РЕШЕН Компютъра ми стана много бавен

pipo79 · Юни 30, 2013

Здравейте , от известно време компютъра ми стана доста бавен при стартиране на програми или при ползване на интернет. Като отворя два прозореца с интернет експлоръра и направо забива.Имам и лаптоп и предимно ползвам него , но ако има шанс защо да не съживя и др комп.

Malwarebytes Anti-Malware (Пробна версия) 1.75.0.1300

www.malwarebytes.org

Версия на базата от данни: v2013.06.30.06

Windows XP Service Pack 2 x86 NTFS

Internet Explorer 8.0.6001.18702

mihov :: ABC-BC4C32C8E6C [администратор]

Защита: включена

6/30/2013 11:12:12 PM

mbam-log-2013-06-30 (23-12-12).txt

Тип сканиране: Бързо сканиране

Изключени опции за сканиране: P2P

Сканирани обекти: 190841

Изминало време: 8 минута(и), 58 секунда(и)

Открити процеси в паметта: 0

(Не бяха открити зловредни обекти)

Открити модули в паметта: 0

(Не бяха открити зловредни обекти)

Открити ключове в системния регистър: 0

(Не бяха открити зловредни обекти)

Открити стойности в системния регистър: 0

(Не бяха открити зловредни обекти)

Открити информационни обекти в системния регистър: 1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL|CheckedValue (PUM.Hijack.System.Hidden) -> Лош: (0) Добър: (1) -> Поставен под карантина и поправен успешно.

Открити папки: 0

(Не бяха открити зловредни обекти)

Открити файлове: 1

C:\WINDOWS\system32\rhvdpq.dll (Worm.Conficker) -> Ще бъде изтрит при рестартиране.

(край)

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 4/13/2012 5:50:11 PM

System Uptime: 6/30/2013 2:54:53 PM (9 hours ago)

.

Motherboard: | | K7VT6

Processor: AMD Athlon XP | Socket-A | 899/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 49 GiB total, 23.68 GiB free.

D: is FIXED (NTFS) - 32 GiB total, 4.639 GiB free.

E: is FIXED (NTFS) - 104 GiB total, 4.81 GiB free.

F: is FIXED (NTFS) - 42 GiB total, 2.237 GiB free.

G: is CDROM ()

H: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}

Description: VIA Rhine II Fast Ethernet Adapter

Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_30651849&REV_78\3&61AAA01&0&90

Manufacturer: VIA Technologies, Inc.

Name: VIA Rhine II Fast Ethernet Adapter

PNP Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_30651849&REV_78\3&61AAA01&0&90

Service: FETNDISB

.

==== System Restore Points ===================

.

RP189: 4/3/2013 8:41:00 PM - Контролна точка на системата

RP190: 4/4/2013 10:25:57 PM - Контролна точка на системата

RP191: 4/5/2013 10:36:08 PM - Контролна точка на системата

RP192: 4/7/2013 3:24:16 PM - Контролна точка на системата

RP193: 4/13/2013 9:13:30 PM - Контролна точка на системата

RP194: 4/14/2013 10:28:43 PM - Контролна точка на системата

RP195: 4/20/2013 3:50:22 PM - Контролна точка на системата

RP196: 4/27/2013 8:56:15 PM - Контролна точка на системата

RP197: 4/28/2013 9:16:25 PM - Контролна точка на системата

RP198: 4/29/2013 10:09:17 PM - Контролна точка на системата

RP199: 5/2/2013 4:50:01 PM - Контролна точка на системата

RP200: 5/4/2013 2:14:55 PM - Контролна точка на системата

RP201: 5/6/2013 12:44:59 PM - Контролна точка на системата

RP202: 5/11/2013 12:06:13 PM - Контролна точка на системата

RP203: 5/12/2013 1:37:10 PM - Контролна точка на системата

RP204: 5/13/2013 7:02:41 PM - Контролна точка на системата

RP205: 5/17/2013 7:39:18 PM - Контролна точка на системата

RP206: 5/18/2013 9:02:08 PM - Контролна точка на системата

RP207: 5/19/2013 9:43:43 PM - Контролна точка на системата

RP208: 5/24/2013 5:21:50 PM - Контролна точка на системата

RP209: 5/25/2013 7:26:54 PM - Контролна точка на системата

RP210: 5/26/2013 8:30:33 PM - Контролна точка на системата

RP211: 5/28/2013 6:32:12 PM - Контролна точка на системата

RP212: 6/1/2013 3:24:42 PM - Контролна точка на системата

RP213: 6/2/2013 4:14:14 PM - Контролна точка на системата

RP214: 6/4/2013 6:00:44 PM - Removed IObit Apps Toolbar v7.0.

RP215: 6/5/2013 9:14:31 PM - Контролна точка на системата

RP216: 6/8/2013 1:44:45 PM - Контролна точка на системата

RP217: 6/9/2013 5:28:06 PM - Контролна точка на системата

RP218: 6/11/2013 9:10:45 PM - Контролна точка на системата

RP219: 6/12/2013 9:44:13 PM - Контролна точка на системата

RP220: 6/15/2013 12:56:19 PM - Removed IObit Apps Toolbar v7.1.

RP221: 6/16/2013 5:09:05 PM - Контролна точка на системата

RP222: 6/18/2013 7:42:17 PM - Контролна точка на системата

RP223: 6/19/2013 10:50:09 PM - Контролна точка на системата

RP224: 6/21/2013 9:06:08 PM - Контролна точка на системата

RP225: 6/23/2013 3:55:29 PM - Контролна точка на системата

RP226: 6/26/2013 9:23:46 PM - Контролна точка на системата

RP227: 6/28/2013 9:01:50 PM - Контролна точка на системата

RP228: 6/29/2013 9:42:26 PM - Контролна точка на системата

RP229: 6/30/2013 10:19:25 PM - Контролна точка на системата

.

==== Installed Programs ======================

.

Adobe Acrobat 5.0

Adobe Flash Player 11 ActiveX

Adobe Reader 7.0

Advanced SystemCare 6

Arbortext IsoView 7.0

ArcSoft PhotoImpression 4

Ask Toolbar

ASUS Enhanced Display Driver

C-Media 3D Audio

Canon MP Navigator EX 2.0

Canon MP540 series MP Drivers

Canon MP540 series User Registration

Canon Utilities Easy-PhotoPrint EX

Canon Utilities My Printer

Canon Utilities Solution Menu

CD_DRV_78

DAEMON Tools Pro

Daum PotPlayer 1.5.32007

FlexType 2K

GOM Player

Google Chrome

Image Plugin

Inkjet Printer/Scanner Extended Survey Program

IObit Apps Toolbar v7.2

Java 2 Runtime Environment Standard Edition v1.3.1

Java Auto Updater

Java Servlet Development Kit 2.0

Java 6 Update 26

K-Lite Codec Pack 8.4.0 (Full)

KWorld PVR-TV 7131 Teletext

KWorld PVR-TV 7131 WDM Drivers

KWorld PVR-TV 7131/5 Utilities

Malwarebytes Anti-Malware, Іµрсёя 1.75.0.1300

MetaWeb

Microsoft Kernel-Mode Driver Framework Feature Pack 1.7

Microsoft Office XP Professional

MSN

NVIDIA Drivers

Platform

PVR Plus

SA Dictionary 2002 Professional

Skype Click to Call

Skype™ 5.8

Software Update for Web Folders

Sony Ericsson PC Suite

SopCast 3.5.0

Sopcast Ask Toolbar Updater

StartNow Toolbar

TIFF Viewer Plugin

VIA Platform Device Manager

VIVACOM 3G USB Modem

VLC media player 2.0.1

WebTrance2 (ґµёЅст°»ёр°Ѕµ)

Windows Bulgarian Interface Pack

Windows Internet Explorer 8

ррхёІ°тѕр WinRAR

µTorrent

.

==== Event Viewer Messages From Past Week ========

.

6/30/2013 2:57:13 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

6/23/2013 3:10:23 PM, error: Service Control Manager [7023] - The Center Task service terminated with the following error: A dynamic link library (DLL) initialization routine failed.

6/23/2013 3:10:23 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the VIVACOM 3G USB Modem. OUC service to connect.

6/23/2013 3:10:23 PM, error: Service Control Manager [7000] - The VIVACOM 3G USB Modem. OUC service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

6/23/2013 3:10:08 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}

.

==== End Of File ===========================

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 8.0.6001.18702

Run by mihov at 23:07:33 on 2013-06-30

Microsoft Windows XP Professional 5.1.2600.2.1251.1.1033.18.255.50 [GMT 3:00]

.

============== Running Processes ================

.

C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\System32\SCardSvr.exe

C:\WINDOWS\system32\RunDll32.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\KWorld Multimedia\PVR Plus\TVR\Scheduled.exe

C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

C:\Program Files\Ask.com\Updater\Updater.exe

C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Datecs\FlexType 2K\FType2K.exe

C:\Program Files\VIA\RAID\raid_tool.exe

C:\Program Files\Application Updater\ApplicationUpdater.exe

C:\WINDOWS\ATKKBService.exe

C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe

C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe

C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe

C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe

C:\Documents and Settings\All Users\Application Data\VIVACOM 3G USB Modem\OnlineUpdate\ouc.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\ntvdm.exe

C:\Documents and Settings\mihov\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://google.bg/

uURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.2\iobitappsToolbarIE.dll

BHO: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.2\iobitappsToolbarIE.dll

BHO: AcroIEHlprObj Class: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll

BHO: CGMFragment Class: {0695F52A-89A2-4246-81B5-AFAD2D3B865F} - c:\program files\ematek\metaweb\MetaBHO.dll

BHO: WebCGMHlprObj Class: {56B38F40-4E70-11d4-A076-0080AD86BA2F} - c:\windows\system32\cgmopenbho.dll

BHO: StartNow Toolbar Helper: {6E13D095-45C3-4271-9475-F3B48227DD9F} - c:\program files\startnow toolbar\Toolbar32.dll

BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - c:\program files\iobit\advanced systemcare 6\browerprotect\ASCPlugin_Protection.dll

BHO: Sopcast Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

TB: Sopcast Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

TB: StartNow Toolbar: {5911488E-9D1E-40ec-8CBB-06B231CC153F} - c:\program files\startnow toolbar\Toolbar32.dll

TB: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.2\iobitappsToolbarIE.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [DAEMON Tools Pro Agent] "c:\program files\daemon tools pro\DTAgent.exe" -autorun

uRun: [Google Update] "c:\documents and settings\mihov\local settings\application data\google\update\GoogleUpdate.exe" /c

uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background

uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart

mRun: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [nwiz] nwiz.exe /install

mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit

mRun: [PVR Agent] c:\program files\kworld multimedia\pvr plus\tvr\Scheduled.exe

mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon

mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon

mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe"

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [searchSettings] "c:\program files\common files\spigot\search settings\SearchSettings.exe"

mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\flexty~1.lnk - c:\program files\datecs\flextype 2k\FType2K.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\remote~1.lnk - c:\program files\kworld multimedia\pvr-tv 7131 utilities\P3XRCtl.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\viarai~1.lnk - c:\program files\via\raid\raid_tool.exe

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

mPolicies-Explorer: NoDriveTypeAutoRun = dword:145

IE: Е&кспортирай в Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000

IE: {60237576-b24c-4ba9-9740-c9f3ec9db557} - {EAADF17C-B6EA-4511-8549-A67CFD406EAF} - c:\program files\skycode\webtrance2\wt2ie.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.3.1/jinstall-131-win.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{655C91E3-E116-4774-9B18-18CC01A12FA7} : NameServer = 92.247.126.2,8.8.8.8

TCP: Interfaces\{B5ECC26D-F65C-4BE8-83BA-C7F2812698C9} : DHCPNameServer = 192.168.1.1

Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

.

============= SERVICES / DRIVERS ===============

.

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2012-4-14 233024]

R3 Cap713x;Philips Cap713x Video Capture;c:\windows\system32\drivers\Cap713x.sys [2012-4-14 672128]

R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2012-6-8 76544]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-6-30 22856]

R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-6-30 40776]

R3 slnt;RTL8139D PCI Fast Ethernet Adapter;c:\windows\system32\drivers\slnt.sys [2012-4-14 18004]

S1 StarPort;StarPort Storage Controller;c:\windows\system32\drivers\starport.sys --> c:\windows\system32\drivers\StarPort.sys [?]

S3 CoachVid;CoachVid;c:\windows\system32\drivers\CoachVid.sys [2012-4-14 45344]

S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2012-6-8 11136]

S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2012-6-8 95744]

S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2012-6-8 67584]

S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2012-6-8 27520]

.

=============== Created Last 30 ================

.

2013-06-30 20:01:23 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2013-06-30 19:40:41 -------- d-----w- c:\documents and settings\mihov\application data\Malwarebytes

2013-06-30 19:40:31 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes

2013-06-30 19:40:28 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-06-30 19:40:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-06-15 09:56:36 -------- d-----w- c:\documents and settings\mihov\application data\Search Settings

2013-06-15 09:56:31 -------- d-----w- c:\program files\Application Updater

2013-06-15 09:56:30 -------- d-----w- c:\program files\IObit Apps Toolbar

2013-06-12 15:32:39 17018248 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe

.

==================== Find3M ====================

.

2013-06-12 15:32:46 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-06-12 15:32:46 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe

.

============= FINISH: 23:08:52.51 ===============

B-boy/StyLe/ · Юни 30, 2013

Здравейте,

Нека да направим една диагностика, но си мисля, че причината са тулбарите които сте накачулили, програми за оптимизация, FlexType и прочие.

Отворете Control Panel => Add or Remove Programs и деинсталирайте следните програми:

Advanced SystemCare 6
Ask Toolbar
IObit Apps Toolbar v7.2
Sopcast Ask Toolbar Updater
StartNow Toolbar

След това:

СТЪПКА 1

http://free4world.free.fr/images/adwcleaner.png Изтеглете и стартирайте програмата AdwCleaner (by Xplode).

Затворете всички стартирани програми и браузъри
Кликнете два пъти върху adwcleaner.exe за да стартирате инструмента.
Този път маркирайте Delete
Вашият компютър ще се рестартира автоматично. Текстовия файл ще се отвори след рестарта.
Моля, да публикувате съдържанието на този лог в отговора си
Можете да намерите лога,който автоматично се запомня тук C:\AdwCleaner[s1].txt.

СТЪПКА 2

http://imageshack.us/a/img841/7292/thisisujrt.gif Моля изтеглете Junkware Removal Tool на вашия десктоп.

Спрете временно работата на защитните програми.
Стартирайте инструмента JRT.exe
Ще се отвори ДОС прозорец. Натиснете което и да е копче от клавиатурата.
Затворете излишните приложения и всички браузъри и изчакайте проверката да завърши.
Ще се появи лог файл (който можете да намерите и ръчно на десктопа с името JRT.txt).
Моля копирайте съдържанието на лог файла в следващия си пост.

СТЪПКА 3

http://www.bleepstatic.com/download/product-logos//2012/05/25/icon1337952077.png
Моля изтеглете Farbar Service Scanner и я стартирайте.

Сложете всички отметки и натиснете бутона "Scan".
Ще се създаде лог файл с името (FSS.txt) в папката откъдето стартирате инструмента.
Прикачете лог файла в следващия си пост.

СТЪПКА 4

http://www.bleepstatic.com/download/product-logos//2012/05/25/icon1337954655.png

Изтеглете MiniToolBox.exe и го запазете на десктопа.
Сложете всички отметки и натиснете Go.
Прикачете лог файла Result.txt в следващия си пост.

СТЪПКА 5

http://www.bleepstatic.com/download/product-logos//2012/09/27/icon1348768721.jpg
Изтеглете Security Check от screen317 от този линк или и го запаметете на вашия десктоп.

Кликнете два пъти върху SecurityCheck.exe и следвайте инструкциите.
Накрая, автоматично ще се отвори текстов документ, наречен checkup.txt, моля прикачете го в следващия ви коментар в тази тема.

СТЪПКА 6

http://download.exdat.com/dl-ico_1-53944839-5270.png

Изтеглете тази специална версия на RKill.exe и го запазете на вашия десктоп.
Стартирате програмата с двоен клик върху файла и изчакайте търпеливо.
След приключване на проверката ще се генерира лог файл с извършените процедури.
Прикачете лог файла в следващия си пост.

Поздрави!

pipo79 · Юли 1, 2013

# AdwCleaner v2.303 - Logfile created 07/01/2013 at 22:49:30

# Updated 08/06/2013 by Xplode

# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)

# User : mihov - ABC-BC4C32C8E6C

# Boot Mode : Normal

# Running from : C:\Documents and Settings\mihov\My Documents\Downloads\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

Folder Deleted : C:\DOCUME~1\mihov\LOCALS~1\Temp\AskSearch

Folder Deleted : C:\Program Files\Common Files\spigot

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0388404D-6072-4CEB-B521-8F090FEAEE57}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13D095-45C3-4271-9475-F3B48227DD9F}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5911488E-9D1E-40EC-8CBB-06B231CC153F}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key Deleted : HKCU\Software\Zugo

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Google Chrome v27.0.1453.116

File : C:\Documents and Settings\mihov\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[s1].txt - [2079 octets] - [01/07/2013 22:49:30]

########## EOF - C:\AdwCleaner[s1].txt - [2139 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 4.9.4 (05.06.2013:1)

OS: Microsoft Windows XP x86

Ran by mihov on Ї®Ґ¤Ґ«ЁЄ 07/01/2013 at 22:58:46.62

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5ACAA9D2-CAB3-4ED1-A8EF-36477E348356}

~~~ Files

~~~ Folders

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Ї®Ґ¤Ґ«ЁЄ 07/01/2013 at 23:06:38.76

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Farbar Service Scanner Version: 27-06-2013

Ran by mihov (administrator) on 01-07-2013 at 23:09:36

Running from "C:\Documents and Settings\mihov\My Documents\Downloads"

Microsoft Windows XP Professional Service Pack 2 (X86)

Boot Mode: Normal

****************************************************************

Internet Services:

============

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo.com is accessible.

Windows Firewall:

=============

Firewall Disabled Policy:

==================

System Restore:

============

System Restore Disabled Policy:

========================

Security Center:

============

Windows Update:

============

wuauserv Service is not running. Checking service configuration:

The start type of wuauserv service is set to Disabled. The default start type is Auto.

The ImagePath of wuauserv service is OK.

The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

BITS Service is not running. Checking service configuration:

The start type of BITS service is set to Disabled. The default start type is Auto.

The ImagePath of BITS service is OK.

The ServiceDll of BITS: "C:\WINDOWS\system32\qmgr.dll".

Windows Autoupdate Disabled Policy:

============================

File Check:

========

C:\WINDOWS\system32\dhcpcsvc.dll

[2007-01-17 00:05] - [2007-01-17 00:05] - 0112128 ____A (Microsoft Corporation) 3F15A1DBD86F7BDAF404648282D11ECE

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\netbt.sys

[2004-08-04 02:14] - [2004-08-04 02:14] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys

[2007-01-17 00:07] - [2007-01-17 00:07] - 0360704 ____A (Microsoft Corporation) 9941382A1C2289F5FB4C87D0DAACC21C

C:\WINDOWS\system32\Drivers\ipsec.sys

[2004-08-04 02:14] - [2004-08-04 02:14] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll

[2004-08-04 03:56] - [2004-08-04 03:56] - 0045568 ____A (Microsoft Corporation) 7379DE06FD196E396A00AA97B990C00D

C:\WINDOWS\system32\ipnathlp.dll

MiniToolBox by Farbar Version: 16-06-2013

Ran by mihov (administrator) on 01-07-2013 at 23:11:15

Running from "C:\Documents and Settings\mihov\Desktop"

Microsoft Windows XP Service Pack 2 (X86)

Boot Mode: Normal

***************************************************************************

========================= Flush DNS: ===================================

Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.

No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

VIA Rhine II Fast Ethernet Adapter = Local Area Connection (Disconnected)

RTL8139D PCI Fast Ethernet Adapter = Local Area Connection 2 (Connected)

# ----------------------------------

# Interface IP Configuration

# ----------------------------------

pushd interface ip

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp

set dns name="Local Area Connection 2" source=dhcp register=PRIMARY

set wins name="Local Area Connection 2" source=dhcp

popd

# End of interface IP configuration

Windows IP Configuration Host Name . . . . . . . . . . . . : abc-bc4c32c8e6c Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : vivacom-adslEthernet adapter Local Area Connection 2: Connection-specific DNS Suffix . : vivacom-adsl Description . . . . . . . . . . . : RTL8139D PCI Fast Ethernet Adapter Physical Address. . . . . . . . . : 00-18-46-01-0E-C1 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.3 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 DHCP Server . . . . . . . . . . . : 192.168.1.1 DNS Servers . . . . . . . . . . . : 192.168.1.1 Lease Obtained. . . . . . . . . . : понеделник, Юли 01, 2013 10:52:01 PM Lease Expires . . . . . . . . . . : вторник, Юли 02, 2013 10:52:01 PMServer: UnKnown

Address: 192.168.1.1

Name: google.com

Addresses: 173.194.39.198, 173.194.39.192, 173.194.39.200, 173.194.39.193

173.194.39.194, 173.194.39.195, 173.194.39.206, 173.194.39.199, 173.194.39.196

173.194.39.201, 173.194.39.197

Pinging google.com [173.194.39.198] with 32 bytes of data:Reply from 173.194.39.198: bytes=32 time=25ms TTL=58Reply from 173.194.39.198: bytes=32 time=24ms TTL=58Ping statistics for 173.194.39.198: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 24ms, Maximum = 25ms, Average = 24msServer: UnKnown

Address: 192.168.1.1

Name: yahoo.com

Addresses: 98.139.183.24, 206.190.36.45, 98.138.253.109

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:Reply from 98.139.183.24: bytes=32 time=168ms TTL=52Reply from 98.139.183.24: bytes=32 time=170ms TTL=52Ping statistics for 98.139.183.24: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 168ms, Maximum = 170ms, Average = 169msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================

Interface List

0x1 ........................... MS TCP Loopback interface

0x2 ...00 18 46 01 0e c1 ...... RTL8139D PCI Fast Ethernet Adapter - Packet Scheduler Miniport

===========================================================================

Active Routes:

Network Destination Netmask Gateway Interface Metric

0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 30

127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1

192.168.1.0 255.255.255.0 192.168.1.3 192.168.1.3 30

192.168.1.3 255.255.255.255 127.0.0.1 127.0.0.1 30

192.168.1.255 255.255.255.255 192.168.1.3 192.168.1.3 30

224.0.0.0 240.0.0.0 192.168.1.3 192.168.1.3 30

255.255.255.255 255.255.255.255 192.168.1.3 192.168.1.3 1

Default Gateway: 192.168.1.1

===========================================================================

Persistent Routes:

None

========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)

Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [90112] (Microsoft Corporation)

Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [90112] (Microsoft Corporation)

Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:

==================

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (06/30/2013 03:15:25 PM) (Source: crypt32) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/30/2013 03:15:24 PM) (Source: crypt32) (User: )

Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (06/30/2013 03:15:24 PM) (Source: crypt32) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/30/2013 03:15:24 PM) (Source: crypt32) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/30/2013 02:39:22 PM) (Source: Application Hang) (User: )

Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

System errors:

=============

Error: (07/01/2013 10:54:04 PM) (Source: Service Control Manager) (User: )

Description: The HTTP SSL service failed to start due to the following error:

%%1053

Error: (07/01/2013 10:54:04 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.

Error: (07/01/2013 10:52:53 PM) (Source: Service Control Manager) (User: )

Description: The VIVACOM 3G USB Modem. OUC service failed to start due to the following error:

%%1053

Error: (07/01/2013 10:52:53 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the VIVACOM 3G USB Modem. OUC service to connect.

Error: (07/01/2013 10:52:53 PM) (Source: Service Control Manager) (User: )

Description: The Center Task service terminated with the following error:

%%126

Error: (07/01/2013 10:52:18 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: DCOM got error "%%1058" attempting to start the service BITS with arguments ""

in order to run the server:

{4991D34B-80A1-4291-83B6-3328366B9097}

Error: (07/01/2013 10:40:53 PM) (Source: DCOM) (User: ABC-BC4C32C8E6C)

Description: DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""

in order to run the server:

{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (07/01/2013 10:38:49 PM) (Source: Service Control Manager) (User: )

Description: The HTTP SSL service failed to start due to the following error:

%%1053

Error: (07/01/2013 10:38:49 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.

Error: (07/01/2013 10:37:51 PM) (Source: Service Control Manager) (User: )

Description: The VIVACOM 3G USB Modem. OUC service failed to start due to the following error:

%%1053

Microsoft Office Sessions:

=========================