Премини към съдържанието

    Препоръчан отговор


    Здравейте Много често ми се появява грешката RUNDLL Error loading C windows system32 Groove Util.DLL The specified module could not de Found Свалих този файл Grooveutil.dll и го поставих в C:\Windows\system32 . по съвет от колега но ефект няма Посъветваха ме да се обърна към вас Бях пуснал тема в раздела -програми-проблеми и дискусии с заглавие Грешка при включване на компютъра DDS . DDS (Ver_11-03-05.01) - NTFSx86 Run by pepi1967 at 11:56:34,82 on 30.03.2011 Ј. Internet Explorer: 8.0.6001.18702 Microsoft Windows XP Professional 5.1.2600.3.1251.359.1033.18.1791.872 [GMT 3:00] . AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\CameraFixer.exe C:\WINDOWS\vsnpstd3.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe svchost.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\pepi1967\Desktop\dds.scr . ============== Pseudo HJT Report =============== . uStart Page = hxxp://bksly.startya.com/?cfg=2-564-0-0&engine_id=3&provider_id=3&product_id=564&country=BG uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngin0.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: MyAshampoo Toolbar: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - c:\program files\myashampoo\tbMyAs.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.6209.1142\swg.dll BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\program files\utorrentbar\tbuTo1.dll TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\program files\utorrentbar\tbuTo1.dll TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngin0.dll TB: MyAshampoo Toolbar: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - c:\program files\myashampoo\tbMyAs.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [Advanced SystemCare 3] "c:\program files\iobit\advanced systemcare 3\AWC.exe" /startup mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [nwiz] nwiz.exe /install mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [CameraFixer] c:\windows\CameraFixer.exe mRun: [snpstd3] c:\windows\vsnpstd3.exe mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [HDAudDeck] c:\program files\via\viaudioi\hdadeck\HDeck.exe 1 mRun: [soundMax] "c:\program files\analog devices\soundmax\Smax4.exe" /tray mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 10.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE dRunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 IE: &Експортиране към Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: {0E29BF83-F4FF-4434-997D-E6DA39E50914} = 78.90.185.1,89.190.192.162 TCP: {EF07D88A-F0DB-4FD4-BDE6-5C7E0A5003B4} = 78.90.185.1,89.196.192.162 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ============= SERVICES / DRIVERS =============== . R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-12-19 108792] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2010-2-4 96408] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2010-2-4 735960] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-3-2 1617408] S2 gupdate;Услуга Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-6-24 135664] S3 AMBFilt;AMBFilt;c:\windows\system32\drivers\Ambfilt.sys [2011-3-2 1656960] S3 AsrCDDrv;AsrCDDrv;\??\c:\windows\system32\drivers\asrcddrv.sys --> c:\windows\system32\drivers\AsrCDDrv.sys [?] . =============== Created Last 30 ================ . 2011-03-24 16:03:30 -------- d-----w- c:\program files\Sweet Home 3D 2011-03-23 14:35:59 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\TuneUp Software 2011-03-23 14:35:51 -------- d-----w- c:\program files\TuneUp Utilities 2008 2011-03-23 14:34:41 -------- d-----w- c:\program files\common files\Wise Installation Wizard 2011-03-21 15:24:33 -------- d-----w- c:\windows\Profiles 2011-03-21 15:24:32 -------- d-----w- c:\windows\system32\Adobe 2011-03-17 17:11:09 -------- d-----w- c:\docume~1\pepi1967\locals~1\applic~1\Babylon 2011-03-17 17:11:09 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Babylon 2011-03-17 17:11:08 -------- d-----w- c:\docume~1\pepi1967\applic~1\Babylon 2011-03-15 11:25:28 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys 2011-03-13 09:07:19 1409 ----a-w- c:\windows\QTFont.for 2011-03-13 09:04:11 -------- d-----w- c:\program files\common files\Canon 2011-03-12 10:24:06 955680 ----a-w- c:\windows\system32\GrooveUtil.dll 2011-03-11 19:25:31 306432 ----a-w- c:\windows\system32\TuneUpDefragService.exe 2011-03-11 19:25:31 29440 ----a-w- c:\windows\system32\uxtuneup.dll 2011-03-11 19:25:30 -------- d-----w- c:\docume~1\pepi1967\applic~1\TuneUp Software 2011-03-11 15:52:35 -------- d-----w- c:\docume~1\pepi1967\applic~1\IObit 2011-03-11 15:52:34 -------- d-----w- c:\program files\IObit 2011-03-01 21:16:43 8704 ----a-r- c:\windows\system32\viahdcpl.cpl 2011-03-01 21:16:39 1656960 ----a-r- c:\windows\system32\drivers\Ambfilt.sys 2011-03-01 21:16:39 1389056 ----a-r- c:\windows\system32\drivers\Monfilt.sys 2011-03-01 21:16:27 331184 ------w- c:\windows\system32\difxapi.dll 2011-03-01 21:16:27 -------- d-----w- c:\program files\VIA 2011-03-01 21:12:01 13856 ----a-r- c:\windows\system32\NvRCoZht.dll 2011-03-01 21:11:51 54400 ----a-r- c:\windows\system32\drivers\NVENETFD.sys 2011-03-01 21:11:51 200704 ----a-r- c:\windows\system32\fdco1.dll 2011-03-01 21:11:49 953088 ----a-r- c:\windows\system32\drivers\nvnrm.sys 2011-03-01 21:11:49 9216 ----a-r- c:\windows\system32\bdco1.dll 2011-03-01 21:11:49 442368 ----a-w- c:\windows\system32\nvunrm.exe 2011-03-01 21:11:49 35840 ----a-r- c:\windows\system32\nvconrm.dll 2011-03-01 21:11:49 22016 ----a-r- c:\windows\system32\drivers\nvnetbus.sys . ==================== Find3M ==================== . 2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll 2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll 2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll 2011-01-27 11:57:06 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-01-21 14:44:37 439296 ----a-w- c:\windows\system32\shimgvw.dll 2011-01-07 14:09:02 290048 ----a-w- c:\windows\system32\atmfd.dll 2010-12-31 13:10:33 1854976 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 11:56:56,28 =============== Attach . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_11-03-05.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 11.4.2010 г. 07:01:45 System Uptime: 30.3.2011 г. 06:40:12 (5 hours ago) . Motherboard: ASRock | | N68C-S UCC Processor: AMD Athlon 64 X2 Dual Core Processor 4000+ | CPUSocket | 2109/200mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 48 GiB total, 10,468 GiB free. D: is FIXED (NTFS) - 185 GiB total, 44,157 GiB free. E: is CDROM () F: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: Multimedia Controller Device ID: PCI\VEN_1131&DEV_7133&SUBSYS_00001131&REV_D0\4&25700A26&0&5020 Manufacturer: Name: Multimedia Controller PNP Device ID: PCI\VEN_1131&DEV_7133&SUBSYS_00001131&REV_D0\4&25700A26&0&5020 Service: . ==== System Restore Points =================== . RP1: 11.3.2011 г. 21:38:48 - Контролна точка на системата RP2: 12.3.2011 г. 22:06:07 - Контролна точка на системата RP3: 13.3.2011 г. 11:06:36 - Installed QuickTime RP4: 13.3.2011 г. 11:13:48 - Деинсталирана с Total Uninstall "QuickTime" RP5: 13.3.2011 г. 11:14:02 - Configured QuickTime RP6: 14.3.2011 г. 17:50:54 - Контролна точка на системата RP7: 15.3.2011 г. 18:11:07 - Контролна точка на системата RP8: 16.3.2011 г. 18:45:15 - Контролна точка на системата RP9: 17.3.2011 г. 20:35:57 - Контролна точка на системата RP10: 18.3.2011 г. 20:38:36 - Контролна точка на системата RP11: 19.3.2011 г. 21:28:20 - Контролна точка на системата RP12: 20.3.2011 г. 21:48:57 - Контролна точка на системата RP13: 21.3.2011 г. 22:07:28 - Контролна точка на системата RP14: 23.3.2011 г. 16:34:35 - Removed TuneUp Utilities 2008 RP15: 23.3.2011 г. 16:35:50 - Installed TuneUp Utilities 2008 RP16: 24.3.2011 г. 06:14:22 - Software Distribution Service 3.0 RP17: 24.3.2011 г. 19:25:36 - Деинсталирана с Total Uninstall "Adobe Acrobat 5.0" RP18: 25.3.2011 г. 14:56:44 - Деинсталирана с Total Uninstall "Adobe Reader 9.4.3 - Bulgarian" RP19: 25.3.2011 г. 14:58:20 - Removed Adobe Reader 9.4.3 - Bulgarian. RP20: 25.3.2011 г. 15:03:51 - Installed Adobe Reader X (10.0.1). RP21: 26.3.2011 г. 16:41:29 - Контролна точка на системата RP22: 27.3.2011 г. 19:38:34 - Контролна точка на системата RP23: 28.3.2011 г. 19:55:23 - Контролна точка на системата RP24: 29.3.2011 г. 22:11:11 - Контролна точка на системата RP25: 30.3.2011 г. 10:45:40 - Installed DirectX . ==== Installed Programs ====================== . µTorrent Български интерфейс за Advanced WindowsCare 3.1.0 Български интерфейс за TuneUp Utilities 2008 2007 Microsoft Office Suite Service Pack 2 (SP2) Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe Camera Raw 4.0 Adobe CMaps Adobe Color - Photoshop Specific Adobe Color Common Settings Adobe Color EU Extra Settings Adobe Color JA Extra Settings Adobe Color NA Recommended Settings Adobe Default Language CS3 Adobe Device Central CS3 Adobe ExtendScript Toolkit 2 Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe PDF Library Files Adobe Photoshop CS3 Adobe Reader X (10.0.1) Adobe Setup Adobe Stock Photos CS3 Adobe Type Support Adobe Update Manager CS3 Adobe Version Cue CS3 Client Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS3 Advanced SystemCare 3 AMD Processor Driver Ashampoo Burning Studio 9.21 CCleaner Comenius Logo Conduit Engine Daum PotPlayer 1.4.20715 RU ESET NOD32 Antivirus Google Toolbar for Internet Explorer Google Update Helper Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB915800-v4) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Ice Age 3 iMesh Microsoft Office Access MUI (Bulgarian) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Bulgarian) 2007 Microsoft Office Groove MUI (Bulgarian) 2007 Microsoft Office InfoPath MUI (Bulgarian) 2007 Microsoft Office OneNote MUI (Bulgarian) 2007 Microsoft Office Outlook MUI (Bulgarian) 2007 Microsoft Office PowerPoint MUI (Bulgarian) 2007 Microsoft Office Proof (Bulgarian) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Russian) 2007 Microsoft Office Proofing (Bulgarian) 2007 Microsoft Office Publisher MUI (Bulgarian) 2007 Microsoft Office Shared MUI (Bulgarian) 2007 Microsoft Office Word MUI (Bulgarian) 2007 Microsoft Software Update for Web Folders (Bulgarian) 12 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Mozilla Firefox (3.6.16) MyAshampoo Toolbar NVIDIA Drivers Pacific Liberation Force 1.0 PDF Settings Platform Security Update for Windows Internet Explorer 7 (KB938127-v2) Security Update for Windows Internet Explorer 7 (KB958215) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Search 4 - KB963093 Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165-v2) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981349) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Skype™ 5.1 SoundMAX SpeechLab Star Wars - Knights Of The Force Steep Turn - GTA San Andreas Sweet Home 3D version 3.1 The KMPlayer (remove only) Timez Attack Total Uninstall Professional 5.5.0.662 Ru-board edition TuneUp Utilities 2008 Update for Windows Internet Explorer 8 (KB2447568) Update for Windows Internet Explorer 8 (KB976662) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) USB PC Camera-168 uTorrentBar Toolbar VIA п»ї VLC media player 1.0.1 WebFldrs XP Windows Internet Explorer 8 WinRAR archiver . ==== End Of File =========================== Благодаря предварително! Имам диск но съм преинсталирал само веднъж и то с чужда помощ

    Редактирано от pepi1967 (преглед на промените)

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Здравейте..!:)

    Изтеглете ComboFix от тук или тук и го запазете на десктопа си.

    • Изключете вашата антивирусна и антишпионска програма, обикновено това става чрез натискане на десния бутон на мишката върху иконата на програма в системния трей.

    Бележка: Ако не можете я спрете или не сте сигурни коя програма да изключите, моля прегледайте информацията от този линк: How to Disable your Security Programs

    • Стартирайте Combo-Fix.com и следвайте инструкциите.

    Бележка: ComboFix ще се стартира без инсталирана Recovery Console.

    • Като част от неговата работа, ComboFix ще провери дали Microsoft Windows Recovery Console е инсталирана. Предвид бързо развиващия се зловреден софтуер е силно препоръчително да бъде инсталирана преди премахването на зловредния софтуер. Това ще Ви позволи да влезете в специален recovery/repair режим, който ще ни позволи по-лесно да решите проблем, който би могъл да възникне при премахване на зловредния софтуер.

    • Следвайте инструкциите, за да позволите на ComboFix да изтегли и инсталира Microsoft Windows Recovery Console. В един момент ще бъдете попитани дали сте съгласни с лицензното споразумение. Необходимо е да потвърдите, че сте съгласни, за да инсталирате Microsoft Windows Recovery Console.

    ** Забележете: Ако Microsoft Windows Recovery Console е вече инсталирана, ComboFix ще продължи към процеса по премахване на зловредния софтуер.

    Публикувано изображение

    След като Microsoft Windows Recovery Console е инсталирана, използвайки ComboFix, Вие ще видите следното съобщение:

    Публикувано изображение

    Изберете Yes, за да продължи сканирането за зловреден софтуер.

    Когато процесът приключи успешно, инструментът ще създаде лог файл. Моля, включете съдържанието на C:\ComboFix.txt в следващия Ви коментар в тази тема.

    Бележка:

    • Моля, не движете мишката, докато ComboFix работи. Това може да наруши процеса на работа.
    • ComboFix ще нулира всички настройки на Microsoft Internet Explorer, включително да направи IE браузър по подразбиране.
    • ComboFix ще изключи autorun функцията на ВСИЧКИ CD, Floppy и USB устройства, за да помогне при премахването на зловредния софтуер и Ви защити от бъдещи вируси/заплахи, които поразяват чрез autorun. Ако това е проблем за вас - моля, уведомете ме.
    • ComboFix ще изключи вашата интернет връзка. Интернет връзката ще се възстанови автоматично, преди ComboFix да завърши процеса на работа. При проблем, той ще прекрати интернет връзката. За да възстановите интернет връзката си, рестартирайте компютъра си.
    • В случай на проблем с ComboFix, той може да създаде лог файл. Моля, включете съдържанието на C:\BUG.txt в следващия Ви коментар в тази тема.

    Работата на ComboFix, може да отнеме до 20-30 минути, за да завърши, моля имайте търпение.

    Моля, не прикачвайте лог файла/овете от програмата, а го/ги копирайте и поставете в следващия Ви коментар в тази тема.

    • Харесва ми 1

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Мисля че изпълних всичко но този лог файл.не го намирам къде е В локален диск с имам иконка kombo fix като я отворя ми показва дискови устройства и хардуер свързан с този компютър Къде да го търся?

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Оставeте го, ComboFix не е необходим, защото проблемът ви не се дължи на зловреден софтуер. Grooveutil.dll е част от Microsoft Office 2007. За да поправите положението е необходимо да направите repair на инсталирания вече офис пакет 2007. Ако разполагате с инсталатора, стартирайте го и там има такава опция, тя ще направи необходимите промени, за да коригира проблема.

    Междувременно ви съветвам да деинсталирате следните приложения:

    Conduit Engine

    MyAshampoo Toolbar

    Те са отговорни за сериозни промени по браузъра, с цел извличане на облага за техните автори, рекламодатели и прочие изверги.

    • Харесва ми 2

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Благодаря много Деинсталирах Conduit Engine Но MyAshampoo Toolbar нещо се опъва не мога да го изтрия а за Office 2007 май не разполагам с с инсталатора Дали не е по добре да го изтрия целият ?


    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Но MyAshampoo Toolbar нещо се опъва не мога да го изтрия

    Нещо повече да ми кажете? Стартирайте Mozilla Firefox, отворете менюто Tools, изберете Add-ons, кликнете върху MyAshampoo Toolbar и изберете Uninstall. Когато деинсталацията приключи, затворете браузъра и го стартирайте отново, за да видите дали има някаква промяна.

    Между другото, след като приключим тук, отворете Help менюто и изберете Check for updates, за да обновите браузъра си до версия 4, която е наистина нещо много готино, много по-производително, бързо и леко от версията, която вие използвате, а именно 3.6 .

    а за Office 2007 май не разполагам с с инсталатора

    Дали не е по добре да го изтрия целият ?

    Да, това е другата опция, която имате. Можете да деинсталирате целия офис пакет и да го инсталирате отново, а го желаете разбира се.

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Мога да му махна отметката и не ми се показва като лента но иначе си стои там като натпис

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Отново ще попитам: Нещо повече можете ли да ми кажете от "нещо се опъва не мога да го изтрия". Искам да знам какво се случва! Интересува ме дали можете да го деинсталирате, а не да го изтриете.

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Значи windovsa e бг влизам в изглед-ленти с инструменти там е MyAshampoo Toolbar когато има отметка чекче ми излиза като лента най в дясно има option-uninstall като го натисна ме пита наистина ли искате да деинсталирате този продукт давам ок излиза друг прозорец (това действие е валидно за продукти който са инсталирани в момента) давам ок затварям мозилата отварям я на ново и няма никаква промяна

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    така премахнах другата но като маркирам my ashamo и натисна промени /премахни излиза прозорче с надпис could not open install.log file давам ок или затварям прозорчето от х затварям после пак влизам и програмата си е пак там

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Ще опитам едно експериментно решение на този проблем. Отидете в:

    c:\program files\myashampoo

    и проверете дали съществува файл наречен install.log и ми пишете отново.

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Ще опитам едно експериментно решение на този проблем. Отидете в:

    c:\program files\myashampoo

    и проверете дали съществува файл наречен install.log и ми пишете отново.

    файл с това име няма

    иначе има 8 файла вътре

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Нека в такъв случай директно ръчно да го изчистим.

    Изтеглете OTL (от OldTimer) и го запазете на вашия десктоп.

    Кликнете два пъти върху OTL.exe, за да стартирате програмата.

    Сложете отметки преди следните неща:

    • Scan all users
    Lop checkPurity check

    Под секцията Extra Registry, изберете Use SafeList

    Кликнете на Run Scan и изчакайте да завърши сканирането. (може да отнеме 10-15 минути)

    Когато завърши, публикувайте следните два лог файла:

    • OTL.txt (намира се на вашия десктоп)
    • Extras.txt (ще Ви се отвори автоматично)

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    OTL logfile created on: 30.3.2011 г. 17:49:11 - Run 1

    OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\pepi1967\Desktop

    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

    Internet Explorer (Version = 8.0.6001.18702)

    Locale: 00000402 | Country: Bulgaria | Language: BGR | Date Format: dd.M.yyyy 'г.'

    2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 47,00% Memory free

    4,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free

    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

    Drive C: | 47,85 Gb Total Space | 14,13 Gb Free Space | 29,52% Space Free | Partition Type: NTFS

    Drive D: | 185,02 Gb Total Space | 45,72 Gb Free Space | 24,71% Space Free | Partition Type: NTFS

    Computer Name: PEPI-B85C201174 | User Name: pepi1967 | Logged in as Administrator.

    Boot Mode: Normal | Scan Mode: All users

    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2011.03.30 17:45:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pepi1967\Desktop\OTL.exe

    PRC - [2011.03.30 16:00:26 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

    PRC - [2010.02.04 18:36:56 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

    PRC - [2010.02.04 18:36:38 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

    PRC - [2009.01.09 16:54:42 | 002,262,352 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe

    PRC - [2008.04.14 11:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

    PRC - [2005.10.03 21:23:36 | 000,020,480 | ---- | M] () -- C:\WINDOWS\CameraFixer.exe

    PRC - [2005.09.06 01:55:08 | 000,339,968 | ---- | M] () -- C:\WINDOWS\vsnpstd3.exe

    ========== Modules (SafeList) ==========

    MOD - [2011.03.30 17:45:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pepi1967\Desktop\OTL.exe

    MOD - [2010.08.23 19:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [Auto | Stopped] -- -- (PEVSystemStart)

    SRV - File not found [Disabled | Stopped] -- -- (HidServ)

    SRV - [2011.03.23 17:36:04 | 000,306,432 | ---- | M] (TuneUp Software GmbH) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)

    SRV - [2010.06.13 19:55:49 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)

    SRV - [2010.02.04 18:38:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)

    SRV - [2010.02.04 18:36:56 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)

    SRV - [2007.12.20 11:41:56 | 000,029,440 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)

    ========== Driver Services (SafeList) ==========

    DRV - [2010.04.14 20:05:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

    DRV - [2010.02.04 18:37:38 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)

    DRV - [2009.12.19 01:02:54 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)

    DRV - [2009.12.19 01:02:54 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)

    DRV - [2009.11.25 15:57:28 | 001,617,408 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)

    DRV - [2009.06.26 10:29:34 | 001,656,960 | R--- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (AMBFilt)

    DRV - [2008.12.02 09:56:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (MonFilt)

    DRV - [2008.08.18 13:54:24 | 000,145,952 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)

    DRV - [2008.03.25 06:48:08 | 000,022,016 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

    DRV - [2008.03.25 06:48:06 | 000,054,400 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

    DRV - [2005.11.24 02:02:12 | 008,719,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snpstd3.sys -- (SNPSTD3) USB PC Camera (SNPSTD3)

    DRV - [2005.08.11 08:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)

    DRV - [2005.03.10 01:53:00 | 000,036,352 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)

    DRV - [2004.08.13 05:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

    ========== Standard Registry (SafeList) ==========

    ========== Internet Explorer ==========

    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-21-1004336348-152049171-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://bksly.startya.com/?cfg=2-564-0-0&engine_id=3&provider_id=3&product_id=564&country=BG

    IE - HKU\S-1-5-21-1004336348-152049171-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://search.imesh.com/

    IE - HKU\S-1-5-21-1004336348-152049171-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-21-1004336348-152049171-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========

    FF - prefs.js..browser.search.defaultengine: "Ask.com"

    FF - prefs.js..browser.search.defaultenginename: "iMesh Web Search"

    FF - prefs.js..browser.search.defaultthis.engineName: " "

    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}"

    FF - prefs.js..browser.search.order.1: "iMesh Web Search"

    FF - prefs.js..browser.search.selectedEngine: "Уикипедия (bg)"

    FF - prefs.js..browser.search.useDBForOrder: true

    FF - prefs.js..browser.startup.homepage: "http://www.google.bg/"

    FF - prefs.js..extensions.enabledItems: abvnotifier@netinfo.bg:0.9.8

    FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.9.8

    FF - prefs.js..extensions.enabledItems: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4}:3.3.3.2

    FF - prefs.js..extensions.enabledItems: bg-BG@dictionaries.addons.mozilla.org:4.3

    FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2

    FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.2.5.2

    FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019

    FF - prefs.js..extensions.enabledItems: {28387537-e3f9-4ed7-860c-11e69af4a8a0}:4.1.0.00

    FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.2

    FF - prefs.js..keyword.URL: "http://bksly.startya.com/s/?src=FF-Address&site=Yahoo!&cfg=2-564-0-0&q="

    FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.03.30 16:00:36 | 000,000,000 | ---D | M]

    FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.03.30 16:00:36 | 000,000,000 | ---D | M]

    FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.04.13 22:23:07 | 000,000,000 | ---D | M]

    [2011.02.05 18:24:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Extensions

    [2011.03.30 16:03:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions

    [2011.02.05 18:24:30 | 000,000,000 | ---D | M] (MediaBar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}

    [2011.03.25 16:15:27 | 000,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}

    [2011.03.22 07:40:08 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}

    [2011.03.30 16:03:32 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}

    [2010.05.19 16:40:50 | 000,000,000 | ---D | M] (ABV Notifier) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\abvnotifier@netinfo.bg

    [2010.10.28 07:52:09 | 000,000,000 | ---D | M] (Bulgarian Dictionary) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\bg-BG@dictionaries.addons.mozilla.org

    [2011.03.30 16:03:30 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com

    [2011.03.24 22:55:01 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\foxmarks@kei.com

    [2010.12.28 09:58:27 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com

    [2010.04.12 00:20:34 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\askcom.xml

    [2010.12.20 09:37:37 | 000,000,863 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\conduit.xml

    [2010.04.14 20:05:48 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\daemon-search.xml

    [2010.09.02 11:09:28 | 000,002,486 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\iMeshWebSearch.xml

    [2011.03.20 11:54:10 | 000,001,058 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\yahoo-zugo.xml

    [2011.02.05 18:24:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

    File not found (No name found) --

    [2011.03.30 16:00:26 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll

    [2011.03.30 16:00:28 | 000,001,083 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\911bg.xml

    [2011.03.30 16:00:28 | 000,002,442 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\diribg.xml

    [2010.09.02 11:09:28 | 000,002,486 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\iMeshWebSearch.xml

    [2011.03.30 16:00:28 | 000,001,515 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pe-bg.xml

    [2011.03.30 16:00:28 | 000,001,857 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\portalbgdict.xml

    [2011.03.30 16:00:28 | 000,001,220 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-bg.xml

    O1 HOSTS File: ([2008.04.14 11:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

    O1 - Hosts: 127.0.0.1 localhost

    O2 - BHO: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)

    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.)

    O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTo1.dll (Conduit Ltd.)

    O3 - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.

    O3 - HKLM\..\Toolbar: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)

    O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTo1.dll (Conduit Ltd.)

    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.

    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.

    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (MyAshampoo Toolbar) - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)

    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTo1.dll (Conduit Ltd.)

    O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

    O4 - HKLM..\Run: [CameraFixer] C:\WINDOWS\CameraFixer.exe ()

    O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)

    O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

    O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

    O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

    O4 - HKLM..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe ()

    O4 - HKU\S-1-5-21-1004336348-152049171-682003330-1003..\Run: [Advanced SystemCare 3] C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe (IObit)

    O4 - HKU\.DEFAULT..\RunOnce: [_nltide_2] File not found

    O4 - HKU\S-1-5-18..\RunOnce: [_nltide_2] File not found

    O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TV Remote Control.lnk = C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe (Kworld Computer Co., Ltd.)

    O4 - Startup: C:\Documents and Settings\x\Start Menu\Programs\Startup\Configure Bulgarian Speech.lnk = C:\Documents and Settings\pepi1967\Application Data\Microsoft\Installer\{319A3CA9-DA63-4D65-8B25-403CF9CBF087}\_5af141bb.exe ()

    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present

    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

    O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

    O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

    O7 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

    O7 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

    O7 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)

    O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)

    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

    O24 - Desktop Components:0 (Моята текуща начална страница) - About:Home

    O24 - Desktop WallPaper: C:\Documents and Settings\pepi1967\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

    O24 - Desktop BackupWallPaper: C:\Documents and Settings\pepi1967\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

    O32 - HKLM CDRom: AutoRun - 1

    O32 - AutoRun File - [2009.12.14 15:59:42 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

    O34 - HKLM BootExecute: (autocheck autochk *) - File not found

    O35 - HKLM\..comfile [open] -- "%1" %*

    O35 - HKLM\..exefile [open] -- "%1" %*

    O37 - HKLM\...com [@ = comfile] -- "%1" %*

    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011.03.30 17:45:18 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\pepi1967\Desktop\OTL.exe

    [2011.03.30 16:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\My Documents\Downloads

    [2011.03.30 13:25:29 | 000,000,000 | RHSD | C] -- C:\cmdcons

    [2011.03.30 13:23:49 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

    [2011.03.30 13:23:49 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

    [2011.03.30 13:23:49 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

    [2011.03.30 13:23:49 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

    [2011.03.30 13:23:44 | 000,000,000 | --SD | C] -- C:\ComboFix

    [2011.03.30 13:23:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT

    [2011.03.30 13:23:28 | 000,000,000 | ---D | C] -- C:\Qoobox

    [2011.03.30 10:45:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Pacific Liberation Force

    [2011.03.30 10:30:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\pepi1967\My Documents\My Pictures

    [2011.03.29 15:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\Transformers.2.Revenge.of.the.Fallen.2009.720p.BRRip.XviD.AC3-ViSiON

    [2011.03.28 09:05:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\My Documents\PotPlayer

    [2011.03.27 14:49:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\Rango.2011.TS.Xvid.AC3-avetorrents

    [2011.03.27 12:07:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\My Documents\The KMPlayer

    [2011.03.25 19:39:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\40 Mind Blowing Digital Art Wallpapers HD 1080p

    [2011.03.25 16:03:53 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe

    [2011.03.25 15:01:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\pepi1967\Recent

    [2011.03.24 19:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\eTeks Sweet Home 3D

    [2011.03.24 19:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\Sweet Home 3D

    [2011.03.23 17:45:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Start Menu\Programs\TuneUp Utilities 2008

    [2011.03.23 17:35:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TuneUp Software

    [2011.03.23 17:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2008

    [2011.03.23 17:34:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard

    [2011.03.21 18:24:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Profiles

    [2011.03.21 18:24:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\InterTrust

    [2011.03.21 18:24:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe

    [2011.03.21 18:24:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Buka

    [2011.03.17 20:11:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Local Settings\Application Data\Babylon

    [2011.03.17 20:11:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Babylon

    [2011.03.17 20:11:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\Babylon

    [2011.03.15 14:25:28 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys

    [2011.03.13 16:11:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\снимки

    [2011.03.13 12:04:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Canon

    [2011.03.12 13:24:06 | 000,955,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GrooveUtil.dll

    [2011.03.11 22:25:31 | 000,306,432 | ---- | C] (TuneUp Software GmbH) -- C:\WINDOWS\System32\TuneUpDefragService.exe

    [2011.03.11 22:25:31 | 000,029,440 | ---- | C] (TuneUp Software GmbH) -- C:\WINDOWS\System32\uxtuneup.dll

    [2011.03.11 22:25:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\TuneUp Software

    [2011.03.11 22:25:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\TuneUp Utilities 2008

    [2011.03.11 21:57:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\180 National Geographic Wallpapers 1600 X 1200

    [2011.03.11 19:33:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Advanced SystemCare 3

    [2011.03.11 19:06:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Start Menu\Programs\Advanced SystemCare 3

    [2011.03.11 18:52:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\IObit

    [2011.03.11 18:52:34 | 000,000,000 | ---D | C] -- C:\Program Files\IObit

    [2011.03.06 17:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Desktop\ComputerDesktopWallpapersCollection(21)

    [2011.03.03 23:43:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Skype

    [2011.03.03 19:37:51 | 002,832,544 | ---- | C] (Adobe Systems, Inc.) -- C:\Documents and Settings\pepi1967\Desktop\install_flash_player.exe

    [2011.03.03 19:30:39 | 000,000,000 | -HSD | C] -- C:\Config.Msi

    [2011.03.02 00:23:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\InstallShield

    [2011.03.02 00:16:43 | 000,008,704 | R--- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\viahdcpl.cpl

    [2011.03.02 00:16:39 | 001,656,960 | R--- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys

    [2011.03.02 00:16:39 | 001,389,056 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys

    [2011.03.02 00:16:27 | 000,331,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll

    [2011.03.02 00:16:27 | 000,000,000 | ---D | C] -- C:\Program Files\VIA

    [2011.03.02 00:14:40 | 003,026,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll

    [2011.03.02 00:14:40 | 002,744,320 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll

    [2011.03.02 00:14:40 | 000,290,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsth.dll

    [2011.03.02 00:14:38 | 001,560,576 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll

    [2011.03.02 00:14:38 | 001,108,512 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll

    [2011.03.02 00:14:38 | 000,801,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe

    [2011.03.02 00:14:38 | 000,401,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll

    [2011.03.02 00:14:37 | 004,280,320 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll

    [2011.03.02 00:14:37 | 003,796,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll

    [2011.03.02 00:14:37 | 000,420,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl

    [2011.03.02 00:14:36 | 006,586,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll

    [2011.03.02 00:14:36 | 004,280,320 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll

    [2011.03.02 00:14:36 | 003,489,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll

    [2011.03.02 00:14:36 | 002,854,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll

    [2011.03.02 00:14:36 | 001,273,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll

    [2011.03.02 00:14:36 | 000,458,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll

    [2011.03.02 00:14:36 | 000,188,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll

    [2011.03.02 00:14:35 | 004,710,400 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll

    [2011.03.02 00:14:33 | 001,253,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvPVEnc.ax

    [2011.03.02 00:14:32 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll

    [2011.03.02 00:12:01 | 000,013,856 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoZht.dll

    [2011.03.02 00:12:01 | 000,013,856 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoZhc.dll

    [2011.03.02 00:12:00 | 000,372,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraiins.dll

    [2011.03.02 00:12:00 | 000,372,256 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidco.dll

    [2011.03.02 00:12:00 | 000,145,952 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvgts.sys

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoPtb.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoPt.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoIt.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoFr.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoEsm.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoEs.dll

    [2011.03.02 00:12:00 | 000,016,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoEl.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoTr.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoSv.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoSl.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoSk.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoRu.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoPl.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoNo.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoNl.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoHu.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoFi.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoDe.dll

    [2011.03.02 00:12:00 | 000,016,416 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoDa.dll

    [2011.03.02 00:12:00 | 000,015,904 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoTh.dll

    [2011.03.02 00:12:00 | 000,015,904 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoENU.dll

    [2011.03.02 00:12:00 | 000,015,904 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoEng.dll

    [2011.03.02 00:12:00 | 000,015,904 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoCs.dll

    [2011.03.02 00:12:00 | 000,015,904 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoAr.dll

    [2011.03.02 00:12:00 | 000,015,392 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoHe.dll

    [2011.03.02 00:12:00 | 000,014,880 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoJa.dll

    [2011.03.02 00:12:00 | 000,014,368 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRCoKo.dll

    [2011.03.02 00:11:51 | 000,200,704 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll

    [2011.03.02 00:11:51 | 000,054,400 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys

    [2011.03.02 00:11:49 | 000,953,088 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys

    [2011.03.02 00:11:49 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe

    [2011.03.02 00:11:49 | 000,035,840 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll

    [2011.03.02 00:11:49 | 000,022,016 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys

    [2011.03.02 00:11:49 | 000,009,216 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll

    [2011.03.02 00:10:06 | 000,524,288 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\VMAPO32.DLL

    [2011.03.02 00:10:06 | 000,062,464 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\VMWRP32.DLL

    [2011.03.02 00:10:06 | 000,047,104 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\VMPPLD32.DLL

    [2011.03.02 00:10:06 | 000,044,032 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\VMPPCN32.DLL

    [2011.03.02 00:10:05 | 000,211,456 | R--- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\Dts2APO.dll

    [2011.03.02 00:10:05 | 000,181,248 | R--- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\ViaMicArrayAPO.dll

    [2011.03.02 00:10:05 | 000,076,288 | R--- | C] (QSound Labs, Inc.) -- C:\WINDOWS\System32\nQPropPageExt.dll

    [2011.03.02 00:10:05 | 000,075,776 | R--- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\Dts2PropPageExt.dll

    [2011.03.02 00:10:05 | 000,071,680 | R--- | C] (QSound Labs, Inc.) -- C:\WINDOWS\System32\nQAPO.dll

    [2011.03.02 00:10:05 | 000,068,608 | R--- | C] (VIA Technologies,Inc.) -- C:\WINDOWS\System32\ViaMicArrayPropPageExt.dll

    [2011.03.02 00:10:04 | 001,617,408 | R--- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\viahduaa.sys

    [2011.03.02 00:10:04 | 000,868,352 | R--- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\VIAPropPageExt.dll

    [2011.03.02 00:10:04 | 000,502,784 | R--- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\VIASysFx.dll

    [2010.04.18 02:03:46 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnpstd3.dll

    [2010.04.18 02:03:46 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll

    [2010.04.18 02:03:46 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll

    [2010.02.22 13:23:52 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\vsnpstd3.dll

    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    [1 C:\Documents and Settings\pepi1967\*.tmp files -> C:\Documents and Settings\pepi1967\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011.03.30 17:45:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pepi1967\Desktop\OTL.exe

    [2011.03.30 16:53:00 | 000,000,890 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

    [2011.03.30 15:00:27 | 000,204,744 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

    [2011.03.30 15:00:23 | 001,556,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

    [2011.03.30 15:00:23 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

    [2011.03.30 15:00:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

    [2011.03.30 14:38:50 | 000,002,511 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\Microsoft Office Excel 2007 (2).lnk

    [2011.03.30 14:38:27 | 000,002,561 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\Microsoft Office Word 2007 (2).lnk

    [2011.03.30 14:36:29 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

    [2011.03.30 13:25:32 | 000,000,339 | RHS- | M] () -- C:\boot.ini

    [2011.03.30 13:14:54 | 004,309,030 | R--- | M] () -- C:\Documents and Settings\pepi1967\Desktop\ComboFix.exe

    [2011.03.30 11:55:52 | 000,625,664 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\dds.scr

    [2011.03.30 11:10:34 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\pepi1967.lnk

    [2011.03.30 10:45:08 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Pacific Liberation Force.lnk

    [2011.03.30 09:02:51 | 000,085,522 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\123(2).JPG

    [2011.03.27 07:40:51 | 000,314,508 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

    [2011.03.27 07:40:51 | 000,040,836 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

    [2011.03.25 19:38:52 | 020,353,189 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\40 Mind Blowing Digital Art Wallpapers HD 1080p.rar

    [2011.03.25 18:16:09 | 000,000,382 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job

    [2011.03.25 16:04:19 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader X.lnk

    [2011.03.24 19:03:40 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\Sweet Home 3D.lnk

    [2011.03.23 18:57:10 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\The Stalin Subway.lnk

    [2011.03.23 18:01:02 | 000,000,660 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\велиан.lnk

    [2011.03.23 17:36:04 | 000,306,432 | ---- | M] (TuneUp Software GmbH) -- C:\WINDOWS\System32\TuneUpDefragService.exe

    [2011.03.23 17:36:03 | 000,000,833 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\TuneUp Utilities 2008.lnk

    [2011.03.23 17:36:03 | 000,000,613 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\TuneUp 1-Click Maintenance.lnk

    [2011.03.22 20:41:17 | 000,053,248 | ---- | M] () -- C:\Documents and Settings\pepi1967\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

    [2011.03.21 18:24:42 | 000,104,544 | ---- | M] () -- C:\WINDOWS\_detmp.1

    [2011.03.20 14:00:41 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\pepi1967\Desktop\deikata2.lnk

    [2011.03.20 11:54:13 | 000,000,222 | ---- | M] () -- C:\WINDOWS\wininit.ini

    [2011.03.13 12:12:14 | 000,001,751 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\QTSBandwidthCache

    [2011.03.13 12:07:22 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn

    [2011.03.13 12:07:22 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for

    [2011.03.11 19:33:44 | 000,000,826 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Advanced SystemCare.lnk

    [2011.03.03 19:37:52 | 002,832,544 | ---- | M] (Adobe Systems, Inc.) -- C:\Documents and Settings\pepi1967\Desktop\install_flash_player.exe

    [2011.03.02 00:24:05 | 000,000,223 | ---- | M] () -- C:\Boot.bak

    [2011.03.02 00:16:44 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\HD ADeck.lnk

    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    [1 C:\Documents and Settings\pepi1967\*.tmp files -> C:\Documents and Settings\pepi1967\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2011.03.30 16:00:36 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk

    [2011.03.30 13:25:32 | 000,000,223 | ---- | C] () -- C:\Boot.bak

    [2011.03.30 13:25:30 | 000,260,272 | RHS- | C] () -- C:\cmldr

    [2011.03.30 13:23:49 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe

    [2011.03.30 13:23:49 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

    [2011.03.30 13:23:49 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe

    [2011.03.30 13:23:49 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

    [2011.03.30 13:23:49 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

    [2011.03.30 13:13:48 | 004,309,030 | R--- | C] () -- C:\Documents and Settings\pepi1967\Desktop\ComboFix.exe

    [2011.03.30 11:55:39 | 000,625,664 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\dds.scr

    [2011.03.30 10:45:08 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Pacific Liberation Force.lnk

    [2011.03.30 09:02:51 | 000,085,522 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\123(2).JPG

    [2011.03.25 19:38:17 | 020,353,189 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\40 Mind Blowing Digital Art Wallpapers HD 1080p.rar

    [2011.03.25 16:04:19 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader X.lnk

    [2011.03.25 16:04:19 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader X.lnk

    [2011.03.24 20:25:44 | 000,104,544 | ---- | C] () -- C:\WINDOWS\_detmp.1

    [2011.03.24 19:03:40 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\Sweet Home 3D.lnk

    [2011.03.23 18:49:40 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\The Stalin Subway.lnk

    [2011.03.23 18:01:07 | 000,000,660 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\велиан.lnk

    [2011.03.23 17:36:03 | 000,000,839 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\TuneUp Utilities 2008.lnk

    [2011.03.23 17:36:03 | 000,000,833 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\TuneUp Utilities 2008.lnk

    [2011.03.23 17:36:03 | 000,000,613 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\TuneUp 1-Click Maintenance.lnk

    [2011.03.20 14:00:00 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\deikata2.lnk

    [2011.03.13 12:09:28 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\QTSBandwidthCache

    [2011.03.13 12:07:19 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn

    [2011.03.13 12:07:19 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for

    [2011.03.11 22:25:32 | 000,000,382 | ---- | C] () -- C:\WINDOWS\tasks\1-Click Maintenance.job

    [2011.03.11 19:33:44 | 000,000,826 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Advanced SystemCare.lnk

    [2011.03.03 23:51:45 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\pepi1967\Desktop\pepi1967.lnk

    [2011.03.03 19:26:25 | 000,000,222 | ---- | C] () -- C:\WINDOWS\wininit.ini

    [2011.03.02 00:16:44 | 000,000,855 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HD ADeck.lnk

    [2011.03.02 00:16:44 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\HD ADeck.lnk

    [2011.03.02 00:15:10 | 000,212,711 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb

    [2011.03.02 00:12:06 | 000,007,143 | R--- | C] () -- C:\WINDOWS\System32\nvide.nvu

    [2011.03.02 00:11:49 | 000,005,836 | R--- | C] () -- C:\WINDOWS\System32\nvnrm.nvu

    [2010.10.12 18:46:10 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI

    [2010.04.18 02:03:52 | 000,090,112 | ---- | C] () -- C:\WINDOWS\tsnpstd3.exe

    [2010.04.18 02:03:50 | 000,339,968 | ---- | C] () -- C:\WINDOWS\vsnpstd3.exe

    [2010.04.18 02:03:50 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini

    [2010.04.18 02:03:49 | 008,719,616 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd3.sys

    [2010.04.18 02:03:46 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnpstd3.exe

    [2010.04.18 02:03:41 | 000,020,480 | ---- | C] () -- C:\WINDOWS\CameraFixer.exe

    [2010.04.16 04:19:06 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

    [2010.04.11 23:34:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat

    [2010.04.11 08:08:02 | 000,053,248 | ---- | C] () -- C:\Documents and Settings\pepi1967\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

    [2010.04.11 07:46:16 | 000,015,466 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

    [2010.04.11 07:31:58 | 000,001,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin

    [2010.04.11 07:27:57 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

    [2010.04.11 07:27:38 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

    [2010.04.11 07:01:52 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

    [2010.04.11 06:54:08 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

    [2010.04.10 23:40:29 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

    [2010.04.10 23:39:07 | 001,556,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

    [2009.12.19 20:31:49 | 000,000,016 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\fvgqad.dat

    [2008.04.14 11:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

    [2008.04.14 11:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

    [2008.04.14 11:00:00 | 000,314,508 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

    [2008.04.14 11:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

    [2008.04.14 11:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

    [2008.04.14 11:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

    [2008.04.14 11:00:00 | 000,040,836 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

    [2008.04.14 11:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

    [2008.04.14 11:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

    [2008.04.14 11:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

    [2008.04.14 11:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin

    [2008.04.14 11:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

    [2006.07.21 11:50:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

    [2006.07.21 11:50:00 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe

    [2006.07.21 11:50:00 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

    [2006.07.21 11:50:00 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe

    [2006.07.21 11:50:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

    [2006.07.21 11:50:00 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll

    [2006.07.21 11:50:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

    [2006.07.21 11:50:00 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe

    [2006.07.21 11:50:00 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe

    [2006.07.21 11:50:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

    [2003.07.04 07:42:16 | 000,000,731 | ---- | C] () -- C:\WINDOWS\System32\xpstylelib.dll

    ========== LOP Check ==========

    [2009.12.14 19:15:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ashampoo

    [2010.02.08 17:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite

    [2010.03.03 22:02:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Martau

    [2011.02.05 18:24:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\1B4E

    [2010.04.15 01:02:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ashampoo

    [2011.03.17 20:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Babylon

    [2010.04.14 00:07:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\DAEMON Tools Lite

    [2010.04.13 22:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ESET

    [2010.04.14 21:22:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Martau

    [2011.01.14 22:06:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP

    [2011.03.23 17:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TuneUp Software

    [2011.02.05 18:26:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{DE0AF019-D61B-423F-9C3B-D49ECD51D8A1}

    [2010.04.19 01:22:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\Activision

    [2011.01.17 21:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\Ashampoo

    [2011.03.17 20:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\Babylon

    [2010.04.13 01:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\BSplayer PRO

    [2010.04.14 20:10:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\DAEMON Tools Lite

    [2011.02.05 18:25:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\imeshbandmltbpi

    [2011.03.21 18:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\InterTrust

    [2011.03.11 18:52:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\IObit

    [2011.02.05 18:25:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\mediabarim

    [2011.01.05 09:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\MSNInstaller

    [2011.03.30 11:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\PriceGong

    [2010.04.14 05:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\TeamViewer

    [2011.03.11 22:25:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\TuneUp Software

    [2011.03.29 22:21:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\uTorrent

    [2010.11.15 19:26:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pepi1967\Application Data\Windows Search

    [2010.02.08 20:20:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\x\Application Data\Activision

    [2009.12.14 19:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\x\Application Data\Ashampoo

    [2010.02.08 17:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\x\Application Data\DAEMON Tools Lite

    [2010.04.08 22:05:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\x\Application Data\uTorrent

    [2011.03.25 18:16:09 | 000,000,382 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job

    ========== Purity Check ==========

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 151 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:BFE23423

    < End of report >

    OTL Extras logfile created on: 30.3.2011 г. 17:49:11 - Run 1

    OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\pepi1967\Desktop

    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

    Internet Explorer (Version = 8.0.6001.18702)

    Locale: 00000402 | Country: Bulgaria | Language: BGR | Date Format: dd.M.yyyy 'г.'

    2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 47,00% Memory free

    4,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free

    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

    Drive C: | 47,85 Gb Total Space | 14,13 Gb Free Space | 29,52% Space Free | Partition Type: NTFS

    Drive D: | 185,02 Gb Total Space | 45,72 Gb Free Space | 24,71% Space Free | Partition Type: NTFS

    Computer Name: PEPI-B85C201174 | User Name: pepi1967 | Logged in as Administrator.

    Boot Mode: Normal | Scan Mode: All users

    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========

    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

    batfile [open] -- "%1" %*

    cmdfile [open] -- "%1" %*

    comfile [open] -- "%1" %*

    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

    exefile [open] -- "%1" %*

    piffile [open] -- "%1" %*

    regfile [merge] -- Reg Error: Key error.

    scrfile [config] -- "%1"

    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

    scrfile [open] -- "%1" /S

    txtfile [edit] -- Reg Error: Key error.

    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

    Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()

    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()

    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

    "FirstRunDisabled" = 1

    "AntiVirusDisableNotify" = 0

    "FirewallDisableNotify" = 0

    "UpdatesDisableNotify" = 0

    "AntiVirusOverride" = 0

    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

    "EnableFirewall" = 1

    "DoNotAllowExceptions" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

    "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007

    "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

    "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" = C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

    "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)

    "C:\Program Files\PotPlayer\potplayermini.exe" = C:\Program Files\PotPlayer\potplayermini.exe:*:Enabled:Daum PotPlayer -- (Daum Communications)

    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

    "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3

    "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting

    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer

    "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin

    "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform

    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

    "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3

    "{319A3CA9-DA63-4D65-8B25-403CF9CBF087}" = SpeechLab

    "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

    "{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}" = Adobe Photoshop CS3

    "{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings

    "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3

    "{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008

    "{5B18687F-F881-481E-923A-4A557F8C431A}" = Comenius Logo

    "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All

    "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3

    "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3

    "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3

    "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support

    "{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}" = iMesh

    "{90120000-0010-0402-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Bulgarian) 12

    "{90120000-0015-0402-0000-0000000FF1CE}" = Microsoft Office Access MUI (Bulgarian) 2007

    "{90120000-0015-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-0016-0402-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Bulgarian) 2007

    "{90120000-0016-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-0018-0402-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Bulgarian) 2007

    "{90120000-0018-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-0019-0402-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Bulgarian) 2007

    "{90120000-0019-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001A-0402-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Bulgarian) 2007

    "{90120000-001A-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001B-0402-0000-0000000FF1CE}" = Microsoft Office Word MUI (Bulgarian) 2007

    "{90120000-001B-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001F-0402-0000-0000000FF1CE}" = Microsoft Office Proof (Bulgarian) 2007

    "{90120000-001F-0402-0000-0000000FF1CE}_ENTERPRISE_{FB4EE5BD-7C0B-4B5C-ACEC-D1F160BE9B47}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007

    "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

    "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-001F-0419-0000-0000000FF1CE}" = Microsoft Office Proof (Russian) 2007

    "{90120000-001F-0419-0000-0000000FF1CE}_ENTERPRISE_{57A92C5E-E76A-49CC-9EC2-A7B6CE1255EA}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-002C-0402-0000-0000000FF1CE}" = Microsoft Office Proofing (Bulgarian) 2007

    "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-0044-0402-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Bulgarian) 2007

    "{90120000-0044-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-006E-0402-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Bulgarian) 2007

    "{90120000-006E-0402-0000-0000000FF1CE}_ENTERPRISE_{381C20B4-5DD3-41E1-A21F-82E9CEAEEA5D}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-00A1-0402-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Bulgarian) 2007

    "{90120000-00A1-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90120000-00BA-0402-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Bulgarian) 2007

    "{90120000-00BA-0402-0000-0000000FF1CE}_ENTERPRISE_{B7F55896-AAF7-4FCA-B9A7-791825A8FAFB}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)

    "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3

    "{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings

    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

    "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3

    "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps

    "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific

    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper

    "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings

    "{AC76BA86-7AD7-1033-7B44-AA0000000001}" = Adobe Reader X (10.0.1)

    "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0

    "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3

    "{BEE01586-390A-4F83-828A-00229BA98065}" = ESET NOD32 Antivirus

    "{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver

    "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2

    "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client

    "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files

    "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings

    "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings

    "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1

    "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3

    "{ECD03DA7-5952-406A-8156-5F0C93618D1F}" = USB PC Camera-168

    "{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX

    "{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}" = Adobe Setup

    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

    "Adobe_719d6f144d0c086a0dfa7ff76bb9ac1" = Adobe Photoshop CS3

    "Advanced SystemCare 3_is1" = Advanced SystemCare 3

    "Ashampoo Burning Studio 9_is1" = Ashampoo Burning Studio 9.21

    "CCleaner" = CCleaner

    "Daum PotPlayer 1.4.20715 RU_is1" = Daum PotPlayer 1.4.20715 RU

    "ENTERPRISE" = Microsoft Office Enterprise 2007

    "Ice Age 3_is1" = Ice Age 3

    "ie8" = Windows Internet Explorer 8

    "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA п»ї

    "Mozilla Firefox 4.0 (x86 bg)" = Mozilla Firefox 4.0 (x86 bg)

    "MyAshampoo Toolbar" = MyAshampoo Toolbar

    "NVIDIA Drivers" = NVIDIA Drivers

    "Pacific Liberation Force" = Pacific Liberation Force 1.0

    "Star Wars - Knights Of The Force_is1" = Star Wars - Knights Of The Force

    "Steep Turn - GTA San Andreas_is1" = Steep Turn - GTA San Andreas

    "Sweet Home 3D_is1" = Sweet Home 3D version 3.1

    "The KMPlayer" = The KMPlayer (remove only)

    "Timez Attack 4.04" = Timez Attack

    "Total Uninstall 5_is1" = Total Uninstall Professional 5.5.0.662 Ru-board edition

    "uTorrent" = µTorrent

    "uTorrentBar Toolbar" = uTorrentBar Toolbar

    "VLC media player" = VLC media player 1.0.1

    "WinRAR archiver" = WinRAR archiver

    "Български интерфейс за Advanced WindowsCare" = Български интерфейс за Advanced WindowsCare 3.1.0

    "Български интерфейс за TuneUp Utilities" = Български интерфейс за TuneUp Utilities 2008

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]

    Error - 16.1.2011 г. 07:48:49 | Computer Name = PEPI-B85C201174 | Source = Application Hang | ID = 1002

    Description = Hanging application gta_sa.exe, version 0.0.0.0, hang module hungapp,

    version 0.0.0.0, hang address 0x00000000.

    Error - 23.1.2011 г. 03:09:18 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1000

    Description = Faulting application gta_sa.exe, version 0.0.0.0, faulting module

    gta_sa.exe, version 0.0.0.0, fault address 0x0019ad76.

    Error - 30.1.2011 г. 13:56:06 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1000

    Description = Faulting application gta_sa.exe, version 0.0.0.0, faulting module

    d3d9.dll, version 5.3.2600.5512, fault address 0x0004e75f.

    Error - 18.2.2011 г. 12:24:50 | Computer Name = PEPI-B85C201174 | Source = Application Hang | ID = 1002

    Description = Hanging application firefox.exe, version 1.9.2.3989, hang module hungapp,

    version 0.0.0.0, hang address 0x00000000.

    Error - 18.2.2011 г. 12:27:59 | Computer Name = PEPI-B85C201174 | Source = Application Hang | ID = 1002

    Description = Hanging application plugin-container.exe, version 1.9.2.3989, hang

    module hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 19.2.2011 г. 07:05:52 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1000

    Description = Faulting application jasp.exe, version 1.0.1.0, faulting module jagamex86.dll,

    version 1.0.1.0, fault address 0x0001ac97.

    Error - 03.3.2011 г. 12:32:19 | Computer Name = PEPI-B85C201174 | Source = MsiInstaller | ID = 11719

    Description = Продукт: Microsoft Office Enterprise 2007 -- Грешка 1719.The Windows

    Installer Service could not be accessed. This can occur if you are running Windows

    in safe mode, or if the Windows Installer is not correctly installed. Contact your

    support personnel for assistance.

    Error - 04.3.2011 г. 11:46:44 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1000

    Description = Faulting application jasp.exe, version 1.0.1.0, faulting module jasp.exe,

    version 1.0.1.0, fault address 0x000de880.

    Error - 04.3.2011 г. 11:46:54 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1001

    Description = Fault bucket 73309809.

    Error - 12.3.2011 г. 13:17:04 | Computer Name = PEPI-B85C201174 | Source = Application Error | ID = 1000

    Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

    module unknown, version 0.0.0.0, fault address 0x030dab50.

    [ System Events ]

    Error - 01.3.2011 г. 20:32:59 | Computer Name = PEPI-B85C201174 | Source = Tcpip | ID = 4198

    Description = The system detected an address conflict for IP address 169.254.217.232

    with the system having network hardware address 00:30:48:67:2C:AD. The local interface

    has been disabled.

    Error - 01.3.2011 г. 20:37:44 | Computer Name = PEPI-B85C201174 | Source = W32Time | ID = 39452689

    Description = Time Provider NtpClient: An error occurred during DNS lookup of the

    manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup

    again in 15 minutes. The error was: A socket operation was attempted to an unreachable

    host. (0x80072751)

    Error - 01.3.2011 г. 20:37:44 | Computer Name = PEPI-B85C201174 | Source = W32Time | ID = 39452701

    Description = The time provider NtpClient is configured to acquire time from one

    or more time sources, however none of the sources are currently accessible. No attempt

    to contact a source will be made for 14 minutes. NtpClient has no source of accurate

    time.

    Error - 01.3.2011 г. 20:43:47 | Computer Name = PEPI-B85C201174 | Source = W32Time | ID = 39452689

    Description = Time Provider NtpClient: An error occurred during DNS lookup of the

    manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup

    again in 15 minutes. The error was: A socket operation was attempted to an unreachable

    host. (0x80072751)

    Error - 01.3.2011 г. 20:43:47 | Computer Name = PEPI-B85C201174 | Source = W32Time | ID = 39452701

    Description = The time provider NtpClient is configured to acquire time from one

    or more time sources, however none of the sources are currently accessible. No attempt

    to contact a source will be made for 15 minutes. NtpClient has no source of accurate

    time.

    Error - 01.3.2011 г. 20:45:17 | Computer Name = PEPI-B85C201174 | Source = Tcpip | ID = 4198

    Description = The system detected an address conflict for IP address 169.254.102.126

    with the system having network hardware address 00:30:48:67:2C:AD. The local interface

    has been disabled.

    Error - 11.3.2011 г. 15:25:31 | Computer Name = PEPI-B85C201174 | Source = Service Control Manager | ID = 7000

    Description = The TuneUp Theme Extension service failed to start due to the following

    error: %%1083

    Error - 12.3.2011 г. 06:22:43 | Computer Name = PEPI-B85C201174 | Source = DCOM | ID = 10010

    Description = The server {0002DF01-0000-0000-C000-000000000046} did not register

    with DCOM within the required timeout.

    Error - 12.3.2011 г. 06:23:13 | Computer Name = PEPI-B85C201174 | Source = DCOM | ID = 10010

    Description = The server {0002DF01-0000-0000-C000-000000000046} did not register

    with DCOM within the required timeout.

    Error - 24.3.2011 г. 13:28:19 | Computer Name = PEPI-B85C201174 | Source = DCOM | ID = 10010

    Description = The server {0002DF01-0000-0000-C000-000000000046} did not register

    with DCOM within the required timeout.

    < End of report >

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    • Стартирайте OTL.exe
    • Под Custom Scans/Fixes поставете следния скрипт:

    :OTL
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "iMesh Web Search"
    FF - prefs.js..browser.search.defaultthis.engineName: " "
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}"
    FF - prefs.js..browser.search.order.1: "iMesh Web Search"
    FF - prefs.js..browser.search.selectedEngine: "Уикипедия (bg)" 
    FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2 
    FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
    FF - prefs.js..extensions.enabledItems: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4}:3.3.3.2
    FF - prefs.js..extensions.enabledItems: {28387537-e3f9-4ed7-860c-11e69af4a8a0}:4.1.0.00
    [2011.02.05 18:24:30 | 000,000,000 | ---D | M] (MediaBar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0} 
    [2011.03.30 16:03:30 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com 
    [2010.12.28 09:58:27 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com
    [2010.04.12 00:20:34 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\askcom.xml
    [2010.12.20 09:37:37 | 000,000,863 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\conduit.xml
    [2010.04.14 20:05:48 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\daemon-search.xml
    O2 - BHO: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) 
    O3 - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. 
    O3 - HKLM\..\Toolbar: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) 
    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. 
    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. 
    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (MyAshampoo Toolbar) - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-21-1004336348-152049171-682003330-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTo1.dll (Conduit Ltd.) 
    [2011.03.17 20:11:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Local Settings\Application Data\Babylon
    [2011.03.17 20:11:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Babylon
    [2011.03.17 20:11:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pepi1967\Application Data\Babylon
    @Alternate Data Stream - 151 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:BFE23423  
    
    :Commands
    [purity]
    [emptytemp]
    [emptyflash]
    

    • След това, кликнете върху бутона Run Fix
    • Търпеливо изчакайте, докато програмата приключи своята работа. Накрая потвърдете с OK и копирайте съдържанието на лог файла, който ще изскочи на вашия екран.

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    All processes killed ========== OTL ========== Prefs.js: "Ask.com" removed from browser.search.defaultengine Prefs.js: "iMesh Web Search" removed from browser.search.defaultenginename Prefs.js: " " removed from browser.search.defaultthis.engineName Prefs.js: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}" removed from browser.search.defaulturl Prefs.js: "iMesh Web Search" removed from browser.search.order.1 Prefs.js: "Уикипедия (bg)" removed from browser.search.selectedEngine Prefs.js: engine@conduit.com:3.3.3.2 removed from extensions.enabledItems Prefs.js: toolbar@ask.com:3.9.1.14019 removed from extensions.enabledItems Prefs.js: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4}:3.3.3.2 removed from extensions.enabledItems Prefs.js: {28387537-e3f9-4ed7-860c-11e69af4a8a0}:4.1.0.00 removed from extensions.enabledItems C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\components folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\searchbar folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\options folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\weatherbutton\panels folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\weatherbutton\icons folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\weatherbutton folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\uwa folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\radio\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\radio\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\radio folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\default\scripts folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\default\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\default\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\default folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib\panels folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin\lib folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\skin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\skin\scripts folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\skin\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\skin\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\skin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\js folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.YouTube folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\skin\scripts folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\skin\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\skin\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\skin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\js folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.Twitter folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.PPCBully folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\js folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\images folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook\css folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets\net.vmn.www.MyStartFacebook folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\widgets folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\modules folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\lib folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\data\search folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content\data folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome\content folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\chrome folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0} folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\searchplugin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\META-INF folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\lib folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\DualPackage folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\defaults folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\components folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com\chrome folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\engine@conduit.com folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\searchplugins folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\logs folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\defaults folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\datastore folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\chrome\content folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com\chrome folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\extensions\toolbar@ask.com folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\askcom.xml moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\conduit.xml moved successfully. C:\Documents and Settings\pepi1967\Application Data\Mozilla\Firefox\Profiles\t2v4un6a.default\searchplugins\daemon-search.xml moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\ deleted successfully. C:\Program Files\MyAshampoo\tbMyAs.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\ not found. File C:\Program Files\MyAshampoo\tbMyAs.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully. Registry value HKEY_USERS\S-1-5-21-1004336348-152049171-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. Registry value HKEY_USERS\S-1-5-21-1004336348-152049171-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A1E75A0E-4397-4BA8-BB50-E19FB66890F4} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}\ not found. File C:\Program Files\MyAshampoo\tbMyAs.dll not found. Registry value HKEY_USERS\S-1-5-21-1004336348-152049171-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\ deleted successfully. C:\Program Files\uTorrentBar\tbuTo1.dll moved successfully. C:\Documents and Settings\pepi1967\Local Settings\Application Data\Babylon\Setup folder moved successfully. C:\Documents and Settings\pepi1967\Local Settings\Application Data\Babylon folder moved successfully. C:\Documents and Settings\All Users.WINDOWS\Application Data\Babylon folder moved successfully. C:\Documents and Settings\pepi1967\Application Data\Babylon folder moved successfully. ADS C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:BFE23423 deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temporary Internet Files folder emptied: 32768 bytes ->FireFox cache emptied: 17440762 bytes ->Flash cache emptied: 3270 bytes User: All Users User: All Users.WINDOWS User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Flash cache emptied: 41620 bytes User: Default User.WINDOWS ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 65716 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService.NT AUTHORITY ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 402 bytes User: NetworkService.NT AUTHORITY ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: pepi1967 ->Temp folder emptied: 18164644 bytes ->Temporary Internet Files folder emptied: 9376223 bytes ->FireFox cache emptied: 54954842 bytes ->Flash cache emptied: 22944 bytes User: x ->Temp folder emptied: 23584538 bytes ->Temporary Internet Files folder emptied: 110372 bytes ->FireFox cache emptied: 77478487 bytes ->Flash cache emptied: 59826 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 102144 bytes %systemroot%\System32 .tmp files removed: 2577 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 705 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 7930379 bytes Total Files Cleaned = 200,00 mb [EMPTYFLASH] User: Administrator ->Flash cache emptied: 0 bytes User: All Users User: All Users.WINDOWS User: Default User ->Flash cache emptied: 0 bytes User: Default User.WINDOWS User: LocalService User: LocalService.NT AUTHORITY User: NetworkService User: NetworkService.NT AUTHORITY User: pepi1967 ->Flash cache emptied: 0 bytes User: x ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.22.3 log created on 03302011_184547 Files\Folders moved on Reboot... Registry entries deleted on Reboot... на десктопа ми се появи документ на microsoft wfrd полу прозрачен и сбъркана първа буква от името му същият документ го имам на десктопа нормално изглеждащ

    Редактирано от pepi1967 (преглед на промените)

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Нямам представа какво е, можете да го изтриете. Как е положението в момента?

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Здравей Борислав При мен положението е ОК Мисля че решихме проблемите. За което съм ти страшно БЛАГОДАРЕН. Напътствията ти бяха много подробни и точни С две думи - върха си човече!!!!!!!!!! Относно офис пакета Намерих диагностика на МО пуснах я намери грешка и я поправи За my ashamoo toolbar Деинсталирах я с total uninstall за Mozilla Firefox Свалих новата версия готина е но не виждам малката стрелка която седеше от дясно на бутоните НАЗАД/НАПРЕД с която можеш да се връщаш няколко страници назад беше много удобна. Още един път БЛАГОДАРЯ и хубав ден!

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Радвам се!

    Относно офис пакета

    Намерих диагностика на МО пуснах я намери грешка и я поправи

    Страхотно!

    За my ashamoo toolbar

    Деинсталирах я с total uninstall

    Какво деинсталирахте? Аз написах скрипт за OTL, който да го изтрие и според лог файла, който ми предоставихте е успешно премахването.

    Свалих новата версия готина е но не виждам малката стрелка която седеше от дясно на бутоните НАЗАД/НАПРЕД с която можеш да се връщаш няколко страници назад беше много удобна.

    Тук нямам идея, но можете да опитате с клавишна комбинация. Задържахте клавишния бутон Alt и с всяко натискане на стрелката сочеща наляво се връщате по една страница назад и по същата логика напред със стрелката сочеща надясно.

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Какво деинсталирахте? Аз написах скрипт за OTL, който да го изтрие и според лог файла, който ми предоставихте е успешно премахването. Извинявам се не съм разбрал Въпроса е че всичко е наред Благодаря и хубав ден

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Моля!

    Ето няколко последни инструкции:

    Стъпка 1:

    Стартирайте OTL и кликнете върху батона CleanUp. Това ще премахне от вашата система DDS, ComboFix и OTL също.

    Стъпка 2:

    Някои превантивни мерки:

    http://www.cybercrime.bg/bg/internet/aee5c2/

    Приятно сърфиране! :(

    • Харесва ми 1

    Сподели този отговор


    Линк към този отговор
    Сподели в други сайтове

    Регистрирайте се или влезете в профила си за да коментирате

    Трябва да имате регистрация за да може да коментирате това

    Регистрирайте се

    Създайте нова регистрация в нашия форум. Лесно е!

    Нова регистрация

    Вход

    Имате регистрация? Влезте от тук.

    Вход


    ×

    Информация

    Този сайт използва бисквитки (cookies), за най-доброто потребителско изживяване. С използването му, вие приемате нашите Условия за ползване.