Megválaszolatlan hozzászólások | Aktív témák Pontos idő: csüt. márc. 28, 2024 15:45



Hozzászólás a témához  [ 30 hozzászólás ] 
Nagytakarítás.... 
Szerző Üzenet
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:D Ok, ha minden renben, akkor nincsen mit koszonod.
Udv.


szer. okt. 01, 2014 14:09
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Elnézést! Nem szamárságnak szántam, csupán érdeklődtem, bocsánat!
Nagyon sokat számít a segítsége, nagyon szépen köszönöm! A gép szerintem jó.
üdv.:
Franciska


szer. okt. 01, 2014 12:01
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Idézet:
A Delfix uninstall, mint a feladatkezelőben, csak "pontosabb"?
:arrow: OTC restart után eltünteti saját magát is?! :)

1:Figyel scak ide franciska, nekem nincsen idom szamarsagal foglakoznom.
A delfix, nem uninstall, nemis irtam hogy az, a Delfix kitoroli a gyogyito programikkat, ez nekm uninstall.
2:Az OTC-ha eltuntetti akkor eltuntetti, ha nem akkor kezzel torold az ikonjat.
3:Teredo Tunneling Pseudo-Interface>>ez a rendszernek nemfontos, de kiprobalhatod>.jobb klik ra es Letelepites>eltavolitas>>restart>ha arendszer tallal
illeszto programot akkor viszarakja es mar nem lesz sarga kerdojel, ha nem tallal akkor a sarga kerdojel, visza jon.
Ha minden ok, ez minden
udv


szer. okt. 01, 2014 11:26
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Kész :)
:arrow: A Delfix uninstall, mint a feladatkezelőben, csak "pontosabb"?
:arrow: OTC restart után eltünteti saját magát is?! :)

Este még nézelődtem a gépen, és az eszközkezelőben a hálózati kártyáknál van egy felkiáltójel.
Teredo Tunneling Pseudo-Interface (illesztőprogram frissítése nem járt sikerrel)
Az eszköz nem indítható el. (Kód: 10)
Illesztőprogramfájl adatai: C:/Windows/system32/DRIVERS/tunnel.sys
Illesztőprogram kulcsa: {4d36e972-e325-11ce-bfc1-08002be10318}\0018
Eszközosztály GUID azonosítója: {4d36e972-e325-11ce-bfc1-08002be10318}
Gyártó: Microsoft
(nem tudom elég e ennyi infó...)


szer. okt. 01, 2014 10:43
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:arrow: A mappakat hagy ott aholl vannak.

:arrow: JRT FRST, zoek<<<Torold kezzel>>
:arrow: Tolds le az Delfix
http://general-changelog-team.fr/fr/dow ... e/9-delfix
Futtasd mint rendszergazda.
Pipazd be>> (Remove desinfection tools) – (Purge System Restore)>>.Klik RUN..

:arrow: Tolds leaz asztalra es csomagold ki>>>
http://www.geekuninstaller.com/geek.zip
Futtasd mint rendszergazda>>a menuben>.talald meg ezt a programot>>
>>.[b]HDDlife Pro 4.0
>>>a tetejen klik a kartyara AKCia>>Valszd ki a letelepitest,>.Uninstall aztan mikkor befejezi klik OK.
:arrow: Telepitsd le az Malwarebytes programot is.
:arrow: Tolds le az asztalra>>
http://oldtimer.geekstogo.com/OTC.exe
Futtasd>>Klik CLEANUP>>YES>>A gep restartol.
:arrow: Telepits fell az Ingyenes Avastot,meg a Dropbox nelkull, <<ha kinalja, akkor kivenni a pipat.


szer. okt. 01, 2014 5:54
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Tudom túl sok a kérdésem, ne haragudj. De még mindig akad két dolog, amit megszeretnék kérdezni. Ígérem több nem lesz :roll:
:arrow: Egyet tudtam csak eltávolítani helyes, de ezeket nem. Hogy kell? JRT FRST, zoek
:arrow: Ő mi? Lásd a képen. Nem tudom mi ez a program, meg kell vennie, kell valamihez - alapprogramokhoz? Ha leszedhetem, akkor hol találom meg? (vezérlőpultnál a programok eltávolításánál nem látom...)
Kép


kedd szept. 30, 2014 21:31
Profil Privát üzenet küldése
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Azért elküldöm:

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Scan Date: 2014.09.30.
Scan Time: 20:55:11
Logfile: histori_log.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.30.07
Rootkit Database: v2014.09.19.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: kataibalu

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 335654
Time Elapsed: 48 min, 58 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 32
PUP.Optional.Babylon.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Quarantined, [3154c9263744ba7c06f23e5369993fc1],
PUP.Optional.FreeGames.A, HKU\S-1-5-21-1843051283-1028267240-2500299250-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{F4BD3468-8241-488D-B013-953D090FADCE}, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.ScriptHostObject, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.ScriptHostObject.1, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.ScriptHostObject, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.ScriptHostObject.1, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.FreeGames.A, HKU\S-1-5-21-1843051283-1028267240-2500299250-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{F4BD3468-8241-488D-B013-953D090FADCE}, Quarantined, [bcc908e7700b73c33ea9b0e411f118e8],
PUP.Optional.BestToolbar, HKLM\SOFTWARE\CLASSES\TYPELIB\{E1B14679-BD01-4491-BF53-4C873B2E5CEB}, Quarantined, [10752dc20972cf6708ed34fa4fb18b75],
PUP.Optional.BestToolbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E1B14679-BD01-4491-BF53-4C873B2E5CEB}, Quarantined, [10752dc20972cf6708ed34fa4fb18b75],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{DE68883A-7617-491D-8877-5F4DFB57817B}, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{BC64C060-B683-4F11-B90F-4A1E6ED3F50A}, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{BC64C060-B683-4F11-B90F-4A1E6ED3F50A}, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\CLASSES\Free Games 115.Tool.1, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\CLASSES\Free Games 115.Tool, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.Tool, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.Tool.1, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, HKLM\SOFTWARE\CLASSES\CLSID\{DE68883A-7617-491D-8877-5F4DFB57817B}, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.BackgroundHostObject, Quarantined, [582dab4488f345f1967994af23e07888],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.BackgroundHostObject.1, Quarantined, [7e070ae58fecb383a56a3c072dd640c0],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.Navbar, Quarantined, [25604ea1116a53e3a16ede656d968a76],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\Free Games 115.Navbar.1, Quarantined, [7d08d31c0b70d95d907fea59020123dd],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.BackgroundHostObject, Quarantined, [63224aa563187fb7789749fa798a50b0],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.BackgroundHostObject.1, Quarantined, [612447a87b004beb957a48fb38cb31cf],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.Navbar, Quarantined, [97ee519ed7a477bfd83745fe61a2bc44],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Free Games 115.Navbar.1, Quarantined, [5f26f7f87308ca6cca459fa4ec1749b7],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{01B7D6D4-C14B-47C6-BCAF-2C718F32617A}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{01B7D6D4-C14B-47C6-BCAF-2C718F32617A}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{9CB176D5-D210-4D36-980A-520E95ECA3DA}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B6595F76-D28B-4B8E-9B4C-60E0DDAD4F5C}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B6595F76-D28B-4B8E-9B4C-60E0DDAD4F5C}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\CLASSES\CLSID\{9CB176D5-D210-4D36-980A-520E95ECA3DA}, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Free Games 115, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 5
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\mz, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome\content, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],

Files: 53
PUP.Optional.BestToolbar, C:\Program Files (x86)\Free Games 115\BackgroundHost.exe, Quarantined, [10752dc20972cf6708ed34fa4fb18b75],
PUP.Optional.BestToolbar, C:\Program Files (x86)\Free Games 115\BackgroundHost64.exe, Quarantined, [9fe6b8376615c175f3024ee024dc21df],
PUP.Optional.BestToolBars.A, C:\Program Files (x86)\Free Games 115\ScriptHost.dll, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.BestToolBars.A, C:\Program Files (x86)\Free Games 115\ScriptHost64.dll, Quarantined, [a6df1dd2e59622146e7a206a768b7f81],
PUP.Optional.Spigot.A, C:\Users\kataibalu\Downloads\YTDSetup.exe, Quarantined, [7b0a648bf6858bab249465c155ab7987],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-N6bQNHEFn.exe, Quarantined, [f095dc135823c670423c665431d0ec14],
PUP.Optional.OpenCandy, C:\Users\kataibalu\Downloads\DTLite4451-0236.exe, Quarantined, [463f7e71d2a9f145a0b2f44455b02ad6],
PUP.Optional.iVIDI.A, C:\Users\kataibalu\Downloads\Grand_Theft_Auto_San_Andreas.exe, Quarantined, [d6afcc23413a54e20b803a2d5ba6be42],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-N7x6wJdN8.exe, Quarantined, [98edf0ffe49770c69fdf3b7fdf22da26],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-Ncv3pQmdx.exe, Quarantined, [ff868d62067566d0c1bd19a1ac55ec14],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-NdgaIUk9W.exe, Quarantined, [265f707f2b503afcd6a81f9b50b16898],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-NdmAGQApQ.exe, Quarantined, [394c7f706813ce6886f8a515a0618878],
PUP.BitcoinMiner, C:\Users\kataibalu\Downloads\Minecraft (1).rar, Quarantined, [1c69856a09725fd7a867c646f30eed13],
PUP.BitcoinMiner, C:\Users\kataibalu\Downloads\Minecraft.rar, Quarantined, [a1e4b03f136864d2da350dffb74a48b8],
PUP.Optional.OpenCandy, C:\Users\kataibalu\Downloads\KiesSetup-fdu.exe, Quarantined, [3e4714db2a513ef8cc86e355a75e2ed2],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-N2W5n75VV.exe, Quarantined, [265f7e719eddd85eb4ca2b8fc63be41c],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-N39107adl.exe, Quarantined, [93f249a695e689ad91ed56645ea31be5],
PUP.Optional.Somoto.A, C:\Users\kataibalu\Downloads\FLVPlayer_downloader-N5pz1WdC8.exe, Quarantined, [790c965928533bfbb4cac4f6ef12c838],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon128.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\AddonsFramework.Typelib.dll, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\AddonsFramework.Typelib64.dll, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\background.html, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\bg.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\ButtonSite.dll, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\ButtonSite64.dll, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\config.xml, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\content.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon128.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon16.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon16.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon18.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon18.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon24.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon24.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon32.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon32.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon48.ico, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\icon48.png, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\jquery-1.9.1.min.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\json2.min.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\options.htm, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\uninst.exe, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\uninstall.exe, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\updater.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\updaterWrapper.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\mz\background.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.FreeGames.A, C:\Program Files (x86)\Free Games 115\mz\content.js, Quarantined, [8ef7e00fc8b377bf0ecbf7e937cb4ab6],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome.manifest, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\icon.png, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\install.rdf, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome\content\keyword.js, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome\content\main.js, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],
PUP.Optional.Spigot.A, C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}\chrome\content\main.xul, Quarantined, [ef96707f5f1c72c4793cf315b25159a7],

Physical Sectors: 0
(No malicious items detected)


(end)

----

Ezekkel a mappákkal mi legyen? Leszedhetem?
Kép
Az elsőbe is csak egy install.res.1031 dll fájl van, a többi üres.


kedd szept. 30, 2014 21:06
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Ma mar vegzek, ha meg valami problema lesz,ird le ide, majd holnap benezek
Udv


kedd szept. 30, 2014 19:38
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:arrow: Csinalj egy uj Fixlist.txt
Mar csinaltad ma, >.ted az asztalra>.futtasd az FRST programot >>klik FIX
Kód:
Start
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKU\S-1-5-18\...\RunOnce: [panda4_0dn] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_XP] => reg.exe delete "HKCU\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_DATA_FOLDER] => cmd.exe /c rmdir "C:\ProgramData\Panda Security URL Filtering" /s /q
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_INSTALL_FOLDER] => cmd.exe /c rmdir "C:\Windows\system32\config\systemprofile\AppData\Local\panda4_0dn" /s /q
HKU\S-1-5-18\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
BHO: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost64.dll (BestOffers)
BHO-x32: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost.dll (BestOffers)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll No File
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
2014-09-30 14:20 - 2013-08-16 10:32 - 00000000 ____D () C:\ProgramData\Panda Security URL Filtering
2014-09-30 13:59 - 2013-08-16 10:33 - 00000000 ____D () C:\Users\kataibalu\AppData\Roaming\Panda Security
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
End


Naplojat mar nem muszaj idde tenned.

:arrow: Letoltod az Malwarebytes 2.2 programot,
http://www.bleepingcomputer.com/downloa ... ware/dl/7/
Feltelepited mint Rendszergazda>>minden bealitasad hagyad ugy>>majd hagyad hogy frissitsen>>Aztan klik a tetejen>>a Settings kartyara>>baloldalt>.klik Detection and Protection>>pipazd be >>Scan for Rootkits>>>Es utana >>klik az kartyara SCAN>>es hagyd ugy ahogy van,..Vard ki a Scan veget, eleg gyorsan meglesz,mert igen jo a Motorja ennek a programnak,

Mikkor befejezi,,akkor Klik a Gombra Qarantine All>>es Aplly Action, majd keri a restartot, restart, es ez lesz minden,, ha minden jo megy majd.


kedd szept. 30, 2014 19:03
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-09-2014
Ran by kataibalu (administrator) on PCKATAI on 30-09-2014 19:25:35
Running from C:\Users\kataibalu\Desktop
Loaded Profile: kataibalu (Available profiles: kataibalu)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: magyar (Magyarország)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-05] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-25] (Advanced Micro Devices, Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\SysWOW64\userinit.exe,
HKU\S-1-5-18\...\RunOnce: [panda4_0dn] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_XP] => reg.exe delete "HKCU\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_DATA_FOLDER] => cmd.exe /c rmdir "C:\ProgramData\Panda Security URL Filtering" /s /q
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_INSTALL_FOLDER] => cmd.exe /c rmdir "C:\Windows\system32\config\systemprofile\AppData\Local\panda4_0dn" /s /q
HKU\S-1-5-18\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
Startup: C:\Users\kataibalu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
ShortcutTarget: HDDlife.lnk -> C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe (BinarySense, Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost64.dll (BestOffers)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID bejelentkezési segítség -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost.dll (BestOffers)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 212.24.187.210 212.24.160.1

FireFox:
========
FF ProfilePath: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\kataibalu\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Users\kataibalu\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\kataibalu\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\yahoo_ff.xml
FF Extension: Browser Backgrounds - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{3e0c7f3a-3f50-4730-beb5-4a9a10e2831c} [2013-07-31]
FF Extension: Address Bar Search - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2013-08-31]
FF Extension: DivX Web Player - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\DivXWebPlayer@divx.com.xpi [2012-06-20]
FF Extension: Collusion - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2012-03-05]
FF Extension: TinEye Reverse Image Search - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\tineye@ideeinc.com.xpi [2012-01-02]
FF Extension: YouTube to MP3 - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\youtube2mp3@mondayx.de.xpi [2012-01-02]
FF Extension: FlashGot - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2012-01-02]
FF Extension: Stylish - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2012-12-09]
FF Extension: Smartest Bookmarks Bar - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{b442f4c0-c292-4998-aabe-48608a73ba75}.xpi [2012-12-09]
FF Extension: No Name - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\f87f900b-ebb4-498d-a3ac-077cfae44103@52f83dfc-3a94-49d3-b0ff-c4470a645eb5.com [Not Found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======
CHR Profile: C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-30]
CHR Extension: (Google Docs) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-30]
CHR Extension: (Google Drive) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-30]
CHR Extension: (YouTube) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-30]
CHR Extension: (Google Search) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-30]
CHR Extension: (Google Sheets) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-30]
CHR Extension: (Google Wallet) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-30]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-01-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [872552 2011-08-02] (Acer Incorporated)
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [36456 2011-05-30] (Acer Incorporated)
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [845640 2012-02-28] (BinarySense, Inc.)
R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2012-03-17] (DT Soft Ltd)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [68608 2005-08-10] (Protection Technology) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2005-05-16] (Protection Technology) [File not signed]
S4 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [89600 2005-11-03] (Protection Technology) [File not signed]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-30 18:47 - 2014-09-30 18:47 - 00111168 _____ () C:\Users\kataibalu\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-30 18:46 - 2014-09-30 18:46 - 00416008 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-30 18:46 - 2014-09-30 18:46 - 00000570 _____ () C:\Windows\PFRO.log
2014-09-30 18:46 - 2014-09-30 18:46 - 00000056 _____ () C:\Windows\setupact.log
2014-09-30 18:46 - 2014-09-30 18:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-30 18:31 - 2014-09-30 17:48 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-30 17:49 - 2014-09-30 18:47 - 00013520 _____ () C:\zoek-results.log
2014-09-30 17:46 - 2014-09-30 17:46 - 01290752 _____ () C:\Users\kataibalu\Desktop\zoek.exe
2014-09-30 17:44 - 2014-09-30 18:19 - 00000000 ____D () C:\zoek_backup
2014-09-30 17:01 - 2014-09-30 17:01 - 00000000 ____D () C:\_KÉPEK
2014-09-30 17:01 - 2014-09-30 17:01 - 00000000 ____D () C:\_IRATOK_DOCUMENTUM
2014-09-30 16:50 - 2014-09-30 17:28 - 00000000 ____D () C:\Users\kataibalu\Desktop\Törölhtő
2014-09-30 15:50 - 2014-09-30 15:50 - 00092973 _____ () C:\Users\kataibalu\Desktop\JRT.txt
2014-09-30 15:40 - 2014-09-30 15:40 - 00000000 ____D () C:\Windows\ERUNT
2014-09-30 15:31 - 2014-09-30 15:32 - 01699276 _____ (Thisisu) C:\Users\kataibalu\Desktop\JRT.exe
2014-09-30 15:18 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-30 15:14 - 2014-09-30 15:22 - 00000000 ____D () C:\AdwCleaner
2014-09-30 15:10 - 2014-09-30 15:10 - 01373475 _____ () C:\Users\kataibalu\Desktop\adwcleaner_3.310.exe
2014-09-30 13:17 - 2014-09-30 13:23 - 00000000 ____D () C:\_KATAIBALAZS_LAPTOPJA
2014-09-30 13:00 - 2014-09-30 13:03 - 00050870 _____ () C:\Users\kataibalu\Desktop\Addition.txt
2014-09-30 12:56 - 2014-09-30 19:25 - 00018330 _____ () C:\Users\kataibalu\Desktop\FRST.txt
2014-09-30 12:55 - 2014-09-30 19:25 - 00000000 ____D () C:\FRST
2014-09-30 12:18 - 2014-09-30 12:21 - 02108928 ____N (Farbar) C:\Users\kataibalu\Desktop\FRST64.exe
2014-09-30 07:21 - 2014-09-30 10:23 - 00000000 ____D () C:\ff5208769fa194c59513c804ec57046e
2014-09-30 07:18 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-30 07:18 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-30 07:18 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-30 07:18 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-30 07:18 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-30 07:18 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-30 07:18 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-30 07:18 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-30 07:18 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-30 07:18 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-30 07:18 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-30 07:18 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-30 07:18 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-30 07:18 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-30 07:18 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-30 07:18 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-30 07:18 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-30 07:18 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-30 07:18 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-30 07:18 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-30 07:18 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-30 07:18 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-30 07:18 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-30 07:18 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-30 07:18 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-30 07:18 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-30 07:18 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-30 07:18 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-30 07:18 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-30 07:18 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-30 07:18 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-30 07:18 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-30 07:18 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-30 07:18 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-30 07:18 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-30 07:18 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-30 07:18 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-30 07:18 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-30 07:18 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-30 07:18 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-30 07:18 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-30 07:18 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-30 07:18 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-30 07:18 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-30 07:18 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-30 07:18 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-30 07:18 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-30 07:17 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-30 07:17 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-30 07:17 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-30 07:08 - 2014-09-30 07:16 - 00000000 ____D () C:\f765e40a59dad230d8c298838fd47e7f
2014-09-30 06:41 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-30 06:41 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-29 19:44 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-29 19:44 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-29 19:44 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-29 19:44 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-29 19:44 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-29 19:37 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-29 19:37 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-29 18:50 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-29 18:50 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-29 18:50 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-29 18:50 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-29 18:50 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-30 18:59 - 2009-07-14 06:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-30 18:59 - 2009-07-14 06:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-30 18:57 - 2012-06-19 11:44 - 01769279 _____ () C:\Windows\WindowsUpdate.log
2014-09-30 18:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-09-30 18:46 - 2013-02-18 12:20 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-09-30 18:46 - 2011-11-22 20:48 - 00000000 ____D () C:\ProgramData\Temp
2014-09-30 18:46 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-30 18:19 - 2011-12-15 22:44 - 00000000 ____D () C:\Users\kataibalu
2014-09-30 17:33 - 2012-11-16 17:25 - 00000000 ____D () C:\Users\kataibalu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AngryBirdsStarWars 1.00
2014-09-30 17:33 - 2011-10-12 11:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support
2014-09-30 17:33 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2014-09-30 17:25 - 2011-11-22 20:50 - 00660188 _____ () C:\Windows\system32\perfh00E.dat
2014-09-30 17:25 - 2011-11-22 20:50 - 00170250 _____ () C:\Windows\system32\perfc00E.dat
2014-09-30 17:21 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-30 16:41 - 2009-07-14 07:13 - 01661568 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-30 14:20 - 2013-08-16 10:32 - 00000000 ____D () C:\ProgramData\Panda Security URL Filtering
2014-09-30 13:59 - 2013-08-16 10:33 - 00000000 ____D () C:\Users\kataibalu\AppData\Roaming\Panda Security
2014-09-30 13:23 - 2013-02-24 12:36 - 00000000 ____D () C:\Users\kataibalu\AppData\Local\GHISLER
2014-09-30 12:04 - 2013-03-18 19:45 - 00000000 ____D () C:\Users\kataibalu\AppData\Roaming\Media Player Classic
2014-09-30 12:02 - 2012-02-13 23:09 - 00000000 ____D () C:\Users\kataibalu\AppData\Local\CrashDumps
2014-09-30 10:27 - 2014-05-07 08:29 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-30 10:24 - 2012-05-14 09:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-30 07:14 - 2012-01-13 00:46 - 01633118 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-30 07:08 - 2013-08-04 11:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-30 06:43 - 2011-12-29 05:38 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-15 09:06 - 2010-11-21 05:27 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 00:36

==================== End Of Log ============================


kedd szept. 30, 2014 18:29
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Csinalj egy uj naplot az FRST programmal, de moost eleg nekem, az FRST.txt naploja.


kedd szept. 30, 2014 18:07
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Sokkal-sokkal jobb! Fogalmam sincs milyen volt, de összehasoníthatatlan ahhoz, amikor hozták. Klassz!
Ez a Crome mondjuk időnként lefagy, de talán ha újból leszedem, akkor jobb lesz. Én nem használom a sajátomén csak a firefixot.
Egy idegesítő dolog érdekelne még:
időnként előugrik az office frissítő ablak, hogy frissítem e..
Találtam egy ilyen meghajtót (Q) Microsoft Office adatfolyamatos telepítés (védett)
Ez mi a szösznek kell? Nem lehet leállítani?


kedd szept. 30, 2014 17:55
Profil Privát üzenet küldése
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Zoek.exe v5.0.0.0 Updated 27-09-2014
Tool run by kataibalu on 2014.09.30. at 17:48:42,43.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\kataibalu\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2014.09.30. 17:50:22 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_USERS\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\prefs.js:
user_pref("keyword.URL", "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=");
user_pref("browser.search.useDBForOrder", "false");

Added to C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default

user.js not found
---- Lines mybrowserbar modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}\":{\"descriptor\":\"C:\\\\
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", "1");
---- Lines extensions.506747055ce91 removed from prefs.js ----
user_pref("extensions.506747055ce91.epoch", "1377621951");
user_pref("extensions.506747055ce91.url", "http://getjpijs.info/sync/?ext=stuner&pid=201&country=HU&regd=120929190749&lsd=130826164553&ver=3&ind=0&ssd
---- FireFox user.js and prefs.js backups ----

prefs__1818_.backup

==== Deleting Files \ Folders ======================

C:\Users\kataibalu\.android deleted
C:\Users\kataibalu\AppData\Roaming\.launchersettings.ini deleted
C:\Users\kataibalu\AppData\Roaming\hu-minecraft.ini deleted
C:\Users\kataibalu\AppData\Roaming\launcher_settings.ini deleted
C:\Users\kataibalu\AppData\Roaming\freegames115 deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\kataibalu\AppData\Local\avgchrome deleted
C:\Users\kataibalu\AppData\Local\cache deleted
C:\Users\kataibalu\Downloads\rcpsetup1_dcnew_300_new.exe deleted
C:\Users\kataibalu\Downloads\SoftonicDownloader_for_euro-truck-simulator.exe deleted
C:\Users\kataibalu\Downloads\SoftonicDownloader_for_medal-of-honor-pacific-assault.exe deleted
C:\Users\kataibalu\Downloads\SoftonicDownloader_for_mkv-player.exe deleted
C:\Users\kataibalu\Downloads\SoftonicDownloader_for_songr.exe deleted
C:\Windows\SysNative\config\systemprofile\AppData\LocalLow\pandasecuritytb deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\pandasecuritytb deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\wininit.ini deleted
C:\Windows\SysNative\rlls64.dll deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Windows\Syswow64\rlls.dll deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\jetpack deleted
C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\freegames115@BestOffers deleted
C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\{F0B1CEAC-7C0D-407c-B25E-623D7CBECCCB} deleted
"C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\ytd@mybrowserbar.com" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\KATAIB~1\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default
- Browser Backgrounds - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\{3e0c7f3a-3f50-4730-beb5-4a9a10e2831c}
- Undetermined - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\extensions\f87f900b-ebb4-498d-a3ac-077cfae44103@52f83dfc-3a94-49d3-b0ff-c4470a645eb5.com
- Browser Backgrounds - %ProfilePath%\extensions\{3e0c7f3a-3f50-4730-beb5-4a9a10e2831c}
- Address Bar Search - %ProfilePath%\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}
- DivX Web Player - %ProfilePath%\extensions\DivXWebPlayer@divx.com.xpi
- Collusion - %ProfilePath%\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
- TinEye Reverse Image Search - %ProfilePath%\extensions\tineye@ideeinc.com.xpi
- YouTube to MP3 - %ProfilePath%\extensions\youtube2mp3@mondayx.de.xpi
- FlashGot - %ProfilePath%\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
- Stylish - %ProfilePath%\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi
- Smartest Bookmarks Bar - %ProfilePath%\extensions\{b442f4c0-c292-4998-aabe-48608a73ba75}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default
5CB01CF141E021DAAE96991A5BA57944 - C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
DD31F0C436E4F5E6FA9783FF8A80ADC1 - C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
FF0D6F82A0EC13952E83B9439100E45D - C:\Users\kataibalu\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
abckmpjbfjfoabjhefcbpdckdfikghpp - C:\Users\kataibalu\AppData\Roaming\freegames115\freegames115.crx[]
dhoigiahaahldpgnbbimfecackdgccna - C:\Users\kataibalu\AppData\Local\CRE\dhoigiahaahldpgnbbimfecackdgccna.crx[]
hloebfkfdbhcjffbmbigmbfdlbojpcla - C:\ProgramData\ADDICT-THING\hloebfkfdbhcjffbmbigmbfdlbojpcla.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[2012.01.17. 11:45]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
dhoigiahaahldpgnbbimfecackdgccna - C:\Users\kataibalu\AppData\Local\CRE\dhoigiahaahldpgnbbimfecackdgccna.crx[]


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PRFB_huHU462"

==== Reset Google Chrome ======================

C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\kataibalu\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\kataibalu\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AddictThing deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{071F1B67-DF9E-813A-2332-1C6F76D909A2} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\abckmpjbfjfoabjhefcbpdckdfikghpp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dhoigiahaahldpgnbbimfecackdgccna deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\hloebfkfdbhcjffbmbigmbfdlbojpcla deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\dhoigiahaahldpgnbbimfecackdgccna deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\kataibalu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\kataibalu\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=244 folders=48 15913282 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\kataibalu\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\KATAIB~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 2014.09.30. at 18:47:09,67 ======================


kedd szept. 30, 2014 17:51
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:arrow: Torles.
:arrow: CCleaner
:arrow: Zoek.exe
Naplojat ide.


kedd szept. 30, 2014 15:29
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
stell írta:
Idézet:
A programok nem a sajátgépben voltak/vannak, hanem csak simán egy mappában az asztalon

Az asztalon ijen nem lehet.
Torold az egesz mappat igy.Klikelj ra 1x-es SHIFT+Delete.



Na ezaz, én is így tudtam...
akkor az első lépés a törlés legyen és utána amit előzőleg írtál?
A ccleanert ismerem, azt használom a saját gépemen :)


kedd szept. 30, 2014 15:27
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Idézet:
A programok nem a sajátgépben voltak/vannak, hanem csak simán egy mappában az asztalon

Az asztalon ijen nem lehet.
Torold az egesz mappat igy.Klikelj ra 1x-es SHIFT+Delete.


kedd szept. 30, 2014 15:24
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
uccessfully deleted:
Akkor nem kell. fojtasd igy tovabb.
:arrow: Letolteni a CCleanert es kipucolni a gepett, Tuddo hogy kell??
https://www.piriform.com/ccleaner/download/standard

Foleg az REGISTRYT.. ugy hogy az abblakja tiszta maradjin, tobszor ismetelni a javitast.

:arrow: Ha kesz lesz akkor igy.
Letoltod az asztalra az Zoek.exe programot
http://hijackthis.nl/smeenk/
Futtatod mint rendszer gazda
Majd kinyilik az ablakja.
A bealitasokat nebabrald.
Az ablakjaba masold be est a textet>
Kód:
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;


es klikelj az Run Script gombra, semmi mast necsinalj, ez a program aztan igen lassu, tehat turellemmel varnod kell.
A program megcsinalja a javitast es restartol, vagy kerri a restartot.
Add maj naplot,, a tartalmat tedd ide.


kedd szept. 30, 2014 15:19
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
húúúú az összes részt daraboljam fel, és részekbe rakjam fel? Nem fér fel csak sok részletben. De a többi mind úgy kezdődik, mint a végefelé:Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\......
Persze. Azt írtad az legyen a legelső lépés ;) Figyeltem ám ;)

Igen, talán gyorsabb..

Tudom ez nem virusos dolog, de azért megkérdezem.
Borzasztó ami ezen a gépen volt. A programok nem a sajátgépben voltak/vannak, hanem csak simán egy mappában az asztalon (NEM parancsikon) Annak márpedig nem ott a helye. Most akkor csinálok mappákat a C meghajtóra. Kérdés az, hogy mik azok a programok szerinted, amik játékok vagy olyan programok, amiket gond nélkül törölhetek és majd a C hajtóra feltelepítek?


kedd szept. 30, 2014 15:08
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Van e javulas???
Leszedtedd az Panda virus irtot ..??


kedd szept. 30, 2014 15:02
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.2.3 (09.27.2014:1)
OS: Windows 7 Home Premium x64
Ran by kataibalu on 2014.09.30. at 15:40:45,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440444854455}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440444854455}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440444854455}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411851155}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440444854455}



~~~ Files

Successfully deleted: [File] C:\Windows\syswow64\sho4453.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho8379.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho9FD.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA11F.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA322.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA64B.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoAE2A.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoECE3.tmp



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\kataibalu\appdata\local\cre"
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0042CE8A-6C75-4604-B5C7-6EBE8FA32ECF}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{008CC06F-702A-4BD6-B609-2F250C707924}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{00C48710-3C80-46E6-BDA7-B33DE2DFE3D6}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{00D64119-9A0B-4AAD-95CE-1DBEE841D640}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{00F4CF85-1BC9-415B-A9C8-7798472C3AC9}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{014C4A8D-2DE0-4656-9EF0-8C7E893D5B5A}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{014CD0D3-D97F-468B-8B6A-3C93D9490B26}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{019A8D69-E312-40E9-9B2D-A0BDFF6F2E8D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{01A38C69-E1DC-47EF-95C4-CE4B4BF82DEE}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{025C50F0-F4D2-4934-9F4B-356BB3BA148C}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{02905A2C-ACAF-4F7E-A0D3-09F6C6B2DD92}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{032F0002-6631-41AC-84DF-FF003909E949}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0383B2B9-4590-48C3-B8A8-8F505AADC1BF}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{03CE48FE-288D-49BE-BD9B-79ACEBA2AD0C}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{04713C95-7807-4A89-8D53-19756D476CD4}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0498580D-7BD6-47F4-920A-4CC6B565E69E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{04C4A89F-C719-443B-91B1-2E04D8C02980}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0529B56A-CD29-4867-ADB8-B7C6862BC24E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0555A30A-4155-4784-9578-7A2F9F46FFDD}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{06E152D8-8A3E-4768-ABFB-896BBDE847E2}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{07C18395-36C1-426B-BE1C-DE9CE4687947}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{07C9EF19-04EC-4560-8B7F-E6520DE0D961}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{081FBFEE-DCB2-47CA-9356-99A5F609F871}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{085D6C65-6307-46EB-8570-711B136DA93F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0887405E-61ED-4088-B7A4-C80FE2C75133}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0964F1DE-800F-4184-845A-8F916A052060}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0990EDF1-892F-4706-B49F-96993955FC61}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0A0E8047-D2C8-4B27-B2DE-1B8F95D12D2B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0A771D23-F342-4DD4-B26C-2A2B92C97F51}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0A89FBC5-7931-4D38-ACB3-2F42E7BAD775}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0AEF4A41-210C-4691-88F4-1DB10D11E7C0}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0AF7EDF8-EE70-4FD7-B018-B3CE83B7DB8F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0B4518D9-342D-4D0D-9CAB-2C7BFDD8E8CF}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0C39F651-CA2D-44E4-87F3-92A0FD970EA7}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0C85E8BA-ED62-48A6-9AEF-1CB83BA849A2}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0D23BD0F-BAC0-4AF1-BAC9-DC526622B2E3}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0D5AB4D0-7DCA-4014-839A-2EB95FB7390B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0DB23F0C-CAE1-4B66-9254-BB92D5B8C4C0}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0ED54C9B-7B46-4184-8B77-2A1F0358E674}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0ED7C832-CBF9-444B-8646-9D379D121567}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0EF79A69-F17A-4F8B-A2F5-D23B15D582BB}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0F35B811-5B68-4DC7-93C5-CB79FA590383}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{0FF83326-3318-46B9-AE9C-1C991CD9A388}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1092D3DC-37B8-4712-A7B2-FD533B5B070E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{10A26029-9EA9-4FF0-BDCA-9C098A190730}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{10D99FC8-6C1D-47CE-9791-83E57C4C6355}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{120F2D40-6FEC-4E44-B30B-CB981E6B55F3}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{12C56048-780C-4ED5-A36C-9B8DDA32A877}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{12C9B581-10FA-4A9C-9787-DB2B551CDB4D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{12E23671-AC45-4080-8999-F20F66042700}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{13E47CF2-AD82-472D-96E9-FDD2296F36DD}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{13F229EB-3FA6-4FCD-8457-EEBEAE1139AA}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{14111B9B-3D12-4044-99AB-17116E562E8F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1461F94A-9782-4222-B9CC-2CAB6714DEA0}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{14FF919B-A165-4598-83E4-B9DB0936756A}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{151278F8-C634-4DC3-AB90-6A85089F2C0E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{153B3F28-052F-40CA-8BD4-642D4704EB36}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1547090E-6515-407E-9935-619D5337E38A}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{15608116-35CE-40F7-807B-84C298ABB27B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{159FEE14-94E1-4898-8E25-88E99C905235}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{162933A6-CA70-4724-B978-1B2062731943}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{17589281-C509-4044-B40C-7F6727C00147}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{17BE3F2D-7934-4307-BC7A-68E415FE9CEE}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{18CD7F06-D87B-4FE3-B2BA-86BF6C93AF74}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{192653BE-4F2E-42C5-95AC-42E851C503F5}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1934D9D9-EBFA-485A-AB76-4C7C570FFC5F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{19A86DB2-362A-4B94-99F4-532BEBB101B9}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{19AE7A20-2078-4ED2-BACA-7F4A7EE93DDE}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1A00D62A-1CEE-4632-B090-876B21D7086D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1AC23C2C-6854-44FB-988A-B2192E206A88}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1AF013E2-3E6F-4B12-809B-003FD7C00C55}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1B328A1E-E9B8-40FA-8477-DCFF739EC30B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1BFDAC00-905F-4867-AEA9-49BE59933C18}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1C1BB9A6-A75E-4268-8970-EBB30F3B89B5}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1C2F41CD-103A-49CF-85DC-59624D1B4D32}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1CAE2DFC-8264-479D-930D-CB489FE108F7}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1D56948A-A26E-4FA0-A48C-D83AC71372C9}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1DC1FAB0-9DA4-4F72-A01D-C88A8979F6F6}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1E10C774-7FA1-44F1-99F4-BD504AEA2074}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1E3779B8-7CBC-4895-9A2F-5A7498B5CEFE}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1EA135F2-4A2D-497E-BD24-DAAD78571115}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1FAA708F-059C-4A27-9F56-44CD3F05ECD6}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1FEDDCB3-7DFC-4C38-857F-0F4426011BC5}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{1FF6D906-B41E-424A-B207-4AF81919ED7B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{204727BC-4432-4F7D-9C29-6DDC5C906576}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{20927C09-FCB4-4707-8228-57B3337046FB}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{20EE753E-B0C3-4C27-AF69-5EF7F8D8054E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{210144A0-9A94-4ED1-A603-2923A66CB0F5}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{21024631-BE10-489F-943C-D5C3F2E9207D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2103D4A2-97EF-4F4F-86EC-97291E66D465}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{21464282-DB1D-4A02-9906-79A1EA4B6104}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2175311F-E21D-4C2A-81F0-E73EE3326462}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{219D7D0F-2039-4999-AEF8-26A33A5E2F87}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{22162A4B-1619-49E9-A3BF-8B72773A83C0}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2225557E-1E9A-4705-A336-310EBC62D144}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{222D7C18-6D0B-4771-AB18-545023545D54}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{22C6779E-46CD-474D-A834-7A4054513F65}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{236368D8-CFC6-4F25-B088-F7ECC4662524}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2366403F-5E34-45B0-B5E9-79DEB9210B45}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{23875A63-87E8-4A56-AAFB-E4E6403D4C38}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{23B91DD5-174C-4263-A492-9D0317E8E67F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{23FCA6DD-87CD-4258-BED8-545666A2DF56}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{23FD56CD-755C-44D6-BDCB-B5ABB2261657}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2403927A-BF71-4657-8FB2-F708C9CF2B27}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2409129A-EA11-4008-AEE8-563B393548DF}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{246A079E-2477-4A85-91C7-4AFEB2C389D0}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{24E063D3-6D58-4F18-BB9C-BCF26C4CDFA4}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{24E42612-2C73-487F-9A80-46FA84E3BDB1}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{253643CD-539F-460C-8C63-6C72CA626A78}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{261A64F5-D5E3-4AC0-BEF1-547A58F0CFB7}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2673BF54-161A-4CD6-A4E9-41F1A94C67D9}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2684CE62-29D5-478E-996C-6C84356FCD8B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{269C9AC4-AC47-4932-A21D-D3B5F09AEBBA}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{27173289-3F93-4E62-95CB-2D90DB4E3360}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{27442AB5-57DB-45AA-B278-7AE754CB686D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{27CC1DE9-640A-44E0-901F-1285B709A401}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{27E07EAE-E7A7-4698-962E-758A3C006A05}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2860BC18-C019-438B-A84E-51286F397D2F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{28D2A66F-6138-4A5A-81EF-166B3CE16CED}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2991F998-A401-44D7-B02C-ECA2C797C755}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2A01BD3F-9B8C-4CD8-90BE-BE1BEC344815}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2A677A6B-9C52-4AEF-B0B9-59E33B52E5B3}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2A6E1BDB-0FBF-4A61-9103-2EA56599CC3B}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2A747E70-E667-491C-BD4B-07969C7DCF70}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2A95CFA2-51A6-42ED-A9B7-4BD643203087}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2AC5E283-50B4-4382-97D0-90C9C51A3050}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2AE61DBA-7838-48BB-ABFE-F8197C9D58AB}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2B338102-D215-414F-81C3-0AB6DF8F833E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2B866EA4-04EF-4D36-A856-E30C4FAFD06F}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2BDA9B5B-B1A4-4736-9475-82A688201154}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2BE54833-7AAA-4B3A-8FC5-6AADA21C2741}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2C0D572C-48BB-43BE-92D2-E87BB9E9079E}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2C5D4AAF-2AEE-4D71-A674-4D3AEDDE7172}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2C999B4E-3EA8-4406-A541-506A82479B3D}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2CD39120-BDA0-4975-89E8-3208E81B9C80}
Successfully deleted: [Empty Folder] C:\Users\kataibalu\appdata\local\{2D1FE808-488A-4679-A377-BD33AC758287}


kedd szept. 30, 2014 15:00
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
ok, fojtasd az Junkware programmal. Van e javulas??


kedd szept. 30, 2014 14:40
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
# AdwCleaner v3.310 - Report created 30/09/2014 at 15:21:59
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : kataibalu - PCKATAI
# Running from : C:\Users\kataibalu\Desktop\adwcleaner_3.310.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\DSearchLink
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\ADDICT-THING
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ADDICT-THING
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\pc speed up
Folder Deleted : C:\Program Files (x86)\uTorrentControl2
Folder Deleted : C:\Program Files (x86)\Apps Hat Madness
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\kataibalu\AppData\Local\Conduit
Folder Deleted : C:\Users\kataibalu\AppData\Local\genienext
Folder Deleted : C:\Users\kataibalu\AppData\Local\Mobogenie
Folder Deleted : C:\Users\kataibalu\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\kataibalu\AppData\LocalLow\ADDICT-THING
Folder Deleted : C:\Users\kataibalu\AppData\LocalLow\uTorrentControl2
Folder Deleted : C:\Users\kataibalu\AppData\LocalLow\Apps Hat Madness
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Babylon
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Funmoods
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Systweak
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\kataibalu\Documents\Mobogenie
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\CT3267244
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\506747055cde6@506747055ce1f.com
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{424e2f9c-eb5b-4b51-87e5-5831781bc515}
Folder Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\f87f900b-ebb4-498d-a3ac-077cfae44103@52f83dfc-3a94-49d3-b0ff-c4470a645eb5.com
File Deleted : C:\END
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\kataibalu\daemonprocess.txt
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\bprotector_extensions.sqlite
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\bprotector_prefs.js
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\invalidprefs.js
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\adawaretb.xml
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\ask-search.xml
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\Babylon.xml
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\Conduit.xml
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\delta.xml
File Deleted : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\user.js

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchSettings_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchSettings_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKCU\Software\d68cdab439be10
Key Deleted : HKLM\SOFTWARE\d68cdab439be10
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mkv-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mkv-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455855555}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466856655}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{687578B9-7132-4A7A-80E4-30EE31099E03}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4AAF2A6-F6D1-49A5-BA1A-B20735DF1955}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{372E786B-F781-49EA-930C-BDA3A3A658A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8244924B-3944-4833-8D3B-454971903620}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455855555}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466856655}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Funmoods
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\incredibar.com
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl2
Key Deleted : HKCU\Software\AppDataLow\Software\Apps Hat Madness
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\InstallCore
Key Deleted : HKLM\SOFTWARE\uTorrentControl2
Key Deleted : HKLM\SOFTWARE\Apps Hat Madness
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{71277DC4-4217-462A-9FF4-62D7815B2C69}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Apps Hat Madness
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OptimizerPro1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v22.0 (hu)

[ File : C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\prefs.js ]

Line Deleted : user_pref("CT3267244.FF19Solved", "true");
Line Deleted : user_pref("CT3267244.UserID", "UN35680697599185624");
Line Deleted : user_pref("CT3267244.browser.search.defaultthis.engineName", "true");
Line Deleted : user_pref("CT3267244.fullUserID", "UN35680697599185624.IN.20131015113850");
Line Deleted : user_pref("CT3267244.installDate", "15/10/2013 11:39:28");
Line Deleted : user_pref("CT3267244.installSessionId", "{CAEECA19-00C8-4D56-B3AA-39FD8497CD93}");
Line Deleted : user_pref("CT3267244.installSp", "TRUE");
Line Deleted : user_pref("CT3267244.installerVersion", "1.7.1.7");
Line Deleted : user_pref("CT3267244.keyword", "true");
Line Deleted : user_pref("CT3267244.originalHomepage", "about:home");
Line Deleted : user_pref("CT3267244.originalSearchAddressUrl", "");
Line Deleted : user_pref("CT3267244.originalSearchEngine", "");
Line Deleted : user_pref("CT3267244.originalSearchEngineName", "");
Line Deleted : user_pref("CT3267244.searchRevert", "false");
Line Deleted : user_pref("CT3267244.searchUserMode", "2");
Line Deleted : user_pref("CT3267244.smartbar.homepage", "true");
Line Deleted : user_pref("CT3267244.versionFromInstaller", "10.20.1.8");
Line Deleted : user_pref("CT3267244.xpeMode", "0");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "Systweak Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3267244&CUI=UN35680697599185624&UM=2&SearchSource=3&q={searchTerms}");
Line Deleted : user_pref("extensions.506747055ce91.scode", "if(window.self==window.top){var script=document.createElement(\"script\");script.type=\"text/javascript\";script.src=\"//cdncache-a.akamaihd.net/loaders/14[...]
Line Deleted : user_pref("extensions.delta.admin", false);
Line Deleted : user_pref("extensions.delta.aflt", "babsst");
Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Deleted : user_pref("extensions.delta.autoRvrt", "false");
Line Deleted : user_pref("extensions.delta.dfltLng", "en");
Line Deleted : user_pref("extensions.delta.excTlbr", false);
Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true);
Line Deleted : user_pref("extensions.delta.id", "f0b305ba00000000000060d81934aada");
Line Deleted : user_pref("extensions.delta.instlDay", "15886");
Line Deleted : user_pref("extensions.delta.instlRef", "sst");
Line Deleted : user_pref("extensions.delta.newTab", false);
Line Deleted : user_pref("extensions.delta.prdct", "delta");
Line Deleted : user_pref("extensions.delta.prtnrId", "delta");
Line Deleted : user_pref("extensions.delta.rvrt", "false");
Line Deleted : user_pref("extensions.delta.smplGrp", "none");
Line Deleted : user_pref("extensions.delta.tlbrId", "base");
Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Deleted : user_pref("extensions.delta.vrsn", "1.8.21.5");
Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.21.515:01:41");
Line Deleted : user_pref("extensions.delta.vrsni", "1.8.21.5");
Line Deleted : user_pref("extensions.delta_i.babExt", "");
Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=119828&tt=250613_gr5&tsp=4929");
Line Deleted : user_pref("extensions.delta_i.srcExt", "ss");
Line Deleted : user_pref("extensions.enabledAddons", "DivXWebPlayer%40divx.com:2.0.2.039,%7B46551EC9-40F0-4e47-8E18-8E5CF550CFB8%7D:1.3.2,%7B3e0c7f3a-3f50-4730-beb5-4a9a10e2831c%7D:8.6,%7B972ce4c6-7e08-4474-a285-320[...]
Line Deleted : user_pref("extensions.funmoods.aflt", "vsl");
Line Deleted : user_pref("extensions.funmoods.appId", "{EA28B360-05E0-4F93-8150-02891F1D8D3C}");
Line Deleted : user_pref("extensions.funmoods.cntry", "HU");
Line Deleted : user_pref("extensions.funmoods.cv", "cv5");
Line Deleted : user_pref("extensions.funmoods.dfltLng", "");
Line Deleted : user_pref("extensions.funmoods.dfltSrch", true);
Line Deleted : user_pref("extensions.funmoods.dnsErr", true);
Line Deleted : user_pref("extensions.funmoods.envrmnt", "production");
Line Deleted : user_pref("extensions.funmoods.excTlbr", false);
Line Deleted : user_pref("extensions.funmoods.hdrMd5", "3FFC1D451ACA87BB04DFDE638CEF3363");
Line Deleted : user_pref("extensions.funmoods.hmpg", false);
Line Deleted : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=vsl&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtC0EtDzzyC0BtDyD0B0AtN0D0Tzu0CyEtAyBtN1L2XzutBtFtBtFtCtFyDtDtAtN1L1Czu1L1G1B2Z1I0R1P1Ozu2X[...]
Line Deleted : user_pref("extensions.funmoods.id", "DC0EA11E086B05BA");
Line Deleted : user_pref("extensions.funmoods.instlDay", "15776");
Line Deleted : user_pref("extensions.funmoods.instlRef", "");
Line Deleted : user_pref("extensions.funmoods.isdcmntcmplt", false);
Line Deleted : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Line Deleted : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=vsl&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtC0EtDzzyC0BtDyD0B0AtN0D0Tzu0CyEtAyBtN1L2XzutBtFtBtFtCtFyDtDtAtN1L1Czu1L1G1B2Z1I0R1P1Ozu[...]
Line Deleted : user_pref("extensions.funmoods.prdct", "funmoods");
Line Deleted : user_pref("extensions.funmoods.prtnrId", "funmoods");
Line Deleted : user_pref("extensions.funmoods.sg", "none");
Line Deleted : user_pref("extensions.funmoods.srchPrvdr", "Funmoods");
Line Deleted : user_pref("extensions.funmoods.tlbrId", "base");
Line Deleted : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=vsl&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtC0EtDzzyC0BtDyD0B0AtN0D0Tzu0CyEtAyBtN1L2XzutBtFtBtFtCtFyDtDtAtN1L1Czu1L1G1B2Z1I0R1P1O[...]
Line Deleted : user_pref("extensions.funmoods.vrsn", "1.8.11.0");
Line Deleted : user_pref("extensions.funmoods.vrsni", "1.8.11.0");
Line Deleted : user_pref("extensions.funmoods_i.hmpg", false);
Line Deleted : user_pref("extensions.funmoods_i.newTab", false);
Line Deleted : user_pref("extensions.funmoods_i.smplGrp", "none");
Line Deleted : user_pref("extensions.funmoods_i.vrsnTs", "1.8.11.019:10:50");
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3267244");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3267244&CUI=UN35680697599185624&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3267244&octid=CT3267244&SearchSource[...]
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3267244&SearchSource=2&CUI=UN35680697599185624&UM=2&q=");
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3267244");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3267244");
Line Deleted : user_pref("smartbar.machineId", "+DO+UJV2D0ZLWVSEEUHH1RH50D28EUNUUOCLYXSZUK2MQYOQSF1TWHCES8UST0BMCP9BEILCNOR0HZIQKMU4IG");
Line Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3267244&CUI=UN35680697599185624&UM=2&SearchSource=13");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3267244.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");

-\\ Google Chrome v37.0.2062.124

[ File : C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [32240 octets] - [30/09/2014 15:15:01]
AdwCleaner[S0].txt - [31863 octets] - [30/09/2014 15:21:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [31924 octets] ##########


kedd szept. 30, 2014 14:28
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:arrow: Letolteni az blogombol>>az asztalra>> az ADWcleanert>>futtatni mint rendzsergazda, >>klik SCAN..megvarod meg vegez>>klik CLEAN
http://www.viruskasino.com/2012/09/adwcleaner.html
A restart utan a Naplojat tedd ide.

:arrow: Letolteni az Junkwareremovaltool>.tedaz asztalra>.Futtatni mint rendszergazda>>megjelenik a fekete abblak, aztan klik>.akarmilyen bilentyure>>a program lassu>>tehat vard ki a veget>.kinyilik a jedzettomb>>naplojat tedd ide.
http://www.viruskasino.com/2010/12/prog ... moval-tool


kedd szept. 30, 2014 13:53
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-09-2014
Ran by kataibalu at 2014-09-30 14:29:39 Run:1
Running from C:\Users\kataibalu\Desktop
Loaded Profile: kataibalu (Available profiles: kataibalu)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
Free Games 115 (HKLM-x32\...\Free Games 115) (Version: 1.0.0.0 - Zula Games) <==== ATTENTION
Optimizer Pro v3.0 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.0 - PC Utilities Pro) <==== ATTENTION
OptimizerPro1 (HKLM\...\OptimizerPro1) (Version: 1.0 - Premium) <==== ATTENTION
Task: {01440892-5FCB-4586-AD15-DB3B3DD028C3} - \SidebarExecute No Task File <==== ATTENTION
Task: {06CE77A7-E0CC-41D4-950F-EB04FAEB1A53} - \EPUpdater No Task File <==== ATTENTION
Task: {076A3B0E-8F3E-4C9D-8BD9-7E8DA2FD3935} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {310E8600-8EA8-4FEC-98A0-EC91CF0A1113} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {34081E6F-21E4-4048-9CD0-7257AABE5C6C} - \{6C43388F-411D-4B7A-A0FC-D8C84E9B291B} No Task File <==== ATTENTION
Task: {4CBECF60-B6FD-4EE3-B934-56BF5B2DC11C} - \AdobeAAMUpdater-1.0-PCKATAI-kataibalu No Task File <==== ATTENTION
Task: {4FF36AC9-92A6-4B23-8350-830ABD7F97B6} - \{509D5406-D46C-48C1-B2D9-D0F2683F9B46} No Task File <==== ATTENTION
Task: {50F624A8-F608-4510-9BF6-6405EE87AA8E} - \BitGuard No Task File <==== ATTENTION
Task: {590D177C-0BF0-47AB-9B00-A430CEF1C76D} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {592AD55B-412E-4A23-95D7-2224D33A89BC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {59EF4FF0-720F-49AC-BA01-7CF3EBD6BE3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {778381D1-D41F-4B82-B8CD-CCE98AAD9525} - \{7606FFD7-F2D1-43BE-983C-BDB24CF0299A} No Task File <==== ATTENTION
Task: {AD790C71-8BFD-462D-8891-90B123EA90BD} - \NBAgent No Task File <==== ATTENTION
Task: {B5EDFD5F-5C78-453A-8DEB-5AF77E4EA23D} - \{F5F79506-1932-46DB-B08D-11DDFE8C154E} No Task File <==== ATTENTION
Task: {CFE1DE51-554E-462E-A478-3D52287890D1} - \{34E38A52-2B42-4EBA-8CBE-2E814DC2FADB} No Task File <==== ATTENTION
Task: {D33D5569-E8F1-4C20-86AC-57C180FADC22} - \{A93F3DCC-743F-490A-B65A-C23B31DA44FD} No Task File <==== ATTENTION
Task: {E44C49DE-E6B8-4747-BDA2-0F2D3EB3C668} - \{AAEC321C-8321-4696-AB05-970E095EE730} No Task File <==== ATTENTION
Task: {E68DC74F-8388-42EC-9BBA-83729B62E746} - \{B0A34D76-4BA5-4D93-8B54-E1AE500088F8} No Task File <==== ATTENTION
Task: {EA1FC095-F3EA-48C7-A6B7-97D78D6DC82C} - \{A508E00C-9295-4AE4-B3A8-21159EF51826} No Task File <==== ATTENTION
Task: {FC8F7B30-1D7C-44C6-AD4A-4B908E3196DE} - \Funmoods No Task File <==== ATTENTION
Task: {FCDE4D2B-ADC7-4184-B918-1810759F0121} - \{7C61E3F3-36EB-4B83-8162-3874293D74A6} No Task File <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\ProgramData\Temp:55B41E6A
AlternateDataStreams: C:\ProgramData\Temp:FB6A21E3
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT2
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT2
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [Power Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [Google Update] => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-12-17] (Google Inc.)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-12-16] (Google Inc.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP ... 1&tsp=5013
SearchScopes: HKCU - DefaultScope {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {443E0BC5-D229-4099-B6E9-6C8515ABD6DA}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=F0B360D81934AADA&affID=119828&tt=160913_c1&tsp=5013
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://pandasecurityr.mystart.com/?sour ... DE37546&q={searchTerms}
SearchScopes: HKCU - {433C5EEC-BA0F-41D0-8455-7B52322DAAC4} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - {443E0BC5-D229-4099-B6E9-6C8515ABD6DA} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3267244&CUI=UN34363159781279643&UM=2
SearchScopes: HKCU - {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
BHO: Apps Hat Madness -> {11111111-1111-1111-1111-110411851155} -> C:\Program Files (x86)\Apps Hat Madness\Apps Hat Madness-bho64.dll (Nero)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
FF Homepage: hxxp://search.conduit.com/?ctid=CT32672 ... 42677ACD96
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =501549&p=
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml
C:\Program Files (x86)\RelevantKnowledge
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF Extension: RelevantKnowledge - C:\Program Files (x86)\RelevantKnowledge\firefox [2013-05-28]
CHR HKLM-x32\...\Chrome\Extension: [mkndcbhcgphcfkkddanakjiepeknbgle] - C:\Program Files (x86)\RelevantKnowledge\rlcm.crx [2013-05-28]
CHR HKLM-x32\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\KATAIB~1\AppData\Local\Temp\ccex.crx [2013-05-28]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S2 BitGuard; C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [X]
2014-09-30 10:25 - 2014-09-30 10:25 - 00000000 _____ () C:\Windows\SysWOW64\sho71BE.tmp
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [XWidget] => C:\Program Files (x86)\XWidget\xwidget.exe [4904960 2011-12-31] (xwidget.com)
Hosts:
EmptyTemp:
Reboot:
End
*****************

Free Games 115 (HKLM-x32\...\Free Games 115) (Version: 1.0.0.0 - Zula Games) <==== ATTENTION => Error: No automatic fix found for this entry.
Optimizer Pro v3.0 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.0 - PC Utilities Pro) <==== ATTENTION => Error: No automatic fix found for this entry.
OptimizerPro1 (HKLM\...\OptimizerPro1) (Version: 1.0 - Premium) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{01440892-5FCB-4586-AD15-DB3B3DD028C3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{01440892-5FCB-4586-AD15-DB3B3DD028C3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SidebarExecute" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{06CE77A7-E0CC-41D4-950F-EB04FAEB1A53}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06CE77A7-E0CC-41D4-950F-EB04FAEB1A53}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{076A3B0E-8F3E-4C9D-8BD9-7E8DA2FD3935}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{076A3B0E-8F3E-4C9D-8BD9-7E8DA2FD3935}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{310E8600-8EA8-4FEC-98A0-EC91CF0A1113}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{310E8600-8EA8-4FEC-98A0-EC91CF0A1113}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34081E6F-21E4-4048-9CD0-7257AABE5C6C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34081E6F-21E4-4048-9CD0-7257AABE5C6C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6C43388F-411D-4B7A-A0FC-D8C84E9B291B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4CBECF60-B6FD-4EE3-B934-56BF5B2DC11C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CBECF60-B6FD-4EE3-B934-56BF5B2DC11C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeAAMUpdater-1.0-PCKATAI-kataibalu" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4FF36AC9-92A6-4B23-8350-830ABD7F97B6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4FF36AC9-92A6-4B23-8350-830ABD7F97B6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{509D5406-D46C-48C1-B2D9-D0F2683F9B46}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{50F624A8-F608-4510-9BF6-6405EE87AA8E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50F624A8-F608-4510-9BF6-6405EE87AA8E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BitGuard" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{590D177C-0BF0-47AB-9B00-A430CEF1C76D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{590D177C-0BF0-47AB-9B00-A430CEF1C76D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{592AD55B-412E-4A23-95D7-2224D33A89BC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{592AD55B-412E-4A23-95D7-2224D33A89BC}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{59EF4FF0-720F-49AC-BA01-7CF3EBD6BE3C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59EF4FF0-720F-49AC-BA01-7CF3EBD6BE3C}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{778381D1-D41F-4B82-B8CD-CCE98AAD9525}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{778381D1-D41F-4B82-B8CD-CCE98AAD9525}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7606FFD7-F2D1-43BE-983C-BDB24CF0299A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AD790C71-8BFD-462D-8891-90B123EA90BD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD790C71-8BFD-462D-8891-90B123EA90BD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NBAgent" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B5EDFD5F-5C78-453A-8DEB-5AF77E4EA23D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B5EDFD5F-5C78-453A-8DEB-5AF77E4EA23D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F5F79506-1932-46DB-B08D-11DDFE8C154E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CFE1DE51-554E-462E-A478-3D52287890D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFE1DE51-554E-462E-A478-3D52287890D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{34E38A52-2B42-4EBA-8CBE-2E814DC2FADB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D33D5569-E8F1-4C20-86AC-57C180FADC22}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D33D5569-E8F1-4C20-86AC-57C180FADC22}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A93F3DCC-743F-490A-B65A-C23B31DA44FD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E44C49DE-E6B8-4747-BDA2-0F2D3EB3C668}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E44C49DE-E6B8-4747-BDA2-0F2D3EB3C668}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AAEC321C-8321-4696-AB05-970E095EE730}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E68DC74F-8388-42EC-9BBA-83729B62E746}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E68DC74F-8388-42EC-9BBA-83729B62E746}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B0A34D76-4BA5-4D93-8B54-E1AE500088F8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EA1FC095-F3EA-48C7-A6B7-97D78D6DC82C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA1FC095-F3EA-48C7-A6B7-97D78D6DC82C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A508E00C-9295-4AE4-B3A8-21159EF51826}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FC8F7B30-1D7C-44C6-AD4A-4B908E3196DE}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FC8F7B30-1D7C-44C6-AD4A-4B908E3196DE}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Funmoods" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FCDE4D2B-ADC7-4184-B918-1810759F0121}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCDE4D2B-ADC7-4184-B918-1810759F0121}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7C61E3F3-36EB-4B83-8162-3874293D74A6}" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA.job => Moved successfully.
C:\ProgramData => ":NT2" ADS removed successfully.
"C:\Users\All Users" => ":NT2" ADS not found.
"C:\ProgramData\Application Data" => ":NT2" ADS not found.
C:\ProgramData\MTA San Andreas All => ":NT2" ADS removed successfully.
C:\ProgramData\Temp => ":55B41E6A" ADS removed successfully.
C:\ProgramData\Temp => ":FB6A21E3" ADS removed successfully.
"C:\Users\kataibalu\Application Data" => ":NT" ADS not found.
"C:\Users\kataibalu\Application Data" => ":NT2" ADS not found.
C:\Users\kataibalu\AppData\Roaming => ":NT" ADS removed successfully.
C:\Users\kataibalu\AppData\Roaming => ":NT2" ADS removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Power Management => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully.
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Run\\swg => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key deleted successfully.
"HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}" => Key deleted successfully.
"HKCR\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{433C5EEC-BA0F-41D0-8455-7B52322DAAC4}" => Key deleted successfully.
"HKCR\CLSID\{433C5EEC-BA0F-41D0-8455-7B52322DAAC4}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{443E0BC5-D229-4099-B6E9-6C8515ABD6DA}" => Key deleted successfully.
"HKCR\CLSID\{443E0BC5-D229-4099-B6E9-6C8515ABD6DA}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7}" => Key deleted successfully.
"HKCR\CLSID\{8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411851155}" => Key deleted successfully.
"HKCR\CLSID\{11111111-1111-1111-1111-110411851155}" => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully.
"HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" => Key not found.
Firefox homepage deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml => Moved successfully.
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml => Moved successfully.
C:\Program Files (x86)\RelevantKnowledge => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\wrc@avast.com => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A} => value deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\firefox not found.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle" => Key deleted successfully.
"C:\Program Files (x86)\RelevantKnowledge\rlcm.crx" => File/Directory not found.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc" => Key deleted successfully.
"C:\Users\KATAIB~1\AppData\Local\Temp\ccex.crx" => File/Directory not found.
"HKCU\SOFTWARE\Policies\Google" => Key deleted successfully.
BitGuard => Service deleted successfully.
C:\Windows\SysWOW64\sho71BE.tmp => Moved successfully.
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\Software\Microsoft\Windows\CurrentVersion\Run\\XWidget => value deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 349.1 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====


kedd szept. 30, 2014 13:42
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
:arrow: Telepisd le a Geprol ezt a PANDA csodat, itt az Windows7-re nemkell Tuzfall, es ahova csak neztem mindenut ez a panda van, tehat nemis a legjobbak koze tartozik, tehat Letelepiteni, majd ha vegzunk, akkor majd felrakod az Ingyenes AVASTOT.
:arrow: start>.futtatas>>ird be Notepad>>a jedzettombbe masold be a kod szo alatti textet.
:arrow: Ted az asztalra >>mint >>Minden fajl>>fixlist.txt
:arrow: Futasd az FRST programot mint rendszergazda>>de most vigyaz>>ra klikelsz AZ FIX>.gombra>>mikkor befejezi,a gepp, Restartol<< majd az asztalon megtalalod az FIXLOG.txt naplot,a tartalmat tedd ide.
Kód:
Start
Free Games 115 (HKLM-x32\...\Free Games 115) (Version: 1.0.0.0 - Zula Games) <==== ATTENTION
Optimizer Pro v3.0 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.0 - PC Utilities Pro) <==== ATTENTION
OptimizerPro1 (HKLM\...\OptimizerPro1) (Version: 1.0 - Premium) <==== ATTENTION
Task: {01440892-5FCB-4586-AD15-DB3B3DD028C3} - \SidebarExecute No Task File <==== ATTENTION
Task: {06CE77A7-E0CC-41D4-950F-EB04FAEB1A53} - \EPUpdater No Task File <==== ATTENTION
Task: {076A3B0E-8F3E-4C9D-8BD9-7E8DA2FD3935} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {310E8600-8EA8-4FEC-98A0-EC91CF0A1113} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {34081E6F-21E4-4048-9CD0-7257AABE5C6C} - \{6C43388F-411D-4B7A-A0FC-D8C84E9B291B} No Task File <==== ATTENTION
Task: {4CBECF60-B6FD-4EE3-B934-56BF5B2DC11C} - \AdobeAAMUpdater-1.0-PCKATAI-kataibalu No Task File <==== ATTENTION
Task: {4FF36AC9-92A6-4B23-8350-830ABD7F97B6} - \{509D5406-D46C-48C1-B2D9-D0F2683F9B46} No Task File <==== ATTENTION
Task: {50F624A8-F608-4510-9BF6-6405EE87AA8E} - \BitGuard No Task File <==== ATTENTION
Task: {590D177C-0BF0-47AB-9B00-A430CEF1C76D} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {592AD55B-412E-4A23-95D7-2224D33A89BC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {59EF4FF0-720F-49AC-BA01-7CF3EBD6BE3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {778381D1-D41F-4B82-B8CD-CCE98AAD9525} - \{7606FFD7-F2D1-43BE-983C-BDB24CF0299A} No Task File <==== ATTENTION
Task: {AD790C71-8BFD-462D-8891-90B123EA90BD} - \NBAgent No Task File <==== ATTENTION
Task: {B5EDFD5F-5C78-453A-8DEB-5AF77E4EA23D} - \{F5F79506-1932-46DB-B08D-11DDFE8C154E} No Task File <==== ATTENTION
Task: {CFE1DE51-554E-462E-A478-3D52287890D1} - \{34E38A52-2B42-4EBA-8CBE-2E814DC2FADB} No Task File <==== ATTENTION
Task: {D33D5569-E8F1-4C20-86AC-57C180FADC22} - \{A93F3DCC-743F-490A-B65A-C23B31DA44FD} No Task File <==== ATTENTION
Task: {E44C49DE-E6B8-4747-BDA2-0F2D3EB3C668} - \{AAEC321C-8321-4696-AB05-970E095EE730} No Task File <==== ATTENTION
Task: {E68DC74F-8388-42EC-9BBA-83729B62E746} - \{B0A34D76-4BA5-4D93-8B54-E1AE500088F8} No Task File <==== ATTENTION
Task: {EA1FC095-F3EA-48C7-A6B7-97D78D6DC82C} - \{A508E00C-9295-4AE4-B3A8-21159EF51826} No Task File <==== ATTENTION
Task: {FC8F7B30-1D7C-44C6-AD4A-4B908E3196DE} - \Funmoods No Task File <==== ATTENTION
Task: {FCDE4D2B-ADC7-4184-B918-1810759F0121} - \{7C61E3F3-36EB-4B83-8162-3874293D74A6} No Task File <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\ProgramData\Temp:55B41E6A
AlternateDataStreams: C:\ProgramData\Temp:FB6A21E3
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT2
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT2
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [Power Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [Google Update] => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-12-17] (Google Inc.)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-12-16] (Google Inc.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP ... 1&tsp=5013
SearchScopes: HKCU - DefaultScope {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {443E0BC5-D229-4099-B6E9-6C8515ABD6DA}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=F0B360D81934AADA&affID=119828&tt=160913_c1&tsp=5013
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://pandasecurityr.mystart.com/?sour ... DE37546&q={searchTerms}
SearchScopes: HKCU - {433C5EEC-BA0F-41D0-8455-7B52322DAAC4} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - {443E0BC5-D229-4099-B6E9-6C8515ABD6DA} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3267244&CUI=UN34363159781279643&UM=2
SearchScopes: HKCU - {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
BHO: Apps Hat Madness -> {11111111-1111-1111-1111-110411851155} -> C:\Program Files (x86)\Apps Hat Madness\Apps Hat Madness-bho64.dll (Nero)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
FF Homepage: hxxp://search.conduit.com/?ctid=CT32672 ... 42677ACD96
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =501549&p=
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml
C:\Program Files (x86)\RelevantKnowledge
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF Extension: RelevantKnowledge - C:\Program Files (x86)\RelevantKnowledge\firefox [2013-05-28]
CHR HKLM-x32\...\Chrome\Extension: [mkndcbhcgphcfkkddanakjiepeknbgle] - C:\Program Files (x86)\RelevantKnowledge\rlcm.crx [2013-05-28]
CHR HKLM-x32\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\KATAIB~1\AppData\Local\Temp\ccex.crx [2013-05-28]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S2 BitGuard; C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [X]
2014-09-30 10:25 - 2014-09-30 10:25 - 00000000 _____ () C:\Windows\SysWOW64\sho71BE.tmp
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [XWidget] => C:\Program Files (x86)\XWidget\xwidget.exe [4904960 2011-12-31] (xwidget.com)
Hosts:
EmptyTemp:
Reboot:
End


kedd szept. 30, 2014 12:39
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Végre.... Azt hittem sosem végzek. Ez valami szörnyű! Lassú is akadozik is.
Én nem tudom hogy mik ezek a gépen, sok programról azt sem tudom, hogy eszik e vagy isszák. A srácok használták leginkább azt már látom... Mindenesetre felhívtam tesómat, és a végeremény ez: mindent leszedhetek. A képeket és a nagyobbik gyerek dokumentumjait mentsem csak le. Ok. Akkor most ezeket lemenem egy külső tárolóba, remélem ha netán bacisak, akkor nem vágja haza az én cuccaimat.
Amiről úgy látod nem kell, felesleges azt dobjuk majd ki a végén...Mindent!

Nagy-nagy köszi tesóm nevében is!
(nem tudom mióta punnyadt ez a gép a szekrényben.....)


kedd szept. 30, 2014 12:14
Profil Privát üzenet küldése
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-09-2014
Ran by kataibalu (administrator) on PCKATAI on 30-09-2014 12:56:18
Running from C:\Users\kataibalu\Desktop
Loaded Profile: kataibalu (Available profiles: kataibalu)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: magyar (Magyarország)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(xwidget.com) C:\Program Files (x86)\XWidget\xwidget.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Visicom Media Inc.) C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
(Visicom Media Inc.) C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [Power Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [37624 2014-05-06] (Panda Security, S.L.)
HKLM-x32\...\Run: [Panda Security URL Filtering] => C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe [235072 2013-04-11] (Visicom Media Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\SysWOW64\userinit.exe,
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [Google Update] => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-12-17] (Google Inc.)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [XWidget] => C:\Program Files (x86)\XWidget\xwidget.exe [4904960 2011-12-31] (xwidget.com)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-1843051283-1028267240-2500299250-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-12-16] (Google Inc.)
HKU\S-1-5-18\...\RunOnce: [panda4_0dn] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_XP] => reg.exe delete "HKCU\Software\panda4_0dn" /f
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_DATA_FOLDER] => cmd.exe /c rmdir "C:\ProgramData\Panda Security URL Filtering" /s /q
HKU\S-1-5-18\...\RunOnce: [panda4_0dn_INSTALL_FOLDER] => cmd.exe /c rmdir "C:\Windows\system32\config\systemprofile\AppData\Local\panda4_0dn" /s /q
HKU\S-1-5-18\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
Startup: C:\Users\kataibalu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
ShortcutTarget: HDDlife.lnk -> C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe (BinarySense, Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP ... 1&tsp=5013
SearchScopes: HKCU - DefaultScope {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {443E0BC5-D229-4099-B6E9-6C8515ABD6DA}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=F0B360D81934AADA&affID=119828&tt=160913_c1&tsp=5013
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://pandasecurityr.mystart.com/?sour ... DE37546&q={searchTerms}
SearchScopes: HKCU - {433C5EEC-BA0F-41D0-8455-7B52322DAAC4} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
SearchScopes: HKCU - {443E0BC5-D229-4099-B6E9-6C8515ABD6DA} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3267244&CUI=UN34363159781279643&UM=2
SearchScopes: HKCU - {8BCAD05E-FC89-4800-8F3F-5D133AB6C2E7} URL = http://search.yahoo.com/search?fr=chr-g ... =501549&p={searchTerms}
BHO: Apps Hat Madness -> {11111111-1111-1111-1111-110411851155} -> C:\Program Files (x86)\Apps Hat Madness\Apps Hat Madness-bho64.dll (Nero)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll ()
BHO: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost64.dll (BestOffers)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID bejelentkezési segítség -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Free Games 115 -> {F4BD3468-8241-488D-B013-953D090FADCE} -> C:\Program Files (x86)\Free Games 115\ScriptHost.dll (BestOffers)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll ()
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll ()
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 212.24.187.210 212.24.160.1

FireFox:
========
FF ProfilePath: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default
FF Homepage: hxxp://search.conduit.com/?ctid=CT32672 ... 42677ACD96
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =501549&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\kataibalu\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF user.js: detected! => C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\kataibalu\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\kataibalu\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\adawaretb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\sztaki-en-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\vatera.xml
FF Extension: ADDICT-THING - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\506747055cde6@506747055ce1f.com [2012-09-29]
FF Extension: Apps Hat Madness - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\f87f900b-ebb4-498d-a3ac-077cfae44103@52f83dfc-3a94-49d3-b0ff-c4470a645eb5.com [2013-12-26]
FF Extension: Free Games 115 - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\freegames115@BestOffers [2013-12-26]
FF Extension: Browser Backgrounds - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{3e0c7f3a-3f50-4730-beb5-4a9a10e2831c} [2013-07-31]
FF Extension: Systweak - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{424e2f9c-eb5b-4b51-87e5-5831781bc515} [2013-10-15]
FF Extension: Panda Security Toolbar - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} [2013-08-16]
FF Extension: Address Bar Search - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2013-08-31]
FF Extension: DivX Web Player - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\DivXWebPlayer@divx.com.xpi [2012-06-20]
FF Extension: Collusion - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2012-03-05]
FF Extension: TinEye Reverse Image Search - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\tineye@ideeinc.com.xpi [2012-01-02]
FF Extension: YouTube to MP3 - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\youtube2mp3@mondayx.de.xpi [2012-01-02]
FF Extension: FlashGot - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2012-01-02]
FF Extension: Stylish - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2012-12-09]
FF Extension: Smartest Bookmarks Bar - C:\Users\kataibalu\AppData\Roaming\Mozilla\Firefox\Profiles\nkrryhgm.default\Extensions\{b442f4c0-c292-4998-aabe-48608a73ba75}.xpi [2012-12-09]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-05-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF Extension: RelevantKnowledge - C:\Program Files (x86)\RelevantKnowledge\firefox [2013-05-28]

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll ()
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\kataibalu\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\kataibalu\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\kataibalu\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Profile: C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\kataibalu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR HKCU\...\Chrome\Extension: [dhoigiahaahldpgnbbimfecackdgccna] - C:\Users\kataibalu\AppData\Local\CRE\dhoigiahaahldpgnbbimfecackdgccna.crx [2013-10-04]
CHR HKLM-x32\...\Chrome\Extension: [abckmpjbfjfoabjhefcbpdckdfikghpp] - C:\Users\kataibalu\AppData\Roaming\freegames115\freegames115.crx [2013-10-31]
CHR HKLM-x32\...\Chrome\Extension: [dhoigiahaahldpgnbbimfecackdgccna] - C:\Users\kataibalu\AppData\Local\CRE\dhoigiahaahldpgnbbimfecackdgccna.crx [2013-10-04]
CHR HKLM-x32\...\Chrome\Extension: [hloebfkfdbhcjffbmbigmbfdlbojpcla] - C:\ProgramData\ADDICT-THING\hloebfkfdbhcjffbmbigmbfdlbojpcla.crx [2012-09-29]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-01-17]
CHR HKLM-x32\...\Chrome\Extension: [mkndcbhcgphcfkkddanakjiepeknbgle] - C:\Program Files (x86)\RelevantKnowledge\rlcm.crx [2013-05-28]
CHR HKLM-x32\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\KATAIB~1\AppData\Local\Temp\ccex.crx [2013-05-28]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [872552 2011-08-02] (Acer Incorporated)
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [36456 2011-05-30] (Acer Incorporated)
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [845640 2012-02-28] (BinarySense, Inc.)
R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe [141560 2014-05-05] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [61688 2014-05-22] (Panda Security, S.L.)
R2 panda_url_filteringService; C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe [244792 2014-05-05] (Visicom Media Inc.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe [38136 2014-05-06] (Panda Security, S.L.)
S2 BitGuard; C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2012-03-17] (DT Soft Ltd)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-05-02] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-05-02] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-05-02] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-05-02] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-05-02] (Panda Security, S.L.)
S4 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-05-02] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-05-02] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-05-02] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-05-02] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-05-02] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-05-02] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-05-02] (Panda Security, S.L.)
R3 panda_url_filteringd; C:\ProgramData\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [160800 2014-05-05] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [119840 2014-05-05] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-05-05] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [121888 2014-05-05] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-05-06] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [106016 2014-05-05] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [68608 2005-08-10] (Protection Technology) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2005-05-16] (Protection Technology) [File not signed]
S4 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [89600 2005-11-03] (Protection Technology) [File not signed]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-30 12:56 - 2014-09-30 12:58 - 00030977 _____ () C:\Users\kataibalu\Desktop\FRST.txt
2014-09-30 12:55 - 2014-09-30 12:56 - 00000000 ____D () C:\FRST
2014-09-30 12:36 - 2014-09-30 12:36 - 00461712 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-30 12:21 - 2014-09-30 12:21 - 00111640 _____ () C:\Users\kataibalu\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-30 12:18 - 2014-09-30 12:21 - 02108928 ____N (Farbar) C:\Users\kataibalu\Desktop\FRST64.exe
2014-09-30 12:13 - 2014-09-30 12:37 - 00000090 _____ () C:\Windows\setupact.log
2014-09-30 12:13 - 2014-09-30 12:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-30 10:25 - 2014-09-30 10:25 - 00000000 _____ () C:\Windows\SysWOW64\sho71BE.tmp
2014-09-30 07:21 - 2014-09-30 10:23 - 00000000 ____D () C:\ff5208769fa194c59513c804ec57046e
2014-09-30 07:18 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-30 07:18 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-30 07:18 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-30 07:18 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-30 07:18 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-30 07:18 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-30 07:18 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-30 07:18 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-30 07:18 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-30 07:18 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-30 07:18 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-30 07:18 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-30 07:18 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-30 07:18 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-30 07:18 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-30 07:18 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-30 07:18 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-30 07:18 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-30 07:18 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-30 07:18 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-30 07:18 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-30 07:18 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-30 07:18 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-30 07:18 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-30 07:18 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-30 07:18 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-30 07:18 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-30 07:18 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-30 07:18 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-30 07:18 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-30 07:18 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-30 07:18 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-30 07:18 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-30 07:18 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-30 07:18 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-30 07:18 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-30 07:18 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-30 07:18 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-30 07:18 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-30 07:18 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-30 07:18 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-30 07:18 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-30 07:18 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-30 07:18 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-30 07:18 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-30 07:18 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-30 07:18 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-30 07:18 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-30 07:18 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-30 07:17 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-30 07:17 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-30 07:17 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-30 07:08 - 2014-09-30 07:16 - 00000000 ____D () C:\f765e40a59dad230d8c298838fd47e7f
2014-09-30 06:41 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-30 06:41 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-29 19:44 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-29 19:44 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-29 19:44 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-29 19:44 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-29 19:44 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-29 19:37 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-29 19:37 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-29 18:50 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-29 18:50 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-29 18:50 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-29 18:50 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-29 18:50 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-30 12:54 - 2012-06-19 11:44 - 01546368 _____ () C:\Windows\WindowsUpdate.log
2014-09-30 12:53 - 2014-05-10 22:41 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA.job
2014-09-30 12:50 - 2009-07-14 06:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-30 12:50 - 2009-07-14 06:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-30 12:37 - 2014-05-10 22:46 - 00001028 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-30 12:37 - 2014-05-10 22:46 - 00001024 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-30 12:37 - 2013-08-16 10:32 - 00000000 ____D () C:\ProgramData\Panda Security URL Filtering
2014-09-30 12:37 - 2013-02-18 12:20 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-09-30 12:37 - 2011-11-22 20:48 - 00000000 ____D () C:\ProgramData\Temp
2014-09-30 12:37 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-30 12:04 - 2013-03-18 19:45 - 00000000 ____D () C:\Users\kataibalu\AppData\Roaming\Media Player Classic
2014-09-30 12:02 - 2012-02-13 23:09 - 00000000 ____D () C:\Users\kataibalu\AppData\Local\CrashDumps
2014-09-30 11:47 - 2011-11-22 20:50 - 00695018 _____ () C:\Windows\system32\perfh00E.dat
2014-09-30 11:47 - 2011-11-22 20:50 - 00178030 _____ () C:\Windows\system32\perfc00E.dat
2014-09-30 11:47 - 2009-07-14 07:13 - 01661568 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-30 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-09-30 10:27 - 2014-05-07 08:29 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-30 10:24 - 2012-05-14 09:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-30 07:14 - 2012-01-13 00:46 - 01633118 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-30 07:08 - 2013-08-04 11:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-30 07:07 - 2013-12-26 16:12 - 00000000 ____D () C:\Program Files (x86)\Apps Hat Madness
2014-09-30 06:43 - 2011-12-29 05:38 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 00:36

==================== End Of Log ============================


kedd szept. 30, 2014 12:07
Profil Privát üzenet küldése
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Re: Nagytakarítás....
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2014
Ran by kataibalu at 2014-09-30 13:00:37
Running from C:\Users\kataibalu\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Cloud Antivirus (Enabled - Up to date) {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
AS: Panda Cloud Antivirus (Enabled - Up to date) {8F3797EF-DB90-F073-3C72-40C753554CD1}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Cloud Firewall (Disabled) {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«City Car Driving» version 1.3.1 (HKLM-x32\...\{CC457F3D-5CDE-4CE8-9685-90A4EDE81374}_is1) (Version: - Forward Development)
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
ActiveX контрола на Windows Live Mesh за отдалечени връзки (HKLM-x32\...\{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}) (Version: 15.4.5722.2 - Microsoft Corporation)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation)
AddictThing (HKLM\...\AddictThing) (Version: 1.0 - Premium)
ADDICT-THING (HKLM-x32\...\{71277DC4-4217-462A-9FF4-62D7815B2C69}) (Version: - AddictThing) <==== ATTENTION
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.7.0.2090 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.2.1.650 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.2.1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Premiere Elements 9 (HKLM-x32\...\PremElem90) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 9 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.10) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2011.0524.2352.41027 - ATI) Hidden
Apps Hat Madness (HKLM-x32\...\Apps Hat Madness) (Version: 1.32.153.0 - Nero)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{D6A47464-38FF-379F-C683-9DA1F8371810}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Bad Piggies (HKLM-x32\...\{32941438-AD79-4EF4-B7E4-86039E41B4D3}) (Version: 1.0.0 - Rovio)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0524.2352.41027 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0524.2352.41027 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0524.2352.41027 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help English (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help French (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help German (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
ccc-utility64 (Version: 2011.0524.2352.41027 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.27 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.41.1.51 - Conexant)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Control ActiveX del Windows Live Mesh per a connexions remotes (HKLM-x32\...\{76C064E2-BB99-4453-8FDA-42BC01AD0734}) (Version: 15.4.5722.2 - Microsoft Corporation)
Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Crazy Chicken Kart 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Elements 9 Organizer (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Empire Earth (HKLM-x32\...\{2447500B-22D7-47BD-9B13-1A927F43A267}) (Version: - )
ETDWare PS/2-X64 8.0.6.3_WHQL (HKLM\...\Elantech) (Version: 8.0.6.3 - ELAN Microelectronic Corp.)
Euro Truck Simulator 1.00 (HKLM-x32\...\Euro Truck Simulator) (Version: 1.00 - )
Evernote v. 4.5.1 (HKLM-x32\...\{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}) (Version: 4.5.1.5451 - Evernote Corp.)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Filzip 3.06 (HKLM-x32\...\Filzip 3.0.6.93_is1) (Version: 3.0.6 - Philipp Engel)
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Fooz Kids (HKLM-x32\...\FoozKids) (Version: 3.0.8 - FUHU, Inc.)
Fooz Kids (x32 Version: 3.0.8 - FUHU, Inc.) Hidden
Fooz Kids Platform (HKLM-x32\...\{8D68CE08-9A14-4B7B-9857-3C646A2F34C7}) (Version: 2.1 - FUHU, Inc.)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Free Games 115 (HKLM-x32\...\Free Games 115) (Version: 1.0.0.0 - Zula Games) <==== ATTENTION
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKCU\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HDDlife Pro 4.0 (HKLM-x32\...\{99BBE660-D186-48CE-BB85-E7CAB2BBBB20}) (Version: 4.0.183 - BinarySense Inc.)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Packard Bell)
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jewel Match 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kontrola Windows Live Mesh ActiveX za daljinske veze (HKLM-x32\...\{19CBDE24-2761-49A5-816B-D2BA65D0CA8D}) (Version: 15.4.5722.2 - Microsoft Corporation)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation)
Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.7 - Packard Bell)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Kattintásra 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4999.1042 - Microsoft Corporation)
Microsoft Office Kattintásra 2010 (Version: 14.0.4999.1042 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2007 (HKLM-x32\...\PROR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Magyar változat (HKLM-x32\...\{90140011-0066-040E-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 22.0 (x86 hu) (HKLM-x32\...\Mozilla Firefox 22.0 (x86 hu)) (Version: 22.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MTA:SA v1.3.2 (HKLM-x32\...\MTA:SA 1.3) (Version: v1.3.2 - Multi Theft Auto)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.8.11000.8.100 - Nero AG)
Nero BackItUp 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.6.12700.0.7 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.19900.9.11 - Nero AG) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.2.10500.2.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.5.10300 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{68AFA3A7-9265-4ABD-994A-ACA413E3715C}) (Version: 10.6.10300 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 - Nero AG)
Nero RescueAgent 10 Help (CHM) (x32 Version: 10.6.10700 - Nero AG) Hidden
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.2.11600.14.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.10900.31.0 - Nero AG)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
Optimizer Pro v3.0 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.0 - PC Utilities Pro) <==== ATTENTION
OptimizerPro1 (HKLM\...\OptimizerPro1) (Version: 1.0 - Premium) <==== ATTENTION
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
Packard Bell Games (HKLM-x32\...\WildTangent packardbell Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Packard Bell Power Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3008 - Packard Bell)
Packard Bell Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3504 - Packard Bell)
Packard Bell Registration (HKLM-x32\...\Packard Bell Registration) (Version: 1.04.3504 - Packard Bell)
Packard Bell ScreenSaver (HKLM-x32\...\Packard Bell Screensaver) (Version: 1.1.0915.2011 - Packard Bell )
Packard Bell Social Networks (HKLM-x32\...\InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}) (Version: 3.0.3106 - CyberLink Corp.)
Packard Bell Social Networks (x32 Version: 3.0.3106 - CyberLink Corp.) Hidden
Packard Bell Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3500 - Packard Bell)
Panda Cloud Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 3.0.1 - Panda Security)
Panda Cloud Antivirus (Version: 7.05.00.0000 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.01 - Panda Security)
Panda Devices Agent (x32 Version: 1.04.00 - Panda Security) Hidden
Panda Security Toolbar (HKLM-x32\...\pandasecuritytb) (Version: 4.2.0.10 - Panda Security)
Panda Security URL Filtering (HKLM-x32\...\Panda Security URL Filtering) (Version: 2.0.1.4 - Panda Security)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30122 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Skyscraper Simulator (HKLM-x32\...\Skyscraper Simulator) (Version: - )
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Sony Ericsson Update Engine (HKLM-x32\...\Update Engine) (Version: 2.13.5.201304180917 - Sony Ericsson Communications AB)
Sony PC Companion 2.10.165 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.165 - Sony)
Torchlight (x32 Version: 2.2.0.97 - WildTangent) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_PROR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_PROR_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_PROR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{F3F83933-75FC-4B60-84F2-3F8FA63D042E}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_PROR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_PROR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
Video Web Camera (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.1904 - CyberLink Corp.)
Video Web Camera (x32 Version: 1.0.1904 - CyberLink Corp.) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
War Thunder Launcher 1.0.1.269 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Welcome Center (HKLM-x32\...\Packard Bell Welcome Center) (Version: 1.02.3504 - Packard Bell)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
XWidget Ver1.3 (HKLM-x32\...\{A6E16998-A241-438F-A916-5CD59B5506C0}_is1) (Version: - XWidget Software)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\kataibalu\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843051283-1028267240-2500299250-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kataibalu\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

11-08-2014 10:03:19 avast! antivirus system restore point
11-08-2014 10:18:46 Windows Update
11-08-2014 13:32:38 avast! antivirus system restore point
11-08-2014 16:16:25 Windows Update
15-08-2014 06:13:05 Windows Update
17-08-2014 18:40:59 Windows Update
21-08-2014 19:05:19 Windows Update
21-08-2014 23:11:15 Windows Update
29-09-2014 17:09:51 Windows Update
30-09-2014 04:37:53 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {01440892-5FCB-4586-AD15-DB3B3DD028C3} - \SidebarExecute No Task File <==== ATTENTION
Task: {06CE77A7-E0CC-41D4-950F-EB04FAEB1A53} - \EPUpdater No Task File <==== ATTENTION
Task: {076A3B0E-8F3E-4C9D-8BD9-7E8DA2FD3935} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {310E8600-8EA8-4FEC-98A0-EC91CF0A1113} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {34081E6F-21E4-4048-9CD0-7257AABE5C6C} - \{6C43388F-411D-4B7A-A0FC-D8C84E9B291B} No Task File <==== ATTENTION
Task: {4CBECF60-B6FD-4EE3-B934-56BF5B2DC11C} - \AdobeAAMUpdater-1.0-PCKATAI-kataibalu No Task File <==== ATTENTION
Task: {4FF36AC9-92A6-4B23-8350-830ABD7F97B6} - \{509D5406-D46C-48C1-B2D9-D0F2683F9B46} No Task File <==== ATTENTION
Task: {50F624A8-F608-4510-9BF6-6405EE87AA8E} - \BitGuard No Task File <==== ATTENTION
Task: {590D177C-0BF0-47AB-9B00-A430CEF1C76D} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {592AD55B-412E-4A23-95D7-2224D33A89BC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-17] (Google Inc.)
Task: {59EF4FF0-720F-49AC-BA01-7CF3EBD6BE3C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-16] (Google Inc.)
Task: {778381D1-D41F-4B82-B8CD-CCE98AAD9525} - \{7606FFD7-F2D1-43BE-983C-BDB24CF0299A} No Task File <==== ATTENTION
Task: {A82FCAEF-3F59-4E49-9473-778BA3F59F1A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AD790C71-8BFD-462D-8891-90B123EA90BD} - \NBAgent No Task File <==== ATTENTION
Task: {B5EDFD5F-5C78-453A-8DEB-5AF77E4EA23D} - \{F5F79506-1932-46DB-B08D-11DDFE8C154E} No Task File <==== ATTENTION
Task: {CFE1DE51-554E-462E-A478-3D52287890D1} - \{34E38A52-2B42-4EBA-8CBE-2E814DC2FADB} No Task File <==== ATTENTION
Task: {D33D5569-E8F1-4C20-86AC-57C180FADC22} - \{A93F3DCC-743F-490A-B65A-C23B31DA44FD} No Task File <==== ATTENTION
Task: {E44C49DE-E6B8-4747-BDA2-0F2D3EB3C668} - \{AAEC321C-8321-4696-AB05-970E095EE730} No Task File <==== ATTENTION
Task: {E68DC74F-8388-42EC-9BBA-83729B62E746} - \{B0A34D76-4BA5-4D93-8B54-E1AE500088F8} No Task File <==== ATTENTION
Task: {EA1FC095-F3EA-48C7-A6B7-97D78D6DC82C} - \{A508E00C-9295-4AE4-B3A8-21159EF51826} No Task File <==== ATTENTION
Task: {FC8F7B30-1D7C-44C6-AD4A-4B908E3196DE} - \Funmoods No Task File <==== ATTENTION
Task: {FCDE4D2B-ADC7-4184-B918-1810759F0121} - \{7C61E3F3-36EB-4B83-8162-3874293D74A6} No Task File <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001Core.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1843051283-1028267240-2500299250-1001UA.job => C:\Users\kataibalu\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-05-25 09:50 - 2011-05-25 09:50 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-03-22 20:17 - 2011-03-22 20:17 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-04-12 19:23 - 2013-04-12 19:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\SQLite3.dll
2012-02-17 09:08 - 2009-08-12 13:09 - 00077824 _____ () C:\Program Files (x86)\XWidget\Res\Lib\lib.dll
2011-08-17 17:04 - 2011-08-17 17:04 - 00040960 _____ () C:\Program Files (x86)\BinarySense\HDDlife 4\laRTLu.dll
2011-08-17 17:04 - 2011-08-17 17:04 - 00130560 _____ () C:\Program Files (x86)\BinarySense\HDDlife 4\CrashRpt.dll
2014-09-30 07:00 - 2014-09-23 06:06 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libglesv2.dll
2014-09-30 07:00 - 2014-09-23 06:06 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libegl.dll
2014-09-30 07:01 - 2014-09-23 06:07 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-30 07:01 - 2014-09-23 06:07 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-30 07:00 - 2014-09-23 06:06 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
2014-09-30 07:01 - 2014-09-23 06:07 - 14891848 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\ProgramData\Temp:55B41E6A
AlternateDataStreams: C:\ProgramData\Temp:FB6A21E3
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT
AlternateDataStreams: C:\Users\kataibalu\Application Data:NT2
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT
AlternateDataStreams: C:\Users\kataibalu\AppData\Roaming:NT2

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Facebook Update => "C:\Users\kataibalu\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: uTorrent => "C:\Users\kataibalu\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

========================= Accounts: ==========================

ASPNET (S-1-5-21-1843051283-1028267240-2500299250-1004 - Limited - Enabled)
kataibalu (S-1-5-21-1843051283-1028267240-2500299250-1001 - Administrator - Enabled) => C:\Users\kataibalu
Rendszergazda (S-1-5-21-1843051283-1028267240-2500299250-500 - Administrator - Disabled)
Vendég (S-1-5-21-1843051283-1028267240-2500299250-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo alagútkezelő adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/30/2014 00:39:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/30/2014 11:39:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/30/2014 11:23:40 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Csak információ.
(Patch task for {90140011-0066-040E-0000-0000000FF1CE}): DownloadLatest Failed: Jelenleg nincs aktív hálózati kapcsolat. A háttérben futó intelligens átviteli szolgáltatás (BITS) egy csatoló csatlakoztatásakor újra próbálkozik.

Error: (09/30/2014 10:30:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/20/2014 03:43:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/30/2014 09:09:06 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Csak információ.
(Patch task for {90140011-0066-040E-0000-0000000FF1CE}): DownloadLatest Failed: Jelenleg nincs aktív hálózati kapcsolat. A háttérben futó intelligens átviteli szolgáltatás (BITS) egy csatoló csatlakoztatásakor újra próbálkozik.

Error: (08/27/2014 09:11:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/22/2014 00:47:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: Panda_URL_Filtering.exe, verzió: 1.0.1.104, időbélyeg: 0x5150b348
A hibát okozó modul neve: netprofm.dll_unloaded, verzió: 0.0.0.0, időbélyeg: 0x4a5bda75
Kivételkód: 0xc0000005
Hiba pozíciója: 0x72002505
A hibát okozó folyamat azonosítója: 0xe9c
A hibát okozó alkalmazás indításának időpontja: 0xPanda_URL_Filtering.exe0
A hibát okozó alkalmazás elérési útja: Panda_URL_Filtering.exe1
A hibát okozó modul elérési útja: Panda_URL_Filtering.exe2
Jelentés azonosítója: Panda_URL_Filtering.exe3

Error: (08/21/2014 08:33:01 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.DirectoryServices, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies . The error returned was Error: The specified assembly is not installed.
.

Error: (08/21/2014 08:32:58 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.Deployment, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies . The error returned was Error: The specified assembly is not installed.
.


System errors:
=============
Error: (09/30/2014 00:47:04 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: A következő szolgáltatás nem indul el: Windows Update.

Error: (09/30/2014 00:42:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Letelt egy időkorlát (30000 ms) a(z) Microsoft .NET Framework NGEN v4.0.30319_X86 szolgáltatás kapcsolódására való várakozás közben.

Error: (09/30/2014 00:39:33 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (09/30/2014 00:37:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: A szolgáltatás (BitGuard) a következő hiba következtében leállt:
%%2

Error: (09/30/2014 00:32:48 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: A(z) Windows Update szolgáltatás nem állt le megfelelően egy leállítás előtti esemény fogadását követően.

Error: (09/30/2014 11:40:09 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (09/30/2014 11:39:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: A szolgáltatás (BitGuard) a következő hiba következtében leállt:
%%2

Error: (09/30/2014 10:37:43 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (09/30/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: A hívás (ScRegSetValueExW) sikertelen (a hívás célja: FailureActions) a következő hiba miatt:
%%5

Error: (09/30/2014 10:30:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: A szolgáltatás (BitGuard) a következő hiba következtében leállt:
%%2


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-07-12 16:21:47.781
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-12 16:21:47.184
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD E-300 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 56%
Total physical RAM: 1770.9 MB
Available physical RAM: 776.43 MB
Total Pagefile: 3541.8 MB
Available Pagefile: 1783.63 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:279.99 GB) (Free:77.45 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 1010CB4B)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=280 GB) - (Type=07 NTFS)

==================== End Of Log ============================


kedd szept. 30, 2014 12:05
Profil Privát üzenet küldése
gyémánt tag
Avatar

Csatlakozott: pén. júl. 21, 2006 16:24
Hozzászólások: 1362
Hozzászólás Re: Nagytakarítás....
Igen.
Előtte szeméttörlés, utána defrag.
Aztán kezdd előlről és csináld meg vagy háromszor.
Adwcleanert ki ne hagyd és a víruskergetőt is ellenőrizd.
Nagyjából ennyi. Fél nap.
Persze ha van benne puposkondi Kép akkor ez sem segít.

És igen, Stell tanácsait és kéréseit mindenképpen vedd figyelembe!


kedd szept. 30, 2014 9:47
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Nagytakarítás....
Udv
Ez nem ijen egyszeu, ahogy gondolod.
Tolds le az Asztalra az Op rendszer szerint,32-64 bites- az FRST programot
http://www.bleepingcomputer.com/downloa ... scan-tool/

Ha win7-8 jobb klik futattni munt rendszergazda.
es klik SCAN, az FRST.txt es az Adittion.txt naplojat tedd ide.


kedd szept. 30, 2014 9:47
Profil Privát üzenet küldése Honlap
ezüst tag
Avatar

Csatlakozott: kedd szept. 30, 2014 9:14
Hozzászólások: 40
Hozzászólás Nagytakarítás....
Sziasztok!
Testvérem elhozta a gépét, hogy csináljak vele valamit: nagyon lassú, lefagy.
Gondolom vírus is okozhatja. Mivel kezdjem? Maldwarebyte?
Köszi a segítséget előre is


kedd szept. 30, 2014 9:19
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 30 hozzászólás ] 

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 5 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség