Премини към съдържанието

Препоръчан отговор


Днес случайно поразгледах task manager-а и видях тези 2 процеса.Проверих в гугъл и ,видях че може да си вируси.Също така доста пъти се получава проблемът с ограничения достъп до интернет.Тъй като ползвам рутер и съм сигурен,че не е от него понеже на другия лаптоп има инетернет,а на този няма.Благодаря предварително.

dds.txt

DDS (Ver_2011-09-30.01) - NTFS_AMD64

Internet Explorer: 8.0.7600.16385

Run by Coko at 0:47:29 on 2012-04-09

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.3956.2017 [GMT 3:00]

.

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\taskhost.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Users\Coko\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe

C:\Users\Coko\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler64.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

C:\android-sdk-windows\platform-tools\adb.exe

C:\Program Files (x86)\Steam\Steam.exe

C:\Program Files (x86)\Common Files\Steam\SteamService.exe

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\taskmgr.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\sysWOW64\wbem\wmiprvse.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\Desktop\Programs\uTorrent.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Coko\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit = userinit.exe

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

uRun: [Google Update] "C:\Users\Coko\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silent

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

uRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized

uRun: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: PromptOnSecureDesktop = dword:0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{B8A44E02-07E9-4D0D-8D86-C9CD7B19F949} : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{B8A44E02-07E9-4D0D-8D86-C9CD7B19F949}\37E245275746 : DHCPNameServer = 192.168.43.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Overwolf\SKYPE4~1.DLL

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe

x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

.

============= SERVICES / DRIVERS ===============

.

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-3-1 819032]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-3-1 337240]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-3-1 283200]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-14 59904]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-12-6 235520]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-3-1 24408]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-3-1 69976]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-3-21 44768]

R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2011-12-6 10720256]

R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2011-12-6 327168]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2011-12-5 95248]

R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]

R3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-4-4 155320]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S3 c2wts;Claims to Windows Token Service;C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2009-12-26 13080]

S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2009-4-6 13352]

S3 OverwolfUpdaterService;Overwolf Updater Service;C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2012-3-5 17848]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

.

=============== Created Last 30 ================

.

2012-04-08 21:43:12 -------- d-----w- C:\Program Files\CCleaner

2012-04-08 21:36:14 -------- dc-h--w- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}

2012-04-08 21:35:38 -------- d-----w- C:\ProgramData\{6AD8E59C-250C-4201-B5BA-56ADEF76FF46}

2012-04-08 21:30:55 -------- dc-h--w- C:\ProgramData\~0

2012-04-08 21:30:44 -------- d-----w- C:\Users\Coko\AppData\Local\PackageAware

2012-04-04 17:12:58 -------- d-----w- C:\Program Files (x86)\Sony

2012-04-04 14:43:58 -------- d-----w- C:\Flashtool

2012-04-04 12:48:16 1002728 ----a-w- C:\Windows\System32\WinUSBCoInstaller2.dll

2012-04-04 12:46:31 -------- d-----w- C:\android-sdk-windows

2012-04-04 12:20:09 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll

2012-04-04 10:21:54 -------- d-----w- C:\Users\Coko\.android

2012-04-04 10:21:41 -------- d-----w- C:\Program Files (x86)\Android

2012-04-03 08:45:45 -------- d-----w- C:\Users\Coko\AppData\Local\TeknoGods

2012-04-03 04:42:25 -------- d-----w- C:\Users\Coko\AppData\Roaming\ABBYY

2012-04-03 04:42:25 -------- d-----w- C:\Users\Coko\AppData\Local\ABBYY

2012-04-03 04:41:37 -------- d-----w- C:\Program Files (x86)\ABBYY FineReader 6.0

2012-04-03 04:40:35 221184 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll

2012-04-03 04:40:34 53248 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\msihook.dll

2012-04-03 04:40:34 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll

2012-04-03 04:40:33 217088 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll

2012-04-03 04:40:33 126976 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\knlwrap.exe

2012-04-03 04:40:31 598016 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ikernel.exe

2012-04-03 04:40:30 114688 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\scpthdlr.dll

2012-03-29 06:22:14 -------- d-----w- C:\Users\Coko\AppData\Roaming\Faerie Solitaire

2012-03-28 08:18:34 -------- d-----w- C:\ProgramData\Blizzard Entertainment

2012-03-28 08:18:34 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment

2012-03-27 09:06:47 -------- d-----w- C:\BrickForce

2012-03-26 08:45:41 -------- d-----w- C:\Windows\System32\appmgmt

2012-03-26 08:24:16 -------- d-----w- C:\Users\Coko\AppData\Local\SplitMediaLabs

2012-03-26 08:23:18 -------- d-----w- C:\Program Files (x86)\SplitMediaLabs

2012-03-26 08:23:17 -------- d-----w- C:\ProgramData\SplitMediaLabs

2012-03-26 08:22:23 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-03-26 08:21:42 -------- d-----w- C:\Users\Coko\AppData\Roaming\SplitMediaLabs

2012-03-21 20:56:38 -------- d-----w- C:\Users\Coko\riotsGamesLogs

2012-03-21 20:00:02 -------- d-----w- C:\Users\Coko\AppData\Roaming\Adobe Mini Bridge CS5

2012-03-21 20:00:01 -------- d-----w- C:\Users\Coko\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1

2012-03-18 19:28:53 129784 ------w- C:\Windows\SysWow64\pxafs.dll

2012-03-18 18:39:10 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller

2012-03-18 18:38:20 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation

2012-03-18 18:37:52 519000 ----a-w- C:\Windows\System32\d3dx10_40.dll

2012-03-18 18:37:52 452440 ----a-w- C:\Windows\SysWow64\d3dx10_40.dll

2012-03-18 18:37:52 2605920 ----a-w- C:\Windows\System32\D3DCompiler_40.dll

2012-03-18 18:37:52 2036576 ----a-w- C:\Windows\SysWow64\D3DCompiler_40.dll

2012-03-18 18:37:49 5631312 ----a-w- C:\Windows\System32\D3DX9_40.dll

2012-03-18 18:37:49 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll

2012-03-17 08:16:58 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-03-15 19:15:02 -------- d-----w- C:\Users\Coko\AppData\Local\VMware

2012-03-13 13:40:01 -------- d-----w- C:\Users\Coko\AppData\Roaming\TeamViewer

2012-03-12 12:28:52 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3E87C541-9A8E-4F76-9063-08BB08021C69}\offreg.dll

2012-03-11 17:05:15 -------- d-----w- C:\Program Files (x86)\TeamSpeak 3 Client

.

==================== Find3M ====================

.

2012-03-07 00:15:19 41184 ----a-w- C:\Windows\avastSS.scr

2012-03-07 00:04:06 819032 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2012-03-07 00:02:20 53080 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2012-03-07 00:01:52 69976 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2012-03-01 20:38:43 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

2012-03-01 19:59:37 0 ----a-w- C:\Windows\ativpsrm.bin

2012-02-07 18:02:22 768848 ----a-w- C:\Windows\SysWow64\msvcr100.dll

2012-02-07 18:02:22 421200 ----a-w- C:\Windows\SysWow64\msvcp100.dll

2012-01-29 03:10:42 279656 ------w- C:\Windows\System32\MpSigStub.exe

.

============= FINISH: 0:47:59.30 ===============

attach.txt

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-09-30.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 3/1/2012 9:05:17 PM

System Uptime: 4/6/2012 11:41:19 PM (49 hours ago)

.

Motherboard: Acer | | Aspire 5740

Processor: Intel® Core™ i5 CPU M 430 @ 2.27GHz | CPU 1 | 2267/133mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 78 GiB total, 12.259 GiB free.

D: is FIXED (NTFS) - 518 GiB total, 415.409 GiB free.

E: is CDROM ()

F: is CDROM (CDFS)

G: is CDROM (CDFS)

H: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID:

Description: Ethernet Controller

Device ID: PCI\VEN_14E4&DEV_1692&SUBSYS_033D1025&REV_01\4&273DF8AD&0&00E0

Manufacturer:

Name: Ethernet Controller

PNP Device ID: PCI\VEN_14E4&DEV_1692&SUBSYS_033D1025&REV_01\4&273DF8AD&0&00E0

Service:

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: VMware Bridge Protocol

Device ID: ROOT\LEGACY_VMNETBRIDGE\0000

Manufacturer:

Name: VMware Bridge Protocol

PNP Device ID: ROOT\LEGACY_VMNETBRIDGE\0000

Service: VMnetBridge

.

==== System Restore Points ===================

.

No restore point in system.

.

==== Installed Programs ======================

.

ABBYY FineReader 6.0 Corporate Edition

Adobe AIR

Adobe Community Help

Adobe Flash Player 10 ActiveX

Adobe Media Player

Adobe Photoshop CS5

Adobe Reader X (10.1.2)

AMD APP SDK Runtime

AMD Catalyst Install Manager

AMD Drag and Drop Transcoding

AMD Media Foundation Decoders

Android SDK Tools

Apple Application Support

Apple Software Update

avast! Free Antivirus

BlackBerry Desktop Software 6.1

BlackBerry Device Software Updater

BrickForce 1.4.40

Canon Easy-PhotoPrint EX

Canon MP Navigator EX 4.0

Canon MP495 series MP Drivers

Canon MP495 series User Registration

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

CCleaner

DAEMON Tools Lite

Faerie Solitaire

Flashtool

Google Chrome

Hacker Evolution Duality Demo

Java Auto Updater

Java™ 6 Update 31

League of Legends

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared 64-bit MUI (English) 2007

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319

Microsoft XNA Framework Redistributable 4.0

Microsoft_VC80_ATL_x86

Microsoft_VC80_ATL_x86_x64

Microsoft_VC80_CRT_x86

Microsoft_VC80_CRT_x86_x64

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFC_x86_x64

Microsoft_VC80_MFCLOC_x86

Microsoft_VC80_MFCLOC_x86_x64

Microsoft_VC90_ATL_x86

Microsoft_VC90_ATL_x86_x64

Microsoft_VC90_CRT_x86

Microsoft_VC90_CRT_x86_x64

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFC_x86_x64

mIRC

NNScript

NVIDIA PhysX

Overwolf

Pando Media Booster

PDF Settings CS5

Plants vs. Zombies: Game of the Year

QuickTime

Skype™ 3.5

Sony PC Companion 2.10.030

StarCraft II

Steam

Super MNC Invitational

Synaptics Pointing Device Driver

Team Fortress 2

TeamSpeak 3 Client

Terraria

TrackMania Nations Forever

VLC media player 2.0.1

Winamp

WinRAR archiver

XSplit

.

==== Event Viewer Messages From Past Week ========

.

4/8/2012 5:35:39 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

4/4/2012 8:24:38 PM, Error: Service Control Manager [7000] - The VMware Bridge Protocol service failed to start due to the following error: The system cannot find the file specified.

4/4/2012 1:59:54 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AMD External Events Utility service.

4/4/2012 1:58:43 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000009f (0x0000000000000003, 0xfffffa80048f8a20, 0xfffff80000b9c518, 0xfffffa8004fd2980). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 040412-21481-01.

.

==== End Of File ===========================

Редактирано от cokich (преглед на промените)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Публикувано изображение Изтеглете Malwarebytes' Anti-Malware или от тук

* Кликнете два пъти върху mbam-setup.exe, за да инсталирате програмата.

* Уверете се, че са поставени отметки на Update Malwarebytes' Anti-Malware и Launch Malwarebytes' Anti-Malware. След това кликнете на Finish.

* Ако има намерени обновявания, тя ще ги изтегли и инсталира.

* Стартирайте програмата и изберете "Perform Full Scan", след това кликнете на Scan.

* Сканирането ще отнеме малко време, затова моля да бъдете търпеливи.

* Когато сканирането завърши, кликнете на OK, след това Show Results, за да видите резултата.

* Уверете се, че на всички редове има отметки, и кликнете на Remove Selected.

* Когато всичко бъде премахнато, в Notepad ще бъде отворен лог. Копирайте този лог и го публикувайте в следващия си коментар по темата.

Забележка: Ако MalwareBytes' Anti-Malware се затрудни в премахването на откритите вируси/заплахи, той ще поиска да рестартира компютъра Ви и по време на рестартирането да премахне проблемните вируси/заплахи. Ако бъдете попитани, потвърдете че желаете вашия компютър да бъде рестартиран.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Malwarebytes Anti-Malware (Trial) 1.60.1.1000 www.malwarebytes.org Database version: v2012.04.09.01 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Coko :: COKO-PC [administrator] Protection: Enabled 4/9/2012 10:49:37 AM mbam-log-2012-04-09 (10-49-37).txt Scan type: Full scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 379966 Time elapsed: 58 minute(s), 54 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 1 D:\p0n\Winamp 5 52 KGN [h33t] [dinguskull]\Keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully. (end)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Публикувано изображение Изтеглете OTL.exe и го запазете на десктопа.

  • Стартирайте OTL (ако е необходимо, потвърдете през UAC).
  • Направете следните настройки:
  • Сложете отметка пред Scan All Users Публикувано изображение
  • Под менюто File Age => изберете 90 days
  • Под менюто Standard Registry => променете на ALL
  • Сложете отметки пред LOP и Purity Check
Публикувано изображение Под Публикувано изображение с Copy/ Paste въведете изцяло следната текстова информация (само това, което е поставено в карето):

netsvcs
msconfig
%SYSTEMDRIVE%\*.*
%USERPROFILE%\*.*
%USERPROFILE%\AppData\Local\*.*
%USERPROFILE%\AppData\Roaming\*.*
%ProgramData%\*.*
%CommonProgramFiles%\*.*
%PROGRAMFILES%\*.*
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /90
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
/md5start
hlp.dat
winlogon.exe
wininit.exe
userinit.exe
explorer.exe
volsnap.sys
/md5stop
  • Натиснете маркираният в синьо бутон: Run Scan.
  • Като приключи проверката, ще се създадат два файла - OTL.Txt и Extras.Txt. Прикачете тези два файла в следващия си коментар (погледнете опцията "прикачени файлове", когато публикувате мнение).

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Файловете.

Extras.Txt

OTL.Txt


Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Системата е чиста..!

Публикувано изображение Стартирайте отново OTL, копирайте (Copy) и поставете (Paste) скриптовия текст от текстовото поле по-долу под колонката Custom Scans/Fixes, като не забравяте да копирате скрипта 1 към 1, както и двете точки преди първия ред на скрипта.

:Services

:files

recycler /alldrives
ipconfig /flushdns /c

:Commands
[purity]
[emptytemp]
[clearallrestorepoints]
[emptyflash]
[Reboot]

Публикувано изображение След като въведете скрипта от цитата по-горе натиснете бутона, маркиран в червено: Run Fix

Windows ще се рестартира и ще се създаде лог файл. Публикувайте съдържанието му с Copy/Paste в следващия си коментар.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

C:\Users\Coko\Desktop\cmd.bat deleted successfully. C:\Users\Coko\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Coko ->Temp folder emptied: 4991668429 bytes ->Temporary Internet Files folder emptied: 55374909 bytes ->Java cache emptied: 83087 bytes ->Google Chrome cache emptied: 257900224 bytes ->Flash cache emptied: 36184 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 41620 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 3333788 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50400 bytes RecycleBin emptied: 8283534317 bytes Total Files Cleaned = 12,962.00 mb Restore point Set: OTL Restore Point [EMPTYFLASH] User: All Users User: Coko ->Flash cache emptied: 0 bytes User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.39.2 log created on 04092012_151559 Files\Folders moved on Reboot... C:\Users\Coko\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. Registry entries deleted on Reboot...

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Прекрасно..!Разчистихме 13 гигабайта ......!Иначе въпросните файлове са напълно легални и не трябва да ви притесняват.

%windir%\system32\csrss.exe - csrss.exe ("client/server run-time subsystem" ) е необходим за коректната работа на Windows и програмите.

atieclxx.exe е процес от ATI Controlpanel и част от ATi Graphiccard drivers.

Друго което да ви притеснява по системата ви....?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Не знам дали въпросът е за тук,но доста чест се появява проблема с ограниченият интернет.Възможно ли е това да е от рутера?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Имате впредвид че сте на ограничен интернет и много бързо ви свършва трафика или имате проблем със забавяне и прекъсване на връзката..?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Забавяне и прекъсване на връзката.При положение на друг лаптоп няма проблеми

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Разбирам..сега след като поразчистихме системата ви..наблюдавайте няколко дни как ще са нещата...ако има проблеми от това естество пишете за да направим още една две проверки....!Аз темата няма да я приключвам..!:)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Регистрирайте се или влезете в профила си за да коментирате

Трябва да имате регистрация за да може да коментирате това

Регистрирайте се

Създайте нова регистрация в нашия форум. Лесно е!

Нова регистрация

Вход

Имате регистрация? Влезте от тук.

Вход


×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.