users\DULO BULGAR\Saved Games\Rulers.Of.Nations.Geopolitical.Simulator.2.PC.Game(djDEVASTATE\x2122)\Xvid-1.2.2-07062009.exe 1 ---- Files - GMER 1.0.15 ---- File C:\Users\DULO BULGAR\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0007b7 21507 bytes File C:\Users\DULO BULGAR\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0007b8 17147 bytes File C:\Users\DULO BULGAR\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0007b9 6959732 bytes ---- EOF - GMER 1.0.15 ----
  9. abnow.com отново...

    Какво да правя с нея? Не ми излизат доста отметки.
  10. abnow.com отново...

    Не иска да се инсталира комбофикс
  11. abnow.com отново...

    Има проблем с Gmer, защото не ми дава всичките отметки, а само Services, Registry, Files, C:/ и ADS... нищо друго...
  12. abnow.com отново...

    Вече не ме пренасочва. Дано да остане така и да не се връща.
  13. abnow.com отново...

    Malwarebytes Anti-Malware (PRO) 1.60.1.1000 www.malwarebytes.org Версия на базата от данни: v2012.03.17.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 DULO BULGAR :: DULOBULGAR-PC [администратор] Защита: включена 18.3.2012 г. 12:07:15 ч. mbam-log-2012-03-18 (12-07-15).txt Тип сканиране: Пълно сканиране Включени опции за сканиране: Памет | Автоматично зареждане | Системен регистър | Файлова система | Евристики/Допълнителни | Евристики/Shuriken | PUP | PUM Изключени опции за сканиране: P2P Сканирани обекти: 742386 Изминало време: 5 час(а), 16 минута(и), 13 секунда(и) Открити процеси в паметта: 0 (Не бяха открити зловредни обекти) Открити модули в паметта: 0 (Не бяха открити зловредни обекти) Открити ключове в системния регистър: 0 (Не бяха открити зловредни обекти) Открити стойности в системния регистър: 0 (Не бяха открити зловредни обекти) Открити информационни обекти в системния регистър: 0 (Не бяха открити зловредни обекти) Открити папки: 0 (Не бяха открити зловредни обекти) Открити файлове: 8 C:\Windows\assembly\tmp\U\00000001.@ (Rootkit.0Access) -> Поставен под карантина и изтрит успешно. C:\Windows\assembly\tmp\U\000000cb.@ (Trojan.Agent) -> Поставен под карантина и изтрит успешно. C:\Windows\assembly\tmp\U\000000cf.@ (Trojan.Agent) -> Поставен под карантина и изтрит успешно. C:\Windows\assembly\tmp\U\800000c0.@ (Rootkit.0Access) -> Поставен под карантина и изтрит успешно. C:\Windows\assembly\tmp\U\800000cb.@ (Rootkit.0Access) -> Поставен под карантина и изтрит успешно. C:\Windows\assembly\tmp\U\800000cf.@ (Rootkit.0Access) -> Поставен под карантина и изтрит успешно. C:\Users\DULO BULGAR\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Ще бъде изтрит при рестартиране. C:\Windows\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Ще бъде изтрит при рестартиране. (край)
  14. abnow.com отново...

    Пробвах и със Save mode и със Safe mode with Network connection , но изглежда и те са повредени, защото краш- ва още преди да ме е вкарало и рестартира. Започвам сериозно да се притеснявам
  15. abnow.com отново...

    Отново не се получава инсталацията... Нито предишните, нито новата версия. Стига си до едно време към края и свършва и нито finish бутон ...нито има някъква следа от нея по диска...
  • Разглеждащи в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.