Megválaszolatlan hozzászólások | Aktív témák Pontos idő: csüt. márc. 28, 2024 10:35



Hozzászólás a témához  [ 774 hozzászólás ]  Oldal Előző  1, 2, 3, 4, 5 ... 16  Következő
STELL Segit 
Szerző Üzenet
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: STELL Segit
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Tóth Csaba at 2015-06-08 20:16:07
Running from C:\Users\Tóth Csaba\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-1462920200-3334296030-1238588724-1005 - Limited - Enabled)
Rendszergazda (S-1-5-21-1462920200-3334296030-1238588724-500 - Administrator - Disabled)
Tóth Csaba (S-1-5-21-1462920200-3334296030-1238588724-1001 - Administrator - Enabled) => C:\Users\Tóth Csaba
Vendég (S-1-5-21-1462920200-3334296030-1238588724-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
Adobe Acrobat Reader DC - Hungarian (HKLM-x32\...\{AC76BA86-7AD7-1038-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
C5300 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
COMODO Firewall (HKLM\...\{73830292-868E-4C82-9AF5-CCFE2047B6A3}) (Version: 8.2.0.4508 - COMODO Security Solutions Inc.)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
D1300 (x32 Version: 140.0.421.000 - Hewlett-Packard) Hidden
D1300_Help (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.00 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version: v7.0.33049 (CD 3.9g) - Hauppauge Computer Works)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart C5300 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{12440487-BEA5-48CF-A36C-C86F5D350999}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel® Chipkészlet-illesztő szoftver (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Mass Effect™ 3 Demo (HKLM-x32\...\{A1683CA7-4850-4A21-982B-C6D853C79AF7}) (Version: 1.0.0.0 - Electronic Arts)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2010 Otthoni és diákverzió (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 hu) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 hu)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Nitro Pro 9 (HKLM-x32\...\{c5237a45-d0a0-4c12-9269-f59919377de1}) (Version: 9.5.3.8 - Nitro)
Nitro Pro 9 (Version: 9.5.3.8 - Nitro) Hidden
NVIDIA 3D Vision illesztőprogram 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA 3D Vision vezérlő illesztőprogram 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA HD audio-illesztőprogram 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Miracast virtuális hang 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX rendszerszoftver 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Photosmart and Deskjet Drivers 14.0 Rel. A (HKLM\...\{F58E1340-3FD5-40B8-A07C-4893CFC29749}) (Version: 14.0 - HP)
PS_AIO_04_C5300_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SF_CDA_ProductContext (x32 Version: 140.0.421.000 - Hewlett-Packard) Hidden
SF_CDA_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi (HKLM-x32\...\{20288888-A7AF-4B24-8AEB-398D20CD563C}) (Version: 1.0 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1462920200-3334296030-1238588724-1001_Classes\CLSID\{7884BBCC-1BE7-8D23-7B79-774DF1D22825}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)

==================== Restore Points =========================

28-05-2015 08:24:28 Windows Update
31-05-2015 10:38:11 Installed Microsoft Office 2010 Otthoni és diákverzió
07-06-2015 18:52:21 avast! antivirus system restore point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {228ED32A-95F9-4FEF-A063-10781ED167D8} - \{450819F7-E7CF-4032-8670-F117E6E4E52B} No Task File <==== ATTENTION
Task: {4C4908E5-4D0F-4F06-8E3B-9F4A6B286996} - \User_Feed_Synchronization-{2E622904-D9FC-41E2-9330-AC48244964FF} No Task File <==== ATTENTION
Task: {752F7BEE-E41C-4B90-A49E-906248990CB4} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-04-01] (COMODO)
Task: {830BD732-EE7D-4295-A99E-8A17CBCBCFEC} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {83F770D2-A1CB-4A1A-93D0-4DB9862C719F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-04-01] (COMODO)
Task: {9CB9F415-6CE6-464E-80D1-08C5A0AC6648} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {9E5E4D9E-B61B-4645-9FAE-74B23780089C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {BE7AD147-CA3A-402B-A728-0CDCC35102DA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {C0F13216-2A15-4467-9A93-5275575FF090} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-08] (Avast Software s.r.o.)
Task: {D76860DB-1A8B-44CD-BCFE-0F83A3874F2B} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {EA79F8B9-2CBF-498A-AEF0-BE31EBCB685B} - \Bidaily Synchronize Task[pr] No Task File <==== ATTENTION
Task: {F6B38A85-7609-4BD2-83E1-AD66668E25C5} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-04-01] (COMODO)
Task: {FA45871C-F84E-4C25-BBE3-BFDDF0DA4C6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-14] (Microsoft Corporation)
Task: {FE38B06F-70B9-4AF6-884A-2CDD89B5847F} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {FE60BEC7-9A44-4E0E-B328-D11D9FB3EDC3} - \Adobe Acrobat Update Task No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Bidaily Synchronize Task[pr].job => c:\programdata\{ea0a7700-fee8-e3ae-ea0a-a7700feedc03}\screensaver-dragon.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2015-05-24 21:22 - 2013-07-04 03:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2014-08-01 14:23 - 2015-05-25 12:54 - 00418312 _____ () C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
2015-05-24 21:22 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-10 08:57 - 2015-05-10 08:57 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\ErrorReporting.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 02952192 _____ () C:\Program Files\AVAST Software\Avast\defs\15060800\algo.dll
2015-05-24 21:22 - 2015-06-08 17:19 - 00029696 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2015-05-24 21:22 - 2013-07-04 03:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2015-05-09 18:20 - 2011-08-23 10:04 - 00057344 _____ () C:\Program Files (x86)\WinTV\TVServer\libhdhomerun.dll
2015-05-09 18:01 - 2015-05-23 03:48 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-02-28 19:14 - 2014-02-28 19:14 - 00002560 _____ () C:\WINDOWS\SYSTEM32\CTXFIRES.DLL
2013-09-11 22:04 - 2013-09-11 22:04 - 00686408 _____ () c:\program files (x86)\abbyy finereader 12\DL100JP2KLib.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\WINDOWS\system32\aspnet_counters.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_24.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_25.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_26.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_27.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_28.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_29.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_30.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_31.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvaudcap64v.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvaudcaparm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvdispco6435306.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6435306.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvEncodeAPI64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvhdagenco6420103.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvhdap64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvIFROpenGL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmctray.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmcumd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmcvadgenco64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenCL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SHCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_8.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\aspnet_counters.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_24.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_25.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_26.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_27.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_28.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_29.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_30.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NLSSRV32.EXE:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvaudcap32v.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvEncodeAPI.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvIFROpenGL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvStreaming.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenCL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SHCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_8.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvhda64v.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvvad64v.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvvadarm.sys:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\cfw_installer_6106_53.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\cfw_installer_6106_53.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\PANDAIS15.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\PANDAIS15.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\SF_CDA_NonNet_Full_Win_WW_140_404-4.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\SF_CDA_NonNet_Full_Win_WW_140_404-4.exe:$CmdZnID

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tóth Csaba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "WinTV Recording Status.lnk"
HKLM\...\StartupApproved\Run: => "VX3000"
HKLM\...\StartupApproved\Run32: => "UpdReg"
HKLM\...\StartupApproved\Run32: => "LifeCam"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 – Képernyőrész kivágása és gyorsindítás.lnk"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{75973058-47C1-4D45-9BA5-60BB981898F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{03576539-FF4A-469C-B82F-ED7E4EC82631}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DF452C1D-EE78-4A00-AB3D-D9568B974690}] => (Allow) C:\Users\Tóth Csaba\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FEECCD93-2C84-4FC7-8823-3EC2640479CD}] => (Allow) C:\Users\Tóth Csaba\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5F74D343-8292-460B-AA1D-B39C892879E6}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{712516FD-42AA-4B39-9013-A1DC0599EB93}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{EAFEBF53-640C-4488-8274-03030AA359A5}] => (Allow) LPort=1900
FirewallRules: [{3B55F205-C140-49F1-A7D7-1AFD49EC62F1}] => (Allow) LPort=2869
FirewallRules: [{CF9C5940-B214-44D0-A536-9A6DE8D31415}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FD382DE6-0688-4C8C-AAAE-D3D917A88A0C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{01BB0A01-2F6C-4B16-B1FD-66F5FEC59D3A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{50F3D7D0-204E-4C81-867F-F08320FA07FA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{D330DF60-1140-4D14-AEB2-8A9114923CC3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{BE425672-6EBA-4969-967B-6B0B017C1599}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{C8756428-BB0C-4EFB-A800-95EA9528199C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B2A1F9E4-0966-4AAC-B526-AA0479B2387D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{B4EE0BB7-1BA6-4997-A137-C818FF2E1AF2}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{C8823A0B-9F8A-4BC1-9424-58E4C87E0AE0}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{FFA1F201-84C5-4F8A-B446-816C4FDDB04E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{3EED7451-AF02-451D-9AE3-87DB26380656}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{BEAFF7BA-DA52-4496-B34D-64737346322D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{2648C074-BAB5-4F71-95C6-DEB5DACF5CAE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{303C86E3-D0A4-450D-85F1-AD52D028F4FE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{A8C2B250-DA94-433F-8886-EFE077D30BD4}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{FC4509D9-945F-4CD5-8641-18AE4105FFC1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{9EBB5CB9-CF5C-45F2-BA9F-B4649F25E2B1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{06AAE6D8-619D-40A1-AA5F-50311173E9BC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{D44B89CD-797D-4652-B754-49673751ABE6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{740F7221-B98B-45AD-82D2-DFD44FB136A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{C5B07EF5-31D4-476B-803C-7A1207274441}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{534510A5-D1F0-44CD-AB92-FAA0D5C08ED8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E8E00128-F143-4EC2-821E-DE7395ECCC22}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{F896F211-C522-4D33-A68C-32A8597EDEF6}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{E83A23FE-B56D-43F7-BA43-6C370E59B2DB}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{C0390835-A8D8-4F33-99CE-DE380F6E441D}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{D89D0DB5-EDB2-4BCD-AAB9-146911C03092}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{64303B54-F661-4473-8229-99EC7FD7AA8A}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{0ADE5CA0-7A4A-4F45-9B0B-213D1FBEC255}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{B7CB675D-8DC5-4430-AC54-D2FCD4552E79}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{25C89B54-19CB-4054-A38E-B5641E400E06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9A3ECF7A-765D-4759-9B80-D196F6836D7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2D5CCC55-E643-4367-B550-DED692669948}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{53A7294F-40C8-4F03-A545-C628E8D26983}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CDA85B46-B6A5-4BD9-A6CD-001D0AE3D7BD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2E40D2B7-1903-40BA-A69F-DFD296024226}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{27467315-B99C-4DC0-92A4-FBA31B4635F8}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{35C07420-BC7C-418E-A0CF-02231F033BE2}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{FB2834C9-05E2-4C74-B7AA-04CAD65024A9}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe

==================== Faulty Device Manager Devices =============

Name: SM buszvezérlő
Description: SM buszvezérlő
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2015 08:11:54 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:04:12 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:23 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:03 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/05/2015 07:55:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: wlmail.exe, verzió: 16.4.3528.331, időbélyeg: 0x533a3fce
A hibát okozó modul neve: MAILCOMM.dll, verzió: 16.4.3528.331, időbélyeg: 0x533a3f78
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000fce1
A hibát okozó folyamat azonosítója: 0x%9
A hibát okozó alkalmazás indításának időpontja: 0xwlmail.exe0
A hibát okozó alkalmazás elérési útja: wlmail.exe1
A hibát okozó modul elérési útja: wlmail.exe2
Jelentés azonosítója: wlmail.exe3
A hibát okozó csomag teljes neve: wlmail.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: wlmail.exe5

Error: (06/04/2015 05:55:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: svchost.exe_AeLookupSvc, verzió: 6.3.9600.17415, időbélyeg: 0x54504177
A hibát okozó modul neve: ntdll.dll, verzió: 6.3.9600.17736, időbélyeg: 0x550f4336
Kivételkód: 0xc0000008
Hiba pozíciója: 0x000000000009310a
A hibát okozó folyamat azonosítója: 0x464
A hibát okozó alkalmazás indításának időpontja: 0xsvchost.exe_AeLookupSvc0
A hibát okozó alkalmazás elérési útja: svchost.exe_AeLookupSvc1
A hibát okozó modul elérési útja: svchost.exe_AeLookupSvc2
Jelentés azonosítója: svchost.exe_AeLookupSvc3
A hibát okozó csomag teljes neve: svchost.exe_AeLookupSvc4
A hibát okozó csomag relatív alkalmazásazonosítója: svchost.exe_AeLookupSvc5

Error: (06/01/2015 08:03:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: Skype.exe, verzió: 7.5.64.101, időbélyeg: 0x555498e3
A hibát okozó modul neve: MFCORE.DLL, verzió: 12.0.9600.17415, időbélyeg: 0x545036e9
Kivételkód: 0xc0000005
Hiba pozíciója: 0x001da525
A hibát okozó folyamat azonosítója: 0xa44
A hibát okozó alkalmazás indításának időpontja: 0xSkype.exe0
A hibát okozó alkalmazás elérési útja: Skype.exe1
A hibát okozó modul elérési útja: Skype.exe2
Jelentés azonosítója: Skype.exe3
A hibát okozó csomag teljes neve: Skype.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: Skype.exe5

Error: (06/01/2015 04:06:27 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 04:03:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (Failed continue stopping. [6]).

Error: (06/01/2015 04:01:51 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (Failed continue stopping. [6]).


System errors:
=============
Error: (06/08/2015 04:34:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: A szolgáltatás (Előtöltés) leállt a következő hibával:
%%1062

Error: (06/08/2015 04:33:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 08:18:36 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 07:35:35 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:58:09 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:56:49 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:52:55 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (06/05/2015 09:30:53 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (06/05/2015 09:30:53 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (06/05/2015 08:33:12 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (‎2015.‎06.‎04. - 21:05:16) váratlan volt.


Microsoft Office:
=========================
Error: (06/08/2015 08:11:54 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:04:12 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:23 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:03 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/05/2015 07:55:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wlmail.exe16.4.3528.331533a3fceMAILCOMM.dll16.4.3528.331533a3f78c00000050000fce1

Error: (06/04/2015 05:55:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_AeLookupSvc6.3.9600.1741554504177ntdll.dll6.3.9600.17736550f4336c0000008000000000009310a46401d09edd7421337fC:\WINDOWS\system32\svchost.exeC:\WINDOWS\SYSTEM32\ntdll.dll1d5a85c2-0ad2-11e5-8283-ac9e174b6f10

Error: (06/01/2015 08:03:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe7.5.64.101555498e3MFCORE.DLL12.0.9600.17415545036e9c0000005001da525a4401d09c953375a10cC:\Program Files (x86)\Skype\Phone\Skype.exeC:\WINDOWS\SYSTEM32\MFCORE.DLL932999ac-0888-11e5-827f-ac9e174b6f10

Error: (06/01/2015 04:06:27 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 04:03:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (06/01/2015 04:01:51 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]


CodeIntegrity Errors:
===================================
Date: 2015-06-08 20:12:49.869
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-08 17:44:57.601
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-08 16:57:25.366
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-07 18:53:49.545
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 20:28:00.391
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 19:50:03.200
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 19:44:05.571
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 15:11:36.234
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 14:11:32.871
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 09:30:57.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Percentage of memory in use: 12%
Total physical RAM: 16326.79 MB
Available physical RAM: 14211.72 MB
Total Pagefile: 18758.79 MB
Available Pagefile: 16292.55 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:222.61 GB) (Free:128.38 GB) NTFS
Drive e: (Otthon) (Fixed) (Total:1863.01 GB) (Free:1839.35 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 42656A66)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of log ============================


hétf. jún. 08, 2015 19:20
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: STELL Segit
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Tóth Csaba at 2015-06-08 20:16:07
Running from C:\Users\Tóth Csaba\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-1462920200-3334296030-1238588724-1005 - Limited - Enabled)
Rendszergazda (S-1-5-21-1462920200-3334296030-1238588724-500 - Administrator - Disabled)
Tóth Csaba (S-1-5-21-1462920200-3334296030-1238588724-1001 - Administrator - Enabled) => C:\Users\Tóth Csaba
Vendég (S-1-5-21-1462920200-3334296030-1238588724-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
Adobe Acrobat Reader DC - Hungarian (HKLM-x32\...\{AC76BA86-7AD7-1038-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
C5300 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
COMODO Firewall (HKLM\...\{73830292-868E-4C82-9AF5-CCFE2047B6A3}) (Version: 8.2.0.4508 - COMODO Security Solutions Inc.)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
D1300 (x32 Version: 140.0.421.000 - Hewlett-Packard) Hidden
D1300_Help (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.00 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version: v7.0.33049 (CD 3.9g) - Hauppauge Computer Works)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart C5300 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{12440487-BEA5-48CF-A36C-C86F5D350999}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel® Chipkészlet-illesztő szoftver (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Mass Effect™ 3 Demo (HKLM-x32\...\{A1683CA7-4850-4A21-982B-C6D853C79AF7}) (Version: 1.0.0.0 - Electronic Arts)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 2010 Otthoni és diákverzió (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 hu) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 hu)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Nitro Pro 9 (HKLM-x32\...\{c5237a45-d0a0-4c12-9269-f59919377de1}) (Version: 9.5.3.8 - Nitro)
Nitro Pro 9 (Version: 9.5.3.8 - Nitro) Hidden
NVIDIA 3D Vision illesztőprogram 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA 3D Vision vezérlő illesztőprogram 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA HD audio-illesztőprogram 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Miracast virtuális hang 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX rendszerszoftver 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Photosmart and Deskjet Drivers 14.0 Rel. A (HKLM\...\{F58E1340-3FD5-40B8-A07C-4893CFC29749}) (Version: 14.0 - HP)
PS_AIO_04_C5300_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SF_CDA_ProductContext (x32 Version: 140.0.421.000 - Hewlett-Packard) Hidden
SF_CDA_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi (HKLM-x32\...\{20288888-A7AF-4B24-8AEB-398D20CD563C}) (Version: 1.0 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1462920200-3334296030-1238588724-1001_Classes\CLSID\{7884BBCC-1BE7-8D23-7B79-774DF1D22825}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)

==================== Restore Points =========================

28-05-2015 08:24:28 Windows Update
31-05-2015 10:38:11 Installed Microsoft Office 2010 Otthoni és diákverzió
07-06-2015 18:52:21 avast! antivirus system restore point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {228ED32A-95F9-4FEF-A063-10781ED167D8} - \{450819F7-E7CF-4032-8670-F117E6E4E52B} No Task File <==== ATTENTION
Task: {4C4908E5-4D0F-4F06-8E3B-9F4A6B286996} - \User_Feed_Synchronization-{2E622904-D9FC-41E2-9330-AC48244964FF} No Task File <==== ATTENTION
Task: {752F7BEE-E41C-4B90-A49E-906248990CB4} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-04-01] (COMODO)
Task: {830BD732-EE7D-4295-A99E-8A17CBCBCFEC} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {83F770D2-A1CB-4A1A-93D0-4DB9862C719F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-04-01] (COMODO)
Task: {9CB9F415-6CE6-464E-80D1-08C5A0AC6648} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {9E5E4D9E-B61B-4645-9FAE-74B23780089C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {BE7AD147-CA3A-402B-A728-0CDCC35102DA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {C0F13216-2A15-4467-9A93-5275575FF090} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-08] (Avast Software s.r.o.)
Task: {D76860DB-1A8B-44CD-BCFE-0F83A3874F2B} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {EA79F8B9-2CBF-498A-AEF0-BE31EBCB685B} - \Bidaily Synchronize Task[pr] No Task File <==== ATTENTION
Task: {F6B38A85-7609-4BD2-83E1-AD66668E25C5} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-04-01] (COMODO)
Task: {FA45871C-F84E-4C25-BBE3-BFDDF0DA4C6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-14] (Microsoft Corporation)
Task: {FE38B06F-70B9-4AF6-884A-2CDD89B5847F} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {FE60BEC7-9A44-4E0E-B328-D11D9FB3EDC3} - \Adobe Acrobat Update Task No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Bidaily Synchronize Task[pr].job => c:\programdata\{ea0a7700-fee8-e3ae-ea0a-a7700feedc03}\screensaver-dragon.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2015-05-24 21:22 - 2013-07-04 03:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2014-08-01 14:23 - 2015-05-25 12:54 - 00418312 _____ () C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
2015-05-24 21:22 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-10 08:57 - 2015-05-10 08:57 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\ErrorReporting.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 02952192 _____ () C:\Program Files\AVAST Software\Avast\defs\15060800\algo.dll
2015-05-24 21:22 - 2015-06-08 17:19 - 00029696 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2015-05-24 21:22 - 2013-07-04 03:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2015-05-09 18:20 - 2011-08-23 10:04 - 00057344 _____ () C:\Program Files (x86)\WinTV\TVServer\libhdhomerun.dll
2015-05-09 18:01 - 2015-05-23 03:48 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-02-28 19:14 - 2014-02-28 19:14 - 00002560 _____ () C:\WINDOWS\SYSTEM32\CTXFIRES.DLL
2013-09-11 22:04 - 2013-09-11 22:04 - 00686408 _____ () c:\program files (x86)\abbyy finereader 12\DL100JP2KLib.dll
2015-06-08 16:37 - 2015-06-08 16:37 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\WINDOWS\system32\aspnet_counters.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_24.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_25.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_26.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_27.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_28.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_29.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_30.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_31.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx9_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvaudcap64v.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvaudcaparm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvdispco6435306.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6435306.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvEncodeAPI64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvhdagenco6420103.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvhdap64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NvIFROpenGL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmctray.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmcumd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvmcvadgenco64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenCL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SHCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_8.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine2_9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xinput1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\aspnet_counters.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_24.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_25.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_26.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_27.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_28.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_29.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_30.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_33.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_34.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_35.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_36.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_37.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_38.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_39.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_40.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_41.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NLSSRV32.EXE:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvaudcap32v.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvEncodeAPI.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NvIFROpenGL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvStreaming.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenCL.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SHCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_8.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_0.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvhda64v.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvvad64v.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nvvadarm.sys:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\cfw_installer_6106_53.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\cfw_installer_6106_53.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\KVRT.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\PANDAIS15.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\PANDAIS15.exe:$CmdZnID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\SF_CDA_NonNet_Full_Win_WW_140_404-4.exe:$CmdTcID
AlternateDataStreams: C:\Users\Tóth Csaba\Downloads\SF_CDA_NonNet_Full_Win_WW_140_404-4.exe:$CmdZnID

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tóth Csaba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "WinTV Recording Status.lnk"
HKLM\...\StartupApproved\Run: => "VX3000"
HKLM\...\StartupApproved\Run32: => "UpdReg"
HKLM\...\StartupApproved\Run32: => "LifeCam"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 – Képernyőrész kivágása és gyorsindítás.lnk"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-1462920200-3334296030-1238588724-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{75973058-47C1-4D45-9BA5-60BB981898F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{03576539-FF4A-469C-B82F-ED7E4EC82631}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DF452C1D-EE78-4A00-AB3D-D9568B974690}] => (Allow) C:\Users\Tóth Csaba\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FEECCD93-2C84-4FC7-8823-3EC2640479CD}] => (Allow) C:\Users\Tóth Csaba\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5F74D343-8292-460B-AA1D-B39C892879E6}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{712516FD-42AA-4B39-9013-A1DC0599EB93}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{EAFEBF53-640C-4488-8274-03030AA359A5}] => (Allow) LPort=1900
FirewallRules: [{3B55F205-C140-49F1-A7D7-1AFD49EC62F1}] => (Allow) LPort=2869
FirewallRules: [{CF9C5940-B214-44D0-A536-9A6DE8D31415}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FD382DE6-0688-4C8C-AAAE-D3D917A88A0C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{01BB0A01-2F6C-4B16-B1FD-66F5FEC59D3A}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{50F3D7D0-204E-4C81-867F-F08320FA07FA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{D330DF60-1140-4D14-AEB2-8A9114923CC3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{BE425672-6EBA-4969-967B-6B0B017C1599}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{C8756428-BB0C-4EFB-A800-95EA9528199C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B2A1F9E4-0966-4AAC-B526-AA0479B2387D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{B4EE0BB7-1BA6-4997-A137-C818FF2E1AF2}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{C8823A0B-9F8A-4BC1-9424-58E4C87E0AE0}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{FFA1F201-84C5-4F8A-B446-816C4FDDB04E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{3EED7451-AF02-451D-9AE3-87DB26380656}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{BEAFF7BA-DA52-4496-B34D-64737346322D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{2648C074-BAB5-4F71-95C6-DEB5DACF5CAE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{303C86E3-D0A4-450D-85F1-AD52D028F4FE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{A8C2B250-DA94-433F-8886-EFE077D30BD4}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{FC4509D9-945F-4CD5-8641-18AE4105FFC1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{9EBB5CB9-CF5C-45F2-BA9F-B4649F25E2B1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{06AAE6D8-619D-40A1-AA5F-50311173E9BC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{D44B89CD-797D-4652-B754-49673751ABE6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{740F7221-B98B-45AD-82D2-DFD44FB136A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{C5B07EF5-31D4-476B-803C-7A1207274441}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{534510A5-D1F0-44CD-AB92-FAA0D5C08ED8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E8E00128-F143-4EC2-821E-DE7395ECCC22}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{F896F211-C522-4D33-A68C-32A8597EDEF6}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{E83A23FE-B56D-43F7-BA43-6C370E59B2DB}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{C0390835-A8D8-4F33-99CE-DE380F6E441D}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{D89D0DB5-EDB2-4BCD-AAB9-146911C03092}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{64303B54-F661-4473-8229-99EC7FD7AA8A}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{0ADE5CA0-7A4A-4F45-9B0B-213D1FBEC255}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{B7CB675D-8DC5-4430-AC54-D2FCD4552E79}] => (Allow) C:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{25C89B54-19CB-4054-A38E-B5641E400E06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9A3ECF7A-765D-4759-9B80-D196F6836D7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2D5CCC55-E643-4367-B550-DED692669948}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{53A7294F-40C8-4F03-A545-C628E8D26983}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CDA85B46-B6A5-4BD9-A6CD-001D0AE3D7BD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2E40D2B7-1903-40BA-A69F-DFD296024226}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{27467315-B99C-4DC0-92A4-FBA31B4635F8}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{35C07420-BC7C-418E-A0CF-02231F033BE2}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{FB2834C9-05E2-4C74-B7AA-04CAD65024A9}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe

==================== Faulty Device Manager Devices =============

Name: SM buszvezérlő
Description: SM buszvezérlő
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2015 08:11:54 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:04:12 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:23 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:03 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/05/2015 07:55:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: wlmail.exe, verzió: 16.4.3528.331, időbélyeg: 0x533a3fce
A hibát okozó modul neve: MAILCOMM.dll, verzió: 16.4.3528.331, időbélyeg: 0x533a3f78
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000fce1
A hibát okozó folyamat azonosítója: 0x%9
A hibát okozó alkalmazás indításának időpontja: 0xwlmail.exe0
A hibát okozó alkalmazás elérési útja: wlmail.exe1
A hibát okozó modul elérési útja: wlmail.exe2
Jelentés azonosítója: wlmail.exe3
A hibát okozó csomag teljes neve: wlmail.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: wlmail.exe5

Error: (06/04/2015 05:55:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: svchost.exe_AeLookupSvc, verzió: 6.3.9600.17415, időbélyeg: 0x54504177
A hibát okozó modul neve: ntdll.dll, verzió: 6.3.9600.17736, időbélyeg: 0x550f4336
Kivételkód: 0xc0000008
Hiba pozíciója: 0x000000000009310a
A hibát okozó folyamat azonosítója: 0x464
A hibát okozó alkalmazás indításának időpontja: 0xsvchost.exe_AeLookupSvc0
A hibát okozó alkalmazás elérési útja: svchost.exe_AeLookupSvc1
A hibát okozó modul elérési útja: svchost.exe_AeLookupSvc2
Jelentés azonosítója: svchost.exe_AeLookupSvc3
A hibát okozó csomag teljes neve: svchost.exe_AeLookupSvc4
A hibát okozó csomag relatív alkalmazásazonosítója: svchost.exe_AeLookupSvc5

Error: (06/01/2015 08:03:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: Skype.exe, verzió: 7.5.64.101, időbélyeg: 0x555498e3
A hibát okozó modul neve: MFCORE.DLL, verzió: 12.0.9600.17415, időbélyeg: 0x545036e9
Kivételkód: 0xc0000005
Hiba pozíciója: 0x001da525
A hibát okozó folyamat azonosítója: 0xa44
A hibát okozó alkalmazás indításának időpontja: 0xSkype.exe0
A hibát okozó alkalmazás elérési útja: Skype.exe1
A hibát okozó modul elérési útja: Skype.exe2
Jelentés azonosítója: Skype.exe3
A hibát okozó csomag teljes neve: Skype.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: Skype.exe5

Error: (06/01/2015 04:06:27 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 04:03:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (Failed continue stopping. [6]).

Error: (06/01/2015 04:01:51 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (Failed continue stopping. [6]).


System errors:
=============
Error: (06/08/2015 04:34:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: A szolgáltatás (Előtöltés) leállt a következő hibával:
%%1062

Error: (06/08/2015 04:33:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 08:18:36 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 07:35:35 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:58:09 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:56:49 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (06/07/2015 06:52:55 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (06/05/2015 09:30:53 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (06/05/2015 09:30:53 PM) (Source: DCOM) (EventID: 10010) (User: TÓTHCSALÁD-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (06/05/2015 08:33:12 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (‎2015.‎06.‎04. - 21:05:16) váratlan volt.


Microsoft Office:
=========================
Error: (06/08/2015 08:11:54 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:04:12 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:23 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/08/2015 05:03:03 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/05/2015 07:55:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wlmail.exe16.4.3528.331533a3fceMAILCOMM.dll16.4.3528.331533a3f78c00000050000fce1

Error: (06/04/2015 05:55:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_AeLookupSvc6.3.9600.1741554504177ntdll.dll6.3.9600.17736550f4336c0000008000000000009310a46401d09edd7421337fC:\WINDOWS\system32\svchost.exeC:\WINDOWS\SYSTEM32\ntdll.dll1d5a85c2-0ad2-11e5-8283-ac9e174b6f10

Error: (06/01/2015 08:03:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe7.5.64.101555498e3MFCORE.DLL12.0.9600.17415545036e9c0000005001da525a4401d09c953375a10cC:\Program Files (x86)\Skype\Phone\Skype.exeC:\WINDOWS\SYSTEM32\MFCORE.DLL932999ac-0888-11e5-827f-ac9e174b6f10

Error: (06/01/2015 04:06:27 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 04:03:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (06/01/2015 04:01:51 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]


CodeIntegrity Errors:
===================================
Date: 2015-06-08 20:12:49.869
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-08 17:44:57.601
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-08 16:57:25.366
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-07 18:53:49.545
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 20:28:00.391
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 19:50:03.200
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 19:44:05.571
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 15:11:36.234
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 14:11:32.871
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-06-05 09:30:57.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Percentage of memory in use: 12%
Total physical RAM: 16326.79 MB
Available physical RAM: 14211.72 MB
Total Pagefile: 18758.79 MB
Available Pagefile: 16292.55 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:222.61 GB) (Free:128.38 GB) NTFS
Drive e: (Otthon) (Fixed) (Total:1863.01 GB) (Free:1839.35 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 42656A66)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of log ============================


hétf. jún. 08, 2015 19:18
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: STELL Segit
Igaza van Laci komának. De ez egy vadi új gép, és még nem csináltam rajta. Win 8.1 64 bites


hétf. jún. 08, 2015 19:14
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Szia.
Menyi bites a rendszer a szerint tolds le az asztalra a FRST programot.
http://www.bleepingcomputer.com/downloa ... scan-tool/
Ha arendszer Vista/windows7/8>.futattni mint rendszer gazda.
Beleegyezes>>megvaro meg frissit, majd klik SCAN.
Maajd ha befejezi add naplokat, klik OK, es a Tartalmajokat>>masol ide.


hétf. jún. 08, 2015 17:38
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: szer. márc. 24, 2004 13:43
Hozzászólások: 11865
Tartózkodási hely: Budapest, Solymár
Hozzászólás Re: STELL Segit
VadGyermek írta:
... Remélem nem kell kidobnom a HDD...

Azt semmiképp sem. :shock:
De hol van a partíciómentés? Régen itt vagy a Fórumon, tudsz erről. :shock:


hétf. jún. 08, 2015 17:34
Profil Privát üzenet küldése
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: STELL Segit
Szia Stell!
Egy kis segítség kellene. A gépem kb. 4 féle vírust bekapot, és az Avast nem tudja kiírtani, csak kiírja hogy blokkolta őket. Ezek a vírusok csak indításkor-újraindításkor jelennek meg. Sem a Panda, sem a Kaspersky nem találja őket kerséskor. Remélem nem kell kidobnom a HDD.
Kérlek segíts!


hétf. jún. 08, 2015 17:00
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Szia.
Igen, ez igen nagy problem, ez letitkositja az adataidat, kepeket. mindent.
1:Semmit se csinalj most ezzem a geppen
2:Nemszabad futtatnod semijen virusirtot,semmit.
3:Ezt csak ugy tudom megcsinalni, ha rakapcsolodok a gepedre az Teamviewerel es remelem hogy vissza tudom hozni az adatokat, de nagy esely nincsen/

Tehat ha akarod akkor tolds le ezt az en, teamvieweremet, ezttet ne masat.
https://download.teamviewer.com/downloa ... dq4nsx.exe

Futtasd mint rendszergazda>>beleegyezes>>megengedes>>aztan a privat uzenetbe ird be az ID-xxxxxxx
Aztan rakapcsolodog a gepedre, es megmondom, ha visza e tudjuk hozni az adatokat.


csüt. máj. 07, 2015 18:36
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. nov. 07, 2008 10:56
Hozzászólások: 103
Hozzászólás Re: STELL Segit
Szia Stell!
Hatalmas gondom van :'( Bekaptam egy elég nagy rondaságot, valami Cryptowall vagy mi a neve. Tudsz segíteni? Az összes személyes fájlomat titkosította, nem férek hozzá. Légyszi segíts!


csüt. máj. 07, 2015 17:59
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Nincsen mit, udv.


kedd jan. 07, 2014 17:52
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
sikerült, köszönöm szépen a segítséget:)


kedd jan. 07, 2014 16:23
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
probald igy>>klik start>>a keresebe ird be update
Aztan klik Windows Update.
A bal oldali ablaktáblán kattintson a Frissítések keresése,>>>Check for updates.
Megtalalja mit mejik drivert kell frissitenie>>
Válassza ki az illesztőprogramot szeretné telepíteni, kattintson az OK gombra, majd kattintson a Frissítések telepítése.


kedd jan. 07, 2014 15:39
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
azt hogy is kell csinálni?:)
kihúztam kikapcsoltam újra indítottam a gép felismerte kiírja hogy üzemkész ezt már eljátszottam háromszor és nem reagál a nyomtatásra


kedd jan. 07, 2014 15:19
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
az nem vrus, telepisd att a nyomtattot.


kedd jan. 07, 2014 15:17
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
közbe új probléma adódott a nyomtató nem akar nyomtatni hiába nyomok rá hogy nyomtatás nem teszi be a nyomtatási feladatokba, ez lehet a vírus miatt?


kedd jan. 07, 2014 14:50
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
En mar nem latok semmi problemat.


kedd jan. 07, 2014 14:50
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: User
->Temp folder emptied: 1325378 bytes
->Temporary Internet Files folder emptied: 118012 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 61609743 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3268 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 60,00 mb


Restore point Set: OTM Restore Point

OTM by OldTimer - Version 3.1.21.0 log created on 01072014_144157

Files moved on Reboot...
C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...


kedd jan. 07, 2014 14:45
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Tolds le az asztalra
http://oldtimer.geekstogo.com/OTM.exe
Jobb klik, futtasd mint rendzergazda<<< a ball ablakjaba a sarga vonal alla masold be ezt a kodot, kod szo nelkull es KLIKELJ az MOVEIT gombra. arestart utan anplojat tedd ide.
Itt lesz valahol, ha nem talalnad meg
C:\_OTM\MovedFiles/xxxxxxx
Kód:
:Processes
explorer.exe
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"Adobe ARM"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=-
:Commands
[purity]
[EmptyTemp]
[clearallrestorepoints]
[start explorer]
[Reboot]


kedd jan. 07, 2014 14:28
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
jobb mint volt de néha még mindig vissza lassul


kedd jan. 07, 2014 14:18
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
dori0227 írta:
a TFC nem adott logot. milyen néven keressem?

Ne keresd...
Na hogy van a szamitogep?/ van e meg problema.??


kedd jan. 07, 2014 14:15
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
a TFC nem adott logot. milyen néven keressem?


kedd jan. 07, 2014 12:25
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Logfile of random's system information tool 1.09 (written by random/random)
Run by User at 2014-01-07 12:22:26
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 17 GB (21%) free of 80 GB
Total RAM: 2046 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:22:32, on 2014.01.07.
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\User\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\User.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\User\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Küldés a OneNote programba - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Kül&dés a OneNote programba - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 22827 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID bejelentkezési segítség - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-01-18 1077584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.XFR1"=xfcodec.dll
"msacm.siren"=sirenacm.dll
"msacm.l3codecp"=l3codecp.acm
"VIDC.FMVC"=fmcodec.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-01-07 12:22:27 ----D---- C:\Program Files (x86)\trend micro
2014-01-07 12:22:26 ----D---- C:\rsit
2014-01-07 12:11:30 ----D---- C:\AdwCleaner
2014-01-06 14:32:33 ----D---- C:\Users\User\AppData\Roaming\Ahead
2014-01-06 14:31:03 ----D---- C:\ProgramData\Nero
2014-01-06 14:31:03 ----D---- C:\Program Files (x86)\Nero
2014-01-06 14:31:03 ----D---- C:\Program Files (x86)\Common Files\Ahead
2013-12-24 19:02:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-20 19:12:03 ----D---- C:\Windows\CheckSur
2013-12-11 21:05:31 ----A---- C:\Windows\SysWOW64\wmploc.DLL
2013-12-11 21:05:30 ----A---- C:\Windows\SysWOW64\wmp.dll
2013-12-11 21:03:13 ----A---- C:\Windows\SysWOW64\vbscript.dll
2013-12-11 21:03:13 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2013-12-11 21:03:11 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2013-12-11 21:03:11 ----A---- C:\Windows\SysWOW64\ieui.dll
2013-12-11 21:03:10 ----A---- C:\Windows\SysWOW64\wininet.dll
2013-12-11 21:03:10 ----A---- C:\Windows\SysWOW64\url.dll
2013-12-11 21:03:09 ----A---- C:\Windows\SysWOW64\urlmon.dll
2013-12-11 21:03:09 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2013-12-11 21:03:08 ----A---- C:\Windows\SysWOW64\jscript9.dll
2013-12-11 21:03:08 ----A---- C:\Windows\SysWOW64\jscript.dll
2013-12-11 21:03:08 ----A---- C:\Windows\SysWOW64\iertutil.dll
2013-12-11 21:03:07 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2013-12-11 21:03:06 ----A---- C:\Windows\SysWOW64\mshtml.dll
2013-12-11 21:03:03 ----A---- C:\Windows\SysWOW64\ieframe.dll
2013-12-11 13:14:10 ----A---- C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-12-11 09:05:02 ----A---- C:\Windows\SysWOW64\msieftp.dll
2013-12-11 09:05:00 ----A---- C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 09:04:59 ----A---- C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 09:04:57 ----A---- C:\Windows\SysWOW64\tzres.dll
2013-12-11 09:04:46 ----A---- C:\Windows\SysWOW64\wscript.exe
2013-12-11 09:04:45 ----A---- C:\Windows\SysWOW64\scrrun.dll
2013-12-11 09:04:45 ----A---- C:\Windows\SysWOW64\cscript.exe

======List of files/folders modified in the last 1 month======

2014-01-07 12:22:32 ----D---- C:\Windows\Prefetch
2014-01-07 12:22:27 ----RD---- C:\Program Files (x86)
2014-01-07 12:22:16 ----D---- C:\Windows\temp
2014-01-07 12:21:07 ----D---- C:\Users\User\AppData\Roaming\uTorrent
2014-01-07 10:40:38 ----D---- C:\Windows\System32
2014-01-07 10:40:37 ----D---- C:\Windows\inf
2014-01-06 21:26:19 ----D---- C:\Windows
2014-01-06 18:06:49 ----SHD---- C:\System Volume Information
2014-01-06 15:27:36 ----D---- C:\Users\User\AppData\Roaming\Media Player Classic
2014-01-06 14:59:14 ----D---- C:\Windows\debug
2014-01-06 14:44:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-06 14:43:42 ----D---- C:\ProgramData\CyberLink
2014-01-06 14:43:41 ----SHD---- C:\Windows\Installer
2014-01-06 14:43:40 ----D---- C:\Config.Msi
2014-01-06 14:32:12 ----D---- C:\Windows\ehome
2014-01-06 14:31:27 ----D---- C:\Windows\SysWOW64
2014-01-06 14:31:03 ----D---- C:\ProgramData
2014-01-06 14:31:03 ----D---- C:\Program Files (x86)\Common Files
2014-01-05 11:15:54 ----D---- C:\Users\User\AppData\Roaming\Skype
2013-12-27 20:27:26 ----D---- C:\ProgramData\Skype
2013-12-27 20:27:21 ----RD---- C:\Program Files (x86)\Skype
2013-12-26 08:27:30 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-24 19:21:06 ----RSD---- C:\Windows\assembly
2013-12-24 19:21:06 ----D---- C:\Windows\Microsoft.NET
2013-12-12 13:02:23 ----D---- C:\Windows\rescache
2013-12-12 11:16:39 ----D---- C:\Windows\winsxs
2013-12-12 11:14:21 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 11:14:20 ----D---- C:\Windows\SysWOW64\hu-HU
2013-12-12 11:14:19 ----D---- C:\Windows\SysWOW64\migration
2013-12-12 11:14:19 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-11 21:05:12 ----D---- C:\ProgramData\Microsoft Help
2013-12-11 14:21:04 ----D---- C:\Program Files (x86)\Google
2013-12-11 13:14:29 ----A---- C:\Windows\SysWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys []
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys []
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys []
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
S3 a3c7flkr;a3c7flkr; C:\Windows\SysWOW64\drivers\a3c7flkr.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys []
S3 E1G60;Intel(R) PRO/1000 NDIS 6 adapter-illesztőprogram; C:\Windows\system32\DRIVERS\E1G6032E.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys []
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys []
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys []
S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\Windows\system32\drivers\Synth3dVsc.sys []
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys []
S3 tsusbhub;Remote Deskotop USB Hub; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB képolvasó-illesztőprogram; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys []
S3 WinUsb;Sony Ericsson USB Device sa0101 Driver; C:\Windows\system32\DRIVERS\WinUsb.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-09-07 100864]
R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2013-07-31 9216]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
S2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-08-03 655624]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-24 119408]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------


kedd jan. 07, 2014 12:23
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
# AdwCleaner v3.016 - Report created 07/01/2014 at 12:13:14
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : User - USER-PC
# Running from : C:\Users\User\Downloads\adwcleaner (3).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\goforfiles
Folder Deleted : C:\Users\User\AppData\Roaming\goforfiles
File Deleted : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\firefox@kozaka.net.xpi
File Deleted : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\bProtector_extensions.rdf
File Deleted : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\searchplugins\mixidj.xml
File Deleted : C:\Windows\System32\Tasks\GoforFilesUpdate

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKCU\Software\GoforFiles
Key Deleted : HKCU\Software\AppDataLow\Software\simplytech
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\GoforFiles
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v26.0 (hu)

[ File : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\prefs.js ]

Line Deleted : user_pref("CT3088559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1475575/HU", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT3088559", "\"1315933121\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"07879643d3acc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.7.0.6", "\"80ee9485875dcc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT3088559", "\"634553316085800000\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... =CT3088559", "\"1318850777\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/idel.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/maxi.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... nimize.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/play.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... y_mini.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/stop.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... uz/vol.gif", "\"802b1fef4e19c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"1d81252562c31be757300e4205a85371\"");
Line Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\User\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\8zne0h2j.default\\conduitCommon\\modules\\3.7.0.6");

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [4663 octets] - [07/01/2014 12:11:50]
AdwCleaner[S0].txt - [4608 octets] - [07/01/2014 12:13:14]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4668 octets] ##########


kedd jan. 07, 2014 12:16
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Szia
1:Az Malwarebytesel, a tallaltakkat eltavolitani, torolni.
2:Futtatni az Adwcleanert, mikkor futtatod, akkor rogton keres, megvarod, es aztan addod SCAN>>mikkor befejezi ,akkor klik CLEAN a naplojat ide tenni.
http://www.viruskasino.com/2012/09/adwcleaner.html
3:Futtatod a TFC Cleanert, Klik start>>a vegen fogja kerni a restartot, tehat restart, a naplojat ide.
http://oldtimer.geekstogo.com/TFC.exe
4:Ide tenni az RSIT naplojat>>klik Continue>>a naplojat log.txt tedd ide.
http://images.malwareremoval.com/random/RSIT.exe


kedd jan. 07, 2014 9:23
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Szia Stell!
Tudnál segíteni? vannak vírus gondjaim sajnos:(

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Adatbázis verzió: v2014.01.06.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
User :: USER-PC [rendszergazda]

2014.01.06. 17:04:11
MBAM-log-2014-01-06 (18-04-03).txt

Vizsgálat típusa: Teljes vizsgálat (C:\|D:\|G:\|)
Engedélyezett vizsgálati beállítások: Memória | Indítópult | Rendszerleíró | Rendszerfájlok | Heurisztikus/Extra | Heurisztikus/Shuriken | PUP | PUM
Letiltott vizsgálati beállítások: P2P
Átvizsgált objektumok: 375416
Eltelt idő: 59 perc, 13 másodperc

Fertőzött memóriafolyamatok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött memória modulok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró kulcsok: 9
HKCR\CLSID\{a45e3fa8-5048-4372-94ad-c6661671f7fc} (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKCR\TypeLib\{7357a44b-d09f-40da-9b0b-639c741a471d} (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKCR\Interface\{C5C68B66-D3BF-4EF2-9AAD-8C15B10039FF} (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A45E3FA8-5048-4372-94AD-C6661671F7FC} (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Nem történt semmi.
HKLM\SYSTEM\CurrentControlSet\Services\Update Kozaka (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKLM\SYSTEM\CurrentControlSet\Services\Util Kozaka (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKCU\SOFTWARE\Kozaka (PUP.Optional.Kozaka.A) -> Nem történt semmi.
HKLM\SOFTWARE\Kozaka (PUP.Optional.Kozaka.A) -> Nem történt semmi.

Fertőzött Rendszerleíró értékek: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró adatelemek: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött mappák: 3
C:\Program Files (x86)\Kozaka (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\plugins (PUP.Optional.Kozaka.A) -> Nem történt semmi.

Fertőzött fájlok: 19
C:\Program Files (x86)\Kozaka\KozakaBHO.dll (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\GoforFiles\uninstall.exe (PUP.Optional.GoForFiles.A) -> Nem történt semmi.
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000000 (PUP.Optional.InstalleRex) -> Nem történt semmi.
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000001 (PUP.Optional.InstalleRex) -> Nem történt semmi.
C:\Users\User\Downloads\Arrow.S02E05.HDTV.XviD-FUM.avi_downloader_hu_98828 (1).exe (PUP.Optional.GoForFiles.A) -> Nem történt semmi.
C:\Users\User\Downloads\Freya Band J�nos legyen dorozsmai mix!!.exe (PUP.Optional.InstalleRex) -> Nem történt semmi.
D:\letöltések\Nero 7 Essentials hun\keygen.exe (RiskWare.Tool.CK) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\Kozaka.ico (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\KozakaUninstall.exe (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\mciekghplkkgcmofonmkmlomhkamochd.crx (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\sqlite3.exe (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\updateKozaka.exe (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\updateKozaka.InstallState (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\sqlite3.dll (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\utilKozaka.exe (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\utilKozaka.InstallState (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\plugins\Kozaka.FFUpdate.dll (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\plugins\Kozaka.GCUpdate.dll (PUP.Optional.Kozaka.A) -> Nem történt semmi.
C:\Program Files (x86)\Kozaka\bin\plugins\Kozaka.IEUpdate.dll (PUP.Optional.Kozaka.A) -> Nem történt semmi.

(befejezés)


hétf. jan. 06, 2014 18:05
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Nincsen mitt koszonod.
Udv.


kedd szept. 03, 2013 17:43
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
megcsináltam mindkettőt. jobb lett szuper minden köszönöm :)


kedd szept. 03, 2013 17:21
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Letolteni az asztalra futtatni:
OTC http://oldtimer.geekstogo.com/OTC.exe
klik CleanUp aztan>> YES

ugyanugy
TFC http://oldtimer.geekstogo.com/TFC.exe
Start a >>> OK
fogja kerni a restartot, megenfgedni.

aztan ird meg mi van...


kedd szept. 03, 2013 17:00
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-09-2013 01
Ran by User at 2013-09-03 17:33:06 Run:1
Running from C:\Users\User\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
C:\Users\User\AppData\Local\Temp\FreemakeVideoDownloader_3.5.3.3.exe
C:\Users\User\AppData\Local\Temp\ispF3F6.tmp\_Setup.dll
2013-08-18 17:40 - 2013-08-18 17:40 - 00001336 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2013-08-18 17:38 - 2013-08-18 17:38 - 01272248 _____ (Ellora Assets Corporation ) C:\Users\User\Downloads\FreemakeVideoDownloaderSetup (1).exe
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\uTorrent.exe [1077584 2013-01-18] (BitTorrent Inc.)
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
CHR HomePage: hxxp://mixidj.delta-search.com/?babsrc= ... 4&tsp=4975
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
Task: {07E5E6E1-C59F-4C77-8B3A-BD68B2079561} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {2D8EDED6-FF6F-49FE-999D-D9244FCD27EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {6052F8E4-1079-4028-9E03-EEF21F8E385B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {62A19BFB-38E4-4E87-9F1D-89394419E24B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {E2B43DDC-7BBC-48F9-A846-467FCC1FC82E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated)
Task: {EB4DC84A-0E72-487E-B0CE-94AB9117CBBF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
CMD: shutdown -t 5 -f
End
*****************

C:\Users\User\AppData\Local\Temp\FreemakeVideoDownloader_3.5.3.3.exe => Moved successfully.
C:\Users\User\AppData\Local\Temp\ispF3F6.tmp\_Setup.dll => Moved successfully.
C:\Users\Public\Desktop\Freemake Video Downloader.lnk => Moved successfully.
C:\Users\User\Downloads\FreemakeVideoDownloaderSetup (1).exe => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoDrives => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoDrives => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\fmconverter@gmail.com => Value deleted successfully.
C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ => Moved successfully.
CHR HomePage: hxxp://mixidj.delta-search.com/?babsrc= ... 4&tsp=4975 ==> The Chrome "Settings" can be used to fix the entry.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj => Key deleted successfully.
C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
catchme => Service deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{07E5E6E1-C59F-4C77-8B3A-BD68B2079561} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{07E5E6E1-C59F-4C77-8B3A-BD68B2079561} => Key deleted successfully.
C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2D8EDED6-FF6F-49FE-999D-D9244FCD27EF} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D8EDED6-FF6F-49FE-999D-D9244FCD27EF} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6052F8E4-1079-4028-9E03-EEF21F8E385B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6052F8E4-1079-4028-9E03-EEF21F8E385B} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{62A19BFB-38E4-4E87-9F1D-89394419E24B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62A19BFB-38E4-4E87-9F1D-89394419E24B} => Key deleted successfully.
C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2B43DDC-7BBC-48F9-A846-467FCC1FC82E} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2B43DDC-7BBC-48F9-A846-467FCC1FC82E} => Key deleted successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EB4DC84A-0E72-487E-B0CE-94AB9117CBBF} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB4DC84A-0E72-487E-B0CE-94AB9117CBBF} => Key deleted successfully.
C:\Windows\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => Key deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown -t 5 -f =========

Haszn�lat: shutdown [/i | /l | /s | /r | /g | /a | /p | /h | /e] [/f]
[/m \\sz�m�t�g�p][/t xxx][/d [p|u:]xx:yy [/c "megjegyz�s"]]

Nincsenek argumentumok A s�g� megjelen�t�se. Ez megegyezik a /?
be�r�s�val.
/? A s�g� megjelen�t�se. Hat�sa megegyezik az argumentumok
n�lk�l megadott parancs be�r�s�val.
/i A grafikus felhaszn�l�i fel�let (GUI) megjelen�t�se.
Ennek kell az els� kapcsol�nak lennie.
/l Kijelentkez�s. Az /m �s /d kapcsol�kkal nem haszn�lhat� egy�tt.
/s A sz�m�t�g�p le�ll�t�sa.
/r A sz�m�t�g�p le�ll�t�sa �s �jraind�t�sa.
/g A sz�m�t�g�p le�ll�t�sa �s �jraind�t�sa. A sz�m�t�g�p
�jraind�t�sa ut�n ind�tson �jra minden regisztr�lt alkalmaz�st.
/a A sz�m�t�g�p le�ll�t�s�nak megszak�t�sa.
Ez csak az id�t�ll�p�si id�szakban haszn�lhat�.
/p A helyi sz�m�t�g�p kikapcsol�sa id�t�ll�p�s �s
figyelmeztet�s n�lk�l.
Ez a /d �s /f kapcsol�kkal haszn�lhat�.
/h A helyi sz�m�t�g�p hibern�l�sa.
Ez az /f kapcsol�val haszn�lhat�.
/e A sz�m�t�g�p v�ratlan le�ll�t�s�t kiv�lt� ok dokument�l�sa.
/m \\sz�m�t�g�p A c�lsz�m�t�g�p megad�sa.
/t xxx A le�ll�t�s el�tti id�t�ll�p�si id�szak be�ll�t�sa xxx
m�sodpercre.
Az �rv�nyes �rt�ktartom�ny 0-315360000 (10 �v), az alap�rtelmezett �rt�k pedig 30.
Ha a v�rakoz�si id� nagyobb mint 0, a rendszer az /f kapcsol�
haszn�lat�t is felt�telezi.
/c "megjegyz�s" Az �jraind�t�s vagy le�ll�t�s ok�nak magyar�zata.
Hossza legfeljebb 512 karakter lehet.
/f A fut� alkalmaz�sok k�nyszer�tett bez�r�sa a felhaszn�l�k el�zetes figyelmeztet�se n�lk�l.
A rendszer az /f kapcsol� haszn�lat�t is felt�telezi, ha 0-n�l nagyobb �rt�k
van megadva a /t param�ternek.
/d [p|u:]xx:yy Az �jraind�t�s vagy le�ll�t�s ok�nak megad�sa.
A p azt jelzi, hogy az �jraind�t�s vagy le�ll�t�s tervezett.
Az u azt jelzi, hogy az ok felhaszn�l� �ltal defini�lt.
Ha sem p, sem u nincs megadva, az �jraind�t�s vagy a le�ll�t�s
nem tervezett.
Az xx az ok f�sz�ma (256-n�l kisebb pozit�v eg�sz sz�m).
Az yy az ok alsz�ma (65536-n�l kisebb pozit�v eg�sz sz�m).

Okok a sz�m�t�g�pen:
(E = v�rt U = v�ratlan P = tervezett, C = felhaszn�l� �ltal defini�lt)
T�pus F�sz�m Alsz�m C�m

U 0 0 Egy�b - nem tervezett
E 0 0 Egy�b - nem tervezett
E P 0 0 Egy�b - tervezett
U 0 5 Egy�b hiba: a rendszer nem v�laszol
E 1 1 Hardver: nem tervezett karbantart�s
E P 1 1 Hardver: tervezett karbantart�s
E 1 2 Hardver: nem tervezett telep�t�s
E P 1 2 Hardver: tervezett telep�t�s
E 2 2 Oper�ci�s rendszer: Helyre�ll�t�s (tervezett)
E P 2 2 Oper�ci�s rendszer: Helyre�ll�t�s (tervezett)
P 2 3 Oper�ci�s rendszer: tervezett friss�t�s
E 2 4 Oper�ci�s rendszer: nem tervezett konfigur�l�s
E P 2 4 Oper�ci�s rendszer: tervezett konfigur�l�s
P 2 16 Oper�ci�s rendszer: szervizcsomag (tervezett)
2 17 Oper�ci�s rendszer: gyorsjav�t�s (nem tervezett)
P 2 17 Oper�ci�s rendszer: gyorsjav�t�s (tervezett)
2 18 Oper�ci�s rendszer: gyorsjav�t�s (nem tervezett)
P 2 18 Oper�ci�s rendszer: biztons�gi jav�t�s (tervezett)
E 4 1 Alkalmaz�s: nem tervezett karbantart�s
E P 4 1 Alkalmaz�s: tervezett karbantart�s
E P 4 2 Alkalmaz�s: tervezett telep�t�s
E 4 5 Alkalmaz�s: nem v�laszol
E 4 6 Alkalmaz�s: nem stabil
U 5 15 Rendszerhiba: le�ll�s
U 5 19 Biztons�gi probl�ma
E 5 19 Biztons�gi probl�ma
E P 5 19 Biztons�gi probl�ma
E 5 20 H�l�zati kapcsolat megsz�n�se (nem tervezett)
U 6 11 Energiaell�t�s hib�ja: t�pk�bel kih�zva
U 6 12 Energiaell�t�s hib�ja: k�rnyezet
P 7 0 �r�k�lt API-le�ll�t�s

========= End of CMD: =========


==== End of Fixlog ====


kedd szept. 03, 2013 16:33
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Script készítés:
Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>fixlist.txt>Fájl típusa>Minden fájl>Mentés.>>>>>
>>>Tedd idde:
Running from C:\Users\User\Downloads
Kód:
Start
C:\Users\User\AppData\Local\Temp\FreemakeVideoDownloader_3.5.3.3.exe
C:\Users\User\AppData\Local\Temp\ispF3F6.tmp\_Setup.dll
2013-08-18 17:40 - 2013-08-18 17:40 - 00001336 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2013-08-18 17:38 - 2013-08-18 17:38 - 01272248 _____ (Ellora Assets Corporation ) C:\Users\User\Downloads\FreemakeVideoDownloaderSetup (1).exe
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\uTorrent.exe [1077584 2013-01-18] (BitTorrent Inc.)
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
CHR HomePage: hxxp://mixidj.delta-search.com/?babsrc= ... 4&tsp=4975
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
Task: {07E5E6E1-C59F-4C77-8B3A-BD68B2079561} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {2D8EDED6-FF6F-49FE-999D-D9244FCD27EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {6052F8E4-1079-4028-9E03-EEF21F8E385B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {62A19BFB-38E4-4E87-9F1D-89394419E24B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {E2B43DDC-7BBC-48F9-A846-467FCC1FC82E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated)
Task: {EB4DC84A-0E72-487E-B0CE-94AB9117CBBF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
CMD: shutdown -t 5 -f
End


Futtasd az Farbar recoveryscantool,,es most KLIKELJ AZ <b>Fix</b> Gombra.
<b>Fixlog.txt</b>Tedd najd ide.


kedd szept. 03, 2013 16:21
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2013 01
Ran by User at 2013-09-03 16:14:54
Running from C:\Users\User\Downloads
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================


Update for Microsoft Office 2007 (KB2508958) (x32)
µTorrent (HKCU Version: 3.3.0.28918)
µTorrent (x32 Version: 3.1.3)
A Microsoft .NET-keretrendszer 4-es verziójához tartozó ügyfélprofil HUN nyelvi csomagja (Version: 4.0.30319)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Reader XI (11.0.03) (x32 Version: 11.0.03)
AMD DnD V1.0.20 (x32 Version: 1.0.20)
Ashampoo Burning Studio 11 v.11.0.4 (x32 Version: 11.0.4)
ATI AVIVO64 Codecs (Version: 10.12.0.00302)
ATI Catalyst Install Manager (Version: 3.0.765.0)
Bing Bar (x32 Version: 7.0.822.0)
Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Catalyst Control Center InstallProxy (x32 Version: 2010.0302.2233.40412)
CCleaner (x32 Version: 2.36)
CyberLink PowerDVD 12 (x32 Version: 12.0.1905c.56)
D3DX10 (x32 Version: 15.4.2368.0902)
Driver San Francisco (x32 Version: 1.1.0.0)
Elcomsoft Wireless Security Auditor (x32 Version: 3.0.3.401)
EPSON nyomtatószoftver (x32)
F1 Race Stars (x32)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Flashtool (x32 Version: 0.9.11.0)
FM Screen Capture Codec (Remove Only) (x32)
Free Studio version 5.3.1 (x32)
Free YouTube to MP3 Converter version 3.11.35.1031 (x32 Version: 3.11.35.1031)
Freemake Video Downloader (x32 Version: 3.5.3)
Google Chrome (x32 Version: 29.0.1547.62)
Google Update Helper (x32 Version: 1.3.21.153)
Grand Theft Auto: San Andreas hun [Honosítás] (x32 Version: 1.04F)
GTA San Andreas (x32 Version: 1.00.00001)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
K-Lite Mega Codec Pack 6.5.0 (x32 Version: 6.5.0)
Macromedia Extension Manager (x32 Version: 1.7.240)
Macromedia Flash 8 Video Encoder (x32 Version: 1.00.0000)
Macromedia Flash Player 8 (x32 Version: 8.0.22.0)
Malwarebytes Anti-Malware 1.75.0.1300 verzió (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger kísérő (x32 Version: 15.4.3502.0922)
Messenger Plus! Live (x32 Version: 4.85.0.386)
Microsoft .NET Framework 4 Client Profile HUN Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service HU-HU Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel 2007 Help-frissítés (KB963678) (x32)
Microsoft Office Excel MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (x32)
Microsoft Office PowerPoint MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (Hungarian) 2007 (x32 Version: 12.0.4518.1029)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (Hungarian) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word 2007 Help-frissítés (KB963665) (x32)
Microsoft Office Word MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (x32 Version: 1.2.123.0)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Client HU-HU Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Mobipocket Reader 6.2 (x32 Version: 6.2.608)
Mozilla Firefox 23.0.1 (x86 hu) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
NVIDIA PhysX (x32 Version: 9.12.1031)
OpenAL (x32)
PhotoScape (x32)
PIF DESIGNER (x32)
Rapture3D 2.5.1 Game (x32)
rosoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Samsung Printer Live Update (x32)
Skype Click to Call (x32 Version: 5.6.8442)
Skype™ 6.3 (x32 Version: 6.3.105)
Sony Mobile Update Service (x32 Version: 2.12.12.41)
Sony PC Companion 2.10.136 (x32 Version: 2.10.136)
Total Commander (Remove or Repair) (x32 Version: 7.55 release candidate 3)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Uninstall 1.0.0.1 (x32)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition (x32)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotótár (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live OneCare safety scanner (x32 Version: 1.0.0.0)
Windows Live OneCare safety scanner (x32)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live Sync (x32 Version: 14.0.8117.416)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinPcap 4.1.2 (x32 Version: 4.1.0.2001)
WinRAR archiváló

==================== Restore Points =========================

25-08-2013 09:52:14 Windows Update
29-08-2013 10:10:15 Windows Update
02-09-2013 08:59:52 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-01-07 20:03 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started
Task: {07E5E6E1-C59F-4C77-8B3A-BD68B2079561} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {2D8EDED6-FF6F-49FE-999D-D9244FCD27EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {6052F8E4-1079-4028-9E03-EEF21F8E385B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {62A19BFB-38E4-4E87-9F1D-89394419E24B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {8D60059B-04FE-4165-B9CB-5145FF6C3655} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {A26D5DC7-E9D0-4DD3-ACB3-F8FE81DCE789} - System32\Tasks\User_Feed_Synchronization-{5959117D-D5CD-4937-8EC9-FA01A7862BD3} => C:\Windows\system32\msfeedssync.exe [2011-09-10] (Microsoft Corporation)
Task: {B6EA4F9F-03B6-4229-94AA-F5FB66409A70} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-06-20] (Microsoft Corporation)
Task: {E2B43DDC-7BBC-48F9-A846-467FCC1FC82E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated)
Task: {EB4DC84A-0E72-487E-B0CE-94AB9117CBBF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-03-03 05:06 - 2010-03-03 05:06 - 00036352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2010-03-03 06:15 - 2010-03-03 06:15 - 00497152 _____ (ATI Technologies Inc. ) C:\Windows\system32\aticfx64.dll
2010-03-03 05:57 - 2010-03-03 05:57 - 03800576 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll
2009-07-14 02:40 - 2009-07-14 03:41 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2009-07-14 02:40 - 2009-07-14 03:41 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2011-01-17 09:40 - 2010-11-20 06:27 - 01050624 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2011-01-17 09:38 - 2010-11-20 06:27 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2009-07-14 02:08 - 2009-07-14 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\NetworkItemFactory.dll
2009-07-14 02:08 - 2009-07-14 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll
2009-07-14 01:35 - 2009-07-14 03:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\FunDisc.dll
2011-01-17 09:38 - 2010-11-20 06:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdproxy.dll
2009-07-14 02:08 - 2009-07-14 03:40 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\fdwcn.dll
2009-07-14 02:08 - 2009-07-14 03:41 - 00120832 _____ (Microsoft Corporation) C:\Windows\System32\wcnapi.dll
2009-07-14 01:35 - 2009-07-14 03:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll
2009-07-14 01:53 - 2009-07-14 03:40 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll
2011-08-31 01:48 - 2011-08-31 01:48 - 01058816 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\ssb7mdu.dll
2011-06-22 03:36 - 2011-06-22 03:36 - 01219584 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\system32\spool\DRIVERS\x64\3\ssb7m.dll
2009-07-14 01:19 - 2009-07-14 03:41 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll
2009-07-14 01:46 - 2009-07-14 03:41 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\tschannel.dll
2009-07-14 01:46 - 2009-07-14 03:41 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll
2013-08-28 20:28 - 2013-08-24 19:48 - 09962960 _____ (The ICU Project) C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\icudt.dll
2011-01-26 19:24 - 2007-04-04 19:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2009-02-26 19:37 - 2009-02-26 19:37 - 00178040 _____ (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
2009-02-26 19:36 - 2009-02-26 19:36 - 01560912 _____ (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
2009-02-26 18:07 - 2009-02-26 18:07 - 00060784 _____ (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll
2013-08-28 20:28 - 2013-08-24 18:07 - 03231688 _____ (Microsoft Corporation) C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\D3DCompiler_46.dll
2013-08-28 20:28 - 2013-08-24 19:49 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libglesv2.dll
2013-08-28 20:28 - 2013-08-24 19:49 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libegl.dll
2013-08-28 20:28 - 2013-08-24 19:49 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll
2013-08-28 20:28 - 2013-08-24 19:49 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll
2013-08-28 20:28 - 2013-08-24 19:48 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ffmpegsumo.dll
2013-08-28 20:28 - 2013-08-24 19:49 - 13594064 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll
2011-01-17 09:38 - 2010-11-20 06:16 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.dll
2009-07-14 02:07 - 2009-07-14 03:15 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mp3dmod.dll
2011-01-17 09:39 - 2010-11-20 05:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdsp.dll
2009-07-14 02:03 - 2009-07-14 03:15 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2009-07-14 02:11 - 2009-07-14 03:41 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\peerdist.dll
2009-07-14 01:50 - 2009-07-14 03:40 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\AUTHZ.dll
2009-02-26 17:45 - 2009-02-26 17:45 - 00043392 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL

==================== Alternate Data Streams (whitelisted) ==========



==================== Faulty Device Manager Devices =============

Name: MpKslbe86c16a
Description: MpKslbe86c16a
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslbe86c16a
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/02/2013 04:32:14 PM) (Source: Google Update) (User: User-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (09/02/2013 01:18:36 PM) (Source: SideBySide) (User: )
Description: Aktiválási környezet létrehozása sikertelen a következőhöz: "1". Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
Érvénytelen XML-szintaxis.

Error: (09/02/2013 01:16:22 PM) (Source: SideBySide) (User: )
Description: Az aktiválási környezet létrehozása "1" esetében nem sikerült. Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
A requestedPrivileges elem többszöri előfordulása nem megengedett a jegyzékben.

Error: (09/01/2013 08:54:34 AM) (Source: SideBySide) (User: )
Description: Aktiválási környezet létrehozása sikertelen a következőhöz: "1". Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
Érvénytelen XML-szintaxis.

Error: (09/01/2013 08:52:15 AM) (Source: SideBySide) (User: )
Description: Az aktiválási környezet létrehozása "1" esetében nem sikerült. Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
A requestedPrivileges elem többszöri előfordulása nem megengedett a jegyzékben.

Error: (08/30/2013 06:30:35 PM) (Source: SideBySide) (User: )
Description: Aktiválási környezet létrehozása sikertelen a következőhöz: "1". Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
Érvénytelen XML-szintaxis.

Error: (08/30/2013 06:28:28 PM) (Source: SideBySide) (User: )
Description: Az aktiválási környezet létrehozása "1" esetében nem sikerült. Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
A requestedPrivileges elem többszöri előfordulása nem megengedett a jegyzékben.

Error: (08/29/2013 01:34:12 PM) (Source: SideBySide) (User: )
Description: Aktiválási környezet létrehozása sikertelen a következőhöz: "1". Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
Érvénytelen XML-szintaxis.

Error: (08/29/2013 01:32:09 PM) (Source: SideBySide) (User: )
Description: Az aktiválási környezet létrehozása "1" esetében nem sikerült. Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
A requestedPrivileges elem többszöri előfordulása nem megengedett a jegyzékben.

Error: (08/28/2013 02:44:57 PM) (Source: SideBySide) (User: )
Description: Aktiválási környezet létrehozása sikertelen a következőhöz: "1". Hiba a(z) "2" jegyzék- vagy házirendfájl 3. sorában.
Érvénytelen XML-szintaxis.


System errors:
=============
Error: (09/03/2013 03:56:20 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (09/02/2013 10:49:04 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (09/01/2013 07:58:04 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/31/2013 09:30:15 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/30/2013 04:53:08 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/29/2013 11:59:48 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/28/2013 02:17:53 PM) (Source: VDS Basic Provider) (User: )
Description: Váratlan hiba. Hibakód: 490@01010004

Error: (08/28/2013 09:39:58 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/27/2013 01:49:42 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (08/26/2013 08:33:05 AM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243


Microsoft Office Sessions:
=========================
Error: (01/09/2012 10:03:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 349 seconds with 120 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2013-01-07 17:13:09.271
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 17:13:09.240
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 17:13:09.209
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 17:13:09.178
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 17:07:52.279
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 17:07:52.247
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 16:17:02.092
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-07 16:17:02.061
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-08-24 22:08:20.431
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-08-24 22:08:20.422
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 75%
Total physical RAM: 2046.18 MB
Available physical RAM: 497.39 MB
Total Pagefile: 4092.36 MB
Available Pagefile: 2183.87 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:78.03 GB) (Free:2.37 GB) NTFS
Drive d: (ADAT) (Fixed) (Total:387.64 GB) (Free:11.44 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D3319402)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=78 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=388 GB) - (Type=07 NTFS)

==================== End Of Log ============================


kedd szept. 03, 2013 15:18
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2013 01
Ran by User (administrator) on USER-PC on 03-09-2013 16:12:20
Running from C:\Users\User\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: 040E
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(BitTorrent Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-06-20] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\uTorrent.exe [1077584 2013-01-18] (BitTorrent Inc.)
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.246.54 213.46.246.53

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\User\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\searchplugins\mixidj.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\sztaki-en-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\vatera.xml
FF Extension: java - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\java@flyordie.com.xpi
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\WTB_GLOBAL.sqlite
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\

Chrome:
=======
CHR HomePage: hxxp://mixidj.delta-search.com/?babsrc= ... 4&tsp=4975
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\User\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [90640 2012-08-16] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [78352 2012-08-16] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [295440 2012-08-16] (CyberLink)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [100864 2012-09-07] (Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-07-31] (Ellora Assets Corp.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-06-20] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-06-20] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [83704 2012-06-20] (Cyberlink Corp.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [83704 2012-06-20] (Cyberlink Corp.)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2011-01-22] ()
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [147704 2012-08-10] (CyberLink Corp.)
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [147704 2012-08-10] (CyberLink Corp.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S1 MpKslbe86c16a; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2BE0C842-4A2A-4572-BCF8-0A2981669FA5}\MpKslbe86c16a.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-03 16:11 - 2013-09-03 16:11 - 01950474 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-09-03 16:01 - 2013-09-03 16:02 - 00019583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.09.03..torrent
2013-09-02 16:44 - 2013-09-02 16:44 - 00017220 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Pimasz.ur.ott.alszik.2013.08.27.DVBrip.XviD.Hun-ufo.torrent
2013-09-02 10:52 - 2013-09-02 10:52 - 00001785 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Sylvia_Day_-_Egymasba_fonodva.torrent
2013-09-01 10:31 - 2013-09-01 10:31 - 00020843 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.26..torrent
2013-08-31 18:41 - 2013-08-31 18:41 - 00012106 _____ C:\Users\User\Downloads\[nCore][xvid_hun]The.Curious.Case.of.Benjamin.Button.2008.HUN.BDRip.XviD-SiD.torrent
2013-08-31 18:20 - 2013-08-31 18:20 - 00015807 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Chloe.2009.BDRiP.XviD.HuN-MWT (1).torrent
2013-08-31 18:18 - 2013-08-31 18:18 - 00023525 _____ C:\Users\User\Downloads\[nCore][xvid_hun]My.Summer.of.Love.2004.DVDRip.XViD.HuN-Warrych (2).torrent
2013-08-30 19:20 - 2013-08-30 19:21 - 27099487 _____ C:\Users\User\Downloads\5_perc_angol.epub
2013-08-30 17:48 - 2013-08-30 17:48 - 00160060 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr.Hock_Ildiko_-_1000_questions_1000_answers_-_New.torrent
2013-08-30 17:40 - 2013-08-30 17:40 - 00016809 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr._Hock_Ildiko_-_Angol_nyelvkonyv_kezdoknek.torrent
2013-08-30 17:36 - 2013-08-30 17:37 - 00017152 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr._Hock_Ildiko_-_Alaptarsalgas_angolul.torrent
2013-08-29 15:36 - 2013-08-29 15:36 - 00144040 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]A_szokes_S01-S04 (1).torrent
2013-08-29 13:39 - 2013-08-29 13:39 - 00020443 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.29..torrent
2013-08-28 21:51 - 2013-08-28 21:51 - 00023525 _____ C:\Users\User\Downloads\[nCore][xvid_hun]My.Summer.of.Love.2004.DVDRip.XViD.HuN-Warrych (1).torrent
2013-08-28 15:25 - 2013-08-28 15:25 - 00017249 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__OfficeSuite_Pro_7__PDF_&_HD__v7.2.1336.torrent
2013-08-28 15:15 - 2013-08-28 15:15 - 00006691 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__PRO_PDF_Reader_v3.9.11.torrent
2013-08-28 13:56 - 2013-08-28 13:56 - 00030357 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Czifra_Eva_-_Egy_honap_alatt_angolul.torrent
2013-08-28 13:30 - 2013-08-28 13:30 - 00068512 _____ C:\Users\User\Downloads\Fast.and.Furious.6.2013.WEBRip.XviD-PTpOWeR.srt
2013-08-28 13:29 - 2013-08-28 13:30 - 00016276 _____ C:\Users\User\Downloads\[nCore][xvid]Fast.and.Furious.6.2013.WEBRip.XviD-PTpOWeR.torrent
2013-08-28 13:20 - 2013-08-28 13:20 - 23942295 _____ C:\Users\User\Downloads\Czifra_va_1_h_nap_alatt_angolul_p.epub
2013-08-28 13:15 - 2013-08-28 13:15 - 00000000 ___HD C:\Users\User\Documents\Freemake_do_not_remove_this_folder635132925452304839
2013-08-28 12:52 - 2013-08-28 12:52 - 00145921 _____ C:\Users\User\Downloads\Now.You.See.Me.extended_nCore_subTeamFinal.srt
2013-08-28 12:43 - 2013-08-28 12:43 - 00011459 _____ C:\Users\User\Downloads\[nCore][xvid]Now.You.See.Me.2013.EXTENDED.RERIP.BDRip.X264-SPARKS.torrent
2013-08-28 12:06 - 2013-08-28 12:06 - 00020263 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.28..torrent
2013-08-28 11:54 - 2013-08-28 11:54 - 00017045 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Hal.a.tortan.2013.08.26.DVBrip.XviD.Hun-ufo.torrent
2013-08-28 11:54 - 2013-08-28 11:54 - 00015044 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Hal.a.tortan.2013.08.27.DVBrip.XviD.Hun-ufo.torrent
2013-08-28 10:10 - 2013-08-28 10:10 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2 (2).torrent
2013-08-28 10:01 - 2013-08-28 10:01 - 00014450 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Szerelmes_lanyok (1).torrent
2013-08-28 10:00 - 2013-08-28 10:00 - 00014714 _____ C:\Users\User\Downloads\[nCore][xvid]Vizi_liliomok (1).torrent
2013-08-27 14:44 - 2013-08-27 14:44 - 00020843 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.27..torrent
2013-08-27 13:52 - 2013-08-27 13:52 - 00016875 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Kasza.2013.08.26.DVBrip.XviD.Hun-ufo.torrent
2013-08-26 12:25 - 2013-08-26 12:25 - 00014531 _____ C:\Users\User\Downloads\[nCore][xvid]Better_Than_Chocolate (1).torrent
2013-08-26 12:21 - 2013-08-26 12:21 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2 (1).torrent
2013-08-26 11:15 - 2013-08-26 11:15 - 00144040 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]A_szokes_S01-S04.torrent
2013-08-23 10:14 - 2013-08-23 10:14 - 00042160 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Szokes.1.Evad.iNT.RETAiL.DVDRip.XviD.Hun-btr9.torrent
2013-08-22 13:09 - 2013-08-22 13:11 - 410457141 _____ C:\Users\User\Downloads\Richard_C.epub
2013-08-22 13:06 - 2013-08-22 13:06 - 00020039 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.22..torrent
2013-08-22 12:36 - 2013-08-22 12:36 - 00279865 _____ C:\Users\User\Downloads\J.epub
2013-08-22 12:35 - 2013-08-22 12:35 - 00488592 _____ C:\Users\User\Downloads\J.mobi
2013-08-22 12:31 - 2013-08-22 12:31 - 00000902 _____ C:\Users\User\Downloads\[nCore][ebook_hun]J._Kenner_-_Forro_rabsag.torrent
2013-08-22 11:17 - 2013-08-22 11:17 - 00009622 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Richard_C._Atkinson_Ernest_Hilgard_-_Pszichologia.torrent
2013-08-21 17:56 - 2013-08-21 17:56 - 00018359 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.21..torrent
2013-08-21 11:58 - 2013-08-21 11:58 - 00014488 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Istvan_a_kiraly_-_Szeged_2013.08.17..torrent
2013-08-21 11:56 - 2013-08-21 11:56 - 00000000 ___HD C:\Users\User\Documents\Freemake_do_not_remove_this_folder635126829903439472
2013-08-21 11:00 - 2013-08-21 11:00 - 17737608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-08-21 10:07 - 2013-08-21 10:07 - 00024761 _____ C:\Users\User\Downloads\[nCore][hd_hun]Istvan_a_kiraly_-_Szeged_2013.08.17._1080i.torrent
2013-08-20 10:52 - 2013-08-20 10:52 - 00002280 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Teen.Wolf.2011.S02E01.HUN.DVDRip.XviD-HSF.torrent
2013-08-19 18:52 - 2013-08-19 18:52 - 00004029 _____ C:\Users\User\Downloads\Vígjátékok, amiket meg kell nézni (1).csv
2013-08-19 18:37 - 2013-08-19 18:37 - 00012021 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Your.Highness.2011.HUN.DVDRiP.XviD-DWP.torrent
2013-08-19 18:35 - 2013-08-19 18:35 - 00012183 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Your.Highness.2011.UNRATED.BDRip.x264.HuN-No1.torrent
2013-08-19 17:21 - 2013-08-19 17:21 - 00018963 _____ C:\Users\User\Downloads\[nCore][xvid_hun]A.Few.Best.Men.2011.BDRip.x264.HuN-ZHR.torrent
2013-08-19 16:58 - 2013-08-23 13:32 - 00001556 _____ C:\Windows\PFRO.log
2013-08-18 20:26 - 2013-08-18 20:33 - 00000000 ____D C:\Users\User\Documents\GTA San Andreas User Files
2013-08-18 20:25 - 2013-08-18 20:25 - 01878714 _____ C:\Users\User\Downloads\sa_hun104f.exe
2013-08-18 20:25 - 2013-08-18 20:25 - 00922155 _____ C:\Windows\Grand Theft Auto_ San Andreas hun Uninstaller.exe
2013-08-18 20:25 - 2013-08-18 20:25 - 00000746 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\SA hun kézikönyv.lnk
2013-08-18 20:24 - 2013-08-18 20:24 - 00065162 _____ C:\Users\User\Downloads\100_szazalekos_mentes.zip
2013-08-18 19:52 - 2013-08-18 19:52 - 00011960 _____ C:\Users\User\Downloads\[nCore][clip]MTV_Hangero__Zenel_a_Back_II_Black.torrent
2013-08-18 17:40 - 2013-08-18 17:40 - 00001336 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2013-08-18 17:38 - 2013-08-18 17:38 - 01272248 _____ (Ellora Assets Corporation ) C:\Users\User\Downloads\FreemakeVideoDownloaderSetup (1).exe
2013-08-18 17:17 - 2013-08-18 17:19 - 328993170 _____ C:\Users\User\Downloads\[HD] R-Go - Agárd, 30 éves Jubileumi koncert (2013-08-03).avi
2013-08-18 14:33 - 2013-08-18 14:33 - 00020869 _____ C:\Users\User\Downloads\[nCore][game_iso]GTA.San.Andreas-HOODLUM.torrent
2013-08-18 14:06 - 2013-08-18 14:06 - 00015221 _____ C:\Users\User\Downloads\[µBit][#245287]Avicii___True__2013_.torrent
2013-08-17 22:45 - 2013-09-03 15:56 - 00001008 _____ C:\Windows\setupact.log
2013-08-17 22:45 - 2013-08-17 22:45 - 00000000 _____ C:\Windows\setuperr.log
2013-08-17 20:26 - 2013-08-17 20:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 20:19 - 2013-08-17 20:19 - 00024164 _____ C:\Users\User\Downloads\Teen.Wolf.S03E12.WEB-DL.XviD-FUM.HUN.srt
2013-08-17 20:19 - 2013-08-17 20:19 - 00014521 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E12.WEB-DL.XviD-FUM.torrent
2013-08-17 10:16 - 2013-08-17 10:16 - 00019213 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.16..torrent
2013-08-17 10:10 - 2013-08-17 10:10 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL (3).exe
2013-08-17 09:59 - 2013-08-17 09:59 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL (2).exe
2013-08-17 09:53 - 2013-08-17 09:53 - 01017778 _____ (Thisisu) C:\Users\User\Downloads\JRT (1).exe
2013-08-17 09:49 - 2013-08-17 09:49 - 00000919 _____ C:\AdwCleaner[S3].txt
2013-08-17 09:46 - 2013-08-17 09:46 - 00014839 _____ C:\Users\User\Downloads\[µBit][#245228]Scary.MoVie.2013.DVDRip.XviD.HuN_MWT.torrent
2013-08-17 09:43 - 2013-08-17 09:44 - 00666633 _____ C:\Users\User\Downloads\adwcleaner (2).exe
2013-08-15 20:03 - 2013-07-25 05:54 - 17830400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-15 20:03 - 2013-07-25 05:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-15 20:03 - 2013-07-25 05:35 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-15 20:03 - 2013-07-25 05:31 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-15 20:03 - 2013-07-25 05:30 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-15 20:03 - 2013-07-25 05:29 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-15 20:03 - 2013-07-25 05:29 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-15 20:03 - 2013-07-25 05:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-15 20:03 - 2013-07-25 05:28 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-15 20:03 - 2013-07-25 05:28 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-15 20:03 - 2013-07-25 05:28 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-15 20:03 - 2013-07-25 05:28 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-15 20:03 - 2013-07-25 05:28 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-15 20:03 - 2013-07-25 05:27 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-15 20:03 - 2013-07-25 05:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-15 20:03 - 2013-07-25 05:26 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-15 20:03 - 2013-07-25 04:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-15 20:03 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-15 20:03 - 2013-07-25 04:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-15 20:03 - 2013-07-25 04:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-15 20:03 - 2013-07-25 04:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-15 20:03 - 2013-07-25 04:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-15 20:03 - 2013-07-25 04:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-15 20:03 - 2013-07-25 04:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-15 20:03 - 2013-07-25 04:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-15 20:03 - 2013-07-25 04:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-15 20:03 - 2013-07-25 04:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-15 20:03 - 2013-07-25 04:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-15 20:03 - 2013-07-25 04:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-15 20:03 - 2013-07-25 04:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-15 20:03 - 2013-07-25 04:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-15 20:03 - 2013-07-25 04:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-15 16:15 - 2013-08-15 16:15 - 00159901 _____ C:\Users\User\Downloads\Lisa_Jane_Smith_V_mp_rnapl_k_1_.epub
2013-08-15 16:06 - 2013-08-15 16:06 - 00000823 _____ C:\Users\User\Downloads\[nCore][ebook_hun]_Lisa_Jane_Smith_-_Vampirnaplok_1._-_Ebredes.torrent
2013-08-15 15:58 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-15 15:58 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-15 15:58 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-15 15:58 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-15 15:58 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-15 15:58 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-15 15:58 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-15 15:58 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-15 15:58 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-15 15:58 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-15 15:58 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-15 15:58 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-15 15:58 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-15 15:58 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-15 15:58 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-15 15:57 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-15 15:57 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-15 15:57 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-15 15:57 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-15 15:57 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-15 15:57 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-15 15:57 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-15 15:57 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-15 15:57 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-15 15:57 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-15 15:56 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-15 15:56 - 2013-06-15 06:35 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-15 15:56 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-15 14:22 - 2013-08-15 14:22 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iOrgSoft
2013-08-15 14:22 - 2013-08-15 14:22 - 00000000 ____D C:\iOrgSoft pdfConverter
2013-08-15 12:16 - 2013-08-15 12:17 - 17926200 _____ C:\Users\User\Downloads\Lisa_Jane_Smith_bred_s_p.epub
2013-08-15 12:07 - 2013-08-15 12:07 - 00012182 _____ C:\Users\User\Downloads\[nCore][ebook_hun]L._J._Smith_-_Vampirnaplok_I._II..torrent
2013-08-15 11:23 - 2013-08-15 11:23 - 00019583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.15..torrent
2013-08-15 09:01 - 2013-08-15 09:01 - 00007269 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E11.HDTV.XviD-AFG.torrent
2013-08-15 08:50 - 2013-08-15 08:50 - 00001202 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Sylvia_Day_-_Egymasba_fonódva.torrent
2013-08-15 08:45 - 2013-08-15 08:45 - 00020583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.13. (1).torrent
2013-08-15 08:45 - 2013-08-15 08:45 - 00018883 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.14..torrent
2013-08-15 06:59 - 2013-08-15 20:07 - 00000000 ____D C:\Windows\system32\MRT
2013-08-13 11:46 - 2013-08-13 11:47 - 00020583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.13..torrent
2013-08-12 17:43 - 2013-08-12 17:43 - 00019863 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.12..torrent
2013-08-12 15:18 - 2013-08-12 15:18 - 03390641 _____ C:\Users\User\Downloads\Street Sesh.dcr
2013-08-11 18:18 - 2013-08-11 18:18 - 00011176 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Ezek.megorultek.S01.E19.TV2-Tvday.torrent
2013-08-11 17:50 - 2013-08-11 17:50 - 00011257 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Ezek.megorultek.S01.E10.TV2-Tvday.torrent
2013-08-11 14:56 - 2013-08-11 14:56 - 00360892 _____ C:\Users\User\Downloads\Christina_Lauren_Gy_ny_r_Rohad_k_olvasOM_pdf.epub
2013-08-11 14:52 - 2013-08-11 14:52 - 00001203 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Christina_Lauren_-_Gyonyoru_rohadek (1).torrent
2013-08-11 14:49 - 2013-08-11 14:49 - 00010142 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Aldiko_Book_Reader_Premium_v2.2.3.torrent
2013-08-11 14:43 - 2013-08-11 14:43 - 00000995 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Christina_Lauren_-_Gyonyoru_rohadek.torrent
2013-08-11 10:35 - 2013-08-11 10:36 - 00019083 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.08..torrent
2013-08-09 13:25 - 2013-08-09 13:25 - 00016433 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.09..torrent
2013-08-07 13:43 - 2013-08-07 13:43 - 00015803 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.07..torrent
2013-08-07 10:45 - 2013-08-07 10:45 - 00029936 _____ C:\Users\User\Downloads\Teen.Wolf.S03E10.720p.HDTV.x264-IMMERSE.srt
2013-08-07 10:43 - 2013-08-07 10:43 - 00013815 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E10.HDTV.XviD-AFG.torrent
2013-08-07 09:31 - 2013-08-07 09:31 - 00000036 _____ C:\Users\User\Downloads\CLASS_FM (3).m3u
2013-08-06 15:31 - 2013-08-06 15:31 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2.torrent
2013-08-06 12:08 - 2013-08-06 12:09 - 00020743 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.06..torrent
2013-08-05 15:45 - 2013-08-05 15:45 - 00017175 _____ C:\Users\User\Downloads\[nCore][xvidser]Lip_Service_S01 (1).torrent
2013-08-05 15:15 - 2013-08-05 15:15 - 00019263 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.05..torrent
2013-08-05 13:12 - 2013-08-05 13:12 - 00025389 _____ C:\Users\User\Downloads\1214271724.rar
2013-08-05 13:00 - 2013-08-05 13:00 - 00013771 _____ C:\Users\User\Downloads\[nCore][xvid]A_Perfect_Ending_2012_DVDRip_Xvid_AC3_UnKnOwN.torrent
2013-08-05 12:44 - 2013-08-05 12:44 - 00017175 _____ C:\Users\User\Downloads\[nCore][xvidser]Lip_Service_S01.torrent

==================== One Month Modified Files and Folders =======

2013-09-03 16:12 - 2013-09-03 16:12 - 00000000 ____D C:\FRST
2013-09-03 16:11 - 2013-09-03 16:11 - 01950474 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2013-09-03 16:08 - 2011-01-22 03:29 - 01106956 _____ C:\Windows\WindowsUpdate.log
2013-09-03 16:05 - 2011-09-06 20:18 - 00003936 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5959117D-D5CD-4937-8EC9-FA01A7862BD3}
2013-09-03 16:04 - 2009-07-14 06:45 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-03 16:04 - 2009-07-14 06:45 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-03 16:02 - 2013-09-03 16:01 - 00019583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.09.03..torrent
2013-09-03 16:00 - 2013-03-13 16:46 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-03 15:57 - 2012-03-09 20:20 - 00000072 _____ C:\Users\Public\LMDebug.log
2013-09-03 15:56 - 2013-08-17 22:45 - 00001008 _____ C:\Windows\setupact.log
2013-09-03 15:56 - 2013-07-30 17:19 - 00001020 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-03 15:56 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-02 16:44 - 2013-09-02 16:44 - 00017220 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Pimasz.ur.ott.alszik.2013.08.27.DVBrip.XviD.Hun-ufo.torrent
2013-09-02 16:32 - 2011-12-31 23:20 - 00001074 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001UA.job
2013-09-02 16:24 - 2013-07-30 17:19 - 00001024 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-02 13:30 - 2011-12-31 23:20 - 00001052 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4236947220-2871655594-1518355159-1001Core.job
2013-09-02 10:52 - 2013-09-02 10:52 - 00001785 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Sylvia_Day_-_Egymasba_fonodva.torrent
2013-09-01 10:31 - 2013-09-01 10:31 - 00020843 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.26..torrent
2013-08-31 18:41 - 2013-08-31 18:41 - 00012106 _____ C:\Users\User\Downloads\[nCore][xvid_hun]The.Curious.Case.of.Benjamin.Button.2008.HUN.BDRip.XviD-SiD.torrent
2013-08-31 18:24 - 2013-06-18 15:46 - 00000000 ____D C:\Users\User\Desktop\dajka tételek
2013-08-31 18:20 - 2013-08-31 18:20 - 00015807 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Chloe.2009.BDRiP.XviD.HuN-MWT (1).torrent
2013-08-31 18:18 - 2013-08-31 18:18 - 00023525 _____ C:\Users\User\Downloads\[nCore][xvid_hun]My.Summer.of.Love.2004.DVDRip.XViD.HuN-Warrych (2).torrent
2013-08-30 19:21 - 2013-08-30 19:20 - 27099487 _____ C:\Users\User\Downloads\5_perc_angol.epub
2013-08-30 17:48 - 2013-08-30 17:48 - 00160060 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr.Hock_Ildiko_-_1000_questions_1000_answers_-_New.torrent
2013-08-30 17:40 - 2013-08-30 17:40 - 00016809 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr._Hock_Ildiko_-_Angol_nyelvkonyv_kezdoknek.torrent
2013-08-30 17:37 - 2013-08-30 17:36 - 00017152 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Nemethne_Dr._Hock_Ildiko_-_Alaptarsalgas_angolul.torrent
2013-08-29 21:08 - 2009-07-14 14:46 - 00640380 _____ C:\Windows\system32\perfh00E.dat
2013-08-29 21:08 - 2009-07-14 14:46 - 00148484 _____ C:\Windows\system32\perfc00E.dat
2013-08-29 21:08 - 2009-07-14 07:13 - 01505856 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-29 15:41 - 2012-12-14 16:47 - 00000000 ____D C:\Users\User\Desktop\Önéletrajzok
2013-08-29 15:36 - 2013-08-29 15:36 - 00144040 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]A_szokes_S01-S04 (1).torrent
2013-08-29 13:39 - 2013-08-29 13:39 - 00020443 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.29..torrent
2013-08-28 21:51 - 2013-08-28 21:51 - 00023525 _____ C:\Users\User\Downloads\[nCore][xvid_hun]My.Summer.of.Love.2004.DVDRip.XViD.HuN-Warrych (1).torrent
2013-08-28 20:28 - 2013-07-30 17:20 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-08-28 15:25 - 2013-08-28 15:25 - 00017249 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__OfficeSuite_Pro_7__PDF_&_HD__v7.2.1336.torrent
2013-08-28 15:15 - 2013-08-28 15:15 - 00006691 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__PRO_PDF_Reader_v3.9.11.torrent
2013-08-28 13:56 - 2013-08-28 13:56 - 00030357 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Czifra_Eva_-_Egy_honap_alatt_angolul.torrent
2013-08-28 13:30 - 2013-08-28 13:30 - 00068512 _____ C:\Users\User\Downloads\Fast.and.Furious.6.2013.WEBRip.XviD-PTpOWeR.srt
2013-08-28 13:30 - 2013-08-28 13:29 - 00016276 _____ C:\Users\User\Downloads\[nCore][xvid]Fast.and.Furious.6.2013.WEBRip.XviD-PTpOWeR.torrent
2013-08-28 13:20 - 2013-08-28 13:20 - 23942295 _____ C:\Users\User\Downloads\Czifra_va_1_h_nap_alatt_angolul_p.epub
2013-08-28 13:15 - 2013-08-28 13:15 - 00000000 ___HD C:\Users\User\Documents\Freemake_do_not_remove_this_folder635132925452304839
2013-08-28 12:52 - 2013-08-28 12:52 - 00145921 _____ C:\Users\User\Downloads\Now.You.See.Me.extended_nCore_subTeamFinal.srt
2013-08-28 12:43 - 2013-08-28 12:43 - 00011459 _____ C:\Users\User\Downloads\[nCore][xvid]Now.You.See.Me.2013.EXTENDED.RERIP.BDRip.X264-SPARKS.torrent
2013-08-28 12:06 - 2013-08-28 12:06 - 00020263 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.28..torrent
2013-08-28 11:54 - 2013-08-28 11:54 - 00017045 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Hal.a.tortan.2013.08.26.DVBrip.XviD.Hun-ufo.torrent
2013-08-28 11:54 - 2013-08-28 11:54 - 00015044 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Hal.a.tortan.2013.08.27.DVBrip.XviD.Hun-ufo.torrent
2013-08-28 10:10 - 2013-08-28 10:10 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2 (2).torrent
2013-08-28 10:01 - 2013-08-28 10:01 - 00014450 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Szerelmes_lanyok (1).torrent
2013-08-28 10:00 - 2013-08-28 10:00 - 00014714 _____ C:\Users\User\Downloads\[nCore][xvid]Vizi_liliomok (1).torrent
2013-08-27 14:44 - 2013-08-27 14:44 - 00020843 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.27..torrent
2013-08-27 13:52 - 2013-08-27 13:52 - 00016875 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Kasza.2013.08.26.DVBrip.XviD.Hun-ufo.torrent
2013-08-26 12:25 - 2013-08-26 12:25 - 00014531 _____ C:\Users\User\Downloads\[nCore][xvid]Better_Than_Chocolate (1).torrent
2013-08-26 12:21 - 2013-08-26 12:21 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2 (1).torrent
2013-08-26 11:15 - 2013-08-26 11:15 - 00144040 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]A_szokes_S01-S04.torrent
2013-08-23 13:32 - 2013-08-19 16:58 - 00001556 _____ C:\Windows\PFRO.log
2013-08-23 10:14 - 2013-08-23 10:14 - 00042160 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Szokes.1.Evad.iNT.RETAiL.DVDRip.XviD.Hun-btr9.torrent
2013-08-22 18:30 - 2011-11-03 14:51 - 00000000 ____D C:\Users\User\AppData\Local\Windows Live
2013-08-22 13:11 - 2013-08-22 13:09 - 410457141 _____ C:\Users\User\Downloads\Richard_C.epub
2013-08-22 13:06 - 2013-08-22 13:06 - 00020039 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.22..torrent
2013-08-22 12:36 - 2013-08-22 12:36 - 00279865 _____ C:\Users\User\Downloads\J.epub
2013-08-22 12:35 - 2013-08-22 12:35 - 00488592 _____ C:\Users\User\Downloads\J.mobi
2013-08-22 12:35 - 2013-01-27 17:56 - 00000000 ____D C:\Users\User\Documents\My eBooks
2013-08-22 12:31 - 2013-08-22 12:31 - 00000902 _____ C:\Users\User\Downloads\[nCore][ebook_hun]J._Kenner_-_Forro_rabsag.torrent
2013-08-22 11:17 - 2013-08-22 11:17 - 00009622 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Richard_C._Atkinson_Ernest_Hilgard_-_Pszichologia.torrent
2013-08-21 17:56 - 2013-08-21 17:56 - 00018359 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.21..torrent
2013-08-21 11:58 - 2013-08-21 11:58 - 00014488 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Istvan_a_kiraly_-_Szeged_2013.08.17..torrent
2013-08-21 11:56 - 2013-08-21 11:56 - 00000000 ___HD C:\Users\User\Documents\Freemake_do_not_remove_this_folder635126829903439472
2013-08-21 11:00 - 2013-08-21 11:00 - 17737608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-08-21 11:00 - 2013-03-13 16:46 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-21 11:00 - 2013-03-13 16:46 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-21 11:00 - 2011-10-01 11:37 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-21 10:07 - 2013-08-21 10:07 - 00024761 _____ C:\Users\User\Downloads\[nCore][hd_hun]Istvan_a_kiraly_-_Szeged_2013.08.17._1080i.torrent
2013-08-20 10:52 - 2013-08-20 10:52 - 00002280 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Teen.Wolf.2011.S02E01.HUN.DVDRip.XviD-HSF.torrent
2013-08-19 18:52 - 2013-08-19 18:52 - 00004029 _____ C:\Users\User\Downloads\Vígjátékok, amiket meg kell nézni (1).csv
2013-08-19 18:37 - 2013-08-19 18:37 - 00012021 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Your.Highness.2011.HUN.DVDRiP.XviD-DWP.torrent
2013-08-19 18:35 - 2013-08-19 18:35 - 00012183 _____ C:\Users\User\Downloads\[nCore][xvid_hun]Your.Highness.2011.UNRATED.BDRip.x264.HuN-No1.torrent
2013-08-19 17:21 - 2013-08-19 17:21 - 00018963 _____ C:\Users\User\Downloads\[nCore][xvid_hun]A.Few.Best.Men.2011.BDRip.x264.HuN-ZHR.torrent
2013-08-18 20:33 - 2013-08-18 20:26 - 00000000 ____D C:\Users\User\Documents\GTA San Andreas User Files
2013-08-18 20:25 - 2013-08-18 20:25 - 01878714 _____ C:\Users\User\Downloads\sa_hun104f.exe
2013-08-18 20:25 - 2013-08-18 20:25 - 00922155 _____ C:\Windows\Grand Theft Auto_ San Andreas hun Uninstaller.exe
2013-08-18 20:25 - 2013-08-18 20:25 - 00000746 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\SA hun kézikönyv.lnk
2013-08-18 20:24 - 2013-08-18 20:24 - 00065162 _____ C:\Users\User\Downloads\100_szazalekos_mentes.zip
2013-08-18 19:52 - 2013-08-18 19:52 - 00011960 _____ C:\Users\User\Downloads\[nCore][clip]MTV_Hangero__Zenel_a_Back_II_Black.torrent
2013-08-18 17:42 - 2012-12-30 22:10 - 00000000 ____D C:\Users\User\Documents\Freemake
2013-08-18 17:41 - 2012-10-13 19:08 - 00000000 ____D C:\ProgramData\Freemake
2013-08-18 17:40 - 2013-08-18 17:40 - 00001336 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2013-08-18 17:40 - 2012-12-30 22:09 - 00000000 ____D C:\Program Files (x86)\Freemake
2013-08-18 17:38 - 2013-08-18 17:38 - 01272248 _____ (Ellora Assets Corporation ) C:\Users\User\Downloads\FreemakeVideoDownloaderSetup (1).exe
2013-08-18 17:22 - 2011-01-26 17:47 - 00058368 ____H C:\Users\User\Desktop\photothumb.db
2013-08-18 17:19 - 2013-08-18 17:17 - 328993170 _____ C:\Users\User\Downloads\[HD] R-Go - Agárd, 30 éves Jubileumi koncert (2013-08-03).avi
2013-08-18 15:02 - 2011-01-23 17:20 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-08-18 14:33 - 2013-08-18 14:33 - 00020869 _____ C:\Users\User\Downloads\[nCore][game_iso]GTA.San.Andreas-HOODLUM.torrent
2013-08-18 14:06 - 2013-08-18 14:06 - 00015221 _____ C:\Users\User\Downloads\[µBit][#245287]Avicii___True__2013_.torrent
2013-08-17 22:45 - 2013-08-17 22:45 - 00000000 _____ C:\Windows\setuperr.log
2013-08-17 22:45 - 2012-04-28 09:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 20:26 - 2013-08-17 20:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 20:19 - 2013-08-17 20:19 - 00024164 _____ C:\Users\User\Downloads\Teen.Wolf.S03E12.WEB-DL.XviD-FUM.HUN.srt
2013-08-17 20:19 - 2013-08-17 20:19 - 00014521 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E12.WEB-DL.XviD-FUM.torrent
2013-08-17 20:08 - 2011-01-29 22:38 - 00000000 ____D C:\Users\User\AppData\Roaming\Media Player Classic
2013-08-17 10:16 - 2013-08-17 10:16 - 00019213 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.16..torrent
2013-08-17 10:10 - 2013-08-17 10:10 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL (3).exe
2013-08-17 09:59 - 2013-08-17 09:59 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL (2).exe
2013-08-17 09:53 - 2013-08-17 09:53 - 01017778 _____ (Thisisu) C:\Users\User\Downloads\JRT (1).exe
2013-08-17 09:49 - 2013-08-17 09:49 - 00000919 _____ C:\AdwCleaner[S3].txt
2013-08-17 09:49 - 2011-01-22 03:59 - 00001912 _____ C:\Windows\epplauncher.mif
2013-08-17 09:46 - 2013-08-17 09:46 - 00014839 _____ C:\Users\User\Downloads\[µBit][#245228]Scary.MoVie.2013.DVDRip.XviD.HuN_MWT.torrent
2013-08-17 09:46 - 2013-01-06 22:27 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-08-17 09:45 - 2013-01-06 22:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-08-17 09:44 - 2013-08-17 09:43 - 00666633 _____ C:\Users\User\Downloads\adwcleaner (2).exe
2013-08-16 20:00 - 2013-01-10 12:30 - 00000000 ____D C:\Windows\rescache
2013-08-15 20:12 - 2011-01-22 10:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-15 20:07 - 2013-08-15 06:59 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 20:05 - 2011-03-09 15:23 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-15 16:15 - 2013-08-15 16:15 - 00159901 _____ C:\Users\User\Downloads\Lisa_Jane_Smith_V_mp_rnapl_k_1_.epub
2013-08-15 16:06 - 2013-08-15 16:06 - 00000823 _____ C:\Users\User\Downloads\[nCore][ebook_hun]_Lisa_Jane_Smith_-_Vampirnaplok_1._-_Ebredes.torrent
2013-08-15 15:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-08-15 15:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-08-15 15:45 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-15 14:22 - 2013-08-15 14:22 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iOrgSoft
2013-08-15 14:22 - 2013-08-15 14:22 - 00000000 ____D C:\iOrgSoft pdfConverter
2013-08-15 12:17 - 2013-08-15 12:16 - 17926200 _____ C:\Users\User\Downloads\Lisa_Jane_Smith_bred_s_p.epub
2013-08-15 12:07 - 2013-08-15 12:07 - 00012182 _____ C:\Users\User\Downloads\[nCore][ebook_hun]L._J._Smith_-_Vampirnaplok_I._II..torrent
2013-08-15 11:23 - 2013-08-15 11:23 - 00019583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.15..torrent
2013-08-15 09:01 - 2013-08-15 09:01 - 00007269 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E11.HDTV.XviD-AFG.torrent
2013-08-15 08:50 - 2013-08-15 08:50 - 00001202 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Sylvia_Day_-_Egymasba_fonódva.torrent
2013-08-15 08:45 - 2013-08-15 08:45 - 00020583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.13. (1).torrent
2013-08-15 08:45 - 2013-08-15 08:45 - 00018883 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.14..torrent
2013-08-13 11:54 - 2011-10-20 19:13 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
2013-08-13 11:47 - 2013-08-13 11:46 - 00020583 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.13..torrent
2013-08-12 17:43 - 2013-08-12 17:43 - 00019863 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.12..torrent
2013-08-12 15:18 - 2013-08-12 15:18 - 03390641 _____ C:\Users\User\Downloads\Street Sesh.dcr
2013-08-11 18:18 - 2013-08-11 18:18 - 00011176 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Ezek.megorultek.S01.E19.TV2-Tvday.torrent
2013-08-11 17:50 - 2013-08-11 17:50 - 00011257 _____ C:\Users\User\Downloads\[nCore][xvidser_hun]Ezek.megorultek.S01.E10.TV2-Tvday.torrent
2013-08-11 14:56 - 2013-08-11 14:56 - 00360892 _____ C:\Users\User\Downloads\Christina_Lauren_Gy_ny_r_Rohad_k_olvasOM_pdf.epub
2013-08-11 14:52 - 2013-08-11 14:52 - 00001203 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Christina_Lauren_-_Gyonyoru_rohadek (1).torrent
2013-08-11 14:49 - 2013-08-11 14:49 - 00010142 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Aldiko_Book_Reader_Premium_v2.2.3.torrent
2013-08-11 14:43 - 2013-08-11 14:43 - 00000995 _____ C:\Users\User\Downloads\[nCore][ebook_hun]Christina_Lauren_-_Gyonyoru_rohadek.torrent
2013-08-11 10:36 - 2013-08-11 10:35 - 00019083 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.08..torrent
2013-08-09 13:25 - 2013-08-09 13:25 - 00016433 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.09..torrent
2013-08-07 13:43 - 2013-08-07 13:43 - 00015803 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.07..torrent
2013-08-07 10:45 - 2013-08-07 10:45 - 00029936 _____ C:\Users\User\Downloads\Teen.Wolf.S03E10.720p.HDTV.x264-IMMERSE.srt
2013-08-07 10:43 - 2013-08-07 10:43 - 00013815 _____ C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E10.HDTV.XviD-AFG.torrent
2013-08-07 09:31 - 2013-08-07 09:31 - 00000036 _____ C:\Users\User\Downloads\CLASS_FM (3).m3u
2013-08-06 15:31 - 2013-08-06 15:31 - 00004159 _____ C:\Users\User\Downloads\[nCore][mobil]_Android__Fast_Pro_for_Facebook_v1.9.9.2.torrent
2013-08-06 12:09 - 2013-08-06 12:08 - 00020743 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.06..torrent
2013-08-05 15:45 - 2013-08-05 15:45 - 00017175 _____ C:\Users\User\Downloads\[nCore][xvidser]Lip_Service_S01 (1).torrent
2013-08-05 15:15 - 2013-08-05 15:15 - 00019263 _____ C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2013.08.05..torrent
2013-08-05 13:12 - 2013-08-05 13:12 - 00025389 _____ C:\Users\User\Downloads\1214271724.rar
2013-08-05 13:00 - 2013-08-05 13:00 - 00013771 _____ C:\Users\User\Downloads\[nCore][xvid]A_Perfect_Ending_2012_DVDRip_Xvid_AC3_UnKnOwN.torrent
2013-08-05 12:44 - 2013-08-05 12:44 - 00017175 _____ C:\Users\User\Downloads\[nCore][xvidser]Lip_Service_S01.torrent

Files to move or delete:
====================
C:\Users\User\AppData\Local\Temp\FreemakeVideoDownloader_3.5.3.3.exe
C:\Users\User\AppData\Local\Temp\ispF3F6.tmp\_Setup.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-01 08:52

==================== End Of Log ============================


kedd szept. 03, 2013 15:17
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Töltsed le a 32 vagy 64 bites.
Farbar Recovery ellenőrzési eszköz.
http://www.bleepingcomputer.com/downloa ... scan-tool/
Jobb klikk és Futtatás rendszergazdaként.
2: bepipazni mindent
3. Kattintsa SCAN-a vard meg a naplókat.
4. FRST.txt és Addition.txt,tartalomat.. naplók beszúrni,ide


kedd szept. 03, 2013 10:31
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Szia Stell.
Ha lesz időd nézzük meg a gépet. Próbáltam egyedül megoldani sikerült is szerintem nagyjából, de elég lassú.


hétf. szept. 02, 2013 10:10
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Ujidsd meh az IExplorert es a FireFoxot is, itt van ba blogomban az utasitas.
http://www.viruskasino.com/2013/04/obno ... dacov.html


szomb. aug. 17, 2013 11:48
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
hát sajnos még mindig a delta jelenik meg keresőként..


szomb. aug. 17, 2013 9:06
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
All processes killed
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
< %windir%\*.tmp ipconfig /flushdns /c >
C:\Users\User\Downloads\cmd.bat deleted successfully.
C:\Users\User\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: User
->Temp folder emptied: 54731167 bytes
->Temporary Internet Files folder emptied: 5497198 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 357092388 bytes
->Google Chrome cache emptied: 263202643 bytes
->Flash cache emptied: 14495 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 84248029 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50517 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 729,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 08172013_100024

Files\Folders moved on Reboot...
C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


szomb. aug. 17, 2013 9:05
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.7 (08.17.2013:1)
OS: Windows 7 Ultimate x64
Ran by User on 2013.08.17. at 9:53:55,54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] "C:\Users\User\appdata\local\google\chrome\user data\default\bprotector web data"



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\searchplugins\babylon.xml
Successfully deleted the following from C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\prefs.js

user_pref("CT3088559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlP
user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1475575/HU", "\"0\"");
user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT3088559", "\"1315933121\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"07879643d3acc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.7.0.6", "\"80ee9485875dcc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT3088559", "\"634553316085800000\"");
user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-service ... =CT3088559", "\"1318850777\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/idel.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/maxi.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... nimize.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/play.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... y_mini.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... z/stop.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/R ... uz/vol.gif", "\"802b1fef4e19c81:0\"");
user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"1d81252562c31be757300e4205a85371\"");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\User\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\8zne0h2j.default\\conduitCommon\\modules\\3.7.0.6");
Emptied folder: C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\8zne0h2j.default\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2013.08.17. at 9:58:39,03
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


szomb. aug. 17, 2013 8:59
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
# AdwCleaner v2.306 - Logfile created 08/17/2013 at 09:49:26
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : User - USER-PC
# Boot Mode : Normal
# Running from : C:\Users\User\Downloads\adwcleaner (2).exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BrowserDefender

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v23.0 (hu)

-\\ Google Chrome v28.0.1500.95

*************************

AdwCleaner[S1].txt - [748 octets] - [20/03/2013 12:51:40]
AdwCleaner[S2].txt - [2877 octets] - [31/07/2013 09:32:41]
AdwCleaner[S3].txt - [792 octets] - [17/08/2013 09:49:26]

########## EOF - C:\AdwCleaner[S3].txt - [851 octets] ##########


szomb. aug. 17, 2013 8:52
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: szer. márc. 24, 2004 13:43
Hozzászólások: 11865
Tartózkodási hely: Budapest, Solymár
Hozzászólás Re: STELL Segit
dori0227 írta:
a rendszer visszaállításra gondolsz? az megoldja a problémát? ...

Nem. Ha fertőzött lett a gép, ez a Win opció szinte biztos, hogy semmit sem ér.

Több féle partíció mentő program van, és ezen belül is eltérő működésekkel ("hideg" vagy "meleg").
Amit én használok, az a Norton Ghost ("hideg" verzió). Régi program, USB pendrájvról, CD-ről (régen floppyról) kell indítani. A Win nem működik, így pontosan azt lehet elmenteni, mint ami az utolsó kikapcsolás után a partíción maradt (ez általában a C:).

A leírás itt van: http://forum.terminal.hu/viewtopic.php?p=903743#p903743


pén. aug. 16, 2013 17:09
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Udv
Most nincsen sok idom, ezert probald meg igy eltavolitani, ahogy leirtam a blogomban.
Fordits le a magyar nyelvre, aztan majd ird meg ha sikerult -e, a programok naplokat-logokat,, ide rakhatod a forumba.
http://www.viruskasino.com/2013/07/delta-search.html


pén. aug. 16, 2013 7:34
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Stell majd ha leszel írj légyszíves. nem sikerült egyedül megoldani


csüt. aug. 15, 2013 15:14
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
a rendszer visszaállításra gondolsz? az megoldja a problémát? nem vagyok egy guru azért nem tudok mindent


csüt. aug. 15, 2013 14:34
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: szer. márc. 24, 2004 13:43
Hozzászólások: 11865
Tartózkodási hely: Budapest, Solymár
Hozzászólás Re: STELL Segit
dori0227 írta:
... Újra bekaptam ezt a delta keresőt ...

Nem kellene elmenteni a még jó partíciót? Mert úgy látom elég bátran használod a gépet.
Akkor öt perc alatt vissza lehetne mindent állítani. Sokat írtunk már erről.


csüt. aug. 15, 2013 14:17
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
Szia.
Újra bekaptam ezt a delta keresőt egy program telepítése során. Kellene újra a segítség.


csüt. aug. 15, 2013 13:47
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Ok, TOROLVE, akkor probald ki a geppet es ird ha van e problem, ha nincsen akkor ez minden.


szer. júl. 31, 2013 11:05
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
========== FILES ==========
C:\Users\User\AppData\Local\aebf4bc0\U folder moved successfully.
C:\Users\User\AppData\Local\aebf4bc0 folder moved successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 07312013_120032


szer. júl. 31, 2013 11:00
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
futtasd az OTL programot, es masold az ablakjaba ezt a kodot:
Kód:
:files
C:\Users\User\AppData\Local\aebf4bc0


es klik megint az RUNFIX gombra a naplojat tedd ide.


szer. júl. 31, 2013 10:59
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
file:C:\Users\User\AppData\Local\aebf4bc0\@
itt jelzi a trójait még mindig


szer. júl. 31, 2013 10:54
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
ok, meg van e valami problem??


szer. júl. 31, 2013 10:50
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
All processes killed
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
< ipconfig /flushdns /c >
Windows IP konfigur ci˘
A DNS-felold si gyorsˇt˘t r kirˇt‚se sikeresen megt”rt‚nt.
C:\Users\User\Downloads\cmd.bat deleted successfully.
C:\Users\User\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: User
->Temp folder emptied: 169361433 bytes
->Temporary Internet Files folder emptied: 36957066 bytes
->Java cache emptied: 3575737 bytes
->FireFox cache emptied: 22602478 bytes
->Google Chrome cache emptied: 275244854 bytes
->Flash cache emptied: 1125990 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 158600108 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50517 bytes
RecycleBin emptied: 2498607240 bytes

Total Files Cleaned = 3 019,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 07312013_111934

Files\Folders moved on Reboot...
C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


szer. júl. 31, 2013 10:24
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 774 hozzászólás ]  Oldal Előző  1, 2, 3, 4, 5 ... 16  Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 11 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség