Премини към съдържанието
От 1-ви септември 2021 г., вход във форумите ще е възможен само с имейл адрес вместо потребителско име. Ако не помните имейла с който сте се регистрирали, вижте го в настройките на профила си. ×
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

Странно поведение на компютъра


Препоръчан отговор


Здравейте,

Надявам се отново да получа помощ от най-полезния форум.

Прблемът е следния. Компютърът изгуби всичките си настройки.

Опитвам се отново да възстановя предишните настройки , но нищо не се получава.

След всеки рестарт съм отново в изходно положение.Това което съм забелязал до момента е:

- Не може да запази настойките на опцията Clear text

- След като задам която и да е  от темите за визуализация ,след рестарт веднъж я запомня, друг път не.

- След опит за настройка на езиковата лента, нищо не се получава.Имам кирилица и латиница , но немога да оставя определена клавиатура Български, показва всички видове и е малко дразнещо.

- Затриха се цялата история и сертификати инсаталирани в браузъра с който съм - Мозила.

- Системата забави своята работа.

Това са неща които съм открил до момента. Не ми е остава много време за да видя какво още не е наред.

За мен има две причини за създалата се ситуация.

1. Зловреден софтуер

2. Омазан Windows.

В момента нямам инсталационен диск и първоначално започвам с проверка за зловреден софтуер.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-10-2014 01
Ran by Admin (administrator) on ADMIN-PC on 05-10-2014 09:38:18
Running from C:\Windows\System32\config\systemprofile\Desktop
Loaded Profile: Admin (Available profiles: Admin & Guest)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: Български (България)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
(InterVideo Inc.) C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
(CyberLink) C:\Program Files\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgtray.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\AVG Secure Search\vprot.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Chicony Electronics Co., Ltd.) C:\Windows\System32\DVAPTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgemcx.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1690224 2010-08-11] (VIA)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-09] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM\...\Run: [AVG_TRAY] => C:\Program Files\AVG\AVG2012\avgtray.exe [2598520 2012-11-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [NexusServer] => "C:\Program Files\Common Files\Grass Valley\ProCoder 3\Kernel\PNXSERVR.exe" -SelfLaunch
HKLM\...\Run: [uVS11 Preload] => C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Secure Search\vprot.exe [2640408 2014-08-31] ()
HKLM\...\Run: [NBKeyScan] => "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [PowerDVD13Agent] => C:\Program Files\CyberLink\PowerDVD13\PowerDVD13Agent.exe [513048 2013-05-03] (CyberLink Corp.)
HKLM\...\Run: [DVAPTray] => C:\Windows\System32\DVAPTray.exe [188416 2009-10-30] (Chicony Electronics Co., Ltd.)
HKLM\...\Policies\Explorer\Run: [38526] => C:\ProgramData\Local Settings\Temp\mspuean.com [55632 2010-11-21] ( (Microsoft Corporation))
HKU\S-1-5-19\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2453745071-2697866766-1086460384-1000\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2453745071-2697866766-1086460384-1000\...\Run: [skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB7BBE3E60ADCCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG
URLSearchHook: HKLM - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871}
SearchScopes: HKLM - DefaultScope {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121008164413441&tb_oid=08-10-2012&tb_mrud=08-10-2012
SearchScopes: HKLM - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121008164413441&tb_oid=08-10-2012&tb_mrud=08-10-2012
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll No File
BHO: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll No File
Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll (AVG Secure Search)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default
FF Homepage: https://www.google.bg/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.9\\npsitesafety.dll No File
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @rayv.com/rayvplugin -> C:\Program Files\RayV\RayV\plugins\nprayvplugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\911bg.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\diribg.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pe-bg.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\portalbgdict.xml
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4
FF Extension: AVG Safe Search - C:\Program Files\AVG\AVG2012\Firefox4 [2012-06-23]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.799
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.799 [2014-08-31]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [jmfkcklnlgedgbglfkkgedjfmejoahla] - C:\Program Files\AVG\AVG2012\Chrome\safesearch.crx [2012-07-26]
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx [2012-07-26]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgwd; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [193288 2012-02-14] (AVG Technologies CZ, s.r.o.)
R2 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-05-03] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [323336 2013-05-03] (CyberLink)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915784 2014-09-17] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18044744 2014-09-17] (NVIDIA Corporation)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 vToolbarUpdater18.1.9; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-11] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [46976 2009-07-14] (Microsoft Corporation)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [24896 2012-04-19] (AVG Technologies CZ, s.r.o. )
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [250080 2012-11-08] (AVG Technologies CZ, s.r.o.)
R1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [41040 2011-12-23] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [31952 2012-01-31] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [302368 2013-04-11] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42784 2014-08-11] (AVG Technologies)
R2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [685056 2005-07-28] (Aladdin Knowledge Systems Ltd.)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32928 2014-09-04] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2012-06-23] () [File not signed]
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2012-11-28] (TeamViewer GmbH)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1143920 2010-08-04] (VIA Technologies, Inc.)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [76560 2013-05-03] (CyberLink Corp.)
U3 aaltpjyl; C:\Windows\system32\Drivers\aaltpjyl.sys [0 ] (Microsoft Corporation)
S3 AEXPAM; System32\Drivers\aexpamdrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 09:38 - 2014-10-05 09:38 - 00000000 ____D () C:\FRST
2014-10-04 23:08 - 2014-10-05 09:21 - 00000336 _____ () C:\Windows\setupact.log
2014-10-04 23:08 - 2014-10-05 09:21 - 00000336 _____ () C:\Windows\setupact.log
2014-10-04 23:08 - 2014-10-04 23:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-04 23:08 - 2014-10-04 23:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-04 19:58 - 2014-09-17 05:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll
2014-10-04 19:57 - 2014-09-04 22:14 - 00032928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys
2014-10-04 19:51 - 2014-10-04 19:51 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-10-04 19:47 - 2013-04-10 02:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-10-04 17:23 - 2014-10-04 17:38 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-04 17:23 - 2014-08-29 13:01 - 98758480 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-04 17:16 - 2012-07-26 06:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-10-04 17:16 - 2012-07-26 06:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-10-04 17:16 - 2012-07-26 06:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-10-04 17:16 - 2012-07-26 06:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-10-04 17:16 - 2012-07-26 06:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-10-04 17:16 - 2012-07-26 05:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-10-04 17:16 - 2012-07-26 05:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-10-04 17:16 - 2012-06-02 17:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-10-04 17:15 - 2014-07-01 01:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-10-04 17:15 - 2014-06-06 09:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-10-04 17:15 - 2014-03-10 00:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-10-04 17:15 - 2014-03-10 00:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-10-04 17:15 - 2012-03-01 08:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-10-04 17:15 - 2012-03-01 08:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-10-04 17:12 - 2010-02-11 10:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-10-04 17:02 - 2013-05-10 07:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-04 17:01 - 2013-05-10 07:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-04 16:55 - 2014-10-04 16:55 - 17455104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 11769856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 04232704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-04 16:55 - 2014-10-04 16:55 - 02185728 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 02014208 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-04 16:55 - 2014-10-04 16:55 - 01812992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-10-04 16:55 - 2014-10-04 16:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-10-04 16:55 - 2014-10-04 16:55 - 00327872 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-10-04 16:55 - 2014-10-04 16:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-10-04 16:55 - 2014-10-04 16:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-10-04 16:55 - 2014-10-04 16:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-04 16:54 - 2014-10-04 16:54 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-10-04 16:54 - 2014-10-04 16:54 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-04 16:54 - 2014-10-04 16:54 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-10-04 16:54 - 2014-10-04 16:54 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-10-04 16:54 - 2014-10-04 16:54 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-10-04 16:54 - 2014-10-04 16:54 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-10-04 16:54 - 2014-10-04 16:54 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-10-04 16:54 - 2014-10-04 16:54 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-10-04 16:54 - 2014-10-04 16:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-04 16:53 - 2014-10-04 16:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-04 16:52 - 2014-10-04 16:52 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-10-04 16:51 - 2014-10-04 19:51 - 00279068 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-10-04 16:51 - 2014-10-04 19:51 - 00279068 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-10-04 16:51 - 2014-10-04 16:57 - 00015322 _____ () C:\Windows\IE11_main.log
2014-10-04 16:51 - 2014-10-04 16:57 - 00015322 _____ () C:\Windows\IE11_main.log
2014-10-04 16:50 - 2014-10-04 19:51 - 00285908 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-10-04 16:50 - 2014-10-04 19:51 - 00285908 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-10-04 16:44 - 2013-10-05 22:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-04 16:44 - 2013-07-12 13:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-10-04 16:44 - 2013-07-09 07:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-04 16:44 - 2013-07-09 07:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-10-04 16:44 - 2011-12-16 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-10-04 16:43 - 2014-07-07 04:40 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-04 16:43 - 2014-07-07 04:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-04 16:43 - 2013-10-04 04:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-10-04 16:43 - 2013-10-04 04:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-10-04 16:43 - 2013-07-26 04:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-10-04 16:43 - 2013-05-13 06:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-10-04 16:43 - 2013-05-13 06:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-10-04 16:43 - 2013-01-24 07:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-10-04 16:43 - 2012-12-07 15:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-10-04 16:43 - 2012-12-07 15:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-10-04 16:43 - 2012-12-07 13:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-10-04 16:43 - 2012-12-07 13:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-10-04 16:43 - 2011-02-18 08:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-10-04 16:42 - 2014-08-23 04:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-04 16:42 - 2014-08-23 03:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-04 16:42 - 2014-08-01 14:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-04 16:42 - 2014-07-14 04:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-10-04 16:42 - 2014-06-16 04:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-10-04 16:42 - 2014-06-16 04:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-10-04 16:42 - 2014-06-16 04:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-10-04 16:42 - 2014-06-03 12:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-10-04 16:42 - 2014-06-03 12:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-04 16:42 - 2014-06-03 12:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-10-04 16:42 - 2014-06-03 12:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-04 16:42 - 2014-05-30 10:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-04 16:42 - 2014-03-26 17:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-10-04 16:42 - 2014-03-26 17:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-10-04 16:42 - 2014-03-26 17:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-10-04 16:42 - 2014-03-26 17:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-10-04 16:42 - 2014-02-04 05:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-10-04 16:42 - 2014-02-04 05:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-10-04 16:42 - 2014-02-04 05:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-10-04 16:42 - 2014-02-04 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-10-04 16:42 - 2014-01-28 05:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-10-04 16:42 - 2014-01-01 02:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-10-04 16:42 - 2013-10-19 04:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-10-04 16:42 - 2013-10-12 05:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-10-04 16:42 - 2013-10-12 05:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-10-04 16:42 - 2013-10-12 04:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-10-04 16:42 - 2013-10-12 04:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-10-04 16:42 - 2013-08-28 03:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-10-04 16:42 - 2013-07-20 13:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-04 16:42 - 2013-07-09 07:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-04 16:42 - 2013-07-04 14:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-10-04 16:42 - 2013-07-03 06:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-10-04 16:42 - 2013-07-03 06:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-10-04 16:42 - 2013-06-06 07:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-10-04 16:42 - 2013-06-06 07:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-10-04 16:42 - 2013-06-06 07:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-10-04 16:42 - 2013-06-06 06:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-10-04 16:42 - 2013-06-06 06:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-10-04 16:42 - 2013-05-10 06:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-10-04 16:42 - 2013-03-19 06:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-10-04 16:42 - 2013-02-15 07:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-04 16:42 - 2013-02-15 07:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-10-04 16:42 - 2013-02-15 06:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-04 16:42 - 2013-02-12 06:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-10-04 16:42 - 2012-11-02 08:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-10-04 16:42 - 2012-10-09 20:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-10-04 16:42 - 2012-10-09 20:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-10-04 16:42 - 2012-10-03 19:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-10-04 16:42 - 2012-10-03 19:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-10-04 16:42 - 2012-10-03 19:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-10-04 16:42 - 2012-10-03 19:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-10-04 16:42 - 2012-10-03 19:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-10-04 16:42 - 2012-10-03 19:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-10-04 16:42 - 2012-10-03 18:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-10-04 16:42 - 2012-08-22 20:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-10-04 16:42 - 2012-08-21 23:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-10-04 16:42 - 2012-07-04 22:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-10-04 16:42 - 2012-06-06 08:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-10-04 16:42 - 2012-04-28 06:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-04 16:42 - 2012-01-04 11:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-10-04 16:42 - 2011-07-09 05:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-10-04 16:42 - 2011-06-16 07:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-10-04 16:42 - 2011-05-24 13:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-10-04 16:42 - 2011-05-04 07:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-10-04 16:42 - 2011-05-04 07:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-10-04 16:42 - 2011-05-04 07:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-10-04 16:42 - 2011-05-04 07:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-10-04 16:42 - 2011-05-04 07:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-10-04 16:42 - 2011-05-04 07:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-10-04 16:42 - 2011-05-04 07:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-10-04 16:42 - 2011-05-04 07:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-10-04 16:42 - 2011-05-04 07:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-10-04 16:42 - 2011-05-03 07:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-10-04 16:42 - 2011-04-29 05:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-10-04 16:42 - 2011-04-29 05:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-10-04 16:42 - 2011-04-29 05:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-10-04 16:42 - 2011-04-27 05:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-10-04 16:42 - 2011-04-27 05:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-10-04 16:42 - 2011-03-11 08:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-10-04 16:42 - 2011-03-11 08:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-10-04 16:42 - 2011-03-03 08:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-10-04 16:42 - 2011-03-03 08:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-10-04 16:42 - 2011-03-03 08:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-10-04 16:41 - 2014-09-25 04:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-04 16:41 - 2014-09-10 00:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-04 16:41 - 2014-06-25 04:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-10-04 16:41 - 2014-06-18 04:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-10-04 16:41 - 2014-06-06 12:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-10-04 16:41 - 2014-05-30 09:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-10-04 16:41 - 2014-05-08 12:06 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-04 16:41 - 2014-04-25 05:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-10-04 16:41 - 2014-04-05 05:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-10-04 16:41 - 2014-04-05 05:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-10-04 16:41 - 2014-03-04 12:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-10-04 16:41 - 2014-01-29 05:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-10-04 16:41 - 2014-01-24 05:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-10-04 16:41 - 2013-12-04 05:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-10-04 16:41 - 2013-12-04 05:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-10-04 16:41 - 2013-12-04 05:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-10-04 16:41 - 2013-12-04 05:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-10-04 16:41 - 2013-12-04 05:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-10-04 16:41 - 2013-12-04 04:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-10-04 16:41 - 2013-12-04 04:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-10-04 16:41 - 2013-12-04 04:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-10-04 16:41 - 2013-12-04 04:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-10-04 16:41 - 2013-11-27 04:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-10-04 16:41 - 2013-11-27 04:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-10-04 16:41 - 2013-11-27 04:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-10-04 16:41 - 2013-11-27 04:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-10-04 16:41 - 2013-11-27 04:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-10-04 16:41 - 2013-11-26 14:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-10-04 16:41 - 2013-10-30 05:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-10-04 16:41 - 2013-10-12 05:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-10-04 16:41 - 2013-10-12 05:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-10-04 16:41 - 2013-10-12 05:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-10-04 16:41 - 2013-10-04 04:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-10-04 16:41 - 2013-10-04 04:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-10-04 16:41 - 2013-08-05 04:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-10-04 16:41 - 2013-08-02 04:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-10-04 16:41 - 2013-08-02 04:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 04:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 03:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-10-04 16:41 - 2013-08-02 03:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 03:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 03:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-04 16:41 - 2013-08-02 03:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-04 16:41 - 2013-07-25 11:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-10-04 16:41 - 2013-07-04 14:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-10-04 16:41 - 2013-07-04 14:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-10-04 16:41 - 2013-07-04 12:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-10-04 16:41 - 2013-06-26 01:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-10-04 16:41 - 2013-04-26 07:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-10-04 16:41 - 2012-11-29 01:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-10-04 16:41 - 2012-11-29 01:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-10-04 16:41 - 2012-11-29 01:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-10-04 16:41 - 2012-09-26 01:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-10-04 16:41 - 2012-07-05 00:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-10-04 16:41 - 2012-07-05 00:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-10-04 16:41 - 2012-07-05 00:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-10-04 16:41 - 2012-05-14 07:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-10-04 16:41 - 2012-05-05 10:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-04 16:41 - 2012-05-01 07:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-10-04 16:41 - 2012-04-26 07:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-04 16:41 - 2012-04-26 07:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-10-04 16:41 - 2012-04-26 07:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-10-04 16:41 - 2012-03-17 10:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-10-04 16:41 - 2012-02-17 08:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-10-04 16:41 - 2012-02-17 07:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-10-04 16:41 - 2011-12-30 08:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-10-04 16:41 - 2011-11-19 17:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-04 16:41 - 2011-11-17 08:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-10-04 16:41 - 2011-10-26 07:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-04 16:41 - 2011-10-15 08:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-10-04 16:41 - 2011-08-27 07:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-10-04 16:41 - 2011-08-27 07:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-10-04 16:41 - 2011-08-17 07:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-10-04 16:41 - 2011-08-17 07:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-10-04 16:41 - 2011-06-15 11:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2014-10-04 16:41 - 2011-06-15 11:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-10-04 16:41 - 2011-06-15 11:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-10-04 16:41 - 2011-06-15 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-10-04 16:41 - 2011-06-15 11:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-10-04 16:41 - 2011-04-09 08:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-10-04 16:41 - 2011-02-23 07:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-10-04 16:41 - 2011-02-12 08:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-10-04 16:41 - 2010-12-23 08:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-10-04 16:41 - 2010-12-23 08:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-10-04 16:41 - 2010-12-23 08:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-10-04 16:40 - 2013-06-15 06:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-04 16:31 - 2014-04-12 05:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-10-04 16:31 - 2014-04-12 05:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-10-04 16:31 - 2014-04-12 05:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-10-04 16:31 - 2014-04-12 05:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-10-04 16:31 - 2014-04-12 05:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-10-04 16:31 - 2014-04-12 05:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-10-04 16:31 - 2013-07-04 15:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-10-04 16:31 - 2013-02-27 07:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-10-04 16:27 - 2014-05-14 19:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-10-04 16:27 - 2014-05-14 19:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-10-04 16:27 - 2014-05-14 19:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-10-04 16:27 - 2014-05-14 19:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-10-04 16:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-10-04 16:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-10-04 16:25 - 2014-10-04 16:25 - 00000000 ____D () C:\Windows\system32\%LocalAppData%
2014-10-03 19:53 - 2014-10-03 19:53 - 00000000 ___RD () C:\Program Files\Skype
2014-10-03 19:53 - 2014-10-03 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-03 19:53 - 2014-10-03 19:53 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-29 21:09 - 2014-09-29 21:09 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-09-29 20:31 - 2014-10-04 10:54 - 00000000 ____D () C:\Windows\system32\cache
2014-09-29 20:31 - 2014-09-29 20:31 - 00000000 ____D () C:\Users\Default\AppData\Local\NVIDIA
2014-09-29 20:31 - 2014-09-29 20:31 - 00000000 ____D () C:\Users\Default User\AppData\Local\NVIDIA
2014-09-29 20:28 - 2014-10-04 19:42 - 00001290 __RSH () C:\Users\TEMP\ntuser.pol
2014-09-29 20:26 - 2014-09-29 20:26 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\Macromedia
2014-09-29 20:26 - 2014-09-29 20:26 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\Adobe
2014-09-29 20:26 - 2014-09-29 20:26 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Macromedia
2014-09-29 20:24 - 2014-10-04 19:58 - 00000000 ____D () C:\Users\TEMP\AppData\Local\NVIDIA Corporation
2014-09-29 20:24 - 2014-09-29 20:24 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\Mozilla
2014-09-29 20:24 - 2014-09-29 20:24 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Mozilla
2014-09-29 20:23 - 2014-10-04 19:56 - 00000000 ____D () C:\Users\TEMP\AppData\Local\NVIDIA
2014-09-29 20:23 - 2014-10-03 23:07 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\Skype
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\CyberLink
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\Banamalon
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\AVG2012
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Skype
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Local\MediaServer
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Cyberlink SoftDMA
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Local\CyberLink
2014-09-29 20:23 - 2014-09-29 20:23 - 00000000 ____D () C:\Users\TEMP\AppData\Local\AVG Secure Search
2014-09-29 20:23 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\TEMP\AppData\LocalGoogle
2014-09-29 20:23 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Google
2014-09-29 20:23 - 2013-01-30 19:29 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\TuneUp Software
2014-09-29 20:23 - 2009-07-14 07:42 - 00000000 ___RD () C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-29 20:23 - 2009-07-14 07:37 - 00000000 ___RD () C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-21 11:10 - 2014-09-21 11:10 - 00000000 ____D () C:\Users\Admin\AppData\Local\Banamalon
2014-09-21 11:09 - 2014-09-21 11:11 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Banamalon
2014-09-21 11:07 - 2014-09-21 11:07 - 01673616 _____ (Banamalon ) C:\Users\Admin\Desktop\WinRemoteService_v1.2.9.exe
2014-09-21 10:21 - 2014-09-21 10:22 - 00000000 ____D () C:\Users\Admin\Desktop\OLX
2014-09-20 17:55 - 2014-09-20 17:55 - 00000000 ____D () C:\Users\stanil1\AppData\Roaming\Adobe
2014-09-20 17:54 - 2014-09-20 17:54 - 00000000 ____D () C:\Users\stanil1\AppData\Local\NVIDIA Corporation
2014-09-20 17:53 - 2014-09-20 20:46 - 00000000 ____D () C:\Users\stanil1\AppData\Local\NVIDIA
2014-09-20 17:53 - 2014-09-20 17:53 - 00001361 _____ () C:\Users\stanil1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-20 17:53 - 2014-09-20 17:53 - 00001290 __RSH () C:\Users\stanil1\ntuser.pol
2014-09-20 17:53 - 2014-09-20 17:53 - 00000020 ___SH () C:\Users\stanil1\ntuser.ini
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Roaming\CyberLink
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Roaming\AVG2012
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Local\MediaServer
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Local\Cyberlink SoftDMA
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Local\CyberLink
2014-09-20 17:53 - 2014-09-20 17:53 - 00000000 ____D () C:\Users\stanil1\AppData\Local\AVG Secure Search
2014-09-20 17:53 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\stanil1\AppData\LocalGoogle
2014-09-20 17:53 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\stanil1\AppData\Local\Google
2014-09-20 17:53 - 2013-01-30 19:29 - 00000000 ____D () C:\Users\stanil1\AppData\Roaming\TuneUp Software
2014-09-20 17:53 - 2009-07-14 07:42 - 00000000 ___RD () C:\Users\stanil1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-20 17:53 - 2009-07-14 07:37 - 00000000 ___RD () C:\Users\stanil1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-20 17:47 - 2014-09-20 17:47 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Adobe
2014-09-20 17:46 - 2014-09-20 17:46 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Mozilla
2014-09-20 17:46 - 2014-09-20 17:46 - 00000000 ____D () C:\Users\Guest\AppData\Local\NVIDIA Corporation
2014-09-20 17:46 - 2014-09-20 17:46 - 00000000 ____D () C:\Users\Guest\AppData\Local\Mozilla
2014-09-20 17:46 - 2014-09-20 17:46 - 00000000 ____D () C:\Users\Guest\AppData\Local\AVG Secure Search
2014-09-20 17:45 - 2014-09-20 17:45 - 00001357 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-20 17:45 - 2014-09-20 17:45 - 00000020 ___SH () C:\Users\Guest\ntuser.ini
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\CyberLink
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\AVG2012
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Local\NVIDIA
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Local\MediaServer
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Local\Cyberlink SoftDMA
2014-09-20 17:45 - 2014-09-20 17:45 - 00000000 ____D () C:\Users\Guest\AppData\Local\CyberLink
2014-09-20 17:45 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\Guest\AppData\LocalGoogle
2014-09-20 17:45 - 2013-05-30 22:22 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-09-20 17:45 - 2013-01-30 19:29 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\TuneUp Software
2014-09-20 17:45 - 2009-07-14 07:42 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-20 17:45 - 2009-07-14 07:37 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-19 21:21 - 2014-09-19 21:21 - 00000000 ____D () C:\OLTemp
2014-09-19 21:00 - 2014-09-19 21:00 - 00000000 ____D () C:\Users\Admin\Documents\OneTouchCenter
2014-09-19 20:59 - 2014-09-19 21:00 - 133418645 _____ (TCL Communication Technology Holdings Limited ) C:\Users\Admin\Desktop\ONE_TOUCH_Center_v1.2.3_Setup.exe
2014-09-19 20:35 - 2014-09-19 20:53 - 00001215 _____ () C:\Users\Admin\Documents\otudll.log
2014-09-19 20:35 - 2014-09-19 20:35 - 00001836 _____ () C:\Users\Admin\Desktop\Smart Suite.lnk
2014-09-19 20:35 - 2014-09-19 20:35 - 00000000 ____D () C:\Users\Admin\Documents\Smart Suite
2014-09-19 20:35 - 2014-09-19 20:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Suite
2014-09-19 20:35 - 2014-09-19 20:35 - 00000000 ____D () C:\Program Files\Smart Suite
2014-09-19 20:35 - 2013-01-14 17:22 - 00205312 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\qcusbser.sys
2014-09-19 20:35 - 2009-02-05 08:59 - 00025728 _____ (Google Inc) C:\Windows\system32\Drivers\androidusb.sys
2014-09-06 16:45 - 2014-09-06 16:45 - 04734301 _____ () C:\Users\Admin\Desktop\mazda_6_owners_manual_2003.rar
2014-09-06 16:36 - 2014-09-06 16:37 - 179330752 _____ () C:\Users\Admin\Desktop\mazda 6.nrg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 09:26 - 2009-07-14 07:34 - 00021248 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-05 09:26 - 2009-07-14 07:34 - 00021248 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-05 09:24 - 2014-06-01 08:43 - 01414463 _____ () C:\Windows\WindowsUpdate.log
2014-10-05 09:24 - 2014-06-01 08:43 - 01414463 _____ () C:\Windows\WindowsUpdate.log
2014-10-05 09:21 - 2013-06-03 12:57 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-10-05 09:21 - 2013-05-30 22:12 - 00000980 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-05 09:21 - 2012-11-12 23:00 - 00000200 _____ () C:\Windows\Tasks\AutoKMS.job
2014-10-05 09:21 - 2012-08-04 15:20 - 08405015 _____ () C:\Windows\TempFile
2014-10-05 09:21 - 2012-08-04 15:20 - 08405015 _____ () C:\Windows\TempFile
2014-10-05 09:21 - 2012-06-23 17:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-05 09:21 - 2009-07-14 07:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-04 23:14 - 2010-11-21 00:01 - 00786474 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-04 23:10 - 2009-07-14 07:46 - 00001515 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-04 23:04 - 2013-05-30 22:12 - 00000984 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-04 22:10 - 2012-11-12 23:00 - 00000200 _____ () C:\Windows\Tasks\AutoKMSDaily.job
2014-10-04 20:33 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-10-04 20:33 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-10-04 20:17 - 2013-12-26 15:22 - 00000000 ____D () C:\Program Files\Disney Planes
2014-10-04 20:04 - 2012-06-23 17:24 - 00000376 _____ () C:\Windows\ODBC.INI
2014-10-04 20:04 - 2012-06-23 17:24 - 00000376 _____ () C:\Windows\ODBC.INI
2014-10-04 19:58 - 2012-06-23 16:56 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-10-04 19:58 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-04 19:53 - 2009-07-14 05:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-04 19:41 - 2012-06-24 08:11 - 00000000 ____D () C:\Windows\Panther
2014-10-04 19:41 - 2012-06-24 08:11 - 00000000 ____D () C:\Windows\Panther
2014-10-04 19:39 - 2014-06-01 08:41 - 00025290 _____ () C:\Windows\PFRO.log
2014-10-04 19:39 - 2014-06-01 08:41 - 00025290 _____ () C:\Windows\PFRO.log
2014-10-04 19:39 - 2009-07-14 07:33 - 00499904 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-04 19:37 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-10-04 19:36 - 2009-07-14 07:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-10-04 19:36 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-10-04 19:19 - 2009-07-14 07:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-04 19:16 - 2012-10-23 22:20 - 00000000 ____D () C:\Program Files\QuickTime
2014-10-04 17:40 - 2012-06-23 18:36 - 00000000 ____D () C:\Windows\system32\Drivers\AVG
2014-10-03 19:53 - 2014-02-27 10:01 - 00002503 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-10-03 19:53 - 2012-06-23 18:21 - 00000000 ____D () C:\ProgramData\Skype
2014-10-02 21:39 - 2012-11-06 12:58 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-09-28 22:43 - 2012-06-23 18:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Skype
2014-09-27 23:52 - 2012-06-23 17:35 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\uTorrent
2014-09-27 08:51 - 2009-07-14 07:53 - 00032534 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-09-20 22:16 - 2012-06-24 15:42 - 00000000 ____D () C:\ProgramData\Home Media Server
2014-09-19 19:35 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-09-17 05:13 - 2013-12-26 16:34 - 02193560 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll

Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\KMP_3.2.0.0.exe
C:\Users\Admin\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-26 23:22

==================== End Of Log ============================

Addition.txt

post-245175-0-34378700-1412493259_thumb.

Линк към коментара
Сподели в други сайтове

Здравейте..!

 

FRST.gif Фикс с Farbar Recovery Scan Tool

 
icon13.gif Изтеглете прикачения файл и го запазете там, където сте свалили FRST.exe => fixlist.txt
Стартирайте отново FRST.exe и натиснете бутона Fix веднъж и изчакайте.
Ще се създаде нов лог файла FixLog.txt. Прикачете съдържанието му в следващия си коментар.

 
ЗАБЕЛЕЖКА: Този скрипт е написан специално за този потребител,и за тази конкретна машина. Изпълнението на фикса, на друг компютър може да доведе до увреждане на  операционната ви система

 

adwcleaner_new.png Сканиране с AdwCleaner
 
Моля, изтеглете и стартирайте програмата AdwCleaner (by Xplode):

  • Затворете всички стартирани програми и браузъри
  • Кликнете два пъти върху adwcleaner.exe за да стартирате инструмента.
  • Натиснете OK, за да потвърдите, че всички стартирани програми ще бъдат затворени.
  • Маркирайте Clean
  • Вашият компютър ще се рестартира автоматично. Текстовия файл ще се отвори след рестарта.
  • Моля, да публикувате съдържанието на този лог в отговора си
  • Можете да намерите лога,който автоматично се запомня тук C:AdwCleaner[s0].txt

 

 

 

thisisujrt.gif Сканиране с Junkware Removal Tool

 

Моля, изтеглете Junkware Removal Tool (by Thisisu ) и запазете на вашия десктоп.

  • Спрете временно работата на защитните програми.
  • Стартирайте инструмента JRT.exe
  • Ще се отвори ДОС прозорец. Натиснете което и да е копче от клавиатурата.
  • Затворете излишните приложения и всички браузъри и изчакайте проверката да завърши.
  • Ще се появи лог файл (който можете да намерите и ръчно на десктопа с името JRT.txt).
  • Моля копирайте съдържанието на лог файла в следващия си пост.
Линк към коментара
Сподели в други сайтове

Здравейте,

 

Fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 04-10-2014 01
Ran by Admin at 2014-10-05 15:11:05 Run:1
Running from C:\Windows\System32\config\systemprofile\Desktop
Loaded Profile: Admin (Available profiles: Admin & Guest)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
closeprocesses:
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
R2 vToolbarUpdater18.1.9;
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-11]
U3 aaltpjyl;
C:\Windows\system32\Drivers\aaltpjyl.sys
EmptyTemp:
end






 
   
   
   
   
   
    
    
    
    
    
   
   
    
    
   
   
    
    
    
    
 
*****************

Processes closed successfully.
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe => Moved successfully.
vToolbarUpdater18.1.9 => Service deleted successfully.
"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-11]" => File/Directory not found.
aaltpjyl => Service deleted successfully.
Could not move "C:\Windows\system32\Drivers\aaltpjyl.sys" => Scheduled to move on reboot.
EmptyTemp: => Removed 655.5 MB temporary data.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-10-05 15:26:40)<=

C:\Windows\system32\Drivers\aaltpjyl.sys => Is moved successfully.

==== End of Fixlog ====

 

AdwCleaner[s0]

# AdwCleaner v3.311 - Създаден отчет 05/10/2014 на 15:17:31
# Актуализиран 30/09/2014 от Xplode
# Операционна система : Windows 7 Ultimate Service Pack 1 (32 bits)
# Потребителско име : Admin - ADMIN-PC
# Стартиран от : C:\Windows\System32\config\systemprofile\Desktop\adwcleaner_3.311.exe
# Настройка : Почистване

***** [ Услуги ] *****


***** [ Файлове / Папки ] *****

Папка Изтритa : C:\ProgramData\AVG Secure Search
Папка Изтритa : C:\Program Files\AVG Secure Search
Папка Изтритa : C:\Program Files\AVG Security Toolbar
Папка Изтритa : C:\Program Files\Common Files\AVG Secure Search
Папка Изтритa : C:\Windows\system32\config\systemprofile\AppData\Local\AVG Secure Search
Папка Изтритa : C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search
Файл Изтритa : C:\Program Files\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml

***** [ задачи ] *****


***** [ Преки пътища ] *****


***** [ Системен регистър ] *****

Стойност Изтрит : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Ключ Изтрит : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Ключ Изтрит : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Ключ Изтрит : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Ключ Изтрит : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Ключ Изтрит : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Ключ Изтрит : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Ключ Изтрит : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Ключ Изтрит : HKLM\SOFTWARE\Classes\S
Ключ Изтрит : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Ключ Изтрит : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Ключ Изтрит : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Ключ Изтрит : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Стойност Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Ключ Изтрит : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Ключ Изтрит : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_photofiltre_RASAPI32
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_photofiltre_RASMANCS
Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Стойност Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Ключ Изтрит : HKCU\Software\AVG Secure Search
Ключ Изтрит : HKLM\SOFTWARE\AVG Secure Search
Ключ Изтрит : HKLM\SOFTWARE\AVG Security Toolbar
Ключ Изтрит : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search

***** [ Браузъри ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v32.0.3 (x86 bg)

[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


[ Файл : C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [9779 octets] - [05/10/2014 15:16:30]
AdwCleaner[s0].txt - [9637 octets] - [05/10/2014 15:17:31]

########## EOF - \AdwCleaner\AdwCleaner[s0].txt - [9697 octets] ##########

 

 

JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.0 (10.05.2014:1)
OS: Windows 7 Ultimate x86
Ran by SYSTEM on ­Ґ¤ 05.10.2014 Ј. at 15:30:06,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ­Ґ¤ 05.10.2014 Ј. at 15:30:52,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Линк към коментара
Сподели в други сайтове

51a5bf3d99e8a-ComboFixlogo16.png Сканиране с ComboFix

 

 

i_arrow-r.gif Изтеглете ComboFix combofix.gif от тук и го запазете на десктопа си.
How to use ComboFix
icon_exclaim.gif Изключете вашата антивирусна и антишпионска програма, обикновено това става чрез натискане на десния бутон на мишката върху иконата на програма в системния трей.
Бележка: Ако не можете я спрете или не сте сигурни коя програма да изключите, моля прегледайте информацията от този линк: How to disable your security applications by amateur
icon_arrow.gif Стартирайте Combo-Fix.com combofix.gif и следвайте инструкциите.
Когато процесът приключи успешно, инструментът ще създаде лог файл. Моля, включете съдържанието на C:ComboFix.txt в следващия Ви коментар в тази тема.
i_exclaim.gif Моля, не прикачвайте лог файла/овете от програмата, а го/ги копирайте и поставете в следващия Ви коментар в тази тема.

Линк към коментара
Сподели в други сайтове

ComboFix 14-10-04.01 - SYSTEM 10.2014 г.  20:04:04.1.4 - x86
Microsoft Windows 7 Ultimate   6.1.7601.1.1251.359.1026.18.3574.2331 [GMT 3:00]
Running from: c:\windows\system32\config\systemprofile\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Created a new restore point
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Local Settings\Temp
c:\programdata\Local Settings\Temp\mspuean.com
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\system32\Cache
c:\windows\system32\Cache\08bafadc382eb8f6.fb
c:\windows\system32\Cache\08bafadc382eb8f6__exp__1412583691
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\272512937d9e61a4__exp__1412583693
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\28bc8f716fd76a47__exp__1412583691
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\32c84fe32bb74d60__exp__1412583694
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\590ba23ce359fd0c__exp__1412583694
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1__exp__1412583693
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0__exp__1412583693
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\6d03dad1035885d3__exp__1412583696
c:\windows\system32\Cache\935ee77178548e84.fb
c:\windows\system32\Cache\935ee77178548e84__exp__1412495679
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\ad10a52aff5e038d__exp__1412583692
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c1fa887b03019701__exp__1412583695
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\c4d28dca2e7648be__exp__1412583692
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d201ef9910cd39de__exp__1412583693
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\Cache\f998975c9cc711ee__exp__1412583695
c:\windows\system32\cseDVH.dll
.
.
(((((((((((((((((((((((((   Files Created from 2014-09-06 to 2014-10-06  )))))))))))))))))))))))))))))))
.
.
2014-10-06 17:00 . 2014-09-14 23:08    8806800    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{164F8E9A-0A5B-4CFD-9166-41F99008A6F9}\mpengine.dll
2014-10-06 16:54 . 2014-10-06 16:54    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\TuneUp Software
2014-10-06 16:52 . 2014-10-06 16:52    --------    d-----w-    c:\users\Default\AppData\Local\NVIDIA Corporation
2014-10-06 16:50 . 2014-08-18 21:30    646144    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2014-10-06 16:50 . 2014-06-27 01:45    2285056    ----a-w-    c:\windows\system32\msmpeg2vdec.dll
2014-10-05 12:30 . 2014-10-05 12:30    --------    d-----w-    c:\windows\ERUNT
2014-10-05 12:16 . 2014-10-05 12:56    --------    d-----w-    C:\AdwCleaner
2014-10-05 06:38 . 2014-10-05 12:26    --------    d-----w-    C:\FRST
2014-10-04 16:58 . 2014-09-17 02:13    1291280    ----a-w-    c:\windows\system32\nvspbridge.dll
2014-10-04 16:57 . 2014-09-04 19:14    32928    ----a-w-    c:\windows\system32\drivers\nvvad32v.sys
2014-10-04 16:51 . 2014-10-04 16:51    --------    d-----w-    c:\program files\MSXML 4.0
2014-10-04 16:47 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\system32\DWrite.dll
2014-10-04 14:56 . 2014-10-04 14:59    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\vlc
2014-10-04 14:56 . 2014-10-04 14:56    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\GRETECH
2014-10-04 14:55 . 2014-10-04 14:55    --------    d-----w-    c:\windows\Migration
2014-10-04 14:23 . 2014-10-04 14:38    --------    d-----w-    c:\windows\system32\MRT
2014-10-04 14:16 . 2012-07-26 03:20    73216    ----a-w-    c:\windows\system32\WUDFSvc.dll
2014-10-04 14:16 . 2012-07-26 03:20    38912    ----a-w-    c:\windows\system32\WUDFCoinstaller.dll
2014-10-04 14:16 . 2012-07-26 03:20    172032    ----a-w-    c:\windows\system32\WUDFPlatform.dll
2014-10-04 14:16 . 2012-07-26 02:33    66560    ----a-w-    c:\windows\system32\drivers\WUDFPf.sys
2014-10-04 14:16 . 2012-07-26 02:32    155136    ----a-w-    c:\windows\system32\drivers\WUDFRd.sys
2014-10-04 14:16 . 2012-07-26 03:21    196608    ----a-w-    c:\windows\system32\WUDFHost.exe
2014-10-04 14:16 . 2012-07-26 03:20    613888    ----a-w-    c:\windows\system32\WUDFx.dll
2014-10-04 14:15 . 2014-03-09 21:47    99480    ----a-w-    c:\windows\system32\infocardapi.dll
2014-10-04 14:15 . 2014-06-30 22:14    8856    ----a-w-    c:\windows\system32\icardres.dll
2014-10-04 14:15 . 2014-03-09 21:47    619672    ----a-w-    c:\windows\system32\icardagt.exe
2014-10-04 14:15 . 2014-06-06 06:16    35480    ----a-w-    c:\windows\system32\TsWpfWrp.exe
2014-10-04 14:15 . 2012-03-01 05:46    19824    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2014-10-04 14:15 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\system32\wmi.dll
2014-10-04 14:12 . 2010-02-11 07:10    293376    ----a-w-    c:\windows\system32\browserchoice.exe
2014-10-04 14:01 . 2013-05-10 04:56    12625408    ----a-w-    c:\windows\system32\wmploc.DLL
2014-10-04 14:01 . 2013-05-10 03:48    164864    ----a-w-    c:\program files\Windows Media Player\wmplayer.exe
2014-10-04 13:54 . 2014-10-04 13:54    69632    ----a-w-    c:\windows\system32\smss.exe
2014-10-04 13:54 . 2014-10-04 13:54    640512    ----a-w-    c:\windows\system32\advapi32.dll
2014-10-04 13:54 . 2014-10-04 13:54    619520    ----a-w-    c:\windows\system32\tdh.dll
2014-10-04 13:54 . 2014-10-04 13:54    38912    ----a-w-    c:\windows\system32\csrsrv.dll
2014-10-04 13:54 . 2014-10-04 13:54    1289096    ----a-w-    c:\windows\system32\ntdll.dll
2014-10-04 13:54 . 2014-10-04 13:54    231424    ----a-w-    c:\windows\system32\mswsock.dll
2014-10-04 13:54 . 2014-10-04 13:54    49152    ----a-w-    c:\windows\system32\taskhost.exe
2014-10-04 13:52 . 2014-10-04 13:52    1505280    ----a-w-    c:\windows\system32\d3d11.dll
2014-10-04 13:44 . 2011-12-16 07:52    690688    ----a-w-    c:\windows\system32\msvcrt.dll
2014-10-04 13:44 . 2013-10-05 19:57    1168384    ----a-w-    c:\windows\system32\crypt32.dll
2014-10-04 13:44 . 2013-07-09 04:46    140288    ----a-w-    c:\windows\system32\cryptsvc.dll
2014-10-04 13:44 . 2013-07-09 04:46    103936    ----a-w-    c:\windows\system32\cryptnet.dll
2014-10-04 13:44 . 2013-07-12 10:07    86016    ----a-w-    c:\windows\system32\drivers\usbcir.sys
2014-10-04 13:44 . 2014-06-03 09:29    936960    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2014-10-04 13:42 . 2012-10-09 17:40    44032    ----a-w-    c:\windows\system32\dhcpcsvc6.dll
2014-10-04 13:41 . 2014-06-18 01:52    399360    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-10-04 13:40 . 2013-06-15 03:38    31232    ----a-w-    c:\windows\system32\drivers\tssecsrv.sys
2014-10-04 13:31 . 2014-04-12 02:15    67520    ----a-w-    c:\windows\system32\drivers\ksecdd.sys
2014-10-04 13:31 . 2014-04-12 02:15    136640    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2014-10-04 13:31 . 2014-04-12 02:12    15872    ----a-w-    c:\windows\system32\sspisrv.dll
2014-10-04 13:31 . 2014-04-12 02:12    100352    ----a-w-    c:\windows\system32\sspicli.dll
2014-10-04 13:31 . 2014-04-12 02:12    22016    ----a-w-    c:\windows\system32\secur32.dll
2014-10-04 13:31 . 2014-04-12 02:11    22528    ----a-w-    c:\windows\system32\lsass.exe
2014-10-04 13:31 . 2013-07-04 12:16    369848    ----a-w-    c:\windows\system32\drivers\cng.sys
2014-10-04 13:31 . 2013-02-27 04:49    47104    ----a-w-    c:\windows\system32\appinfo.dll
2014-10-04 13:27 . 2014-05-14 16:23    45536    ----a-w-    c:\windows\system32\wups2.dll
2014-10-04 13:27 . 2014-05-14 16:23    54240    ----a-w-    c:\windows\system32\wuauclt.exe
2014-10-04 13:27 . 2014-05-14 16:23    1973728    ----a-w-    c:\windows\system32\wuaueng.dll
2014-10-04 13:27 . 2014-05-14 16:17    2425856    ----a-w-    c:\windows\system32\wucltux.dll
2014-10-04 13:27 . 2014-05-14 16:23    36320    ----a-w-    c:\windows\system32\wups.dll
2014-10-04 13:27 . 2014-05-14 16:23    581600    ----a-w-    c:\windows\system32\wuapi.dll
2014-10-04 13:27 . 2014-05-14 16:17    92672    ----a-w-    c:\windows\system32\wudriver.dll
2014-10-04 13:27 . 2014-05-14 06:23    179656    ----a-w-    c:\windows\system32\wuwebv.dll
2014-10-04 13:27 . 2014-05-14 06:17    33792    ----a-w-    c:\windows\system32\wuapp.exe
2014-10-04 13:25 . 2014-10-04 13:25    --------    d-----w-    c:\windows\system32\%LocalAppData%
2014-10-04 12:22 . 2014-10-04 12:22    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\NVIDIA
2014-10-03 17:19 . 2014-10-03 18:28    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Adobe
2014-10-03 16:53 . 2014-10-05 17:04    --------    d-----r-    c:\program files\Skype
2014-10-03 16:53 . 2014-10-03 16:53    --------    d-----w-    c:\program files\Common Files\Skype
2014-10-01 21:00 . 2014-10-01 21:11    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\uTorrent
2014-09-29 17:57 . 2014-09-29 17:57    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Macromedia
2014-09-29 17:49 . 2014-09-29 17:49    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\EMU
2014-09-29 17:49 . 2014-09-29 17:49    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\Warner Bros. Interactive Entertainment
2014-09-29 17:44 . 2014-09-29 17:44    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Mozilla
2014-09-29 17:42 . 2014-09-29 17:42    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Skype
2014-09-29 17:42 . 2014-10-05 21:07    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\Skype
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\CyberLink
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Cyberlink SoftDMA
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\AVG2012
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\CyberLink
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\users\Default\AppData\Local\NVIDIA
2014-09-29 17:29 . 2014-09-29 17:29    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Banamalon
2014-09-29 17:23 . 2014-10-04 16:42    --------    d-----w-    c:\users\TEMP
2014-09-21 08:10 . 2014-09-21 08:10    --------    d-----w-    c:\users\Admin\AppData\Local\Banamalon
2014-09-21 08:09 . 2014-09-21 08:11    --------    d-----w-    c:\users\Admin\AppData\Roaming\Banamalon
2014-09-20 14:53 . 2014-09-20 14:53    --------    d-----w-    c:\users\stanil1
2014-09-20 14:45 . 2014-09-20 14:45    --------    d-----w-    c:\users\Guest
2014-09-19 18:21 . 2014-09-19 18:21    --------    d-----w-    C:\OLTemp
2014-09-19 17:35 . 2013-01-14 14:22    205312    ----a-w-    c:\windows\system32\drivers\qcusbser.sys
2014-09-19 17:35 . 2009-02-05 05:59    25728    ----a-w-    c:\windows\system32\drivers\androidusb.sys
2014-09-19 17:35 . 2014-09-19 17:35    --------    d-----w-    c:\program files\Smart Suite
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-17 02:13 . 2013-12-26 13:34    2193560    ----a-w-    c:\windows\system32\nvspcap.dll
2014-09-15 06:06 . 2012-06-23 14:36    231568    ------w-    c:\windows\system32\MpSigStub.exe
2014-09-04 19:14 . 2013-12-26 13:29    32416    ----a-w-    c:\windows\system32\nvaudcap32v.dll
2014-08-11 16:06 . 2012-10-23 19:14    42784    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2014-07-24 23:35 . 2014-07-24 23:35    875688    ----a-w-    c:\windows\system32\msvcr120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-08-27 22041192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2010-08-11 1690224]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"ShadowPlay"="c:\windows\system32\nvspcap.dll" [2014-09-17 2193560]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-09-17 2460488]
"PowerDVD13Agent"="c:\program files\CyberLink\PowerDVD13\PowerDVD13Agent.exe" [2013-05-03 513048]
"DVAPTray"="c:\windows\System32\DVAPTray.exe" [2009-10-30 188416]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ       autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2014-04-03 315008]
R3 AEXPAM;Philips SmartManage Service;c:\windows\system32\Drivers\aexpamdrv.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-10-04 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2012-11-28 25088]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2012-04-19 24896]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2012-01-31 31952]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2012-06-23 691696]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2012-11-08 250080]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2013-04-11 302368]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2014-08-11 42784]
S2 {09F57980-3432-4AFC-957D-27AC45FAE1F5};Power Control [2014/01/12 17:57];c:\program files\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [2013-05-03 08:20 76560]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
S2 CyberLink PowerDVD 13 Media Server Monitor Service;CyberLink PowerDVD 13 Media Server Monitor Service;c:\program files\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [2013-05-03 77576]
S2 CyberLink PowerDVD 13 Media Server Service;CyberLink PowerDVD 13 Media Server Service;c:\program files\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [2013-05-03 323336]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 915784]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 18044744]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-11-11 414496]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
S3 MEI;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-09-04 32928]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-12-28 327784]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-08-04 1143920]
.
.
Contents of the 'Scheduled Tasks' folder
.
2014-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-05-30 19:12]
.
2014-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-05-30 19:12]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.bg/?gws_rd=ssl
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-Sidebar - c:\program files\Windows Sidebar\Sidebar.exe
HKLM-Run-NexusServer - c:\program files\Common Files\Grass Valley\ProCoder 3\Kernel\PNXSERVR.exe
HKLM-Run-UVS11 Preload - c:\program files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
HKLM-Run-NBKeyScan - c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
HKLM-Run-Nvtmru - c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
HKLM-Explorer_Run-38526 - c:\progra~2\LOCALS~1\Temp\mspuean.com
AddRemove-{65153EA5-8B6E-43B6-857B-C6E4FC25798A} - c:\program files\Intel\Intel® Management Engine Components\Uninstall\setup.exe
AddRemove-{8833FFB6-5B0C-4764-81AA-06DFEED9A476} - c:\program files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe
AddRemove-{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23} - c:\program files\InstallShield Installation Information\{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{09F57980-3432-4AFC-957D-27AC45FAE1F5}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD13\Common\NavFilter\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-10-06  20:13:13
ComboFix-quarantined-files.txt  2014-10-06 17:13
.
Pre-Run: 14 385 000 448 bytes free
Post-Run: 15 066 341 376 bytes free
.
- - End Of File - - 8527B897FA2F2A7DE558F837EC28D015
A36C5E4F47E84449FF07ED3517B43A31
 


Линк към коментара
Сподели в други сайтове

Има ли промяна след процедурите до тук..?

 

GUZVCQN.jpg  Моля, изтеглете Malwarebytes Anti -Malware и го запомнете на вашия работен плот .
  Кликнете два пъти върху mbam-setup-consumer-2.0.0.1хххх.exe и следвайте инструкциите, за да инсталирате програмата .

  • В секцията Settings = > Detection and Protection => Detection Options, се поставя отметка в квадратчето 'Scan for rootkits'.

 

  • MBAMsettings.JPG
  • В главния прозорец на програмата , щракнете върху 'Update Now'
  • След актуализацията завърши, кликнете на бутона " 'Scan Now  " .
  • Ако има налична актуализация , щракнете върху бутона Update Now button .
  • Ще стартира Threat Scan.
  • Когато сканирането приключи, ако има някакви открити зарази , щракнете върху Apply Actions за да се позволи на Mbam да почисти засеченото. .

MBAMReboot.JPG

  •   След рестарта ,стартирайте Mbam още веднъж.
  •   Кликнете на History tab > Application Logs .
  •   Кликнете два пъти върху реда , който показва датата и часа на сканирането или View Detailed Log .
  •   Кликнете върху " Copy да Clipboard "

 

  • MBAMLog.JPG

 

  •   Поставете  съдържанието на клипборда в следващия си  отговор.

 

 

i_arrow-r.gif Изтеглете програмата: ESET Online Scanner

 

  • Стартирайте esetsmartinstaller_enu.exe 7c9e83b53227ef3d.jpg
  • Сложете отметка на YES, I accept the Terms of Use и изберете Start:

 

04ed1c15c0abe843.jpg

 

  • Скенерът ще започне да изтегля компонентите, които са му необходими:

 

3b734079c5ccd713.jpg

 

 

  • Уверете се, че Enable detection of potentially unwanted applications е избран.

 

Уверете се, че е премахната отметката от:

 

  • Remove found threats

Уверете се че са маркирани следните позиции:

  • Scan Archives

Кликнете върху Advanced Settings и маркирайте следните опции:

  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology

Накрая изберете Start

 

2.JPG

 

Скенерът ще започне да изтегля последните дефиниции и ще започне сканиране на вашия компютър.
Моля, бъдете търпеливи, тъй като това може да отнеме известно време.

  • След, като сканирането завърши кликнете на List of found threats.
  • Щракнете върху Export, и запишете файла на вашия работен плот с  име  ESETScan. Копирайте съдържанието на този доклад, в следващия си отговор.
  • Изберете бутона Back.
  • Изберете бутона Finish.
Линк към коментара
Сподели в други сайтове

Здравейте,

Програмата Malwarebytes Anti-Malware не може да се стартира на компютъра. Дава съобщение че има проблем и до там.По време на сканирането с ESET ,на няколко пъти излизаше съобщение че Malwarebytes Anti-Malware не може да работи на компютъра.

Публикувам резултата от  ESET:

 

D:\FOR PC\MediaInfo_GUI_0.7.41_Windows_i386.exe    Win32/OpenCandy potentially unsafe application
D:\FOR PC\pf-setup-en.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
D:\FOR PC\SoftonicDownloader_for_directx.exe    Win32/SoftonicDownloader.A potentially unwanted application
D:\FOR PC\BSPlayer\keymakerBSplayer.exe    a variant of Win32/Keygen.AG potentially unsafe application
D:\FOR PC\YouTube-Vbox7-video-download\Gomplayerensetup.exe    a variant of Win32/Bundled.Toolbar.Ask.A potentially unsafe application
D:\???????\????\Lego Marvel Super Heroes-FLT\flt-lmsh.iso    a variant of Win32/CoinMiner.HY trojan
D:\???????\???????\XeMu360_BIOS_Installer.zip    Win32/DownWare.L potentially unwanted application
D:\???????\???????\XeMu360_Setup.zip    multiple threats
D:\???????\???????\Nero 8 Ultra Edition 8.2.8.0+Keymaker\Nero-8.2.8.0_eng_trial.exe    Win32/Toolbar.AskSBar potentially unwanted application
D:\???????\???????\Office 2010 Toolkit and EZ-Activator 2.0.1 Final\Office 2010 Toolkit.exe    a variant of MSIL/HackKMS.A potentially unsafe application
D:\???????\???????\XeMu360_BIOS_Installer\XeMu360_BIOS_Installer.exe    Win32/DownWare.L potentially unwanted application
D:\???????\???????\XeMu360_Setup\XeMu360_Setup.exe    multiple threats
 

До момента се наблюдава известно забързване на системата, но бъгавото поведение на WINDOWS остава.

Линк към коментара
Сподели в други сайтове

Копирайте текста в карето на notepad и го запазвате с име CFScript.txt на десктопа си:

 

KILLALL::

File::
D:\FOR PC\MediaInfo_GUI_0.7.41_Windows_i386.exe   
D:\FOR PC\pf-setup-en.exe   
D:\FOR PC\SoftonicDownloader_for_directx.exe   
D:\FOR PC\BSPlayer\keymakerBSplayer.exe    
D:\FOR PC\YouTube-Vbox7-video-download\Gomplayerensetup.exe    
D:\???????\????\Lego Marvel Super Heroes-FLT\flt-lmsh.iso  
D:\???????\???????\XeMu360_BIOS_Installer.zip   
D:\???????\???????\XeMu360_Setup.zip  
D:\???????\???????\XeMu360_BIOS_Installer\XeMu360_BIOS_Installer.exe    
D:\???????\???????\XeMu360_Setup\XeMu360_Setup.exe   

 
 След съхранението преместете  CFScript.txt на иконата на ComboFix.exe

CFScriptB-4.gif

Генерирания рапорт копирайте  и го поставете в следващия си коментар...!

Линк към коментара
Сподели в други сайтове

Здравейте,

Последните указания нещо не се получват.

Следвам всичко както сте го описали ,но накрая не се получава никакъв репорт. Програмата върху която слагам създаденият файл изобщо не реагира.Прилагам снимка.

post-245175-0-49899000-1413053774_thumb.

Линк към коментара
Сподели в други сайтове

Здравейте,

Последните указания нещо не се получват.

Следвам всичко както сте го описали ,но накрая не се получава никакъв репорт. Програмата върху която слагам създаденият файл изобщо не реагира.Прилагам снимка.

attachicon.gifCFSscript.jpg

 

 

Нещо не правите както трябва...:

 

 След съхранението преместете  CFScript.txt на иконата на ComboFix.exe

CFScriptB-4.gif

Линк към коментара
Сподели в други сайтове

След рестарт се получи.

 

ComboFix 14-10-04.01 - SYSTEM 10.2014 г.  16:08:01.2.4 - x86
Microsoft Windows 7 Ultimate   6.1.7601.1.1251.359.1026.18.3574.2425 [GMT 3:00]
Running from: c:\windows\system32\config\systemprofile\Desktop\ComboFix.exe
Command switches used :: c:\windows\system32\config\systemprofile\Desktop\CFScript.txt.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Created a new restore point
.
FILE ::
"d:\for pc\BSPlayer\keymakerBSplayer.exe"
"d:\for pc\MediaInfo_GUI_0.7.41_Windows_i386.exe"
"d:\for pc\pf-setup-en.exe"
"d:\for pc\SoftonicDownloader_for_directx.exe"
"d:\for pc\YouTube-Vbox7-video-download\Gomplayerensetup.exe"
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
d:\for pc\BSPlayer\keymakerBSplayer.exe
d:\for pc\MediaInfo_GUI_0.7.41_Windows_i386.exe
d:\for pc\pf-setup-en.exe
d:\for pc\SoftonicDownloader_for_directx.exe
d:\for pc\YouTube-Vbox7-video-download\Gomplayerensetup.exe
.
.
(((((((((((((((((((((((((   Files Created from 2014-09-12 to 2014-10-12  )))))))))))))))))))))))))))))))
.
.
2014-10-12 13:14 . 2014-10-12 13:14    --------    d-----w-    c:\users\nov\AppData\Local\temp
2014-10-12 13:14 . 2014-10-12 13:14    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-10-12 13:14 . 2014-10-12 13:14    --------    d-----w-    c:\users\Azaq\AppData\Local\temp
2014-10-12 13:14 . 2014-10-12 13:14    --------    d-----w-    c:\users\Admin\AppData\Local\temp
2014-10-11 14:20 . 2014-05-08 09:06    2742784    ----a-w-    c:\windows\system32\rdpcorets.dll
2014-10-11 14:20 . 2014-05-08 09:06    13824    ----a-w-    c:\windows\system32\RdpGroupPolicyExtension.dll
2014-10-11 14:15 . 2014-10-11 14:15    --------    d-sh--w-    c:\windows\system32\config\systemprofile\AppData\Local\EmieSiteList
2014-10-11 13:55 . 2014-10-11 13:55    --------    d-----w-    c:\program files\AGEIA Technologies
2014-10-11 13:55 . 2014-09-13 20:05    613696    ----a-w-    c:\windows\system32\nvStreaming.exe
2014-10-11 06:26 . 2014-10-11 12:42    110296    ----a-w-    c:\windows\system32\drivers\48230029.sys
2014-10-07 20:52 . 2014-10-07 20:52    --------    d-----w-    c:\program files\ESET
2014-10-07 20:41 . 2014-10-12 13:15    110296    ----a-w-    c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-10-07 20:40 . 2014-10-07 20:40    --------    d-----w-    c:\program files\Malwarebytes Anti-Malware
2014-10-07 20:40 . 2014-10-07 20:40    --------    d-----w-    c:\programdata\Malwarebytes
2014-10-07 20:40 . 2014-05-12 04:26    51928    ----a-w-    c:\windows\system32\drivers\mwac.sys
2014-10-07 20:40 . 2014-05-12 04:25    74456    ----a-w-    c:\windows\system32\drivers\mbamchameleon.sys
2014-10-07 20:40 . 2014-05-12 04:25    23256    ----a-w-    c:\windows\system32\drivers\mbam.sys
2014-10-06 17:13 . 2014-10-12 13:15    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\temp
2014-10-06 17:00 . 2014-09-14 23:08    8806800    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{164F8E9A-0A5B-4CFD-9166-41F99008A6F9}\mpengine.dll
2014-10-06 16:54 . 2014-10-06 16:54    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\TuneUp Software
2014-10-06 16:52 . 2014-10-06 16:52    --------    d-----w-    c:\users\Default\AppData\Local\NVIDIA Corporation
2014-10-06 16:50 . 2014-08-18 21:30    646144    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2014-10-06 16:50 . 2014-06-27 01:45    2285056    ----a-w-    c:\windows\system32\msmpeg2vdec.dll
2014-10-05 12:30 . 2014-10-05 12:30    --------    d-----w-    c:\windows\ERUNT
2014-10-05 12:16 . 2014-10-05 12:56    --------    d-----w-    C:\AdwCleaner
2014-10-05 06:38 . 2014-10-05 12:26    --------    d-----w-    C:\FRST
2014-10-04 16:58 . 2014-09-17 02:13    1291280    ----a-w-    c:\windows\system32\nvspbridge.dll
2014-10-04 16:57 . 2014-09-04 19:14    32928    ----a-w-    c:\windows\system32\drivers\nvvad32v.sys
2014-10-04 16:51 . 2014-10-04 16:51    --------    d-----w-    c:\program files\MSXML 4.0
2014-10-04 16:47 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\system32\DWrite.dll
2014-10-04 14:56 . 2014-10-11 19:30    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\vlc
2014-10-04 14:56 . 2014-10-04 14:56    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\GRETECH
2014-10-04 14:55 . 2014-10-04 14:55    --------    d-----w-    c:\windows\Migration
2014-10-04 14:23 . 2014-10-04 14:38    --------    d-----w-    c:\windows\system32\MRT
2014-10-04 14:16 . 2012-07-26 03:20    73216    ----a-w-    c:\windows\system32\WUDFSvc.dll
2014-10-04 14:16 . 2012-07-26 03:20    38912    ----a-w-    c:\windows\system32\WUDFCoinstaller.dll
2014-10-04 14:16 . 2012-07-26 03:20    172032    ----a-w-    c:\windows\system32\WUDFPlatform.dll
2014-10-04 14:16 . 2012-07-26 02:33    66560    ----a-w-    c:\windows\system32\drivers\WUDFPf.sys
2014-10-04 14:16 . 2012-07-26 02:32    155136    ----a-w-    c:\windows\system32\drivers\WUDFRd.sys
2014-10-04 14:16 . 2012-07-26 03:21    196608    ----a-w-    c:\windows\system32\WUDFHost.exe
2014-10-04 14:16 . 2012-07-26 03:20    613888    ----a-w-    c:\windows\system32\WUDFx.dll
2014-10-04 14:15 . 2014-03-09 21:47    99480    ----a-w-    c:\windows\system32\infocardapi.dll
2014-10-04 14:15 . 2014-06-30 22:14    8856    ----a-w-    c:\windows\system32\icardres.dll
2014-10-04 14:15 . 2014-03-09 21:47    619672    ----a-w-    c:\windows\system32\icardagt.exe
2014-10-04 14:15 . 2014-06-06 06:16    35480    ----a-w-    c:\windows\system32\TsWpfWrp.exe
2014-10-04 14:15 . 2012-03-01 05:46    19824    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2014-10-04 14:15 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\system32\wmi.dll
2014-10-04 14:12 . 2010-02-11 07:10    293376    ----a-w-    c:\windows\system32\browserchoice.exe
2014-10-04 14:01 . 2013-05-10 04:56    12625408    ----a-w-    c:\windows\system32\wmploc.DLL
2014-10-04 14:01 . 2013-05-10 03:48    164864    ----a-w-    c:\program files\Windows Media Player\wmplayer.exe
2014-10-04 13:54 . 2014-10-04 13:54    69632    ----a-w-    c:\windows\system32\smss.exe
2014-10-04 13:54 . 2014-10-04 13:54    640512    ----a-w-    c:\windows\system32\advapi32.dll
2014-10-04 13:54 . 2014-10-04 13:54    619520    ----a-w-    c:\windows\system32\tdh.dll
2014-10-04 13:54 . 2014-10-04 13:54    38912    ----a-w-    c:\windows\system32\csrsrv.dll
2014-10-04 13:54 . 2014-10-04 13:54    1289096    ----a-w-    c:\windows\system32\ntdll.dll
2014-10-04 13:54 . 2014-10-04 13:54    231424    ----a-w-    c:\windows\system32\mswsock.dll
2014-10-04 13:54 . 2014-10-04 13:54    49152    ----a-w-    c:\windows\system32\taskhost.exe
2014-10-04 13:52 . 2014-10-04 13:52    1505280    ----a-w-    c:\windows\system32\d3d11.dll
2014-10-04 13:44 . 2011-12-16 07:52    690688    ----a-w-    c:\windows\system32\msvcrt.dll
2014-10-04 13:44 . 2013-10-05 19:57    1168384    ----a-w-    c:\windows\system32\crypt32.dll
2014-10-04 13:44 . 2013-07-09 04:46    140288    ----a-w-    c:\windows\system32\cryptsvc.dll
2014-10-04 13:44 . 2013-07-09 04:46    103936    ----a-w-    c:\windows\system32\cryptnet.dll
2014-10-04 13:44 . 2013-07-12 10:07    86016    ----a-w-    c:\windows\system32\drivers\usbcir.sys
2014-10-04 13:44 . 2014-06-03 09:29    936960    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2014-10-04 13:42 . 2012-10-09 17:40    44032    ----a-w-    c:\windows\system32\dhcpcsvc6.dll
2014-10-04 13:41 . 2014-06-18 01:52    399360    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-10-04 13:40 . 2013-06-15 03:38    31232    ----a-w-    c:\windows\system32\drivers\tssecsrv.sys
2014-10-04 13:31 . 2014-04-12 02:15    67520    ----a-w-    c:\windows\system32\drivers\ksecdd.sys
2014-10-04 13:31 . 2014-04-12 02:15    136640    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2014-10-04 13:31 . 2014-04-12 02:12    15872    ----a-w-    c:\windows\system32\sspisrv.dll
2014-10-04 13:31 . 2014-04-12 02:12    100352    ----a-w-    c:\windows\system32\sspicli.dll
2014-10-04 13:31 . 2014-04-12 02:12    22016    ----a-w-    c:\windows\system32\secur32.dll
2014-10-04 13:31 . 2014-04-12 02:11    22528    ----a-w-    c:\windows\system32\lsass.exe
2014-10-04 13:31 . 2013-07-04 12:16    369848    ----a-w-    c:\windows\system32\drivers\cng.sys
2014-10-04 13:31 . 2013-02-27 04:49    47104    ----a-w-    c:\windows\system32\appinfo.dll
2014-10-04 13:27 . 2014-05-14 16:23    45536    ----a-w-    c:\windows\system32\wups2.dll
2014-10-04 13:27 . 2014-05-14 16:23    54240    ----a-w-    c:\windows\system32\wuauclt.exe
2014-10-04 13:27 . 2014-05-14 16:23    1973728    ----a-w-    c:\windows\system32\wuaueng.dll
2014-10-04 13:27 . 2014-05-14 16:17    2425856    ----a-w-    c:\windows\system32\wucltux.dll
2014-10-04 13:27 . 2014-05-14 16:23    36320    ----a-w-    c:\windows\system32\wups.dll
2014-10-04 13:27 . 2014-05-14 16:23    581600    ----a-w-    c:\windows\system32\wuapi.dll
2014-10-04 13:27 . 2014-05-14 16:17    92672    ----a-w-    c:\windows\system32\wudriver.dll
2014-10-04 13:27 . 2014-05-14 06:23    179656    ----a-w-    c:\windows\system32\wuwebv.dll
2014-10-04 13:27 . 2014-05-14 06:17    33792    ----a-w-    c:\windows\system32\wuapp.exe
2014-10-04 13:25 . 2014-10-11 14:57    --------    d-----w-    c:\windows\system32\%LocalAppData%
2014-10-04 12:22 . 2014-10-04 12:22    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\NVIDIA
2014-10-03 17:19 . 2014-10-03 18:28    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Adobe
2014-10-03 16:53 . 2014-10-05 17:04    --------    d-----r-    c:\program files\Skype
2014-10-03 16:53 . 2014-10-03 16:53    --------    d-----w-    c:\program files\Common Files\Skype
2014-10-01 21:00 . 2014-10-01 21:11    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\uTorrent
2014-09-29 17:57 . 2014-09-29 17:57    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Macromedia
2014-09-29 17:49 . 2014-09-29 17:49    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\EMU
2014-09-29 17:49 . 2014-09-29 17:49    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\Warner Bros. Interactive Entertainment
2014-09-29 17:44 . 2014-09-29 17:44    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Mozilla
2014-09-29 17:42 . 2014-09-29 17:42    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Skype
2014-09-29 17:42 . 2014-10-12 13:04    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\Skype
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\CyberLink
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Cyberlink SoftDMA
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Roaming\AVG2012
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\CyberLink
2014-09-29 17:31 . 2014-09-29 17:31    --------    d-----w-    c:\users\Default\AppData\Local\NVIDIA
2014-09-29 17:29 . 2014-09-29 17:29    --------    d-----w-    c:\windows\system32\config\systemprofile\AppData\Local\Banamalon
2014-09-29 17:23 . 2014-10-04 16:42    --------    d-----w-    c:\users\TEMP
2014-09-21 08:10 . 2014-09-21 08:10    --------    d-----w-    c:\users\Admin\AppData\Local\Banamalon
2014-09-21 08:09 . 2014-09-21 08:11    --------    d-----w-    c:\users\Admin\AppData\Roaming\Banamalon
2014-09-20 14:53 . 2014-09-20 14:53    --------    d-----w-    c:\users\stanil1
2014-09-20 14:45 . 2014-09-20 14:45    --------    d-----w-    c:\users\Guest
2014-09-19 18:21 . 2014-09-19 18:21    --------    d-----w-    C:\OLTemp
2014-09-19 17:35 . 2013-01-14 14:22    205312    ----a-w-    c:\windows\system32\drivers\qcusbser.sys
2014-09-19 17:35 . 2009-02-05 05:59    25728    ----a-w-    c:\windows\system32\drivers\androidusb.sys
2014-09-19 17:35 . 2014-09-19 17:35    --------    d-----w-    c:\program files\Smart Suite
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-17 02:13 . 2013-12-26 13:34    2193560    ----a-w-    c:\windows\system32\nvspcap.dll
2014-09-15 06:06 . 2012-06-23 14:36    231568    ------w-    c:\windows\system32\MpSigStub.exe
2014-09-13 23:45 . 2013-12-26 13:29    16875856    ----a-w-    c:\windows\system32\nvd3dum.dll
2014-09-13 23:45 . 2012-06-23 14:15    867528    ----a-w-    c:\windows\system32\nvumdshim.dll
2014-09-13 23:45 . 2012-06-23 14:15    2838424    ----a-w-    c:\windows\system32\nvapi.dll
2014-09-13 23:45 . 2012-06-23 14:15    18106152    ----a-w-    c:\windows\system32\nvwgf2um.dll
2014-09-13 21:06 . 2012-06-23 14:16    4458128    ----a-w-    c:\windows\system32\nvcpl.dll
2014-09-13 21:06 . 2012-06-23 14:16    3069128    ----a-w-    c:\windows\system32\nvsvc.dll
2014-09-13 21:06 . 2013-12-26 13:32    2555200    ----a-w-    c:\windows\system32\nvsvcr.dll
2014-09-13 21:06 . 2012-06-23 14:16    669896    ----a-w-    c:\windows\system32\nvvsvc.exe
2014-09-13 21:06 . 2012-06-23 14:16    61768    ----a-w-    c:\windows\system32\nvshext.dll
2014-09-13 21:06 . 2012-06-23 14:16    375112    ----a-w-    c:\windows\system32\nvmctray.dll
2014-09-04 19:14 . 2013-12-26 13:29    32416    ----a-w-    c:\windows\system32\nvaudcap32v.dll
2014-08-11 16:06 . 2012-10-23 19:14    42784    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2014-07-24 23:35 . 2014-07-24 23:35    875688    ----a-w-    c:\windows\system32\msvcr120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-08-08 07:34    579400    ----a-w-    c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-08-27 22041192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2010-08-11 1690224]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"ShadowPlay"="c:\windows\system32\nvspcap.dll" [2014-09-17 2193560]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-09-17 2460488]
"PowerDVD13Agent"="c:\program files\CyberLink\PowerDVD13\PowerDVD13Agent.exe" [2013-05-03 513048]
"DVAPTray"="c:\windows\System32\DVAPTray.exe" [2009-10-30 188416]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"38526"="c:\progra~2\LOCALS~1\Temp\mspuean.com" [bU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ       autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2014-04-03 315008]
R3 AEXPAM;Philips SmartManage Service;c:\windows\system32\Drivers\aexpamdrv.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-10-04 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2012-11-28 25088]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 24064]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2012-04-19 24896]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2012-01-31 31952]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2012-06-23 691696]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2012-11-08 250080]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2013-04-11 302368]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2014-08-11 42784]
S2 {09F57980-3432-4AFC-957D-27AC45FAE1F5};Power Control [2014/01/12 17:57];c:\program files\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [2013-05-03 08:20 76560]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
S2 CyberLink PowerDVD 13 Media Server Monitor Service;CyberLink PowerDVD 13 Media Server Monitor Service;c:\program files\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [2013-05-03 77576]
S2 CyberLink PowerDVD 13 Media Server Service;CyberLink PowerDVD 13 Media Server Service;c:\program files\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [2013-05-03 323336]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 915784]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 18044744]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-09-13 410952]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-05-12 23256]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-10-12 110296]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-05-12 51928]
S3 MEI;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-09-04 32928]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-08-04 1143920]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MBAMSWISSARMY
.
Contents of the 'Scheduled Tasks' folder
.
2014-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-05-30 19:12]
.
2014-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-05-30 19:12]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kzn7ax0t.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.bg/?gws_rd=ssl
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{09F57980-3432-4AFC-957D-27AC45FAE1F5}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD13\Common\NavFilter\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\windows\system32\conhost.exe
c:\windows\system32\taskhost.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\windows\System32\rundll32.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2014-10-12  16:22:27 - machine was rebooted
ComboFix-quarantined-files.txt  2014-10-12 13:22
ComboFix2.txt  2014-10-06 17:13
.
Pre-Run: 13 990 633 472 bytes free
Post-Run: 13 958 070 272 bytes free
.
- - End Of File - - 543EF43198C6B18D1438846D9B71E9C9
A36C5E4F47E84449FF07ED3517B43A31
 

Линк към коментара
Сподели в други сайтове

Здравейте..!Какво е моментното състояние на системата ви..?

 

+

 

icon1348768721.jpg  Изтеглете Security Check (автор: screen317) от тук

  • Кликнете два пъти върху SecurityCheck.exe и следвайте инструкциите.
  • Когато програмата завърши работата си, ще се отвори един текстов документ: checkup.txt.
  • Копирайте съдържанието на checkup.txt с Копирай (Copy) и с Постави (Paste) го поставете в следващия си коментар.
Линк към коментара
Сподели в други сайтове

Здравейте,

Системата се по забърза.

Често излиза прозорец че програмата Malwarebytes Anti-Malware не фунционира правилно и че ще трябва да бъде затворена.

Настройките на WINDOWS продължават да се губят. Все повече се замислям за преинстал. :)

 

 

Results of screen317's Security Check version 0.99.88  
 Windows 7 Service Pack 1 x86 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
AVG Anti-Virus Free Edition 2012   
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 7  
 Java version out of Date!
  Adobe Flash Player     11.7.700.202 Flash Player out of Date!  
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (33.0)
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 AVG avgwdsvc.exe
 AVG avgtray.exe
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 2%
````````````````````End of Log``````````````````````
 

Линк към коментара
Сподели в други сайтове

.Да опитаме още нещо..:

 

Start => въведете в полето за търсене CMD => кликнете върху файла CMD.exe и изберете Run as administrator => напишете CMD.exe => въведете командата sfc /scannow и натиснете Enter

 

след това копирайте следната команда:

 

findstr /c:"[sR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

 

и натиснете Enter

 

Публикувайте в следващия си пост sfcdetails.txt, който ще се генерира на десктопа ви.


+

 

Да видим и какво е състоянието на диска...

 

Нека да направим една проверка за грешки:

 

Start => въведете в полето за търсене CMD => кликнете върху файла CMD.exe и изберете Run as administrator => напишете CMD.exe => въведете командата:

 

chkdsk c: /x /f /r => натиснете Enter

 

Съгласете се с Y на диалоговия прозорец.Рестартирайте компютъра и би трябвало проверката да започне.След това вижте какви са били резултатите.

 

Рапорта от проверката ще намерите тук:Start => в полето за търсене въведете eventvwr.msc => Аpplications => събитие WinInit Event ID 1001. Kопирайте рапорта в следващия си пост.

Линк към коментара
Сподели в други сайтове

2014-10-18 11:36:21, Info                  CSI    00000009 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:21, Info                  CSI    0000000a [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:23, Info                  CSI    0000000c [sR] Verify complete
2014-10-18 11:36:24, Info                  CSI    0000000d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:24, Info                  CSI    0000000e [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:26, Info                  CSI    00000010 [sR] Verify complete
2014-10-18 11:36:26, Info                  CSI    00000011 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:26, Info                  CSI    00000012 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:29, Info                  CSI    00000014 [sR] Verify complete
2014-10-18 11:36:30, Info                  CSI    00000015 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:30, Info                  CSI    00000016 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:31, Info                  CSI    00000018 [sR] Verify complete
2014-10-18 11:36:32, Info                  CSI    00000019 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:32, Info                  CSI    0000001a [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:33, Info                  CSI    0000001c [sR] Verify complete
2014-10-18 11:36:34, Info                  CSI    0000001d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:34, Info                  CSI    0000001e [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:35, Info                  CSI    00000020 [sR] Verify complete
2014-10-18 11:36:36, Info                  CSI    00000021 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:36, Info                  CSI    00000022 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:37, Info                  CSI    00000024 [sR] Verify complete
2014-10-18 11:36:38, Info                  CSI    00000025 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:38, Info                  CSI    00000026 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:39, Info                  CSI    00000028 [sR] Verify complete
2014-10-18 11:36:39, Info                  CSI    00000029 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:39, Info                  CSI    0000002a [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:41, Info                  CSI    0000002c [sR] Verify complete
2014-10-18 11:36:41, Info                  CSI    0000002d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:41, Info                  CSI    0000002e [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:44, Info                  CSI    00000030 [sR] Verify complete
2014-10-18 11:36:44, Info                  CSI    00000031 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:44, Info                  CSI    00000032 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:46, Info                  CSI    00000034 [sR] Verify complete
2014-10-18 11:36:46, Info                  CSI    00000035 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:46, Info                  CSI    00000036 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:48, Info                  CSI    00000038 [sR] Verify complete
2014-10-18 11:36:48, Info                  CSI    00000039 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:48, Info                  CSI    0000003a [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:50, Info                  CSI    0000003c [sR] Verify complete
2014-10-18 11:36:50, Info                  CSI    0000003d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:50, Info                  CSI    0000003e [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:52, Info                  CSI    00000040 [sR] Verify complete
2014-10-18 11:36:52, Info                  CSI    00000041 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:52, Info                  CSI    00000042 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:54, Info                  CSI    00000044 [sR] Verify complete
2014-10-18 11:36:54, Info                  CSI    00000045 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:54, Info                  CSI    00000046 [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:56, Info                  CSI    00000048 [sR] Verify complete
2014-10-18 11:36:56, Info                  CSI    00000049 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:56, Info                  CSI    0000004a [sR] Beginning Verify and Repair transaction
2014-10-18 11:36:57, Info                  CSI    0000004c [sR] Verify complete
2014-10-18 11:36:58, Info                  CSI    0000004d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:36:58, Info                  CSI    0000004e [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:00, Info                  CSI    00000050 [sR] Verify complete
2014-10-18 11:37:01, Info                  CSI    00000051 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:01, Info                  CSI    00000052 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:04, Info                  CSI    00000054 [sR] Verify complete
2014-10-18 11:37:04, Info                  CSI    00000055 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:04, Info                  CSI    00000056 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:06, Info                  CSI    0000005a [sR] Verify complete
2014-10-18 11:37:06, Info                  CSI    0000005b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:06, Info                  CSI    0000005c [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:09, Info                  CSI    00000060 [sR] Verify complete
2014-10-18 11:37:09, Info                  CSI    00000061 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:09, Info                  CSI    00000062 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:11, Info                  CSI    00000064 [sR] Verify complete
2014-10-18 11:37:11, Info                  CSI    00000065 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:11, Info                  CSI    00000066 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:14, Info                  CSI    0000006a [sR] Verify complete
2014-10-18 11:37:14, Info                  CSI    0000006b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:14, Info                  CSI    0000006c [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:18, Info                  CSI    00000076 [sR] Verify complete
2014-10-18 11:37:18, Info                  CSI    00000077 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:18, Info                  CSI    00000078 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:21, Info                  CSI    0000007a [sR] Verify complete
2014-10-18 11:37:21, Info                  CSI    0000007b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:21, Info                  CSI    0000007c [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:24, Info                  CSI    0000007e [sR] Verify complete
2014-10-18 11:37:25, Info                  CSI    0000007f [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:25, Info                  CSI    00000080 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:27, Info                  CSI    00000082 [sR] Verify complete
2014-10-18 11:37:27, Info                  CSI    00000083 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:27, Info                  CSI    00000084 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:30, Info                  CSI    00000086 [sR] Verify complete
2014-10-18 11:37:30, Info                  CSI    00000087 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:30, Info                  CSI    00000088 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:33, Info                  CSI    0000008a [sR] Verify complete
2014-10-18 11:37:34, Info                  CSI    0000008b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:34, Info                  CSI    0000008c [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:36, Info                  CSI    0000008e [sR] Verify complete
2014-10-18 11:37:36, Info                  CSI    0000008f [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:36, Info                  CSI    00000090 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:40, Info                  CSI    00000092 [sR] Verify complete
2014-10-18 11:37:40, Info                  CSI    00000093 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:40, Info                  CSI    00000094 [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:47, Info                  CSI    00000098 [sR] Verify complete
2014-10-18 11:37:48, Info                  CSI    00000099 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:48, Info                  CSI    0000009a [sR] Beginning Verify and Repair transaction
2014-10-18 11:37:52, Info                  CSI    0000009c [sR] Verify complete
2014-10-18 11:37:53, Info                  CSI    0000009d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:37:53, Info                  CSI    0000009e [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:00, Info                  CSI    000000a0 [sR] Verify complete
2014-10-18 11:38:00, Info                  CSI    000000a1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:00, Info                  CSI    000000a2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:03, Info                  CSI    000000a4 [sR] Verify complete
2014-10-18 11:38:03, Info                  CSI    000000a5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:03, Info                  CSI    000000a6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:06, Info                  CSI    000000a8 [sR] Verify complete
2014-10-18 11:38:06, Info                  CSI    000000a9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:06, Info                  CSI    000000aa [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:08, Info                  CSI    000000ac [sR] Verify complete
2014-10-18 11:38:08, Info                  CSI    000000ad [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:08, Info                  CSI    000000ae [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:09, Info                  CSI    000000b0 [sR] Verify complete
2014-10-18 11:38:10, Info                  CSI    000000b1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:10, Info                  CSI    000000b2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:11, Info                  CSI    000000b4 [sR] Verify complete
2014-10-18 11:38:12, Info                  CSI    000000b5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:12, Info                  CSI    000000b6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:16, Info                  CSI    000000cb [sR] Verify complete
2014-10-18 11:38:17, Info                  CSI    000000cc [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:17, Info                  CSI    000000cd [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:19, Info                  CSI    000000d8 [sR] Verify complete
2014-10-18 11:38:20, Info                  CSI    000000d9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:20, Info                  CSI    000000da [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:21, Info                  CSI    000000dc [sR] Verify complete
2014-10-18 11:38:21, Info                  CSI    000000dd [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:21, Info                  CSI    000000de [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:23, Info                  CSI    000000e0 [sR] Verify complete
2014-10-18 11:38:24, Info                  CSI    000000e1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:24, Info                  CSI    000000e2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:26, Info                  CSI    000000e4 [sR] Verify complete
2014-10-18 11:38:26, Info                  CSI    000000e5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:26, Info                  CSI    000000e6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:30, Info                  CSI    000000e8 [sR] Verify complete
2014-10-18 11:38:30, Info                  CSI    000000e9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:30, Info                  CSI    000000ea [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:37, Info                  CSI    000000ed [sR] Verify complete
2014-10-18 11:38:37, Info                  CSI    000000ee [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:37, Info                  CSI    000000ef [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:40, Info                  CSI    000000f1 [sR] Verify complete
2014-10-18 11:38:40, Info                  CSI    000000f2 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:40, Info                  CSI    000000f3 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:41, Info                  CSI    000000f5 [sR] Verify complete
2014-10-18 11:38:42, Info                  CSI    000000f6 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:42, Info                  CSI    000000f7 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:43, Info                  CSI    000000f9 [sR] Verify complete
2014-10-18 11:38:43, Info                  CSI    000000fa [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:43, Info                  CSI    000000fb [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:47, Info                  CSI    000000fd [sR] Verify complete
2014-10-18 11:38:47, Info                  CSI    000000fe [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:47, Info                  CSI    000000ff [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:50, Info                  CSI    00000101 [sR] Verify complete
2014-10-18 11:38:50, Info                  CSI    00000102 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:50, Info                  CSI    00000103 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:53, Info                  CSI    00000105 [sR] Verify complete
2014-10-18 11:38:53, Info                  CSI    00000106 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:53, Info                  CSI    00000107 [sR] Beginning Verify and Repair transaction
2014-10-18 11:38:57, Info                  CSI    00000109 [sR] Verify complete
2014-10-18 11:38:57, Info                  CSI    0000010a [sR] Verifying 100 (0x00000064) components
2014-10-18 11:38:57, Info                  CSI    0000010b [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:04, Info                  CSI    0000012c [sR] Verify complete
2014-10-18 11:39:04, Info                  CSI    0000012d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:04, Info                  CSI    0000012e [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:08, Info                  CSI    00000135 [sR] Verify complete
2014-10-18 11:39:08, Info                  CSI    00000136 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:08, Info                  CSI    00000137 [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:14, Info                  CSI    00000139 [sR] Verify complete
2014-10-18 11:39:14, Info                  CSI    0000013a [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:14, Info                  CSI    0000013b [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:27, Info                  CSI    0000013d [sR] Verify complete
2014-10-18 11:39:27, Info                  CSI    0000013e [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:27, Info                  CSI    0000013f [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:37, Info                  CSI    00000142 [sR] Verify complete
2014-10-18 11:39:37, Info                  CSI    00000143 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:37, Info                  CSI    00000144 [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:42, Info                  CSI    00000146 [sR] Verify complete
2014-10-18 11:39:42, Info                  CSI    00000147 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:42, Info                  CSI    00000148 [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:47, Info                  CSI    0000014a [sR] Verify complete
2014-10-18 11:39:47, Info                  CSI    0000014b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:47, Info                  CSI    0000014c [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:50, Info                  CSI    0000014e [sR] Verify complete
2014-10-18 11:39:50, Info                  CSI    0000014f [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:50, Info                  CSI    00000150 [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:55, Info                  CSI    00000152 [sR] Verify complete
2014-10-18 11:39:55, Info                  CSI    00000153 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:55, Info                  CSI    00000154 [sR] Beginning Verify and Repair transaction
2014-10-18 11:39:58, Info                  CSI    00000156 [sR] Verify complete
2014-10-18 11:39:58, Info                  CSI    00000157 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:39:58, Info                  CSI    00000158 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:02, Info                  CSI    0000015b [sR] Verify complete
2014-10-18 11:40:02, Info                  CSI    0000015c [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:02, Info                  CSI    0000015d [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:05, Info                  CSI    0000015f [sR] Verify complete
2014-10-18 11:40:05, Info                  CSI    00000160 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:05, Info                  CSI    00000161 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:20, Info                  CSI    00000163 [sR] Verify complete
2014-10-18 11:40:20, Info                  CSI    00000164 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:20, Info                  CSI    00000165 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:26, Info                  CSI    00000168 [sR] Verify complete
2014-10-18 11:40:26, Info                  CSI    00000169 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:26, Info                  CSI    0000016a [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:31, Info                  CSI    0000016c [sR] Verify complete
2014-10-18 11:40:31, Info                  CSI    0000016d [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:31, Info                  CSI    0000016e [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:35, Info                  CSI    00000170 [sR] Verify complete
2014-10-18 11:40:35, Info                  CSI    00000171 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:35, Info                  CSI    00000172 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:40, Info                  CSI    00000174 [sR] Verify complete
2014-10-18 11:40:40, Info                  CSI    00000175 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:40, Info                  CSI    00000176 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:47, Info                  CSI    00000179 [sR] Verify complete
2014-10-18 11:40:47, Info                  CSI    0000017a [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:47, Info                  CSI    0000017b [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:52, Info                  CSI    0000017d [sR] Verify complete
2014-10-18 11:40:52, Info                  CSI    0000017e [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:52, Info                  CSI    0000017f [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:55, Info                  CSI    00000181 [sR] Verify complete
2014-10-18 11:40:55, Info                  CSI    00000182 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:55, Info                  CSI    00000183 [sR] Beginning Verify and Repair transaction
2014-10-18 11:40:59, Info                  CSI    00000185 [sR] Verify complete
2014-10-18 11:40:59, Info                  CSI    00000186 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:40:59, Info                  CSI    00000187 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:03, Info                  CSI    0000018a [sR] Verify complete
2014-10-18 11:41:03, Info                  CSI    0000018b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:03, Info                  CSI    0000018c [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:07, Info                  CSI    0000018e [sR] Verify complete
2014-10-18 11:41:07, Info                  CSI    0000018f [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:07, Info                  CSI    00000190 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:10, Info                  CSI    00000192 [sR] Verify complete
2014-10-18 11:41:11, Info                  CSI    00000193 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:11, Info                  CSI    00000194 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:13, Info                  CSI    00000196 [sR] Verify complete
2014-10-18 11:41:14, Info                  CSI    00000197 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:14, Info                  CSI    00000198 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:18, Info                  CSI    0000019a [sR] Verify complete
2014-10-18 11:41:18, Info                  CSI    0000019b [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:18, Info                  CSI    0000019c [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:23, Info                  CSI    000001a0 [sR] Verify complete
2014-10-18 11:41:23, Info                  CSI    000001a1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:23, Info                  CSI    000001a2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:27, Info                  CSI    000001a4 [sR] Verify complete
2014-10-18 11:41:27, Info                  CSI    000001a5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:27, Info                  CSI    000001a6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:32, Info                  CSI    000001a8 [sR] Verify complete
2014-10-18 11:41:32, Info                  CSI    000001a9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:32, Info                  CSI    000001aa [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:37, Info                  CSI    000001ac [sR] Verify complete
2014-10-18 11:41:37, Info                  CSI    000001ad [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:37, Info                  CSI    000001ae [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:41, Info                  CSI    000001b0 [sR] Verify complete
2014-10-18 11:41:41, Info                  CSI    000001b1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:41, Info                  CSI    000001b2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:46, Info                  CSI    000001b4 [sR] Verify complete
2014-10-18 11:41:46, Info                  CSI    000001b5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:46, Info                  CSI    000001b6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:48, Info                  CSI    000001b8 [sR] Verify complete
2014-10-18 11:41:48, Info                  CSI    000001b9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:48, Info                  CSI    000001ba [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:51, Info                  CSI    000001bc [sR] Verify complete
2014-10-18 11:41:52, Info                  CSI    000001bd [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:52, Info                  CSI    000001be [sR] Beginning Verify and Repair transaction
2014-10-18 11:41:55, Info                  CSI    000001c0 [sR] Verify complete
2014-10-18 11:41:56, Info                  CSI    000001c1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:41:56, Info                  CSI    000001c2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:00, Info                  CSI    000001c4 [sR] Verify complete
2014-10-18 11:42:00, Info                  CSI    000001c5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:00, Info                  CSI    000001c6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:03, Info                  CSI    000001c8 [sR] Verify complete
2014-10-18 11:42:04, Info                  CSI    000001c9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:04, Info                  CSI    000001ca [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:06, Info                  CSI    000001cc [sR] Verify complete
2014-10-18 11:42:06, Info                  CSI    000001cd [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:06, Info                  CSI    000001ce [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:11, Info                  CSI    000001d0 [sR] Verify complete
2014-10-18 11:42:11, Info                  CSI    000001d1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:11, Info                  CSI    000001d2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:19, Info                  CSI    000001d4 [sR] Verify complete
2014-10-18 11:42:19, Info                  CSI    000001d5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:19, Info                  CSI    000001d6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:30, Info                  CSI    000001d8 [sR] Verify complete
2014-10-18 11:42:30, Info                  CSI    000001d9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:30, Info                  CSI    000001da [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:33, Info                  CSI    000001dc [sR] Verify complete
2014-10-18 11:42:33, Info                  CSI    000001dd [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:33, Info                  CSI    000001de [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:37, Info                  CSI    000001e0 [sR] Verify complete
2014-10-18 11:42:37, Info                  CSI    000001e1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:37, Info                  CSI    000001e2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:39, Info                  CSI    000001e4 [sR] Verify complete
2014-10-18 11:42:39, Info                  CSI    000001e5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:39, Info                  CSI    000001e6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:42, Info                  CSI    000001e8 [sR] Verify complete
2014-10-18 11:42:42, Info                  CSI    000001e9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:42, Info                  CSI    000001ea [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:45, Info                  CSI    000001ec [sR] Verify complete
2014-10-18 11:42:45, Info                  CSI    000001ed [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:45, Info                  CSI    000001ee [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:48, Info                  CSI    000001f0 [sR] Verify complete
2014-10-18 11:42:48, Info                  CSI    000001f1 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:48, Info                  CSI    000001f2 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:51, Info                  CSI    000001f4 [sR] Verify complete
2014-10-18 11:42:51, Info                  CSI    000001f5 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:51, Info                  CSI    000001f6 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:52, Info                  CSI    000001f8 [sR] Verify complete
2014-10-18 11:42:52, Info                  CSI    000001f9 [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:52, Info                  CSI    000001fa [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:53, Info                  CSI    000001fc [sR] Verify complete
2014-10-18 11:42:53, Info                  CSI    000001fd [sR] Verifying 100 (0x00000064) components
2014-10-18 11:42:53, Info                  CSI    000001fe [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:57, Info                  CSI    00000200 [sR] Verify complete
2014-10-18 11:42:57, Info                  CSI    00000201 [sR] Verifying 5 components
2014-10-18 11:42:57, Info                  CSI    00000202 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:58, Info                  CSI    00000204 [sR] Verify complete
2014-10-18 11:42:58, Info                  CSI    00000205 [sR] Repairing 0 components
2014-10-18 11:42:58, Info                  CSI    00000206 [sR] Beginning Verify and Repair transaction
2014-10-18 11:42:58, Info                  CSI    00000208 [sR] Repair complete
 

+

 

Log Name:      Application
Source:        Microsoft-Windows-Wininit
Date:          18.10.2014 г. 12:16:35 ч.
Event ID:      1001
Task Category: None
Level:         Information
Keywords:      Classic
User:          N/A
Computer:      Admin-PC
Description:


Checking file system on C:
The type of the file system is NTFS.

A disk check has been scheduled.
Windows will now check the disk.                         

CHKDSK is verifying files (stage 1 of 5)...
Cleaning up instance tags for file 0x138b0.
  219392 file records processed.                                         

File verification completed.
  280 large file records processed.                                   

  0 bad file records processed.                                     

  2 EA records processed.                                           

  27 reparse records processed.                                      

CHKDSK is verifying indexes (stage 2 of 5)...
  273708 index entries processed.                                        

Index verification completed.
  0 unindexed files scanned.                                        

  0 unindexed files recovered.                                      

CHKDSK is verifying security descriptors (stage 3 of 5)...
  219392 file SDs/SIDs processed.                                        

Cleaning up 1504 unused index entries from index $SII of file 0x9.
Cleaning up 1504 unused index entries from index $SDH of file 0x9.
Cleaning up 1504 unused security descriptors.
Security descriptor verification completed.
  27159 data files processed.                                           

CHKDSK is verifying Usn Journal...
  37215464 USN bytes processed.                                            

Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
  219376 files processed.                                                

File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
  3563080 free clusters processed.                                        

Free space verification is complete.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
CHKDSK discovered free space marked as allocated in the volume bitmap.
Windows has made corrections to the file system.

  52432895 KB total disk space.
  37760344 KB in 148925 files.
     95056 KB in 27160 indexes.
         0 KB in bad sectors.
    325171 KB in use by the system.
     65536 KB occupied by the log file.
  14252324 KB available on disk.

      4096 bytes in each allocation unit.
  13108223 total allocation units on disk.
   3563081 allocation units available on disk.

Internal Info:
00 59 03 00 e0 af 02 00 69 f1 04 00 00 00 00 00  .Y......i.......
70 65 00 00 1b 00 00 00 00 00 00 00 00 00 00 00  pe..............
38 5f 5a 00 50 01 58 00 98 1a 58 00 00 00 58 00  8_Z.P.X...X...X.

Windows has finished checking your disk.
Please wait while your computer restarts.

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-Wininit" Guid="{206f6dea-d3c5-4d10-bc72-989f03c8b84b}" EventSourceName="Wininit" />
    <EventID Qualifiers="16384">1001</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2014-10-18T09:16:35.000000000Z" />
    <EventRecordID>142832</EventRecordID>
    <Correlation />
    <Execution ProcessID="0" ThreadID="0" />
    <Channel>Application</Channel>
    <Computer>Admin-PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data>

Checking file system on C:
The type of the file system is NTFS.

A disk check has been scheduled.
Windows will now check the disk.                         

CHKDSK is verifying files (stage 1 of 5)...
Cleaning up instance tags for file 0x138b0.
  219392 file records processed.                                         

File verification completed.
  280 large file records processed.                                   

  0 bad file records processed.                                     

  2 EA records processed.                                           

  27 reparse records processed.                                      

CHKDSK is verifying indexes (stage 2 of 5)...
  273708 index entries processed.                                        

Index verification completed.
  0 unindexed files scanned.                                        

  0 unindexed files recovered.                                      

CHKDSK is verifying security descriptors (stage 3 of 5)...
  219392 file SDs/SIDs processed.                                        

Cleaning up 1504 unused index entries from index $SII of file 0x9.
Cleaning up 1504 unused index entries from index $SDH of file 0x9.
Cleaning up 1504 unused security descriptors.
Security descriptor verification completed.
  27159 data files processed.                                           

CHKDSK is verifying Usn Journal...
  37215464 USN bytes processed.                                            

Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
  219376 files processed.                                                

File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
  3563080 free clusters processed.                                        

Free space verification is complete.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
CHKDSK discovered free space marked as allocated in the volume bitmap.
Windows has made corrections to the file system.

  52432895 KB total disk space.
  37760344 KB in 148925 files.
     95056 KB in 27160 indexes.
         0 KB in bad sectors.
    325171 KB in use by the system.
     65536 KB occupied by the log file.
  14252324 KB available on disk.

      4096 bytes in each allocation unit.
  13108223 total allocation units on disk.
   3563081 allocation units available on disk.

Internal Info:
00 59 03 00 e0 af 02 00 69 f1 04 00 00 00 00 00  .Y......i.......
70 65 00 00 1b 00 00 00 00 00 00 00 00 00 00 00  pe..............
38 5f 5a 00 50 01 58 00 98 1a 58 00 00 00 58 00  8_Z.P.X...X...X.

Windows has finished checking your disk.
Please wait while your computer restarts.
</Data>
  </EventData>
</Event>

Линк към коментара
Сподели в други сайтове

Деинсталирайте ComboFix така:

  • Натиснете Start ==> Run ==> въведете командата Combofix /Uninstall ==> OK

CF.jpg
 
Моля, следвайте инструкциите, за да деинсталирате ComboFix. Ще получите съобщение, в което се казва ComboFix е деинсталиран успешно.
 
 
icon_arrow.gif Изтеглете следния файл и го запазете в папката от която стартирахте FRST.exe.
Стартирайте FRST.exe и натиснете бутона Fix веднъж!
След като приключи публикувайте лог файла - fixlog.txt, който ще се създаде след работата. Той трябва да изтрие карантинната папка на инструмента разположена в C:FRSTQuarantine.
 
 
icon_arrow.gif Изтеглете DelFix и го стартирайте. Сложете отметка пред Remove disinfection tools и след това натиснете бутона Run
Инструмента ще се самоизтрие след като приключи своята задача!
 
1_tmb_68929169_delfix.gif.jpg
 
 
icon_exclaim.gif Деинсталирайте adwcleaner.exe

  • Моля, затворете всички отворени програми и интернет браузъри.
  • Кликнете два пъти върху adwcleaner.exe за да стартирате инструмента.
  • Кликнете върху Uninstall .
  • Щракнете върху Yes за да деинсталирате Adwcleaner
  •  

icon_arrow.gif Деинсталирайте ESET Online Scaner.

  • Start => Run, въведете control appwiz.cpl в полето.След това натиснете ENTER.
  • Изберете ESET Online Scanner от списъка с приложения, а след това маркирайте Remove. Aко бъдете подканени рестартирайте компютъра си.

 

 

 

Деинсталирайте Malwarebytes Anti-Malware по стандартния метод..След това:

 

  • Моля, изтеглете Mbam-clean.exe от тук  и  го запомнете на до вашия десктоп .
  • Моля, затворете всички отворени приложения и временно спрете вашата антивирусна за да се избегнат всякакви конфликти при използването на инструмента.
  • Стартирайте файла Mbam-clean.exe и следвайте указанията на екрана.
  • След процедурата ще се изиска да рестартирате компютъра си, моля, направете го, това е много важно
  • Уверете се, че сте се активирали вашата антивирусна програма след рестарта

    Сега вече изтеглете последната версия Malwarebytes Anti -Malware ,инсталирайте програмата но не слагайте първата отметка по-време на инсталацията:

    malwarebytes-installation.jpg

 

Пишете дали проблема все още е налице..! :)

Линк към коментара
Сподели в други сайтове

Здравейте, .

След стъпка 2 мисля че DelFix, затри логфайла fixlog.txt и не мога да го публикувам.

Ако това не е проблем за мен всичко е ОК.

Благодаря за помоща,ако това бяха последните стъпки, може да закриваме темата.

Показвам лога от DelFix

 

# DelFix v10.8 - Logfile created 18/10/2014 at 16:40:43
# Updated 29/07/2014 by Xplode
# Username : Admin - ADMIN-PC
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)

~ Removing disinfection tools ...

Deleted : \FRST
Deleted : \AdwCleaner
Deleted : C:\Windows\system32\config\systemprofile\Desktop\FRST-OlderVersion
Deleted : \ComboFix.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\Addition.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\adwcleaner_3.311.exe
Deleted : C:\Windows\system32\config\systemprofile\Desktop\esetsmartinstaller_enu.exe
Deleted : C:\Windows\system32\config\systemprofile\Desktop\Fixlog.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\Fixlog1.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\FRST.exe
Deleted : C:\Windows\system32\config\systemprofile\Desktop\FRST.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\JRT.exe
Deleted : C:\Windows\system32\config\systemprofile\Desktop\JRT.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\log.txt
Deleted : C:\Windows\system32\config\systemprofile\Desktop\SecurityCheck.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware

~ Cleaning system restore ...

Deleted : RP #96 [ComboFix created restore point | 10/18/2014 13:36:02]

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########
 

Линк към коментара
Сподели в други сайтове

Архивирана тема

Темата е твърде стара и е архивирана. Не можете да добавяте нови отговори в нея, но винаги можете да публикувате нова тема, в която да продължи дискусията. Регистрирайте се или влезте във вашия профил за да публикувате нова тема.

  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Подобни теми

    • от CaptainJord
      Здравейте, от известно време системата ми не работи както обикновенно. Много често процесора е към 100%, както и другите статистики. Също така, докато съм пуснал някоя игра получавам рязки спадове на FPS, което не е нормално за компютъра ми. Имам стабилна конфигурация GTX 1050 TI 4gb I5 6600k. Теглих какви ли не програми за сканиране на malware - намираха доста зловредни файлове, но уж ги чистят, а пак продължава проблема...
       

       
      Addition.txt FRST.txt

    • от FrankyF
      Здравейте, на скоро ми излезе един попъп :

      И понеже нямах антивирусна преди това исках да направя профилактична проверка.
      Прикачвам FRST & Adition.
      Adition - https://dox.abv.bg/download?id=ec814d8d64# - Линк за сваляне
      ckfiles - https://dox.abv.bg/download?id=e280a29d87# - Линк за сваляне
      FRST - https://dox.abv.bg/download?id=bb2866b435# - Линк за сваляне
      Днес като стартирах PC  видях за около части от секундата 4 терминала които се отвориха и затвориха.
       
      Благодаря предварително.
      Поздрави
    • от blazarow09
      От скоро ползвам машината и след като я закупих(нова) Windows defender беше спрян по подразбиране и на негово място имаше Norton Security, като аз прецених да го оставя, въпреки, че винаги съм ползвал Windows Defender. Преди седмица-две, след сканиране на системата ми излязоха няколко зловредни файла и антивирусната започна да спрами за някакви BitCoin Miners, аз мислех, че съм ги зачистил, но явно все още има останали зловредни файлове и днес ми се наложи да отворя Device Manager-a, като получих това съобщение.
       
      Не усещам разлика в performance-a на самата машина, но искам да съм сигурен, че всичко е наред и няма файлове, които могат да ми навредят за в бъдеще.

      Прикачвам логовете от Farbar и се надявам да ми помогнете. Благодаря предварително!
      Addition.txt FRST.txt
    • от Yanichka
      Здравейте. Имам проблеми с лаптопа ми от известно време - много е бавен, пренатоварва се и CPU-то работи на по-малко от  50%.. Бях посъветвана първо да проверя за вируси и нежелани софтуери, преди да предприема други мерки. Лаптопът е DELL Latitude E5540, Intel inside core i7 vPro. Да кажем, че  е средно на около 6 годинки :)) Коя антивирусна програма бихте ми препоръчали? Ако имате нужда от още информация за лаптопа, само пишете ;))  Благодаря предварително
  • Дарение

×
×
  • Добави ново...

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите Условия за ползване