Megválaszolatlan hozzászólások | Aktív témák Pontos idő: csüt. márc. 28, 2024 21:48



Hozzászólás a témához  [ 774 hozzászólás ]  Oldal Előző  1 ... 12, 13, 14, 15, 16
STELL Segit 
Szerző Üzenet
platina tag
Avatar

Csatlakozott: szer. márc. 24, 2004 13:43
Hozzászólások: 595
Hozzászólás Re: STELL Segit
Hello Stell!
sysrda32.exe Kriptik.GMJ trójai az ESET szerint, törléssel meg fogja tisztítani a következő újraindítás után. Nem találok tóla semmi biztosat a neten. Mi ez? Hogy került a gépemre? :-)


szer. szept. 01, 2010 18:43
Profil Privát üzenet küldése
arany tag
Avatar

Csatlakozott: pén. ápr. 23, 2010 12:42
Hozzászólások: 140
Hozzászólás Re: STELL Segit
A helyzet ugyanaz. Végigfuttattam a scant mindent bepipálva ezúttal és mikor scannalés után ráklikkeltem a save gombra megint csak vártam, homokóra meg minden aztán pár perc múlva az ablakon kiírta, hogy "Nem válaszol" és a rendszer olyan szinten belassult, hogy csak a reset segített megint.


szer. szept. 01, 2010 13:49
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Idézet:
nem jelentett a rövid vizsgálat után rootkit activityt - beállítottam úgy ahogy a kép mutatja és lefutattam a scant

ha nem jelentett a rövid vizsgálat után rootkit activityt, akkor mindent bepipazni es klik scan, megvarod a veget es save-ads neki nevet pldaul g- mer.txt es lemented az asztalra, kesz.


szer. szept. 01, 2010 9:41
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 23, 2010 12:42
Hozzászólások: 140
Hozzászólás Re: STELL Segit
Ok, felvázolom a helyzetet. Letöltöttem a programot az asztalra, követtem az instrukciókat, kikapcsoltam tűzfalat, vírusírtot mindent amiket írtál - nem jelentett a rövid vizsgálat után rootkit activityt - beállítottam úgy ahogy a kép mutatja és lefutattam a scant. Ez szépen végigment majd mikor végzett megpróbáltam elmenteni a logot ahogy írtad. Itt jöttek a gondok a save gomb megnyomása után várnom kellett kb 2 percet mire bejött az ablak, hogy hova mentse. Itt mikor le akartam gördíteni fent, hogy megkeressem az asztalt ennél a résznél szintén várnom kellett majd pár perc után kiírta, hogy a program nem válaszol. A Cancel gombra be is záródott az egész GMER program. Ekkor meg akartam nézni milyen alkalmazások futnak - hátha nem lépett ki a programból, csak látszólag - megnyomtam a Ctrl+Alt+Del-t erre egy hibaüzenet fogadott. Ezután megpróbáltam újraindítani a gépet, de kilépéskor megállt és 5 percig bámultam a háttérképet, majd ezt megunva nyomtam egy resetet. Mit csináljak lefuttassam újra vagy esetleg csökkentett módban most? Amúgy a csökkentett módnál egy olyan problémám van, hogy ha onnan újraindítom vagy leállítom a gépet akkor - nem viccelek - 10-15 percet vacakol a gép, HDD led villog ezerrel mire végül újraindul/kikapcsol.


szer. szept. 01, 2010 8:58
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
letöltöd az asztalra
Special
>>
lekapcsolod a gépet az internetről
kikapcsolni az Antivírus, tűzfalát-védelmet
futtasd, lefut egy rövid vizsgalat,,,
ha kapsz jelentest rootkit activity and asks if you want to run scan>>klik NO<<
és beállítod így
Kép

>> klik scan,<<
a skan végen >>SAVE<< csinálsz log.txt>>tedd az asztalra, és aztán ide,,,


szer. szept. 01, 2010 7:26
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 23, 2010 12:42
Hozzászólások: 140
Hozzászólás Re: STELL Segit
DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high. This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: 00000000, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000000, value 0 = read operation, 1 = write operation
Arg4: 894483df, address which referenced memory

Debugging Details:
------------------

***** Debugger could not find nt in module list, module list might be corrupt, error 0x80070057.


READ_ADDRESS: unable to get nt!MmSpecialPoolStart
unable to get nt!MmSpecialPoolEnd
unable to get nt!MmPoolCodeStart
unable to get nt!MmPoolCodeEnd
00000000

CURRENT_IRQL: 2

FAULTING_IP:
+193952f00f9dfdc
894483df 0000 add byte ptr [eax],al

CUSTOMER_CRASH_COUNT: 1

DEFAULT_BUCKET_ID: DRIVER_FAULT

BUGCHECK_STR: 0xD1

LAST_CONTROL_TRANSFER: from 00000000 to 805446e0

STACK_TEXT:
8055130c 00000000 00000000 00000002 00000000 0x805446e0


STACK_COMMAND: kb

SYMBOL_NAME: ANALYSIS_INCONCLUSIVE

FOLLOWUP_NAME: MachineOwner

MODULE_NAME: Unknown_Module

IMAGE_NAME: Unknown_Image

DEBUG_FLR_IMAGE_TIMESTAMP: 0

BUCKET_ID: CORRUPT_MODULELIST

Followup: MachineOwner
---------

0: kd> lmvm Unknown_Module
start end module name


kedd aug. 31, 2010 22:51
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
udv
tedd ide a Debugging Tolls =logjat.


kedd aug. 31, 2010 16:33
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 23, 2010 12:42
Hozzászólások: 140
Hozzászólás Re: STELL Segit
Hello Stell, már ég az arcom, hogy folyton valami bajjal jövök ide, de benned bízom. Sajnos a kékhalál a gépemen kezd zavaró rendszerességgel megjelenni. Leszedtem a hangkártya driverét, a DriverSweeper program segítségével. Sajnos nehezen találtam használható drivert a neten a hangkártyámhoz. Amit találtam azzal is gondok voltak, hanghibák. Most hagytam hogy a rendszer telepítse magának. Egyenlőre az van, kékhalál volt előtte is meg azóta is. Mindegyik kékhalálnál lefuttattam azt a Windows Debugging Tolls programot, hogy megnézzem mi okozta a bajt, de mindnél azt írta eredménynek, hogy "Unknown Module". Remélem nem valamilyen vírusom van már megint. Szeretném a segítségedet kérni (újra) a probléma megoldásában.


kedd aug. 31, 2010 14:35
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Nincsen mit,
Üdv


hétf. aug. 30, 2010 7:21
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
Nagyon köszönöm a segítséged!
Az Outpost eltávolítása most következik és telepítem a PC Tools Firewall Plus-t a link szerint, amit küldtél.

Köszönöm

Üdv.


vas. aug. 29, 2010 19:15
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
ok, de meg mindig ott latom ezt a tuzfalat, FW: Outpost Firewall Pro, tehat oda tettem neked a linket.
Mar nemlatok semmit a logban, szed le a combofixet-a start-futtatasba masold be eztet
combofix /uninstall
tisztisd ki a temp file cleaneral.
http://www.virus-stell.com/2010/05/temp ... itasa.html
es ha jo ez minden.


vas. aug. 29, 2010 18:51
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
ComboFix 10-08-28.01 - Sanyi 010.08.29. 19:24:12.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.2048.1667 [GMT 2:00]
Running from: c:\documents and settings\Sanyi\Asztal\ComboFix.exe
Command switches used :: c:\documents and settings\Sanyi\Asztal\CFScript.txt
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Outpost Firewall Pro *disabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.

((((((((((((((((((((((((( Files Created from 2010-07-28 to 2010-08-29 )))))))))))))))))))))))))))))))
.

2010-08-29 17:09 . 2010-08-29 17:09 -------- d-----w- c:\documents and settings\All Users\Application Data\CrystalIdea Software
2010-08-28 18:26 . 2010-08-28 19:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Ashampoo Music Studio 3
2010-08-28 03:34 . 2010-08-28 10:57 -------- d-----w- C:\rsit
2010-08-27 13:11 . 2008-12-14 07:20 23344 ----a-w- c:\windows\system32\drivers\pnpcap.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Pure Networks
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\WebEx
2010-08-27 13:10 . 2008-12-12 16:05 23984 ----a-w- c:\windows\system32\drivers\pnarp.sys
2010-08-27 13:10 . 2008-12-12 16:05 25264 ----a-w- c:\windows\system32\drivers\purendis.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Common Files\Pure Networks Shared
2010-08-27 13:09 . 2010-07-26 10:42 22268728 ----a-w- c:\documents and settings\All Users\Application Data\Pure Networks\Setup\smpsetup.exe
2010-08-27 13:09 . 2010-08-27 13:11 -------- d-----w- c:\documents and settings\All Users\Application Data\Pure Networks
2010-08-25 13:54 . 2010-08-25 13:54 -------- d-----w- c:\program files\ERUNT
2010-08-25 13:51 . 2010-08-25 13:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Fighters
2010-08-25 13:50 . 2010-08-25 13:50 -------- d-----w- c:\program files\Fighters
2010-08-25 13:44 . 2010-08-28 13:20 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Vso
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\documents and settings\Sanyi\Application Data\pcouffin.sys
2010-08-25 13:44 . 2009-09-02 15:41 65602 ----a-w- c:\windows\system32\cook3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2010-08-25 13:44 . 2009-09-02 15:41 217127 ----a-w- c:\windows\system32\drv43260.dll
2010-08-25 13:44 . 2009-09-02 15:41 208935 ----a-w- c:\windows\system32\drv33260.dll
2010-08-25 13:44 . 2009-09-02 15:41 176165 ----a-w- c:\windows\system32\drv23260.dll
2010-08-25 13:44 . 2009-09-02 15:41 102439 ----a-w- c:\windows\system32\sipr3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-08-25 13:44 . 2010-08-25 13:44 -------- d-----w- c:\program files\VSO
2010-08-25 13:40 . 2010-08-25 13:40 -------- d-----w- c:\program files\Foxit Software
2010-08-25 13:27 . 2010-08-25 13:27 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Xenocode
2010-08-25 13:10 . 2008-04-13 09:47 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:47 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-08-25 13:09 . 2010-02-02 13:19 1761128 ----a-w- c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll
2010-08-25 13:09 . 2010-08-27 13:11 -------- dc----w- c:\windows\system32\DRVSTORE
2010-08-25 13:09 . 2010-02-02 13:19 539496 ----a-w- c:\windows\system32\hpinksts8711.dll
2010-08-25 13:09 . 2010-02-02 13:19 272744 ----a-w- c:\windows\system32\hpinksts8711LM.dll
2010-08-25 13:09 . 2010-02-02 13:19 201728 ----a-w- c:\windows\system32\hpinkcoi8711.dll
2010-08-25 13:08 . 2010-08-25 13:10 -------- d-----w- c:\documents and settings\All Users\Application Data\HP
2010-08-25 13:08 . 2010-08-25 13:08 -------- d-----w- c:\program files\HP
2010-08-25 13:07 . 2010-08-25 13:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\HP
2010-08-25 12:54 . 2010-08-28 18:25 -------- d-----w- c:\program files\Ashampoo
2010-08-25 09:20 . 2008-04-14 07:02 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-08-25 09:20 . 2001-10-26 19:25 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-08-25 09:20 . 2008-04-13 09:45 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-08-25 09:20 . 2008-04-13 09:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-08-25 06:18 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-08-25 06:08 . 2009-11-27 16:09 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
2010-08-25 06:08 . 2009-11-27 16:09 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
2010-08-25 06:06 . 2009-11-27 17:13 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2010-08-25 05:54 . 2010-04-28 18:15 2191360 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-08-25 05:54 . 2010-04-28 05:45 2147840 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-08-25 05:54 . 2010-04-28 05:45 2025984 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-08-25 05:48 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-08-25 05:48 . 2008-06-14 17:36 272512 ------w- c:\windows\system32\drivers\bthport.sys
2010-08-25 04:32 . 2010-08-26 19:36 -------- d--h--w- c:\windows\$hf_mig$
2010-08-25 04:26 . 2008-07-09 07:42 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-08-24 20:12 . 2010-08-24 20:14 -------- d-----w- c:\program files\Uninstall Tool
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\program files\Golden Bow
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Golden Bow Systems
2010-08-24 20:04 . 2010-08-26 19:38 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Godlike
2010-08-24 20:04 . 2010-08-24 20:04 -------- d-----w- c:\program files\Godlike Developers
2010-08-24 19:59 . 2010-08-24 19:59 -------- d-----w- c:\program files\CCleaner
2010-08-24 19:49 . 2010-08-24 19:49 -------- d-----w- c:\program files\WinSnap
2010-08-24 19:10 . 2010-08-24 19:14 -------- d-----w- c:\documents and settings\All Users\Application Data\JGLSzótár
2010-08-24 19:10 . 2010-08-24 19:10 -------- d-----w- c:\program files\Jómagam
2010-08-24 19:09 . 2010-08-24 19:09 -------- d-----w- c:\program files\uTorrent
2010-08-24 19:08 . 2010-08-29 17:19 -------- d-----w- c:\documents and settings\Sanyi\Application Data\uTorrent
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCox
2010-08-24 19:04 . 2010-08-24 19:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCinema
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-25 18:26 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-24 19:02 -------- d-----w- c:\program files\Common Files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:02 -------- d-----w- c:\program files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:00 29480 ----a-w- c:\windows\system32\msxml3a.dll
2010-08-24 19:01 . 2010-08-24 19:00 505128 ----a-w- c:\windows\system32\msvcp71.dll
2010-08-24 19:01 . 2010-08-24 19:00 353576 ----a-w- c:\windows\system32\msvcr71.dll
2010-08-24 19:00 . 2010-08-24 19:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Temp
2010-08-24 19:00 . 2010-08-24 19:00 53319 ----a-w- c:\documents and settings\All Users\Application Data\Temp\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\PostBuild.exe
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Thunderbird
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Thunderbird
2010-08-24 18:44 . 2010-08-29 16:09 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-08-24 18:43 . 2010-08-24 18:43 0 ----a-w- c:\windows\nsreg.dat
2010-08-24 18:43 . 2010-08-24 18:43 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Mozilla
2010-08-24 18:41 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-08-24 18:41 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-08-24 18:40 . 2010-08-24 18:41 -------- d-----w- c:\windows\SHELLNEW
2010-08-24 18:34 . 2010-08-28 16:51 -------- d-----w- c:\documents and settings\Sanyi\Application Data\vlc
2010-08-24 18:33 . 2010-08-24 18:33 -------- d-----w- c:\program files\VideoLAN
2010-08-24 18:23 . 2010-08-24 18:23 -------- d-----w- c:\program files\PowerISO
2010-08-24 18:20 . 2010-08-24 18:20 -------- d-----w- c:\program files\UPHClean
2010-08-24 18:18 . 2010-08-24 18:18 -------- d-----w- c:\program files\File Shredder
2010-08-24 18:17 . 2010-08-27 04:22 -------- d-----w- c:\program files\Unlocker

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-28 10:56 . 2010-08-24 15:46 -------- d-----w- c:\program files\Trend Micro
2010-08-27 17:02 . 2010-08-24 15:28 17912 ----a-w- c:\documents and settings\Sanyi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-27 13:10 . 2010-08-27 13:10 8673792 ----a-w- c:\documents and settings\All Users\Application Data\atscie.msi
2010-08-25 14:44 . 2010-08-24 14:32 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-08-25 13:34 . 2004-08-18 12:00 84198 ----a-w- c:\windows\system32\perfc00E.dat
2010-08-25 13:34 . 2004-08-18 12:00 395348 ----a-w- c:\windows\system32\perfh00E.dat
2010-08-24 19:02 . 2010-08-24 15:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-24 15:46 . 2010-08-24 15:46 388096 ----a-r- c:\documents and settings\Sanyi\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Malwarebytes
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-08-24 15:22 . 2010-08-24 15:22 -------- d-----w- c:\program files\Agnitum
2010-08-24 15:21 . 2010-08-24 15:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Agnitum
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\program files\Alwil Software
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-08-24 15:06 . 2010-08-24 15:06 -------- d-----w- c:\program files\Analog Devices
2010-08-24 15:06 . 2010-08-24 15:02 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-24 15:03 . 2010-08-24 15:03 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 14:57 . 2010-08-24 14:57 -------- d-----w- c:\program files\Total Commander 2008 Final Edition by K-ED
2010-08-24 14:33 . 2010-08-24 14:33 -------- d-----w- c:\program files\microsoft frontpage
2010-08-24 14:30 . 2010-08-24 14:30 21948 ----a-w- c:\windows\system32\emptyregdb.dat
2010-06-30 12:33 . 2008-04-14 07:02 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-28 20:57 . 2010-08-24 15:20 38848 ----a-w- c:\windows\avastSS.scr
2010-06-28 20:57 . 2010-08-24 15:20 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2010-08-24 15:20 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2010-08-24 15:20 165456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2010-08-24 15:20 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2010-08-24 15:20 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2010-08-24 15:20 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2010-08-24 15:20 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2010-08-24 15:20 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-06-24 09:02 . 2008-04-14 06:36 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2008-04-13 10:15 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2008-04-14 07:01 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2010-08-24 14:30 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:43 . 2008-04-14 07:01 1172480 ----a-w- c:\windows\system32\msxml3.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Simple Sticky Notes"="c:\documents and settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe" [2010-03-05 1502720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"OutpostMonitor"="c:\progra~1\Agnitum\OUTPOS~1\op_mon.exe" [2009-06-15 1228104]
"OutpostFeedBack"="c:\program files\Agnitum\Outpost Firewall Pro\feedback.exe" [2009-06-08 433480]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2008-12-12 642856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKLM\~\startupfolder\C:^Documents and Settings^Sanyi^Start Menu^Programs^Indítópult^ERUNT AutoBackup.lnk]
path=c:\documents and settings\Sanyi\Start Menu\Programs\Indítópult\ERUNT AutoBackup.lnk
backup=c:\windows\pss\ERUNT AutoBackup.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-02-28 18:40 75048 ----a-w- c:\program files\CyberLink\Shared Files\brs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2008-10-13 18:41 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-02-16 07:55 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"67:UDP"= 67:UDP:DHCP Discovery Service

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010.08.24. 17:20 165456]
R1 SandBox;SandBox;c:\windows\system32\drivers\SandBox.sys [2010.08.24. 17:22 704384]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/08/24 21:02];c:\program files\CyberLink\PowerDVD9\000.fcl [2009.02.28. 19:40 87536]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\OUTPOS~1\acs.exe [2010.08.24. 17:22 1268040]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010.08.24. 17:20 17744]
R2 pnpcap;Pure Networks Packet Capture Driver;c:\windows\system32\drivers\pnpcap.sys [2010.08.27. 15:11 23344]
R3 afw;Agnitum firewall driver;c:\windows\system32\drivers\afw.sys [2010.08.24. 17:22 31128]
R3 afwcore;afwcore;c:\windows\system32\drivers\afwcore.sys [2010.08.24. 17:22 257432]
R3 ASWFilt;ASWFilt;c:\windows\system32\Filt\ASWFilt.dll [2010.08.24. 17:22 33920]

--- Other Services/Drivers In Memory ---

*Deregistered* - uphcleanhlp
.
.
------- Supplementary Scan -------
.
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Sanyi\Application Data\Mozilla\Firefox\Profiles\s16ekio4.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-29 19:28
Windows 5.1.2600 Szervizcsomag 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(688)
c:\windows\system32\Ati2evxx.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\UPHClean\uphclean.exe
c:\program files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
.
**************************************************************************
.
Completion time: 2010-08-29 19:31:05 - machine was rebooted
ComboFix-quarantined-files.txt 2010-08-29 17:31
ComboFix2.txt 2010-08-29 13:34

Pre-Run: 14 605 742 080 bájt szabad
Post-Run: 14 595 112 960 bájt szabad

- - End Of File - - 7ACE1B23CD9756A0884CEB67BF6A9350


vas. aug. 29, 2010 18:33
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
ezek a programok mire vannak??,leszedni a geprol,
f:\általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe
:\program files\1st Clock\1stClock.exe
itt van, a kolegam leirta igen jol
http://translate.google.com/translate?j ... l=cs&tl=hu
Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:
Kép
A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad ted ide.
Kód:
KILLALL::

RegNull::
[HKEY_USERS\S-1-5-21-839522115-682003330-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{917C4EE7-64C9-A759-D1D8-2BF48CAE8733}*]


vas. aug. 29, 2010 15:27
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
Végig néztem a forúmot a PC Tools Firewall kapcsolatban, nem találtam a leírását ide tennéd?
Kösz


Csináltam:combofix /u végig futott.
A C:\cmdcons, Qoobox mappákat törölhetem?


ComboFix 10-08-28.01 - Sanyi 010.08.29. 15:29:19.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.2048.1496 [GMT 2:00]
Running from: c:\documents and settings\Sanyi\Asztal\ComboFix.exe
Command switches used :: /u
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Outpost Firewall Pro *enabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.

((((((((((((((((((((((((( Files Created from 2010-07-28 to 2010-08-29 )))))))))))))))))))))))))))))))
.

2010-08-28 18:26 . 2010-08-28 19:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Ashampoo Music Studio 3
2010-08-28 03:34 . 2010-08-28 10:57 -------- d-----w- C:\rsit
2010-08-27 13:11 . 2008-12-14 07:20 23344 ----a-w- c:\windows\system32\drivers\pnpcap.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Pure Networks
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\WebEx
2010-08-27 13:10 . 2008-12-12 16:05 23984 ----a-w- c:\windows\system32\drivers\pnarp.sys
2010-08-27 13:10 . 2008-12-12 16:05 25264 ----a-w- c:\windows\system32\drivers\purendis.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Common Files\Pure Networks Shared
2010-08-27 13:09 . 2010-07-26 10:42 22268728 ----a-w- c:\documents and settings\All Users\Application Data\Pure Networks\Setup\smpsetup.exe
2010-08-27 13:09 . 2010-08-27 13:11 -------- d-----w- c:\documents and settings\All Users\Application Data\Pure Networks
2010-08-25 13:54 . 2010-08-25 13:54 -------- d-----w- c:\program files\ERUNT
2010-08-25 13:51 . 2010-08-25 13:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Fighters
2010-08-25 13:50 . 2010-08-25 13:50 -------- d-----w- c:\program files\Fighters
2010-08-25 13:44 . 2010-08-28 13:20 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Vso
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\documents and settings\Sanyi\Application Data\pcouffin.sys
2010-08-25 13:44 . 2009-09-02 15:41 65602 ----a-w- c:\windows\system32\cook3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2010-08-25 13:44 . 2009-09-02 15:41 217127 ----a-w- c:\windows\system32\drv43260.dll
2010-08-25 13:44 . 2009-09-02 15:41 208935 ----a-w- c:\windows\system32\drv33260.dll
2010-08-25 13:44 . 2009-09-02 15:41 176165 ----a-w- c:\windows\system32\drv23260.dll
2010-08-25 13:44 . 2009-09-02 15:41 102439 ----a-w- c:\windows\system32\sipr3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-08-25 13:44 . 2010-08-25 13:44 -------- d-----w- c:\program files\VSO
2010-08-25 13:40 . 2010-08-25 13:40 -------- d-----w- c:\program files\Foxit Software
2010-08-25 13:27 . 2010-08-25 13:27 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Xenocode
2010-08-25 13:10 . 2008-04-13 09:47 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:47 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-08-25 13:09 . 2010-02-02 13:19 1761128 ----a-w- c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll
2010-08-25 13:09 . 2010-08-27 13:11 -------- dc----w- c:\windows\system32\DRVSTORE
2010-08-25 13:09 . 2010-02-02 13:19 539496 ----a-w- c:\windows\system32\hpinksts8711.dll
2010-08-25 13:09 . 2010-02-02 13:19 272744 ----a-w- c:\windows\system32\hpinksts8711LM.dll
2010-08-25 13:09 . 2010-02-02 13:19 201728 ----a-w- c:\windows\system32\hpinkcoi8711.dll
2010-08-25 13:08 . 2010-08-25 13:10 -------- d-----w- c:\documents and settings\All Users\Application Data\HP
2010-08-25 13:08 . 2010-08-25 13:08 -------- d-----w- c:\program files\HP
2010-08-25 13:07 . 2010-08-25 13:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\HP
2010-08-25 12:54 . 2010-08-28 18:25 -------- d-----w- c:\program files\Ashampoo
2010-08-25 09:20 . 2008-04-14 07:02 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-08-25 09:20 . 2001-10-26 19:25 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-08-25 09:20 . 2008-04-13 09:45 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-08-25 09:20 . 2008-04-13 09:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-08-25 06:18 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-08-25 06:08 . 2009-11-27 16:09 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
2010-08-25 06:08 . 2009-11-27 16:09 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
2010-08-25 06:06 . 2009-11-27 17:13 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2010-08-25 05:54 . 2010-04-28 18:15 2191360 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-08-25 05:54 . 2010-04-28 05:45 2147840 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-08-25 05:54 . 2010-04-28 05:45 2025984 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-08-25 05:48 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-08-25 05:48 . 2008-06-14 17:36 272512 ------w- c:\windows\system32\drivers\bthport.sys
2010-08-25 04:32 . 2010-08-26 19:36 -------- d--h--w- c:\windows\$hf_mig$
2010-08-25 04:26 . 2008-07-09 07:42 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-08-24 20:12 . 2010-08-24 20:14 -------- d-----w- c:\program files\Uninstall Tool
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\program files\Golden Bow
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Golden Bow Systems
2010-08-24 20:04 . 2010-08-26 19:38 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Godlike
2010-08-24 20:04 . 2010-08-24 20:04 -------- d-----w- c:\program files\Godlike Developers
2010-08-24 19:59 . 2010-08-24 19:59 -------- d-----w- c:\program files\CCleaner
2010-08-24 19:53 . 2010-08-24 19:53 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Green Parrots Software
2010-08-24 19:52 . 2010-08-24 19:52 -------- d-----w- c:\program files\1st Clock
2010-08-24 19:49 . 2010-08-24 19:49 -------- d-----w- c:\program files\WinSnap
2010-08-24 19:10 . 2010-08-24 19:14 -------- d-----w- c:\documents and settings\All Users\Application Data\JGLSzótár
2010-08-24 19:10 . 2010-08-24 19:10 -------- d-----w- c:\program files\Jómagam
2010-08-24 19:09 . 2010-08-24 19:09 -------- d-----w- c:\program files\uTorrent
2010-08-24 19:08 . 2010-08-29 13:28 -------- d-----w- c:\documents and settings\Sanyi\Application Data\uTorrent
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCox
2010-08-24 19:04 . 2010-08-24 19:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCinema
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-25 18:26 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-24 19:02 -------- d-----w- c:\program files\Common Files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:02 -------- d-----w- c:\program files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:00 29480 ----a-w- c:\windows\system32\msxml3a.dll
2010-08-24 19:01 . 2010-08-24 19:00 505128 ----a-w- c:\windows\system32\msvcp71.dll
2010-08-24 19:01 . 2010-08-24 19:00 353576 ----a-w- c:\windows\system32\msvcr71.dll
2010-08-24 19:00 . 2010-08-24 19:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Temp
2010-08-24 19:00 . 2010-08-24 19:00 53319 ----a-w- c:\documents and settings\All Users\Application Data\Temp\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\PostBuild.exe
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Thunderbird
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Thunderbird
2010-08-24 18:44 . 2010-08-29 12:25 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-08-24 18:43 . 2010-08-24 18:43 0 ----a-w- c:\windows\nsreg.dat
2010-08-24 18:43 . 2010-08-24 18:43 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Mozilla
2010-08-24 18:41 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-08-24 18:41 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-08-24 18:40 . 2010-08-24 18:41 -------- d-----w- c:\windows\SHELLNEW
2010-08-24 18:34 . 2010-08-28 16:51 -------- d-----w- c:\documents and settings\Sanyi\Application Data\vlc
2010-08-24 18:33 . 2010-08-24 18:33 -------- d-----w- c:\program files\VideoLAN
2010-08-24 18:23 . 2010-08-24 18:23 -------- d-----w- c:\program files\PowerISO
2010-08-24 18:20 . 2010-08-24 18:20 -------- d-----w- c:\program files\UPHClean
2010-08-24 18:18 . 2010-08-24 18:18 -------- d-----w- c:\program files\File Shredder
2010-08-24 18:17 . 2010-08-27 04:22 -------- d-----w- c:\program files\Unlocker

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-28 10:56 . 2010-08-24 15:46 -------- d-----w- c:\program files\Trend Micro
2010-08-27 17:02 . 2010-08-24 15:28 17912 ----a-w- c:\documents and settings\Sanyi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-27 13:10 . 2010-08-27 13:10 8673792 ----a-w- c:\documents and settings\All Users\Application Data\atscie.msi
2010-08-25 14:44 . 2010-08-24 14:32 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-08-25 13:34 . 2004-08-18 12:00 84198 ----a-w- c:\windows\system32\perfc00E.dat
2010-08-25 13:34 . 2004-08-18 12:00 395348 ----a-w- c:\windows\system32\perfh00E.dat
2010-08-24 19:02 . 2010-08-24 15:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-24 15:46 . 2010-08-24 15:46 388096 ----a-r- c:\documents and settings\Sanyi\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Malwarebytes
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-08-24 15:22 . 2010-08-24 15:22 -------- d-----w- c:\program files\Agnitum
2010-08-24 15:21 . 2010-08-24 15:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Agnitum
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\program files\Alwil Software
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-08-24 15:06 . 2010-08-24 15:06 -------- d-----w- c:\program files\Analog Devices
2010-08-24 15:06 . 2010-08-24 15:02 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-24 15:03 . 2010-08-24 15:03 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 14:57 . 2010-08-24 14:57 -------- d-----w- c:\program files\Total Commander 2008 Final Edition by K-ED
2010-08-24 14:33 . 2010-08-24 14:33 -------- d-----w- c:\program files\microsoft frontpage
2010-08-24 14:30 . 2010-08-24 14:30 21948 ----a-w- c:\windows\system32\emptyregdb.dat
2010-06-30 12:33 . 2008-04-14 07:02 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-28 20:57 . 2010-08-24 15:20 38848 ----a-w- c:\windows\avastSS.scr
2010-06-28 20:57 . 2010-08-24 15:20 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2010-08-24 15:20 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2010-08-24 15:20 165456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2010-08-24 15:20 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2010-08-24 15:20 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2010-08-24 15:20 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2010-08-24 15:20 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2010-08-24 15:20 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-06-24 09:02 . 2008-04-14 06:36 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2008-04-13 10:15 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2008-04-14 07:01 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2010-08-24 14:30 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:43 . 2008-04-14 07:01 1172480 ----a-w- c:\windows\system32\msxml3.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Simple Sticky Notes"="c:\documents and settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe" [2010-03-05 1502720]
"ftweak_RAMRush"="f:\általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe" [2009-09-17 670720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"OutpostMonitor"="c:\progra~1\Agnitum\OUTPOS~1\op_mon.exe" [2009-06-15 1228104]
"OutpostFeedBack"="c:\program files\Agnitum\Outpost Firewall Pro\feedback.exe" [2009-06-08 433480]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2008-12-12 642856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Sanyi\Start Menu\Programs\Indˇt˘pult\
1st Clock.lnk - c:\program files\1st Clock\1stClock.exe [2010-8-24 2842624]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKLM\~\startupfolder\C:^Documents and Settings^Sanyi^Start Menu^Programs^Indítópult^ERUNT AutoBackup.lnk]
path=c:\documents and settings\Sanyi\Start Menu\Programs\Indítópult\ERUNT AutoBackup.lnk
backup=c:\windows\pss\ERUNT AutoBackup.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-02-28 18:40 75048 ----a-w- c:\program files\CyberLink\Shared Files\brs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2008-10-13 18:41 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-02-16 07:55 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"67:UDP"= 67:UDP:DHCP Discovery Service

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010.08.24. 17:20 165456]
R1 SandBox;SandBox;c:\windows\system32\drivers\SandBox.sys [2010.08.24. 17:22 704384]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/08/24 21:02];c:\program files\CyberLink\PowerDVD9\000.fcl [2009.02.28. 19:40 87536]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\OUTPOS~1\acs.exe [2010.08.24. 17:22 1268040]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010.08.24. 17:20 17744]
R2 pnpcap;Pure Networks Packet Capture Driver;c:\windows\system32\drivers\pnpcap.sys [2010.08.27. 15:11 23344]
R3 afw;Agnitum firewall driver;c:\windows\system32\drivers\afw.sys [2010.08.24. 17:22 31128]
R3 afwcore;afwcore;c:\windows\system32\drivers\afwcore.sys [2010.08.24. 17:22 257432]
R3 ASWFilt;ASWFilt;c:\windows\system32\Filt\ASWFilt.dll [2010.08.24. 17:22 33920]

--- Other Services/Drivers In Memory ---

*Deregistered* - uphcleanhlp
.
.
------- Supplementary Scan -------
.
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Sanyi\Application Data\Mozilla\Firefox\Profiles\s16ekio4.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-29 15:32
Windows 5.1.2600 Szervizcsomag 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-839522115-682003330-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{917C4EE7-64C9-A759-D1D8-2BF48CAE8733}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"hadkchnlehbkjdlj"=hex:68,61,61,6b,70,67,64,61,70,6c,64,66,63,68,6f,65,00,00
"jaakphpejhgcfpnfkfji"=hex:64,62,6f,61,69,66,67,67,6a,6a,6d,67,68,6e,6f,64,6a,
6f,6d,66,6c,68,6d,6e,6e,6b,61,6a,62,6c,70,68,62,6c,6d,6b,6b,6c,65,70,00,c9
"japjgjbaeemggajcpbha"=hex:62,61,64,6d,00,00
"japjgjbaeemggajcpbdp"=hex:62,61,6b,6d,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(892)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(3460)
c:\program files\1st Clock\ClockDll32.dll
.
Completion time: 2010-08-29 15:34:23
ComboFix-quarantined-files.txt 2010-08-29 13:34

Pre-Run: 14 535 073 792 bájt szabad
Post-Run: 14 528 495 616 bájt szabad

- - End Of File - - 1C160EC479E82BFE56985126D662EBBE


vas. aug. 29, 2010 14:50
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
tudod mit sanyikam, ajanlom hogz tedd at ay PCTOOLS firewalt, ez most talan a legjobb, ha kell ide tesyem a, leirasat,,mar valahova ide is tetem, csak nemtudom hova. :D


vas. aug. 29, 2010 11:45
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
Köszi stell, azt szeretném megkérdezni,hogy az Outpost Firewall acs.exe internetezéskor nem mindig, de nagyon tekeri a processort. Más problémám nincs a géppel.

Nagyon szépen köszönöm

Üdv.


vas. aug. 29, 2010 11:30
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
van e problem a geppel??


vas. aug. 29, 2010 8:38
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
ComboFix 10-08-28.01 - Sanyi 010.08.29. 9:24.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.2048.1503 [GMT 2:00]
Running from: c:\documents and settings\Sanyi\Asztal\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Outpost Firewall Pro *disabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Sanyi\Application Data\inst.exe

.
((((((((((((((((((((((((( Files Created from 2010-07-28 to 2010-08-29 )))))))))))))))))))))))))))))))
.

2010-08-28 18:26 . 2010-08-28 19:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Ashampoo Music Studio 3
2010-08-28 03:34 . 2010-08-28 10:57 -------- d-----w- C:\rsit
2010-08-27 13:11 . 2008-12-14 07:20 23344 ----a-w- c:\windows\system32\drivers\pnpcap.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Pure Networks
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\WebEx
2010-08-27 13:10 . 2008-12-12 16:05 23984 ----a-w- c:\windows\system32\drivers\pnarp.sys
2010-08-27 13:10 . 2008-12-12 16:05 25264 ----a-w- c:\windows\system32\drivers\purendis.sys
2010-08-27 13:10 . 2010-08-27 13:10 -------- d-----w- c:\program files\Common Files\Pure Networks Shared
2010-08-27 13:09 . 2010-07-26 10:42 22268728 ----a-w- c:\documents and settings\All Users\Application Data\Pure Networks\Setup\smpsetup.exe
2010-08-27 13:09 . 2010-08-27 13:11 -------- d-----w- c:\documents and settings\All Users\Application Data\Pure Networks
2010-08-25 13:54 . 2010-08-25 13:54 -------- d-----w- c:\program files\ERUNT
2010-08-25 13:51 . 2010-08-25 13:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Fighters
2010-08-25 13:50 . 2010-08-25 13:50 -------- d-----w- c:\program files\Fighters
2010-08-25 13:44 . 2010-08-28 13:20 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Vso
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2010-08-25 13:44 . 2010-08-25 13:44 47360 ----a-w- c:\documents and settings\Sanyi\Application Data\pcouffin.sys
2010-08-25 13:44 . 2009-09-02 15:41 65602 ----a-w- c:\windows\system32\cook3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2010-08-25 13:44 . 2009-09-02 15:41 217127 ----a-w- c:\windows\system32\drv43260.dll
2010-08-25 13:44 . 2009-09-02 15:41 208935 ----a-w- c:\windows\system32\drv33260.dll
2010-08-25 13:44 . 2009-09-02 15:41 176165 ----a-w- c:\windows\system32\drv23260.dll
2010-08-25 13:44 . 2009-09-02 15:41 102439 ----a-w- c:\windows\system32\sipr3260.dll
2010-08-25 13:44 . 2009-09-02 15:41 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-08-25 13:44 . 2010-08-25 13:44 -------- d-----w- c:\program files\VSO
2010-08-25 13:40 . 2010-08-25 13:40 -------- d-----w- c:\program files\Foxit Software
2010-08-25 13:27 . 2010-08-25 13:27 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Xenocode
2010-08-25 13:10 . 2008-04-13 09:47 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:47 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-08-25 13:10 . 2008-04-13 09:45 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-08-25 13:09 . 2010-02-02 13:19 1761128 ----a-w- c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll
2010-08-25 13:09 . 2010-08-27 13:11 -------- dc----w- c:\windows\system32\DRVSTORE
2010-08-25 13:09 . 2010-02-02 13:19 539496 ----a-w- c:\windows\system32\hpinksts8711.dll
2010-08-25 13:09 . 2010-02-02 13:19 272744 ----a-w- c:\windows\system32\hpinksts8711LM.dll
2010-08-25 13:09 . 2010-02-02 13:19 201728 ----a-w- c:\windows\system32\hpinkcoi8711.dll
2010-08-25 13:08 . 2010-08-25 13:10 -------- d-----w- c:\documents and settings\All Users\Application Data\HP
2010-08-25 13:08 . 2010-08-25 13:08 -------- d-----w- c:\program files\HP
2010-08-25 13:07 . 2010-08-25 13:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\HP
2010-08-25 12:54 . 2010-08-28 18:25 -------- d-----w- c:\program files\Ashampoo
2010-08-25 09:20 . 2008-04-14 07:02 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-08-25 09:20 . 2001-10-26 19:25 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-08-25 09:20 . 2008-04-13 09:45 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-08-25 09:20 . 2008-04-13 09:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-08-25 06:18 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-08-25 06:08 . 2009-11-27 16:09 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
2010-08-25 06:08 . 2009-11-27 16:09 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
2010-08-25 06:06 . 2009-11-27 17:13 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2010-08-25 05:54 . 2010-04-28 18:15 2191360 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-08-25 05:54 . 2010-04-28 05:45 2147840 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-08-25 05:54 . 2010-04-28 05:45 2025984 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-08-25 05:48 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-08-25 05:48 . 2008-06-14 17:36 272512 ------w- c:\windows\system32\drivers\bthport.sys
2010-08-25 04:32 . 2010-08-26 19:36 -------- d--h--w- c:\windows\$hf_mig$
2010-08-25 04:26 . 2008-07-09 07:42 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-08-24 20:12 . 2010-08-24 20:14 -------- d-----w- c:\program files\Uninstall Tool
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\program files\Golden Bow
2010-08-24 20:08 . 2010-08-24 20:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Golden Bow Systems
2010-08-24 20:04 . 2010-08-26 19:38 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Godlike
2010-08-24 20:04 . 2010-08-24 20:04 -------- d-----w- c:\program files\Godlike Developers
2010-08-24 19:59 . 2010-08-24 19:59 -------- d-----w- c:\program files\CCleaner
2010-08-24 19:53 . 2010-08-24 19:53 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Green Parrots Software
2010-08-24 19:52 . 2010-08-24 19:52 -------- d-----w- c:\program files\1st Clock
2010-08-24 19:49 . 2010-08-24 19:49 -------- d-----w- c:\program files\WinSnap
2010-08-24 19:10 . 2010-08-24 19:14 -------- d-----w- c:\documents and settings\All Users\Application Data\JGLSzótár
2010-08-24 19:10 . 2010-08-24 19:10 -------- d-----w- c:\program files\Jómagam
2010-08-24 19:09 . 2010-08-24 19:09 -------- d-----w- c:\program files\uTorrent
2010-08-24 19:08 . 2010-08-29 07:08 -------- d-----w- c:\documents and settings\Sanyi\Application Data\uTorrent
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCox
2010-08-24 19:04 . 2010-08-24 19:07 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\PowerDVDCinema
2010-08-24 19:04 . 2010-08-24 19:04 -------- d-----w- c:\documents and settings\Sanyi\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-25 18:26 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink
2010-08-24 19:02 . 2010-08-24 19:02 -------- d-----w- c:\program files\Common Files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:02 -------- d-----w- c:\program files\CyberLink
2010-08-24 19:01 . 2010-08-24 19:00 29480 ----a-w- c:\windows\system32\msxml3a.dll
2010-08-24 19:01 . 2010-08-24 19:00 505128 ----a-w- c:\windows\system32\msvcp71.dll
2010-08-24 19:01 . 2010-08-24 19:00 353576 ----a-w- c:\windows\system32\msvcr71.dll
2010-08-24 19:00 . 2010-08-24 19:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Temp
2010-08-24 19:00 . 2010-08-24 19:00 53319 ----a-w- c:\documents and settings\All Users\Application Data\Temp\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\PostBuild.exe
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Thunderbird
2010-08-24 18:45 . 2010-08-24 18:45 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Thunderbird
2010-08-24 18:44 . 2010-08-28 19:59 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-08-24 18:43 . 2010-08-24 18:43 0 ----a-w- c:\windows\nsreg.dat
2010-08-24 18:43 . 2010-08-24 18:43 -------- d-----w- c:\documents and settings\Sanyi\Local Settings\Application Data\Mozilla
2010-08-24 18:41 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-08-24 18:41 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-08-24 18:40 . 2010-08-24 18:41 -------- d-----w- c:\windows\SHELLNEW
2010-08-24 18:34 . 2010-08-28 16:51 -------- d-----w- c:\documents and settings\Sanyi\Application Data\vlc
2010-08-24 18:33 . 2010-08-24 18:33 -------- d-----w- c:\program files\VideoLAN
2010-08-24 18:23 . 2010-08-24 18:23 -------- d-----w- c:\program files\PowerISO
2010-08-24 18:20 . 2010-08-24 18:20 -------- d-----w- c:\program files\UPHClean
2010-08-24 18:18 . 2010-08-24 18:18 -------- d-----w- c:\program files\File Shredder
2010-08-24 18:17 . 2010-08-27 04:22 -------- d-----w- c:\program files\Unlocker

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-28 10:56 . 2010-08-24 15:46 -------- d-----w- c:\program files\Trend Micro
2010-08-27 17:02 . 2010-08-24 15:28 17912 ----a-w- c:\documents and settings\Sanyi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-27 13:10 . 2010-08-27 13:10 8673792 ----a-w- c:\documents and settings\All Users\Application Data\atscie.msi
2010-08-25 14:44 . 2010-08-24 14:32 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-08-25 13:34 . 2004-08-18 12:00 84198 ----a-w- c:\windows\system32\perfc00E.dat
2010-08-25 13:34 . 2004-08-18 12:00 395348 ----a-w- c:\windows\system32\perfh00E.dat
2010-08-24 19:02 . 2010-08-24 15:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-24 15:46 . 2010-08-24 15:46 388096 ----a-r- c:\documents and settings\Sanyi\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\Sanyi\Application Data\Malwarebytes
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-24 15:44 . 2010-08-24 15:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-08-24 15:22 . 2010-08-24 15:22 -------- d-----w- c:\program files\Agnitum
2010-08-24 15:21 . 2010-08-24 15:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Agnitum
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\program files\Alwil Software
2010-08-24 15:19 . 2010-08-24 15:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-08-24 15:06 . 2010-08-24 15:06 -------- d-----w- c:\program files\Analog Devices
2010-08-24 15:06 . 2010-08-24 15:02 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-24 15:03 . 2010-08-24 15:03 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 14:57 . 2010-08-24 14:57 -------- d-----w- c:\program files\Total Commander 2008 Final Edition by K-ED
2010-08-24 14:33 . 2010-08-24 14:33 -------- d-----w- c:\program files\microsoft frontpage
2010-08-24 14:30 . 2010-08-24 14:30 21948 ----a-w- c:\windows\system32\emptyregdb.dat
2010-06-30 12:33 . 2008-04-14 07:02 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-28 20:57 . 2010-08-24 15:20 38848 ----a-w- c:\windows\avastSS.scr
2010-06-28 20:57 . 2010-08-24 15:20 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2010-08-24 15:20 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2010-08-24 15:20 165456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2010-08-24 15:20 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2010-08-24 15:20 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2010-08-24 15:20 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2010-08-24 15:20 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2010-08-24 15:20 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-06-24 09:02 . 2008-04-14 06:36 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2008-04-13 10:15 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2008-04-14 07:01 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2010-08-24 14:30 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:43 . 2008-04-14 07:01 1172480 ----a-w- c:\windows\system32\msxml3.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Simple Sticky Notes"="c:\documents and settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe" [2010-03-05 1502720]
"ftweak_RAMRush"="f:\általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe" [2009-09-17 670720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"OutpostMonitor"="c:\progra~1\Agnitum\OUTPOS~1\op_mon.exe" [2009-06-15 1228104]
"OutpostFeedBack"="c:\program files\Agnitum\Outpost Firewall Pro\feedback.exe" [2009-06-08 433480]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2008-12-12 642856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Sanyi\Start Menu\Programs\Indˇt˘pult\
1st Clock.lnk - c:\program files\1st Clock\1stClock.exe [2010-8-24 2842624]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKLM\~\startupfolder\C:^Documents and Settings^Sanyi^Start Menu^Programs^Indítópult^ERUNT AutoBackup.lnk]
path=c:\documents and settings\Sanyi\Start Menu\Programs\Indítópult\ERUNT AutoBackup.lnk
backup=c:\windows\pss\ERUNT AutoBackup.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-02-28 18:40 75048 ----a-w- c:\program files\CyberLink\Shared Files\brs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2008-10-13 18:41 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-02-16 07:55 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"67:UDP"= 67:UDP:DHCP Discovery Service

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010.08.24. 17:20 165456]
R1 SandBox;SandBox;c:\windows\system32\drivers\SandBox.sys [2010.08.24. 17:22 704384]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/08/24 21:02];c:\program files\CyberLink\PowerDVD9\000.fcl [2009.02.28. 19:40 87536]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\OUTPOS~1\acs.exe [2010.08.24. 17:22 1268040]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010.08.24. 17:20 17744]
R2 pnpcap;Pure Networks Packet Capture Driver;c:\windows\system32\drivers\pnpcap.sys [2010.08.27. 15:11 23344]
R3 afw;Agnitum firewall driver;c:\windows\system32\drivers\afw.sys [2010.08.24. 17:22 31128]
R3 afwcore;afwcore;c:\windows\system32\drivers\afwcore.sys [2010.08.24. 17:22 257432]
R3 ASWFilt;ASWFilt;c:\windows\system32\Filt\ASWFilt.dll [2010.08.24. 17:22 33920]

--- Other Services/Drivers In Memory ---

*Deregistered* - uphcleanhlp
.
.
------- Supplementary Scan -------
.
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Sanyi\Application Data\Mozilla\Firefox\Profiles\s16ekio4.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-29 09:29
Windows 5.1.2600 Szervizcsomag 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-839522115-682003330-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{917C4EE7-64C9-A759-D1D8-2BF48CAE8733}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"hadkchnlehbkjdlj"=hex:68,61,61,6b,70,67,64,61,70,6c,64,66,63,68,6f,65,00,00
"jaakphpejhgcfpnfkfji"=hex:64,62,6f,61,69,66,67,67,6a,6a,6d,67,68,6e,6f,64,6a,
6f,6d,66,6c,68,6d,6e,6e,6b,61,6a,62,6c,70,68,62,6c,6d,6b,6b,6c,65,70,00,c9
"japjgjbaeemggajcpbha"=hex:62,61,64,6d,00,00
"japjgjbaeemggajcpbdp"=hex:62,61,6b,6d,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(892)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2312)
c:\program files\1st Clock\ClockDll32.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\UPHClean\uphclean.exe
c:\program files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
.
**************************************************************************
.
Completion time: 2010-08-29 09:32:08 - machine was rebooted
ComboFix-quarantined-files.txt 2010-08-29 07:32

Pre-Run: 14 755 282 944 bájt szabad
Post-Run: 14 691 434 496 bájt szabad

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect

- - End Of File - - 320DBFAC4CBC4CCD7F5F9279927AC8E2


vas. aug. 29, 2010 8:34
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
futtasd le a combofixet


vas. aug. 29, 2010 7:54
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. aug. 21, 2008 19:07
Hozzászólások: 326
Hozzászólás Re: STELL Segit
Logfile of random's system information tool 1.08 (written by random/random)
Run by Sanyi at 2010-08-28 12:56:38
Microsoft Windows XP Professional Szervizcsomag 3
System drive C: has 14 GB (72%) free of 20 GB
Total RAM: 2048 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:56:40, on 2010.08.28.
Platform: Windows XP Szervizcsomag 3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe
F:\Általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe
C:\Program Files\1st Clock\1stClock.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Documents and Settings\Sanyi\Asztal\RSIT.exe
C:\Program Files\trend micro\Sanyi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe" /dump:os_startup
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Simple Sticky Notes] C:\Documents and Settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe
O4 - HKCU\..\Run: [ftweak_RAMRush] F:\Általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: 1st Clock.lnk = C:\Program Files\1st Clock\1stClock.exe
O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Firewall Pro\ie_bar.dll
O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
O20 - AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll
O22 - SharedTaskScheduler: Browseui előbetöltője - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Komponenskategóriák gyorsítótárazási szolgáltatása - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Logikai lemezkezelő felügyeleti szolgáltatás (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Eseménynapló (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: IMAPI CD-égető COM-szolgáltatás (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: NetMeeting távoli asztalmegosztás (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Távoli asztal súgó-munkamenetének kezelője (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Intelligens kártya (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Teljesítménynaplók és riasztások (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Kötet árnyékmásolata (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: WMI teljesítményadapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 5321 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2009-06-15 1228104]
"OutpostFeedBack"=C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe [2009-06-08 433480]
"nmctxth"=C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [2008-12-12 642856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Simple Sticky Notes"=C:\Documents and Settings\Sanyi\Asztal\Telepítés nélkül\Sticky Notes Application\7StickyNot.exe [2010-03-05 1502720]
"ftweak_RAMRush"=F:\Általános progik és leírások\XP-re telepítve\Telepített progik\Teszt\RAM tisztitó\RAMRush.exe [2009-09-17 670720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-02-28 75048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [2008-10-13 50472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-02-16 87336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Sanyi^Start Menu^Programs^Indítópult^ERUNT AutoBackup.lnk]
C:\PROGRA~1\ERUNT\AUTOBACK.EXE [2005-10-20 38912]

C:\Documents and Settings\Sanyi\Start Menu\Programs\Indítópult
1st Clock.lnk - C:\Program Files\1st Clock\1stClock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~1\agnitum\outpos~1\wl_hook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-05-15 155648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDesktop"=0
"NoActiveDesktop"=0
"HideClock"=0
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"StartmenuLogoff"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoRun"=0
"NoFind"=0
"NoClose"=0
"NoSetFolders"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoToolbarCustomize"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0
"NoThemesTab"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe"="C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe:LocalSubNet:Enabled:HP eszköz beállítása"
"C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet:Enabled:Pure Networks Platform Service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-08-28 05:34:48 ----D---- C:\rsit
2010-08-27 15:11:01 ----A---- C:\WINDOWS\system32\drivers\pnpcap.sys
2010-08-27 15:10:59 ----D---- C:\Program Files\Pure Networks
2010-08-27 15:10:34 ----D---- C:\Program Files\WebEx
2010-08-27 15:10:17 ----A---- C:\WINDOWS\system32\drivers\pnarp.sys
2010-08-27 15:10:12 ----A---- C:\WINDOWS\system32\drivers\purendis.sys
2010-08-27 15:10:06 ----D---- C:\Program Files\Common Files\Pure Networks Shared
2010-08-27 15:09:47 ----D---- C:\Documents and Settings\All Users\Application Data\Pure Networks
2010-08-26 21:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-08-26 05:54:31 ----D---- C:\WINDOWS\Minidump
2010-08-25 15:56:51 ----D---- C:\WINDOWS\ERDNT
2010-08-25 15:54:37 ----D---- C:\Program Files\ERUNT
2010-08-25 15:51:43 ----D---- C:\Documents and Settings\All Users\Application Data\Fighters
2010-08-25 15:50:10 ----D---- C:\Program Files\Fighters
2010-08-25 15:44:45 ----D---- C:\Documents and Settings\Sanyi\Application Data\Vso
2010-08-25 15:44:45 ----A---- C:\WINDOWS\system32\drivers\pcouffin.sys
2010-08-25 15:44:45 ----A---- C:\Documents and Settings\Sanyi\Application Data\pcouffin.sys
2010-08-25 15:44:45 ----A---- C:\Documents and Settings\Sanyi\Application Data\inst.exe
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\vp7vfw.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\sipr3260.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\Pncrt.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\drv43260.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\drv33260.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\drv23260.dll
2010-08-25 15:44:34 ----A---- C:\WINDOWS\system32\cook3260.dll
2010-08-25 15:44:33 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2010-08-25 15:44:32 ----D---- C:\Program Files\VSO
2010-08-25 15:40:30 ----D---- C:\Program Files\Foxit Software
2010-08-25 15:10:20 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-08-25 15:10:12 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2010-08-25 15:09:31 ----A---- C:\WINDOWS\system32\HPScanMiniDrv_DJ2050_510g.dll
2010-08-25 15:09:28 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-08-25 15:09:28 ----A---- C:\WINDOWS\system32\hpinksts8711LM.dll
2010-08-25 15:09:28 ----A---- C:\WINDOWS\system32\hpinksts8711.dll
2010-08-25 15:09:28 ----A---- C:\WINDOWS\system32\hpinkcoi8711.dll
2010-08-25 15:08:54 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2010-08-25 15:08:47 ----D---- C:\Program Files\HP
2010-08-25 14:54:38 ----D---- C:\Program Files\Ashampoo
2010-08-25 11:20:01 ----A---- C:\WINDOWS\system32\ptpusd.dll
2010-08-25 11:20:01 ----A---- C:\WINDOWS\system32\ptpusb.dll
2010-08-25 11:20:00 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-08-25 08:31:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-08-25 08:30:45 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-08-25 08:30:23 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-08-25 08:29:51 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-08-25 08:29:19 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-08-25 08:28:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-08-25 08:28:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-08-25 08:24:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-08-25 08:24:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-08-25 08:23:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-25 08:23:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-25 08:22:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-25 08:22:21 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-25 08:21:49 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-25 08:21:14 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-25 08:20:40 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-25 08:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-08-25 08:19:06 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-25 08:18:34 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-08-25 08:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-08-25 08:17:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-08-25 08:16:57 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-08-25 08:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-08-25 08:15:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-08-25 08:15:27 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-08-25 08:14:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-08-25 08:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-08-25 08:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-08-25 08:08:27 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-08-25 08:07:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-08-25 08:07:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-08-25 08:06:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-08-25 08:06:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-08-25 08:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-08-25 08:05:35 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-08-25 08:05:06 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-08-25 08:04:37 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-08-25 08:03:44 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-08-25 08:03:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-08-25 08:02:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-08-25 08:02:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-08-25 08:01:46 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-08-25 08:01:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-08-25 08:00:50 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-08-25 08:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-08-25 07:59:54 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-08-25 07:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-08-25 07:58:54 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-08-25 07:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-08-25 07:58:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-08-25 07:57:35 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-08-25 07:57:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-08-25 07:56:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-08-25 07:56:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-08-25 07:55:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-08-25 07:55:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-08-25 07:54:38 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-08-25 07:54:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-08-25 07:49:17 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-08-25 07:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-08-25 07:48:26 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-08-25 07:48:20 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-08-25 07:48:04 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-08-25 07:47:43 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-08-25 07:47:20 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-08-25 07:46:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-08-25 06:32:16 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-25 06:26:31 ----D---- C:\WINDOWS\system32\PreInstall
2010-08-25 06:26:30 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-08-25 06:26:27 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-08-25 06:26:26 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-08-25 06:09:04 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-08-25 05:50:20 ----D---- C:\Documents and Settings\Sanyi\Application Data\Macromedia
2010-08-25 05:50:20 ----D---- C:\Documents and Settings\Sanyi\Application Data\Adobe
2010-08-24 22:12:30 ----D---- C:\Program Files\Uninstall Tool
2010-08-24 22:10:36 ----D---- C:\WINDOWS\pss
2010-08-24 22:08:19 ----D---- C:\Program Files\Golden Bow
2010-08-24 22:08:19 ----D---- C:\Documents and Settings\All Users\Application Data\Golden Bow Systems
2010-08-24 22:04:23 ----D---- C:\Documents and Settings\Sanyi\Application Data\Godlike
2010-08-24 22:04:12 ----D---- C:\Program Files\Godlike Developers
2010-08-24 21:59:48 ----D---- C:\Program Files\CCleaner
2010-08-24 21:53:01 ----D---- C:\Documents and Settings\Sanyi\Application Data\Green Parrots Software
2010-08-24 21:52:54 ----D---- C:\Program Files\1st Clock
2010-08-24 21:49:54 ----D---- C:\Program Files\WinSnap
2010-08-24 21:16:14 ----RSD---- C:\WINDOWS\assembly
2010-08-24 21:15:40 ----D---- C:\WINDOWS\Microsoft.NET
2010-08-24 21:10:48 ----D---- C:\Program Files\Jómagam
2010-08-24 21:10:48 ----D---- C:\Documents and Settings\All Users\Application Data\JGLSzótár
2010-08-24 21:09:11 ----D---- C:\Program Files\uTorrent
2010-08-24 21:08:30 ----D---- C:\Documents and Settings\Sanyi\Application Data\uTorrent
2010-08-24 21:04:14 ----D---- C:\Documents and Settings\Sanyi\Application Data\CyberLink
2010-08-24 21:02:17 ----D---- C:\Documents and Settings\All Users\Application Data\CyberLink
2010-08-24 21:02:06 ----D---- C:\Program Files\Common Files\CyberLink
2010-08-24 21:01:31 ----D---- C:\Program Files\CyberLink
2010-08-24 21:01:12 ----A---- C:\WINDOWS\system32\msxml3a.dll
2010-08-24 21:01:12 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-08-24 21:01:12 ----A---- C:\WINDOWS\system32\msvcp71.dll
2010-08-24 21:00:47 ----D---- C:\Documents and Settings\All Users\Application Data\Temp
2010-08-24 20:45:02 ----D---- C:\Documents and Settings\Sanyi\Application Data\Thunderbird
2010-08-24 20:44:49 ----D---- C:\Program Files\Mozilla Thunderbird
2010-08-24 20:43:20 ----D---- C:\Documents and Settings\Sanyi\Application Data\Mozilla
2010-08-24 20:43:10 ----D---- C:\Program Files\Mozilla Firefox
2010-08-24 20:41:40 ----A---- C:\WINDOWS\ODBC.INI
2010-08-24 20:41:36 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-08-24 20:41:04 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-24 20:40:53 ----D---- C:\WINDOWS\SHELLNEW
2010-08-24 20:40:52 ----D---- C:\Program Files\Microsoft Office
2010-08-24 20:34:23 ----D---- C:\Documents and Settings\Sanyi\Application Data\vlc
2010-08-24 20:33:35 ----D---- C:\Program Files\VideoLAN
2010-08-24 20:29:21 ----D---- C:\Documents and Settings\Sanyi\Application Data\WinRAR
2010-08-24 20:28:48 ----D---- C:\Program Files\WinRAR
2010-08-24 20:23:03 ----D---- C:\Program Files\PowerISO
2010-08-24 20:20:47 ----D---- C:\Program Files\UPHClean
2010-08-24 20:18:18 ----D---- C:\Program Files\File Shredder
2010-08-24 20:17:43 ----D---- C:\Program Files\Unlocker
2010-08-24 18:26:21 ----A---- C:\WINDOWS\system32\h323log.txt
2010-08-24 18:23:11 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-08-24 18:22:40 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-08-24 18:22:24 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys
2010-08-24 18:22:07 ----A---- C:\WINDOWS\system32\drivers\UAGP35.SYS
2010-08-24 18:22:02 ----A---- C:\WINDOWS\system32\drivers\sisnic.sys
2010-08-24 18:21:56 ----A---- C:\WINDOWS\system32\usbui.dll
2010-08-24 18:20:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-24 18:20:41 ----SHD---- C:\WINDOWS\Installer
2010-08-24 18:20:41 ----D---- C:\Program Files\Common Files\ODBC
2010-08-24 18:20:41 ----A---- C:\WINDOWS\ODBCINST.INI
2010-08-24 18:20:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-08-24 18:20:36 ----RD---- C:\Program Files
2010-08-24 18:20:36 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-24 18:20:36 ----D---- C:\Program Files\Common Files
2010-08-24 18:20:32 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-08-24 18:20:32 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-08-24 18:20:32 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-08-24 18:20:30 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-08-24 18:20:29 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-08-24 18:20:29 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-08-24 18:20:29 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-08-24 18:20:27 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-08-24 18:20:25 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-08-24 18:20:25 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-08-24 18:20:25 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-08-24 18:20:25 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-08-24 18:20:25 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdcz2.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdcz1.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdcz.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-08-24 18:20:21 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-08-24 18:20:19 ----A---- C:\WINDOWS\system32\irclass.dll
2010-08-24 18:20:19 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-08-24 18:20:19 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-08-24 18:20:18 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-08-24 18:20:18 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-08-24 18:20:16 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-08-24 18:20:15 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-08-24 18:20:15 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-24 18:20:15 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-08-24 18:20:14 ----A---- C:\WINDOWS\system32\storprop.dll
2010-08-24 18:20:04 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-08-24 18:19:50 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-24 18:19:50 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-24 18:19:44 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-08-24 18:19:19 ----D---- C:\Documents and Settings
2010-08-24 18:19:18 ----SHD---- C:\System Volume Information
2010-08-24 18:18:35 ----SH---- C:\boot.ini
2010-08-24 18:12:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-24 18:12:41 ----RSD---- C:\WINDOWS\Fonts
2010-08-24 18:12:41 ----RD---- C:\WINDOWS\Web
2010-08-24 18:12:41 ----HD---- C:\WINDOWS\inf
2010-08-24 18:12:41 ----D---- C:\WINDOWS\WinSxS
2010-08-24 18:12:41 ----D---- C:\WINDOWS\twain_32
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Temp
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\wins
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\wbem
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\usmt
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\spool
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\ShellExt
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\Setup
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\ras
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\oobe
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\npp
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\mui
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\IME
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\icsxml
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\ias
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\hu-hu
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\hu
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\export
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\drivers
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\dhcp
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\config
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\3com_dmi
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\3076
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\2052
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1054
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1042
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1041
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1038
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1037
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1033
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1031
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1028
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32\1025
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system32
2010-08-24 18:12:41 ----D---- C:\WINDOWS\system
2010-08-24 18:12:41 ----D---- C:\WINDOWS\security
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Resources
2010-08-24 18:12:41 ----D---- C:\WINDOWS\repair
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Provisioning
2010-08-24 18:12:41 ----D---- C:\WINDOWS\PeerNet
2010-08-24 18:12:41 ----D---- C:\WINDOWS\pchealth
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Network Diagnostic
2010-08-24 18:12:41 ----D---- C:\WINDOWS\mui
2010-08-24 18:12:41 ----D---- C:\WINDOWS\msapps
2010-08-24 18:12:41 ----D---- C:\WINDOWS\msagent
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Media
2010-08-24 18:12:41 ----D---- C:\WINDOWS\L2Schemas
2010-08-24 18:12:41 ----D---- C:\WINDOWS\java
2010-08-24 18:12:41 ----D---- C:\WINDOWS\ime
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Help
2010-08-24 18:12:41 ----D---- C:\WINDOWS\ehome
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Driver Cache
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Debug
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Cursors
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Connection Wizard
2010-08-24 18:12:41 ----D---- C:\WINDOWS\Config
2010-08-24 18:12:41 ----D---- C:\WINDOWS\AppPatch
2010-08-24 18:12:41 ----D---- C:\WINDOWS\addins
2010-08-24 18:12:41 ----D---- C:\WINDOWS
2010-08-24 18:12:41 ----ASH---- C:\pagefile.sys
2010-08-24 17:46:00 ----D---- C:\Program Files\Trend Micro
2010-08-24 17:44:55 ----D---- C:\Documents and Settings\Sanyi\Application Data\Malwarebytes
2010-08-24 17:44:39 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-08-24 17:44:38 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-08-24 17:44:36 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-08-24 17:44:36 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-08-24 17:22:50 ----A---- C:\WINDOWS\system32\drivers\SandBox.sys
2010-08-24 17:22:45 ----A---- C:\WINDOWS\system32\drivers\afwcore.sys
2010-08-24 17:22:29 ----A---- C:\WINDOWS\system32\drivers\afw.sys
2010-08-24 17:22:23 ----D---- C:\WINDOWS\system32\Filt
2010-08-24 17:22:23 ----D---- C:\Program Files\Agnitum
2010-08-24 17:21:49 ----D---- C:\Documents and Settings\All Users\Application Data\Agnitum
2010-08-24 17:20:17 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2010-08-24 17:20:17 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2010-08-24 17:20:16 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2010-08-24 17:20:15 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2010-08-24 17:20:14 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2010-08-24 17:20:14 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2010-08-24 17:20:13 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2010-08-24 17:20:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-08-24 17:19:58 ----D---- C:\Program Files\Alwil Software
2010-08-24 17:19:58 ----D---- C:\Documents and Settings\All Users\Application Data\Alwil Software
2010-08-24 17:07:13 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-08-24 17:07:11 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-08-24 17:07:09 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2010-08-24 17:07:07 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-24 17:07:05 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-24 17:07:04 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-08-24 17:07:03 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-24 17:07:01 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-24 17:06:59 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010-08-24 17:06:58 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2010-08-24 17:06:54 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010-08-24 17:06:49 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-24 17:06:49 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-08-24 17:06:48 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-24 17:06:45 ----N---- C:\WINDOWS\system32\CleanUp.exe
2010-08-24 17:06:45 ----D---- C:\Program Files\Analog Devices
2010-08-24 17:06:45 ----A---- C:\WINDOWS\system32\DSndUp.exe
2010-08-24 17:06:45 ----A---- C:\WINDOWS\system32\drivers\smwdm.sys
2010-08-24 17:02:15 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-24 17:02:01 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\atitvo32.dll
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2010-08-24 17:00:45 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atioglxx.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\ATIODE.exe
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atimpc32.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atikvmag.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\aticalrt.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\aticaldd.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\aticalcl.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atibtmon.exe
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\ati3duag.dll
2010-08-24 17:00:44 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2010-08-24 17:00:43 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2010-08-24 17:00:18 ----D---- C:\ati862
2010-08-24 16:58:15 ----SHD---- C:\RECYCLER
2010-08-24 16:57:15 ----D---- C:\Program Files\Total Commander 2008 Final Edition by K-ED
2010-08-24 16:41:26 ----D---- C:\Documents and Settings\Sanyi\Application Data\Identities
2010-08-24 16:41:24 ----HD---- C:\Program Files\Uninstall Information
2010-08-24 16:41:17 ----SD---- C:\Documents and Settings\Sanyi\Application Data\Microsoft
2010-08-24 16:41:17 ----ASH---- C:\Documents and Settings\Sanyi\Application Data\desktop.ini
2010-08-24 16:37:58 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-24 16:37:46 ----SD---- C:\WINDOWS\system32\Microsoft
2010-08-24 16:37:46 ----D---- C:\WINDOWS\Prefetch
2010-08-24 16:37:45 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-24 16:33:55 ----D---- C:\WINDOWS\system32\xircom
2010-08-24 16:33:55 ----D---- C:\Program Files\xerox
2010-08-24 16:33:55 ----D---- C:\Program Files\microsoft frontpage
2010-08-24 16:33:35 ----RASH---- C:\MSDOS.SYS
2010-08-24 16:33:35 ----RASH---- C:\IO.SYS
2010-08-24 16:33:35 ----A---- C:\WINDOWS\control.ini
2010-08-24 16:33:35 ----A---- C:\CONFIG.SYS
2010-08-24 16:33:35 ----A---- C:\AUTOEXEC.BAT
2010-08-24 16:33:20 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-08-24 16:32:21 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-24 16:32:21 ----RD---- C:\WINDOWS\Offline Web Pages
2010-08-24 16:32:20 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-08-24 16:32:14 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-08-24 16:32:09 ----HD---- C:\Program Files\WindowsUpdate
2010-08-24 16:32:05 ----D---- C:\Program Files\Online Services
2010-08-24 16:31:47 ----D---- C:\WINDOWS\system32\DirectX
2010-08-24 16:31:41 ----A---- C:\WINDOWS\system32\atrace.dll
2010-08-24 16:31:38 ----A---- C:\WINDOWS\system32\desktop.ini
2010-08-24 16:31:38 ----A---- C:\WINDOWS\desktop.ini
2010-08-24 16:31:31 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-08-24 16:31:30 ----A---- C:\WINDOWS\system32\acctres.dll
2010-08-24 16:31:29 ----D---- C:\Program Files\Common Files\Services
2010-08-24 16:31:26 ----SD---- C:\WINDOWS\Tasks
2010-08-24 16:31:26 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-08-24 16:31:25 ----D---- C:\Program Files\Common Files\MSSoap
2010-08-24 16:31:21 ----D---- C:\WINDOWS\srchasst
2010-08-24 16:31:20 ----D---- C:\WINDOWS\system32\Macromed
2010-08-24 16:31:17 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-08-24 16:31:17 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-08-24 16:31:17 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-24 16:31:17 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\wups.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-24 16:31:16 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-24 16:31:15 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-24 16:31:12 ----D---- C:\Program Files\Movie Maker
2010-08-24 16:30:51 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-08-24 16:30:51 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-08-24 16:30:51 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-08-24 16:30:51 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-08-24 16:30:48 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-08-24 16:30:48 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-24 16:30:47 ----D---- C:\WINDOWS\system32\Restore
2010-08-24 16:30:47 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-08-24 16:30:47 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-08-24 16:30:47 ----A---- C:\WINDOWS\system32\srclient.dll
2010-08-24 16:30:47 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-08-24 16:30:47 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2010-08-24 16:30:46 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-08-24 16:30:46 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-24 16:30:46 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-24 16:30:46 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-24 16:30:45 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-24 16:30:45 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-24 16:30:43 ----D---- C:\Program Files\NetMeeting
2010-08-24 16:30:43 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-24 16:30:43 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-24 16:30:42 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-24 16:30:41 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-24 16:30:39 ----D---- C:\Program Files\Outlook Express
2010-08-24 16:30:39 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-08-24 16:30:39 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-24 16:30:39 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-24 16:30:39 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-24 16:30:38 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-24 16:30:38 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-24 16:30:38 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-24 16:30:32 ----D---- C:\Program Files\Common Files\System
2010-08-24 16:30:31 ----D---- C:\Program Files\Internet Explorer
2010-08-24 16:29:52 ----D---- C:\Program Files\ComPlus Applications
2010-08-24 16:29:50 ----A---- C:\WINDOWS\vbaddin.ini
2010-08-24 16:29:50 ----A---- C:\WINDOWS\vb.ini
2010-08-24 16:29:46 ----D---- C:\WINDOWS\Registration
2010-08-24 16:29:38 ----D---- C:\Program Files\Windows Media Player
2010-08-24 16:29:31 ----D---- C:\Program Files\Messenger
2010-08-24 16:29:27 ----D---- C:\Program Files\MSN Gaming Zone
2010-08-24 16:29:27 ----A---- C:\WINDOWS\system32\write.exe
2010-08-24 16:29:16 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-08-24 16:29:16 ----A---- C:\WINDOWS\system32\hticons.dll
2010-08-24 16:29:15 ----A---- C:\WINDOWS\system32\winchat.exe
2010-08-24 16:29:15 ----A---- C:\WINDOWS\system32\avwav.dll
2010-08-24 16:29:15 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-08-24 16:29:15 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-08-24 16:29:07 ----A---- C:\WINDOWS\system32\getuname.dll
2010-08-24 16:29:07 ----A---- C:\WINDOWS\system32\charmap.exe
2010-08-24 16:29:06 ----A---- C:\WINDOWS\system32\winmine.exe
2010-08-24 16:29:06 ----A---- C:\WINDOWS\system32\sol.exe
2010-08-24 16:29:06 ----A---- C:\WINDOWS\system32\calc.exe
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\tskill.exe
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\reset.exe
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-08-24 16:29:05 ----A---- C:\WINDOWS\system32\freecell.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\tscon.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\shadow.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\regini.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\msg.exe
2010-08-24 16:29:04 ----A---- C:\WINDOWS\system32\logoff.exe
2010-08-24 16:29:03 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-08-24 16:29:03 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-08-24 16:28:57 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-08-24 16:28:56 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-08-24 16:28:56 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-24 16:28:55 ----D---- C:\Program Files\Windows NT
2010-08-24 16:28:55 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-24 16:28:55 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-24 16:28:55 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-24 16:28:54 ----A---- C:\WINDOWS\system32\spider.exe
2010-08-24 16:28:54 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\tsgqec.dll
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-08-24 16:28:53 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-08-24 16:28:52 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-24 16:28:52 ----A---- C:\WINDOWS\system32\aaclient.dll
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-08-24 16:28:51 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-24 16:28:50 ----D---- C:\WINDOWS\system32\MsDtc
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-24 16:28:50 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-24 16:28:49 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-08-24 16:28:49 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-24 16:28:49 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-24 16:28:49 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-24 16:28:49 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-24 16:28:48 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-24 16:28:48 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-24 16:28:48 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-24 16:28:48 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-24 16:28:47 ----D---- C:\WINDOWS\system32\Com
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\stclient.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-24 16:28:47 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-24 16:28:46 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-24 16:28:46 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-24 16:28:46 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-24 16:28:46 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-24 16:28:45 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-24 16:28:39 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-08-24 16:28:39 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-24 16:28:39 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-24 16:28:38 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-24 16:28:34 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-08-24 16:28:34 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2010-08-28 06:40:57 ----A---- C:\WINDOWS\win.ini
2010-08-28 06:40:57 ----A---- C:\WINDOWS\system.ini
2010-08-24 16:33:07 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 uagp35;Microsoft AGPv3.5 szűrő; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 intelppm;Intel processzor illesztőprogramja; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 SandBox;SandBox; \??\C:\WINDOWS\system32\drivers\SandBox.sys []
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-11-09 59388]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/08/24 21:02:16]; \??\C:\Program Files\CyberLink\PowerDVD9\000.fcl []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R2 pnarp;Pure Networks Device Discovery Driver; C:\WINDOWS\system32\DRIVERS\pnarp.sys [2008-12-12 23984]
R2 pnpcap;Pure Networks Packet Capture Driver; C:\WINDOWS\system32\DRIVERS\pnpcap.sys [2008-12-14 23344]
R2 purendis;Pure Networks Wireless Driver; C:\WINDOWS\system32\DRIVERS\purendis.sys [2008-12-12 25264]
R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2009-02-18 31128]
R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2009-05-20 257432]
R3 ASWFilt;ASWFilt; \??\C:\WINDOWS\system32\Filt\ASWFilt.dll []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-05-15 4069888]
R3 HDAudBus;Microsoft UAA busz-illesztőprogram - High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-08-25 47360]
R3 SISNIC;SiS PCI gyors Ethernet-adapterillesztő; C:\WINDOWS\system32\DRIVERS\sisnic.sys [2008-04-13 32768]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2006-03-09 222848]
R3 usbccgp;Microsoft USB általános szülő-illesztőprogram; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Microsoft USB PRINTER osztály; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;USB-képolvasó illesztőprogramja; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2009-06-08 1268040]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-05-15 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 nmservice;Pure Networks Platform Service; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [2008-12-12 642856]
R2 UPHClean;User Profile Hive Cleanup; C:\Program Files\UPHClean\uphclean.exe [2005-04-27 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-04-13 33632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-04-13 68952]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------


szomb. aug. 28, 2010 12:02
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás 
A problem,megodva.


szomb. feb. 27, 2010 14:36
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás 
Hello
ted ide az RSIT logjat
,letoltsuk innen az asztalra>RSIT
Klik>Continue>egy kiss ido mulva ad logot,eztet kerem tegye be a temajaba,
http://images.malwareremoval.com/random/RSIT.exe


pén. feb. 26, 2010 10:00
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás 
Helló! Segítségre lenne szükségem.A gép egyik napról a másikra lelassult,már mindent kipróbáltam (töredezettség mentesítés,ccleaner,stb)
a vírus irtó sem jelzi,hogy baj lenne.Ami eddig szépen működött most hosszú percekbe telik.Szeretném ha segítenétek átnézni mi lehet a baj.Én"csak" egy anyuka vagyok és nem nagyon értek a géphez,de ha elmondjátok megtudom csinálni.Előre is hálás köszönet ha segítetek


pén. feb. 26, 2010 9:53
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás STELL Segit
mivel eleg sok a Terminal forumon a forum hiba es nincsen modom hogy szakertoen segitseg,ezert matol kezdve akinek virusokal lesz baja megtalal itt :D
http://squito-web.com/stell/forum/index.php


kedd jan. 05, 2010 16:29
Profil Privát üzenet küldése Honlap
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 774 hozzászólás ]  Oldal Előző  1 ... 12, 13, 14, 15, 16

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 7 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség