Премини към съдържанието
От 1-ви септември 2021 г., вход във форумите ще е възможен само с имейл адрес вместо потребителско име. Ако не помните имейла с който сте се регистрирали, вижте го в настройките на профила си. ×
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

Странно съобщение от Avast


Препоръчан отговор


Здравейте, от преди малко вече на два пъти ми се появява това съобщение, първия път когато цъкнах да смаля прозорчето на браузъра - firefox(след това ми излезе и съобщение "Аваст е проверил изходящата ви поща" или нещо от сорта), втория път при отваряне на мозилата.

Снимка на съобщението:

Публикувано изображение

 

От Farbar - FRST.txt

===============

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-07-2014
Ran by packard bell (administrator) on PBELL1 on 30-07-2014 14:45:32
Running from C:Documents and Settingspackard bellMy DocumentsDownloads
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:WINDOWSsystem32ati2evxx.exe
(AVAST Software) C:Program FilesAVAST SoftwareAvastAvastSvc.exe
(ATI Technologies Inc.) C:WINDOWSsystem32ati2evxx.exe
() C:Program FilesCommon FilesDeviceHelperDeviceManager.exe
() C:Documents and SettingsAll UsersApplication DataGLOBUL Connection ManagerOnlineUpdateouc.exe
() C:Documents and SettingsAll UsersApplication DataDatacardServiceHWDeviceService.exe
(Oracle Corporation) C:Program FilesOracleJavaFX 2.1 Runtimebinjqs.exe
() C:Program FilesVIVACOM 3G USB MODEMModemListener.exe
(AVAST Software) C:Program FilesAVAST SoftwareAvastavastui.exe
(Oracle Corporation) C:Program FilesCommon FilesJavaJava Updatejusched.exe
(Microsoft Corporation) C:Program FilesMicrosoft ActiveSyncwcescomm.exe
(Microsoft Corporation) C:PROGRA~1MICROS~4rapimgr.exe
(Microsoft Corporation) C:WINDOWSInstaller{3E92ABA5-BF13-7EBF-4DC7-67C92D83FB8B}syshost.exe
(Microsoft Corporation) C:WINDOWSsystem32cmd.exe
(Mozilla Corporation) C:Program FilesMozilla Firefoxfirefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

WinlogonNotifyAtiExtEvent: C:WINDOWSsystem32Ati2evxx.dll (ATI Technologies Inc.)
HKUS-1-5-21-310553498-488514664-2969768259-1015...Run: [H/PC Connection Agent] => C:Program FilesMicrosoft ActiveSyncwcescomm.exe [1289000 2006-11-13] (Microsoft Corporation)
HKUS-1-5-21-310553498-488514664-2969768259-1015...Run: [uTorrent] => C:Program FilesuTorrentuTorrent.exe [399224 2011-03-12] (BitTorrent, Inc.)
HKUS-1-5-21-310553498-488514664-2969768259-1015...MountPoints2: {3441e483-5046-11e0-8351-18f46ad5746a} - E:talk-nowtalknow.exe talk-nowdatastartup.ast
HKUS-1-5-21-310553498-488514664-2969768259-1015...MountPoints2: {46c6a2d6-b0f9-11e1-85d0-00262d9ee38e} - F:AutoRun.exe
HKUS-1-5-21-310553498-488514664-2969768259-1015...MountPoints2: {46c6a2d9-b0f9-11e1-85d0-00262d9ee38e} - F:AutoRun.exe
HKUS-1-5-21-310553498-488514664-2969768259-1015...MountPoints2: {f24f925c-b2d4-11e1-85d5-00262d9ee38e} - F:AutoRun.exe
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.searchcore.net/426
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache = http://www.msn.com/
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache_TIMESTAMP = 0x1ED043C2AEDFCB01
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache AcceptLangs = bg
URLSearchHook: HKCU - (No Name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} -  No File
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = http://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = http://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKCU - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = http://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = http://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1750559
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program FilesOracleJavaFX 2.1 Runtimebinssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program FilesOracleJavaFX 2.1 Runtimebinjp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} -  No File
Toolbar: HKLM - No Name - {af6ac4f2-9825-4fb6-a600-92bc5361f209} -  No File
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} -  No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:Program FilesCommon FilesSkypeSkype4COM.dll (Skype Technologies)
TcpipParameters: [DhcpNameServer] 213.240.241.3

FireFox:
========
FF ProfilePath: C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.default
FF SearchEngineOrder.1: Search Results
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://dts.search-results.com/sr?src=ffb&appid=151111&systemid=426&sr=0&q=
FF Plugin: @adobe.com/FlashPlayer - C:WINDOWSsystem32MacromedFlashNPSWF32_11_9_900_170.dll ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:Program FilesFoxit SoftwareFoxit ReaderpluginsnpFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.5.1 - C:Program FilesOracleJavaFX 2.1 RuntimebindtpluginnpDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.1 - C:Program FilesOracleJavaFX 2.1 Runtimebinplugin2npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:Program FilesMicrosoft Silverlight5.1.30214.0npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:WINDOWSMicrosoft.NETFrameworkv3.5Windows Presentation FoundationNPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:Program FilesGoogleUpdate1.3.24.15npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:Program FilesGoogleUpdate1.3.24.15npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:Documents and Settingspackard bellLocal SettingsApplication DataUnityWebPlayerloadernpUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin2.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin3.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin4.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin5.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:Program Filesmozilla firefoxpluginsnpqtplugin6.dll (Apple Computer, Inc.)
FF SearchPlugin: C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.defaultsearchpluginsSearch_Results.xml
FF SearchPlugin: C:Program Filesmozilla firefoxsearchpluginsSearch_Results.xml
FF Extension: EPUBReader - C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.defaultExtensions{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2012-06-14]
FF Extension: Flash and Video Download - C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.defaultExtensions{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2013-09-25]
FF Extension: Greasemonkey - C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.defaultExtensions{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2013-12-18]
FF Extension: FoxReplace - C:Documents and Settingspackard bellApplication [email protected]fx.xpi [2014-05-17]
FF Extension: NASA Night Launch - C:Documents and Settingspackard bellApplication Data[email protected]example.com.xpi [2012-07-27]
FF Extension: Adblock Plus - C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfileshq8ami38.defaultExtensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-22]
FF HKLM...FirefoxExtensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:WINDOWSMicrosoft.NETFrameworkv3.5Windows Presentation FoundationDotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:WINDOWSMicrosoft.NETFrameworkv3.5Windows Presentation FoundationDotNetAssistantExtension [2011-03-12]
FF HKLM...FirefoxExtensions: [[email protected]] - C:Program FilesAVAST SoftwareAvastWebRepFF
FF Extension: avast! Online Security - C:Program FilesAVAST SoftwareAvastWebRepFF [2012-09-16]
FF HKCU...FirefoxExtensions: [[email protected]] - C:Documents and Settingspackard bellApplication DataMozillaFirefoxProfiles/[email protected]

Chrome:
=======
CHR Extension: (Skype Click to Call) - C:Documents and Settingspackard bellLocal SettingsApplication DataGoogleChromeUser DataDefaultExtensionslifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-02-20]
CHR Extension: (Google Wallet) - C:Documents and Settingspackard bellLocal SettingsApplication DataGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2014-02-20]
CHR HKLM...ChromeExtension: [gomekmidlodglbbmalcneegieacbdmki] - C:Program FilesAVAST SoftwareAvastWebRepChromeaswWebRepChrome.crx [2014-02-17]
CHR HKLM...ChromeExtension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:Program FilesSkypeToolbarsSkype for Chromiumskype_chrome_extension.crx [2011-10-10]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:Program FilesAVAST SoftwareAvastAvastSvc.exe [50344 2014-02-17] (AVAST Software)
R2 DeviceManager; C:Program FilesCommon FilesDeviceHelperDeviceManager.exe [40960 2009-11-17] () [File not signed]
S2 GLOBUL Connection Manager. RunOuc; C:Program FilesGLOBUL Connection ManagerUpdateDogouc.exe [655712 2012-06-08] ()
R2 HWDeviceService.exe; C:Documents and SettingsAll UsersApplication DataDatacardServiceHWDeviceService.exe [271712 2011-03-14] ()
S3 IDriverT; C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:Program FilesOracleJavaFX 2.1 Runtimebinjqs.exe [161664 2012-05-04] (Oracle Corporation)
R2 syshost32; C:WINDOWSInstaller{3E92ABA5-BF13-7EBF-4DC7-67C92D83FB8B}syshost.exe [80896 2014-07-29] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AmdPPM; C:WINDOWSSystem32DRIVERSAmdPPM.sys [33792 2007-04-17] (Advanced Micro Devices)
S3 AR5416; C:WINDOWSSystem32DRIVERSathw.sys [1602856 2010-01-05] (Atheros Communications, Inc.)
R2 aswMonFlt; C:WINDOWSsystem32driversaswMonFlt.sys [67824 2014-02-18] (AVAST Software)
R1 AswRdr; C:WINDOWSsystem32driversaswRdr.sys [54832 2014-02-17] (AVAST Software)
R0 aswRvrt; C:WINDOWSsystem32DriversaswRvrt.sys [49944 2014-02-17] ()
R1 aswSnx; C:WINDOWSsystem32driversaswSnx.sys [775952 2014-02-17] (AVAST Software)
R1 aswSP; C:WINDOWSsystem32driversaswSP.sys [410784 2014-02-17] (AVAST Software)
R1 aswTdi; C:WINDOWSsystem32driversaswTdi.sys [57672 2014-02-17] (AVAST Software)
R0 aswVmm; C:WINDOWSsystem32DriversaswVmm.sys [180248 2014-02-17] ()
S3 CCDECODE; C:WINDOWSSystem32DRIVERSCCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 CnxtHdAudService; C:WINDOWSSystem32driversCHDAU32.sys [815616 2009-05-10] (Conexant Systems Inc.)
R1 ElbyCDIO; C:WINDOWSSystem32DriversElbyCDIO.sys [31088 2010-12-17] (Elaborate Bytes AG)
S3 huawei_cdcacm; C:WINDOWSSystem32DRIVERSew_jucdcacm.sys [90368 2012-06-08] (Huawei Technologies Co., Ltd.)
S3 jrdusbser; C:WINDOWSSystem32DRIVERSjrdusbser.sys [105344 2009-11-17] (TCT International Mobile Ltd)
R3 k57w2k; C:WINDOWSSystem32DRIVERSk57xp32.sys [186880 2008-09-04] (Broadcom Corporation)
S3 NdisIP; C:WINDOWSSystem32DRIVERSNdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 VClone; C:WINDOWSSystem32DRIVERSVClone.sys [30208 2011-01-15] (Elaborate Bytes AG) [File not signed]
S1 2424d056; ??C:WINDOWSsystem32drivers2424d056.sys [X]
U5 ewusbnet; C:WindowsSystem32Driversewusbnet.sys [235392 2012-06-08] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
S3 RSUSBSTOR; System32DriversRTS5121.sys [X]
S3 Rts516xIR; system32DRIVERSRts516xIR.sys [X]
S3 USBAAPL; System32Driversusbaapl.sys [X]
S3 USBCCID; system32DRIVERSRts5161ccid.sys [X]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the filefolder will be moved.)

2014-07-30 14:45 - 2014-07-30 14:45 - 00000000 ____D () C:FRST
2014-07-26 11:14 - 2014-07-26 11:14 - 00032913 _____ () C:Documents and Settingspackard bellLocal SettingsApplication Datarecently-used.xbel
2014-07-17 00:37 - 2014-07-17 00:37 - 00054156 ____H () C:WINDOWSQTFont.qfn
2014-07-17 00:37 - 2014-07-17 00:37 - 00001409 _____ () C:WINDOWSQTFont.for
2014-07-13 17:39 - 2014-07-13 17:45 - 00000000 ____D () C:Documents and Settingspackard bellDesktoppesho
2014-07-13 17:34 - 2014-07-13 17:45 - 00000000 ____D () C:Documents and Settingspackard bellDesktopНова папка (3)
2014-07-08 21:54 - 2014-07-08 21:54 - 00101766 _____ () C:Documents and Settingspackard bellDesktopThe.Wolf.Among.Us.Episode.5-CODEX [iPT].torrent
2014-07-08 17:37 - 2014-07-22 20:28 - 00000000 ____D () C:Documents and Settingspackard bellDesktopKnigi ISKAM!!!
2014-07-07 14:57 - 2014-07-07 14:57 - 00012298 _____ () C:Documents and Settingspackard bellDesktopFalling Skies - The Battle of Fitchburg 1-8 (2012).torrent
2014-07-07 13:35 - 2014-07-30 14:22 - 00110296 _____ (Malwarebytes Corporation) C:WINDOWSsystem32DriversMBAMSwissArmy.sys
2014-07-07 13:34 - 2014-07-07 13:34 - 00000000 ____D () C:Program FilesMalwarebytes Anti-Malware
2014-07-07 13:34 - 2014-07-07 13:34 - 00000000 ____D () C:Documents and SettingsAll UsersStart MenuProgramsMalwarebytes Anti-Malware
2014-07-07 13:34 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:WINDOWSsystem32Driversmbamchameleon.sys
2014-07-06 22:56 - 2014-07-06 22:56 - 00000000 ____D () C:Documents and Settingspackard bellDesktopcomix
2014-07-06 22:56 - 2014-07-06 22:56 - 00000000 ____D () C:Documents and Settingspackard bellDesktopcharacters
2014-07-04 22:34 - 2014-07-04 22:34 - 24844447 _____ () C:Documents and Settingspackard bellDesktopPenny Dreadful 1x04 - Ethan and Dorian.mp4
2014-06-30 21:33 - 2014-06-30 21:33 - 00016935 _____ () C:Documents and Settingspackard bellDesktopTransistor-CODEX.torrent

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the filefolder will be moved.)

2014-07-30 14:46 - 2011-03-03 07:19 - 00000000 ____D () C:Documents and Settingspackard bellLocal SettingsTemp
2014-07-30 14:45 - 2014-07-30 14:45 - 00000000 ____D () C:FRST
2014-07-30 14:38 - 2012-08-04 22:18 - 00000998 _____ () C:WINDOWSTasksGoogleUpdateTaskMachineUA.job
2014-07-30 14:22 - 2014-07-07 13:35 - 00110296 _____ (Malwarebytes Corporation) C:WINDOWSsystem32DriversMBAMSwissArmy.sys
2014-07-30 14:22 - 2011-03-12 05:41 - 00000000 ____D () C:Documents and Settingspackard bellApplication DatauTorrent
2014-07-30 13:58 - 2013-12-11 01:12 - 01390806 _____ () C:WINDOWSWindowsUpdate.log
2014-07-29 21:28 - 2012-09-16 15:17 - 00000376 ____H () C:WINDOWSTasksavast! Emergency Update.job
2014-07-28 18:52 - 2014-01-31 17:46 - 00000000 ____D () C:Documents and Settingspackard bellDesktopМечки
2014-07-27 21:14 - 2011-03-03 08:12 - 00089088 _____ () C:Documents and Settingspackard bellLocal SettingsApplication DataDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-26 11:14 - 2014-07-26 11:14 - 00032913 _____ () C:Documents and Settingspackard bellLocal SettingsApplication Datarecently-used.xbel
2014-07-26 11:14 - 2014-05-29 14:06 - 00000000 ____D () C:Documents and Settingspackard bell.gimp-2.8
2014-07-25 12:38 - 2009-11-20 23:28 - 00032656 _____ () C:WINDOWSSchedLgU.Txt
2014-07-24 20:44 - 2014-03-03 15:13 - 00000591 _____ () C:WINDOWStlknw20.ini
2014-07-24 15:40 - 2014-06-28 22:59 - 00000000 ____D () C:Documents and Settingspackard bellDesktop4istene juni
2014-07-22 20:28 - 2014-07-08 17:37 - 00000000 ____D () C:Documents and Settingspackard bellDesktopKnigi ISKAM!!!
2014-07-22 13:25 - 2009-11-20 15:09 - 00508780 _____ () C:WINDOWSsystem32PerfStringBackup.INI
2014-07-22 13:21 - 2012-08-04 22:18 - 00000994 _____ () C:WINDOWSTasksGoogleUpdateTaskMachineCore.job
2014-07-22 13:21 - 2011-05-17 08:02 - 00000159 _____ () C:WINDOWSwiadebug.log
2014-07-22 13:21 - 2011-05-17 08:02 - 00000052 _____ () C:WINDOWSwiaservc.log
2014-07-22 13:20 - 2009-11-20 23:28 - 00000006 ____H () C:WINDOWSTasksSA.DAT
2014-07-22 13:20 - 2009-07-02 04:44 - 00219120 _____ () C:WINDOWSsystem32ativvaxx.cap
2014-07-22 13:20 - 2008-04-14 15:00 - 00012598 _____ () C:WINDOWSsystem32wpa.dbl
2014-07-22 13:13 - 2011-03-03 07:19 - 00000178 ___SH () C:Documents and Settingspackard bellntuser.ini
2014-07-17 22:54 - 2011-08-30 06:18 - 00000000 ____D () C:Documents and Settingspackard bellCalibre Library
2014-07-17 00:37 - 2014-07-17 00:37 - 00054156 ____H () C:WINDOWSQTFont.qfn
2014-07-17 00:37 - 2014-07-17 00:37 - 00001409 _____ () C:WINDOWSQTFont.for
2014-07-16 17:45 - 2012-12-16 14:38 - 00000000 ____D () C:Documents and Settingspackard bellDesktopMitko
2014-07-13 17:45 - 2014-07-13 17:39 - 00000000 ____D () C:Documents and Settingspackard bellDesktoppesho
2014-07-13 17:45 - 2014-07-13 17:34 - 00000000 ____D () C:Documents and Settingspackard bellDesktopНова папка (3)
2014-07-09 16:16 - 2014-06-01 16:36 - 00000000 ____D () C:Documents and Settingspackard bellLocal SettingsApplication Datagtk-2.0
2014-07-08 21:54 - 2014-07-08 21:54 - 00101766 _____ () C:Documents and Settingspackard bellDesktopThe.Wolf.Among.Us.Episode.5-CODEX [iPT].torrent
2014-07-07 14:57 - 2014-07-07 14:57 - 00012298 _____ () C:Documents and Settingspackard bellDesktopFalling Skies - The Battle of Fitchburg 1-8 (2012).torrent
2014-07-07 13:34 - 2014-07-07 13:34 - 00000000 ____D () C:Program FilesMalwarebytes Anti-Malware
2014-07-07 13:34 - 2014-07-07 13:34 - 00000000 ____D () C:Documents and SettingsAll UsersStart MenuProgramsMalwarebytes Anti-Malware
2014-07-07 13:34 - 2014-01-27 19:14 - 00000777 _____ () C:Documents and SettingsAll UsersDesktopMalwarebytes Anti-Malware.lnk
2014-07-07 13:34 - 2014-01-27 19:14 - 00000000 ____D () C:Program FilesMalwarebytes' Anti-Malware
2014-07-07 13:34 - 2014-01-27 19:14 - 00000000 ____D () C:Documents and Settingspackard bellApplication DataMalwarebytes
2014-07-07 13:34 - 2014-01-27 19:14 - 00000000 ____D () C:Documents and SettingsAll UsersApplication DataMalwarebytes
2014-07-06 22:56 - 2014-07-06 22:56 - 00000000 ____D () C:Documents and Settingspackard bellDesktopcomix
2014-07-06 22:56 - 2014-07-06 22:56 - 00000000 ____D () C:Documents and Settingspackard bellDesktopcharacters
2014-07-04 22:34 - 2014-07-04 22:34 - 24844447 _____ () C:Documents and Settingspackard bellDesktopPenny Dreadful 1x04 - Ethan and Dorian.mp4
2014-06-30 21:33 - 2014-06-30 21:33 - 00016935 _____ () C:Documents and Settingspackard bellDesktopTransistor-CODEX.torrent
2014-06-30 03:12 - 2014-05-25 20:58 - 00000910 _____ () C:Documents and Settingspackard bellDesktopНов Текстов документ.txt

Some content of TEMP:
====================
C:Documents and Settingspackard bellLocal SettingsTempjre-7u60-windows-i586-iftw.exe
C:Documents and Settingspackard bellLocal SettingsTempmakensis.exe
C:Documents and Settingspackard bellLocal SettingsTempmirc729.exe
C:Documents and Settingspackard bellLocal SettingsTempSkypeSetup.exe
C:Documents and Settingspackard bellLocal SettingsTempuninstall.exe
C:Documents and Settingspackard bellLocal SettingsTemp_unps.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:WINDOWSexplorer.exe => File is digitally signed
C:WINDOWSsystem32winlogon.exe => File is digitally signed
C:WINDOWSsystem32svchost.exe => MD5 is legit
C:WINDOWSsystem32services.exe => File is digitally signed
C:WINDOWSsystem32User32.dll => File is digitally signed
C:WINDOWSsystem32userinit.exe => File is digitally signed
C:WINDOWSsystem32rpcss.dll => File is digitally signed
C:WINDOWSsystem32Driversvolsnap.sys => File is digitally signed

==================== End Of Log ============================

Addition.txt

Линк към коментара
Сподели в други сайтове

Здравей, преди 2 дни пуснах Аваст да сканира преди зареждане на уиндоуса, откри доста вируси и ги премести в клетката, оттогава не ми е излизало такова съобщение.

Ако пак започне ще пиша :)

Линк към коментара
Сподели в други сайтове

Архивирана тема

Темата е твърде стара и е архивирана. Не можете да добавяте нови отговори в нея, но винаги можете да публикувате нова тема, в която да продължи дискусията. Регистрирайте се или влезте във вашия профил за да публикувате нова тема.

  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Подобни теми

    • от stef000
      Здравейте. Тези съобщения (от снимките) се отварят (всеки път) при пускането на services.msc. Системата е инсталирана преди няколко месеца и е използвана предимно за интернет. Не ми е създавала проблеми. Също така сканирах с няколко програми включително Malwarebyates и KVRT и всичко излиза чисто!
       


      Addition.txt FRST.txt
    • от [email protected]
      Днес си пускам компютъра и ми прави впечатление, че зарежда бавно някой страници а други като например калдата изобщо не зарежда, реших че може да е вирус и се опитах да пусна он лайн скенера на ESET, обаче казва, че не може да зареди базата със сигнатурите. Опитах да дръпна някаква антивирусна от нета и навсякъде нямам достъп. Гледам, че и Уиндоус ъпдейтите са недосръпни. Другото което прави впечатление, че Дефендъра е недостъпен, като кликна на Уиндоус сикюрите прозореца е празен. Като го пуснах някакси гледам че сканира офлайн. Какво мога да направя като не мога да сваля антивирусна ? И нещо друго ако Тубата работи нормално и влизам в др. форуми например, няма как да е от нета?
    • от サムライオートバイ
      Последните няколко дни се интересувах малко от chia и как мога да копам/фармя тази нова валута и посещавах редица сайтове свързани с темата и pool фарминга. На няколко пъти ми пропещяваше антивирусната, но не й обръщах внимание. Предполагам че от там съм лепнал някоя зараза. Ако има значение интернета на PC-то идва от стар андроид телефон с операционна система андроид 8 и хотспот. 

      Addition.txt
      Дава ми: За съжаление при качването на този файл възникна неизвестна грешка в сървъра.
      (Error code: -200)    когато се пробвам да кача Frst.txt FRST.txt
    • от The_Nomad
      Здравейте,
      имах неблагоразумието да кликна на един от модерните линкове, дето разпращат във фейса, като мислех че Касперски ще го спре, но съм забравил че е изключен за малко 😁 Отвори се празна страница и седеше бяла. После включих Касперски и кликнах пак, като този път страницата беше блокирана. Съмнява ме, да не са източили пароли от Операта или нещо друго. В стартъпа нямам нови процеси. Прикачам логовете и снимка от Касперски, ще съм благодарен за помощ. (САМО ДА СПОМЕНА ЧЕ ЪПДЕЙТИТЕ НА УИН СА ИЗКЛЮЧЕНИ НАРОЧНО ОТ МЕН)
      FRST.txtAddition.txt

    • от StikiNetBG
      Здравейте,
      Наложи се да преинсталирам Windows-а си тъй като се получиха многожество проблеми. Установих че причината за това е някакъв wrui вирус, които добавя своето файлово разширение към всеки файл. За съжаление след това файловете не се отварят. Или може би са криптирани по някакъв начин.
      https://geeksadvice.com/remove-wrui-ransomware-virus/ - за този вирус става дума. Посочва се че с програмата RESTORO могат да се възстановят файловете.
      Изтеглих RESTORO, но за неговата пълна функционалност се изисква някакъв лицензен ключ.
       
      Въпроса ми е по какъв начин мога да възстановя отново файловете си. Имам много важни документи които са важни за моята работа.
  • Дарение

×
×
  • Добави ново...

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите Условия за ползване