Премини към съдържанието

Архивирана тема

Темата е твърде стара и е архивирана. Не можете да добавяте нови отговори в нея, но винаги можете да публикувате нова тема, в която да продължи дискусията. Регистрирайте се или влезте във вашия профил за да публикувате нова тема.

doktorkartar

Мисля че имам рекламен вирус

Препоръчан отговор


От известно време ми излизат всякакви реклами и не мога да ги премахна с adBlock.

Като отворя някои торент и на снимката му ми излиза прозорец с реклама които закрива обложката на филма, играта...

Това не е само с торентите , в които и сайт да отворя някоя снимка върху нея излиза реклама.

 

http://prikachi.com/images/293/6834293s.jpg

http://prikachi.com/images/292/6834292m.jpg

 

 

Също така от скоро започна да се пуска процес с има GPU Monitor които почва да товари видеото на 100%

 

 

 

Имам диск с ОС

DDS (Ver_2011-09-30.01) - NTFS_AMD64 Internet Explorer: 9.10.9200.16721Run by eclips at 13:41:12 on 2013-12-09Microsoft Windows 7 Ultimate   6.1.7601.1.1251.359.1033.18.4079.2768 [GMT 2:00].AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}.============== Running Processes ===============.C:Windowssystem32wininit.exeC:Windowssystem32lsm.exeC:Windowssystem32svchost.exe -k DcomLaunchC:Windowssystem32svchost.exe -k RPCSSC:Windowssystem32atiesrxx.exeC:WindowsSystem32svchost.exe -k LocalServiceNetworkRestrictedC:WindowsSystem32svchost.exe -k LocalSystemNetworkRestrictedC:Windowssystem32svchost.exe -k LocalServiceC:Windowssystem32svchost.exe -k netsvcsC:Windowssystem32svchost.exe -k NetworkServiceC:Windowssystem32atieclxx.exeC:Windowssystem32Dwm.exeC:Program Files (x86)AviraAntiVir Desktopsched.exeC:WindowsExplorer.EXEC:Windowssystem32taskhost.exeC:Windowssystem32svchost.exe -k LocalServiceNoNetworkC:Program Files (x86)AviraAntiVir Desktopavfwsvc.exeC:Program Files (x86)AviraAntiVir Desktopavguard.exeC:Program Files (x86)AskPartnerNetworkToolbarapnmcp.exeC:Program Files (x86)Malwarebytes' Anti-Malwarembamscheduler.exeC:Program Files (x86)Malwarebytes' Anti-Malwarembamservice.exeC:Program Files (x86)Malwarebytes' Anti-Malwarembamgui.exeC:Program Files (x86)TuneUp Utilities 2014TuneUpUtilitiesService64.exeC:Windowssystem32viakaraokesrv.exeC:Program Files (x86)SkypePhoneSkype.exeC:Program Files (x86)AviraAntiVir Desktopavgnt.exeC:Program Files (x86)AskPartnerNetworkToolbarUpdaterTBNotifier.exeC:Program Files (x86)AviraAntiVir Desktopavshadow.exeC:Program Files (x86)TuneUp Utilities 2014TuneUpUtilitiesApp64.exeC:Program Files (x86)AviraAntiVir Desktopavmailc7.exeC:Program Files (x86)AviraAntiVir Desktopavwebg7.exeC:Windowssystem32svchost.exe -k NetworkServiceNetworkRestrictedC:Program Files (x86)Mozilla Firefoxfirefox.exeC:Program Files (x86)Mozilla Firefoxplugin-container.exeC:WindowsSysWOW64MacromedFlashFlashPlayerPlugin_11_9_900_152.exeC:WindowsSysWOW64MacromedFlashFlashPlayerPlugin_11_9_900_152.exeC:Windowssystem32conhost.exeC:Windowssystem32wbemwmiprvse.exeC:Windowssystem32DllHost.exeC:WindowsSystem32cscript.exe.============== Pseudo HJT Report ===============.mWinlogon: Userinit = userinit.exe,BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:Program Files (x86)BitComettoolsBitCometBHO_1.4.11.9.dllBHO: Avira SearchFree Toolbar: {41564952-412D-5637-00A7-7A786E7484D7} - BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:Program Files (x86)Microsoft OfficeOffice12GrooveShellExtensions.dllTB: Avira SearchFree Toolbar: {41564952-412D-5637-00A7-7A786E7484D7} - uRun: [DAEMON Tools Lite] "D:PROGRAMKIDAEMON Tools LiteDTLite.exe" -autorun                                                                                                                                                                                                                     uRun: [Skype] "C:Program Files (x86)SkypePhoneSkype.exe" /nosplash /minimizedmRun: [StartCCC] "C:Program Files (x86)ATI TechnologiesATI.ACECore-Staticamd64CLIStart.exe" MSRun                                                                                                                                                                                   mRun: [20131121] C:Program FilesAVAST SoftwareAvastsetupemupdatefc5b3b7b-5a18-48b5-ae49-c8648f5b721e.exe /checkmRun: [AvastUI.exe] "C:Program FilesAVAST SoftwareAvastAvastUI.exe" /noguimRun: [GrooveMonitor] "C:Program Files (x86)Microsoft OfficeOffice12GrooveMonitor.exe"mRun: [IME JPN 2007 Migration] C:PROGRA~2COMMON~1MICROS~1IME12IMEJPIMJPKLMG.EXE /PreloadmRun: [Korean IME Migration] C:PROGRA~2COMMON~1MICROS~1IME12IMEKRIMKRMIG.EXEmRun: [Microsoft Pinyin IME Migration] C:PROGRA~2COMMON~1MICROS~1IME12IMESCIMSCMIG.EXE /INSTALLmRun: [GPULoader] "C:Program Files (x86)VLC Player GPU+GPULog.exe"                                                                                                                                                                                                                      mRun: [avgnt] "C:Program Files (x86)AviraAntiVir Desktopavgnt.exe" /minmRun: [ApnTBMon] "C:Program Files (x86)AskPartnerNetworkToolbarUpdaterTBNotifier.exe"mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: &D&ownload &with BitComet - C:Program FilesBitCometBitComet.exe/AddLink.htmIE: &D&ownload all with BitComet - C:Program FilesBitCometBitComet.exe/AddAllLink.htmIE: E&xport to Microsoft Excel - C:PROGRA~2MICROS~1Office12EXCEL.EXE/3000IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:Program Files (x86)BitComettoolsBitCometBHO_1.4.11.9.dll/206TCP: Interfaces{A3236531-A5CD-4450-8F87-65A07C468862} : DHCPNameServer = 178.254.208.2 178.254.192.3TCP: Interfaces{BEC556CF-51D7-4695-803A-32D19749B62C} : NameServer = 85.130.60.11 62.222.132.211Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:Program Files (x86)Microsoft OfficeOffice12GrooveSystemServices.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:Program Files (x86)Common FilesSkypeSkype4COM.dllSSODL: WebCheck - <orphaned>SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:Program Files (x86)Microsoft OfficeOffice12GrooveShellExtensions.dllIFEO: dtlite.exe - "C:Program Files (x86)TuneUp Utilities 2014TUAutoReactivator64.exe"IFEO: sptdinst-x64.exe - "C:Program Files (x86)TuneUp Utilities 2014TUAutoReactivator64.exe"x64-BHO: Avira SearchFree Toolbar: {41564952-412D-5637-00A7-7A786E7484D7} - x64-BHO: SmileysWeLoveToolbar: {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - x64-TB: SmileysWeLove: {CF0F43AB-9C23-4D7B-8040-201B82844854} - x64-TB: Avira SearchFree Toolbar: {41564952-412D-5637-00A7-7A786E7484D7} - x64-Run: [IME JPN 2007 Migration] C:PROGRA~1COMMON~1MICROS~1IME12IMEJPIMJPKLMG.EXE /Preloadx64-Run: [Korean IME Migration] C:PROGRA~1COMMON~1MICROS~1IME12IMEKRIMKRMIG.EXEx64-Run: [Microsoft Pinyin IME Migration] C:PROGRA~1COMMON~1MICROS~1IME12IMESCIMSCMIG.EXE /INSTALLx64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-SSODL: WebCheck - <orphaned>x64-IFEO: dtlite.exe - "C:Program Files (x86)TuneUp Utilities 2014TUAutoReactivator64.exe"x64-IFEO: sptdinst-x64.exe - "C:Program Files (x86)TuneUp Utilities 2014TUAutoReactivator64.exe".================= FIREFOX ===================.FF - ProfilePath - C:UserseclipsAppDataRoamingMozillaFirefoxProfiles9qq5rp0a.defaultFF - prefs.js: browser.startup.homepage - hxxp://www.google.bg/FF - plugin: C:Program Files (x86)GoogleGoogle Earthpluginnpgeplugin.dllFF - plugin: C:Program Files (x86)GoogleUpdate1.3.22.3npGoogleUpdate3.dllFF - plugin: C:WindowsSysWOW64MacromedFlashNPSWF32_11_9_900_152.dll.============= SERVICES / DRIVERS ===============.R1 avfwot;avfwot;C:WindowsSystem32driversavfwot.sys [2013-12-8 141376]R1 avkmgr;avkmgr;C:WindowsSystem32driversavkmgr.sys [2013-12-8 28600]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:WindowsSystem32driversdtsoftbus01.sys [2013-8-20 283200]R2 AMD External Events Utility;AMD External Events Utility;C:WindowsSystem32atiesrxx.exe [2013-10-8 239616]R2 AntiVirFirewallService;Avira FireWall;C:Program Files (x86)AviraAntiVir Desktopavfwsvc.exe [2013-12-8 1012280]R2 AntiVirMailService;Avira Mail Protection;C:Program Files (x86)AviraAntiVir Desktopavmailc7.exe [2013-12-8 972872]R2 AntiVirSchedulerService;Avira Scheduler;C:Program Files (x86)AviraAntiVir Desktopsched.exe [2013-12-8 440376]R2 AntiVirService;Avira Real-Time Protection;C:Program Files (x86)AviraAntiVir Desktopavguard.exe [2013-12-8 440376]R2 AntiVirWebService;Avira Web Protection;C:Program Files (x86)AviraAntiVir Desktopavwebg7.exe [2013-12-8 1164360]R2 AODDriver4.2;AODDriver4.2;C:Program FilesATI TechnologiesATI.ACEFuelamd64aoddriver2.sys [2012-11-20 57512]R2 APNMCP;Ask Update Service;C:Program Files (x86)AskPartnerNetworkToolbarapnmcp.exe [2013-10-23 166352]R2 avgntflt;avgntflt;C:WindowsSystem32driversavgntflt.sys [2013-12-8 107416]R2 avnetflt;avnetflt;C:WindowsSystem32driversavnetflt.sys [2013-12-8 83160]R2 MBAMScheduler;MBAMScheduler;C:Program Files (x86)Malwarebytes' Anti-Malwarembamscheduler.exe [2013-12-7 418376]R2 MBAMService;MBAMService;C:Program Files (x86)Malwarebytes' Anti-Malwarembamservice.exe [2013-12-7 701512]R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:Program Files (x86)TuneUp Utilities 2014TuneUpUtilitiesService64.exe [2013-8-29 2100024]R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:WindowsSystem32ViakaraokeSrv.exe [2013-11-19 27760]R3 amdkmdag;amdkmdag;C:WindowsSystem32driversatikmdag.sys [2013-10-8 12534784]R3 amdkmdap;amdkmdap;C:WindowsSystem32driversatikmpag.sys [2013-10-8 619008]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:WindowsSystem32driversAtihdW76.sys [2013-7-5 96256]R3 avfwim;AvFw Packet Filter Miniport;C:WindowsSystem32driversavfwim.sys [2013-12-8 114608]R3 MBAMProtector;MBAMProtector;C:WindowsSystem32driversmbam.sys [2013-12-7 25928]R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:Program Files (x86)TuneUp Utilities 2014TuneUpUtilitiesDriver64.sys [2013-8-21 14112]R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:WindowsSystem32driversviahduaa.sys [2013-11-19 2159728]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2012-7-9 104912]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe [2012-7-8 123856]S2 gupdate;Услуга на Google Актуализация (gupdate);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2013-11-30 116648]S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:Program FilesBitComettoolsBitCometService.exe -service --> C:Program FilesBitComettoolsBitCometService.exe -service [?]S3 dmvsc;dmvsc;C:WindowsSystem32driversdmvsc.sys [2011-4-12 71168]S3 gupdatem;Услуга на Google Актуализация (gupdatem);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2013-11-30 116648]S3 McComponentHostService;McAfee Security Scan Component Host Service;C:Program Files (x86)McAfee Security Scan3.0.285McCHSvc.exe [2012-9-5 234776]S3 MozillaMaintenance;Mozilla Maintenance Service;C:Program Files (x86)Mozilla Maintenance Servicemaintenanceservice.exe [2013-11-19 119408]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:WindowsSystem32driversrdpvideominiport.sys [2010-11-21 20992]S3 rt61x64;Ralink RT61 Wireless Driver for Windows Vista;C:WindowsSystem32driversnetr6164.sys [2013-11-20 386560]S3 Synth3dVsc;Synth3dVsc;C:WindowsSystem32driversSynth3dVsc.sys [2011-4-12 88960]S3 terminpt;Microsoft Remote Desktop Input Driver;C:WindowsSystem32driversterminpt.sys [2011-4-12 34816]S3 TsUsbFlt;TsUsbFlt;C:WindowsSystem32driversTsUsbFlt.sys [2010-11-21 59392]S3 TsUsbGD;Remote Desktop Generic USB Device;C:WindowsSystem32driversTsUsbGD.sys [2010-11-21 31232]S3 tsusbhub;tsusbhub;C:WindowsSystem32driverstsusbhub.sys [2011-4-12 117248]S3 WatAdminSvc;Windows Activation Technologies Service;C:WindowsSystem32WatWatAdminSvc.exe [2013-10-16 1255736]S4 AMD FUEL Service;AMD FUEL Service;C:Program FilesATI TechnologiesATI.ACEFuelFuel.Service.exe [2013-10-8 344064].=============== File Associations ===============.FileExt: .txt: txtfile=C:WindowsSysWow64notepad.exe %1FileExt: .ini: inifile=C:WindowsSysWow64notepad.exe %1FileExt: .inf: inffile=C:WindowsSysWow64notepad.exe %1FileExt: .vbe: vbefile=C:WindowsSysWow64WScript.exe "%1" %*FileExt: .vbs: vbsfile=C:WindowsSysWow64WScript.exe "%1" %*FileExt: .js: jsfile=C:WindowsSysWow64WScript.exe "%1" %*FileExt: .jse: jsefile=C:WindowsSysWow64WScript.exe "%1" %*FileExt: .wsf: wsffile=C:WindowsSysWow64WScript.exe "%1" %*.=============== Created Last 30 ================.2013-12-08 17:59:29	--------	d-----w-	C:UserseclipsAppDataRoamingAvira2013-12-08 17:58:58	--------	d-----w-	C:ProgramDataAskPartnerNetwork2013-12-08 17:58:58	--------	d-----w-	C:Program Files (x86)AskPartnerNetwork2013-12-08 17:58:43	--------	d-----w-	C:ProgramDataAPN2013-12-08 17:56:59	83160	----a-w-	C:WindowsSystem32driversavnetflt.sys2013-12-08 17:56:59	28600	----a-w-	C:WindowsSystem32driversavkmgr.sys2013-12-08 17:56:59	107416	----a-w-	C:WindowsSystem32driversavgntflt.sys2013-12-08 17:56:58	141376	----a-w-	C:WindowsSystem32driversavfwot.sys2013-12-08 17:56:58	114608	----a-w-	C:WindowsSystem32driversavfwim.sys2013-12-08 17:56:58	--------	d-----w-	C:ProgramDataAvira2013-12-08 17:56:58	--------	d-----w-	C:Program Files (x86)Avira2013-12-08 17:35:45	--------	d-----w-	C:ProgramDataKaspersky Lab Setup Files2013-12-08 17:34:41	--------	d-s---w-	C:WindowsSysWow64Microsoft2013-12-08 16:42:41	--------	d-----w-	C:AdwCleaner2013-12-07 18:44:14	--------	d-----w-	C:UserseclipsAppDataRoamingMalwarebytes2013-12-07 18:43:54	--------	d-----w-	C:ProgramDataMalwarebytes2013-12-07 18:43:52	25928	----a-w-	C:WindowsSystem32driversmbam.sys2013-12-07 18:43:52	--------	d-----w-	C:Program Files (x86)Malwarebytes' Anti-Malware2013-12-07 17:59:17	--------	d-----w-	C:UserseclipsAppDataRoamingHD Tune Pro2013-12-07 17:59:07	--------	d-----w-	C:Program Files (x86)HD Tune Pro2013-12-06 21:48:19	--------	d-----w-	C:UserseclipsAppDataRoamingMAXON2013-12-04 09:52:44	--------	d-----w-	C:Program Files (x86)VideoLAN2013-12-04 09:43:31	--------	d-----w-	C:Program Files (x86)Winamp Detect2013-12-04 09:43:25	--------	d-----w-	C:Program Files (x86)Shopping Suggestion2013-12-04 09:43:20	--------	d-----w-	C:Program Files (x86)VLC Player GPU+2013-12-04 09:43:13	--------	d-----w-	C:Program Files (x86)Common FilesPX Storage Engine2013-12-04 07:13:06	--------	d-----w-	C:WindowsSystem32appmgmt2013-11-30 17:46:13	--------	d-----w-	C:UserseclipsAppDataLocalGoogle2013-11-29 04:55:48	--------	d-----w-	C:Program Files (x86)Common FilesSteam2013-11-28 20:27:12	--------	d-----w-	C:WindowsPCHEALTH2013-11-28 20:25:43	--------	d-----w-	C:Program Files (x86)Microsoft Visual Studio 82013-11-28 20:25:13	--------	d-----w-	C:UserseclipsAppDataLocalMicrosoft Help2013-11-23 18:41:24	--------	d-----w-	C:UserseclipsAppDataRoamingAVAST Software2013-11-21 18:23:02	--------	d-----w-	C:ProgramDataEA Core2013-11-20 15:55:58	--------	d-----w-	C:Program Files (x86)Skype2013-11-20 15:04:02	77656	----a-w-	C:WindowsSystem32XAPOFX1_5.dll2013-11-20 15:04:02	74072	----a-w-	C:WindowsSysWow64XAPOFX1_5.dll2013-11-20 15:04:01	527192	----a-w-	C:WindowsSysWow64XAudio2_7.dll2013-11-20 15:04:01	518488	----a-w-	C:WindowsSystem32XAudio2_7.dll2013-11-20 15:04:01	2526056	----a-w-	C:WindowsSystem32D3DCompiler_43.dll2013-11-20 15:04:01	239960	----a-w-	C:WindowsSysWow64xactengine3_7.dll2013-11-20 15:04:01	176984	----a-w-	C:WindowsSystem32xactengine3_7.dll2013-11-20 15:04:00	1907552	----a-w-	C:WindowsSystem32d3dcsx_43.dll2013-11-20 15:04:00	1868128	----a-w-	C:WindowsSysWow64d3dcsx_43.dll2013-11-20 15:02:14	--------	d-----w-	C:WindowsSysWow64directx2013-11-20 14:22:54	--------	d-----w-	C:Windowspss2013-11-20 12:59:27	386560	----a-w-	C:WindowsSystem32driversnetr6164.sys2013-11-20 12:59:25	--------	d-----w-	C:Program Files (x86)EDIMAX2013-11-20 12:18:45	--------	d-----w-	C:Program Files (x86)BitComet2013-11-20 12:07:42	--------	d-----w-	C:UserseclipsAppDataRoaminguTorrent2013-11-20 11:59:13	--------	d-----w-	C:Program FilesBitComet2013-11-20 10:47:59	--------	d-----w-	C:ProgramDataCodemasters2013-11-20 10:47:57	--------	d-----w-	C:ProgramDataSteam2013-11-20 10:08:30	--------	d-----w-	C:UserseclipsAppDataLocalPrograms2013-11-20 08:45:46	--------	d-----w-	C:UserseclipsAppDataLocalMacromedia2013-11-20 08:44:37	--------	d-----w-	C:ProgramDataMcAfee Security Scan2013-11-20 08:44:36	--------	d-----w-	C:Program Files (x86)McAfee Security Scan2013-11-20 08:44:34	71048	----a-w-	C:WindowsSysWow64FlashPlayerCPLApp.cpl2013-11-20 08:44:34	692616	----a-w-	C:WindowsSysWow64FlashPlayerApp.exe2013-11-20 03:31:37	--------	d-----w-	C:Program Files (x86)AMD AVT2013-11-20 03:22:40	--------	d-----w-	C:ProgramDataPackage Cache2013-11-20 02:27:35	--------	d-----w-	C:UserseclipsAppDataRoamingOrigin2013-11-20 02:27:34	--------	d-----w-	C:UserseclipsAppDataLocalOrigin2013-11-20 02:25:24	--------	d-----w-	C:ProgramDataOrigin2013-11-20 02:25:23	--------	d-----w-	C:ProgramDataElectronic Arts2013-11-20 02:18:41	--------	d-----w-	C:UserseclipsAppDataLocalElevatedDiagnostics2013-11-20 01:52:42	--------	d-----w-	C:UserseclipsAppDataRoamingDAEMON Tools Lite2013-11-20 01:51:39	--------	d-----w-	C:ProgramDataDAEMON Tools Lite2013-11-19 20:49:08	--------	d-----w-	C:UserseclipsAppDataRoamingBSplayer Pro2013-11-19 20:49:08	--------	d-----w-	C:UserseclipsAppDataRoamingBSplayer2013-11-19 20:49:08	--------	d-----w-	C:Program Files (x86)Webteh2013-11-19 20:46:57	--------	d-----w-	C:UserseclipsAppDataLocalAMD2013-11-19 20:46:46	--------	d-----w-	C:UserseclipsAppDataLocalATI2013-11-19 20:45:57	0	----a-w-	C:Windowsativpsrm.bin2013-11-19 20:42:00	--------	d-----w-	C:Program Files (x86)AMD APP2013-11-19 20:41:50	--------	d-----w-	C:Program FilesCommon FilesATI Technologies2013-11-19 20:41:50	--------	d-----w-	C:Program Files (x86)Common FilesATI Technologies2013-11-19 20:41:02	--------	d-----w-	C:ProgramDataAMD2013-11-19 20:39:32	--------	d-----w-	C:Program Files (x86)ATI Technologies2013-11-19 20:35:36	--------	d-----w-	C:Program FilesATI2013-11-19 20:34:32	--------	d-----w-	C:Program FilesATI Technologies2013-11-19 20:20:51	--------	d-----w-	C:Program FilesAVAST Software2013-11-19 20:20:05	--------	d-----w-	C:ProgramDataAVAST Software2013-11-19 19:42:58	--------	d-----w-	C:UserseclipsAppDataLocalMozilla2013-11-19 19:42:52	--------	d-----w-	C:Program Files (x86)Mozilla Maintenance Service2013-11-19 18:25:22	40760	----a-w-	C:WindowsSystem32TURegOpt.exe2013-11-19 18:25:21	29496	----a-w-	C:WindowsSystem32authuitu.dll2013-11-19 18:25:21	25400	----a-w-	C:WindowsSysWow64authuitu.dll2013-11-19 18:25:12	--------	d-----w-	C:UserseclipsAppDataRoamingTuneUp Software2013-11-19 18:24:52	--------	d-----w-	C:Program Files (x86)TuneUp Utilities 20142013-11-19 18:24:05	--------	d-----w-	C:ProgramDataTuneUp Software2013-11-19 18:23:42	--------	d-sh--w-	C:ProgramData{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}2013-11-19 18:23:42	--------	d--h--w-	C:ProgramDataCommon Files2013-11-19 16:49:39	--------	d-----w-	C:UserseclipsAppDataLocalAdobe2013-11-19 16:37:59	--------	d-----w-	C:Downloads2013-11-19 16:37:49	--------	d-----w-	C:UserseclipsAppDataRoamingBitComet2013-11-19 09:42:11	--------	d-----w-	C:WindowsPanther2013-11-19 09:41:57	--------	d-sh--w-	C:Boot2013-11-19 00:12:01	--------	d-----w-	C:UserseclipsAppDataLocalDiagnostics2013-11-18 23:58:04	994928	----a-w-	C:WindowsSystem32VIAPropPageExt.dll2013-11-18 23:57:45	414632	------w-	C:Windowsdifxapi.dll2013-11-18 23:57:45	--------	d-----w-	C:Program Files (x86)VIA2013-11-18 23:56:12	--------	d-sh--w-	C:WindowsInstaller2013-11-18 23:55:37	702976	----a-r-	C:WindowsSystem32cohelper.dll2013-11-18 23:55:37	5940	----a-r-	C:WindowsSystem32driversnvphy.bin2013-11-18 23:55:36	339360	----a-w-	C:WindowsSystem32driversnvmf6264.sys.==================== Find3M  ====================.2013-11-20 10:47:41	248672	----a-w-	C:WindowsSysWow64d3dx11_43.dll2013-11-20 10:46:42	2106216	----a-w-	C:WindowsSysWow64D3DCompiler_43.dll2013-11-20 10:44:57	81768	----a-w-	C:WindowsSysWow64xinput1_3.dll2013-11-20 03:14:10	875472	----a-w-	C:WindowsSysWow64msvcr110.dll2013-11-20 03:09:10	535008	----a-w-	C:WindowsSysWow64msvcp110.dll2013-11-20 02:58:30	348160	----a-w-	C:WindowsSysWow64msvcr71.dll2013-11-20 02:58:29	499712	----a-w-	C:WindowsSysWow64MSVCP71.DLL2013-11-20 02:48:32	499712	----a-w-	C:WindowsSystem32MSVCP71.DLL2013-11-20 02:48:32	348160	----a-w-	C:WindowsSystem32msvcr71.dll2013-11-20 01:52:45	283200	----a-w-	C:WindowsSystem32driversdtsoftbus01.sys2013-10-16 17:41:09	134656	----a-w-	C:WindowsSystem32WinToolkitRunOnce.exe2013-10-16 17:39:09	39936	----a-w-	C:WindowsSystem32driverstssecsrv.sys2013-10-16 17:39:09	1111552	----a-w-	C:WindowsSystem32rdpcorets.dll2013-10-15 22:57:28	496128	----a-w-	C:WindowsSystem32driversafd.sys2013-10-15 22:57:28	376768	----a-w-	C:WindowsSystem32driversnetio.sys2013-10-15 22:57:28	327168	----a-w-	C:WindowsSystem32mswsock.dll2013-10-15 22:57:28	288192	----a-w-	C:WindowsSystem32driversFWPKCLNT.SYS2013-10-15 22:57:28	231424	----a-w-	C:WindowsSysWow64mswsock.dll2013-10-15 22:57:28	1896896	----a-w-	C:WindowsSystem32driverstcpip.sys2013-10-15 22:55:24	3159040	----a-w-	C:WindowsSystem32win32k.sys2013-10-15 22:53:21	983488	----a-w-	C:WindowsSystem32driversdxgkrnl.sys2013-10-15 22:53:21	265064	----a-w-	C:WindowsSystem32driversdxgmms1.sys2013-10-15 22:53:21	144384	----a-w-	C:WindowsSystem32cdd.dll2013-10-15 22:48:45	100864	----a-w-	C:WindowsSystem32driversusbcir.sys2013-10-15 22:47:43	785624	----a-w-	C:WindowsSystem32driversWdf01000.sys2013-10-15 22:46:43	633856	----a-w-	C:WindowsSystem32comctl32.dll2013-10-15 22:46:43	530432	----a-w-	C:WindowsSysWow64comctl32.dll2013-10-15 22:44:41	2048	----a-w-	C:WindowsSysWow64tzres.dll2013-10-15 22:44:41	2048	----a-w-	C:WindowsSystem32tzres.dll2013-10-15 22:42:40	224256	----a-w-	C:WindowsSystem32wintrust.dll2013-10-15 22:42:40	184320	----a-w-	C:WindowsSystem32cryptsvc.dll2013-10-15 22:42:40	175104	----a-w-	C:WindowsSysWow64wintrust.dll2013-10-15 22:42:40	1472512	----a-w-	C:WindowsSystem32crypt32.dll2013-10-15 22:42:40	140288	----a-w-	C:WindowsSysWow64cryptsvc.dll2013-10-15 22:42:40	139776	----a-w-	C:WindowsSystem32cryptnet.dll2013-10-15 22:42:40	1166848	----a-w-	C:WindowsSysWow64crypt32.dll2013-10-15 22:42:40	103936	----a-w-	C:WindowsSysWow64cryptnet.dll2013-10-15 22:40:19	76800	----a-w-	C:WindowsSystem32drivershidclass.sys2013-10-15 22:40:19	32896	----a-w-	C:WindowsSystem32drivershidparse.sys2013-10-15 22:37:55	99840	----a-w-	C:WindowsSystem32driversusbccgp.sys2013-10-15 22:37:55	7808	----a-w-	C:WindowsSystem32driversusbd.sys2013-10-15 22:37:55	52736	----a-w-	C:WindowsSystem32driversusbehci.sys2013-10-15 22:37:55	343040	----a-w-	C:WindowsSystem32driversusbhub.sys2013-10-15 22:37:55	325120	----a-w-	C:WindowsSystem32driversusbport.sys2013-10-15 22:37:55	30720	----a-w-	C:WindowsSystem32driversusbuhci.sys2013-10-15 22:37:55	25600	----a-w-	C:WindowsSystem32driversusbohci.sys2013-10-15 22:35:52	124112	----a-w-	C:WindowsSystem32PresentationCFFRasterizerNative_v0300.dll2013-10-15 22:35:52	102608	----a-w-	C:WindowsSysWow64PresentationCFFRasterizerNative_v0300.dll2013-10-15 22:33:19	155584	----a-w-	C:WindowsSystem32driversataport.sys2013-10-15 22:32:17	461312	----a-w-	C:WindowsSystem32scavengeui.dll2013-10-15 22:31:15	663552	----a-w-	C:WindowsSysWow64rpcrt4.dll2013-10-15 22:31:15	1217024	----a-w-	C:WindowsSystem32rpcrt4.dll2013-10-15 22:29:11	70656	----a-w-	C:WindowsSysWow64fontsub.dll2013-10-15 22:29:11	46080	----a-w-	C:WindowsSystem32atmlib.dll2013-10-15 22:29:11	41472	----a-w-	C:WindowsSystem32lpk.dll2013-10-15 22:29:11	368128	----a-w-	C:WindowsSystem32atmfd.dll2013-10-15 22:29:11	34304	----a-w-	C:WindowsSysWow64atmlib.dll2013-10-15 22:29:11	295424	----a-w-	C:WindowsSysWow64atmfd.dll2013-10-15 22:29:11	25600	----a-w-	C:WindowsSysWow64lpk.dll2013-10-15 22:29:11	14336	----a-w-	C:WindowsSystem32dciman32.dll2013-10-15 22:29:11	10240	----a-w-	C:WindowsSysWow64dciman32.dll2013-10-15 22:29:11	100864	----a-w-	C:WindowsSystem32fontsub.dll2013-10-15 22:28:10	89088	----a-w-	C:WindowsSysWow64davclnt.dll2013-10-15 22:28:10	264704	----a-w-	C:WindowsSystem32WebClnt.dll2013-10-15 22:28:10	209408	----a-w-	C:WindowsSysWow64WebClnt.dll2013-10-15 22:28:10	141824	----a-w-	C:WindowsSystem32driversmrxdav.sys2013-10-15 22:28:10	110592	----a-w-	C:WindowsSystem32davclnt.dll2013-10-15 22:27:08	624128	----a-w-	C:WindowsSystem32qedit.dll2013-10-15 22:27:08	509440	----a-w-	C:WindowsSysWow64qedit.dll2013-10-15 22:24:02	1686888	----a-w-	C:WindowsSystem32driversntfs.sys2013-10-15 22:23:01	751104	----a-w-	C:WindowsSystem32win32spl.dll2013-10-15 22:23:01	492544	----a-w-	C:WindowsSysWow64win32spl.dll2013-10-15 22:19:56	1424384	----a-w-	C:WindowsSystem32WindowsCodecs.dll2013-10-15 22:19:56	1230336	----a-w-	C:WindowsSysWow64WindowsCodecs.dll2013-10-15 22:17:53	1643520	----a-w-	C:WindowsSystem32DWrite.dll2013-10-15 22:17:53	1247744	----a-w-	C:WindowsSysWow64DWrite.dll2013-10-15 22:15:50	1887232	----a-w-	C:WindowsSystem32d3d11.dll2013-10-15 22:15:50	1505280	----a-w-	C:WindowsSysWow64d3d11.dll2013-10-15 22:12:45	800768	----a-w-	C:WindowsSystem32usp10.dll2013-10-15 22:12:45	626688	----a-w-	C:WindowsSysWow64usp10.dll2013-10-15 22:11:44	561664	----a-w-	C:WindowsapppatchAcLayers.dll2013-10-15 22:11:44	474624	----a-w-	C:WindowsapppatchAcSpecfc.dll2013-10-15 22:11:44	350208	----a-w-	C:WindowsapppatchAppPatch64AcLayers.dll2013-10-15 22:11:44	308736	----a-w-	C:WindowsapppatchAppPatch64AcGenral.dll2013-10-15 22:11:44	2176512	----a-w-	C:WindowsapppatchAcGenral.dll2013-10-15 22:11:44	135168	----a-w-	C:WindowsapppatchAppPatch64AcXtrnal.dll2013-10-15 22:11:44	111104	----a-w-	C:WindowsapppatchAppPatch64acspecfc.dll2013-10-15 22:09:39	48640	----a-w-	C:WindowsSystem32wwanprotdim.dll2013-10-15 22:09:39	230400	----a-w-	C:WindowsSystem32wwansvc.dll2013-10-15 22:08:50	903168	----a-w-	C:WindowsSysWow64certutil.exe2013-10-15 22:08:50	52224	----a-w-	C:WindowsSystem32certenc.dll2013-10-15 22:08:50	43008	----a-w-	C:WindowsSysWow64certenc.dll2013-10-15 22:08:50	1192448	----a-w-	C:WindowsSystem32certutil.exe2013-10-15 22:07:45	44032	----a-w-	C:WindowsSystem32tsgqec.dll2013-10-15 22:07:45	3717632	----a-w-	C:WindowsSystem32mstscax.dll2013-10-15 22:07:45	36864	----a-w-	C:WindowsSysWow64tsgqec.dll2013-10-15 22:07:45	3217408	----a-w-	C:WindowsSysWow64mstscax.dll2013-10-15 22:07:45	158720	----a-w-	C:WindowsSystem32aaclient.dll2013-10-15 22:07:45	131584	----a-w-	C:WindowsSysWow64aaclient.dll2013-10-15 22:06:39	30720	----a-w-	C:WindowsSystem32cryptdlg.dll.============= FINISH: 13:41:29,94 ===============
.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2011-09-30.01).Microsoft Windows 7 Ultimate Boot Device: DeviceHarddiskVolume2Install Date: 19.11.2013 г. 01:52:36System Uptime: 9.12.2013 г. 13:08:59 (0 hours ago).Motherboard: ASRock |  | N68C-GS FXProcessor: AMD FX(tm)-4300 Quad-Core Processor             | CPUSocket | 3800/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 39 GiB total, 6,82 GiB free.D: is FIXED (NTFS) - 114 GiB total, 1,44 GiB free.E: is CDROM ()F: is FIXED (NTFS) - 38 GiB total, 0,299 GiB free.G: is CDROM ().==== Disabled Device Manager Items =============.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Ralink RT61 Turbo Wireless LAN CardDevice ID: PCIVEN_1814&DEV_0301&SUBSYS_25611814&REV_004&2F735D55&0&4020Manufacturer: Ralink Technology Corp.Name: Ralink RT61 Turbo Wireless LAN CardPNP Device ID: PCIVEN_1814&DEV_0301&SUBSYS_25611814&REV_004&2F735D55&0&4020Service: rt61x64.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: avast! Firewall NDIS Filter MiniportDevice ID: ROOTSW_ASWNDISMP0000Manufacturer: ALWIL SoftwareName: avast! Firewall NDIS Filter MiniportPNP Device ID: ROOTSW_ASWNDISMP0000Service: aswNdis.==== System Restore Points ===================.No restore point in system..==== Installed Programs ======================.µTorrentAdobe Flash Player 11 PluginAMD Accelerated Video TranscodingAMD APP SDK RuntimeAMD Catalyst Control CenterAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD FuelAMD Media Foundation DecodersAvira Internet SecurityAvira SearchFree ToolbarBitComet 1.24BitComet 1.36 64-bitBS.Player FREECatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyCatalyst Control Center Localization Allccc-utility64CCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishDAEMON Tools LiteEdimax Wireless LANGoogle Earth Plug-inGoogle Update HelperGPU MonitorHD Tune Pro 5.00Malwarebytes Anti-Malware, версия 1.75.0.1300McAfee Security Scan PlusMicrosoft .NET Framework 4.5Microsoft Office Access MUI (English) 2007Microsoft Office Access Setup Metadata MUI (English) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office Groove MUI (English) 2007Microsoft Office Groove Setup Metadata MUI (English) 2007Microsoft Office IME (Chinese (Simplified)) 2007Microsoft Office IME (Chinese (Traditional)) 2007Microsoft Office IME (Japanese) 2007Microsoft Office IME (Korean) 2007Microsoft Office InfoPath MUI (English) 2007Microsoft Office Office 64-bit Components 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office Outlook MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (Arabic) 2007Microsoft Office Proof (Basque) 2007Microsoft Office Proof (Bulgarian) 2007Microsoft Office Proof (Catalan) 2007Microsoft Office Proof (Chinese (Simplified)) 2007Microsoft Office Proof (Chinese (Traditional)) 2007Microsoft Office Proof (Croatian) 2007Microsoft Office Proof (Czech) 2007Microsoft Office Proof (Danish) 2007Microsoft Office Proof (Dutch) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (Estonian) 2007Microsoft Office Proof (Finnish) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Galician) 2007Microsoft Office Proof (German) 2007Microsoft Office Proof (Greek) 2007Microsoft Office Proof (Gujarati) 2007Microsoft Office Proof (Hebrew) 2007Microsoft Office Proof (Hindi) 2007Microsoft Office Proof (Hungarian) 2007Microsoft Office Proof (Italian) 2007Microsoft Office Proof (Japanese) 2007Microsoft Office Proof (Kannada) 2007Microsoft Office Proof (Korean) 2007Microsoft Office Proof (Latvian) 2007Microsoft Office Proof (Lithuanian) 2007Microsoft Office Proof (Marathi) 2007Microsoft Office Proof (Norwegian (Bokmal)) 2007Microsoft Office Proof (Norwegian (Nynorsk)) 2007Microsoft Office Proof (Polish) 2007Microsoft Office Proof (Portuguese (Brazil)) 2007Microsoft Office Proof (Portuguese (Portugal)) 2007Microsoft Office Proof (Punjabi) 2007Microsoft Office Proof (Romanian) 2007Microsoft Office Proof (Russian) 2007Microsoft Office Proof (Serbian (Latin)) 2007Microsoft Office Proof (Slovak) 2007Microsoft Office Proof (Slovenian) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proof (Swedish) 2007Microsoft Office Proof (Tamil) 2007Microsoft Office Proof (Telugu) 2007Microsoft Office Proof (Thai) 2007Microsoft Office Proof (Turkish) 2007Microsoft Office Proof (Ukrainian) 2007Microsoft Office Proof (Urdu) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Kit 2007Microsoft Office Proofing Tools Kit 2007Microsoft Office ProofMUI (English) 2007Microsoft Office Publisher MUI (English) 2007Microsoft Office Shared 64-bit MUI (English) 2007Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727Mozilla Firefox 25.0.1 (x86 bg)Mozilla Maintenance ServiceNeed for Speed(TM) RivalsOriginPlatformSkype™ 3.5Smileys We Love Toolbar for IESteamTuneUp Utilities 2014TuneUp Utilities 2014 (en-US)VIA п»їVLC media player 2.0.6WinampWinamp Detector Plug-inWinRAR archiver.==== Event Viewer Messages From Past Week ========.9.12.2013 г. 13:10:01, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  KLIM69.12.2013 г. 07:09:56, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  KLIM68.12.2013 г. 22:00:43, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.8.12.2013 г. 22:00:43, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.8.12.2013 г. 22:00:42, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.8.12.2013 г. 22:00:42, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.8.12.2013 г. 20:01:37, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  KLIM68.12.2013 г. 19:58:48, Error: Service Control Manager [7006]  - The ScRegSetValueExW call failed for DeleteFlag with the following error:  Access is denied.8.12.2013 г. 19:37:17, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.8.12.2013 г. 19:30:13, Error: Service Control Manager [7034]  - The avast! Antivirus service terminated unexpectedly.  It has done this 3 time(s).8.12.2013 г. 19:29:37, Error: Service Control Manager [7034]  - The avast! Firewall service terminated unexpectedly.  It has done this 3 time(s).8.12.2013 г. 19:29:33, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:29:27, Error: Service Control Manager [7031]  - The avast! Firewall service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:29:24, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:29:20, Error: Service Control Manager [7031]  - The avast! Firewall service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:18:55, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:40, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:30, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:30, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:30, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}8.12.2013 г. 19:16:30, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}8.12.2013 г. 19:16:28, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}8.12.2013 г. 19:16:22, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}8.12.2013 г. 19:16:13, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFD aswFW aswNdisFlt aswRdr aswSnx aswSP aswTdi CSC DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:  A device attached to the system is not functioning.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:  A device attached to the system is not functioning.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:  A device attached to the system is not functioning.8.12.2013 г. 19:16:13, Error: Service Control Manager [7001]  - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.8.12.2013 г. 19:13:34, Error: Service Control Manager [7034]  - The avast! Firewall service terminated unexpectedly.  It has done this 3 time(s).8.12.2013 г. 19:13:30, Error: Service Control Manager [7034]  - The AMD External Events Utility service terminated unexpectedly.  It has done this 1 time(s).8.12.2013 г. 19:13:28, Error: Service Control Manager [7034]  - The avast! Antivirus service terminated unexpectedly.  It has done this 3 time(s).8.12.2013 г. 19:13:26, Error: Service Control Manager [7031]  - The avast! Firewall service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:13:20, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:13:12, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.8.12.2013 г. 19:13:06, Error: Service Control Manager [7031]  - The avast! Firewall service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.7.12.2013 г. 19:33:38, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.7.12.2013 г. 18:06:31, Error: Microsoft-Windows-WHEA-Logger [20]  - A fatal hardware error has occurred. Component: AMD Northbridge Error Source: Machine Check Exception Error Type: 11 Processor ID: 0 The details view of this entry contains further information.7.12.2013 г. 18:06:19, Error: Microsoft-Windows-WER-SystemErrorReporting [1001]  - The computer has rebooted from a bugcheck.  The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa8004cfe038, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:WindowsMinidump120713-18735-01.dmp. Report Id: 120713-18735-01.5.12.2013 г. 22:26:33, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.5.12.2013 г. 22:26:33, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.5.12.2013 г. 22:26:32, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.5.12.2013 г. 22:26:32, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.5.12.2013 г. 21:20:51, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.4.12.2013 г. 22:28:43, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.4.12.2013 г. 15:06:57, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.4.12.2013 г. 15:06:57, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.4.12.2013 г. 15:06:56, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2.4.12.2013 г. 15:06:56, Error: Disk [11]  - The driver detected a controller error on DeviceHarddisk2DR2..==== End Of File ===========================

Ето и от MB

Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.orgВерсия на базата от данни: v2013.12.07.06Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16721eclips :: ECLIPS-PC [администратор]Защита: включена8.12.2013 г. 21:22:43 ч.mbam-log-2013-12-08 (21-22-43).txtТип сканиране: Пълно сканиране (C:|D:|F:|)Включени опции за сканиране: Памет | Автоматично зареждане | Системен регистър | Файлова система | Евристики/Допълнителни | Евристики/Shuriken | PUP | PUMИзключени опции за сканиране: P2PСканирани обекти: 428931Изминало време: 1 час(а), 5 минута(и), 50 секунда(и)Открити процеси в паметта: 0(Не бяха открити зловредни обекти)Открити модули в паметта: 0(Не бяха открити зловредни обекти)Открити ключове в системния регистър: 0(Не бяха открити зловредни обекти)Открити стойности в системния регистър: 0(Не бяха открити зловредни обекти)Открити информационни обекти в системния регистър: 0(Не бяха открити зловредни обекти)Открити папки: 0(Не бяха открити зловредни обекти)Открити файлове: 14D:Desktopnpp.6.4.5.Installer-jd(1).exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.D:Desktopnpp.6.4.5.Installer-jd.exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.D:DownloadDaemon Tools Lite 4.47.1.0333DTLite4471-0333.exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.D:DownloadWinamp.Pro.v5.7.3363.Incl.Keygen-FFFwinamp57_3363_beta_full_all.exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.F:Desktopnpp.6.4.5.Installer-jd(1).exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.F:Desktopnpp.6.4.5.Installer-jd.exe (PUP.Optional.OpenCandy) -> Не беше предприето действие.D:DesktopBg phonetic for Win Xp(1).EXE (Trojan.Dropper.Delf) -> Поставен под карантина и изтрит успешно.D:DesktopBg phonetic for Win Xp.EXE (Trojan.Dropper.Delf) -> Поставен под карантина и изтрит успешно.F:DesktopBg phonetic for Win Xp(1).EXE (Trojan.Dropper.Delf) -> Поставен под карантина и изтрит успешно.F:DesktopBg phonetic for Win Xp.EXE (Trojan.Dropper.Delf) -> Поставен под карантина и изтрит успешно.F:New Folder 3memTest.exe (Backdoor.Agent.Gen) -> Поставен под карантина и изтрит успешно.F:PROGRAMKIKoralSoftEuroDictXPUnInstall.exe (Trojan.Downloader.bh) -> Поставен под карантина и изтрит успешно.F:PROGRAMKIpariFiestaBarCFFilter.dll (Adware.######) -> Поставен под карантина и изтрит успешно.F:Нова папкаdesktop 2DesktopCall Of Duty Modern Warfare 2 Co Op Patch [TeknoGods].rar (Backdoor.Agent.Gen) -> Поставен под карантина и изтрит успешно.(край)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Здравейте ..! :) В системата ви се виждат остатъци от Аваст и McAfee Security Scan Plus..Деинсталирайте ги по следния начин:
 
Аваст

  • [*]Изтеглете инструмента 
avastclear.exe  и го запазете на вашия работен плот [*]Стартирайте Windows в Safe Mode. [*]Стартирайте инструмента. [*]Кликнете върху Премахване (REMOVE). [*]Рестартирайте компютъра си.

 

McAfee Security Scan Plus
 
Моля, деинсталирате програмата McAfee Security Scan Plus по стандартния начин..!
  За да се уверете, че няма остатъци..:
  Моля, изтеглите MCPR.exe и го запишете на вашия Desktop.

  • [*]   Затворете всички програми и щракнете двукратно върху
MCPR.exe след това кликнете на Run [*]   Следвайте инструкциите на екрана. [*]   Когато процедурата приключи, ще се появи съобщение 'CLEANUP SUCCESSFUL'. [*]   Кликнете върху ''Yes', за да рестартирате компютъра си. [*]   След това изтрийте MCPR.exe от вашия работен плот.

Освен това деинсталирайте следния софтуер:
 
Smileys We Love Toolbar for IE
 
 
След всичко това:
 
 
Публикувано изображениеМоля, изтеглете и стартирайте програмата AdwCleaner(by Xplode):

  • [*]Затворете всички стартирани програми и браузъри [*]Кликнете два пъти върху
adwcleaner.exe за да стартирате инструмента. [*]Натиснете OK, за да потвърдите, че всички стартирани програми ще бъдат затворени. [*]Маркирайте Clean [*]Вашият компютър ще се рестартира автоматично. Текстовия файл ще се отвори след рестарта. [*]Моля, да публикувате съдържанието на този лог в отговора си [*]Можете да намерите лога,който автоматично се запомня тук C:AdwCleaner[s0].txt

Публикувано изображение

 

Публикувано изображение Моля, изтеглете Junkware Removal Tool (by Thisisu ) и запазете на вашия десктоп.

  • [*]Спрете временно работата на защитните програми. [*]Стартирайте инструмента
JRT.exe [*]Ще се отвори ДОС прозорец. Натиснете което и да е копче от клавиатурата. [*]Затворете излишните приложения и всички браузъри и изчакайте проверката да завърши. [*]Ще се появи лог файл (който можете да намерите и ръчно на десктопа с името JRT.txt). [*]Моля копирайте съдържанието на лог файла в следващия си пост.

Публикувано изображение

 
 
Публикувано изображение Стартирайте програмата Malwarebytes' Anti-Malware отново и изберете "Perform quick scan", след това кликнете на Scan.
* Когато сканирането завърши, кликнете на OK, след това Show Results, за да видите резултата
* Уверете се, че на всички редове има отметки, и кликнете на Remove Selected.
* Когато всичко бъде премахнато, в Notepad ще бъде отворен лог.
Копирайте този лог и го публикувайте в следващия си коментар по темата.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Мисля че премахнах проблема но това вие ще го решите.

Изглежда че само мозилата беше заразена.

Днес сутринта я премахнах напълно с всички добавки и тем подобни след което си я качих на ново и рекламите вече ги нямаше.

 

Пуснах Авира после касперски и накрая МБ като всеки намери по нещо и го премахна.

 

 

Сега изпълних и горните стъпки но това Smileys We Love Toolbar for IE не иска да се премахне пробвал съм го и от преди.

http://prikachi.com/images.php?images/871/6838871q.jpg

 

 

AdwCleaner

# AdwCleaner v3.014 - Report created 10/12/2013 at 19:24:05# Updated 01/12/2013 by Xplode# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)# Username : eclips - ECLIPS-PC# Running from : C:UserseclipsDesktopadwcleaner.exe# Option : Clean***** [ Services ] ********** [ Files / Folders ] *****Folder Deleted : C:ProgramDataapnFolder Deleted : C:UserseclipsAppDataLocalTempapnFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesb7dozaqg.defaultsearchpluginsdaemon-search.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesnmd593mr.defaultsearchpluginsdaemon-search.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesxt6jsszk.defaultsearchpluginsdaemon-search.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfiles31gcqwly.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfiles89u6ln5o.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesb7dozaqg.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesh47mvk1q.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesnmd593mr.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilessi8rqqsc.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesvwuwipox.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesxt6jsszk.defaultsearchpluginsicqplugin.xmlFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesnmd593mr.defaultuser.jsFile Deleted : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesxt6jsszk.defaultuser.js***** [ Shortcuts ] ********** [ Registry ] *****Key Deleted : HKLMSOFTWAREMicrosoftTracingApnSetup_RASAPI32Key Deleted : HKLMSOFTWAREMicrosoftTracingApnSetup_RASMANCSKey Deleted : HKCUSoftwareConduit***** [ Browsers ] *****- Internet Explorer v10.0.9200.16720- Mozilla Firefox v25.0.1 (bg)[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfiles31gcqwly.defaultprefs.js ]Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.icq.com/");Line Deleted : user_pref("icqtoolbar.installsource", "1");[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfiles89u6ln5o.defaultprefs.js ]Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.icq.com/");Line Deleted : user_pref("icqtoolbar.installsource", "1");[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesb7dozaqg.defaultprefs.js ][ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesh47mvk1q.defaultprefs.js ]Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.icq.com/");Line Deleted : user_pref("icqtoolbar.installsource", "1");[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesnmd593mr.defaultprefs.js ][ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilessi8rqqsc.defaultprefs.js ]Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.icq.com/");Line Deleted : user_pref("icqtoolbar.installsource", "1");[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesvwuwipox.defaultprefs.js ]Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.icq.com/");Line Deleted : user_pref("icqtoolbar.installsource", "1");[ File : C:UserseclipsAppDataRoamingMozillaFirefoxProfilesxt6jsszk.defaultprefs.js ]Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url("I[...]Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?://(.+.)?ask.com/.*");Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url("IMAGE") right no-repeat}");Line Deleted : user_pref("icqtoolbar.installsource", "1");*************************AdwCleaner[R0].txt - [1684 octets] - [08/12/2013 18:42:45]AdwCleaner[R1].txt - [890 octets] - [08/12/2013 18:46:35]AdwCleaner[R2].txt - [4739 octets] - [10/12/2013 19:23:08]AdwCleaner[S0].txt - [1642 octets] - [08/12/2013 18:43:48]AdwCleaner[S1].txt - [950 octets] - [08/12/2013 18:47:41]AdwCleaner[S2].txt - [4687 octets] - [10/12/2013 19:24:05]########## EOF - C:AdwCleanerAdwCleaner[S2].txt - [4747 octets] ##########

 

 

 

 

 

 

 

 

 

 

JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 6.0.8 (11.05.2013:1)OS: Windows 7 Ultimate x64Ran by eclips on ўв 10.12.2013 Ј. at 19:30:56,34~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Services~~~ Registry Values~~~ Registry Keys~~~ Files~~~ Folders~~~ FireFoxEmptied folder: C:UserseclipsAppDataRoamingmozillafirefoxprofilesnmd593mr.defaultminidumps [9 files]~~~ Event Viewer Logs were cleared~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on ўв 10.12.2013 Ј. at 19:36:23,12End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

МБ не откри нищо.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Изтеглете SystemLook (32-bit) или SystemLook (64-bit) и запазете програмата на десктопа.

  • [*]Кликнете два пъти върху
SystemLook.exe, за да стартирате програмата. [*]Копирайте съдържанието от цитата по-долу в текстовото поле на програмата:

:filefind*Smileys We Love Toolbar*:regfind*Smileys We Love Toolbar*
  • [*]Кликнете на бутона
Look, за да започне сканирането. [*]Когато сканирането завърши ще се отвори Notepad с резултата от
сканирането. После публикувайте лог файла в следващия си коментар.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
SystemLook 30.07.11 by jpshortstuffLog created at 20:36 on 10/12/2013 by eclipsAdministrator - Elevation successful========== filefind ==========Searching for "*Smileys We Love Toolbar*"No files found.========== regfind ==========Searching for "*Smileys We Love Toolbar*"No data found.-= EOF =-

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Опссс..малка грешка..!
 
Изтеглете SystemLook (32-bit) или SystemLook (64-bit) и запазете програмата на десктопа.

  • [*]Кликнете два пъти върху
SystemLook.exe, за да стартирате програмата. [*]Копирайте съдържанието от цитата по-долу в текстовото поле на програмата:

:filefind*Smileys We Love*:regfind*Smileys We Love*
  • [*]Кликнете на бутона
Look, за да започне сканирането. [*]Когато сканирането завърши ще се отвори Notepad с резултата от
сканирането. После публикувайте лог файла в следващия си коментар.

+
 
Публикувано изображение Изтеглете ComboFix Публикувано изображение от тук и го запазете на десктопа си
Изключете вашата антивирусна и антишпионска програма, обикновено това става чрез натискане на десния бутон на мишката върху иконата на програма в системния трей.
Бележка: Ако не можете я спрете или не сте сигурни коя програма да изключите, моля прегледайте информацията от този линк: How to disable your security applications by amateur
Стартирайте Combo-Fix.com Публикувано изображение и следвайте инструкциите.
Бележка: ComboFix ще се стартира без инсталирана Recovery Console.
Като част от неговата работа, ComboFix ще провери дали Microsoft Windows Recovery Console е инсталирана. Предвид бързо развиващия се зловреден софтуер е силно препоръчително да бъде инсталирана преди премахването на зловредния софтуер. Това ще Ви позволи да влезете в специален recovery/repai режим, който ще ни позволи по-лесно да решите проблем, който би могъл да възникне при премахване на зловредния софтуер.

  • [*]Следвайте инструкциите, за да позволите на
ComboFix да изтегли и инсталира Microsoft Windows Recovery Console.В един момент ще бъдете попитани дали сте съгласни с лицензното споразумение. Необходимо е да потвърдите, че сте съгласни, за да инсталирате Microsoft Windows Recovery Console.

** Забележете: Ако Microsoft Windows Recovery Console е вече инсталирана, ComboFix ще продължи към процеса по премахване на зловредния софтуер.

Публикувано изображение

След като Microsoft Windows Recovery Console е инсталирана, използвайки ComboFix, Вие ще видите следното съобщение:

Публикувано изображение

Изберете Yes, за да продължи сканирането за зловреден софтуер.
Когато процесът приключи успешно, инструментът ще създаде лог файл. Моля, включете съдържанието на C:ComboFix.txt в следващия Ви коментар в тази тема.
Публикувано изображение Моля, не прикачвайте лог файла/овете от програмата, а го/ги копирайте и поставете в следващия Ви коментар в тази тема.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Много добре изглеждат нещата..! :) Вие наблюдавате ли нещо притеснително..?
 
Контролни проверки..:
 
Публикувано изображение Изтеглете Security Check (автор: screen317) от тук

  • [*]Кликнете два пъти върху
SecurityCheck.exe и следвайте инструкциите. [*]Когато програмата завърши работата си, ще се отвори един текстов документ: checkup.txt. [*]Копирайте съдържанието на checkup.txt с Копирай (Copy) и с Постави (Paste) го поставете в следващия си коментар.


Публикувано изображение Изтеглете програмата: ESET Online Scanner

  • [*]Стартирайте esetsmartinstaller_enu.exe Публикувано изображение [*]Сложете отметка на
YES, I accept the Terms of Use и изберете Start:

  • [*]Публикувано изображение

  • [*]Скенерът ще започне да изтегля компонентите, които са му необходими:

  • [*]Публикувано изображение

Уверете се, че е премахната отметката от:

  • [*]
Remove found threats

Уверете се че са маркирани следните позиции:

  • [*]
Scan Archives

Кликнете върху Advanced Settings и маркирайте следните опции:

  • [*]
Scan for potentially unwanted applications [*]Scan for potentially unsafe applications [*]Enable Anti-Stealth Technology

Накрая изберете Start
Скенерът ще започне да изтегля последните дефиниции и ще започне сканиране на вашия компютър.
Моля, бъдете търпеливи, тъй като това може да отнеме известно време.

  • [*]След, като сканирането завърши кликнете на
List of found threats. [*]Щракнете върху Export, и запишете файла на вашия работен плот с  име  ESETScan. Копирайте съдържанието на този доклад, в следващия си отговор. [*]Изберете бутона Back. [*]Изберете бутона Finish.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
 Results of screen317's Security Check version 0.99.77   Windows 7 Service Pack 1 x64 [color=red][b](UAC is disabled!)[/b][/color]   Internet Explorer 10 [color=red][b]Out of date![/b][/color][b][u]``````````````Antivirus/Firewall Check:``````````````[/b][/u] Windows Firewall Enabled!  Kaspersky Internet Security    Antivirus up to date!  (On Access scanning [b]disabled[/b]!)[b][u]`````````Anti-malware/Other Utilities Check:`````````[/b][/u] TuneUp Utilities 2014    TuneUp Utilities 2014 (en-US)   TuneUp Utilities 2014    Adobe Flash Player 11.9.900.152   Adobe Reader 10.1.1 [color=red][b]Adobe Reader out of Date![/b][/color]   Mozilla Firefox (25.0.1)[b][u]````````Process Check: objlist.exe by Laurent````````[/b][/u]   Malwarebytes Anti-Malware mbamservice.exe   Malwarebytes Anti-Malware mbamgui.exe   Malwarebytes' Anti-Malware mbamscheduler.exe   [b][u]`````````````````System Health check`````````````````[/b][/u] Total Fragmentation on Drive C: 5%[b][u]````````````````````End of Log``````````````````````[/b][/u]

А ЕСЕТ ми изписва: Can not get update. is proxy configured ?

 

 

Иначе за сега системата работи добре мисля че няма нужда да пускаме ESET.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Радвам се...! :)
 
Преди да маркирам случая за "Решен", моля, направете следното..:
 
Деинсталирайте ComboFix така:

  • [*]Натиснете Start ==> Run ==> въведете командата
Combofix /Uninstall ==> OK

  • [*]Публикувано изображение

  • [*]Моля, следвайте инструкциите, за да деинсталирате ComboFix. Ще получите съобщение, в което се казва ComboFix е деинсталиран успешно.

Публикувано изображение Изтеглете Delfix.exe и го стартирайте. Сложете отметка пред Remove disinfection tools => натиснете бутона Run Инструмента ще се самоизтрие след като приключи своята задача!
 

Публикувано изображение Деинсталирайте adwcleaner.exe

  • [*]Моля, затворете всички отворени програми и интернет браузъри. [*]Кликнете два пъти върху
adwcleaner.exe за да стартирате инструмента. [*]Кликнете върху Uninstall . [*]Щракнете върху Yes за да деинсталирате Adwcleaner

 

Публикувано изображение Деинсталирайте ESET Online Scaner.

  • [*]
Start => Run, въведете control appwiz.cpl в полето.След това натиснете ENTER. [*]Изберете ESET Online Scanner от списъка с приложения, а след това маркирайте Remove. Aко бъдете подканени рестартирайте компютъра си.

 

Публикувано изображение  Препоръчвам програмата Malwarebytes' Anti-Malware  да остане на вашия компютър и периодично да сканирате системата си с нея (поне един -два пъти в седмицата),като не забравяйте да обновите дефинициите и преди всяко сканиране..!
 
 
Стартирайте PatchMyPC и инсталирайте всички ъпдейти, които инструмента ви предложи.
 
Малко превенции:

Едно от важните неща са MICROSOFT UPDATES. Чрез тях можете да получите всички критични актуализации за вашата операционна система и Internet Explorer. Поддържането на вашата операционна система и браузър с актуални ъпдейти, ще помогне да  направи системата по-малко податлива на атаки от троянски коне и вируси. Моля, отидете на Microsoft и изтеглите всички критични актуализации за да се предотврати възможно повторно заразяване.
 
WOT  Web от Trust, ви предупреждава за рискови сайтове, които се опитват да закачат зловреден софтуер  или  спам. Цветово кодираните икони на WOT  показват рейтингите на 21 милиона уеб сайтове, като ви помага да се избегнат опасните обекти:

  • [*]
Зелена - чисто,можете да влезете [*]Жълто - с повишено внимание [*]Червено - stop

WOT има добавка на разположение за IE, Firefox и Chrome.
 
MVPS HOSTS FILE замества настоящия HOSTS файла с такъв, който ще ограничи известни рекламни сайтове както и нежелани реклами. По същество това не позволява на компютъра да се свързва към тези сайтове, като ги пренасочва към 127.0.0.1, което е IP на локалния ви компютър.

 

 

Поддържайте антивирусната си програма и ако използвате друг antispyware софтуер с актуални ъпдейти и  сканирайте с тях редовно.

 

Пожелавам ви безопасен интернет и лек ден..! :)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

При стартирането на  PatchMyPC ми излиза това:

 

http://prikachi.com/images.php?images/453/6844453C.jpg 

 

Горните стъпки ги изпълних.

А след като махнах combo fix остана ли Recovery Console ?

Спомням си че преди го имах на хп-то

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Горещи теми в момента

  • Подобни теми

    • от sv3tlio
      Здравейте на всички! Ще гледам да съм максимално кратък и ще карам направо. Както виждате от заглавието на темата имам проблем с Хромиум. Като цяло проблемът ми е доста сходен с този : https://www.kaldata.com/forums/topic/270658-след-зареждане-на-windows-се-стартира-chromium/ . Същата работа е при мен. Преди около седмица си изтеглих BS Player, и от тогава се появи и този Chromium. BS Player-ът го изтеглих баш от сайта им, не от някакво измислено място, но явно и от там няма гаранция. Както и да е. Всеки път като се включи компютъра, било то след рестарт, или обикновено включване (това е само след пълно изключване на компютъра, когато го включа след "режим на готовност", този проблем го няма) веднага ми отваря Chromium и по-точно раздела history. На пръв поглед е все едно гледам Chrome, но не е. Отначало когато за пръв път се появи имаше историята от Chrome + каквито видео файлове съм пускал. Примерно влизал съм в еди си кой сайт, гледал съм еди си кой филм. Помъчих се да го деинсталирам обаче не става (ще приложа снимки какво точно ми излиза). 

      След като щракна върху Промени/премахни, пък ми излиза това: 

       И така до безкрайност. Писах "Chromium" в търсачката на компютъра (едно кученце). То търси, търси, чете някакви книжки, гледа с една лупа и накрая ми показа къде стоят файловете на този ми ти Chromium. Изтрих ги, нямаше никакъв ефект. После с Ctrl+alt+del влязох в "Процеси" и от там изтрих редовете на които пишеше chromium.exe. Тук беше и най-големият ми напредък, щото историята от Chrome + видео файловете отваряни откакто този компютър е станал компютър ги нямаше. Обаче остана това, че всеки път като включа компютъра и ми изкача нов прозорец в Chromium, ами освен това усещам как ми бави и самият Chrome - той е браузърът ми по подразбиране. Само да вметна, деинсталирах BS Player, Google Chrome, Mozilla Firefox, Avast също махнах за малко, барем се оправи, но не постигнах желаният от мен ефект. В темата която постнах по-горе от човека със същия проблем, пробвах да изтегля препоръчаният му fixlist, обаче ми дава грешка в страницата. Аз даже първо мислех, да си постна проблема там като коментар, ама викам айде да не спамя на човека темата, по-добре сякаш да отворя нова. Пък ако модераторите решат, че темата ми нещо е извън правилата, моля да бъда извинен за невежеството си. Та общо взето това е, бих се радвал на всякаква помощ. Лека вечер от мен!
       
    • от Fabry
      През няколко минути се появява странно съобщение от системата - на прикачената снимка е . Ако някой помогне, ще съм задължен !

    • от jega96
      Здр-те на всички от форома,можели да ми кажете заразен ли съм със някакъв вирус,защото преди няколко седмици ми излезе грешка на декстапа ми изтрих я и сега неми се явява вече общо казано,принципно не ползвам антивирусни програми,не влизам кой знае каде,за да хвана вирус,ама все пак да ми отговорите,как съм със ОС,като цяло мерси предварително.

      FRST.txt
      Addition.txt
    • от The Negative One
      Та пуснах вече една тема - хората ме пратиха тук.Ситуацията е следната - При всяко включване на компютъра Google Chrome автоматично се е пуснал и е отворил някакъв сайт с глупости на руски език."Получи предсказание от Ванга" и прочие простотии.Та опитах да изчистя кеша и да рестартирам настройките на браузъра, но не постигнах ефект.Ще се радвам ако някой може да помогне!
      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018
      Ran by SHANOVr (administrator) on DESKTOP-4AUH82I (13-12-2018 12:11:15)
      Running from D:\Camera\downloads D
      Loaded Profiles: SHANOVr (Available Profiles: defaultuser0 & SHANOVr)
      Platform: Windows 10 Pro Version 1709 16299.125 (X64) Language: English (United States)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
      ==================== Processes (Whitelisted) =================
      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      (Hi-Rez Studios) D:\SteamGammEZ\HiPatchService.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
      (Intel Corporation) C:\Windows\System32\igfxEM.exe
      (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (f.lux Software LLC) C:\Users\SHANOVr\AppData\Local\FluxSoftware\Flux\flux.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (ASUSTek) C:\Program Files (x86)\ASUS\GPU TweakII\ASUSGPUFanService.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      ==================== Registry (Whitelisted) ===========================
      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
      HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671792 2014-03-14] (Realtek Semiconductor)
      HKLM-x32\...\Run: [VirtualCloneDrive] => D:\CloneDrive\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3131680 2018-11-26] (Valve Corporation)
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\Run: [f.lux] => C:\Users\SHANOVr\AppData\Local\FluxSoftware\Flux\flux.exe [1820168 2018-10-24] (f.lux Software LLC)
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\Run: [EpicGamesLauncher] => D:\boiii\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32973712 2018-07-26] (Epic Games, Inc.)
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49803328 2018-09-10] (Skype Technologies S.A.)
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\Run: [SHANOVr] => explorer.exe hxxp://dipladoks.org <==== ATTENTION
      HKU\S-1-5-21-392342708-715023771-1080359625-1001\...\MountPoints2: {5911fcb2-a851-11e8-a4da-fcaa14184561} - "F:\EuroTruckSimulator2_setup.exe" 
      GroupPolicy: Restriction ? <==== ATTENTION
      ==================== Internet (Whitelisted) ====================
      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
      Tcpip\Parameters: [DhcpNameServer] 66.117.6.114 180.76.76.76
      Tcpip\..\Interfaces\{b2172693-d883-4ed3-8b20-1cd27a17c8d4}: [DhcpNameServer] 192.168.42.129
      Tcpip\..\Interfaces\{ed733950-9206-4498-b0d2-848e150b2288}: [NameServer] 8.8.8.8,8.8.4.4
      Tcpip\..\Interfaces\{ed733950-9206-4498-b0d2-848e150b2288}: [DhcpNameServer] 66.117.6.114 180.76.76.76
      Internet Explorer:
      ==================
      SearchScopes: HKU\S-1-5-21-392342708-715023771-1080359625-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
      FireFox:
      ========
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [2017-05-20] ()
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [2017-05-20] ()
      FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-10-11] (NVIDIA Corporation)
      FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-10-11] (NVIDIA Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
      Chrome: 
      =======
      CHR Profile: C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default [2018-12-13]
      CHR Extension: (Slides) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
      CHR Extension: (Docs) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
      CHR Extension: (Google Drive) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-22]
      CHR Extension: (YouTube) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
      CHR Extension: (Adblock Plus) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-12-12]
      CHR Extension: (Block Site - Website Blocker for Chrome™) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2018-11-19]
      CHR Extension: (Sheets) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
      CHR Extension: (Google Docs Offline) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
      CHR Extension: (AdBlock) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-12-11]
      CHR Extension: (Chrome Web Store Payments) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
      CHR Extension: (Gmail) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
      CHR Extension: (Chrome Media Router) - C:\Users\SHANOVr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-20]
      ==================== Services (Whitelisted) ====================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7211968 2018-08-07] ()
      S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-04-16] (EasyAntiCheat Ltd)
      U2 HiPatchService; D:\SteamGammEZ\HiPatchService.exe [9728 2017-09-19] (Hi-Rez Studios) [File not signed]
      R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation)
      R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation)
      S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation)
      S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2017-12-14] (Microsoft Corporation)
      R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-10] (Microsoft Corporation)
      R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-10] (Microsoft Corporation)
      R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
      R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
      ===================== Drivers (Whitelisted) ======================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
      R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35352 2017-01-11] (ASUSTeK Computer Inc.)
      R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f4187dc256a67a6b\nvlddmkm.sys [20337064 2018-10-12] (NVIDIA Corporation)
      S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
      R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
      R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
      S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
      S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2017-09-29] (Microsoft Corporation)
      S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-10] (Microsoft Corporation)
      R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-10] (Microsoft Corporation)
      R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-10] (Microsoft Corporation)
      R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)
      ==================== NetSvcs (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ==================== One Month Created files and folders ========
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2018-12-12 15:59 - 2018-12-12 15:59 - 000000000 ____D C:\Users\SHANOVr\AppData\Roaming\Google
      2018-11-28 00:07 - 2018-11-21 15:41 - 000715172 _____ C:\Users\SHANOVr\Desktop\Scan2.TIF
      ==================== One Month Modified files and folders ========
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2018-12-13 12:11 - 2017-04-22 22:42 - 000000000 ____D C:\FRST
      2018-12-13 12:10 - 2018-01-20 22:10 - 001425282 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2018-12-13 12:07 - 2017-01-22 20:01 - 000000000 ____D C:\ProgramData\NVIDIA
      2018-12-13 12:06 - 2018-01-20 22:09 - 000003098 _____ C:\WINDOWS\System32\Tasks\GPU Tweak II
      2018-12-13 12:05 - 2018-01-20 21:57 - 000000000 ____D C:\Users\SHANOVr
      2018-12-13 12:05 - 2017-01-22 20:15 - 000000000 __SHD C:\Users\SHANOVr\IntelGraphicsProfiles
      2018-12-13 12:05 - 2017-01-22 19:52 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      2018-12-13 12:04 - 2018-01-20 22:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2018-12-13 12:04 - 2018-01-20 21:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2018-12-13 09:26 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
      2018-12-13 09:26 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
      2018-12-13 09:25 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
      2018-12-12 22:54 - 2017-01-22 20:18 - 000000000 ____D C:\Program Files\Steam
      2018-12-12 09:13 - 2017-02-28 08:33 - 000000000 ____D C:\Users\SHANOVr\AppData\Roaming\AIMP3
      2018-12-12 08:46 - 2017-01-23 13:27 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
      2018-12-10 22:50 - 2018-02-04 12:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
      2018-12-06 09:16 - 2018-01-20 21:58 - 000000000 ____D C:\Users\SHANOVr\AppData\Local\Packages
      2018-12-03 10:25 - 2018-01-20 22:09 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-392342708-715023771-1080359625-1001
      2018-12-03 10:25 - 2017-01-22 19:50 - 000002369 _____ C:\Users\SHANOVr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2018-11-29 08:12 - 2017-01-27 15:27 - 000000000 ____D C:\Users\SHANOVr\AppData\Local\CrashDumps
      2018-11-27 23:57 - 2017-01-22 19:52 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2018-11-27 23:57 - 2017-01-22 19:52 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2018-11-23 12:33 - 2018-10-19 09:15 - 000000000 ____D C:\Users\SHANOVr\AppData\Local\ElevatedDiagnostics
      ==================== Files in the root of some directories =======
      2017-02-06 20:32 - 2017-02-06 20:32 - 000000017 _____ () C:\Users\SHANOVr\AppData\Local\resmon.resmoncfg
      ==================== Bamital & volsnap ======================
      (There is no automatic fix for files that do not pass verification.)
      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
      LastRegBack: 2018-12-08 22:12
      ==================== End of FRST.txt ============================
       
      Addition.txt
    • от roggoto
      Здравейте!
      Ползвам Google Chrome, но от известно време, докато не ми стана трън в очите и не ми пречеше, се появиха едни и същи реклами/банери на руски, показващи някакви абсолютни глупости, понякога и порнографски снимки върху оригиналните реклами, за които е платено да се появят в интернет пространството! Който и сайт да отворя те веднага покриват местата за платените реклами върху оригиналните, които трябва да се появят там! Докато днес си пуснах видео в един сайт на БГ телевизия и видях, че се появяват върху самото видео като по този начин ми блокират и функциите на видеото за спиране , пускане, увеличаване на екрана (прикачил съм снимка)! Някой, ако знае как да спра/премахна тази досада, ще съм благодарен да сподели!

      Addition.txt
      FRST.txt
  • Дарение

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.