Terminál Fórum https://forum.technokrata.hu/forum/ |
|
STELL Segit https://forum.technokrata.hu/forum/viewtopic.php?f=15&t=38893 |
Oldal: 3 / 16 |
Szerző: | stell [ szer. júl. 31, 2013 8:51 ] |
Hozzászólás témája: | Re: STELL Segit |
Idézet: nem tudtam képet csinálni a security essentials még észlel egy trójait.. Keppek>>Mar nem baj, hagyd ugy. security essentials>>holl?? Meg kitoroljuk a Temp mappakat, es a rendszer visszaalitasi pontokat, erre hasznald ezt az utasitasamait. Tolds le az asztalra az OTL programot http://oldtimer.geekstogo.com/OTL.exe Futtasd mint rendszergazda, az bealitasokat hagyd ugy ahogy vannak, ha ott van hogy 64 bites, akkor ide tegyel pipat, az aljara az ablakjaba masold be ezt a kodot, az kod szo nelkul Es klkelj az RUNFIX-gombra, a naplojat tedd majd ide. Kód: :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp ipconfig /flushdns /c :Commands [purity] [emptytemp] [clearallrestorepoints] |
Szerző: | dori0227 [ szer. júl. 31, 2013 8:45 ] |
Hozzászólás témája: | Re: STELL Segit |
a security essentials még észlel egy trójait |
Szerző: | dori0227 [ szer. júl. 31, 2013 8:43 ] |
Hozzászólás témája: | Re: STELL Segit |
nem tudtam képet csinálni az elején mert nem jelent meg. mindig a google helyett jelent meg és most nem |
Szerző: | dori0227 [ szer. júl. 31, 2013 8:42 ] |
Hozzászólás témája: | Re: STELL Segit |
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 5.2.9 (07.30.2013:1) OS: Windows 7 Ultimate x64 Ran by User on 2013.07.31. at 9:36:37,84 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\Users\User\AppData\Roaming\opencandy" Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{000579A7-61C9-46F4-B6B4-9C06EED75D32} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{02D8133D-B714-452A-A179-B79D8351254D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{02F89FC7-E160-46D8-91E1-D4154AE3A022} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{030E1173-DD0D-4003-8426-590F7CBA520E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{047C1F3A-3FE6-4BDB-94BF-46FFBF074D75} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{04B51549-6E9F-4FAD-ACD3-9AA81B36F6B5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0513B306-55E0-49DA-884E-F052868CAB27} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{05BBC71F-C883-4FD1-9A76-686EA95B9F79} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{05CBFE74-C499-4EBA-95CC-83E7F499DCE7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0936FF58-B1FE-4E6B-BB78-E5C1C430F914} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{09930750-045C-4525-A50C-0E2F09D7E535} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{09AA6141-F5E2-4466-B383-A6A6D245D172} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0A0473EA-36DC-45AF-AD59-6416D94158A4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0AF1B523-4768-4988-BC86-C148F2BC6E54} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0B46D875-CB8C-4FA1-8396-AFA7D0C26F5A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0B727077-7A67-41FE-8E2C-65D65EF313DD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0BFDCD20-1E66-40F8-A50B-4AA9E1CF6462} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0C648A1E-8B53-4A1F-A7B3-79E60DD6CE28} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0CEF5D34-00C1-4A91-8286-159ACEF353AA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0EC84236-16EB-435F-8DF9-02F8B2817FA3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0ED84E2E-2367-46B8-B054-859E2EEDF92D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0EFF1750-EE64-45E3-AE05-687345566BD0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0F7E5063-3563-41E0-931B-5810478A9F14} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0FA711E2-1432-4192-AEAE-5F086C9CAF79} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{0FA896E1-002D-4F9E-99EB-F014BC19CD00} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1058565D-5E8E-4F1D-9393-9E7BD831D9F4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{106EE828-7693-4F41-AE03-573B546285CA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{12E2BC9A-9FC9-439A-B223-ABF2C2A0AA27} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1382B6A8-C267-41D0-BD59-846BF2A050B8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{13E72988-A652-4F19-A50B-DECDFECC93E5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{142ED358-800D-4561-9682-6A84042F7611} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{14D599F2-804E-4A92-8F40-B7E7A8BAC253} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{14ECEA54-C7A5-4CF9-A8FC-D08A8B4BDCFF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1533459F-CCF2-49D7-8F88-995DBE00EF62} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{156BFED4-979D-4B29-AD22-A2B32E3F269C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{15C83D8A-BAC3-4955-863C-98CD252484B4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{16462268-2AB9-4FAC-8AED-B469779DB763} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{17887484-362E-4D1D-9FCC-568E49712BDF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{17A729F4-A7BD-4759-B4AF-B0EE5449FF53} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1812684D-11D9-4F04-808B-C3109C509F64} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{182F90A4-B354-49B7-AEDA-143CB79D42B2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{18376643-AB8B-49BD-B723-ED877D0BEB6C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{18D6390A-2071-4E7B-B1CA-2DD2BD94FE92} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{19694FD3-8508-44A8-B5FD-47D31A93FAB6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{196A277C-7A7D-4B82-9882-9E18A4269CC4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1CAFF8D9-E66E-47AF-89D8-0AD7C0B8A9C3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1D31AF22-3D5B-4AF5-BB6C-46E6B0E79CDB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1EE450A6-D971-4B08-9C44-755139C27EDD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1F4428DD-F0C7-43FB-AADA-FE333DD1A388} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1F4A726E-0F35-4402-A43A-E3C6EEB8CB64} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1F540379-0A7C-4BDB-872C-75FC29A46687} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{1F7472FE-F00F-44E4-B053-53B9BB11B271} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{204B9C4F-64DE-4A0E-8C35-EEEE4340597E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{20AF432A-A04D-4C30-9F45-1E1B36B96265} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2153C2FF-AB6F-4213-88F3-40113872CA4D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{21D1D4E8-16A9-41FF-9D83-55DE1F0D5444} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{224F2B3C-BDE6-48E7-B1A6-415D0187382F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{244361E5-0719-40F1-BC87-227E2D221382} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2470FEB5-3C4F-4D2F-B1F5-CA85C529D612} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{25660315-811D-4FF0-A776-6B201B123670} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{258AC6ED-7793-44A1-86F9-AAC26E3CEDF6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{26CA3A1D-4BB5-4F51-85D3-D08D980C5578} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{26D25721-E2CE-478C-B5D8-2745324EBE8C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{274FE6FF-F284-48EC-9400-0167F875B335} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{280C6D92-5ADA-4CA5-A872-9242986F7C83} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{28952A38-2527-487D-AAE1-3C689656A3E6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{28CC3870-F099-44C5-A0EF-035B771C0C3F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2928B251-A1AA-491B-B41B-10B1DB94A928} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2AAE1941-9B23-4001-8FF8-3DB5CA190C9D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2B365B08-1AF4-4E3C-B636-757C4B49ED57} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2C0EF227-FE09-4E55-81B1-550B3762119B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2CA2D74A-5BF9-4CBD-AABF-1D3E7EFE59DA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2CB3C90F-6F88-42BB-8885-85634E628F2B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2CC0CF70-E7AB-4133-B51F-2AFAAE384EB9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2FDC12FE-0D4B-4DAD-BF34-EE90BD9E0E38} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{2FEC607F-99C3-4F6E-9A8C-8689AB2446C1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3169F64B-2F7A-4CBC-8E8F-C609DB3B26A7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{31B9D8DB-C581-4AC8-9CD7-B41CF6884178} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{334D42A7-027D-4F27-A60E-25798BD1939F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{33AE8AC7-DA41-42D7-A2D5-679DC31B6613} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{33C7D846-BE43-42BD-86A9-593803BA15EA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{342CFEA3-BF7E-40B4-8F4A-E2648EA84C93} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{351AF385-7F75-4B83-903F-B60F152888F7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{35EF0BE1-3E18-4710-87CD-0601FBC3A189} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{360D917B-8E99-49F1-B9D8-A2C5A4AE6B2C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3710D05A-BD30-4CCB-BBFC-BD915E1C431F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{376568F6-646E-414B-B93A-AFC5AFA400D7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{38C0C02D-D4CB-45E8-91A1-AE6B5D289417} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{38C3F376-6404-49B6-BD93-92D7D642B76F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3A8E68B8-9C32-4F15-A639-09A8F72F0213} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3ACDDBE5-6A20-4CA5-9584-F303ECA35F36} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3AD9DDC6-EC1A-4204-8F0B-7D05B5A8EF54} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3B08BE1C-7DEA-4F67-8456-BECD345D4A06} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3B92AE9D-58E3-4BD5-8147-077AD703785C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3BBD6580-F740-44FF-A884-B6979E586F05} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3C0F5D4B-BBB3-47B5-B1F9-56E1E2E29793} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3C610941-6418-4D13-9914-58005A0594E3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3CE3558C-8F08-43E7-9B68-E279E64B52B6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3D5575FC-82CD-4B45-8561-806CC32FF1E7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3D721559-F1CF-4CB6-82A9-205F00E8DC26} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{3EC3425A-52DB-447F-A7B4-3F280A995D7E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{40045BF6-B1B3-422E-B7FC-DAB1C172B28C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{40B68285-42E7-4451-A935-FAEA1ABC66B0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{41109A54-940C-4A72-A1CA-5BC0DC6ABCA7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{41B71ADA-0AFB-43B2-93AC-2AEE2366B182} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{42D05253-0657-49AB-B4C7-853426AD3FB0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{43CCD6B8-82CF-4CD5-ADD3-56D0FCD09D00} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{44B29359-07EC-47ED-8733-B085545AD34B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4566302A-F64D-4099-AEA8-5EEE27063D20} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{461C5577-5605-40DF-B028-7ACC7D1EA20A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{462C462A-E043-4556-B90C-AC9F83D51645} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{462E6DD2-9698-4795-8E0C-782212EF1A66} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{463D43CC-F16E-4779-B070-9ED60E4E495C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4668F88A-AE01-485F-B44A-BC8796939179} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{46EF4D5B-EAC9-4585-BA83-C8E574A53C6C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{47246832-5FAF-4E92-9A67-B2C7459C7BFE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{493EC51F-D6FD-49AF-94F1-FEEFD9D75B0E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4AF8F44B-9728-47F8-8D69-FB815B367864} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4B35638F-C022-4F41-9414-FE2C911A76F0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4B558C77-3725-405B-A07E-D593627A68F6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4BA92684-40CE-4914-A90F-FAFB31F08F1D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4BB54955-947D-4D9F-8643-33B8F2B9684F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4ECBEBD5-AE17-4DE5-A164-5465C091BD29} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4EDA60DF-BB30-49CB-A94D-F7330F0A914B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{4EF3D4E8-A5D8-4C21-A0C9-47FFD286EDF1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{50B9F7BB-C90B-4AF9-BC7B-4B4C62398618} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5114F888-159D-4438-A299-4CA30FA187BC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5276DDE5-7362-41A2-AC60-9932B3ED977A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{539605BA-EBB5-4389-BB06-5A70036C5054} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{54605508-E2CE-4330-9737-B1ECD63E376A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{54FBFB0A-0EF1-4F2F-988A-44673B7CB979} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{55987E30-6DA2-46C3-B4BF-90991CB7CFD5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{55FFF454-AD1E-423B-94DA-B2F7E8810EB8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5600167E-1945-4045-B6B9-6EFF05619AEC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{56887B3B-6EBF-4C20-8A1F-96AF3EBB1020} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{569239C5-7D7A-4830-8A4A-EB9E1EB65BAF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{595508DA-C414-497A-BB4F-BDEA96E2F510} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5A40B12E-8A01-48B0-A124-1769CF5FFB2C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5A91C884-6497-4728-B96F-92EF3C499388} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5ABDD6C6-88EE-4B5D-8DDA-AEF83C496E81} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5BEA19D8-3A12-4681-A218-175A7F8A508B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5C55F226-E16E-404C-889F-1FB582AD2C89} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5C62A008-4252-46AA-8EF4-07B5A68FAD2D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5C9EE167-D644-4B5A-BEE0-994A10417124} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5CF830A2-C533-4584-93EB-C41D3965E577} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5E594FD4-DAE1-4D82-AFD8-F60A38505192} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5EDB419B-485B-452A-B977-29BD7BB2F17F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5EDB44C2-DC87-46E9-9CA5-374A8B22A4E8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{5FCE166B-F738-40F9-85DF-0EE8BFCDFA60} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{60CD81FD-AE2B-432F-884B-B3CC05D85D03} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{62008ABB-3F71-4811-AAEE-ACD6FF0A8F45} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{62A04B75-C9CC-4CA1-B114-960DE0B95154} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6384817D-81EA-4BA5-B062-973FB08F86F2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{664D868B-40A5-4CA0-A1EC-C95D7DEE877D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{671F0D57-AB63-4F4C-96D2-6586B0B61CEB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{681582A3-ABD4-4055-BDB6-294CF6162746} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{687BCE25-2DD7-48FB-A9A6-4C7AFAD12928} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{69654721-FD42-48FE-B995-2D0A91589DE1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6999BD4A-B6B7-4972-A038-D9C1CE9E2EC9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6A5E1D4D-C031-4923-AF25-52B88D38813C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6BEC345F-7A15-4FA4-A864-9FF5570221FD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6C22D3B8-3E44-4BC8-8F4B-C7481A91466C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6C89AB1F-B59D-4CE2-9E3E-8AF2CCCA6056} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6CD79C95-ECAA-4B59-96D4-FE5DF5DE0A5D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6CE14516-40DE-4260-92D6-F031AC4F0296} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6D30B999-65C5-4A1D-8950-8F568C92E91F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6E3E8FB4-9E91-4105-93F1-08C3B2DFD8B9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6F1D0236-56DC-4DDB-A7FD-E049EDAC8545} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{6FA600A8-9079-4833-80E1-94569AFD54AE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7059B9A2-A520-4250-9314-1913EC6345AE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{709BE988-4F6F-40AF-89BB-4A6EAFD8F196} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{713582F2-4ED4-4689-9C8B-7976D7BA3E4A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{71DBE677-3D0E-4A89-B4CC-869F7EFED575} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{74FCC928-BBCE-424A-9370-CA259A87C089} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{75384E38-6945-401D-9A74-3C531CCB64AC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{77709DEA-F633-4929-BC6E-15CFCF413B14} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7813E3C6-ABD4-4946-9867-1744D347F61E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{784BD244-3ADF-4B97-A438-A83FE357E00E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{79130E3C-68C7-4DB1-A8A7-9234E1F92261} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{79632BBD-55B5-40F4-9ED6-8DE48FE17D17} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{79D8C6EB-ADF7-4079-A1D5-7C2C95F6A943} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7A13C339-57C4-4BC9-9272-60724D590763} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7AC54D5C-BFA6-4830-8C99-80B41D794183} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7B7C7B92-D8AF-4AC7-9010-FC1CDB62F68E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7C44B46E-EAF7-476F-86AF-57D364663657} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7CD8B8AE-7F95-4871-8840-BACFF825377A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7D06BF9C-1C24-4071-A598-CDBE7D798080} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7D7DC73A-E8E5-44E2-B3A5-046D49CC04A3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7E049480-F448-418F-8C90-FF4EF651CBC5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7E9B9D00-B8D7-4CE5-8497-E7B160846218} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7F64F6DE-A7B2-41D6-BE18-76698B63A8C6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{7FFB5736-737D-45AB-B6BD-DBEF8300E57E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8006A03F-EC6B-4277-BE08-F133055850E5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{80390CFE-50CB-4568-9152-6E85EF0C8876} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{804EB7D4-F8BC-4C96-9F98-48914F649E6A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{814CD989-FCCB-4E00-AAE3-859908BEAB78} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8175A601-63A9-4D47-A03D-B2FE9A8CD85D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8488B909-666A-4CAF-A1DC-D233CDD7C724} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{84DCFF02-49EA-4913-9A2D-E42018DC9344} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8551839A-B2F7-474E-A764-2E43C11F3F5B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{86C1CE1B-5A43-4DE9-BF8C-A0A997346C54} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{871A5048-DC37-4B94-A339-16046C821517} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{880B7995-DD68-4781-A6E4-2AD01EFDB5E9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{88277F46-8743-4109-A462-80F6B852880C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{889F5AD7-A5C3-4E8B-91FA-546D8DA05619} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{895984B3-1820-4397-ACF3-8C18722A2181} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{89A178F6-FB94-4D2A-B1A4-90D06C4409E2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8A71BF67-4901-4B9B-B009-23D1527C45CE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8A71D6AF-57D8-44D3-BB46-33E169F79F9D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8A7A1EAC-38E7-4581-95A1-B8C0134852E6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8A900B96-3708-4AED-9C51-9FA3EDFB727E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8AF7A1FC-8FFB-4A3F-AF4E-5FEB235ECFC2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8B179B1B-DA7E-4967-A79C-17676CEFE5E4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8B9E5A05-785C-4C26-9B39-49742F58A017} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8BAD6EA2-A863-4E16-A1EC-1908612C0390} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8C3988CD-3996-48FE-B28E-B2E30844E18A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8C445AB5-811D-44B9-A345-3C311395036C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8CA5742A-F847-4124-981D-74F47F0C53DE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8CFCABEA-F3B3-449E-9ED1-459015B169D8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8D12BFB1-783B-4930-B654-53F802F0036C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8D607792-78EC-4704-83A5-1F456AA14340} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8D8C728F-C897-4401-9BE5-2CF42D45284B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8DA32FED-D137-41D5-9952-E8398E5C4E66} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8E2F6883-E759-40F8-9477-D0B372868E75} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8E4F9D24-0E10-4515-BD3F-1C376AEA34B2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{8F87F4B5-DC4F-45CB-A849-A5D0945C1AEC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{904E5593-E2AC-4FBC-9FF6-51D224ABBB80} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9058A676-35AE-40E3-88D4-5DB64F29F98E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{90925FFC-4E2F-4AF3-86DE-DC66433832B1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{916EFE0A-085D-4B3A-B096-A7B09461D1F6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{92A202B7-51F0-40F3-B545-494E1661DEA9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{92F8EEA6-FDC4-4F16-93D1-AB344903B5A2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{93776590-5B47-4A9F-BDDA-C5065AE1092E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{94055528-A5DC-48F6-A9D1-CAC3A15E7BB6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{94C64C01-A965-4335-A8E6-F0FA8E070139} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{94CBBDA1-A4DC-43D4-911C-89F60E1892BF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{94EEA3D7-2569-470A-BCDD-70D9A2EC8289} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{95C0CC5D-492A-4BD8-9BB6-79F83C314259} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{95EF7E36-7A52-4B62-A7D9-93461FCFB4FD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{961CAFBE-3727-41D4-8151-E7D31BF77145} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9693EB45-2414-4E28-8B46-B6011C6F9532} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9734C374-550C-44BC-A506-50DC6D54A52D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{97452DD3-C2DB-4D1F-BBB2-23AFE38F16C6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{98C8E977-0768-4D66-A4A8-13E3812D550D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9924E31D-C096-4A38-81D9-A8E0C5855958} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{99E277D1-8BE8-4248-8A94-939001CF0D2B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9A03FE94-EBC4-4EFB-BFBD-8136785CA88B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9A45D933-FE05-4DFB-962D-3B41557549A9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9A6D08C6-F51A-4503-A968-2E57ABF4C95D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9BA6B3D9-AAFA-458A-A02C-F75C778C627C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9BABF946-7AC3-44A7-B88C-CA38C819F599} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9C1BC9AA-EA32-48AF-B035-8A1EC1D6EF79} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9C346982-3ECD-4364-B9EF-FF0AE396D757} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9CC99FD8-B17A-4C92-8D83-612BA0F20D15} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9DD71DEE-69BD-4D05-9CB3-A4E46AAFA512} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9E1AD326-ECA6-41F0-A9C5-FA2582F9BD62} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9E776353-0F2F-42D4-A58D-0F6FF9F17176} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9ECC3488-3F1E-4575-9415-435C5EF3BC4A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9F17C6D3-79F3-4852-BFA4-DA43DD99F4BD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{9F824FD0-FC6C-46B0-A677-E7353A925348} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A102842D-CF5D-4D6D-BFD6-8E03DADF37B4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A11EF4DF-9C3B-4041-8C7B-B9AD8DB173D8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A1609324-570B-4408-903E-F750969F0570} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A4458CA4-AAC5-4520-AB83-04D7048236A4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A49FE7CD-490D-4CA9-B5CA-7B8001751114} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A4E0B2D3-AF66-4102-9858-34F846245664} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A4F5F663-B0D9-48A2-9289-6F03CF1D277D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A669CDBE-BD37-4B8C-A58C-B8DFCFEB4069} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A6EBA333-B8F8-4549-85DE-FAC1E93EF34C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A861BD85-3D1F-4C13-A604-13D56C96B48C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A90D04F3-1354-47C2-A224-6C02FABA3DA9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A96C1A9E-6485-4BA0-B352-E23E4FEB299A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A97AE84D-7C32-4D9C-8E4B-97E6D505426A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A9CD3ABB-81CB-44BA-88B0-20D8468E4381} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{A9FAB9C7-DEE3-46AC-9990-510D619370D5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AA3F1ACD-278E-4CCC-9B93-66E0F6E598ED} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AAB28BDC-B15D-4463-9D76-4D4BF6E81A2C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AC69C41C-A8E7-43D4-8210-CDBC20145F3E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AD5C742D-8C4E-4CAD-876D-63484FF95826} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AD77C6A3-3074-4E06-AA48-EFA4220DBD56} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AD7B5CC6-FC1F-4500-BB65-0BA8B74AAC82} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AD8F59E7-0FE8-44E1-A293-7C8FE8557D6F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{ADE79369-3886-40D3-8ACC-54FB4684A4E5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AE071DB4-4808-412A-8377-19B8CB4C381C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AE148853-585F-48E1-8A4C-5949828BDC4C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AE67DBA5-D9BA-4247-AB41-AC23AF7CCA6E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AEB02585-9B5B-4788-9D92-014DCB254062} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AED88359-A310-413D-90E4-236262B63571} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AF10056C-D25B-40B8-9E41-8D5CB2EB7837} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{AFE695C1-48B9-4406-A5A9-AE40346DA5BA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B0CD10C8-889C-44A7-B2CF-87E5F5C27309} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B1795A66-0068-4118-9D77-2391C3E549DC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B1B3C078-A6BA-47E5-8343-7CEBBA3BE36D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B1D5EC82-6BF3-4D9F-943E-34BDE2DFAE04} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B1F793A3-47FF-4F99-9A8E-A1518AC73D24} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B301E731-03E9-4A72-865B-D3E78EE3E431} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B3C9E18B-5C3D-4285-A122-2BD5CDE4D384} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B4084367-378E-424D-BB91-923AF5600AE6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B50D7758-1B2B-4474-AD45-D5F253CBF431} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B60B5E0C-4F41-47DA-A156-2E6BD033CC19} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B7F2ECF6-48DB-4C2D-8EBF-A5AD3579F6D7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{B841A81F-D5A0-4569-8DF9-BBA8237BF509} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BBF785AB-1222-46C3-8AA3-4A0909458993} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BC215270-69D3-444E-8E22-7BF7122E6FF5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BC8F8785-06DD-491D-97A6-A17C645FD5B0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BCBA331E-730B-4630-8A57-489B2F1B0011} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BCE963E2-8D29-4733-A106-A5685E9D9F79} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BD2D3983-CDF7-4033-8D66-C43390C5B42A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BD6ABA0E-B4A2-423E-8E56-E5DDCA44A14A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BD92A058-4914-4805-A8B5-64B4E649B127} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BEAC02A5-2F71-417B-A595-6B286CF44735} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BF001F22-C3D7-48A1-BDB9-D2AAB9EC9B18} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BF0F1BA4-4E09-473B-9FE3-E6656642F06B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{BFD78842-131D-4360-8395-B246367BD4DF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C022540B-8242-48D3-AA15-9492CEEB18EB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C0883BBF-3E8F-42B1-A2B0-A29534C3CA8D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C0CB4059-E047-49FB-96AF-65E0ABBCB654} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C10444AC-947C-4BE4-8EEC-CDB4D9A27CB8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C2C3761E-2D61-46F5-837F-F7D7BA76EF8B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C2EFF6DD-3726-407D-9B15-97A21FD9F757} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C3EFF33B-6DEE-4BBF-AD13-E1BD425A36AD} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C42E2ACC-E1AB-4279-9AF2-5881AAFBF5B0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C4452C4E-F0BD-41D4-B849-6B1E7DFFB76E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C48D53FE-061C-4211-BF17-40E23758C9E8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C4C24162-B98E-4093-B641-B63E455A0A8C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C53B517B-6536-4CFE-9EDD-4C870B1804B0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C6A611D2-356D-4A99-8C3F-104CFCE83517} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C70C83E9-2E04-4B57-A88A-5D60485C2BBE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C7BD61BE-43C8-433A-B78D-E3685980878E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C7EA8E34-CBE0-4A0A-808B-54CF12256BD3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C91E760B-AA38-4373-A04E-0477755FAC85} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C92BFB0E-8F40-49CB-90FB-FEC9EA8FD33D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C95E3888-1A91-4029-82D5-45584CFE9CBC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C9B6EC6A-6FBE-4482-B92B-ACE06AF5B519} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{C9F454D9-144C-48DE-ABFD-9DEFE9D5865D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CB4DA7D5-DF5F-4E68-9C6A-4E3FBBF31EE9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CC0C9716-1D61-4F90-B221-ED92C04A9AFB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CC25D832-058B-44EC-BABC-D18C64A63F29} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CC7BAA4D-BF93-4684-B0F8-576DECF6144C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CD3FFE2D-C2B0-4A05-8204-BB6D799AD708} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CE1FB3CF-4D80-40D3-99C9-33531C3A0E01} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{CE282B0C-025A-4774-A133-8B67155A2680} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D02977FB-5974-4D2A-A810-AFB8C613208A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D07ADE57-53B0-4592-837B-450035B730AC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D0908DC1-1D3F-4AC1-A17A-8B3B1A50FD64} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D0C32497-3C98-4D38-9188-2056DEE3EEAF} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D0E6D706-2C2F-4E90-AD38-D8E51AA4F73C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D1D8676E-3BB3-4536-940D-3DFED0C7A9DA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D1F87AC3-8AB1-4E4B-97EF-EB19E097F246} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D282A3FC-5960-4B2C-9479-8DBF772C9C18} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D330E6F1-9BB5-4FA5-AE5F-071AB8A9E105} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D3565597-4014-4C1B-B636-B7F107D314B9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D3AFE5AC-59BD-45A3-9E47-1C4E8C9F088E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D3F328D9-0A0C-4A3F-BF16-3B025CA508E4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D6584D47-B056-41AE-99D2-755D62500B84} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D6834703-6DB2-41E6-B4FE-EE4657FBABE3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D7A320E3-DB60-4C30-B97E-FA75554B1C81} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D821B8F8-8E3C-45C1-B91A-B5AFF6250F53} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D841E4B5-29CC-4470-99AD-F5BFB6297001} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D869C2FC-F5CA-4614-AF06-E46A51431AC2} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D8FD942D-B038-4438-B23C-4F1D7E37805A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{D996645B-C55A-45FA-973E-8AB70F97D4EC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DC7C5400-AE88-47C5-9F05-94C78728F6CC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DCAD53C9-9B64-411F-8186-2D46ABC5ABEC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DCADD36C-87C0-410B-AF1E-72D7D44565C3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DD0C2088-76E1-427F-A70A-B6AC77E6824E} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DD324830-4978-403A-9CFE-997C0F056FE1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DD6467D9-0892-4956-8092-4F9690CD76DA} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DDF3B42F-693B-4118-A2EF-BCA5F715596C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DE64B15E-1318-493D-85B3-BF2121D4F18F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DE6E486C-DC68-42A0-966D-F1133CC4837C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DF40B33E-0D76-40D5-8BFC-CD31260B92A6} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{DF5ACFFD-DB13-4444-ADD2-37E9C0D1A88D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E0521B20-C110-411B-B908-2A6BDF5D1DFB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E186FD1A-C56A-4B0F-B6D0-50D1A5FBC506} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E2CEAEB0-511D-40DE-82AD-019290B3CC7B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E3824C00-F5D2-4CFB-B190-A9F4F24DCB68} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E418B9DE-3B6B-44C7-AD50-3DA84699407B} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E4CAA2DF-012C-46EB-A6C8-1892975472E4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E4E528FF-B4CD-4211-BCA3-7D2205F2209D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E5ADFF91-4C04-40F1-BD92-E1F477914599} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E6EFCD4B-483F-4FAE-B823-E7057452328A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E76803DB-53F4-4EBF-859C-732C537F26F1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E7A6CF10-79F6-4F6F-9902-7E6419D939E5} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E7CE8184-9943-428F-BC99-1BA9C03036E3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E909533F-3B1B-4667-A793-880AEB1FAAED} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E955FD69-1164-47F2-92DB-25977BAC77E7} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E98CAA55-3444-46C1-A91D-2365DD7501EB} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E9F849AA-4728-447B-9089-788A2AA473E8} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{E9F9B763-775A-4077-BCC4-617545FA4952} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EA31134A-CE29-408D-95E7-F03404B84030} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EAD78101-DBED-466C-A30B-4425FC6635E9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EBD01168-CBAE-493A-B625-683DE2934958} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{ECB15E07-0926-4143-ADE4-A58BF4D6D5D9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EDE64351-3913-4DF8-99BB-6787E6B84666} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EE6B7F7F-3AAE-4637-BA33-86735D24F223} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EFB8F994-5BCC-4063-A3AE-6D0E851183B1} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{EFF2C622-53DF-479F-91A9-75A3610198C9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F03D0C67-4649-4415-A52E-46C957B0A1F3} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F05FD168-BEB7-413F-826E-BE0F32421DAC} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F20D99E3-4612-42C8-8772-4E0D97EBED74} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F397D6AA-3099-42E5-B453-B298ABA68333} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F3C9C1FF-52C8-439F-ADF6-D054A9DEB9F4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F42155B1-F2B7-45D7-BDC0-6CFC8205732D} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F4B9899F-4496-4819-BB81-A9563BC02D8C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F51149FA-20FD-4928-9CF6-E57EC8725D05} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F5705B2E-20F2-4765-84E0-F1674E77BA4C} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F59705A9-A976-4AED-8888-3FFF1D4E06B4} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F5B35A55-8606-470E-97CA-B9F28503E9F0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F65C4E53-9936-4C63-B585-20BAEF2973DE} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F774DD17-4DF9-4A53-B383-0EB06BB7C4B0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{F90C3E08-0DCF-48AF-9C24-D5B1750ADC20} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FA76768F-43E9-4BB1-A269-B567AC6EF1B9} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FAD06255-0754-486C-A02A-E4F87B14D414} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FBD06FB1-4993-4077-8B9A-D63764E15657} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FBF53BFC-E10D-422A-A234-893A678FB6E0} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FC68304C-67F2-4338-9AC5-2CF396E53A1F} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FDEAD011-997D-4B02-88E7-F8C4E94B679A} Successfully deleted: [Empty Folder] C:\Users\User\appdata\local\{FE258AAD-92C3-4586-9848-9F5B3673FEC4} ~~~ FireFox Successfully deleted: [File] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\user.js Successfully deleted: [File] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\invalidprefs.js Successfully deleted: [File] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\searchplugins\babylon.xml Successfully deleted the following from C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\prefs.js user_pref("CT3088559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlP user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1475575/HU", "\"0\""); user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT3088559", "\"1315933121\""); user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"07879643d3acc1:0\""); user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.7.0.6", "\"80ee9485875dcc1:0\""); user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT3088559", "\"634553316085800000\""); user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... =CT3088559", "\"1318850777\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/idel.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/maxi.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... nimize.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/play.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... y_mini.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/stop.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... uz/vol.gif", "\"802b1fef4e19c81:0\""); user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"1d81252562c31be757300e4205a85371\""); user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\User\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\8zne0h2j.default\\conduitCommon\\modules\\3.7.0.6"); user_pref("extensions.delta.admin", false); user_pref("extensions.delta.aflt", "babsst"); user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); user_pref("extensions.delta.autoRvrt", "false"); user_pref("extensions.delta.dfltLng", "en"); user_pref("extensions.delta.excTlbr", false); user_pref("extensions.delta.ffxUnstlRst", true); user_pref("extensions.delta.id", "645ae639000000000000bcaec518d837"); user_pref("extensions.delta.instlDay", "15916"); user_pref("extensions.delta.instlRef", "sst"); user_pref("extensions.delta.newTab", false); user_pref("extensions.delta.prdct", "delta"); user_pref("extensions.delta.prtnrId", "delta"); user_pref("extensions.delta.rvrt", "false"); user_pref("extensions.delta.smplGrp", "none"); user_pref("extensions.delta.tlbrId", "base"); user_pref("extensions.delta.tlbrSrchUrl", ""); user_pref("extensions.delta.vrsn", "1.8.22.0"); user_pref("extensions.delta.vrsnTs", "1.8.22.017:13:44"); user_pref("extensions.delta.vrsni", "1.8.22.0"); user_pref("extensions.delta_i.babExt", ""); user_pref("extensions.delta_i.babTrack", "affID=121564&tsp=4959"); user_pref("extensions.delta_i.srcExt", "ss"); Emptied folder: C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\minidumps [140 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 2013.07.31. at 9:40:46,28 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
Szerző: | dori0227 [ szer. júl. 31, 2013 8:35 ] |
Hozzászólás témája: | Re: STELL Segit |
# AdwCleaner v2.306 - Logfile created 07/31/2013 at 09:32:41 # Updated 19/07/2013 by Xplode # Operating system : Windows 7 Ultimate Service Pack 1 (64 bits) # User : User - USER-PC # Boot Mode : Normal # Running from : C:\Users\User\Downloads\adwcleaner (1).exe # Option [Delete] ***** [Services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB Folder Deleted : C:\ProgramData\Babylon ***** [Registry] ***** Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\DataMngr Key Deleted : HKCU\Software\DataMngr_Toolbar Key Deleted : HKCU\Software\Delta Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\Delta Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKLM\SOFTWARE\Wow6432Node\14919ea49a8f3b4aa3cf1058d9a64cec Key Deleted : HKLM\SOFTWARE\Wow6432Node\5d2db88e13aef48 Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freemake Video Converter_is1 ***** [Internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16421 Replaced : [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - (Default)] = hxxp://search.certified-toolbar.com?si= ... id=2958&q=%s --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - (Default)] = hxxp://search.certified-toolbar.com?si= ... id=2958&q=%s --> hxxp://www.google.com -\\ Mozilla Firefox v22.0 (hu) -\\ Google Chrome v28.0.1500.95 ************************* AdwCleaner[S1].txt - [748 octets] - [20/03/2013 12:51:40] AdwCleaner[S2].txt - [2750 octets] - [31/07/2013 09:32:41] ########## EOF - C:\AdwCleaner[S2].txt - [2810 octets] ########## |
Szerző: | stell [ szer. júl. 31, 2013 8:15 ] |
Hozzászólás témája: | Re: STELL Segit |
Ha mar Futtatad az Malwarebytest ,, akkor TOROLD ki a talalatokat, aztan csinald azt amit irtam. |
Szerző: | dori0227 [ szer. júl. 31, 2013 8:12 ] |
Hozzászólás témája: | Re: STELL Segit |
ezeket töröljem? Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Adatbázis verzió: v2013.07.30.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 User :: USER-PC [rendszergazda] 2013.07.31. 8:01:40 MBAM-log-2013-07-31 (09-11-18).txt Vizsgálat típusa: Teljes vizsgálat (C:\|D:\|G:\|) Engedélyezett vizsgálati beállítások: Memória | Indítópult | Rendszerleíró | Rendszerfájlok | Heurisztikus/Extra | Heurisztikus/Shuriken | PUP | PUM Letiltott vizsgálati beállítások: P2P Átvizsgált objektumok: 380914 Eltelt idő: 1 óra, 7 perc, 58 másodperc Fertőzött memóriafolyamatok: 0 (Nem találhatók rosszindulatú elemek) Fertőzött memória modulok: 0 (Nem találhatók rosszindulatú elemek) Fertőzött Rendszerleíró kulcsok: 0 (Nem találhatók rosszindulatú elemek) Fertőzött Rendszerleíró értékek: 0 (Nem találhatók rosszindulatú elemek) Fertőzött Rendszerleíró adatelemek: 1 HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.StartPage) -> Rossz: (http://www1.delta-search.com/?babsrc=HP ... 4&tsp=4959) Jó: (http://www.google.com) -> Nem történt semmi. Fertőzött mappák: 3 C:\Users\User\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nem történt semmi. C:\Users\User\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Nem történt semmi. C:\Users\User\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Nem történt semmi. Fertőzött fájlok: 11 C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HI33D2SL\pack[1].7z (PUP.Optional.BrowserDefender.A) -> Nem történt semmi. C:\Users\User\AppData\Local\Temp\D0399F90-BAB0-7891-B2DE-D0A058A6288D\Latest\ccp.exe (PUP.Babylon.A) -> Nem történt semmi. C:\Users\User\AppData\Local\Temp\D0399F90-BAB0-7891-B2DE-D0A058A6288D\Latest\MyDeltaTB.exe (PUP.Delta.A) -> Nem történt semmi. C:\Users\User\AppData\Local\Temp\D0399F90-BAB0-7891-B2DE-D0A058A6288D\Latest\Setup.exe (PUP.Babylon.A) -> Nem történt semmi. C:\Users\User\AppData\Roaming\OpenCandy\D3EAC29D8CB54DB1B3AA7AAC449B9C67\DeltaTB.exe (PUP.Optional.Babylon.A) -> Nem történt semmi. C:\Users\User\Downloads\gapps-gb-20110307-signed.exe (PUP.Optional.4Squared) -> Nem történt semmi. C:\Users\User\Downloads\gapps-gb-20110307-signed.zip.exe (PUP.Optional.Installex) -> Nem történt semmi. C:\Users\User\Downloads\VLCMediaPlayerSetup-0mqeqH7.exe (PUP.Optional.Somoto) -> Nem történt semmi. C:\Users\User\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nem történt semmi. C:\Users\User\AppData\Roaming\BabSolution\Shared\SetupParams.ini (PUP.Optional.BabSolution.A) -> Nem történt semmi. C:\Users\User\AppData\Roaming\BabSolution\Shared\sqlite3.dll (PUP.Optional.BabSolution.A) -> Nem történt semmi. (befejezés) |
Szerző: | stell [ szer. júl. 31, 2013 7:51 ] |
Hozzászólás témája: | Re: STELL Segit |
Szia dorci. 1:Eloszor csinalj nekem egy kepet, screenshotot errol a Delta csodarol, es tedd valahova,a linket vagy a keppet.,tedd idde. mert kell ez nekem, a blogomba. 2:Aztan toroldki ezt a Toolbart ,,igy. Hasznald a blogombol az ADWCLEANERT>>letoltod az asztalra>.futattod es Klikaz DELETE GOMBRA>a naplojat tedd ide. http://www.viruskasino.com/2012/09/adwcleaner.html 3:Hasznald az Junkwareremoval toolt>.letoltod>>futtatod, es megvarod a sken veget a naplojat tedd ide. http://www.viruskasino.com/2010/12/prog ... moval-tool Aztan ird meg ha minden ok, e. |
Szerző: | dori0227 [ kedd júl. 30, 2013 19:54 ] |
Hozzászólás témája: | Re: STELL Segit |
Szia Stell! Segítséget szeretnék kérni egy programmal települt a 1.delta-search nevű kereső bővítmény és nem tudom sehogysem letörölni. |
Szerző: | Ktulu [ csüt. júl. 25, 2013 12:44 ] |
Hozzászólás témája: | Re: STELL Segit |
Egy nagyon jó registry karbantartó a Free Window Registry Repair: http://www.regsofts.com/free_registry_repair/registry_repair.htm |
Szerző: | stell [ csüt. júl. 25, 2013 11:53 ] |
Hozzászólás témája: | Re: STELL Segit |
AVAST, az renben van maradjon a FREE, be is van kapcsolva es fogg frissiteni is a virusadat bazisat. acrobat. kikell tisztara pucolni a registryt is az CCleaner programal . http://download.chip.eu/hu/CCleaner_132253.html Tolds le az CCleanert es kitisztitani a gepet,a registryt addig tisztitani meg az ablak nemmarad tiszta, 4x 5x is ha kell. Restart, ha az acrobat nemmukodne es hibat irr megint, akkor letelepiteni a geprol, kitisztitani az rendszerleirot=registryt, es ujbol vissza telepiteni. |
Szerző: | Babyface [ csüt. júl. 25, 2013 11:46 ] |
Hozzászólás témája: | Re: STELL Segit |
Results of screen317's Security Check version 0.99.71 Windows XP Service Pack 3 x86 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` CCleaner Java(TM) 6 Update 23 Java(TM) 6 Update 6 Java version out of Date! Adobe Flash Player 11.7.700.224 Adobe Reader XI Mozilla Firefox (23.0) ````````Process Check: objlist.exe by Laurent```````` AVAST Software Avast AvastSvc.exe AVAST Software Avast avastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C:: ````````````````````End of Log`````````````````````` |
Szerző: | stell [ csüt. júl. 25, 2013 11:28 ] |
Hozzászólás témája: | Re: STELL Segit |
1:Tolds le az asztalra SecurityCheck Futtasd az SecurityCheck.exe kovesd az utasitasokat,, . checkup.txt,logot tedd ide. |
Szerző: | Babyface [ csüt. júl. 25, 2013 11:25 ] |
Hozzászólás témája: | Re: STELL Segit |
Nnna,még egy észrevétel. Meg szerették volna nézni az egyik buszmenetrendet a neten, aminek a léetöltéséhez Acrobat Reader kell, de ez van a gépen. De ha meg akarom nyitni azt a bizonyos menetrendet, ezt írja ki: Kivétel (ismeretlen szoftverkivétel (0xc0000409)) történt az alkalmazásban a következő helyen:0x0040122b Ezzel mit tudok csinálni? |
Szerző: | Babyface [ csüt. júl. 25, 2013 11:22 ] |
Hozzászólás témája: | Re: STELL Segit |
Mindent megcsináltam. A gép érezhetően gyorsabb lett, ez már alapból hatalmas fejlődés Ezer hála érte. A Facebook-os dolgot majd csak estefelé tudják tesztelni, mert most nincs itthon senki. Még egy olyan kérdésem lenne, hogy az Avast Free vírusirtó van rajta, már virnyogott, hogy frissíteni kéne, de ahhoz már ugye fizetni kell, mert a free változat eddig volt okés. Most a rendszert biztonságosnak írja, kérdés, hogy meddig. Van valami javaslatod esetleg? Ez maradjon, vagy van valami jobb is, amit ajánlasz? |
Szerző: | stell [ csüt. júl. 25, 2013 11:17 ] |
Hozzászólás témája: | Re: STELL Segit |
hat igen. ha igy van. |
Szerző: | Babyface [ csüt. júl. 25, 2013 11:04 ] |
Hozzászólás témája: | Re: STELL Segit |
Több felhasználó alatt is van ilyen fájl, mindegyiket átnevezzem? |
Szerző: | stell [ csüt. júl. 25, 2013 10:27 ] |
Hozzászólás témája: | Re: STELL Segit |
Facebook?/, igen, en szerintem igen, csinald a torezedesmentest, nezd meg az eszkozkezeloben is ha nincsenek e sarga, piros kerdojelek,, is, aztan kapcsold be az relytett fajlok megjeleniteset, es tallad meg ezt a fajlt. IconCache.db Nevezd att>>IconCache.db old restart,. Nezd meg az asztalon is ha nincsenek e valami nagy kiterjesztesu Mappak, fajlok, az asztalon csak az ikonoknak kell lenniok..ha vannak es kellenek akkor att rakni valami uj mappaba a C:\ meghajtora. aztan mindent kiprobalni, es ird le mi van, |
Szerző: | Babyface [ csüt. júl. 25, 2013 9:57 ] |
Hozzászólás témája: | Re: STELL Segit |
Merevlemez ellenőrzés készen van, most fogok töredezettség mentesíteni. A gép még mindig nagyon lassan áll fel, valamivel jobb lett, de még mindig sok ideig tart. Lehetséges, hogy a facebook-os hülyeséget sikerült megoldanunk? Még nem ellenőriztem, de kíváncsi vagyok a véleményedre. Azt mondták, hogy mindenféle török meg mit tudomén milyen dolgokat osztogatott meg a profilján belül. |
Szerző: | stell [ csüt. júl. 25, 2013 9:42 ] |
Hozzászólás témája: | Re: STELL Segit |
Ok, ezek renben vannak, csinald a tobbit amit irtam, es ird le van e problema, lassu ,mi lassu,,stb,,stb,, |
Szerző: | Babyface [ csüt. júl. 25, 2013 9:25 ] |
Hozzászólás témája: | Re: STELL Segit |
Itt van a két fájl letesztelt eredménye: https://www.virustotal.com/hu/file/f776 ... 374740434/ https://www.virustotal.com/hu/file/26b7 ... 374740590/ |
Szerző: | stell [ szer. júl. 24, 2013 20:03 ] |
Hozzászólás témája: | Re: STELL Segit |
ok, akkor meg csinalj Merevlemez vizsgalatot az chkdsk /f/r parancsal es csinalj majd torezedes mentest is, mert tobb mint 3 giga szemetet eltavolitotunk. http://www.piriform.com/defraggler aztan letesztelni a fajlokat, kiprobalni a geppet es ide irni mi van. ó éjszakát |
Szerző: | Babyface [ szer. júl. 24, 2013 20:00 ] |
Hozzászólás témája: | Re: STELL Segit |
Na ezt majd holnap délelőtt, mert haza kellett jönnöm. Ezer köszi az eddigieket is, és holnap írok, amint megcsináltam. Jó éjszakát!!!!!!!! |
Szerző: | stell [ szer. júl. 24, 2013 19:51 ] |
Hozzászólás témája: | Re: STELL Segit |
Na probald ki, es ird meg mi van,,,meg teszteld le ezt a 2-rendszer fajlot az http://www.virustotal.com c:\windows\system32\mspmsnsv.dll c:\windows\system32\OLEPRO32.DLL majf klik REANALYSE es a linkeket a tesztrol tedd ide. |
Szerző: | Babyface [ szer. júl. 24, 2013 19:49 ] |
Hozzászólás témája: | Re: STELL Segit |
Most ezek szerint jól fog működni? |
Szerző: | stell [ szer. júl. 24, 2013 19:46 ] |
Hozzászólás témája: | Re: STELL Segit |
Na ird le mi a helyzet... |
Szerző: | Babyface [ szer. júl. 24, 2013 19:44 ] |
Hozzászólás témája: | Re: STELL Segit |
ComboFix 13-07-24.02 - Rendszergazda 013.07.24. 20:22:49.2.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.959.380 [GMT 2:00] Running from: c:\documents and settings\Rendszergazda\Asztal\ComboFix.exe Command switches used :: c:\documents and settings\Rendszergazda\Asztal\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . FILE :: "c:\windows\Tasks\AVG PC Tuneup 2011 Integrator Start On Rendszergazda Logon.job" . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\AVG c:\program files\AVG\AVG PC Tuneup 2011\AdvisorHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\armaccess.dll c:\program files\AVG\AVG PC Tuneup 2011\aushelper.dll c:\program files\AVG\AVG PC Tuneup 2011\ausshellext.dll c:\program files\AVG\AVG PC Tuneup 2011\AusUninst.exe c:\program files\AVG\AVG PC Tuneup 2011\AxBrowsers.dll c:\program files\AVG\AVG PC Tuneup 2011\AxComponents20.bpl c:\program files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe c:\program files\AVG\AVG PC Tuneup 2011\boostspeed.url c:\program files\AVG\AVG PC Tuneup 2011\cdefrag.exe c:\program files\AVG\AVG PC Tuneup 2011\commonforms.dll c:\program files\AVG\AVG PC Tuneup 2011\Data\Applications.dat c:\program files\AVG\AVG PC Tuneup 2011\Data\debug.paths c:\program files\AVG\AVG PC Tuneup 2011\Data\main.ini c:\program files\AVG\AVG PC Tuneup 2011\DebugMode.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskCleaner.exe c:\program files\AVG\AVG PC Tuneup 2011\DiskCleanerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskDefrag.exe c:\program files\AVG\AVG PC Tuneup 2011\DiskDefragHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskDoctor.exe c:\program files\AVG\AVG PC Tuneup 2011\DiskDoctorHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskExplorer.exe c:\program files\AVG\AVG PC Tuneup 2011\DiskExplorerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskSecurityHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\DiskWiper.exe c:\program files\AVG\AVG PC Tuneup 2011\DSSrcAsync.dll c:\program files\AVG\AVG PC Tuneup 2011\DSSrcWM.dll c:\program files\AVG\AVG PC Tuneup 2011\DuplicateFileFinder.exe c:\program files\AVG\AVG PC Tuneup 2011\EULA.rtf c:\program files\AVG\AVG PC Tuneup 2011\FileRecovery.exe c:\program files\AVG\AVG PC Tuneup 2011\FileRecoveryHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\FileShredder.exe c:\program files\AVG\AVG PC Tuneup 2011\helper.dll c:\program files\AVG\AVG PC Tuneup 2011\InstantOptimizerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\InternetOptimizer.exe c:\program files\AVG\AVG PC Tuneup 2011\InternetOptimizerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\Lang\chs.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\cht.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\csy.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\dan.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\deu.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\enu.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\esp.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\ess.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\fra.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\hun.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\ind.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\ita.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\jpn.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\kor.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\msl.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\nlb.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\plk.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\ptb.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\ptg.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\rus.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\sky.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\srb.lng c:\program files\AVG\AVG PC Tuneup 2011\Lang\trk.lng c:\program files\AVG\AVG PC Tuneup 2011\localizer.dll c:\program files\AVG\AVG PC Tuneup 2011\madBasic_.bpl c:\program files\AVG\AVG PC Tuneup 2011\madDisAsm_.bpl c:\program files\AVG\AVG PC Tuneup 2011\madExcept_.bpl c:\program files\AVG\AVG PC Tuneup 2011\PerlRegExp.bpl c:\program files\AVG\AVG PC Tuneup 2011\ProgramManager.exe c:\program files\AVG\AVG PC Tuneup 2011\ProgramManagerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\rdboot32.exe c:\program files\AVG\AVG PC Tuneup 2011\rdboot64.exe c:\program files\AVG\AVG PC Tuneup 2011\RegCleaner.exe c:\program files\AVG\AVG PC Tuneup 2011\RegistryCleanerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\RegistryDefrag.exe c:\program files\AVG\AVG PC Tuneup 2011\RegistryDefragHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\RepLibrary.dll c:\program files\AVG\AVG PC Tuneup 2011\RescueCenter.exe c:\program files\AVG\AVG PC Tuneup 2011\RescueCenterHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\rtl120.bpl c:\program files\AVG\AVG PC Tuneup 2011\sendlog.exe c:\program files\AVG\AVG PC Tuneup 2011\ServiceManager.exe c:\program files\AVG\AVG PC Tuneup 2011\ServiceManagerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\Settings.dll c:\program files\AVG\AVG PC Tuneup 2011\SpywareCheckerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\sqlite3.dll c:\program files\AVG\AVG PC Tuneup 2011\StartupManager.exe c:\program files\AVG\AVG PC Tuneup 2011\StartupManagerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\SystemInformation.exe c:\program files\AVG\AVG PC Tuneup 2011\SystemInformationHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\TaskManager.exe c:\program files\AVG\AVG PC Tuneup 2011\TaskManagerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\TaskSchedulerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\TrackEraser.exe c:\program files\AVG\AVG PC Tuneup 2011\TrackEraserHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\TweakManager.exe c:\program files\AVG\AVG PC Tuneup 2011\TweakManagerHelper.dll c:\program files\AVG\AVG PC Tuneup 2011\unins000.dat c:\program files\AVG\AVG PC Tuneup 2011\unins000.exe c:\program files\AVG\AVG PC Tuneup 2011\unins000.msg c:\program files\AVG\AVG PC Tuneup 2011\vcl120.bpl c:\program files\AVG\AVG PC Tuneup 2011\version.exe c:\program files\AVG\AVG PC Tuneup 2011\warning.bmp c:\program files\AVG\AVG2012\awacs\speedtest\component\content.dat c:\program files\AVG\AVG2012\awacs\speedtest\component\speedtest.bmp c:\program files\AVG\AVG2012\awacs\speedtest\sign.bin c:\program files\AVG\AVG2012\awacs\techbuddy\component\content.dat c:\program files\AVG\AVG2012\awacs\techbuddy\component\techbuddy.mht c:\program files\AVG\AVG2012\awacs\techbuddy\sign.bin c:\program files\AVG\AVG2012\idpfixx.exe . . ((((((((((((((((((((((((( Files Created from 2013-06-24 to 2013-07-24 ))))))))))))))))))))))))))))))) . . 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\windows\system32\xircom 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\windows\system32\wbem\snmp 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\program files\microsoft frontpage 2013-07-24 16:28 . 2013-07-24 16:28 -------- d-----w- C:\_OTL 2013-07-24 16:25 . 2013-07-24 16:25 -------- d-----w- c:\program files\Perfect Uninstaller 2013-07-24 16:15 . 2013-07-24 16:15 -------- d-----w- c:\windows\ERUNT 2013-07-24 15:34 . 2013-07-24 15:34 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\COMODO 2013-07-24 05:00 . 2013-07-24 12:04 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 11 2013-07-24 04:38 . 2013-07-24 04:38 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\COMODO 2013-07-23 18:58 . 2013-07-23 18:58 47368 ----a-w- c:\windows\system32\certsentry.dll 2013-07-23 17:06 . 2013-07-23 18:58 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\COMODO 2013-07-23 17:05 . 2013-07-23 18:58 -------- d-----w- c:\program files\Comodo 2013-07-23 16:53 . 2013-07-23 16:53 -------- d-----w- C:\FRST 2013-07-23 16:22 . 2013-07-23 16:25 -------- d-----w- c:\windows\system32\MRT 2013-07-01 12:46 . 2008-04-13 05:34 1897408 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2013-07-01 12:46 . 2008-04-14 05:01 4274816 ----a-w- c:\windows\system32\nv4_disp.dll 2013-06-25 16:18 . 2013-06-25 16:18 -------- d-----w- c:\program files\whiskas widget 2013-06-25 16:18 . 2013-06-25 16:18 -------- d-----w- c:\program files\Common Files\Adobe AIR . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-27 19:29 . 2013-03-21 19:56 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 19:29 . 2013-03-03 07:42 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 19:29 . 2013-03-03 07:42 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-06-12 13:37 . 2012-12-26 17:12 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-06-12 13:37 . 2012-12-26 17:12 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-06-08 01:24 . 2008-05-07 01:35 920064 ----a-w- c:\windows\system32\wininet.dll 2013-06-07 21:53 . 2008-05-07 01:35 43520 ------w- c:\windows\system32\licmgr10.dll 2013-06-07 21:53 . 2008-05-07 01:35 1469440 ------w- c:\windows\system32\inetcpl.cpl 2013-06-07 18:25 . 2008-05-07 01:35 385024 ------w- c:\windows\system32\html.iec 2013-06-05 09:08 . 2008-04-14 08:36 1876736 ----a-w- c:\windows\system32\win32k.sys 2013-06-04 07:22 . 2008-04-14 09:02 563200 ----a-w- c:\windows\system32\qedit.dll 2013-05-09 08:59 . 2013-03-21 19:56 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-05-09 08:59 . 2013-03-03 07:42 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2013-05-09 08:59 . 2013-03-21 19:56 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-05-09 08:59 . 2013-03-03 07:42 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2013-05-09 08:59 . 2013-03-03 07:42 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2013-05-09 08:58 . 2013-03-03 07:41 41664 ----a-w- c:\windows\avastSS.scr 2013-05-09 08:58 . 2013-03-03 07:41 229648 ----a-w- c:\windows\system32\aswBoot.exe 2013-05-08 09:58 . 2008-05-07 01:37 1543680 ----a-w- c:\windows\system32\wmvdecod.dll 2013-05-03 05:39 . 2008-04-14 08:43 2194944 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-05-03 05:39 . 2008-04-14 06:43 2071552 ----a-w- c:\windows\system32\ntkrnlpa.exe . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2008-05-07 . 2993C2DF98A2D6D9896E0AB24946F972 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll . [-] 2008-05-07 01:37 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll . [-] 2000-01-05 13:10 . 73E4A1DDD93F6988951523C6263ACBBF . 164112 . . [5.0.4514] . . c:\windows\system32\OLEPRO32.DLL . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LDM"="c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2011-10-31 32768] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Activecaptions"="c:\windows\activecaptions.exe" [2005-11-14 337408] "AllSnap"="c:\windows\allsnap.exe" [2006-11-14 81920] "HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2004-03-04 172032] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "SoundMan"="SOUNDMAN.EXE" [2004-04-28 66048] "LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2005-12-09 225280] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "nltide_2"="shell32" [X] "nltide_3"="advpack.dll" [2009-03-08 128512] "AfterPost"="c:\windows\afterpost.cmd" [2008-10-23 2584] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) "EnableBalloonTips"= 1 (0x1) . [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 nwprovau . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"= "c:\\WINDOWS\\system32\\msiexec.exe"= "c:\\Program Files\\TeamViewer\\Version8\\TeamViewer.exe"= "c:\\Program Files\\TeamViewer\\Version8\\TeamViewer_Service.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Documents and Settings\\Rendszergazda\\Application Data\\uTorrent\\uTorrent.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "1035:TCP"= 1035:TCP:Akamai NetSession Interface "5000:UDP"= 5000:UDP:Akamai NetSession Interface . R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013.03.21. 21:56 49376] R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013.03.21. 21:56 175176] R0 SI3112r;Silicon Image SiI 3512 SATARaid Controller;c:\windows\system32\drivers\SI3112r.sys [2011.01.24. 11:44 110128] R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010.02.17. 21:08 717296] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013.03.03. 9:42 770344] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013.03.03. 9:42 369584] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013.03.03. 9:42 29816] R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013.03.21. 21:56 66336] R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\Comodo\Dragon\dragon_updater.exe [2013.07.16. 13:43 2095752] R2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2012.12.15. 21:46 3463080] S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013.02.28. 19:45 161384] S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010.11.01. 20:37 36608] S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys --> c:\windows\system32\DRIVERS\ewusbdev.sys [?] S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007.11.06. 22:22 34064] . Contents of the 'Scheduled Tasks' folder . 2013-07-24 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-26 13:37] . 2013-07-24 c:\windows\Tasks\avast! Emergency Update.job - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-03-03 08:58] . 2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-11-27 14:07] . 2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-11-27 14:07] . 2013-07-24 c:\windows\Tasks\User_Feed_Synchronization-{F9057B67-91B4-4544-9DF4-7DA305619FEE}.job - c:\windows\system32\msfeedssync.exe [2008-05-07 02:31] . . ------- Supplementary Scan ------- . mStart Page = hxxp://www.google.com uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = <local> IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll FF - ProfilePath - c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/ FF - ExtSQL: !HIDDEN! 2011-01-14 10:18; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-07-24 20:33 Windows 5.1.2600 Szervizcsomag 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(692) c:\windows\system32\Ati2evxx.dll . - - - - - - - > 'explorer.exe'(6488) c:\windows\system32\WININET.dll c:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll c:\docume~1\RENDSZ~1\LOCALS~1\Temp\IadHide5.dll c:\windows\system32\msi.dll c:\program files\Google\Drive\googledrivesync32.dll c:\windows\system32\wpdshext.dll c:\windows\system32\portabledeviceapi.dll c:\windows\system32\audiodev.dll c:\windows\system32\WMVCore.DLL c:\windows\system32\WMASF.DLL c:\windows\system32\webcheck.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\portabledevicetypes.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\AVAST Software\Avast\AvastSvc.exe c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE c:\windows\SOUNDMAN.EXE c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE c:\windows\system32\msiexec.exe c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe . ************************************************************************** . Completion time: 2013-07-24 20:41:13 - machine was rebooted ComboFix-quarantined-files.txt 2013-07-24 18:41 ComboFix2.txt 2013-07-24 17:42 . Pre-Run: 5 341 868 032 bájt szabad Post-Run: 5 244 772 352 bájt szabad . - - End Of File - - 46FBD80F9D0E156B040B9DBE5AF66F46 186A4159D7661245314A7A933981403E |
Szerző: | stell [ szer. júl. 24, 2013 19:11 ] |
Hozzászólás témája: | Re: STELL Segit |
Script készítés: Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett: A combofix maga elindul es lehet hogy restartol es befejezi a scent.a naplojat tedd ide. Kód: KILLALL:: Registry:: [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "EADM"=- "Skype"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"=- "SunJavaUpdateSched"=- "LogitechVideo[inspector]"=- "LogitechCameraAssistant"=- "LogitechCameraService(E)"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] File:: c:\windows\Tasks\AVG PC Tuneup 2011 Integrator Start On Rendszergazda Logon.job Folder:: c:\program files\AVG RegLock:: [HKEY_USERS\S-1-5-21-789336058-1637723038-1177238915-500\Software\Microsoft\Internet Explorer\User Preferences] ADS:: Ez az FireFox miert BETA?? Firefox 4.0 Beta 11 Frisitsd fel klikelj a FireFox, tetejen az SEGITO FULRE>>es klik a FIREFOXROL. >>nem tudom igy van e pontosan magyarul, de megtalalod, ha raklikelsz akkor a firefox Frisitje magat. |
Szerző: | Babyface [ szer. júl. 24, 2013 18:45 ] |
Hozzászólás témája: | Re: STELL Segit |
ComboFix 13-07-24.02 - Rendszergazda 013.07.24. 19:23:10.1.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.959.416 [GMT 2:00] Running from: c:\documents and settings\Rendszergazda\Asztal\ComboFix.exe AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\docume~1\RENDSZ~1\LOCALS~1\Temp\IadHide5.dll c:\documents and settings\ALEXANDRI\System c:\documents and settings\ALEXANDRI\System\win_qs8.jqx c:\documents and settings\ALEXANDRI\WINDOWS c:\documents and settings\All Users\Application Data\TEMP c:\documents and settings\Default User\Application Data\Desktopicon c:\documents and settings\Rendszergazda\Local Settings\Temp\IadHide5.dll c:\documents and settings\Rendszergazda\WINDOWS c:\windows\msmqinst.log c:\windows\system32\Cache c:\windows\system32\Cache\272512937d9e61a4.fb c:\windows\system32\Cache\287204568329e189.fb c:\windows\system32\Cache\28bc8f716fd76a47.fb c:\windows\system32\Cache\2c53092c95605355.fb c:\windows\system32\Cache\3917078cb68ec657.fb c:\windows\system32\Cache\590ba23ce359fd0c.fb c:\windows\system32\Cache\5d40c85a09741372.fb c:\windows\system32\Cache\610289e025a3ee9a.fb c:\windows\system32\Cache\613c01a72a3a5073.fb c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb c:\windows\system32\Cache\a8556537add6dfc5.fb c:\windows\system32\Cache\ad10a52aff5e038d.fb c:\windows\system32\Cache\b89ac55c5e7ba0ca.fb c:\windows\system32\Cache\c4d28dca2e7648be.fb c:\windows\system32\Cache\d201ef9910cd39de.fb c:\windows\system32\Cache\d2e94710a5708128.fb c:\windows\system32\Cache\d79b9dfe81484ec4.fb c:\windows\system32\Cache\e0de16f883bea794.fb c:\windows\system32\config\systemprofile\Application Data\Desktopicon . . ((((((((((((((((((((((((( Files Created from 2013-06-24 to 2013-07-24 ))))))))))))))))))))))))))))))) . . 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\windows\system32\xircom 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\windows\system32\wbem\snmp 2013-07-24 17:34 . 2013-07-24 17:34 -------- d-----w- c:\program files\microsoft frontpage 2013-07-24 16:28 . 2013-07-24 16:28 -------- d-----w- C:\_OTL 2013-07-24 16:25 . 2013-07-24 16:25 -------- d-----w- c:\program files\Perfect Uninstaller 2013-07-24 16:15 . 2013-07-24 16:15 -------- d-----w- c:\windows\ERUNT 2013-07-24 15:34 . 2013-07-24 15:34 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\COMODO 2013-07-24 05:00 . 2013-07-24 12:04 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 11 2013-07-24 04:38 . 2013-07-24 04:38 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\COMODO 2013-07-23 18:58 . 2013-07-23 18:58 47368 ----a-w- c:\windows\system32\certsentry.dll 2013-07-23 17:06 . 2013-07-23 18:58 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\COMODO 2013-07-23 17:05 . 2013-07-23 18:58 -------- d-----w- c:\program files\Comodo 2013-07-23 16:53 . 2013-07-23 16:53 -------- d-----w- C:\FRST 2013-07-23 16:22 . 2013-07-23 16:25 -------- d-----w- c:\windows\system32\MRT 2013-07-01 12:46 . 2008-04-13 05:34 1897408 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2013-07-01 12:46 . 2008-04-14 05:01 4274816 ----a-w- c:\windows\system32\nv4_disp.dll 2013-06-25 16:18 . 2013-06-25 16:18 -------- d-----w- c:\program files\whiskas widget 2013-06-25 16:18 . 2013-06-25 16:18 -------- d-----w- c:\program files\Common Files\Adobe AIR . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-27 19:29 . 2013-03-21 19:56 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 19:29 . 2013-03-03 07:42 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 19:29 . 2013-03-03 07:42 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-06-12 13:37 . 2012-12-26 17:12 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-06-12 13:37 . 2012-12-26 17:12 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-06-08 01:24 . 2008-05-07 01:35 920064 ----a-w- c:\windows\system32\wininet.dll 2013-06-07 21:53 . 2008-05-07 01:35 43520 ------w- c:\windows\system32\licmgr10.dll 2013-06-07 21:53 . 2008-05-07 01:35 1469440 ------w- c:\windows\system32\inetcpl.cpl 2013-06-07 18:25 . 2008-05-07 01:35 385024 ------w- c:\windows\system32\html.iec 2013-06-05 09:08 . 2008-04-14 08:36 1876736 ----a-w- c:\windows\system32\win32k.sys 2013-06-04 07:22 . 2008-04-14 09:02 563200 ----a-w- c:\windows\system32\qedit.dll 2013-05-09 08:59 . 2013-03-21 19:56 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-05-09 08:59 . 2013-03-03 07:42 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2013-05-09 08:59 . 2013-03-21 19:56 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-05-09 08:59 . 2013-03-03 07:42 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2013-05-09 08:59 . 2013-03-03 07:42 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2013-05-09 08:58 . 2013-03-03 07:41 41664 ----a-w- c:\windows\avastSS.scr 2013-05-09 08:58 . 2013-03-03 07:41 229648 ----a-w- c:\windows\system32\aswBoot.exe 2013-05-08 09:58 . 2008-05-07 01:37 1543680 ----a-w- c:\windows\system32\wmvdecod.dll 2013-05-03 05:39 . 2008-04-14 08:43 2194944 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-05-03 05:39 . 2008-04-14 06:43 2071552 ----a-w- c:\windows\system32\ntkrnlpa.exe . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2008-05-07 . 2993C2DF98A2D6D9896E0AB24946F972 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll . [-] 2008-05-07 01:37 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll . [-] 2000-01-05 13:10 . 73E4A1DDD93F6988951523C6263ACBBF . 164112 . . [5.0.4514] . . c:\windows\system32\OLEPRO32.DLL . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}] 2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LDM"="c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2011-10-31 32768] "EADM"="c:\program files\Origin\Origin.exe" [2013-06-08 3456080] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-02-28 18642024] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Activecaptions"="c:\windows\activecaptions.exe" [2005-11-14 337408] "AllSnap"="c:\windows\allsnap.exe" [2006-11-14 81920] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2005-11-14 155648] "HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2004-03-04 172032] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "SoundMan"="SOUNDMAN.EXE" [2004-04-28 66048] "LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2005-12-09 225280] "LogitechCameraAssistant"="c:\program files\Logitech\Video\CameraAssistant.exe" [2005-12-07 489472] "LogitechVideo[inspector]"="c:\program files\Logitech\Video\InstallHelper.exe" [2005-12-07 09:33 73728] "LogitechCameraService(E)"="c:\windows\system32\ElkCtrl.exe" [2004-11-01 262144] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "nltide_2"="shell32" [X] "nltide_3"="advpack.dll" [2009-03-08 128512] "AfterPost"="c:\windows\afterpost.cmd" [2008-10-23 2584] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) "EnableBalloonTips"= 1 (0x1) . [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 nwprovau . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2010-04-16 21:11 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"= "c:\\WINDOWS\\system32\\msiexec.exe"= "c:\\Program Files\\TeamViewer\\Version8\\TeamViewer.exe"= "c:\\Program Files\\TeamViewer\\Version8\\TeamViewer_Service.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Documents and Settings\\Rendszergazda\\Application Data\\uTorrent\\uTorrent.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "1035:TCP"= 1035:TCP:Akamai NetSession Interface "5000:UDP"= 5000:UDP:Akamai NetSession Interface . R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013.03.21. 21:56 49376] R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013.03.21. 21:56 175176] R0 SI3112r;Silicon Image SiI 3512 SATARaid Controller;c:\windows\system32\drivers\SI3112r.sys [2011.01.24. 11:44 110128] R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010.02.17. 21:08 717296] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013.03.03. 9:42 770344] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013.03.03. 9:42 369584] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013.03.03. 9:42 29816] R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013.03.21. 21:56 66336] R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\Comodo\Dragon\dragon_updater.exe [2013.07.16. 13:43 2095752] R2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2012.12.15. 21:46 3463080] S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013.02.28. 19:45 161384] S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010.11.01. 20:37 36608] S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys --> c:\windows\system32\DRIVERS\ewusbdev.sys [?] S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007.11.06. 22:22 34064] . --- Other Services/Drivers In Memory --- . *NewlyCreated* - WS2IFSL . Contents of the 'Scheduled Tasks' folder . 2013-07-24 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-26 13:37] . 2013-07-24 c:\windows\Tasks\avast! Emergency Update.job - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-03-03 08:58] . 2013-07-24 c:\windows\Tasks\AVG PC Tuneup 2011 Integrator Start On Rendszergazda Logon.job - c:\program files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe [2011-10-08 13:58] . 2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-11-27 14:07] . 2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-11-27 14:07] . 2013-07-24 c:\windows\Tasks\User_Feed_Synchronization-{F9057B67-91B4-4544-9DF4-7DA305619FEE}.job - c:\windows\system32\msfeedssync.exe [2008-05-07 02:31] . . ------- Supplementary Scan ------- . mStart Page = hxxp://www.google.com uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = <local> IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll FF - ProfilePath - c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/ FF - ExtSQL: !HIDDEN! 2011-01-14 10:18; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension . - - - - ORPHANS REMOVED - - - - . AddRemove-SP_d5b5d47e - c:\program files\ZoomEx\uninstall.exe AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\documents and settings\All Users\Application Data\Zoomex\uninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-07-24 19:36 Windows 5.1.2600 Szervizcsomag 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-789336058-1637723038-1177238915-500\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (Administrator) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,06,7c,f1,be,51,22,65,41,9b,c2,ff,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,90,cd,e6,7a,e6,03,98,40,88,e8,c8,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(692) c:\windows\system32\Ati2evxx.dll . - - - - - - - > 'explorer.exe'(6932) c:\windows\system32\WININET.dll c:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll c:\windows\system32\msi.dll c:\program files\Google\Drive\googledrivesync32.dll c:\windows\system32\wpdshext.dll c:\windows\system32\portabledeviceapi.dll c:\windows\system32\audiodev.dll c:\windows\system32\WMVCore.DLL c:\windows\system32\WMASF.DLL c:\windows\achook.dll c:\windows\snap_libW.dll c:\windows\system32\webcheck.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\portabledevicetypes.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\AVAST Software\Avast\AvastSvc.exe c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE c:\windows\SOUNDMAN.EXE c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe . ************************************************************************** . Completion time: 2013-07-24 19:42:57 - machine was rebooted ComboFix-quarantined-files.txt 2013-07-24 17:42 . Pre-Run: 5 823 791 104 bájt szabad Post-Run: 5 780 140 032 bájt szabad . WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect . - - End Of File - - 0515CA456AB7249290D39F2FB8074576 186A4159D7661245314A7A933981403E |
Szerző: | stell [ szer. júl. 24, 2013 18:09 ] |
Hozzászólás témája: | Re: STELL Segit |
Igen a fagyas is lehetseges, egyelorre, mert nagytakaritast csinalunk, es lehet meg ott Rootkit is, tehat johet a combofix, es meglassuk a naplojat. |
Szerző: | Babyface [ szer. júl. 24, 2013 18:05 ] |
Hozzászólás témája: | Re: STELL Segit |
All processes killed ========== FILES ========== File/Folder C:\WINDOWS\system32\*.tmp.dll not found. File/Folder C:\WINDOWS\system32\SET*.tmp not found. C:\WINDOWS\DUMP3930.tmp moved successfully. < ipconfig /flushdns /c > Windows IP konfiguráció A DNS-feloldási gyorsítótár kiürítése sikeresen megtörtént. C:\Documents and Settings\Rendszergazda\Asztal\cmd.bat deleted successfully. C:\Documents and Settings\Rendszergazda\Asztal\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: ALEXANDRI ->Temp folder emptied: 6017415 bytes ->Temporary Internet Files folder emptied: 5243952 bytes ->Java cache emptied: 1053764 bytes ->FireFox cache emptied: 114293720 bytes ->Google Chrome cache emptied: 20303571 bytes ->Apple Safari cache emptied: 2367488 bytes ->Opera cache emptied: 1602963 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33438 bytes ->Flash cache emptied: 57472 bytes User: LocalService ->Temp folder emptied: 66284 bytes ->Temporary Internet Files folder emptied: 58614269 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 28441823 bytes User: Rendszergazda ->Temp folder emptied: 692018420 bytes ->Temporary Internet Files folder emptied: 10382629 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 108284729 bytes ->Google Chrome cache emptied: 126012199 bytes ->Flash cache emptied: 18052486 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 71566099 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 1761066661 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 767234949 bytes Total Files Cleaned = 3 617,00 mb Restore point Set: OTL Restore Point OTL by OldTimer - Version 3.2.69.0 log created on 07242013_182836 Files\Folders moved on Reboot... C:\Documents and Settings\Rendszergazda\Local Settings\Temp\IadHide5.dll moved successfully. File\Folder C:\WINDOWS\temp\_avast_\Webshlock.txt not found! PendingFileRenameOperations files... Registry entries deleted on Reboot... |
Szerző: | stell [ szer. júl. 24, 2013 18:03 ] |
Hozzászólás témája: | Re: STELL Segit |
Ide>>C:\_OTL\MovedFiles\xxxx .txt. Tedd ide es futtasd a combofixet. |
Szerző: | Babyface [ szer. júl. 24, 2013 18:02 ] |
Hozzászólás témája: | Re: STELL Segit |
Nna, lefagyott a gép, az OTL-t végigfuttattam, de nem tudom, hogy hova mentette a txt fájlját. Tudsz benne segíteni? Nem tudtam bemásolni. |
Szerző: | Babyface [ szer. júl. 24, 2013 17:23 ] |
Hozzászólás témája: | Re: STELL Segit |
3. lépés ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 5.2.2 (07.22.2013:2) OS: Microsoft Windows XP x86 Ran by Rendszergazda on 2013.07.24. at 18:15:16,18 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\pcspeedup Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{ED3C2F12-2040-4E73-A497-3DA03F68EF54} ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\torch" Successfully deleted: [Folder] "C:\Program Files\pc speed up" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 2013.07.24. at 18:21:33,79 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
Szerző: | Babyface [ szer. júl. 24, 2013 17:12 ] |
Hozzászólás témája: | Re: STELL Segit |
2. lépés # AdwCleaner v2.306 - Logfile created 07/24/2013 at 18:01:35 # Updated 19/07/2013 by Xplode # Operating system : Microsoft Windows XP Szervizcsomag 3 (32 bits) # User : Rendszergazda - OTTHON-PC # Boot Mode : Normal # Running from : C:\Documents and Settings\Rendszergazda\Asztal\adwcleaner.exe # Option [Delete] ***** [Services] ***** ***** [Files / Folders] ***** File Deleted : C:\Documents and Settings\Rendszergazda\Start Menu\Programs\iLivid.lnk File Deleted : C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask Folder Deleted : C:\Documents and Settings\All Users\Application Data\Premium Folder Deleted : C:\Documents and Settings\All Users\Application Data\Zoomex Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\Zoomex Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\Complitly Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\Desktopicon Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\dvdvideosoftiehelpers Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Conduit Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\SweetIMToolbarData Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\OpenCandy Folder Deleted : C:\Documents and Settings\Rendszergazda\Application Data\PriceGong Folder Deleted : C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Conduit Folder Deleted : C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Ilivid Folder Deleted : C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\OpenCandy Folder Deleted : C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\SimplyTech Folder Deleted : C:\Program Files\Complitly Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\PriceGong Folder Deleted : C:\Program Files\Protected Search Folder Deleted : C:\Program Files\Search Results Toolbar Folder Deleted : C:\Program Files\Zoomex ***** [Registry] ***** Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~1\zoomex\sprote~1.dll Key Deleted : HKCU\Software\AppDataLow\SProtector Key Deleted : HKCU\Software\Complitly Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\PriceGong Key Deleted : HKCU\Software\PrivitizeVPNInstallDates Key Deleted : HKCU\Software\SmartBar Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\StartSearch Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153} Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E} Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2405280 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678 Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102} Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetPacks Communicator Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A1194237-547A-461d-BD44-B97B1574A7DA} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid Key Deleted : HKLM\Software\SimplyGen Key Deleted : HKLM\Software\SP Global Key Deleted : HKLM\Software\SProtector ***** [Internet Browsers] ***** -\\ Internet Explorer v8.0.6001.18702 Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Start Page] = hxxp://search.certified-toolbar.com?si= ... e&tid=2958 --> hxxp://www.google.com Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Start Default_Page_URL] = hxxp://search.certified-toolbar.com?si= ... e&tid=2958 --> hxxp://www.google.com Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Search Bar] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Search Page] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Start Page] = hxxp://search.certified-toolbar.com?si= ... e&tid=2958 --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Start Default_Page_URL] = hxxp://search.certified-toolbar.com?si= ... e&tid=2958 --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Search Bar] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Search Page] = hxxp://search.certified-toolbar.com?si= ... bs=true&q= --> hxxp://www.google.com Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - (Default)] = hxxp://search.certified-toolbar.com?si= ... id=2958&q=%s --> hxxp://www.google.com -\\ Mozilla Firefox v23.0 (hu) File : C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\prefs.js Deleted : user_pref("CT2269050..clientLogIsEnabled", false); Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...] Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...] Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false); Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx"); Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1000515", true); Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true); Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true); Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true); Deleted : user_pref("CT2269050.CT2269050", "CT2269050"); Deleted : user_pref("CT2269050.CurrentServerDate", "26-12-2012"); Deleted : user_pref("CT2269050.DSInstall", true); Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR"); Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Wed Dec 26 2012 17:47:34 GMT+0100"); Deleted : user_pref("CT2269050.DownloadReferralCookieData", ""); Deleted : user_pref("CT2269050.FirstServerDate", "26-12-2012"); Deleted : user_pref("CT2269050.FirstTime", true); Deleted : user_pref("CT2269050.FirstTimeFF3", true); Deleted : user_pref("CT2269050.FirstTimeHiddenVer", true); Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true); Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440); Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/"); Deleted : user_pref("CT2269050.HPInstall", true); Deleted : user_pref("CT2269050.HasUserGlobalKeys", true); Deleted : user_pref("CT2269050.Initialize", true); Deleted : user_pref("CT2269050.InitializeCommonPrefs", true); Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3); Deleted : user_pref("CT2269050.InstallationType", "Unknown"); Deleted : user_pref("CT2269050.InstalledDate", "Mon Dec 24 2012 08:16:28 GMT+0100"); Deleted : user_pref("CT2269050.IsGrouping", false); Deleted : user_pref("CT2269050.IsInitSetupIni", true); Deleted : user_pref("CT2269050.IsMulticommunity", false); Deleted : user_pref("CT2269050.IsOpenThankYouPage", true); Deleted : user_pref("CT2269050.IsOpenUninstallPage", true); Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Wed Dec 26 2012 11:23:20 GMT+0100"); Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440); Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...] Deleted : user_pref("CT2269050.LastLogin_3.16.0.3", "Wed Dec 26 2012 17:47:34 GMT+0100"); Deleted : user_pref("CT2269050.LatestVersion", "3.16.0.3"); Deleted : user_pref("CT2269050.Locale", "en"); Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83"); Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295"); Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true); Deleted : user_pref("CT2269050.OriginalFirstVersion", "3.16.0.3"); Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2405280&SearchSource=13"); Deleted : user_pref("CT2269050.SearchCaption", "DVDVideoSoftTB Customized Web Search"); Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true); Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT226[...] Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true); Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440); Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Wed Dec 26 2012 11:23:20 GMT+0100"); Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...] Deleted : user_pref("CT2269050.SearchProtectorToolbarDisabled", true); Deleted : user_pref("CT2269050.SendProtectorDataViaLogin", true); Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Wed Dec 26 2012 11:23:18 GMT+0100"); Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Wed Dec 26 2012 17:47:33 GMT+0100"); Deleted : user_pref("CT2269050.SettingsLastUpdate", "1356537100"); Deleted : user_pref("CT2269050.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13"); Deleted : user_pref("CT2269050.ToolbarDisabled", true); Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false); Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050"); Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...] Deleted : user_pref("CT2269050.UserID", "UN65032451201045223"); Deleted : user_pref("CT2269050.alertChannelId", "666138"); Deleted : user_pref("CT2269050.components.1000515", true); Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...] Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true); Deleted : user_pref("CT2269050.initDone", true); Deleted : user_pref("CT2269050.myStuffEnabled", true); Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400); Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...] Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440); Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...] Deleted : user_pref("CT2269050.navigateToUrlOnSearch", false); Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10); Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true); Deleted : user_pref("CT2269050.testingCtid", ""); Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Wed Dec 26 2012 11:23:20 GMT+0100"); Deleted : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2405280&Search[...] Deleted : user_pref("CommunityToolbar.ConduitSearchList", "ST-Eng7 Customized Web Search,DVDVideoSoftTB Custom[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2269050[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2405280[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786678[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1066/1066/HU", "\"0\""); Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /662041/HU", "\"0\"")[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/7275/7137/HU", "\"0\""); Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /795587/HU", "\"0\"")[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /857357/HU", "\"0\"")[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/93748/93028/HU", "\"0\""); Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", [...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2405280", [...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.16[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2405280",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... =EB_LOCALE",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"f06[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... cale=en-us", "\"[...] Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\Rendszergazda\\App[...] Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3"); Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.sweetim.com/search.asp?bar[...] Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050"); Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050"); Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2269050"); Deleted : user_pref("CommunityToolbar.globalUserId", "5cffe937-1085-4e0f-af28-582e2654a244"); Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2786678"); Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Dec 23 2012 17:36:2[...] Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", true); Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440); Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Dec 26 2012 17:47:44 GMT+010[...] Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com"); Deleted : user_pref("CommunityToolbar.notifications.locale", "en"); Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440); Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Dec 26 2012 11:23:18 GMT+0100"); Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611"); Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20); Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com"); Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false); Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300); Deleted : user_pref("CommunityToolbar.notifications.userId", "936ba154-e6c2-47cf-92bf-b59906859cb8"); Deleted : user_pref("CommunityToolbar.originalHomepage", "chrome://branding/locale/browserconfig.properties"); Deleted : user_pref("CommunityToolbar.originalSearchEngine", ""); Deleted : user_pref("aol_toolbar.default.homepage.check", false); Deleted : user_pref("aol_toolbar.default.search.check", false); Deleted : user_pref("browser.search.defaultengine", "Web Search"); Deleted : user_pref("browser.search.defaultthis.engineName", "uTorrentBar Customized Web Search"); Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&Sea[...] Deleted : user_pref("browser.search.order.1", "Web Search"); Deleted : user_pref("extensions.50cc5044bf61d.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.50cc537f340e2.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.50cc54ac38521.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.50cc560d434e6.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.50cc629577447.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.50cc86a86fd04.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...] Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0); Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0); Deleted : user_pref("extensions.aniweather.timeShifted", 1544326); Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ""); Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", ""); Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", ""); Deleted : user_pref("sweetim.toolbar.searchguard.enable", ""); -\\ Google Chrome v [Unable to get version] File : C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[S1].txt - [23951 octets] - [24/07/2013 18:01:35] ########## EOF - C:\AdwCleaner[S1].txt - [24012 octets] ########## A képek mappás dolgot megérdeklődöm |
Szerző: | stell [ szer. júl. 24, 2013 17:05 ] |
Hozzászólás témája: | Re: STELL Segit |
AZ AVG-t igy >>ami marad majd kivagom a combofixel. http://www.quicklyuninstall.com/article ... .0.27.html Step 1: Click and Download Automatic AVG PC Tuneup 2011 10.0.0.27 Uninstaller Step 2: Install and launch the Uninstaller on the PC Step 3: Select AVG PC Tuneup 2011 10.0.0.27 and click Uninstall button to uninstall. http://www.quicklyuninstall.com/download.php |
Szerző: | Babyface [ szer. júl. 24, 2013 16:58 ] |
Hozzászólás témája: | Re: STELL Segit |
Az első lépés kész. A programokat eltávolítottam, kivéve az AVG PC Tuneup 2011 -ot, legalábbis a vezérlőpultból nem tudom. Azt a helyéről töröljem? A fixlog.txt itt van: (most csinálom a 2. lépést, amit írtál.) Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 23-07-2013 Ran by Rendszergazda at 2013-07-24 17:56:11 Run:1 Running from C:\Documents and Settings\Rendszergazda\Asztal Boot Mode: Normal ============================================== HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SBRegRebootCleaner => Value deleted successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck => Value deleted successfully. HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\PCSpeedUp] - C:\Program Files\PC Speed Up\PCSpeedUp.lnk [2038 2011-09-15 => Value not found. HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\LDM] - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [32768 2011-10-31 => Value not found. HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Driver Detective] - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe [3536864 2012-08-17 => Value not found. HKU\ALEXANDRI\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS => Value deleted successfully. HKU\ALEXANDRI\Software\Microsoft\Windows\CurrentVersion\Run\\X'nBeep => Value deleted successfully. C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Logitech Desktop Messenger.lnk => Moved successfully. C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe => Moved successfully. HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value deleted successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value deleted successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value deleted successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Start Default_Page_URL => Value deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Default_Page_URL => Value deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{061F764A-1091-4A04-A14D-E9C2681770C3} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{061F764A-1091-4A04-A14D-E9C2681770C3} => Key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{061F764A-1091-4A04-A14D-E9C2681770C3} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{061F764A-1091-4A04-A14D-E9C2681770C3} => Key not found. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully. HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => Value deleted successfully. HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} => Value deleted successfully. HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} => Key not found. Firefox Keyword.URL deleted successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\askcom.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\conduit.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Searchab.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\SweetIM Search.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\sweetim.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Web Search.xml => Moved successfully. C:\Program Files\mozilla firefox\searchplugins\Web Search.xml => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} => Moved successfully. C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} => Moved successfully. SBRE => Service deleted successfully. C:\WINDOWS\Tasks\Protected Search.job not found. ==== End of Fixlog ==== |
Szerző: | stell [ szer. júl. 24, 2013 16:48 ] |
Hozzászólás témája: | Re: STELL Segit |
Igen, necsodalkoz hogy lassu, mert igen tele van mindenfele szemettel, tehat csinald lassan nyugodrtan minden amit leirtam, fogg javulni ... |
Szerző: | Babyface [ szer. júl. 24, 2013 16:46 ] |
Hozzászólás témája: | Re: STELL Segit |
Itt vagyok, csinálom, csak a gép valami elképesztő lassú, de nagyon. Remélem, hogy a végén ez is javulni fog, mert félek, hogy beleőszülök, pedig azzal még bőven ráérnék |
Szerző: | stell [ szer. júl. 24, 2013 9:35 ] |
Hozzászólás témája: | Re: STELL Segit |
Ok, akkor itt leszek 17-ora utan, Csinald ezeket meg, amit ide irok, de legy ugyes, es a naplokat rakjad ide majd. A vezerlo pulton altal szed le ezeket a programokat, ha megtalalod, amitt nem talalsz hagyd ugy. C:\Program Files\AVG\AVG PC Tuneup 2011 Conduit Engine (Version: 6.2.3.0) Driver Detective (Version: 8.1) EasyCleaner (Version: 2.0.6.380) Protected Search 1.1 Toolbar Remover 1.0 Az FRST programot [b]beastad IDE[/b]:>> >>C:\Documents and Settings\Rendszergazda\Dokumentumok\Letöltések\FRST Talald meg es TEDD ATT AZ ASZTALRA. Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév> fixlist.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész>>>az fixlist.txt-nek ott kell lennie ahol az FRST.exe program van. Futtatod az FRST.exe programot, DE MOST VIGYAZ raklikelsz az FIX gombra a naplojat (Fixlog.txt)-TEDD IDE. Kód: Start HKLM\...\Run: [SBRegRebootCleaner] - "C:\VIPRERESCUE\SBRC.exe" [x] HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k [x] HKCU\...\Run: [PCSpeedUp] - C:\Program Files\PC Speed Up\PCSpeedUp.lnk [2038 2011-09-15] () HKCU\...\Run: [LDM] - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [32768 2011-10-31] (Logitech) HKCU\...\Run: [Driver Detective] - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe [3536864 2012-08-17] (PC Drivers Headquarters) HKU\ALEXANDRI\...\Run: [MSMSGS] - "C:\PROGRA~1\MESSEN~1\msmsgs.exe" /background [x] HKU\ALEXANDRI\...\Run: [X'nBeep] - C:\Program Files\X'nBeep 1.1\XnBeep.exe [x] Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Logitech Desktop Messenger.lnk ShortcutTarget: Logitech Desktop Messenger.lnk -> C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech) ProxyEnable: Internet Explorer proxy is enabled. HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... bs=true&q= HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... bs=true&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... bs=true&q= HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... bs=true&q= SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ie ... 5574845&q={searchTerms} SearchScopes: HKLM - {061F764A-1091-4A04-A14D-E9C2681770C3} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={AB9BA207-14DE-4A8D-B2E5-A60CEE92486A} SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si= ... id=2958&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ie ... 5574845&q={searchTerms} SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {061F764A-1091-4A04-A14D-E9C2681770C3} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={AB9BA207-14DE-4A8D-B2E5-A60CEE92486A} SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=H3&apn_dtid=YYYYYYYYHU&apn_uid=A942A65E-8ED2-4047-B470-3DE1C3FA8531&apn_sauid=CD3C7DCA-ADFE-4A65-8B03-ABE6AF069678 Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKCU -No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File FF Keyword.URL: hxxp://search.certified-toolbar.com?si= ... bs=true&q= FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\askcom.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\conduit.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Searchab.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\SweetIM Search.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\sweetim.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml FF Extension: No Name - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} FF Extension: DVDVideoSoftTB Community Toolbar - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} S1 SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys [x] Task: C:\WINDOWS\Tasks\Protected Search.job => C:\Program Files\Protected Search\ProtectedSearch.exe End 2: Letolteni a blogombol az asztalra es Futtasd le az ADWCLEANERT>>KLIK az GOMBRA DELETE>.a naplojat tedd ide. http://www.viruskasino.com/2012/09/adwcleaner.html 3: Letolteni a blogombol az asztalra es Futtasd le az Junmwareremovaltool>>naplojat tedd ide. http://www.viruskasino.com/2010/12/prog ... moval-tool 4:Letolteni az asztalra az OTL>.programot http://oldtimer.geekstogo.com/OTL.exe Futtasd>>>az ablakjaba masold be a zold textet kod szo nelkull, es klik az gombra RUNFIX>.a naplojat tedd ide Kód: :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp ipconfig /flushdns /c :Commands [purity] [emptytemp] [clearallrestorepoints] [Reboot] 5:Futtasd le az combofixet, a naplojat tedd ide. http://www.bleepingcomputer.com/combofi ... t-combofix Csehul van de lefordithatod, az translatoral, de mar dolgoztal vele, ezert gondolom hogy tuddod, hogyam kell. AZ naplojat combofix.txt Tedd ide. Es aztan majd meglassuk. |
Szerző: | Babyface [ kedd júl. 23, 2013 19:36 ] |
Hozzászólás témája: | Re: STELL Segit |
Köszi Stell! Holnap 17 óra után én is gépnél leszek, remélem, neked sem késő, és akkor remélhetőleg ki tudjuk irtani a vírust a gépről a segítségeddel. Még egyszer köszi! Szép estét! |
Szerző: | stell [ kedd júl. 23, 2013 19:31 ] |
Hozzászólás témája: | Re: STELL Segit |
Babyface csak holnap irom ide neked a megoldast, igen a gep virusos, de ma mar nincsen idom, mert el kell menem egy mas szamitogepet csinalnom. Tehat holnap ide irom hogyan tovvabb. |
Szerző: | Babyface [ kedd júl. 23, 2013 18:00 ] |
Hozzászólás témája: | Re: STELL Segit |
folyt... 2013-06-27 21:29 - 2013-06-27 08:55 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum 2013-06-27 21:29 - 2013-06-27 08:55 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum 2013-06-27 21:29 - 2013-03-21 21:56 - 00175176 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys 2013-06-27 21:29 - 2013-03-03 09:42 - 00770344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2013-06-27 21:29 - 2013-03-03 09:42 - 00369584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2013-06-25 18:19 - 2010-02-17 21:58 - 00000000 ____D C:\Documents and Settings\All Users\Asztal 2013-06-25 18:18 - 2013-06-25 18:18 - 00000000 ____D C:\Program Files\whiskas widget 2013-06-25 18:18 - 2013-06-25 18:18 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR 2013-06-25 18:18 - 2010-02-18 16:09 - 00000000 ____D C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Adobe 2013-06-25 18:18 - 2010-02-18 16:09 - 00000000 ____D C:\Documents and Settings\Rendszergazda\Application Data\Adobe 2013-06-25 18:18 - 2010-02-17 21:14 - 00000000 ____D C:\Program Files\Adobe 2013-06-25 18:18 - 2010-02-17 21:08 - 00000000 ____D C:\Documents and Settings\Default User\Application Data\Macromedia 2013-06-24 00:37 - 2011-05-18 20:38 - 75733144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2008-04-14 11:02] - [2008-04-14 11:02] - 1035776 ____A (Microsoft Corporation) ad3a8a9e8914439852a98ce48015e237 C:\Windows\System32\winlogon.exe [2008-04-14 11:02] - [2008-04-14 11:02] - 0509952 ____A (Microsoft Corporation) 15d1d956d9f01e51e6623edb31ea43b6 C:\Windows\System32\svchost.exe [2008-04-14 11:02] - [2008-04-14 11:02] - 0014336 ____A (Microsoft Corporation) 05194d8a92cf7e559c1a38fc134c966a C:\Windows\System32\services.exe [2008-04-14 11:02] - [2009-02-09 13:26] - 0111104 ____A (Microsoft Corporation) 9cedbfbe08bc1c4f35f74b8f96e0289a C:\Windows\System32\User32.dll [2008-04-14 11:02] - [2008-04-14 11:02] - 0578560 ____A (Microsoft Corporation) d6cae3824ea12a356065c9ef10fc0eb3 C:\Windows\System32\userinit.exe [2008-04-14 11:02] - [2008-04-14 11:02] - 0026112 ____A (Microsoft Corporation) b0dddfc8361952b956ef9475244f40bd C:\Windows\System32\Drivers\volsnap.sys [2008-04-14 10:35] - [2008-04-14 10:35] - 0052608 ____A (Microsoft Corporation) 9946cfcc7e445e1d846db748299724eb |
Szerző: | Babyface [ kedd júl. 23, 2013 17:59 ] |
Hozzászólás témája: | Re: STELL Segit |
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2013 Ran by Rendszergazda (administrator) on 23-07-2013 18:53:55 Running from C:\Documents and Settings\Rendszergazda\Dokumentumok\Letöltések Microsoft Windows XP Professional Szervizcsomag 3 (X86) OS Language: 040e Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Logitech Inc.) c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe (Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (AVG) C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe () C:\WINDOWS\activecaptions.exe (Ivan Heckman) C:\WINDOWS\allsnap.exe (HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE (Logitech Inc.) C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.) C:\Program Files\Logitech\Video\CameraAssistant.exe (Logitech Inc.) C:\WINDOWS\system32\ElkCtrl.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastUI.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE (Logitech) C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugin-container.exe (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Activecaptions] - C:\WINDOWS\activecaptions.exe [337408 2005-11-14] () HKLM\...\Run: [AllSnap] - C:\WINDOWS\allsnap.exe [81920 2006-11-14] (Ivan Heckman) HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2005-11-14] (Ahead Software Gmbh) HKLM\...\Run: [HPDJ Taskbar Utility] - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [172032 2004-03-04] (HP) HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [90112 2006-11-10] () HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.) HKLM\...\Run: [SoundMan] - SOUNDMAN.EXE [x] HKLM\...\Run: [LVCOMSX] - C:\WINDOWS\system32\LVCOMSX.EXE [225280 2005-12-09] (Logitech Inc.) HKLM\...\Run: [LogitechCameraAssistant] - C:\Program Files\Logitech\Video\CameraAssistant.exe [489472 2005-12-07] (Logitech Inc.) HKLM\...\Run: [LogitechVideo[inspector]] - C:\Program Files\Logitech\Video\InstallHelper.exe [73728 2005-12-07] (Logitech Inc.) HKLM\...\Run: [LogitechCameraService(E)] - C:\WINDOWS\system32\ElkCtrl.exe [262144 2004-11-01] (Logitech Inc.) HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software) HKLM\...\Run: [SBRegRebootCleaner] - "C:\VIPRERESCUE\SBRC.exe" [x] HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k [x] Winlogon\Notify\Antiwpa: antiwpa.dll () Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.) Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation) HKCU\...\Run: [PCSpeedUp] - C:\Program Files\PC Speed Up\PCSpeedUp.lnk [2038 2011-09-15] () HKCU\...\Run: [LDM] - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [32768 2011-10-31] (Logitech) HKCU\...\Run: [Driver Detective] - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe [3536864 2012-08-17] (PC Drivers Headquarters) HKCU\...\Run: [EADM] - C:\Program Files\Origin\Origin.exe [3456080 2013-06-08] (Electronic Arts) HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.) HKU\ALEXANDRI\...\Run: [LDM] - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [ 2011-10-31] (Logitech) HKU\ALEXANDRI\...\Run: [MSMSGS] - "C:\PROGRA~1\MESSEN~1\msmsgs.exe" /background [x] HKU\ALEXANDRI\...\Run: [X'nBeep] - C:\Program Files\X'nBeep 1.1\XnBeep.exe [x] HKU\ALEXANDRI\...\Run: [VMCL] - C:\Program Files\vodafone\vmclite\DongleEnumerator.exe [x] Lsa: [Authentication Packages] msv1_0 nwprovau Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Logitech Desktop Messenger.lnk ShortcutTarget: Logitech Desktop Messenger.lnk -> C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech) ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... bs=true&q= HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... bs=true&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... bs=true&q= HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si= ... e&tid=2958 HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... bs=true&q= SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ie ... 5574845&q={searchTerms} SearchScopes: HKLM - {061F764A-1091-4A04-A14D-E9C2681770C3} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={AB9BA207-14DE-4A8D-B2E5-A60CEE92486A} SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si= ... id=2958&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ie ... 5574845&q={searchTerms} SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {061F764A-1091-4A04-A14D-E9C2681770C3} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={AB9BA207-14DE-4A8D-B2E5-A60CEE92486A} SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=H3&apn_dtid=YYYYYYYYHU&apn_uid=A942A65E-8ED2-4047-B470-3DE1C3FA8531&apn_sauid=CD3C7DCA-ADFE-4A65-8B03-ABE6AF069678 SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://www.bing.com/search?FORM=UP21DF& ... =032013&q={searchTerms}&src=IE-SearchBox SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ie ... 5574845&q={searchTerms} SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://isearch.avg.com/search?cid={5AA6616B-5C58-423C-BF58-74AE0D6BFD42}&mid=b8a7c74d27c747d193ccd1a914602946-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=hu&ds=AVG&pr=fr&d=2011-10-08 16:47:27&v=10.0.0.7&sap=dsp&q={searchTerms} SearchScopes: HKCU - {ED3C2F12-2040-4E73-A497-3DA03F68EF54} URL = http://search.certified-toolbar.com?si= ... id=2958&q={searchTerms} BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx () BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\Rendszergazda\Application Data\Complitly\Complitly.dll (SimplyGen) BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Windows Live bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) Toolbar: HKLM - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKCU -No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messenger ... E_UNO1.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/Mi ... b56986.cab Handler: bw+0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw+0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw-0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw-0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw00 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw00s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw10 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw10s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw20 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw20s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw30 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw30s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw40 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw40s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw50 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw50s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw60 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw60s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw70 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw70s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw80 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw80s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw90 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bw90s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwa0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwa0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwb0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwb0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwc0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwc0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwd0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwd0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwe0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwe0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwf0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwf0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwg0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwg0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwh0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwh0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwi0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwi0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwj0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwj0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwk0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwk0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwl0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwl0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwm0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwm0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwn0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwn0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwo0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwo0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwp0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwp0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwq0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwq0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwr0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwr0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bws0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bws0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwt0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwt0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwu0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwu0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwv0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwv0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bww0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bww0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwx0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwx0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwy0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwy0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwz0 - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: bwz0s - {49d7ad3e-598f-48a6-8a6c-9309e036caa7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: ipp - No CLSID Value - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) Handler: msdaipp - No CLSID Value - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) Handler: offline-8876480 - {49D7AD3E-598F-48A6-8A6C-9309E036CAA7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default FF SelectedSearchEngine: Google FF Homepage: hxxp://www.google.hu/ FF Keyword.URL: hxxp://search.certified-toolbar.com?si= ... bs=true&q= FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\askcom.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\conduit.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Searchab.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\SweetIM Search.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\sweetim.xml FF SearchPlugin: C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml FF Extension: No Name - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} FF Extension: DVDVideoSoftTB Community Toolbar - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} FF Extension: testpilot - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\testpilot@labs.mozilla.com.xpi FF Extension: No Name - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\WTB_GLOBAL.sqlite FF Extension: No Name - C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\vwh7kwaz.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF HKLM\...\Firefox\Extensions: [jqs@sun.com] C:\Program Files\Java\jre6\lib\deploy\jqs\ff FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff FF HKLM\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF FF StartMenuInternet: FIREFOX.EXE - "C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe" Chrome: ======= CHR HomePage: hxxp://msn.mainap.hu/?pc=UP21&ocid=UP21DHP&dt=032013 CHR RestoreOnStartup: "hxxp://www.google.hu/" CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Java Deployment Toolkit 6.0.230.5) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.) CHR Plugin: (Java(TM) Platform SE 6 U23) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation) CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.)) CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation) CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll No File CHR Extension: (Google Docs) - C:\DOCUME~1\RENDSZ~1\LOCALS~1\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (AdBlock) - C:\DOCUME~1\RENDSZ~1\LOCALS~1\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0 CHR Extension: (Watch Video App) - C:\DOCUME~1\RENDSZ~1\LOCALS~1\Application Data\Google\Chrome\User Data\Default\Extensions\jgehgofphholaefdofgkppkabgpfabhj\19.0_0 CHR HKLM\...\Chrome\Extension: [aoldfkppopehmafoepecnbgjlhfofdkd] - C:\Documents and Settings\All Users\Application Data\Zoomex\aoldfkppopehmafoepecnbgjlhfofdkd.crx CHR HKLM\...\Chrome\Extension: [bahpmbhipejcanheampenhackmlbplhl] - C:\Documents and Settings\All Users\Application Data\Zoomex\bahpmbhipejcanheampenhackmlbplhl.crx CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx CHR HKLM\...\Chrome\Extension: [haamjpecagbnggebfnmniiickcnaiogk] - C:\Documents and Settings\All Users\Application Data\Zoomex\haamjpecagbnggebfnmniiickcnaiogk.crx CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx CHR HKLM\...\Chrome\Extension: [kbmnpcdapmefbkneppdkffmdoeihhkbn] - C:\Documents and Settings\All Users\Application Data\Zoomex\kbmnpcdapmefbkneppdkffmdoeihhkbn.crx CHR HKLM\...\Chrome\Extension: [mmijpmhilmpoabpkcmpbdkjgkiolhpgl] - C:\Documents and Settings\All Users\Application Data\Zoomex\mmijpmhilmpoabpkcmpbdkjgkiolhpgl.crx CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx CHR HKLM\...\Chrome\Extension: [ogkjagbpeblbmckmiokpcjkcoelkjlnh] - C:\Documents and Settings\All Users\Application Data\Zoomex\ogkjagbpeblbmckmiokpcjkcoelkjlnh.crx ========================== Services (Whitelisted) ================= R2 6to4; C:\Windows\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation) S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-01-09] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software) R2 LVPrcSrv; c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe [81920 2005-12-09] (Logitech Inc.) R2 NWCWorkstation; C:\Windows\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation) S4 HidServ; %SystemRoot%\System32\hidserv.dll [x] R2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x] S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [x] ==================== Drivers (Whitelisted) ==================== R3 ALCXSENS; C:\Windows\System32\drivers\ALCXSENS.SYS [400384 2004-02-24] (Sensaura) R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [616124 2004-04-28] (Realtek Semiconductor Corp.) R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software) R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [49760 2013-05-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-06-27] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-06-27] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-06-27] () S3 ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [2846720 2008-01-10] (ATI Technologies Inc.) S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [16384 2004-07-09] (Microsoft Corporation) R2 fssfltr; C:\Windows\System32\DRIVERS\fssfltr_tdi.sys [54760 2010-04-28] (Microsoft Corporation) S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2010-06-14] () S3 Lvckap; C:\WINDOWS\system32\drivers\Lvckap.sys [2174464 2005-12-09] () S3 lvmvdrv; C:\WINDOWS\system32\drivers\lvmvdrv.sys [2400256 2005-12-09] () R3 LVPrcMon; C:\WINDOWS\system32\drivers\LVPrcMon.sys [16768 2005-12-09] () S3 LVUSBSta; C:\Windows\System32\drivers\lvusbsta.sys [39424 2005-12-06] (Logitech Inc.) S3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [83968 2004-07-09] (Microsoft Corporation) S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10112 2004-07-09] (Microsoft Corporation) S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation) S3 NPF; C:\Windows\System32\drivers\npf.sys [34064 2007-11-06] (CACE Technologies) S3 nvax; C:\Windows\System32\drivers\nvax.sys [40832 2004-03-03] (NVIDIA Corporation) S3 NVENET; C:\Windows\System32\DRIVERS\NVENET.sys [72771 2003-08-15] (NVIDIA Corporation) S3 nvnforce; C:\Windows\System32\drivers\nvapu.sys [320640 2004-03-03] (NVIDIA Corporation) R0 nv_agp; C:\Windows\System32\DRIVERS\nv_agp.sys [18688 2003-03-19] (NVIDIA Corporation) R2 NwlnkIpx; C:\Windows\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation) R2 NwlnkNb; C:\Windows\System32\DRIVERS\nwlnknb.sys [63232 2008-05-07] (Microsoft Corporation) R2 NwlnkSpx; C:\Windows\System32\DRIVERS\nwlnkspx.sys [55936 2008-05-07] (Microsoft Corporation) R3 NWRDR; C:\Windows\System32\DRIVERS\nwrdr.sys [163584 2008-04-13] (Microsoft Corporation) S3 PID_0928; C:\Windows\System32\DRIVERS\LV561AV.SYS [287360 2005-12-06] (Logitech Inc.) R3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation) R0 SI3112r; C:\Windows\System32\DRIVERS\SI3112r.sys [110128 2007-02-01] (Silicon Image, Inc) R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [17328 2007-02-01] (Silicon Image, Inc.) S3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [10880 2004-07-09] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [717296 2010-02-17] () S3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [14976 2004-07-09] (Microsoft Corporation) R1 Tcpip6; C:\Windows\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation) S3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [18688 2004-07-09] (Microsoft Corporation) S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x] S4 IntelIde; No ImagePath S1 SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys [x] S3 StarOpen; No ImagePath U1 WS2IFSL; ========================== Drivers MD5 ======================= C:\Windows\System32\DRIVERS\ACPI.sys 5482FF197E59B4CA97CCB1B4740A2949 C:\Windows\System32\Drivers\ACPIEC.sys 582C901174A7F0733C6FE41C37C9A80B C:\Windows\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557 C:\Windows\System32\drivers\afd.sys 1E44BC1E83D8FD2305F8D452DB109CF9 C:\Windows\System32\drivers\ALCXSENS.SYS BA88534A3CEB6161E7432438B9EA4F54 C:\Windows\System32\drivers\ALCXWDM.SYS 647B8E33E1166829889502A3DF2A7BA8 C:\Windows\System32\DRIVERS\amdk7.sys 5338F3A9987E80B0C00F9C7C16122FD7 C:\Windows\System32\Drivers\aswFsBlk.sys 4AF5F360BA1E8794D32B366E45A64A0A C:\WINDOWS\system32\drivers\aswMonFlt.sys 1F7094D4268D46F718C51286DC189791 C:\Windows\System32\Drivers\AswRdr.sys 7B43265F92257A21CBFD88E7A651044C C:\Windows\System32\Drivers\aswRvrt.sys B680134BA1813B78B47FDD1DFF223CA5 C:\Windows\System32\Drivers\aswSnx.sys CCD565A8A72AF7D45F9A242013870926 C:\Windows\System32\Drivers\aswSP.sys 937300BC7C4CDF7576BCCE44E19BBB9D C:\Windows\System32\Drivers\aswTdi.sys 1F71F170D90E42EFDE9633D81D5E12DC C:\Windows\System32\Drivers\aswVmm.sys 8CFAA2B965773A653F48F1207A9CB9C4 C:\Windows\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC C:\Windows\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674 C:\Windows\System32\DRIVERS\ati2mtag.sys 7E6EA88E7079A877C8DACDE3EF9508C8 C:\Windows\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159 C:\Windows\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68 C:\Windows\System32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9 C:\Windows\System32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9 C:\Windows\System32\DRIVERS\CCDECODE.sys FDC06E2ADA8C468EBB161624E03976CF C:\Windows\System32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B C:\Windows\System32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32 C:\Windows\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE C:\Windows\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25 C:\Windows\System32\drivers\dmboot.sys AE717BE311722CEEBD9A27B57757A123 C:\Windows\System32\drivers\dmio.sys 66B7462AD4844052D4A6CBEA3AA486A0 C:\Windows\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F C:\Windows\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45 C:\Windows\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8 C:\Windows\System32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E C:\Windows\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81 C:\Windows\System32\Drivers\Fips.sys 0986FCA8FD7A56D9F1628FE6EF321090 C:\Windows\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0 C:\Windows\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0 C:\Windows\System32\DRIVERS\fssfltr_tdi.sys E0087225B137E57239FF40F8AE82059B C:\WINDOWS\system32\FsUsbExDisk.SYS CBE5F69A5E5B918225F420BA748F3742 C:\Windows\System32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A C:\Windows\System32\DRIVERS\ftdisk.sys 44225407F69666099C4D4C6BC9CD804D C:\Windows\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2 C:\Windows\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1 C:\Windows\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38 C:\Windows\System32\DRIVERS\i8042prt.sys D7947ECF17544CED478BD969939DB349 C:\Windows\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E C:\Windows\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0 C:\Windows\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182 C:\Windows\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5 C:\Windows\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB C:\Windows\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91 C:\Windows\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89 C:\Windows\System32\DRIVERS\isapnp.sys 3685529CAA2B14C9632E85E265BA293B C:\Windows\System32\DRIVERS\kbdclass.sys 51D3342D1A0C19605095405352BB009B C:\Windows\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378 C:\Windows\System32\Drivers\KSecDD.sys B467646C54CC746128904E1654C750C1 C:\WINDOWS\system32\drivers\Lvckap.sys BD0D8C9E3AEF163DAFA0A3C27106D049 C:\WINDOWS\system32\drivers\lvmvdrv.sys C2AD4603075B1C58D92B6BB00E08E958 C:\WINDOWS\system32\drivers\LVPrcMon.sys 4FD5A6335FB4FC1F758088B2F90613FE C:\Windows\System32\drivers\lvusbsta.sys C0883F7914AFA7FEAA41ADA0D513AC16 C:\Windows\System32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6 C:\Windows\System32\Drivers\Modem.sys 226B93EB15B1C819FA021A5167C5809D C:\Windows\System32\DRIVERS\mouclass.sys 705CAC1902DCD3E3181A199D7AD40D13 C:\Windows\System32\DRIVERS\mouhid.sys 6A79CB27D0E608A45638CD9468269A3E C:\Windows\System32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD C:\Windows\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD C:\Windows\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0 C:\Windows\System32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027 C:\Windows\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1 C:\Windows\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E C:\Windows\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D C:\Windows\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136 C:\Windows\System32\drivers\MSTEE.sys D5059366B361F0E1124753447AF08AA2 C:\Windows\System32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5 C:\Windows\System32\DRIVERS\NABTSFEC.sys AC31B352CE5E92704056D409834BEB74 C:\Windows\System32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D C:\Windows\System32\DRIVERS\NdisIP.sys ABD7629CF2796250F315C1DD0B6CF7A0 C:\Windows\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22 C:\Windows\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849 C:\Windows\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB C:\Windows\System32\Drivers\NDProxy.sys 9282BD12DFB069D3889EB3FCC1000A9B C:\Windows\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0 C:\Windows\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D C:\Windows\System32\DRIVERS\NMnt.sys 1E421A6BCF2203CC61B821ADA9DE878B C:\Windows\System32\drivers\npf.sys 6623E51595C0076755C29C00846C4EB2 C:\Windows\System32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A C:\Windows\System32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA C:\Windows\System32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD C:\Windows\System32\DRIVERS\nv4_mini.sys 2B298519EDBFCF451D43E0F1E8F1006D C:\Windows\System32\drivers\nvax.sys B72CB24BB0E6B1CE17EE3E23946409B3 C:\Windows\System32\DRIVERS\NVENET.sys 5155E22DA2F2E1CA4023D00F6EB31B5E C:\Windows\System32\drivers\nvapu.sys 8780EB5B1C5252993032988250BEEA8A C:\Windows\System32\DRIVERS\nv_agp.sys 29291C3A7256337327051CC37E4FC09A C:\Windows\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57 C:\Windows\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9 C:\Windows\System32\DRIVERS\nwlnkipx.sys 8B8B1BE2DBA4025DA6786C645F77F123 C:\Windows\System32\DRIVERS\nwlnknb.sys 56D34A67C05E94E16377C60609741FF8 C:\Windows\System32\DRIVERS\nwlnkspx.sys C0BB7D1615E1ACBDC99757F6CEAF8CF0 C:\Windows\System32\DRIVERS\nwrdr.sys 36B9B950E3D2E100970A48D8BAD86740 C:\Windows\System32\Drivers\Parport.sys 632F154061074A9A1B75ECBBA89D8D42 C:\Windows\System32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6 C:\Windows\System32\Drivers\ParVdm.sys 4DF92A889E7FE15ED3834D288A0271F5 C:\Windows\System32\DRIVERS\pci.sys B4A9C91CFDD5C68E2E48C0754E3A88F9 C:\Windows\System32\DRIVERS\pciide.sys FBF3CC42488FD2CE49F9427240CD5809 C:\Windows\System32\Drivers\Pcmcia.sys 3DEFB381B9CDCA9D4375BD37A3C0189B C:\Windows\System32\DRIVERS\LV561AV.SYS 238E89CA013CDD3AC5BE63B144423F5C C:\Windows\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99 C:\Windows\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424 C:\Windows\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD C:\Windows\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C C:\Windows\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6 C:\Windows\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE C:\Windows\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242 C:\Windows\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A C:\Windows\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332 C:\Windows\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1 C:\Windows\System32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7 C:\Windows\System32\DRIVERS\redbook.sys 3C706FD765482112C3A6D42E1D7B58BB C:\Windows\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7 C:\Windows\System32\DRIVERS\RTL8139.SYS D507C1400284176573224903819FFDA3 C:\Windows\System32\DRIVERS\secdrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE C:\Windows\System32\DRIVERS\serial.sys 87DF40B4DB611EFBDF74C9B3ECCAB417 C:\Windows\System32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562 C:\Windows\System32\DRIVERS\SI3112r.sys EC2B7C23FB561A52904571439DDBAB78 C:\Windows\System32\DRIVERS\SiWinAcc.sys AB668C54E365C98F775C8024660C9719 C:\Windows\System32\DRIVERS\SLIP.sys 1FFC44D6787EC1EA9A2B1440A90FA5C1 C:\Windows\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F C:\Windows\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\DRIVERS\sr.sys 38E904FB6139945822B929EAF2570CA5 C:\Windows\System32\DRIVERS\srv.sys 47DDFC2F003F7F9F0592C6874962A2E7 C:\Windows\System32\DRIVERS\StreamIP.sys A9F9FD0212E572B84EDB9EB661F6BC04 C:\Windows\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F C:\Windows\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01 C:\Windows\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290 C:\Windows\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D C:\Windows\System32\DRIVERS\tcpip6.sys 4E53BBCC4BE37D7A4BD6EF1098C89FF7 C:\Windows\System32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397 C:\Windows\System32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61 C:\Windows\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E C:\Windows\System32\DRIVERS\tunmp.sys 8F861EDA21C05857EB8197300A92501C C:\Windows\System32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9 C:\Windows\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31 C:\Windows\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8 C:\Windows\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7 C:\Windows\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C C:\Windows\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B C:\Windows\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00 C:\Windows\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4 C:\Windows\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9 C:\Windows\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1 C:\Windows\System32\Drivers\VolSnap.sys 9946CFCC7E445E1D846DB748299724EB C:\Windows\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6 C:\Windows\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F C:\Windows\System32\DRIVERS\WSTCODEC.SYS 233CDD1C06942115802EB7CE6669E099 C:\Windows\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311 C:\Windows\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-23 18:53 - 2013-07-23 18:53 - 00000000 ____D C:\FRST 2013-07-23 18:22 - 2013-07-23 18:22 - 00000000 ____D C:\WINDOWS\system32\MRT 2013-07-21 10:03 - 2013-07-21 12:45 - 00000000 ____D C:\Program Files\Mozilla Firefox 4.0 Beta 11 2013-07-11 21:24 - 2013-07-11 21:24 - 00127349 _____ C:\WINDOWS\KB2834904.log 2013-07-11 21:24 - 2013-07-11 21:24 - 00127053 _____ C:\WINDOWS\KB2834886.log 2013-07-11 21:24 - 2013-07-11 21:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904_WM11$ 2013-07-11 21:24 - 2013-07-11 21:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$ 2013-07-11 21:23 - 2013-07-11 21:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850851$ 2013-07-11 21:22 - 2013-07-11 21:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$ 2013-07-11 21:10 - 2013-07-11 21:12 - 00136060 _____ C:\WINDOWS\KB2846071-IE8.log 2013-07-11 19:40 - 2013-07-11 21:23 - 00132323 _____ C:\WINDOWS\KB2850851.log 2013-07-11 19:40 - 2013-07-11 21:22 - 00133028 _____ C:\WINDOWS\KB2845187.log 2013-07-01 14:46 - 2008-04-14 07:01 - 04274816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll 2013-07-01 14:46 - 2008-04-13 07:34 - 01897408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys 2013-06-30 19:26 - 2013-06-30 19:25 - 00106496 _____ C:\WINDOWS\Minidump\Mini063013-01.dmp 2013-06-27 21:29 - 2013-06-27 21:29 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum 2013-06-27 08:55 - 2013-06-27 21:29 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum 2013-06-27 08:55 - 2013-06-27 21:29 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum 2013-06-25 18:18 - 2013-06-25 18:18 - 00000000 ____D C:\Program Files\whiskas widget 2013-06-25 18:18 - 2013-06-25 18:18 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR ==================== One Month Modified Files and Folders ======= 2013-07-23 18:55 - 2011-05-18 21:50 - 00000456 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{F9057B67-91B4-4544-9DF4-7DA305619FEE}.job 2013-07-23 18:53 - 2013-07-23 18:53 - 00000000 ____D C:\FRST 2013-07-23 18:52 - 2012-11-27 18:42 - 00000000 ____D C:\Documents and Settings\Rendszergazda\Dokumentumok\Letöltések 2013-07-23 18:52 - 2010-02-17 21:06 - 01431193 _____ C:\WINDOWS\WindowsUpdate.log 2013-07-23 18:47 - 2013-03-03 09:42 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job 2013-07-23 18:37 - 2012-12-26 19:12 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2013-07-23 18:37 - 2012-12-23 18:33 - 00000000 ____D C:\Program Files\Origin 2013-07-23 18:36 - 2012-11-27 16:07 - 00001026 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-23 18:36 - 2010-02-17 22:01 - 00000159 _____ C:\WINDOWS\wiadebug.log 2013-07-23 18:36 - 2010-02-17 22:01 - 00000053 _____ C:\WINDOWS\wiaservc.log 2013-07-23 18:36 - 2008-05-07 03:19 - 00002228 _____ C:\WINDOWS\system32\wpa.dbl 2013-07-23 18:35 - 2013-01-05 17:47 - 00000346 _____ C:\WINDOWS\Tasks\Protected Search.job 2013-07-23 18:35 - 2011-10-08 18:10 - 00000450 _____ C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Rendszergazda Logon.job 2013-07-23 18:35 - 2010-02-17 21:10 - 00032032 _____ C:\WINDOWS\SchedLgU.Txt 2013-07-23 18:35 - 2010-02-17 21:10 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-07-23 18:25 - 2013-07-23 18:22 - 00000000 ____D C:\WINDOWS\system32\MRT 2013-07-23 18:25 - 2013-06-20 09:05 - 00458752 _____ C:\WINDOWS\system32\config\ACEEvent.evt 2013-07-23 18:21 - 2010-02-17 21:10 - 00000178 ___SH C:\Documents and Settings\Rendszergazda\ntuser.ini 2013-07-23 15:19 - 2011-03-03 13:47 - 00000000 ____D C:\Documents and Settings\Rendszergazda\.umplayer 2013-07-22 21:31 - 2012-11-27 16:07 - 00001030 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-22 18:49 - 2013-03-20 20:41 - 00000000 ____D C:\Documents and Settings\Rendszergazda\Application Data\Skype 2013-07-21 17:00 - 2012-03-31 14:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-07-21 12:45 - 2013-07-21 10:03 - 00000000 ____D C:\Program Files\Mozilla Firefox 4.0 Beta 11 2013-07-12 13:13 - 2010-02-18 15:54 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2013-07-12 12:59 - 2011-01-13 13:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-07-12 12:59 - 2010-02-17 21:56 - 00282928 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-07-11 21:26 - 2010-02-17 21:59 - 01142122 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2013-07-11 21:24 - 2013-07-11 21:24 - 00127349 _____ C:\WINDOWS\KB2834904.log 2013-07-11 21:24 - 2013-07-11 21:24 - 00127053 _____ C:\WINDOWS\KB2834886.log 2013-07-11 21:24 - 2013-07-11 21:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904_WM11$ 2013-07-11 21:24 - 2013-07-11 21:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$ 2013-07-11 21:24 - 2013-01-10 19:50 - 00173883 _____ C:\WINDOWS\iis6.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00160758 _____ C:\WINDOWS\FaxSetup.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00082056 _____ C:\WINDOWS\ocgen.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00073372 _____ C:\WINDOWS\tsoc.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00053106 _____ C:\WINDOWS\comsetup.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00049258 _____ C:\WINDOWS\msmqinst.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00032216 _____ C:\WINDOWS\ntdtcsetup.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00011050 _____ C:\WINDOWS\MedCtrOC.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00008112 _____ C:\WINDOWS\tabletoc.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00001374 _____ C:\WINDOWS\imsins.log 2013-07-11 21:24 - 2013-01-10 19:50 - 00001374 _____ C:\WINDOWS\imsins.BAK 2013-07-11 21:23 - 2013-07-11 21:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850851$ 2013-07-11 21:23 - 2013-07-11 19:40 - 00132323 _____ C:\WINDOWS\KB2850851.log 2013-07-11 21:22 - 2013-07-11 21:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$ 2013-07-11 21:22 - 2013-07-11 19:40 - 00133028 _____ C:\WINDOWS\KB2845187.log 2013-07-11 21:12 - 2013-07-11 21:10 - 00136060 _____ C:\WINDOWS\KB2846071-IE8.log 2013-07-11 21:12 - 2013-01-15 18:05 - 00019788 _____ C:\WINDOWS\updspapi.log 2013-07-11 21:11 - 2011-05-18 20:44 - 00000000 ____D C:\WINDOWS\ie8updates 2013-07-11 20:51 - 2010-11-22 16:46 - 00000000 ____D C:\WINDOWS\system32\XPSViewer 2013-07-11 20:31 - 2010-02-17 21:04 - 00000000 ____D C:\WINDOWS\system32\Restore 2013-07-05 17:55 - 2010-02-17 21:10 - 00000000 ___RD C:\Documents and Settings\Rendszergazda\Dokumentumok 2013-07-01 14:47 - 2013-05-28 12:45 - 00005320 _____ C:\WINDOWS\system32\d3d9caps.dat 2013-07-01 14:47 - 2012-12-26 20:43 - 00075583 _____ C:\WINDOWS\setupapi.log 2013-07-01 12:32 - 2013-06-08 14:15 - 00000000 ____D C:\Documents and Settings\Rendszergazda\Application Data\uTorrent 2013-06-30 19:26 - 2010-09-03 16:44 - 00000000 ____D C:\WINDOWS\Minidump 2013-06-30 19:25 - 2013-06-30 19:26 - 00106496 _____ C:\WINDOWS\Minidump\Mini063013-01.dmp 2013-06-30 18:18 - 2010-02-17 21:51 - 00106496 _____ C:\WINDOWS\DUMP3930.tmp 2013-06-27 21:29 - 2013-06-27 21:29 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum |
Szerző: | Babyface [ kedd júl. 23, 2013 17:58 ] |
Hozzászólás témája: | Re: STELL Segit |
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-07-2013 Ran by Rendszergazda at 2013-07-23 18:55:11 Running from C:\Documents and Settings\Rendszergazda\Dokumentumok\Letöltések Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= ##CAMERADRIVERNAME## µTorrent (Version: 3.3.0.29677) AC3Filter (remove only) Adobe Acrobat 5.0 CE (Version: 5.0) Adobe AIR (Version: 3.7.0.2090) Adobe Flash Player 11 ActiveX (Version: 11.7.700.224) Adobe Flash Player 11 Plugin (Version: 11.7.700.224) Adobe Reader 7.0.8 (Version: 7.0. Arcade Classics ATI AVIVO Codecs (Version: 9.15.0.20713) ATI Catalyst Control Center (Version: 2.008.0109.2140) ATI Catalyst Install Manager (Version: 3.0.762.0) ATI Display Driver (Version: 8.452-080109a-057974E-ATI) ATI HYDRAVISION (Version: 3.25.0006) ATI Parental Control & Encoder (Version: 3.0) ATI Problem Report Wizard (Version: 8.10) avast! Free Antivirus (Version: 8.0.1489.0) Biztonsági frissítés a Microsoft Windows rendszerhez (KB2564958) Catalyst Control Center Core Implementation (Version: 2008.0109.2141.38743) Catalyst Control Center Graphics Full Existing (Version: 2008.0109.2141.38743) Catalyst Control Center Graphics Full New (Version: 2008.0109.2141.38743) Catalyst Control Center Graphics Light (Version: 2008.0109.2141.38743) Catalyst Control Center Graphics Previews Common (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Chinese Standard (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Chinese Traditional (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Czech (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Danish (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Dutch (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Finnish (Version: 2008.0109.2141.38743) Catalyst Control Center Localization French (Version: 2008.0109.2141.38743) Catalyst Control Center Localization German (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Greek (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Hungarian (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Italian (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Japanese (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Korean (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Norwegian (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Polish (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Portuguese (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Russian (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Spanish (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Swedish (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Thai (Version: 2008.0109.2141.38743) Catalyst Control Center Localization Turkish (Version: 2008.0109.2141.38743) CCC Help Chinese Standard (Version: 2008.0109.2140.38743) CCC Help Chinese Traditional (Version: 2008.0109.2140.38743) CCC Help Czech (Version: 2008.0109.2140.38743) CCC Help Danish (Version: 2008.0109.2140.38743) CCC Help Dutch (Version: 2008.0109.2140.38743) CCC Help English (Version: 2008.0109.2140.38743) CCC Help Finnish (Version: 2008.0109.2140.38743) CCC Help French (Version: 2008.0109.2140.38743) CCC Help German (Version: 2008.0109.2140.38743) CCC Help Greek (Version: 2008.0109.2140.38743) CCC Help Hungarian (Version: 2008.0109.2140.38743) CCC Help Italian (Version: 2008.0109.2140.38743) CCC Help Japanese (Version: 2008.0109.2140.38743) CCC Help Korean (Version: 2008.0109.2140.38743) CCC Help Norwegian (Version: 2008.0109.2140.38743) CCC Help Polish (Version: 2008.0109.2140.38743) CCC Help Portuguese (Version: 2008.0109.2140.38743) CCC Help Russian (Version: 2008.0109.2140.38743) CCC Help Spanish (Version: 2008.0109.2140.38743) CCC Help Swedish (Version: 2008.0109.2140.38743) CCC Help Thai (Version: 2008.0109.2140.38743) CCC Help Turkish (Version: 2008.0109.2140.38743) ccc-core-preinstall (Version: 2008.0109.2141.38743) ccc-core-static (Version: 2008.0109.2141.38743) ccc-utility (Version: 2008.0109.2141.38743) CCleaner (Version: 3.26) ChickenShoot 2 (Version: Hungarian Retail V 1.00) Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000) Complitly Conduit Engine (Version: 6.2.3.0) Driver Detective (Version: 8.1) EasyCleaner (Version: 2.0.6.380) Google Chrome (Version: 28.0.1500.72) Google Drive (Version: 1.10.4769.632) Google Earth Plug-in (Version: 7.1.1.1580) Google Update Helper (Version: 1.3.21.153) iLivid (Version: 4.0.0.2466) IrfanView (remove only) (Version: 4.28) Java Auto Updater (Version: 2.0.2.4) Java(TM) 6 Update 23 (Version: 6.0.230) Java(TM) 6 Update 6 (Version: 1.6.0.60) Junk Mail filter update (Version: 14.0.8117.416) Logitech Desktop Messenger (Version: 2.01.02) Logitech QuickCam Software (Version: 9.50.0000) Macromedia Shockwave Player (Version: 10.1.1.16) McDonald's Fairies (Version: ) Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729) Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - HUN (Version: 2.2.30729) Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729) Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - HUN (Version: 3.2.30729) Microsoft .NET Framework 3.5 Language Pack SP1 - hun (Version: 3.5.30729) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6012.5000) Microsoft Choice Guard (Version: 2.0.48.0) Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000) Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0) Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0) Mozilla Firefox 23.0 (x86 hu) (Version: 23.0) Mozilla Maintenance Service (Version: 23.0) MSVCRT (Version: 14.0.1468.721) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) Nero 6 Ultra Edition Notepad++ NVIDIA Drivers Nyelvi csomag a Microsoft .NET-keretrendszer 3.5 1. szervizcsomagjához – HUN Órarend 2.0 Origin (Version: 9.1.13.85) PhotoScape Picasa 3 (Version: 3.9) Protected Search 1.1 Segoe UI (Version: 14.0.4327.805) SIW version 2011.07.07 (Version: 2011.07.07) Skins (Version: 2008.0109.2141.38743) Skype™ 6.3 (Version: 6.3.105) Star Miner Special Edition TeamSpeak 3 Client (Version: 3.0.6) TeamViewer 8 (Version: 8.0.16447) The KMPlayer (remove only) The Lord of the Rings FREE Trial (Version: 1.00.0000) The Sims™ 3 (Version: 1.9.22) Toolbar Remover 1.0 Total Commander (Remove or Repair) UMPlayer 0.98 [Athlon] (Version: 0.98) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) Video Converter (Version: 1) WebFldrs XP (Version: 9.50.7523) whiskas widget (Version: 1.0) Windows Internet Explorer 7 biztonsági frissítés - KB2416400 (Version: 1) Windows Internet Explorer 7 biztonsági frissítés - KB2482017 (Version: 1) Windows Internet Explorer 7 biztonsági frissítés - KB2497640 (Version: 1) Windows Internet Explorer 7 biztonsági frissítés - KB938127-v2 (Version: 2) Windows Internet Explorer 8 (Version: 20090308.140743) Windows Internet Explorer 8 biztonsági frissítés - KB2497640 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2510531 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2530548 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2544521 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2559049 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2586448 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2618444 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2647516 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2675157 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2699988 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2722913 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2744842 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2761465 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2792100 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2797052 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2799329 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2809289 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2817183 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2829530 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2838727 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2846071 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB2847204 (Version: 1) Windows Internet Explorer 8 biztonsági frissítés - KB982381 (Version: 1) Windows Internet Explorer 8 frissítés - KB2447568 (Version: 1) Windows Live bejelentkezési segéd (Version: 5.000.818.5) Windows Live Communications Platform (Version: 14.0.8117.416) Windows Live Családbiztonság (Version: 14.0.8118.427) Windows Live Essentials (Version: 14.0.8117.0416) Windows Live Essentials (Version: 14.0.8117.416) Windows Live feltöltőeszköz (Version: 14.0.8014.1029) Windows Live Fotótár (Version: 14.0.8117.416) Windows Live Mail (Version: 14.0.8117.0416) Windows Live Messenger (Version: 14.0.8117.0416) Windows Live Sync (Version: 14.0.8117.416) Windows Live Writer (Version: 14.0.8117.0416) Windows Media Player Biztonsági frissítés (KB2834904) Windows XP biztonsági frissítés - KB2544893-v2 (Version: 2) Windows XP biztonsági frissítés - KB2567053 (Version: 1) Windows XP biztonsági frissítés - KB2584146 (Version: 1) Windows XP biztonsági frissítés - KB2585542 (Version: 1) Windows XP biztonsági frissítés - KB2592799 (Version: 1) Windows XP biztonsági frissítés - KB2598479 (Version: 1) Windows XP biztonsági frissítés - KB2603381 (Version: 1) Windows XP biztonsági frissítés - KB2618451 (Version: 1) Windows XP biztonsági frissítés - KB2619339 (Version: 1) Windows XP biztonsági frissítés - KB2620712 (Version: 1) Windows XP biztonsági frissítés - KB2621440 (Version: 1) Windows XP biztonsági frissítés - KB2624667 (Version: 1) Windows XP biztonsági frissítés - KB2631813 (Version: 1) Windows XP biztonsági frissítés - KB2633171 (Version: 1) Windows XP biztonsági frissítés - KB2639417 (Version: 1) Windows XP biztonsági frissítés - KB2641653 (Version: 1) Windows XP biztonsági frissítés - KB2646524 (Version: 1) Windows XP biztonsági frissítés - KB2647518 (Version: 1) Windows XP biztonsági frissítés - KB2653956 (Version: 1) Windows XP biztonsági frissítés - KB2655992 (Version: 1) Windows XP biztonsági frissítés - KB2659262 (Version: 1) Windows XP biztonsági frissítés - KB2660465 (Version: 1) Windows XP biztonsági frissítés - KB2676562 (Version: 1) Windows XP biztonsági frissítés - KB2685939 (Version: 1) Windows XP biztonsági frissítés - KB2686509 (Version: 1) Windows XP biztonsági frissítés - KB2691442 (Version: 1) Windows XP biztonsági frissítés - KB2695962 (Version: 1) Windows XP biztonsági frissítés - KB2698365 (Version: 1) Windows XP biztonsági frissítés - KB2705219 (Version: 1) Windows XP biztonsági frissítés - KB2707511 (Version: 1) Windows XP biztonsági frissítés - KB2709162 (Version: 1) Windows XP biztonsági frissítés - KB2712808 (Version: 1) Windows XP biztonsági frissítés - KB2718523 (Version: 1) Windows XP biztonsági frissítés - KB2719985 (Version: 1) Windows XP biztonsági frissítés - KB2723135 (Version: 1) Windows XP biztonsági frissítés - KB2724197 (Version: 1) Windows XP biztonsági frissítés - KB2727528 (Version: 1) Windows XP biztonsági frissítés - KB2731847 (Version: 1) Windows XP biztonsági frissítés - KB2753842 (Version: 1) Windows XP biztonsági frissítés - KB2753842-v2 (Version: 2) Windows XP biztonsági frissítés - KB2757638 (Version: 1) Windows XP biztonsági frissítés - KB2758857 (Version: 1) Windows XP biztonsági frissítés - KB2761226 (Version: 1) Windows XP biztonsági frissítés - KB2770660 (Version: 1) Windows XP biztonsági frissítés - KB2778344 (Version: 1) Windows XP biztonsági frissítés - KB2779030 (Version: 1) Windows XP biztonsági frissítés - KB2780091 (Version: 1) Windows XP biztonsági frissítés - KB2799494 (Version: 1) Windows XP biztonsági frissítés - KB2802968 (Version: 1) Windows XP biztonsági frissítés - KB2807986 (Version: 1) Windows XP biztonsági frissítés - KB2808735 (Version: 1) Windows XP biztonsági frissítés - KB2813170 (Version: 1) Windows XP biztonsági frissítés - KB2813345 (Version: 1) Windows XP biztonsági frissítés - KB2820197 (Version: 1) Windows XP biztonsági frissítés - KB2820917 (Version: 1) Windows XP biztonsági frissítés - KB2829361 (Version: 1) Windows XP biztonsági frissítés - KB2834886 (Version: 1) Windows XP biztonsági frissítés - KB2839229 (Version: 1) Windows XP biztonsági frissítés - KB2845187 (Version: 1) Windows XP biztonsági frissítés - KB2850851 (Version: 1) Windows XP frissítés - KB2641690 (Version: 1) Windows XP frissítés - KB2661254-v2 (Version: 2) Windows XP frissítés - KB2718704 (Version: 1) Windows XP frissítés - KB2736233 (Version: 1) Windows XP frissítés - KB2749655 (Version: 1) Windows XP gyorsjavítás - KB2633952 (Version: 1) Windows XP gyorsjavítás - KB2756822 (Version: 1) Windows XP gyorsjavítás - KB2779562 (Version: 1) Windows XP gyorsjavítás - KB942288-v3 (Version: 3) WinPcap 4.0.2 (Version: 4.0.0.1040) WinRAR archiváló XML Paper Specification Shared Components Language Pack 1.0 XviD 1.1 final uninstall (Version: 1.1) ZoomEx (Version: 1.0) ==================== Restore Points ========================= 11-07-2013 18:50:26 Software Distribution Service 3.0 12-07-2013 19:09:04 Rendszerellenőrzési pont 14-07-2013 07:31:18 Rendszerellenőrzési pont 15-07-2013 17:18:15 Rendszerellenőrzési pont 16-07-2013 18:48:44 Rendszerellenőrzési pont 17-07-2013 19:44:01 Rendszerellenőrzési pont 18-07-2013 19:54:41 Rendszerellenőrzési pont 19-07-2013 20:00:49 Rendszerellenőrzési pont 21-07-2013 10:18:41 Rendszerellenőrzési pont 22-07-2013 18:02:17 Rendszerellenőrzési pont 23-07-2013 16:21:50 Software Distribution Service 3.0 ==================== Hosts content: ========================== 2008-05-07 03:14 - 2008-05-07 03:14 - 00000687 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Rendszergazda Logon.job => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Protected Search.job => C:\Program Files\Protected Search\ProtectedSearch.exe Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{F9057B67-91B4-4544-9DF4-7DA305619FEE}.job => C:\WINDOWS\system32\msfeedssync.exe ==================== Faulty Device Manager Devices ============= Name: NVIDIA nForce MCP Networking Controller Description: NVIDIA nForce MCP Networking Controller Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Nvidia Service: NVENET Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (07/15/2013 07:47:07 AM) (Source: PerfNet) (User: ) Description: Nem lehet megnyitni a kiszolgáló szolgáltatást. A kiszolgáló teljesítményadatai nem lesznek visszaadva. A visszaadott hibakód a duplaszó 0 adatban van. Error: (07/05/2013 08:51:29 AM) (Source: PerfNet) (User: ) Description: Nem lehet megnyitni a kiszolgáló szolgáltatást. A kiszolgáló teljesítményadatai nem lesznek visszaadva. A visszaadott hibakód a duplaszó 0 adatban van. System errors: ============= Error: (07/23/2013 06:54:55 PM) (Source: 0) (User: ) Description: \Device\Harddisk0\D Error: (07/23/2013 06:37:15 PM) (Source: Service Control Manager) (User: ) Description: A szolgáltatás (HTTP SSL) a következő hiba következtében leállt: %%1053 Error: (07/23/2013 06:37:15 PM) (Source: Service Control Manager) (User: ) Description: Várakozó időkorlát (30000 ms) - a(z) HTTP SSL szolgáltatás kapcsolódása. Error: (07/23/2013 06:37:15 PM) (Source: Service Control Manager) (User: ) Description: A következő boot- vagy rendszerindító illesztőprogram(ok) nem indult(ak) el: SBRE Error: (07/23/2013 05:55:24 PM) (Source: W32Time) (User: ) Description: Az időszolgáltatás NTP-ügyfele úgy van konfigurálva, hogy egy vagy több forrásból kérdezze le az időt, de egyik forrás sem használható. 29 percig nem történik kísérlet egyik forrás elérésére sem. Az NTP-ügyfélhez nincsen pontos időforrás. Error: (07/23/2013 05:55:24 PM) (Source: W32Time) (User: ) Description: Időszolgáltató NTP-ügyfél: A manuálisan beállított partner ("time.windows.com,0x1") DNS-címének keresésekor hiba történt. Az NTP-ügyfél 30 percen belül ismét megkísérli a DNS-címkeresést. A hiba: Szoftvercsatorna-művelet végrehajtására történt kísérlet egy nem elérhető állomáson. (0x80072751) Error: (07/23/2013 05:55:24 PM) (Source: W32Time) (User: ) Description: Időszolgáltató NTP-ügyfél: A manuálisan beállított partner ("time.kfki.hu,0x1") DNS-címének keresésekor hiba történt. Az NTP-ügyfél 30 percen belül ismét megkísérli a DNS-címkeresést. A hiba: Szoftvercsatorna-művelet végrehajtására történt kísérlet egy nem elérhető állomáson. (0x80072751) Error: (07/23/2013 05:40:36 PM) (Source: Service Control Manager) (User: ) Description: A következő boot- vagy rendszerindító illesztőprogram(ok) nem indult(ak) el: SBRE Error: (07/23/2013 05:40:18 PM) (Source: W32Time) (User: ) Description: Az időszolgáltatás NTP-ügyfele úgy van konfigurálva, hogy egy vagy több forrásból kérdezze le az időt, de egyik forrás sem használható. 14 percig nem történik kísérlet egyik forrás elérésére sem. Az NTP-ügyfélhez nincsen pontos időforrás. Error: (07/23/2013 05:40:18 PM) (Source: W32Time) (User: ) Description: Időszolgáltató NTP-ügyfél: A manuálisan beállított partner ("time.kfki.hu,0x1") DNS-címének keresésekor hiba történt. Az NTP-ügyfél 15 percen belül ismét megkísérli a DNS-címkeresést. A hiba: Szoftvercsatorna-művelet végrehajtására történt kísérlet egy nem elérhető állomáson. (0x80072751) Microsoft Office Sessions: ========================= Error: (07/15/2013 07:47:07 AM) (Source: PerfNet)(User: ) Description: Error: (07/05/2013 08:51:29 AM) (Source: PerfNet)(User: ) Description: ==================== Memory info =========================== Percentage of memory in use: 81% Total physical RAM: 959.36 MB Available physical RAM: 175.89 MB Total Pagefile: 1646.25 MB Available Pagefile: 812.73 MB Total Virtual: 2047.88 MB Available Virtual: 1948.25 MB ==================== Drives ================================ Drive c: (WXPEE_SYS) (Fixed) (Total:29.29 GB) (Free:0.93 GB) NTFS ==>[Drive with boot components (Windows XP)] Drive d: (Mentések) (Fixed) (Total:119.75 GB) (Free:111.28 GB) NTFS Drive f: (Mentések 2) (Fixed) (Total:931.51 GB) (Free:895.78 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 149 GB) (Disk ID: 05360535) Partition 1: (Active) - (Size=29 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=120 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 932 GB) (Disk ID: BBED3020) Partition 1: (Not Active) - (Size=932 GB) - (Type=42) ==================== End Of Log ============================ |
Szerző: | Babyface [ kedd júl. 23, 2013 17:50 ] |
Hozzászólás témája: | Re: STELL Segit |
Szia! Itt vagyok, csinálom! |
Szerző: | stell [ kedd júl. 23, 2013 12:14 ] |
Hozzászólás témája: | Re: STELL Segit |
Szia. Tolds le az asztalra, az Farbar recoveryscan tool. 32-bites rendszer. http://www.bleepingcomputer.com/downloa ... scan-tool/ 64-bites -rendszer. http://download.bleepingcomputer.com/farbar/FRST64.exe futtatni mint rendszergazda>>Minden ablakocskakat bepipalni. es klik az SCAN>>gombra. Nemsokara bevegzi az elenorzest, tedd ide az FRST.txt es az addition.txt naplokat. |
Szerző: | Babyface [ kedd júl. 23, 2013 8:36 ] |
Hozzászólás témája: | Re: STELL Segit |
Szia Stell! Rég nem írtam, remélem jól van Ismét kellene valószínűleg a segítséged. Az egyik kedves ismerősöm bekapott valami facebook-os vírust, mert megnyitott egy videót, és azóta az ő nevében mindenkinek mennek a levelek, ontja magából mindenfelé. Tudnál ebben segíteni? Délután átmegyek hozzájuk, valószínűleg szükségem lenne a szakértelmedre, ha ebben a témában is jártas vagy Előre is köszi!!!! |
Szerző: | stell [ csüt. márc. 21, 2013 12:59 ] |
Hozzászólás témája: | Re: STELL Segit |
nincsen mit. udv. |
Szerző: | dori0227 [ csüt. márc. 21, 2013 9:45 ] |
Hozzászólás témája: | Re: STELL Segit |
rendben, köszönöm szépen a segítséget |
Oldal: 3 / 16 | Időzóna: UTC + 1 óra |
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/ |