Премини към съдържанието

Архивирана тема

Темата е твърде стара и е архивирана. Не можете да добавяте нови отговори в нея, но винаги можете да публикувате нова тема, в която да продължи дискусията. Регистрирайте се или влезте във вашия профил за да публикувате нова тема.

Отто Скорцени

Невъзможност за отваряне на Микроинвест Инвойс [Приключена]

Препоръчан отговор


Имам следния проблем,видях от форума промоция на Аваст Интернер Секюрити за 9 месеца и я свалих.И почнаха проблемите,първо ми спря нет-а и след не знам колко си рестарта и преинсталации вкл със специализирания им инструмент защото не искаше да се маха , го пусна най-накрая.Проблема обаче който не могаа да реша е ,че не мога да стартирам Микроинвест Инвойс.Свалих и новата версия,инсталирах я на друг дял на на диска,пробвах да я стартирам като администратор но постоянно и ми излиза това съобщение.Ще ъм ви много благодарен ако ми подскажете какво да направя,преди да пробвам ши**ния Аваст нямаше никакви проблеми.

Публикувано изображение

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Извинявам се,надявам се така да е добре.Ето DDS.txt DDS (Ver_2011-07-14.01) - NTFS_x86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26 Run by SS at 18:20:09 on 2011-07-19 Microsoft Windows 7 Ultimate 6.1.7601.1.1251.359.1033.18.3070.1367 [GMT 3:00] . AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A} FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C} . ============== Running Processes ================ . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe C:\Program Files\LSI SoftModem\agrsmsvc.exe C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe C:\Windows\system32\dgdersvc.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\FsUsbExService.Exe C:\Windows\system32\NLSSRV32.EXE C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Program Files\Samsung\AllShare\AllShareDMS\WiselinkPro.exe C:\Windows\Explorer.EXE C:\Program Files\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe C:\Windows\system32\conhost.exe C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Samsung\AllShare\AllShareAgent.exe C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe C:\Program Files\VIVACOM 3G USB MODEM\ModemListener.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\DAEMON Tools Lite\DTLite.exe C:\Windows\system32\sppsvc.exe C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\BitSpirit\BitSpirit.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe C:\Windows\system32\rundll32.exe C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe C:\Windows\system32\mfevtps.exe C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\FREEDO~1\fdm.exe C:\Program Files\ScreenshotCaptor\ScreenshotCaptor.exe C:\Program Files\Opera\opera.exe c:\PROGRA~1\mcafee\msc\mcupdmgr.exe C:\Program Files\Maxthon3\Bin\Maxthon.exe C:\Program Files\Maxthon3\Bin\Maxthon.exe C:\Program Files\Maxthon3\Bin\Maxthon.exe C:\Program Files\Maxthon3\Bin\Maxthon.exe C:\Program Files\Maxthon3\Bin\Maxthon.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted . ============== Pseudo HJT Report =============== . uStart Page = hxxp://eu.ask.com?o=101702&l=dis BHO: QuickStores-Toolbar: {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20110718215844.dll BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: QuickStores-Toolbar: {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll uRun: [Google Update] "c:\users\ss\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [CBitSpirit] "c:\program files\bitspirit\BitSpirit.exe" /start /nosplash uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun mRun: [sAOB Monitor] c:\program files\acronis\trueimagehome\onlinebackupstandalone\TrueImageMonitor.exe mRun: [TrueImageMonitor.exe] "c:\program files\acronis\trueimagehome\TrueImageMonitor.exe" mRun: [Acronis Scheduler2 Service] "c:\program files\common files\acronis\schedule2\schedhlp.exe" mRun: [TaskTray] StartupFolder: c:\users\ss\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office14\ONENOTEM.EXE mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\micros~1\office14\ONBttnIE.dll/105 IE: Сваляне Using &BitSpirit - c:\program files\bitspirit\bsurl.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll DPF: {46A70B4B-61D5-4D95-820D-895C3F9D6109} - hxxps://repository.infonotary.com/updates/inpki-x86.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: NameServer = 192.168.1.1 TCP: Interfaces\{03303466-0DAE-4CD6-BF73-1BE54243B305} : DHCPNameServer = 192.168.1.1 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll SSODL: WebCheck - mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\windows mail\WinMail.exe" OCInstallUserConfigOE . ================= FIREFOX =================== . FF - ProfilePath - c:\users\ss\appdata\roaming\mozilla\firefox\profiles\iu30s0if.default\ FF - component: c:\program files\free download manager\firefox\extension\components\vmsfdmff.dll FF - component: c:\program files\mozilla firefox\extensions\kavantibanner@kaspersky.ru\components\abhelperxpcom.dll FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll FF - component: c:\program files\nokia\nokia ovi suite\connectors\bookmarks connector\firefoxextension\components\FirefoxExtension.dll FF - plugin: c:\progra~1\micros~1\office14\NPAUTHZ.DLL FF - plugin: c:\progra~1\micros~1\office14\NPSPWRAP.DLL FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll FF - plugin: c:\users\ss\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll . ============= SERVICES / DRIVERS =============== . R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-3-24 218688] R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [2011-1-26 167968] R3 cxbu0wdm;OMNIKEY 6121;c:\windows\system32\drivers\cxbu0wdm.sys [2010-1-25 115712] R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-9-9 18120] R3 enecir;ENE CIR Receiver;c:\windows\system32\drivers\enecir.sys [2009-6-28 59904] R3 NETwLv32; Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETwLv32.sys [2010-10-31 6639616] S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [2011-6-30 30312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888] S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 62464] S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-26 25088] S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2010-6-23 23040] S3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\drivers\jrdusbser.sys [2011-6-22 105344] S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-11 4231168] . =============== Created Last 30 ================ . 2011-07-19 03:50:02 -------- d-----w- c:\users\ss\appdata\roaming\DonationCoder 2011-07-19 03:49:30 -------- d-----w- c:\programdata\DonationCoder 2011-07-19 03:49:30 -------- d-----w- c:\program files\ScreenshotCaptor 2011-07-18 18:58:44 24376 ----a-w- c:\program files\mozilla firefox\components\Scriptff.dll 2011-07-18 18:58:43 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys 2011-07-18 18:57:54 84488 ----a-w- c:\windows\system32\drivers\mferkdet.sys 2011-07-18 18:57:54 64584 ----a-w- c:\windows\system32\drivers\mfenlfk.sys 2011-07-18 18:57:54 56064 ----a-w- c:\windows\system32\drivers\cfwids.sys 2011-07-18 18:57:54 52320 ----a-w- c:\windows\system32\drivers\mfebopk.sys 2011-07-18 18:57:54 314088 ----a-w- c:\windows\system32\drivers\mfefirek.sys 2011-07-18 18:57:54 165032 ----a-w- c:\windows\system32\drivers\mfewfpk.sys 2011-07-18 18:57:54 153280 ----a-w- c:\windows\system32\drivers\mfeavfk.sys 2011-07-18 18:57:43 -------- d-----w- c:\program files\McAfee.com 2011-07-18 18:57:43 -------- d-----w- c:\program files\common files\Mcafee 2011-07-18 18:57:41 -------- d-----w- c:\program files\McAfee 2011-07-18 18:43:10 148520 ----a-w- c:\windows\system32\mfevtps.exe 2011-07-17 19:42:24 40112 ----a-w- c:\windows\avastSS.scr 2011-07-17 19:32:55 0 ---ha-w- c:\users\ss\appdata\local\BIT10E8.tmp 2011-07-17 19:32:25 0 ---ha-w- c:\users\ss\appdata\local\BIT9D4D.tmp 2011-07-17 19:22:47 -------- d-----w- c:\programdata\AVAST Software 2011-07-17 19:22:46 -------- d-----w- c:\program files\AVAST Software 2011-06-30 18:30:45 30312 ----a-w- c:\windows\system32\drivers\ssadadb.sys 2011-06-30 18:30:45 136808 ----a-w- c:\windows\system32\drivers\ssadmdm.sys 2011-06-30 18:30:45 12776 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys 2011-06-30 18:30:45 10472 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys 2011-06-30 18:30:45 10472 ----a-w- c:\windows\system32\drivers\ssadcm.sys 2011-06-30 18:30:45 10344 ----a-w- c:\windows\system32\drivers\ssadwh.sys 2011-06-28 18:54:54 26432 ----a-w- c:\windows\system32\nitrolocalmon.dll 2011-06-28 18:54:54 17728 ----a-w- c:\windows\system32\nitrolocalui.dll 2011-06-28 18:53:17 -------- d-----w- c:\users\ss\appdata\roaming\Downloaded Installations 2011-06-27 17:11:23 -------- d-----w- c:\users\ss\.InfoNotary 2011-06-26 19:46:00 -------- d-----w- c:\program files\MarkAny 2011-06-25 05:09:17 -------- d-----w- c:\programdata\Backup 2011-06-25 05:08:30 -------- d-----w- c:\programdata\Panda Security 2011-06-24 22:29:58 -------- d-----w- c:\programdata\Logs 2011-06-24 22:22:45 7 ----a-w- c:\windows\system32\mkghj.dll 2011-06-24 22:19:39 95568 ----a-w- c:\windows\system32\Vetredir.dll 2011-06-24 22:19:39 202064 ----a-w- c:\windows\system32\Isafprod.dll 2011-06-24 22:19:39 128336 ----a-w- c:\windows\system32\Isafeif.dll 2011-06-24 20:49:12 200704 ----a-w- c:\windows\system32\ssleay32.dll 2011-06-24 20:49:12 1028096 ----a-w- c:\windows\system32\libeay32.dll 2011-06-24 20:49:11 2385136 ----a-w- c:\windows\system32\winsflt_x64.dll 2011-06-24 20:49:11 -------- d-----w- c:\windows\rnapxs 2011-06-24 20:49:10 7440 ----a-w- c:\windows\system32\sporder.dll 2011-06-24 20:47:24 -------- d-----w- c:\program files\MSC 2011-06-22 17:45:11 1724416 ----a-w- c:\windows\system32\Gdiplus.dll 2011-06-22 17:45:11 105344 ----a-w- c:\windows\system32\drivers\jrdusbser.sys 2011-06-22 17:45:11 103424 ----a-w- c:\windows\system32\MyDIT_GenClassCoInst.dll 2011-06-22 17:45:11 -------- d-----w- c:\program files\common files\DeviceHelper 2011-06-22 17:45:10 -------- d-----w- c:\program files\VIVACOM 3G USB MODEM . ==================== Find3M ==================== . 2011-07-13 17:27:55 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-07 08:13:44 4659712 ----a-w- c:\windows\system32\Redemption.dll 2011-06-02 05:47:22 121064 ----a-w- c:\windows\system32\drivers\ssadbus.sys 2011-06-02 05:47:22 10344 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys 2011-05-28 19:02:20 5 ----a-w- c:\windows\system32\lMMLDeleteUserData42107612FX.tmp 2011-05-04 01:52:22 472808 ----a-w- c:\windows\system32\deployJava1.dll . ============= FINISH: 18:21:30.30 =============== Attach.tht

NLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-07-14.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 25.01.2011 23:38:58 System Uptime: 19.07.2011 10:33:18 (8 hours ago) . Motherboard: To be filled by O.E.M. | | To be filled by O.E.M. Processor: Intel® Core™2 Duo CPU T7500 @ 2.20GHz | CPU 1 | 2178/800mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 68 GiB total, 21.101 GiB free. D: is FIXED (NTFS) - 10 GiB total, 7.469 GiB free. E: is FIXED (NTFS) - 220 GiB total, 64.653 GiB free. F: is CDROM () G: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP69: 17.07.2011 22:22:33 - avast! Internet Security Setup RP70: 17.07.2011 22:32:14 - avast! Free Antivirus Setup RP71: 17.07.2011 22:42:01 - avast! Internet Security Setup RP72: 17.07.2011 23:06:34 - avast! Internet Security Setup RP73: 17.07.2011 23:08:02 - avast! Internet Security Setup RP74: 17.07.2011 23:08:57 - avast! Internet Security Setup RP75: 18.07.2011 21:36:49 - avast! Internet Security Setup . ==== Installed Programs ====================== . Архиватор WinRAR Acronis True Image Home 2011 Adobe AIR Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Android SDK Tools BitSpirit v3.6.0.550 Stable CSSI 4.8.1 User Edition DAEMON Tools Lite Driver Genius Professional Edition Easy Radio 1.4 ENE CIR Receiver Driver Foxit Reader Free Download Manager 3.0 GOM Player Google Chrome Google Earth Plug-in Google Talk Plugin Google Update Helper HTC BMP USB Driver HTC Driver Installer HTC Sync InfoNotary Configurator for Mozilla InfoNotary e-Doc Signer InfoNotary PNP Installer InfoNotary Smart Card Manager IrfanView (remove only) Java Auto Updater Java DB 10.6.2.1 Java™ 6 Update 26 Java™ SE Development Kit 6 Update 24 Java™ SE Development Kit 6 Update 25 LSI HDA Modem Maxthon 3 McAfee AntiVirus Plus Microsoft Office Access MUI (Bulgarian) 2010 Microsoft Office Excel MUI (Bulgarian) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (Bulgarian) 2010 Microsoft Office InfoPath MUI (Bulgarian) 2010 Microsoft Office Language Pack 2010 - Bulgarian/български Microsoft Office O MUI (Bulgarian) 2010 Microsoft Office OneNote MUI (Bulgarian) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (Bulgarian) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (Bulgarian) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Proof (Bulgarian) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proof (Russian) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (Bulgarian) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (Bulgarian) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared MUI (Bulgarian) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office Standard 2010 Microsoft Office Word MUI (Bulgarian) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Office X MUI (Bulgarian) 2010 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Monkey's Audio MotoHelper MergeModules Mozilla Firefox 4.0 (x86 en-US) MSVC80_x86_v2 MSVC90_x86 MSXML 4.0 SP3 Parser MyFreeCodec Nero 8 Lite 8.1.1.3 NVIDIA 3D Vision Driver 260.99 NVIDIA Control Panel 260.99 NVIDIA Graphics Driver 260.99 NVIDIA Install Application NVIDIA PhysX NVIDIA PhysX System Software 260.99 NVIDIA Stereoscopic 3D Driver Opera 11.50 OutlookAddInNet3Setup PC Connectivity Solution QuickStores-Toolbar 1.1.0 Realtek High Definition Audio Driver RICOH Media Driver Samsung AllShare SAMSUNG USB Driver for Mobile Phones Screenshot Captor 2.78.01 Skype Toolbars Skype™ 5.3 StarCraft II Ubuntu Unlocker 1.9.1 VIVACOM 3G USB MODEM WinAVI All in One Converter Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) Windows Media Player Firefox Plugin . ==== Event Viewer Messages From Past Week ======== . 18.07.2011 21:42:15, Error: Microsoft-Windows-Smartcard-Server [602] - WDM Reader driver initialization cannot open reader device: The system cannot find the path specified. 18.07.2011 21:40:47, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:46, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 18.07.2011 21:40:46, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 18.07.2011 21:40:34, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89} 18.07.2011 21:40:34, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E} 18.07.2011 21:40:32, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 18.07.2011 21:40:22, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 18.07.2011 21:40:14, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD aswSnx CSC DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The Network Connections service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning. 18.07.2011 21:40:14, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning. 18.07.2011 21:18:09, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 ca 01 83 18.07.2011 13:32:55, Error: atapi [11] - The driver detected a controller error on \Device\Ide\IdePort0. 18.07.2011 07:28:00, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL GET_STATE: The device has been removed. If this error persists, your smart card or reader may not be functioning correctly. Command Header: XX XX XX XX 18.07.2011 07:27:39, Error: Schannel [36887] - The following fatal alert was received: 40. 18.07.2011 07:25:56, Error: Schannel [36888] - The following fatal alert was generated: 80. The internal error state is 301. 18.07.2011 06:46:17, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL GET_STATE: Access is denied. If this error persists, your smart card or reader may not be functioning correctly. Command Header: XX XX XX XX 17.07.2011 23:12:17, Error: Service Control Manager [7000] - The rimmptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. 17.07.2011 22:41:17, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswFW 17.07.2011 22:40:50, Error: Service Control Manager [7000] - The avast! Firewall service failed to start due to the following error: The system cannot find the file specified. 17.07.2011 22:29:22, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswFW aswRdr aswSnx aswSP aswTdi 17.07.2011 22:28:47, Error: Service Control Manager [7001] - The avast! Antivirus service depends on the aswMonFlt service which failed to start because of the following error: avast! Antivirus is not a valid Win32 application. 17.07.2011 22:28:45, Error: Service Control Manager [7000] - The aswMonFlt service failed to start due to the following error: aswMonFlt is not a valid Win32 application. 17.07.2011 22:28:45, Error: Service Control Manager [7000] - The aswFsBlk service failed to start due to the following error: The system cannot find the file specified. 17.07.2011 22:24:47, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000, 0x00000002, 0x00000001, 0x8307a0af). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 071711-24843-01. 17.07.2011 21:58:48, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL POWER: No media in drive. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 01 00 00 00 17.07.2011 16:50:05, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 a4 04 0c 17.07.2011 16:50:05, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 a4 02 00 17.07.2011 12:57:05, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL POWER: The device does not recognize the command. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 01 00 00 00 17.07.2011 11:58:54, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 b0 00 00 17.07.2011 10:13:16, Error: Microsoft-Windows-DistributedCOM [10000] - Unable to start a DCOM Server: {46986115-84D6-459C-8F95-52DD653E532E}. The error: "2" Happened while starting this command: "C:\Program Files\Winamp\winamp.exe" -Embedding 15.07.2011 20:48:40, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 a4 00 0c 14.07.2011 22:19:25, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL SET_PROTOCOL: No media in drive. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 03 00 00 00 14.07.2011 21:51:01, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 ca 01 81 14.07.2011 21:51:01, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 b0 01 50 14.07.2011 06:00:23, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 a4 01 00 12.07.2011 07:30:25, Error: Microsoft-Windows-Smartcard-Server [610] - Smart Card Reader 'OMNIKEY CardMan 6121 0' rejected IOCTL TRANSMIT: The semaphore timeout period has expired. If this error persists, your smart card or reader may not be functioning correctly. Command Header: 00 b0 03 10 . ==== End Of File ===========================

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

 • Изтеглете OTL.exe и го запазете на десктопа.
 • Стартирайте файла Публикувано изображение с двукратен клик на мишката.
 • Направете следните настройки:
Публикувано изображение

 • Под Публикувано изображение с Copy/ Paste въведете изцяло следната текстова информация (само това, което е поставено в карето):
netsvcs
msconfig
drivers32 /all
%SYSTEMDRIVE%\*.*
%PROGRAMFILES%\*.*
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%PROGRAMFILES%\Internet Explorer\*.tmp
%PROGRAMFILES%\Internet Explorer\*.dat
/md5start
rpcapd.exe
Packet.dll
WanPacket.dll
npf.sys
pthreadVC.dll
atapi.sys
iaStor.sys
explorer.exe
svchost.exe
userinit.exe
hlp.dat
winlogon.exe
wininit.exe
volsnap.sys
/md5stop
 • Натиснете маркираният в синьо бутон: Публикувано изображение.
 • Като приключи проверката, ще се създадат два файла - OTL.Txt и Extras.Txt. Прикачете тези два файла в следващия си коментар (погледнете опцията "прикачени файлове", когато публикувате мнение).

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Съжалявам ,не ми се беше налагало досега да прикачвам такива големи файлове и се забърках . OTL.Txt Extras.Txt


Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Стартирайте отново OTL и с Copy/ Paste под колонката Custom Scans/Fixes въведете скриптовия текст от текстовото поле по-долу, като не забравяте да копирате скрипта 1 към 1, както и двете точки преди първия ред на скрипта!

:OTL
IE - HKU\S-1-5-21-1361053722-1305706191-946897326-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com?o=101702&l=dis
O4 - HKLM..\Run: [setc] File not found
O4 - HKLM..\Run: [TaskTray] File not found
O4 - HKLM..\Run: [WinampAgent] File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] File not found
O4 - HKU\S-1-5-20..\Run: [Sidebar] File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O33 - MountPoints2\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\Shell - "" = AutoRun
O33 - MountPoints2\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\Shell\AutoRun\command - "" = H:\autorun.exe
[2011.07.17 22:42:24 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.07.17 22:22:47 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011.07.17 22:22:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.06.25 08:08:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2011.07.04 14:43:53 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011.06.25 01:22:45 | 000,000,007 | ---- | M] () -- C:\Windows\System32\mkghj.dll


:Reg

:files
C:\Windows\System32\mkghj.dll

autorun.inf /alldrives
autorun.exe /alldrives 
recycler /alldrives
ipconfig /flushdns /c


:Commands
[purity]
[emptytemp]
[resethosts]
[CreateRestorePoint]
[emptyflash]
[Reboot]

След като въведете скрипта от цитата по-горе натиснете бутона, маркиран в червено: Run Fix

Windows ще се рестартира и ще се създаде лог файл. Публикувайте съдържанието му с Copy/Paste в следващия си коментар.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Направих всичко,ето лог файла:

All processes killed
========== OTL ==========
HKU\S-1-5-21-1361053722-1305706191-946897326-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\setc deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TaskTray deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinampAgent deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\Sidebar deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\Sidebar deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab7791d1-9cf1-11e0-8279-001d9253ce81}\ not found.
File H:\autorun.exe not found.
C:\Windows\avastSS.scr moved successfully.
C:\ProgramData\AVAST Software\Avast\Spamconf folder moved successfully.
C:\ProgramData\AVAST Software\Avast\sounds folder moved successfully.
C:\ProgramData\AVAST Software\Avast\report folder moved successfully.
C:\ProgramData\AVAST Software\Avast\moved folder moved successfully.
C:\ProgramData\AVAST Software\Avast\log folder moved successfully.
C:\ProgramData\AVAST Software\Avast\journal folder moved successfully.
C:\ProgramData\AVAST Software\Avast\integ folder moved successfully.
C:\ProgramData\AVAST Software\Avast\HtmlData folder moved successfully.
C:\ProgramData\AVAST Software\Avast\fw folder moved successfully.
C:\ProgramData\AVAST Software\Avast\chest folder moved successfully.
C:\ProgramData\AVAST Software\Avast\backup folder moved successfully.
C:\ProgramData\AVAST Software\Avast\arpot\TEMP folder moved successfully.
C:\ProgramData\AVAST Software\Avast\arpot folder moved successfully.
C:\ProgramData\AVAST Software\Avast folder moved successfully.
C:\ProgramData\AVAST Software folder moved successfully.
C:\Program Files\AVAST Software folder moved successfully.
C:\ProgramData\Panda Security folder moved successfully.
File C:\Windows\avastSS.scr not found.
C:\Windows\System32\mkghj.dll moved successfully.
========== REGISTRY ==========
========== FILES ==========
File\Folder C:\Windows\System32\mkghj.dll not found.
autorun.inf not found in C:\
autorun.inf not found in D:\
autorun.inf not found in E:\
autorun.exe not found in C:\
autorun.exe not found in D:\
autorun.exe not found in E:\
recycler not found in C:\
recycler not found in D:\
recycler not found in E:\
[color=#A23BEC]< ipconfig /flushdns /c >[/color]
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\SS\Desktop\cmd.bat deleted successfully.
C:\Users\SS\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56502 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: SS
->Temp folder emptied: 1862357331 bytes
->Temporary Internet Files folder emptied: 772470621 bytes
->Java cache emptied: 2594535 bytes
->FireFox cache emptied: 47521722 bytes
->Google Chrome cache emptied: 117614828 bytes
->Opera cache emptied: 6750197 bytes
->Flash cache emptied: 98769 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 5 bytes
%systemroot%\System32\drivers .tmp files removed: 60416 bytes
Windows Temp folder emptied: 107534320 bytes
RecycleBin emptied: 9736878854 bytes

Total Files Cleaned = 12 068.00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: SS
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.26.1 log created on 07192011_204950

Files\Folders moved on Reboot...
File\Folder C:\Users\SS\AppData\Local\Temp\OICE_4E09C4DD-CF18-4D17-84B1-7589714C2925.0\676DC732. not found!
File\Folder C:\Windows\temp\mcafee_BimXbeSEyt4tb4b not found!

Registry entries deleted on Reboot...
[/html]

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Брее...изчистихме 12 гигабайта ..:ph34r: Total Files Cleaned = 12 068.00 mb Kакво е състоянието сега...след изпълнение на скрипта...?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Брее...изчистихме 12 гигабайта ..:ph34r:

Total Files Cleaned = 12 068.00 mb

Kакво е състоянието сега...след изпълнение на скрипта...?

Ухааа,12 гига..Осезателно ми се забърза компютъраПубликувано изображение.За съжаление проблема със Инвойса остана,пак същото съобщение показаПубликувано изображение

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Изтеглете ComboFix от тук или тук и го запазете на десктопа си.

 • Изключете вашата антивирусна и антишпионска програма, обикновено това става чрез натискане на десния бутон на мишката върху иконата на програма в системния трей.

Бележка: Ако не можете я спрете или не сте сигурни коя програма да изключите, моля прегледайте информацията от този линк: How to Disable your Security Programs

 • Стартирайте Combo-Fix.com и следвайте инструкциите.

Бележка: ComboFix ще се стартира без инсталирана Recovery Console.

 • Като част от неговата работа, ComboFix ще провери дали Microsoft Windows Recovery Console е инсталирана. Предвид бързо развиващия се зловреден софтуер е силно препоръчително да бъде инсталирана преди премахването на зловредния софтуер. Това ще Ви позволи да влезете в специален recovery/repair режим, който ще ни позволи по-лесно да решите проблем, който би могъл да възникне при премахване на зловредния софтуер.

 • Следвайте инструкциите, за да позволите на ComboFix да изтегли и инсталира Microsoft Windows Recovery Console. В един момент ще бъдете попитани дали сте съгласни с лицензното споразумение. Необходимо е да потвърдите, че сте съгласни, за да инсталирате Microsoft Windows Recovery Console.

** Забележете: Ако Microsoft Windows Recovery Console е вече инсталирана, ComboFix ще продължи към процеса по премахване на зловредния софтуер.

Публикувано изображение

След като Microsoft Windows Recovery Console е инсталирана, използвайки ComboFix, Вие ще видите следното съобщение:

Публикувано изображение

Изберете Yes, за да продължи сканирането за зловреден софтуер.

Когато процесът приключи успешно, инструментът ще създаде лог файл. Моля, включете съдържанието на C:\ComboFix.txt в следващия Ви коментар в тази тема.

Бележка:

 • Моля, не движете мишката, докато ComboFix работи. Това може да наруши процеса на работа.
 • ComboFix ще нулира всички настройки на Microsoft Internet Explorer, включително да направи IE браузър по подразбиране.
 • ComboFix ще изключи autorun функцията на ВСИЧКИ CD, Floppy и USB устройства, за да помогне при премахването на зловредния софтуер и Ви защити от бъдещи вируси/заплахи, които поразяват чрез autorun. Ако това е проблем за вас - моля, уведомете ме.
 • ComboFix ще изключи вашата интернет връзка. Интернет връзката ще се възстанови автоматично, преди ComboFix да завърши процеса на работа. При проблем, той ще прекрати интернет връзката. За да възстановите интернет връзката си, рестартирайте компютъра си.
 • В случай на проблем с ComboFix, той може да създаде лог файл. Моля, включете съдържанието на C:\BUG.txt в следващия Ви коментар в тази тема.

Работата на ComboFix, може да отнеме до 20-30 минути, за да завърши, моля имайте търпение.

Моля, не прикачвайте лог файла/овете от програмата, а го/ги копирайте и поставете в следващия Ви коментар в тази тема.

Ухааа,12 гига..Осезателно ми се забърза компютъраПубликувано изображение.За съжаление проблема със Инвойса остана,пак същото съобщение показаПубликувано изображение

Между другото това съобщение казва че нямате права ...и да се обърните към администратор

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Ето го:

ComboFix 11-07-19.03 - SS 19.07.2011 21:40:30.1.2 - x86
Microsoft Windows 7 Ultimate  6.1.7601.1.1251.359.1033.18.3070.1707 [GMT 3:00]
Running from: c:\users\SS\Desktop\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\muzapp.exe
c:\windows\system32\system32
c:\windows\system32\system32\3DAudio.ax
c:\windows\system32\system32\avrt.dll
c:\windows\system32\system32\cis-2.4.dll
c:\windows\system32\system32\issacapi_bs-2.3.dll
c:\windows\system32\system32\issacapi_pe-2.3.dll
c:\windows\system32\system32\issacapi_se-2.3.dll
c:\windows\system32\system32\MACXMLProto.dll
c:\windows\system32\system32\MaDRM.dll
c:\windows\system32\system32\MaJGUILib.dll
c:\windows\system32\system32\MAMACExtract.dll
c:\windows\system32\system32\MASetupCleaner.exe
c:\windows\system32\system32\MaXMLProto.dll
c:\windows\system32\system32\mfplat.dll
c:\windows\system32\system32\MK_Lyric.dll
c:\windows\system32\system32\MSCLib.dll
c:\windows\system32\system32\MSFLib.dll
c:\windows\system32\system32\MSLUR71.dll
c:\windows\system32\system32\msvcp60.dll
c:\windows\system32\system32\MTTELECHIP.dll
c:\windows\system32\system32\MTXSYNCICON.dll
c:\windows\system32\system32\muzaf1.dll
c:\windows\system32\system32\muzapp.dll
c:\windows\system32\system32\muzapp.exe
c:\windows\system32\system32\muzdecode.ax
c:\windows\system32\system32\muzeffect.ax
c:\windows\system32\system32\muzmp4sp.ax
c:\windows\system32\system32\muzmpgsp.ax
c:\windows\system32\system32\muzoggsp.ax
c:\windows\system32\system32\muzwmts.dll
c:\windows\system32\system32\psapi.dll
c:\windows\XSxS
.
.
(((((((((((((((((((((((((  Files Created from 2011-06-19 to 2011-07-19 )))))))))))))))))))))))))))))))
.
.
2011-07-19 18:46 . 2011-07-19 18:46	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-07-19 18:38 . 2011-07-19 18:38	--------	d-----w-	C:\32788R22FWJFW
2011-07-19 17:49 . 2011-07-19 17:49	--------	d-----w-	C:\_OTL
2011-07-19 03:50 . 2011-07-19 03:50	--------	d-----w-	c:\users\SS\AppData\Roaming\DonationCoder
2011-07-19 03:49 . 2011-07-19 03:50	--------	d-----w-	c:\program files\ScreenshotCaptor
2011-07-19 03:49 . 2011-07-19 03:49	--------	d-----w-	c:\programdata\DonationCoder
2011-07-18 18:58 . 2011-04-14 11:01	24376	----a-w-	c:\program files\Mozilla Firefox\components\Scriptff.dll
2011-07-18 18:58 . 2011-04-14 11:01	9344	----a-w-	c:\windows\system32\drivers\mfeclnk.sys
2011-07-18 18:57 . 2011-04-14 11:01	84488	----a-w-	c:\windows\system32\drivers\mferkdet.sys
2011-07-18 18:57 . 2011-04-14 11:01	64584	----a-w-	c:\windows\system32\drivers\mfenlfk.sys
2011-07-18 18:57 . 2011-04-14 11:01	56064	----a-w-	c:\windows\system32\drivers\cfwids.sys
2011-07-18 18:57 . 2011-04-14 11:01	52320	----a-w-	c:\windows\system32\drivers\mfebopk.sys
2011-07-18 18:57 . 2011-04-14 11:01	314088	----a-w-	c:\windows\system32\drivers\mfefirek.sys
2011-07-18 18:57 . 2011-04-14 11:01	165032	----a-w-	c:\windows\system32\drivers\mfewfpk.sys
2011-07-18 18:57 . 2011-04-14 11:01	153280	----a-w-	c:\windows\system32\drivers\mfeavfk.sys
2011-07-18 18:57 . 2011-07-18 18:59	--------	d-----w-	c:\program files\Common Files\Mcafee
2011-07-18 18:57 . 2011-07-18 18:59	--------	d-----w-	c:\program files\McAfee
2011-07-18 18:43 . 2011-03-13 08:45	148520	----a-w-	c:\windows\system32\mfevtps.exe
2011-07-17 19:32 . 2011-07-17 19:32	0	---ha-w-	c:\users\SS\AppData\Local\BIT10E8.tmp
2011-07-17 19:32 . 2011-07-17 19:32	0	---ha-w-	c:\users\SS\AppData\Local\BIT9D4D.tmp
2011-07-09 15:59 . 2011-07-09 15:59	--------	d-----w-	c:\program files\Common Files\Java
2011-06-30 18:30 . 2011-06-02 05:47	136808	----a-w-	c:\windows\system32\drivers\ssadmdm.sys
2011-06-30 18:30 . 2011-06-02 05:47	12776	----a-w-	c:\windows\system32\drivers\ssadmdfl.sys
2011-06-30 18:30 . 2011-06-02 05:47	10472	----a-w-	c:\windows\system32\drivers\ssadcmnt.sys
2011-06-30 18:30 . 2011-06-02 05:47	10472	----a-w-	c:\windows\system32\drivers\ssadcm.sys
2011-06-30 18:30 . 2011-06-02 05:47	10344	----a-w-	c:\windows\system32\drivers\ssadwh.sys
2011-06-30 18:30 . 2010-12-21 05:55	30312	----a-w-	c:\windows\system32\drivers\ssadadb.sys
2011-06-28 19:00 . 2011-06-28 19:00	--------	d-----w-	c:\users\SS\AppData\Roaming\Nitro PDF
2011-06-28 18:54 . 2011-03-21 08:15	17728	----a-w-	c:\windows\system32\nitrolocalui.dll
2011-06-28 18:54 . 2011-03-21 08:15	26432	----a-w-	c:\windows\system32\nitrolocalmon.dll
2011-06-28 18:54 . 2011-06-28 18:54	--------	d-----w-	c:\programdata\Nitro PDF
2011-06-28 18:53 . 2011-06-28 18:53	--------	d-----w-	c:\users\SS\AppData\Roaming\Downloaded Installations
2011-06-27 17:11 . 2011-06-27 17:11	--------	d-----w-	c:\users\SS\.InfoNotary
2011-06-27 17:09 . 2011-06-27 17:09	--------	d-----w-	c:\windows\Sun
2011-06-26 19:46 . 2011-06-26 19:46	--------	d-----w-	c:\program files\MarkAny
2011-06-25 18:12 . 2011-07-18 19:03	--------	d-----w-	c:\programdata\McAfee
2011-06-25 05:09 . 2011-06-25 05:09	--------	d-----w-	c:\programdata\Backup
2011-06-24 22:29 . 2011-06-24 22:29	--------	d-----w-	c:\programdata\Logs
2011-06-24 22:19 . 2010-11-12 16:48	202064	----a-w-	c:\windows\system32\Isafprod.dll
2011-06-24 22:19 . 2010-11-12 16:47	95568	----a-w-	c:\windows\system32\Vetredir.dll
2011-06-24 22:19 . 2010-11-12 16:47	128336	----a-w-	c:\windows\system32\Isafeif.dll
2011-06-24 20:49 . 2007-08-25 13:56	200704	----a-w-	c:\windows\system32\ssleay32.dll
2011-06-24 20:49 . 2007-08-25 13:56	1028096	----a-w-	c:\windows\system32\libeay32.dll
2011-06-24 20:49 . 2011-06-25 04:56	--------	d-----w-	c:\windows\rnapxs
2011-06-24 20:49 . 2010-02-28 16:36	2385136	----a-w-	c:\windows\system32\winsflt_x64.dll
2011-06-24 20:49 . 2002-01-01 10:02	7440	----a-w-	c:\windows\system32\sporder.dll
2011-06-24 20:47 . 2011-06-24 20:47	--------	d-----w-	c:\program files\MSC
2011-06-22 17:45 . 2011-06-22 17:45	--------	d-----w-	c:\program files\Common Files\DeviceHelper
2011-06-22 17:45 . 2009-11-17 07:44	105344	----a-w-	c:\windows\system32\drivers\jrdusbser.sys
2011-06-22 17:45 . 2009-08-27 10:18	1724416	----a-w-	c:\windows\system32\Gdiplus.dll
2011-06-22 17:45 . 2009-08-27 10:18	103424	----a-w-	c:\windows\system32\MyDIT_GenClassCoInst.dll
2011-06-22 17:45 . 2011-06-22 17:45	--------	d-----w-	c:\program files\VIVACOM 3G USB MODEM
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-13 17:27 . 2011-06-07 17:28	404640	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-07 08:13 . 2011-03-02 17:44	4659712	----a-w-	c:\windows\system32\Redemption.dll
2011-06-02 05:47 . 2011-03-07 13:43	121064	----a-w-	c:\windows\system32\drivers\ssadbus.sys
2011-06-02 05:47 . 2011-03-07 13:43	10344	----a-w-	c:\windows\system32\drivers\ssadwhnt.sys
2011-05-04 01:52 . 2011-03-08 12:01	472808	----a-w-	c:\windows\system32\deployJava1.dll
2011-04-09 19:31 . 2011-04-09 19:31	142296	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-14 11:01 . 2011-07-18 18:58	24376	----a-w-	c:\program files\mozilla firefox\components\Scriptff.dll
.
.
(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CBitSpirit"="c:\program files\BitSpirit\BitSpirit.exe" [2010-12-28 3655168]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SAOB Monitor"="c:\program files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-06 5542488]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-06 390728]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-12-23 9972328]
"AllShareAgent"="c:\program files\Samsung\AllShare\AllShareAgent.exe" [2011-02-18 250768]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-01-27 585728]
"ModemListener"="c:\program files\VIVACOM 3G USB MODEM\ModemListener.exe" [2010-01-27 98304]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2011-05-05 1195408]
.
c:\users\SS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 0204111311015540mcinstcleanup;McAfee Application Installer Cleanup (0204111311015540);c:\users\SS\AppData\Local\Temp\020411~1.EXE [x]
R2 DeviceManager;DeviceManager;c:\program files\Common Files\DeviceHelper\DeviceManager.exe [2009-11-17 40960]
R2 gupdate;Услуга Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-25 136176]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2011-04-02 8192]
R2 MySecurityCenter License Service;MySecurityCenter License Service;c:\program files\MySecurityCenter\Programs\service.exe [x]
R2 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files\Samsung\AllShare\AllShareSlideShowService.exe [2011-02-18 22464]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2010-12-21 30312]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-25 136176]
R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-10-26 25088]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
R3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\jrdusbser.sys [2009-11-17 105344]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-04-14 84488]
R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [x]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-06-02 121064]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 12776]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 136808]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2011-04-14 165032]
S0 Si3531;SiI-3531 SATA Controller;c:\windows\system32\DRIVERS\Si3531.sys [2009-02-05 212520]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2011-01-26 752128]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-24 218688]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2011-04-14 64584]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2011-01-26 3246040]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-09-09 95568]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-09-09 217088]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-04-14 188136]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-03-13 148520]
S2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [2011-03-21 68928]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
S2 SamsungAllShare;Samsung AllShare PC Service;c:\program files\Samsung\AllShare\AllShareDMS\WiselinkPro.exe [2011-02-18 7233952]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2011-01-26 167968]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-04-14 56064]
S3 cxbu0wdm;OMNIKEY 6121;c:\windows\system32\DRIVERS\cxbu0wdm.sys [2010-01-25 115712]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-09-09 18120]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2009-06-28 59904]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2010-09-09 36640]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-04-14 314088]
S3 NETwLv32;  Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETwLv32.sys [2010-10-07 6639616]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2011-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-03-28 21:58]
.
2011-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-03-28 21:58]
.
2011-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1361053722-1305706191-946897326-1001Core.job
- c:\users\SS\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-25 21:58]
.
2011-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1361053722-1305706191-946897326-1001UA.job
- c:\users\SS\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-25 21:58]
.
2011-07-14 c:\windows\Tasks\InfoNotary Configurator for Mozilla Updates.job
- c:\program files\InfoNotary\Mozilla Setup\updater.exe [2010-11-05 14:39]
.
2011-07-19 c:\windows\Tasks\InfoNotary Smart Card Manager Updates.job
- c:\program files\InfoNotary\SCManager2\updater.exe [2010-11-03 14:03]
.
2011-07-13 c:\windows\Tasks\InfoNotary updater.job
- c:\program files\InfoNotary\PNPInstaller\InfoNotaryUpdater.exe [2011-02-07 08:29]
.
2011-07-19 c:\windows\Tasks\Update InfoNotary e-Doc Signer.job
- c:\program files\InfoNotary\INSigner\INSignerUpdater.exe [2010-07-26 12:24]
.
.
------- Supplementary Scan -------
.
uStart Page = 
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Сваляне Using &BitSpirit - c:\program files\BitSpirit\bsurl.htm
TCP: DhcpNameServer = 192.168.1.1
DPF: {46A70B4B-61D5-4D95-820D-895C3F9D6109} - hxxps://repository.infonotary.com/updates/inpki-x86.cab
FF - ProfilePath - c:\users\SS\AppData\Roaming\Mozilla\Firefox\Profiles\iu30s0if.default\
.
- - - - ORPHANS REMOVED - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-Android SDK Tools - c:\androidsdk\android-sdk\uninstall.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe
AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\SAMSUNG\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0012\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-07-19 21:49:35
ComboFix-quarantined-files.txt 2011-07-19 18:49
.
Pre-Run: 28 976 332 800 bytes free
Post-Run: 28 652 589 056 bytes free
.
- - End Of File - - 1420149106936327C310FBC01C58A145

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Ето го: ComboFix 11-07-19.03 - SS 19.07.2011 21:40:30.1.2 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1251.359.1033.18.3070.1707 [GMT 3:00] Running from: c:\users\SS\Desktop\ComboFix.exe AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637} FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C} SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\system32\muzapp.exe c:\windows\system32\system32 c:\windows\system32\system32\3DAudio.ax c:\windows\system32\system32\avrt.dll c:\windows\system32\system32\cis-2.4.dll c:\windows\system32\system32\issacapi_bs-2.3.dll c:\windows\system32\system32\issacapi_pe-2.3.dll c:\windows\system32\system32\issacapi_se-2.3.dll c:\windows\system32\system32\MACXMLProto.dll c:\windows\system32\system32\MaDRM.dll c:\windows\system32\system32\MaJGUILib.dll c:\windows\system32\system32\MAMACExtract.dll c:\windows\system32\system32\MASetupCleaner.exe c:\windows\system32\system32\MaXMLProto.dll c:\windows\system32\system32\mfplat.dll c:\windows\system32\system32\MK_Lyric.dll c:\windows\system32\system32\MSCLib.dll c:\windows\system32\system32\MSFLib.dll c:\windows\system32\system32\MSLUR71.dll c:\windows\system32\system32\msvcp60.dll c:\windows\system32\system32\MTTELECHIP.dll c:\windows\system32\system32\MTXSYNCICON.dll c:\windows\system32\system32\muzaf1.dll c:\windows\system32\system32\muzapp.dll c:\windows\system32\system32\muzapp.exe c:\windows\system32\system32\muzdecode.ax c:\windows\system32\system32\muzeffect.ax c:\windows\system32\system32\muzmp4sp.ax c:\windows\system32\system32\muzmpgsp.ax c:\windows\system32\system32\muzoggsp.ax c:\windows\system32\system32\muzwmts.dll c:\windows\system32\system32\psapi.dll c:\windows\XSxS . . ((((((((((((((((((((((((( Files Created from 2011-06-19 to 2011-07-19 ))))))))))))))))))))))))))))))) . . 2011-07-19 18:46 . 2011-07-19 18:46 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-07-19 18:38 . 2011-07-19 18:38 -------- d-----w- C:\32788R22FWJFW 2011-07-19 17:49 . 2011-07-19 17:49 -------- d-----w- C:\_OTL 2011-07-19 03:50 . 2011-07-19 03:50 -------- d-----w- c:\users\SS\AppData\Roaming\DonationCoder 2011-07-19 03:49 . 2011-07-19 03:50 -------- d-----w- c:\program files\ScreenshotCaptor 2011-07-19 03:49 . 2011-07-19 03:49 -------- d-----w- c:\programdata\DonationCoder 2011-07-18 18:58 . 2011-04-14 11:01 24376 ----a-w- c:\program files\Mozilla Firefox\components\Scriptff.dll 2011-07-18 18:58 . 2011-04-14 11:01 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys 2011-07-18 18:57 . 2011-04-14 11:01 84488 ----a-w- c:\windows\system32\drivers\mferkdet.sys 2011-07-18 18:57 . 2011-04-14 11:01 64584 ----a-w- c:\windows\system32\drivers\mfenlfk.sys 2011-07-18 18:57 . 2011-04-14 11:01 56064 ----a-w- c:\windows\system32\drivers\cfwids.sys 2011-07-18 18:57 . 2011-04-14 11:01 52320 ----a-w- c:\windows\system32\drivers\mfebopk.sys 2011-07-18 18:57 . 2011-04-14 11:01 314088 ----a-w- c:\windows\system32\drivers\mfefirek.sys 2011-07-18 18:57 . 2011-04-14 11:01 165032 ----a-w- c:\windows\system32\drivers\mfewfpk.sys 2011-07-18 18:57 . 2011-04-14 11:01 153280 ----a-w- c:\windows\system32\drivers\mfeavfk.sys 2011-07-18 18:57 . 2011-07-18 18:59 -------- d-----w- c:\program files\Common Files\Mcafee 2011-07-18 18:57 . 2011-07-18 18:59 -------- d-----w- c:\program files\McAfee 2011-07-18 18:43 . 2011-03-13 08:45 148520 ----a-w- c:\windows\system32\mfevtps.exe 2011-07-17 19:32 . 2011-07-17 19:32 0 ---ha-w- c:\users\SS\AppData\Local\BIT10E8.tmp 2011-07-17 19:32 . 2011-07-17 19:32 0 ---ha-w- c:\users\SS\AppData\Local\BIT9D4D.tmp 2011-07-09 15:59 . 2011-07-09 15:59 -------- d-----w- c:\program files\Common Files\Java 2011-06-30 18:30 . 2011-06-02 05:47 136808 ----a-w- c:\windows\system32\drivers\ssadmdm.sys 2011-06-30 18:30 . 2011-06-02 05:47 12776 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys 2011-06-30 18:30 . 2011-06-02 05:47 10472 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys 2011-06-30 18:30 . 2011-06-02 05:47 10472 ----a-w- c:\windows\system32\drivers\ssadcm.sys 2011-06-30 18:30 . 2011-06-02 05:47 10344 ----a-w- c:\windows\system32\drivers\ssadwh.sys 2011-06-30 18:30 . 2010-12-21 05:55 30312 ----a-w- c:\windows\system32\drivers\ssadadb.sys 2011-06-28 19:00 . 2011-06-28 19:00 -------- d-----w- c:\users\SS\AppData\Roaming\Nitro PDF 2011-06-28 18:54 . 2011-03-21 08:15 17728 ----a-w- c:\windows\system32\nitrolocalui.dll 2011-06-28 18:54 . 2011-03-21 08:15 26432 ----a-w- c:\windows\system32\nitrolocalmon.dll 2011-06-28 18:54 . 2011-06-28 18:54 -------- d-----w- c:\programdata\Nitro PDF 2011-06-28 18:53 . 2011-06-28 18:53 -------- d-----w- c:\users\SS\AppData\Roaming\Downloaded Installations 2011-06-27 17:11 . 2011-06-27 17:11 -------- d-----w- c:\users\SS\.InfoNotary 2011-06-27 17:09 . 2011-06-27 17:09 -------- d-----w- c:\windows\Sun 2011-06-26 19:46 . 2011-06-26 19:46 -------- d-----w- c:\program files\MarkAny 2011-06-25 18:12 . 2011-07-18 19:03 -------- d-----w- c:\programdata\McAfee 2011-06-25 05:09 . 2011-06-25 05:09 -------- d-----w- c:\programdata\Backup 2011-06-24 22:29 . 2011-06-24 22:29 -------- d-----w- c:\programdata\Logs 2011-06-24 22:19 . 2010-11-12 16:48 202064 ----a-w- c:\windows\system32\Isafprod.dll 2011-06-24 22:19 . 2010-11-12 16:47 95568 ----a-w- c:\windows\system32\Vetredir.dll 2011-06-24 22:19 . 2010-11-12 16:47 128336 ----a-w- c:\windows\system32\Isafeif.dll 2011-06-24 20:49 . 2007-08-25 13:56 200704 ----a-w- c:\windows\system32\ssleay32.dll 2011-06-24 20:49 . 2007-08-25 13:56 1028096 ----a-w- c:\windows\system32\libeay32.dll 2011-06-24 20:49 . 2011-06-25 04:56 -------- d-----w- c:\windows\rnapxs 2011-06-24 20:49 . 2010-02-28 16:36 2385136 ----a-w- c:\windows\system32\winsflt_x64.dll 2011-06-24 20:49 . 2002-01-01 10:02 7440 ----a-w- c:\windows\system32\sporder.dll 2011-06-24 20:47 . 2011-06-24 20:47 -------- d-----w- c:\program files\MSC 2011-06-22 17:45 . 2011-06-22 17:45 -------- d-----w- c:\program files\Common Files\DeviceHelper 2011-06-22 17:45 . 2009-11-17 07:44 105344 ----a-w- c:\windows\system32\drivers\jrdusbser.sys 2011-06-22 17:45 . 2009-08-27 10:18 1724416 ----a-w- c:\windows\system32\Gdiplus.dll 2011-06-22 17:45 . 2009-08-27 10:18 103424 ----a-w- c:\windows\system32\MyDIT_GenClassCoInst.dll 2011-06-22 17:45 . 2011-06-22 17:45 -------- d-----w- c:\program files\VIVACOM 3G USB MODEM . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-13 17:27 . 2011-06-07 17:28 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-07 08:13 . 2011-03-02 17:44 4659712 ----a-w- c:\windows\system32\Redemption.dll 2011-06-02 05:47 . 2011-03-07 13:43 121064 ----a-w- c:\windows\system32\drivers\ssadbus.sys 2011-06-02 05:47 . 2011-03-07 13:43 10344 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys 2011-05-04 01:52 . 2011-03-08 12:01 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-04-09 19:31 . 2011-04-09 19:31 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll 2011-04-14 11:01 . 2011-07-18 18:58 24376 ----a-w- c:\program files\mozilla firefox\components\Scriptff.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CBitSpirit"="c:\program files\BitSpirit\BitSpirit.exe" [2010-12-28 3655168] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SAOB Monitor"="c:\program files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752] "TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-06 5542488] "Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-06 390728] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-12-23 9972328] "AllShareAgent"="c:\program files\Samsung\AllShare\AllShareAgent.exe" [2011-02-18 250768] "HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-01-27 585728] "ModemListener"="c:\program files\VIVACOM 3G USB MODEM\ModemListener.exe" [2010-01-27 98304] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696] "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2011-05-05 1195408] . c:\users\SS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 0204111311015540mcinstcleanup;McAfee Application Installer Cleanup (0204111311015540);c:\users\SS\AppData\Local\Temp\020411~1.EXE [x] R2 DeviceManager;DeviceManager;c:\program files\Common Files\DeviceHelper\DeviceManager.exe [2009-11-17 40960] R2 gupdate;Услуга Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-25 136176] R2 KMService;KMService;c:\windows\system32\srvany.exe [2011-04-02 8192] R2 MySecurityCenter License Service;MySecurityCenter License Service;c:\program files\MySecurityCenter\Programs\service.exe [x] R2 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files\Samsung\AllShare\AllShareSlideShowService.exe [2011-02-18 22464] R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2010-12-21 30312] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464] R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-25 136176] R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-10-26 25088] R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040] R3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\jrdusbser.sys [2009-11-17 105344] R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-04-14 84488] R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [x] R3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872] R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-06-02 121064] R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 12776] R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 136808] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2011-04-14 165032] S0 Si3531;SiI-3531 SATA Controller;c:\windows\system32\DRIVERS\Si3531.sys [2009-02-05 212520] S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2011-01-26 752128] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-24 218688] S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2011-04-14 64584] S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2011-01-26 3246040] S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-09-09 95568] S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-09-09 217088] S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480] S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480] S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480] S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-04-14 188136] S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-03-13 148520] S2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [2011-03-21 68928] S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896] S2 SamsungAllShare;Samsung AllShare PC Service;c:\program files\Samsung\AllShare\AllShareDMS\WiselinkPro.exe [2011-02-18 7233952] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256] S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2011-01-26 167968] S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-04-14 56064] S3 cxbu0wdm;OMNIKEY 6121;c:\windows\system32\DRIVERS\cxbu0wdm.sys [2010-01-25 115712] S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-09-09 18120] S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2009-06-28 59904] S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2010-09-09 36640] S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-04-14 314088] S3 NETwLv32; Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETwLv32.sys [2010-10-07 6639616] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] . . --- Other Services/Drivers In Memory --- . *Deregistered* - mfeavfk01 . Contents of the 'Scheduled Tasks' folder . 2011-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-28 21:58] . 2011-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-28 21:58] . 2011-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1361053722-1305706191-946897326-1001Core.job - c:\users\SS\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-25 21:58] . 2011-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1361053722-1305706191-946897326-1001UA.job - c:\users\SS\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-25 21:58] . 2011-07-14 c:\windows\Tasks\InfoNotary Configurator for Mozilla Updates.job - c:\program files\InfoNotary\Mozilla Setup\updater.exe [2010-11-05 14:39] . 2011-07-19 c:\windows\Tasks\InfoNotary Smart Card Manager Updates.job - c:\program files\InfoNotary\SCManager2\updater.exe [2010-11-03 14:03] . 2011-07-13 c:\windows\Tasks\InfoNotary updater.job - c:\program files\InfoNotary\PNPInstaller\InfoNotaryUpdater.exe [2011-02-07 08:29] . 2011-07-19 c:\windows\Tasks\Update InfoNotary e-Doc Signer.job - c:\program files\InfoNotary\INSigner\INSignerUpdater.exe [2010-07-26 12:24] . . ------- Supplementary Scan ------- . uStart Page = IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105 IE: Сваляне Using &BitSpirit - c:\program files\BitSpirit\bsurl.htm TCP: DhcpNameServer = 192.168.1.1 DPF: {46A70B4B-61D5-4D95-820D-895C3F9D6109} - hxxps://repository.infonotary.com/updates/inpki-x86.cab FF - ProfilePath - c:\users\SS\AppData\Roaming\Mozilla\Firefox\Profiles\iu30s0if.default\ . - - - - ORPHANS REMOVED - - - - . ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file) AddRemove-Android SDK Tools - c:\androidsdk\android-sdk\uninstall.exe AddRemove-LSI Soft Modem - c:\windows\agrsmdel AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe AddRemove-05_Sloan - c:\program files\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe AddRemove-06_Spencer - c:\program files\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe AddRemove-08_EMPChipset - c:\program files\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe AddRemove-17_EMP_Chipset2 - c:\program files\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe AddRemove-18_Zinia_Serial_Driver - c:\program files\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe AddRemove-19_VIA_driver - c:\program files\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe AddRemove-21_Searsburg - c:\program files\SAMSUNG\USB Drivers\21_Searsburg\Uninstall.exe AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0012\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2011-07-19 21:49:35 ComboFix-quarantined-files.txt 2011-07-19 18:49 . Pre-Run: 28 976 332 800 bytes free Post-Run: 28 652 589 056 bytes free . - - End Of File - - 1420149106936327C310FBC01C58A145

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Сега как е системата ...?:whist:

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Сега как е системата ...?:whist:

Чудесна е ,много е бърза.За съжаление , инвойса ми дава същото съобщение :nono:.Махнах го и пак го сложих и пак същото :).Май ще трябва да преинсталирам ,много ми е нужна тази програма :(Сега видях ,че сте допълнили че трябва да се обърна към администратор но аз съм администратора на системата ми .Или пък да пиша направо на Микроинвест?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Или пък да пиша направо на Микроинвест?

Мисля че това е добра идея...!:down:Аз като вляаза в сайта и искам да изтегля нещо ми иска име и парола....!!!Но това е нормално аз не съм регистриран в системата им...!А какво мислите за преинсталиране на самата програма...?

.....да се обърна към администратор но аз съм администратора на системата ми .

Само че вие сте администратор предполагам на вашия профил до който в момента нямате достъп.....?Нали така...?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Мисля че това е добра идея...!:down:Аз като вляаза в сайта и искам да изтегля нещо ми иска име и парола....!!!Но това е нормално аз не съм регистриран в системата им...!А какво мислите за преинсталиране на самата програма...?

Само че вие сте администратор предполагам на вашия профил до който в момента нямате достъп.....?Нали така...?

Аз съм регистриран там и няма проблем с входа на системата им.

Точно това е странното,влизам си винаги в профила на компютъра с парола и сега дори съм в него.Пробвах да я преинсталирам но когато се инсталира ,идва един момент в който пак се появява този надпис за малко и после изчезва.При опит за стартиране пак същото :).Ако искате изтрийте темата само да не пълни раздела а аз ще си върна чистия уиндоус с Акрониса .Благодаря много за търпениетоПубликувано изображение

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Деинсталирайте OTL така:

Стартирайте OTL още веднъж и натиснете бутона CleanUp.

Публикувано изображение

Ще последва рестарт на Windows..!

============================================================================================================

1.Деинсталирайте Комбофикс така:

Натиснете Start ==> Run ==> въведете командата Combofix /Uninstall ==> OK

Публикувано изображение

2.Изтеглете OTCleanIt или от тук,стартирайте и натиснете Clean up

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.