Премини към съдържанието
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

Проблеми с Windows 7, прекъсване на интернет и натоварване


Препоръчан отговор


Здравейте,

Имам следния странен проблем от няколко дни, рамта ми е натоварена средно около 1,4 GB, а и много често ме разкача от рутера - спира ми интернета.

Malwarebytes' Anti-Malware 1.44

Database version: 3790

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

2/25/2010 5:00:22 PM

mbam-log-2010-02-25 (17-00-22).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 354121

Time elapsed: 1 hour(s), 32 minute(s), 46 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 5:13:16 PM, on 2/25/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe

C:\Program Files\Pure Networks\Network Magic\nmapp.exe

C:\Program Files\SafeNet\BSecClient\AXMonitor.exe

C:\Program Files\SafeNet\BSecClient\dkAutoReg.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Users\TSC Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\Internet Download Manager\IEMonitor.exe

C:\Program Files\Raxco\PerfectDisk10\PDAgentS1.exe

C:\Program Files\SmarThru 4\ControlPanel.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\Program Files\Raxco\PerfectDisk10\PerfectDisk.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\Program Files\Winamp\winamp.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Program Files\Internet Download Manager\IDMan.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: CmjBrowserHelperObject Object - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - C:\Program Files\Mindjet\MindManager 8\Mm8InternetExplorer.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O3 - Toolbar: Zend Studio - {95188727-288F-4581-A48D-EAB3BD027314} - C:\PROGRA~1\Zend\ZENDST~1.1\bin\ZENDIE~1.DLL

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"

O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot

O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: SmarThru4 Capture Selection - C:\Program Files\SmarThru 4\WebCapture.dll2.htm

O8 - Extra context menu item: SmarThru4 Save as HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm

O8 - Extra context menu item: SmarThru4 Save Selected Text - C:\Program Files\SmarThru 4\WebCapture.dll.htm

O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll

O8 - Extra context menu item: Zend Studio - Debug current page - res://C:\Program Files\Zend\ZendStudio-5.5.1\bin\ZendIEToolbar.dll/DebugCurrent.html

O8 - Extra context menu item: Zend Studio - Debug next page - res://C:\Program Files\Zend\ZendStudio-5.5.1\bin\ZendIEToolbar.dll/DebugNext.html

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Send to Mindjet MindManager - {2F72393D-2472-4F82-B600-ED77F354B7FF} - C:\Program Files\Mindjet\MindManager 8\Mm8InternetExplorer.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Zend Studio Toolbar - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\PROGRA~1\Zend\ZENDST~1.1\bin\ZENDIE~1.DLL

O9 - Extra 'Tools' menuitem: Zend Studio - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\PROGRA~1\Zend\ZENDST~1.1\bin\ZENDIE~1.DLL

O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - Winlogon Notify: DkWLNP - C:\Windows\SYSTEM32\DkWLNP.dll

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: SafeNet Log Service (DkLogger) - SafeNet, Inc. - C:\Windows\system32\dklog.exe

O23 - Service: SafeNet Token Service (DkTknSrv) - SafeNet, Inc. - C:\Windows\system32\dkcktkn.exe

O23 - Service: SafeNet Virtual Channel Monitor (DkVcm) - SafeNet, Inc. - C:\Windows\system32\dkvcm.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe

O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe

O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

--

End of file - 8626 bytes

Линк към този отговор
Сподели в други сайтове

Имаш мрежови проблем, за Windows 7 гигабайт и половина заемана рам е нищо. Ето ме мен само с едно браузърче и едно ICQ:

x3zs4j.png

Като ти гледам лога, всичко е наред. Махни си автоматичното откриване на прокси и смени DNS-ите с Google DNS.

Дано не си сложил ъпдейт KB971033, че тогава - само формат.

Линк към този отговор
Сподели в други сайтове

Най-напред забрани ъпдейтите още сега.Напиши последните 4-5 ъпдейта,примерно от 12-14 февруари насам.


Линк към този отговор
Сподели в други сайтове

  • Стартирайте HijackThis, кликнете на Config, а след това върху Misc Tools
  • Отворете Open Uninstall Manager
  • Цъкнете на Save List (това ще генерира uninstall_list.txt)
  • Изберете Save, а накрая копирайте и поставете резултатите в следващия Ви пост.

Линк към този отговор
Сподели в други сайтове

Здравейте, колегата ми сподели, че няколко дни преди мен е пускал Malwarebytes' Anti-Malware и е намерил вируси, които е изтрил.

За съжаление е проявил и самоинициатива и е пуснал и ComboFix, което е изтрил някакъв dll файл.

Malwarebytes' Anti-Malware 1.44

Database version: 3779

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

2/23/2010 3:51:40 PM

mbam-log-2010-02-23 (15-51-40).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 359160

Time elapsed: 1 hour(s), 49 minute(s), 35 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 3

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Pure Networks\Network Magic\Patch.exe (Patch.NetworkMagic) -> Quarantined and deleted successfully.

D:\Downloads\Raxco PerfectDisk 10.0.0.124 Professional\kg.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.

D:\Downloads\VMware Workstation 7.0.0 Build 203739\keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.

ComboFix 10-02-24.03 - TSC Admin 02/23/2010 16:32:37.1.2 - x86

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.3070.1833 [GMT 2:00]

Running from: c:\users\TSC Admin\Desktop\ComboFix.exe

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\windows\system32\twain_32.dll

.

((((((((((((((((((((((((( Files Created from 2010-01-23 to 2010-02-23 )))))))))))))))))))))))))))))))

.

2010-02-25 08:57 . 2010-02-25 08:57 -------- d-----w- C:\32788R22FWJFW

2010-02-24 11:59 . 2003-04-10 18:52 24576 ------w- c:\windows\system32\gemstrmw.exe

2010-02-24 06:23 . 2009-12-13 09:30 641536 ----a-w- c:\windows\system32\CPFilters.dll

2010-02-24 06:23 . 2009-12-13 09:30 465408 ----a-w- c:\windows\system32\psisdecd.dll

2010-02-24 06:23 . 2009-12-13 09:29 417792 ----a-w- c:\windows\system32\msdri.dll

2010-02-24 06:23 . 2010-02-02 07:45 2048 ----a-w- c:\windows\system32\tzres.dll

2010-02-22 11:27 . 2010-02-22 11:27 -------- d-----w- c:\program files\Common Files\SWF Studio

2010-02-22 11:27 . 2010-02-22 11:27 -------- d-----w- c:\program files\Riva

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\program files\Safari

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\programdata\Apple Computer

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\program files\Common Files\Apple

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\users\TSCADM~1\AppData\Local\Apple

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\users\TSC Admin\AppData\Local\Apple

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\program files\Apple Software Update

2010-02-16 16:11 . 2010-02-16 16:11 -------- d-----w- c:\programdata\Apple

2010-02-16 13:41 . 2009-12-08 11:40 3955288 ----a-w- c:\windows\system32\ntkrnlpa.exe

2010-02-16 13:41 . 2009-12-08 11:40 3899464 ----a-w- c:\windows\system32\ntoskrnl.exe

2010-02-16 13:41 . 2009-12-08 11:32 292864 ----a-w- c:\windows\system32\apphelp.dll

2010-02-15 09:04 . 2009-10-17 14:29 1189 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\cache\2010-02-24\cake (deleted 4ad9d4e6-4a5-927006e8615).bat

2010-02-15 08:56 . 2010-02-15 08:56 89854 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\Uninstall.exe

2010-02-15 08:56 . 2010-02-25 08:51 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Dropbox

2010-02-15 08:56 . 2010-02-25 08:51 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Dropbox

2010-02-12 18:06 . 2010-02-12 18:06 -------- d-----w- c:\programdata\IObit

2010-02-09 15:34 . 2010-02-23 16:14 -------- d-----w- c:\users\TSCADM~1\AppData\Local\Microsoft Games

2010-02-09 15:34 . 2010-02-23 16:14 -------- d-----w- c:\users\TSC Admin\AppData\Local\Microsoft Games

2010-02-09 11:28 . 2010-02-09 11:28 -------- d-----w- c:\users\TSCADM~1\AppData\Local\Mindjet

2010-02-09 11:28 . 2010-02-09 11:28 -------- d-----w- c:\users\TSC Admin\AppData\Local\Mindjet

2010-02-08 14:25 . 2006-01-30 06:32 5632 ----a-w- c:\windows\system32\pxc25pm.dll

2010-02-08 14:25 . 2004-12-07 04:11 258352 ----a-w- c:\windows\system32\unicows.dll

2010-02-08 14:24 . 2010-02-08 14:24 -------- d-----w- c:\programdata\Mindjet

2010-02-08 14:24 . 2010-02-08 14:24 -------- d-----w- c:\program files\Mindjet

2010-02-08 14:23 . 2010-02-08 14:23 -------- d-----w- c:\users\TSCADM~1\AppData\Local\{18494770-F03A-4F99-93F7-AE7D4080F8F8}

2010-02-08 14:23 . 2010-02-08 14:23 -------- d-----w- c:\users\TSC Admin\AppData\Local\{18494770-F03A-4F99-93F7-AE7D4080F8F8}

2010-02-08 09:00 . 2010-02-08 09:00 198064 ----a-w- c:\users\TSC Admin\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll

2010-02-08 09:00 . 2010-02-12 15:37 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\IDM

2010-02-08 09:00 . 2010-02-12 15:37 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\IDM

2010-02-08 09:00 . 2010-02-25 08:51 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\DMCache

2010-02-08 09:00 . 2010-02-25 08:51 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\DMCache

2010-02-08 09:00 . 2010-02-15 09:55 -------- d-----w- c:\program files\Internet Download Manager

2010-01-29 10:54 . 2010-01-29 10:55 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\VMware

2010-01-29 10:54 . 2010-01-29 10:55 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\VMware

2010-01-29 10:39 . 2010-01-29 16:05 -------- d-----w- c:\programdata\VMware

2010-01-29 09:31 . 2010-01-29 09:31 -------- d-----w- c:\users\TSCADM~1\AppData\Local\WindowsUpdate

2010-01-29 09:31 . 2010-01-29 09:31 -------- d-----w- c:\users\TSC Admin\AppData\Local\WindowsUpdate

2010-01-28 18:36 . 2010-01-28 18:36 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\pdf995

2010-01-28 18:36 . 2010-01-28 18:36 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\pdf995

2010-01-28 18:36 . 2010-02-24 14:54 60 ----a-w- c:\windows\wpd99.drv

2010-01-28 18:36 . 2010-02-24 14:54 -------- d-----w- c:\programdata\pdf995

2010-01-28 18:36 . 2010-01-28 18:36 51716 ----a-w- c:\windows\system32\pdf995mon.dll

2010-01-28 18:36 . 2010-01-28 18:36 249856 ----a-w- c:\windows\system32\pdfmona.dll

2010-01-28 18:35 . 2010-01-28 18:36 -------- d-----w- c:\program files\pdf995

2010-01-27 03:15 . 2009-10-31 05:45 2614272 ----a-w- c:\windows\explorer.exe

2010-01-27 03:15 . 2009-10-28 06:17 285696 ----a-w- c:\windows\system32\winlogon.exe

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-25 09:04 . 2010-01-15 22:26 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Skype

2010-02-25 09:04 . 2010-01-15 22:26 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Skype

2010-02-25 08:58 . 2010-01-15 20:26 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\uTorrent

2010-02-25 08:58 . 2010-01-15 20:26 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\uTorrent

2010-02-24 12:00 . 2010-02-24 11:02 -------- d--h--w- c:\program files\InstallShield Installation Information

2010-02-24 12:00 . 2010-02-24 11:05 -------- d-----w- c:\program files\Common Files\InstallShield

2010-02-24 11:59 . 2010-02-24 11:59 -------- d-----w- c:\program files\Gemplus

2010-02-24 11:59 . 2010-02-24 11:02 -------- d-----w- c:\program files\SafeNet

2010-02-24 11:51 . 2010-02-24 11:51 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\URSoft

2010-02-24 11:51 . 2010-02-24 11:51 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\URSoft

2010-02-24 11:51 . 2010-02-24 11:51 -------- d-----w- c:\program files\Your Uninstaller 2010

2010-02-24 11:06 . 2010-02-24 11:06 -------- d-----w- c:\program files\Rainbow Technologies

2010-02-24 07:16 . 2010-01-15 20:15 181632 ------w- c:\windows\system32\MpSigStub.exe

2010-02-23 13:58 . 2010-01-15 20:26 -------- d-----w- c:\program files\uTorrent

2010-02-15 06:04 . 2010-01-15 20:35 113896 ----a-w- c:\users\TSCADM~1\AppData\Local\GDIPFONTCACHEV1.DAT

2010-02-15 06:04 . 2010-01-15 20:35 113896 ----a-w- c:\users\TSC Admin\AppData\Local\GDIPFONTCACHEV1.DAT

2010-02-11 16:36 . 2010-01-15 21:32 -------- d-----w- c:\programdata\Microsoft Help

2010-01-28 19:38 . 2010-01-15 21:07 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\IrfanView

2010-01-28 19:38 . 2010-01-15 21:07 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\IrfanView

2010-01-28 10:42 . 2010-01-15 22:20 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\FileZilla

2010-01-28 10:42 . 2010-01-15 22:20 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\FileZilla

2010-01-27 10:18 . 2010-01-25 10:45 -------- d-----w- c:\program files\Mozilla Firefox-2.0

2010-01-21 14:48 . 2010-01-21 14:46 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Notepad++

2010-01-21 14:48 . 2010-01-21 14:46 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Notepad++

2010-01-21 14:46 . 2010-01-21 14:46 -------- d-----w- c:\program files\Notepad++

2010-01-21 08:27 . 2010-01-21 08:27 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Foxit

2010-01-21 08:27 . 2010-01-21 08:27 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Foxit

2010-01-21 08:27 . 2010-01-21 08:27 -------- d-----w- c:\program files\Foxit Software

2010-01-20 13:02 . 2010-01-20 13:02 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf

2010-01-20 10:20 . 2010-01-20 10:20 98304 ----a-r- c:\users\TSC Admin\AppData\Roaming\Microsoft\Installer\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}\icons.exe

2010-01-18 23:29 . 2010-02-11 10:32 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2010-01-18 23:29 . 2010-02-11 10:32 85504 ----a-w- c:\windows\system32\secproc_ssp.dll

2010-01-18 23:29 . 2010-02-11 10:32 365568 ----a-w- c:\windows\system32\secproc_isv.dll

2010-01-18 23:29 . 2010-02-11 10:32 369152 ----a-w- c:\windows\system32\secproc.dll

2010-01-18 23:28 . 2010-02-11 10:32 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe

2010-01-18 23:28 . 2010-02-11 10:32 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2010-01-18 23:28 . 2010-02-11 10:32 320512 ----a-w- c:\windows\system32\RMActivate.exe

2010-01-18 23:28 . 2010-02-11 10:32 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2010-01-18 15:39 . 2010-01-18 15:39 -------- d-----w- c:\program files\FileZilla FTP Client

2010-01-18 09:18 . 2010-01-18 09:17 -------- d--h--w- c:\program files\Zero G Registry

2010-01-18 09:17 . 2010-01-18 09:17 -------- d-----w- c:\program files\Zend

2010-01-17 11:10 . 2010-01-17 11:10 -------- d-----w- c:\program files\Samsung

2010-01-16 18:48 . 2010-01-15 22:42 -------- d-----w- c:\programdata\Pure Networks

2010-01-16 16:42 . 2010-01-16 16:42 56 ---ha-w- c:\windows\system32\ezsidmv.dat

2010-01-16 16:09 . 2010-01-16 16:08 -------- d-----w- c:\program files\SopCast

2010-01-16 07:06 . 2010-01-16 07:06 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Proxima Software

2010-01-16 07:06 . 2010-01-16 07:06 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Proxima Software

2010-01-16 07:06 . 2010-01-16 07:06 -------- d-----w- c:\program files\FontExpert

2010-01-16 06:03 . 2010-01-16 06:03 0 ----a-w- c:\windows\ativpsrm.bin

2010-01-15 22:45 . 2010-01-15 22:45 -------- d-----w- c:\program files\Pure Networks

2010-01-15 22:36 . 2010-01-15 22:31 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Winamp

2010-01-15 22:36 . 2010-01-15 22:31 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Winamp

2010-01-15 22:33 . 2010-01-15 22:31 -------- d-----w- c:\program files\Winamp

2010-01-15 22:31 . 2010-01-15 22:31 -------- d-----w- c:\program files\Winamp Detect

2010-01-15 22:31 . 2010-01-15 22:31 -------- d-----w- c:\program files\Common Files\PX Storage Engine

2010-01-15 22:26 . 2010-01-15 22:26 -------- d-----w- c:\program files\Common Files\Skype

2010-01-15 22:26 . 2010-01-15 22:25 -------- d-----r- c:\program files\Skype

2010-01-15 22:25 . 2010-01-15 22:25 -------- d-----w- c:\programdata\Skype

2010-01-15 22:22 . 2010-01-15 20:41 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys

2010-01-15 21:44 . 2010-01-15 21:44 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Avira

2010-01-15 21:44 . 2010-01-15 21:44 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Avira

2010-01-15 21:39 . 2010-01-15 21:35 -------- d-----w- c:\program files\Microsoft Works

2010-01-15 21:35 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild

2010-01-15 21:34 . 2010-01-15 21:34 -------- d-----w- c:\program files\Microsoft.NET

2010-01-15 21:33 . 2010-01-15 21:33 -------- d-----w- c:\program files\Microsoft Visual Studio 8

2010-01-15 21:27 . 2010-01-15 21:27 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\Malwarebytes

2010-01-15 21:27 . 2010-01-15 21:27 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\Malwarebytes

2010-01-15 21:27 . 2010-01-15 21:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2010-01-15 21:26 . 2010-01-15 21:26 -------- d-----w- c:\programdata\Malwarebytes

2010-01-15 21:20 . 2010-01-15 21:20 -------- d-----w- c:\program files\Common Files\Protexis

2010-01-15 21:17 . 2010-01-15 21:17 -------- d-----w- c:\program files\Common Files\Corel

2010-01-15 21:16 . 2010-01-15 21:16 -------- d-----w- c:\program files\Corel

2010-01-15 21:08 . 2010-01-15 21:08 -------- d-----w- c:\programdata\Raxco

2010-01-15 21:08 . 2010-01-15 21:08 -------- d-----w- c:\program files\Raxco

2010-01-15 21:07 . 2010-01-15 21:07 -------- d-----w- c:\program files\IrfanView

2010-01-15 21:00 . 2010-01-15 20:29 -------- d-----w- c:\program files\Common Files\Adobe

2010-01-15 20:57 . 2010-01-15 20:57 -------- d-----w- c:\program files\Adobe Media Player

2010-01-15 20:56 . 2010-01-15 20:56 -------- d-----w- c:\program files\Common Files\Adobe AIR

2010-01-15 20:56 . 2010-01-15 20:56 -------- d-----w- c:\users\TSCADM~1\AppData\Roaming\IObit

2010-01-15 20:56 . 2010-01-15 20:56 -------- d-----w- c:\users\TSC Admin\AppData\Roaming\IObit

2010-01-15 20:56 . 2010-01-15 20:56 -------- d-----w- c:\program files\IObit

2010-01-15 20:41 . 2010-01-15 20:40 -------- d-----w- c:\programdata\Avira

2010-01-15 20:40 . 2010-01-15 20:40 -------- d-----w- c:\program files\Avira

2010-01-15 20:37 . 2010-01-15 20:37 -------- d-----w- c:\programdata\ALM

2010-01-15 20:34 . 2010-01-15 20:34 -------- d-----w- c:\programdata\FLEXnet

2010-01-15 20:33 . 2010-01-15 20:33 -------- d-----w- c:\program files\Bonjour

2010-01-15 20:29 . 2010-01-15 20:29 -------- d-----w- c:\program files\Common Files\Macrovision Shared

2010-01-15 20:22 . 2010-01-15 20:22 0 ----a-w- c:\windows\nsreg.dat

2010-01-15 20:19 . 2010-01-15 20:19 -------- d-----w- c:\program files\CCleaner

2010-01-08 03:18 . 2010-02-11 10:32 221184 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys

2010-01-08 03:17 . 2010-02-11 10:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2010-01-07 14:07 . 2010-01-15 21:26 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-01-07 14:07 . 2010-01-15 21:26 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-01-05 10:15 . 2010-01-15 20:14 4124332 ----a-w- c:\users\TSC Admin\FileZilla_3.3.1_win32-setup.exe

2009-12-31 00:48 . 2009-12-31 00:48 21968784 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe

2009-12-19 09:02 . 2010-01-22 08:25 977920 ----a-w- c:\windows\system32\wininet.dll

2009-12-19 09:02 . 2010-02-11 10:32 12288 ----a-w- c:\windows\system32\tsbyuv.dll

2009-12-19 09:02 . 2010-02-11 10:32 1328640 ----a-w- c:\windows\system32\quartz.dll

2009-12-19 09:02 . 2010-02-11 10:32 22016 ----a-w- c:\windows\system32\msyuv.dll

2009-12-19 09:02 . 2010-02-11 10:32 31744 ----a-w- c:\windows\system32\msvidc32.dll

2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat

2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2009-12-09 01:19 94208 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2009-12-09 01:19 94208 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2009-12-09 01:19 94208 ----a-w- c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-02-23 319280]

"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-02-15 3179952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]

"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]

"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]

"nmapp"="c:\program files\Pure Networks\Network Magic\nmapp.exe" [2010-01-15 472112]

"MMReminderService"="c:\program files\Mindjet\MindManager 8\MMReminderService.exe" [2008-11-14 37656]

"DkAutoReg.exe"="c:\program files\SafeNet\iKey 2000 Series Software\DkAutoReg.exe" [2004-11-23 245760]

"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-04-10 24576]

"DkStartup"="c:\program files\SafeNet\iKey 2000 Series Software\DkStartup.exe" [2004-11-23 217088]

c:\users\TSCADM~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\

Dropbox.lnk - c:\users\TSC Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe [2009-12-31 21968784]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DkWLNP]

2004-11-23 08:33 57344 ----a-w- c:\windows\System32\DkWLNP.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]

2008-08-14 05:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FontExpertType1Loader]

2008-12-14 17:33 294152 ----a-w- c:\program files\FontExpert\Type1Loader.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

2010-02-23 11:41 319280 ----a-w- c:\program files\uTorrent\uTorrent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

2010-01-12 20:02 37888 ----a-w- c:\program files\Winamp\winampa.exe

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\System32\drivers\vwififlt.sys [7/14/2009 1:52 AM 48128]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\System32\atiesrxx.exe [8/18/2009 2:36 AM 176128]

R2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\Avira\AntiVir Desktop\avmailc.exe [1/15/2010 10:41 PM 194817]

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [1/15/2010 10:41 PM 108289]

R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [1/15/2010 10:41 PM 434945]

R2 DkVcm;Datakey's Virtual Channel Monitor;c:\windows\System32\dkvcm.exe [11/23/2004 10:33 AM 122880]

R2 SSPORT;SSPORT;c:\windows\System32\drivers\SSPORT.sys [8/14/2009 11:16 AM 5120]

R3 itecir;ITECIR Infrared Receiver;c:\windows\System32\drivers\itecir.sys [10/8/2009 2:59 AM 55808]

R3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\k57nd60x.sys [7/14/2009 12:02 AM 229888]

S3 RnbToken;Rainbow iKey Token Service;c:\windows\System32\drivers\RNBTOKEN.SYS [2/24/2010 1:56 PM 22304]

.

Contents of the 'Scheduled Tasks' folder

2010-02-25 c:\windows\Tasks\AWC AutoSweep.job

- c:\program files\IObit\Advanced SystemCare 3\AutoSweep.exe [2010-01-15 12:11]

2010-02-25 c:\windows\Tasks\AWC Startup.job

- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2010-01-15 11:24]

.

.

------- Supplementary Scan -------

.

uInternet Settings,ProxyOverride = *.local

IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm

IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm

IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: Zend Studio - Debug current page - c:\program files\Zend\ZendStudio-5.5.1\bin\ZendIEToolbar.dll/DebugCurrent.html

IE: Zend Studio - Debug next page - c:\program files\Zend\ZendStudio-5.5.1\bin\ZendIEToolbar.dll/DebugNext.html

LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll

FF - ProfilePath - c:\users\TSCADM~1\AppData\Roaming\Mozilla\Firefox\Profiles\bkgedmz9.default\

FF - component: c:\users\TSC Admin\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll

FF - component: c:\users\TSC Admin\AppData\Roaming\Mozilla\Firefox\Profiles\bkgedmz9.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\DictionaryCompressionFF.dll

FF - component: c:\users\TSC Admin\AppData\Roaming\Mozilla\Firefox\Profiles\bkgedmz9.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\npnul32.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\NPOFF12.DLL

FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll

---- FIREFOX POLICIES ----

c:\program files\Mozilla Firefox-2.0\greprefs\all.js - pref("ui.allow_platform_file_picker", true);

c:\program files\Mozilla Firefox-2.0\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom

c:\program files\Mozilla Firefox-2.0\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties");

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties");

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("signon.prefillForms", true);

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.safebrowsing.remoteLookups", false);

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.updateURL", "http://sb.google.com/safebrowsing/update?client={moz:client}&mozver={moz:version}-{moz:buildid}&");

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.lookupURL", "http://sb.google.com/safebrowsing/lookup?sourceid=firefox-antiphish&features=TrustRank&client={moz:client}&mozver={moz:version}-{moz:buildid}&");

c:\program files\Mozilla Firefox-2.0\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.reportURL", "http://sb.google.com/safebrowsing/report?");

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1486252748-4067598425-995346887-1000_Classes\CLSID\{29e74789-6799-44dc-85e6-e2a083288fb7}]

@Denied: (Full) (Everyone)

@Allowed: (Read) (RestrictedCode)

"Model"=dword:0000002d

"Therad"=dword:00000008

[HKEY_USERS\S-1-5-21-1486252748-4067598425-995346887-1000_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]

@Denied: (Full) (Everyone)

@Allowed: (Read) (RestrictedCode)

"scansk"=hex(0):8c,39,bf,47,e1,13,72,68,2a,4d,af,21,72,f7,7e,f8,f8,a2,d7,02,fa,

2e,ed,d2,1d,79,06,fe,c5,48,71,e4,55,45,b2,86,a9,25,b3,e1,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Completion time: 2010-02-23 16:35:06

ComboFix-quarantined-files.txt 2010-02-23 16:35

Pre-Run: 28,215,459,840 bytes free

Post-Run: 28,198,150,144 bytes free

- - End Of File - - 4E05B5E8DD61E7755532D47728905D61

Линк към този отговор
Сподели в други сайтове

µTorrent

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

2007 Microsoft Office Suite Service Pack 2 (SP2)

Adobe AIR

Adobe AIR

Adobe Anchor Service CS3

Adobe Anchor Service CS4

Adobe Asset Services CS3

Adobe Bridge CS3

Adobe Bridge CS4

Adobe Bridge Start Meeting

Adobe Camera Raw 4.0

Adobe CMaps CS4

Adobe Color - Photoshop Specific

Adobe Color EU Extra Settings CS4

Adobe Color JA Extra Settings CS4

Adobe Color NA Recommended Settings CS4

Adobe CSI CS4

Adobe Default Language CS4

Adobe Device Central CS3

Adobe Drive CS4

Adobe ExtendScript Toolkit 2

Adobe ExtendScript Toolkit CS4

Adobe Extension Manager CS4

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Fonts All

Adobe Help Viewer CS3

Adobe Illustrator CS3

Adobe Illustrator CS3

Adobe InDesign CS4

Adobe InDesign CS4

Adobe InDesign CS4 Application Feature Set Files (Roman)

Adobe InDesign CS4 Common Base Files

Adobe InDesign CS4 Icon Handler

Adobe Linguistics CS3

Adobe Linguistics CS4

Adobe Media Player

Adobe Media Player

Adobe Output Module

Adobe PDF Library Files CS4

Adobe Photoshop CS3

Adobe Photoshop CS3

Adobe Search for Help

Adobe Service Manager Extension

Adobe Setup

Adobe Setup

Adobe Setup

Adobe SGM CS4

Adobe SING CS4

Adobe Stock Photos CS3

Adobe Type Support CS4

Adobe Update Manager CS3

Adobe Update Manager CS4

Adobe Version Cue CS3 Client

Adobe WinSoft Linguistics Plugin

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

Adobe XMP Panels CS4

AdobeColorCommonSetCMYK

AdobeColorCommonSetRGB

Advanced SystemCare 3

Apple Application Support

Apple Software Update

Avira AntiVir Premium

CCleaner

Connect

CorelDRAW Graphics Suite X4

CorelDRAW Graphics Suite X4 - Capture

CorelDRAW Graphics Suite X4 - Content

CorelDRAW Graphics Suite X4 - Draw

CorelDRAW Graphics Suite X4 - Filters

CorelDRAW Graphics Suite X4 - FontNav

CorelDRAW Graphics SUite X4 - ICA

CorelDRAW Graphics Suite X4 - IPM

CorelDRAW Graphics Suite X4 - Lang BR

CorelDRAW Graphics Suite X4 - Lang DE

CorelDRAW Graphics Suite X4 - Lang EN

CorelDRAW Graphics Suite X4 - Lang ES

CorelDRAW Graphics Suite X4 - Lang FR

CorelDRAW Graphics Suite X4 - Lang IT

CorelDRAW Graphics Suite X4 - Lang NL

CorelDRAW Graphics Suite X4 - PP

CorelDRAW Graphics Suite X4 - VBA

CorelDRAW® Graphics Suite X4

CorelDRAW® Graphics Suite X4 - Windows Shell Extension

CorelDRAW® Graphics Suite X4 - Windows Shell Extension

FileZilla Client 3.3.1

FontExpert 2009

Foxit Reader

HijackThis 2.0.2

Internet Download Manager

IrfanView (remove only)

kuler

Malwarebytes' Anti-Malware

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Enterprise 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Mindjet MindManager 8

Mozilla Firefox (2.0.0.1)

Mozilla Firefox (3.6)

MSI_GemPC410

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Network Magic

Notepad++

PDF Settings CS4

Pdf995

PDF-XChange 3

PerfectDisk 10 Professional

Photoshop Camera Raw

Readiris Pro 10

Safari

SafeNet Borderless Security PK Client

SafeNet iKey Driver v4.0.0.17

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB973704)

Security Update for Microsoft Office Excel 2007 (KB973593)

Security Update for Microsoft Office Outlook 2007 (KB972363)

Security Update for Microsoft Office PowerPoint 2007 (KB957789)

Security Update for Microsoft Office Publisher 2007 (KB969693)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB969613)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Skype™ 4.1

SmarThru 4

SopCast 3.2.4

Suite Shared Configuration CS4

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office InfoPath 2007 (KB976416)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 (KB974561)

Update for Microsoft Office Word 2007 Help (KB963665)

Update for Outlook 2007 Junk Email Filter (kb977719)

Winamp

Windows 7 USB/DVD Download Tool

WinRAR archiver

Your Uninstaller! 2010

ZendStudio-5.5.1

Линк към този отговор
Сподели в други сайтове

Обърнали ли сте внимание дали това се случва, докато изтегляте нещо или докато сърфирате в интернет? Защо липсва антивирусна програма?

Стъпка 1:

Влезте в Start и в празното поле отдолу, напишете:

msconfig

Отидете на таба Startup и махнете отметките пред: Winamp, uTorrent, PerfectDisk и Internet Download Manager.

Стъпка 2:

Изтеглете и инсталирайте антивирусна програма по ваш избор:

http://www.kaldata.com/modules.php?modid=1&action=cat&id=41

Накрая сканирайте и ми пишете за резултатите.

Линк към този отговор
Сподели в други сайтове

Имаш мрежови проблем, за Windows 7 гигабайт и половина заемана рам е нищо. Ето ме мен само с едно браузърче и едно ICQ:

x3zs4j.png

Като ти гледам лога, всичко е наред. Махни си автоматичното откриване на прокси и смени DNS-ите с Google DNS.

Дано не си сложил ъпдейт KB971033, че тогава - само формат.

1.5 GB?

При мен са пуснати Skype™, BitDefender, Opera, KMPlayer и драйвери за видеокартата, и звуковата карта...

18646639.jpg

Редактирано от stilianm (преглед на промените)
Линк към този отговор
Сподели в други сайтове

Добавете отговор

Можете да публикувате отговор сега и да се регистрирате по-късно. Ако имате регистрация, влезте в профила си за да публикувате от него.
Бележка: Вашата публикация изисква одобрение от модератор, преди да стане видима за всички.

Гост
Напишете отговор в тази тема...

×   Вмъкнахте текст, който съдържа форматиране.   Премахни форматирането на текста

  Разрешени са само 75 емотикони.

×   Съдържанието от линка беше вградено автоматично.   Премахни съдържанието и покажи само линк

×   Съдържанието, което сте написали преди беше възстановено..   Изтрий всичко

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Добави ново...

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите Условия за ползване