Премини към съдържанието
15 години Kaldata.com – време е да почерпим! Прочети още... ×

Препоръчан отговор


Здравейте , от около една седмица имам съмнения , че някои ми барника из компютърa.И така и се получи , тъй като играя на компютъра ми се налага да имам програмата "Steam".Първоначално така нареченият хакер започна да влиза в една от игрите ми и да прави така , че да ме банват от нея , после интернетът ми започна да крашва и браузарът не зареждаше толкова бързо колкото преди.Пуснах анти-вирусната да сканира, но не намираше нищо и така аз започнах да си сменям паролите , но "хакерът" нон-стоп ги разбиваше и така с приятелите ми стигнахме до извода , че тои може би използва"KeyLogger".Днес компютъра ми се рестартира просто ей така докато си чатя.Моля помогнете

DDS

DDS (Ver_2011-09-30.01) - NTFS_AMD64 
Internet Explorer: 9.11.9600.16428  BrowserJavaVersion: 10.45.2
Run by WhyNoo at 0:42:44 on 2014-01-10
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.4060.2768 [GMT 2:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:Windowssystem32wininit.exe
C:Windowssystem32lsm.exe
C:Windowssystem32svchost.exe -k DcomLaunch
C:Windowssystem32nvvsvc.exe
C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe
C:Windowssystem32svchost.exe -k RPCSS
C:WindowsSystem32svchost.exe -k LocalServiceNetworkRestricted
C:WindowsSystem32svchost.exe -k LocalSystemNetworkRestricted
C:Windowssystem32svchost.exe -k LocalService
C:Windowssystem32svchost.exe -k netsvcs
C:Windowssystem32svchost.exe -k GPSvcGroup
C:Windowssystem32svchost.exe -k NetworkService
C:WindowsSystem32spoolsv.exe
C:Windowssystem32svchost.exe -k LocalServiceNoNetwork
C:Program FilesATI TechnologiesATI.ACEFuelFuel.Service.exe
C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe
C:Windowssystem32nvvsvc.exe
C:Program Files (x86)AVGAVG2014avgwdsvc.exe
C:Windowssystem32svchost.exe -k LocalServiceAndNoImpersonation
C:Program Files (x86)SkypeUpdaterUpdater.exe
C:Windowssystem32taskhost.exe
C:Windowssystem32taskeng.exe
C:Windowssystem32Dwm.exe
C:WindowsExplorer.EXE
C:Program Files (x86)GoogleUpdate1.3.22.3GoogleCrashHandler.exe
C:Program FilesRealtekAudioHDARAVCpl64.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program Files (x86)Thunder MasterTHPanel.exe
C:Program Files (x86)SkypePhoneSkype.exe
C:Program Files (x86)AVGAVG2014avgui.exe
C:Program FilesNVIDIA CorporationDisplaynvtray.exe
C:Program Files (x86)Common FilesJavaJava Updatejusched.exe
C:Program Files (x86)GoogleUpdate1.3.22.3GoogleCrashHandler64.exe
C:Program Files (x86)AVGAVG2014avgnsa.exe
C:WindowsSystem32svchost.exe -k WerSvcGroup
C:Windowssystem32svchost.exe -k NetworkServiceNetworkRestricted
C:Windowssystem32SearchIndexer.exe
C:Program FilesWindows Media Playerwmpnetwk.exe
C:Windowssystem32SearchProtocolHost.exe
C:Windowssystem32SearchFilterHost.exe
C:Windowssystem32conhost.exe
C:Windowssystem32wbemwmiprvse.exe
C:WindowsSystem32cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program Files (x86)Javajre7binssv.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program Files (x86)Javajre7binjp2ssv.dll
uRun: [sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
uRun: [THPanel] "C:Program Files (x86)Thunder MasterTHPanel.exe" /A
uRun: [skype] "C:Program Files (x86)SkypePhoneSkype.exe" /minimized /regrun
uRun: [AVG-Secure-Search-Update_1213b] C:UsersWhyNooAppDataRoamingAVG 1213b CampaignAVG-Secure-Search-Update-1213b.exe /PROMPT /mid=14d72beaa92e47d2b6574597c6e8afa8-ad1491be2ce6c122f6b66faa90e70c2decf7d34c /CMPID=1213b
mRun: [startCCC] "C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe" MSRun
mRun: [AVG_UI] "C:Program Files (x86)AVGAVG2014avgui.exe" /TRAYONLY
mRun: [sunJavaUpdateSched] "C:Program Files (x86)Common FilesJavaJava Updatejusched.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
TCP: NameServer = 192.168.1.1
TCP: Interfaces{21D51920-854D-4A92-9965-B1DFEDB7F458} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:Program Files (x86)Common FilesSkypeSkype4COM.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:Program Files (x86)GoogleChromeApplication31.0.1650.63Installerchrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-Run: [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:WindowsSystem32driversamd_sata.sys [2014-1-6 82560]
R0 amd_xata;amd_xata;C:WindowsSystem32driversamd_xata.sys [2014-1-6 42624]
R0 AVGIDSHA;AVGIDSHA;C:WindowsSystem32driversavgidsha.sys [2013-10-24 194872]
R0 Avgloga;AVG Logging Driver;C:WindowsSystem32driversavgloga.sys [2013-10-31 294712]
R1 AppleCharger;AppleCharger;C:WindowsSystem32driversAppleCharger.sys [2014-1-6 22128]
R1 Avgtdia;AVG TDI Driver;C:WindowsSystem32driversavgtdia.sys [2013-8-1 251192]
R2 AMD FUEL Service;AMD FUEL Service;C:Program FilesATI TechnologiesATI.ACEFuelFuel.Service.exe [2012-8-6 361984]
R2 avgwd;AVG WatchDog;C:Program Files (x86)AVGAVG2014avgwdsvc.exe [2013-9-24 348008]
R2 SkypeUpdate;Skype Updater;C:Program Files (x86)SkypeUpdaterUpdater.exe [2013-10-23 172192]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe [2012-11-30 382824]
R3 amdhub30;AMD USB 3.0 Hub Driver;C:WindowsSystem32driversamdhub30.sys [2014-1-6 105088]
R3 amdiox64;AMD IO Driver;C:WindowsSystem32driversamdiox64.sys [2014-1-6 46136]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;C:WindowsSystem32driversamdxhc.sys [2014-1-6 223872]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:WindowsSystem32driversnvhda64v.sys [2014-1-6 189288]
R3 RTL8167;Realtek 8167 NT Driver;C:WindowsSystem32driversRt64win7.sys [2014-1-6 565352]
R3 usbfilter;AMD USB Filter Driver;C:WindowsSystem32driversusbfilter.sys [2014-1-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2014-1-6 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe [2014-1-6 1259880]
S3 AppleChargerSrv;AppleChargerSrv;system32AppleChargerSrv.exe --> system32AppleChargerSrv.exe [?]
S3 asmthub3;ASMedia USB3 Hub Service;C:WindowsSystem32driversasmthub3.sys [2013-4-12 139592]
S3 asmtxhci;ASMEDIA XHCI Service;C:WindowsSystem32driversasmtxhci.sys [2013-4-12 418632]
S3 b06diag;Broadcom NetXtreme II Diag Driver;C:WindowsSystem32driversbxdiaga.sys [2013-3-14 88104]
S3 BFN7x64;Bigfoot Networks Killer Gaming Service;C:WindowsSystem32driversXeno7x64.sys [2013-3-14 157288]
S3 bxfcoe;bxfcoe;C:WindowsSystem32driversbxfcoe.sys [2013-3-14 178216]
S3 bxois;bxois;C:WindowsSystem32driversbxois.sys [2013-3-14 539176]
S3 dmvsc;dmvsc;C:WindowsSystem32driversdmvsc.sys [2011-4-12 71168]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;C:WindowsSystem32driversEtronHub3.sys [2013-2-27 65152]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver;C:WindowsSystem32driversEtronSTOR.sys [2013-2-27 32512]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;C:WindowsSystem32driversEtronXHCI.sys [2013-2-27 88832]
S3 gupdatem;Google Update Service (gupdatem);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2014-1-6 136176]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:WindowsSystem32ieetwcollector.exe [2014-1-9 111616]
S3 ioatdma1;ioatdma1;C:WindowsSystem32driversqd162x64.sys [2013-3-14 40144]
S3 ioatdma2;Intel® QuickData Technology device ver.2;C:WindowsSystem32driversqd262x64.sys [2013-3-14 42192]
S3 iusb3hub;Intel® USB 3.0 Hub Driver;C:WindowsSystem32driversiusb3hub.sys [2013-4-12 366216]
S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:WindowsSystem32driversiusb3xhc.sys [2013-4-12 786056]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:WindowsSystem32driversnusb3hub.sys [2013-2-27 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:WindowsSystem32driversnusb3xhc.sys [2013-2-27 213504]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:WindowsSystem32driversrdpvideominiport.sys [2013-9-22 19456]
S3 Synth3dVsc;Synth3dVsc;C:WindowsSystem32driversSynth3dVsc.sys [2011-4-12 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:WindowsSystem32driversterminpt.sys [2013-9-22 29696]
S3 TsUsbFlt;TsUsbFlt;C:WindowsSystem32driversTsUsbFlt.sys [2013-9-22 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:WindowsSystem32driversTsUsbGD.sys [2013-9-22 30208]
S3 tsusbhub;tsusbhub;C:WindowsSystem32driverstsusbhub.sys [2011-4-12 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:WindowsSystem32WatWatAdminSvc.exe [2013-9-22 1255736]
.
=============== Created Last 30 ================
.
2014-01-09 21:31:53 -------- d-----w- C:UsersWhyNooAppDataRoamingNVIDIA
2014-01-09 21:29:41 -------- d-----w- C:ProgramDataOracle
2014-01-09 21:29:28 96168 ----a-w- C:WindowsSysWow64WindowsAccessBridge-32.dll
2014-01-09 21:27:26 -------- d-----w- C:UsersWhyNooAppDataRoaming.minecraft
2014-01-09 12:26:44 -------- d-----w- C:UsersWhyNooAppDataRoamingMalwarebytes
2014-01-09 12:26:37 -------- d-----w- C:ProgramDataMalwarebytes
2014-01-09 12:26:36 25928 ----a-w- C:WindowsSystem32driversmbam.sys
2014-01-09 12:26:20 -------- d-----w- C:UsersWhyNooAppDataLocalPrograms
2014-01-07 05:04:18 -------- d-----w- C:WindowsPanther
2014-01-07 05:04:04 -------- d-sh--w- C:Boot
2014-01-07 01:19:36 167424 ----a-w- C:Program FilesWindows Media Playerwmplayer.exe
2014-01-07 01:19:36 164864 ----a-w- C:Program Files (x86)Windows Media Playerwmplayer.exe
2014-01-07 01:19:35 12625920 ----a-w- C:WindowsSystem32wmploc.DLL
2014-01-07 01:19:35 12625408 ----a-w- C:WindowsSysWow64wmploc.DLL
2014-01-07 01:17:08 294912 ----a-w- C:WindowsSystem32browserchoice.exe
2014-01-07 01:10:59 81408 ----a-w- C:WindowsSystem32imagehlp.dll
2014-01-07 01:08:14 404480 ----a-w- C:WindowsSystem32gdi32.dll
2014-01-06 21:26:21 -------- d-----w- C:UsersWhyNooAppDataRoamingLolClient
2014-01-06 21:16:46 -------- d-----w- C:UsersWhyNooAppDataLocalDiagnostics
2014-01-06 20:49:33 -------- d-----w- C:UsersWhyNooAppDataRoamingAVG2014
2014-01-06 20:49:06 -------- d-----w- C:UsersWhyNooAppDataRoamingTuneUp Software
2014-01-06 20:48:56 -------- d--h--w- C:$AVG
2014-01-06 20:48:56 -------- d-----w- C:ProgramDataAVG2014
2014-01-06 20:48:38 -------- d-----w- C:Program Files (x86)AVG
2014-01-06 20:47:27 -------- d--h--w- C:ProgramDataCommon Files
2014-01-06 20:47:27 -------- d-----w- C:UsersWhyNooAppDataLocalMFAData
2014-01-06 20:47:27 -------- d-----w- C:UsersWhyNooAppDataLocalAvg2014
2014-01-06 20:47:27 -------- d-----w- C:ProgramDataMFAData
2014-01-06 20:15:02 467984 ----a-w- C:WindowsSysWow64d3dx10_39.dll
2014-01-06 20:15:02 1493528 ----a-w- C:WindowsSysWow64D3DCompiler_39.dll
2014-01-06 20:15:01 3851784 ----a-w- C:WindowsSysWow64D3DX9_39.dll
2014-01-06 20:14:49 -------- d-sh--w- C:WindowsSysWow64AI_RecycleBin
2014-01-06 20:13:48 -------- d-----w- C:UsersWhyNooAppDataLocalPMB Files
2014-01-06 20:13:47 -------- d-----w- C:ProgramDataPMB Files
2014-01-06 20:13:44 -------- d-----w- C:Program Files (x86)Pando Networks
2014-01-06 20:11:37 -------- d-----r- C:Program Files (x86)Skype
2014-01-06 20:09:31 -------- d-----w- C:UsersWhyNooAppDataRoamingRiot Games
2014-01-06 19:53:24 -------- d-----w- C:UsersWhyNooAppDataRoaminguTorrent
2014-01-06 19:53:08 -------- d-----w- C:Program Files (x86)Common FilesSteam
2014-01-06 19:43:01 31272 ----a-w- C:WindowsSystem32AppleChargerSrv.exe
2014-01-06 19:43:01 22128 ----a-w- C:WindowsSystem32driversAppleCharger.sys
2014-01-06 19:43:01 -------- d-----w- C:Program FilesGIGABYTE
2014-01-06 19:43:01 -------- d-----w- C:Program Files (x86)GIGABYTE
2014-01-06 19:42:51 753664 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32iKernel.dll
2014-01-06 19:42:51 69714 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32ctor.dll
2014-01-06 19:42:51 63488 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32ISBEW64.exe
2014-01-06 19:42:51 5632 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32DotNetInstaller.exe
2014-01-06 19:42:51 331908 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32setup.dll
2014-01-06 19:42:51 274432 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32iscript.dll
2014-01-06 19:42:51 200836 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32iGdi.dll
2014-01-06 19:42:51 184320 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1100Intel32iuser.dll
2014-01-06 19:42:30 -------- d-----w- C:UsersWhyNooAppDataLocalATI
2014-01-06 19:41:15 74272 ----a-w- C:WindowsSystem32RtNicProp64.dll
2014-01-06 19:41:15 565352 ----a-w- C:WindowsSystem32driversRt64win7.sys
2014-01-06 19:41:11 -------- d-----w- C:WindowsSysWow64RTCOM
2014-01-06 19:41:11 -------- d-----w- C:Program FilesRealtek
2014-01-06 19:39:55 65024 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32ISBEW64.exe
2014-01-06 19:39:54 757760 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32iKernel.dll
2014-01-06 19:39:54 69715 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32ctor.dll
2014-01-06 19:39:54 5632 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32DotNetInstaller.exe
2014-01-06 19:39:54 32768 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTimeObjectps.dll
2014-01-06 19:39:54 274432 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32iscript.dll
2014-01-06 19:39:54 204800 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32iuser.dll
2014-01-06 19:39:53 331908 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32setup.dll
2014-01-06 19:39:53 200836 ----a-w- C:Program Files (x86)Common FilesInstallShieldProfessionalRunTime1150Intel32iGdi.dll
2014-01-06 19:39:43 -------- d-----w- C:Program Files (x86)AMD APP
2014-01-06 19:38:48 -------- d-----w- C:ProgramDataAMD
2014-01-06 19:38:47 46136 ----a-w- C:WindowsSystem32driversamdiox64.sys
2014-01-06 19:38:47 -------- d-----w- C:Program FilesATI Technologies
2014-01-06 19:38:39 56448 ----a-r- C:WindowsSystem32driversusbfilter.sys
2014-01-06 19:38:36 223872 ----a-w- C:WindowsSystem32driversamdxhc.sys
2014-01-06 19:38:35 105088 ----a-w- C:WindowsSystem32driversamdhub30.sys
2014-01-06 19:38:32 82560 ----a-w- C:WindowsSystem32driversamd_sata.sys
2014-01-06 19:38:32 42624 ----a-w- C:WindowsSystem32driversamd_xata.sys
2014-01-06 19:38:29 -------- d-----w- C:Program FilesATI
2014-01-06 19:38:26 -------- d-----w- C:Program Files (x86)ATI Technologies
2014-01-06 19:32:42 -------- d-----w- C:UsersWhyNooAppDataLocalGoogle
2014-01-06 19:29:38 -------- d-sh--w- C:WindowsInstaller
2014-01-06 19:27:03 -------- d-----w- C:NVIDIA
2014-01-06 19:26:00 77656 ----a-w- C:WindowsSystem32XAPOFX1_5.dll
2014-01-06 19:26:00 74072 ----a-w- C:WindowsSysWow64XAPOFX1_5.dll
2014-01-06 19:26:00 527192 ----a-w- C:WindowsSysWow64XAudio2_7.dll
2014-01-06 19:26:00 518488 ----a-w- C:WindowsSystem32XAudio2_7.dll
2014-01-06 19:22:08 -------- d-----w- C:Program Files (x86)Thunder Master
2014-01-06 19:16:46 142336 ----a-w- C:WindowsSystem32poqexec.exe
2014-01-06 19:16:46 123904 ----a-w- C:WindowsSysWow64poqexec.exe
2014-01-06 19:16:13 2622464 ----a-w- C:WindowsSystem32wucltux.dll
2014-01-06 19:16:07 99840 ----a-w- C:WindowsSystem32wudriver.dll
2014-01-06 19:16:02 36864 ----a-w- C:WindowsSystem32wuapp.exe
2014-01-06 19:16:02 186752 ----a-w- C:WindowsSystem32wuwebv.dll
2014-01-06 19:15:44 -------- d-sh--w- C:Recovery
.
==================== Find3M  ====================
.
2013-11-26 10:19:07 2724864 ----a-w- C:WindowsSystem32mshtml.tlb
2013-11-26 10:18:23 4096 ----a-w- C:WindowsSystem32ieetwcollectorres.dll
2013-11-26 09:48:07 66048 ----a-w- C:WindowsSystem32iesetup.dll
2013-11-26 09:46:25 48640 ----a-w- C:WindowsSystem32ieetwproxystub.dll
2013-11-26 09:23:02 2724864 ----a-w- C:WindowsSysWow64mshtml.tlb
2013-11-26 09:18:39 139264 ----a-w- C:WindowsSystem32ieUnatt.exe
2013-11-26 09:18:09 111616 ----a-w- C:WindowsSystem32ieetwcollector.exe
2013-11-26 09:16:57 708608 ----a-w- C:WindowsSystem32jscript9diag.dll
2013-11-26 08:35:02 5769216 ----a-w- C:WindowsSystem32jscript9.dll
2013-11-26 08:28:16 553472 ----a-w- C:WindowsSysWow64jscript9diag.dll
2013-11-26 08:16:12 4243968 ----a-w- C:WindowsSysWow64jscript9.dll
2013-11-26 08:02:16 1995264 ----a-w- C:WindowsSystem32inetcpl.cpl
2013-11-26 07:32:06 1928192 ----a-w- C:WindowsSysWow64inetcpl.cpl
2013-11-26 07:07:57 2334208 ----a-w- C:WindowsSystem32wininet.dll
2013-11-26 06:33:33 1820160 ----a-w- C:WindowsSysWow64wininet.dll
2013-11-23 18:26:20 417792 ----a-w- C:WindowsSysWow64WMPhoto.dll
2013-11-23 17:47:34 465920 ----a-w- C:WindowsSystem32WMPhoto.dll
2013-11-12 02:23:09 2048 ----a-w- C:WindowsSystem32tzres.dll
2013-11-12 02:07:29 2048 ----a-w- C:WindowsSysWow64tzres.dll
2013-10-31 20:49:46 294712 ----a-w- C:WindowsSystem32driversavgloga.sys
2013-10-30 02:32:01 335360 ----a-w- C:WindowsSystem32msieftp.dll
2013-10-30 02:19:52 301568 ----a-w- C:WindowsSysWow64msieftp.dll
2013-10-30 01:24:31 3155968 ----a-w- C:WindowsSystem32win32k.sys
2013-10-24 20:25:58 194872 ----a-w- C:WindowsSystem32driversavgidsha.sys
2013-10-19 01:36:59 159232 ----a-w- C:WindowsSysWow64imagehlp.dll
2013-10-12 02:32:04 150016 ----a-w- C:WindowsSystem32wshom.ocx
2013-10-12 02:31:04 202752 ----a-w- C:WindowsSystem32scrrun.dll
2013-10-12 02:30:42 830464 ----a-w- C:WindowsSystem32nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:WindowsSystem32IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:WindowsSystem32FWPUCLNT.DLL
2013-10-12 02:04:36 121856 ----a-w- C:WindowsSysWow64wshom.ocx
2013-10-12 02:03:31 163840 ----a-w- C:WindowsSysWow64scrrun.dll
2013-10-12 02:03:08 656896 ----a-w- C:WindowsSysWow64nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:WindowsSysWow64FWPUCLNT.DLL
2013-10-12 01:33:39 156160 ----a-w- C:WindowsSystem32cscript.exe
2013-10-12 01:33:26 168960 ----a-w- C:WindowsSystem32wscript.exe
2013-10-12 01:15:48 141824 ----a-w- C:WindowsSysWow64wscript.exe
2013-10-12 01:15:48 126976 ----a-w- C:WindowsSysWow64cscript.exe
.
============= FINISH:  0:43:18.00 ===============

ATTACH
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-09-30.01)
.
Microsoft Windows 7 Ultimate 
Boot Device: DeviceHarddiskVolume1
Install Date: 1/6/2014 9:17:32 PM
System Uptime: 1/10/2014 12:41:26 AM (0 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. |  | F2A75M-D3H
Processor: AMD A6-6400K APU with Radeon HD Graphics    | P0 | 1794/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 195 GiB total, 162.168 GiB free.
D: is FIXED (NTFS) - 736 GiB total, 723.276 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP3: 1/6/2014 9:15:52 PM - Windows Update
RP4: 1/6/2014 9:16:36 PM - Windows Update
RP5: 1/6/2014 9:22:19 PM - Installed DirectX
RP6: 1/6/2014 9:33:33 PM - Windows Update
RP7: 1/6/2014 9:40:58 PM - Installed Realtek Ethernet Controller Driver
RP8: 1/6/2014 9:42:51 PM - Installed ON_OFF Charge B12.0308.1
RP9: 1/6/2014 10:13:57 PM - Installed Microsoft Visual C++ 2005 Redistributable (x64)
RP10: 1/6/2014 10:14:19 PM - Installed Microsoft Visual C++ 2005 Redistributable
RP11: 1/6/2014 10:14:38 PM - Installed League of Legends
RP12: 1/6/2014 10:14:54 PM - Installed DirectX
RP13: 1/6/2014 10:48:25 PM - Installed AVG 2014
RP14: 1/6/2014 10:48:41 PM - Installed AVG 2014
RP15: 1/7/2014 3:16:17 AM - Windows Update
RP16: 1/8/2014 2:21:40 AM - Windows Update
RP17: 1/8/2014 5:31:48 PM - Windows Update
RP18: 1/9/2014 5:32:45 PM - Windows Update
RP19: 1/9/2014 11:29:05 PM - Installed Java 7 Update 45
.
==== Installed Programs ======================
.
µTorrent
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Fuel
AVG 2014
Catalyst Control Center
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Google Chrome
Google Update Helper
Java 7 Update 45
Java Auto Updater
League of Legends
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
Minecraft1.7.2
NVIDIA 3D Vision Controller Driver 310.70
NVIDIA 3D Vision Driver 310.70
NVIDIA Control Panel 310.70
NVIDIA Graphics Driver 310.70
NVIDIA HD Audio Driver 1.3.18.0
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.1031
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.11.3
NVIDIA Update Components
ON_OFF Charge B12.0308.1
Pando Media Booster
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Skype™ 6.11
Steam
Thunder Master v1.7
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
.
==== Event Viewer Messages From Past Week ========
.
1/8/2014 2:56:08 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
1/8/2014 2:56:08 PM, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
1/7/2014 7:04:35 AM, Error: volmgr [46]  - Crash dump initialization failed!
1/6/2014 10:20:23 PM, Error: Application Popup [875]  - Driver avgntflt.sys has been blocked from loading.
.
==== End Of File ===========================
 
Редактирано от DuMBaZz (преглед на промените)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Преинсталираш компа, след това, не влизаш където и да било с потребителските ти данни. Имам предвид някой ти даде сайт и ти да се логнеш ей така без да знаеш за какво.Не си раздаваш паролите, не позволяваш на всеки да ти сяда на компа.

  • Харесва ми 1

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Има доста начини по които можеш да провериш и да ги остраниш, ако разбира се имаш шпионски програми и кейлогери.За това трябват знания, които ти не притежаваш и според мен е най-разумно да се обърнеш към съседният раздел.Там има хора компетентни по твоят въпрос и ще съумеят да ти помогнат.

 

Успех!

Редактирано от luckyboy (преглед на промените)
  • Харесва ми 2

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Аз бих ви препоръчал, след като минете оттук и ако проблемите продължат или се усложнят да се свържете с оторизирани за това хора - представители на закона и подадете сигнал:

 

http://www.cybercrime.bg/bg

 

За щастие засега не съм ползвал услугите на сайта и не знам отговарят ли - дано и не разбирам...

 

Също така да си инсталирате двупосочен файъруол (да речем безплатният Comodo Firewall), да го поставите в интерактивен режим, за да контролирате кои приложения искат нет. И още нещо, наблюдавате ли грижи при спрян нет. Ако се наблюдават пак без мрежа, може и да не е хакер, който ви е нарочил, а просто малуер...не, че е успокояващо, де.

Редактирано от Методи Дамянов (преглед на промените)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Той предпазването занапред ще си го оправи,само някой от HJT Team да му открие от къде идва проблемът.


Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Той предпазването занапред ще си го оправи,само някой от HJT Team да му открие от къде идва проблемът.

Те как или кога ще могат да се свържат с мен имате ли представа ? 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Те как или кога ще могат да се свържат с мен имате ли представа ? 

Никога. Защото не виждам да има изпълнени инструкциите. Няма подготвени и показани логове в темата Ви в секцията за антивирусна защита.

 

П.П. Това си е Ваше задължение и няма друг начин колегите да установят проблема, освен ако не са почнали да врачуват.

Редактирано от sliderum (преглед на промените)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Той предпазването занапред ще си го оправи,само някой от HJT Team да му открие от къде идва проблемът.

А дано, ама надали - като го чета какви ги пише.

Хубаво би било ако може да се установи IP-то на хакера и след отстраняване на проблема да му се върне тъпкано. Публикувано изображение Поне аз така бих направил и може и да се замисли при следващия опит да ти хаква компа.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Регистрирайте се или влезете в профила си за да коментирате

Трябва да имате регистрация за да може да коментирате това

Регистрирайте се

Създайте нова регистрация в нашия форум. Лесно е!

Нова регистрация

Вход

Имате регистрация? Влезте от тук.

Вход

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.