De valószínüleg nem a két (/f és /r) kapcsolóval. Ezek javítást, és mélyebb vizsgálatot is csinálnak.

Nem is kell annyi pénz, 500 GB-osból van egy rakás 10 eFt alatt:
http://www.arukereso.hu/merevlemez-c3103/f:ar=6450-10832.57/

Ne várj sokáig, mert nem biztos a jóslat. Ami biztos, hogy halálán van a winchesterd.

Jaj, ahogy elindul így már ismerős volt, csak még sosem indítottam így. Ezt időnként végigfuttatom.

Oké "beleélem " magam. De nekem az a 10-15e Ft is sok, így amíg lehet marad ez. Remélem akkor kb 1 másfél évig lesz még gépem.

De, sajnos igen. Azt persze nem tudom, hogy a szoftver milyen pontosan mér, de mint irányadat, biztos hogy figyelemreméltó.

Éld magad bele, hogy össze fog omlani a winchestered. Ha kivárod a végét, lehet, hogy már az adataid sem tudod elmenteni.

Én a következőket javaslom:

1. Össze kell gyűjteni a pénzt egy másikra (szerencsére nem drágák).
2. Lehet, hogy egy nagyobbat érdemes berakni, ha hely gondjaid voltak.
3. Te is meg tudod csinálni, nem kell megijedni.
4. Meg kell venni az újat (a csatlakozó felület azonos legyen IDE, SATA), de olyan márkát ne nagyon, mint ami most halódik. Vannak itt fórumtársak, biztos, hogy tudnak ajánlani márkát, típust. 10-15 eFt-ból kijössz.
5. A rendszer particiót ki kell pucolni (CCleaner, stb), töredezettségmentesítés sem árt.
6. Valahogy ideiglenesen be kell tenni a gépbe az új HD-t ügyelve a Master-Slave beállításokra (pl a DVD helyére, ha nincs más megoldás).
7. A Win lemezkezeléssel particionálni (hasonlóan, mint az előző volt, vagy esetleg ahogy az újat akarod)
8. Formázni NTFS-re minden particiót.
9. A Ghost-tal átmásolni a C: particiót.
10. A Win-nel átmásolni az összes többit (de lehet a Ghost-tal is).
11. Kivenni a régit, helyébe dugni az újat.
12. Bekapcsolás után működnie kell.

Ne ijesztgess légyszi, ez nem azt jelenti hogy kb. másfél évig még jó lesz? Amúgy ha jól emlékszem tavaly vagy tavaly elött lett kicserélve. Már nem emlékszem. Amúgy nagyon sokat megy a gép, hisz nem sok jobb dolgom van , meg ugye a kapcsolat tartás nekem csak itt a Neten megy.

Futtatás > cmd > és az ablakban chkdsk /f /r

Ha jól emlékszem szóköz is kell bele: chkdsk /f /r
A gép újraindítása után lesz elvégezve, még a Win betöltődése előtt.

Ez az 548 nap elég gázos. Ha tényleg jó, 1000 napnál többet ír. Mennyit futott a HD? Mert ilyesmit csak 800-1000 nap használat után ír.

futtatásba írjam bele: chkdsk /f/r ?

A lemez felületén található 4 hibás szektor.
Futtasd le az chkdsk /f/r
parancsot, igen ez is okozhatot fagyast.

Sikerült!
Teljesítmény 100% Kondíció 58%, becsült hátralévő élettartalom 548 nap, hőmérséklet rendben.
Mondjuk van egy ilyen szöveg:
"A lemez felületén található 4 hibás szektor, mely(ek) tartalma a tartalék területre lett áthelyezve.
A lemez felpörgése során előfordultak problémák 13 alkalommal. Ezt okozhatja merevlemez probléma vagy nagy terhelés (gyenge tápegység).
A lemez felületén található 2 gyenge szektor, mely(ek) későbbi használat során áthelyezésre kerülhet(nek).
Ezen a ponton a merevlemez garanciális cseréje még nem lehetséges, csak ha a kondíció tovább csökken.
Ajánlatos a merevlemez naplójának bizonyos időközönkénti figyelése. A program itt tárolja az esetlegesen előforduló újabb problémákat."
De ahogy nézem ez nem okozhat kerregést, mert elvileg még bírnia kell egy ideig.

Ugye, hogy sikerült.
És az eredmény?

Kedves Stell! Megkérdezhetem, hogy mit látsz ebben? Gondolom sok mindent, de ha időd engedi, megtisztelnél ha pár mondatban elmondod.

Laci programját imént szedtem le, kíváncsi vagyok mit mutat majd.

OTL logfile created on: 2010.10.18. 9:12:12 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\Rendszergazda\Asztal
Windows XP Professional Edition Szervizcsomag 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 71,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 94,00% Paging File free
Paging file location(s): C:\pagefile.sys 1908 3816 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,29 Gb Total Space | 21,45 Gb Free Space | 54,60% Space Free | Partition Type: NTFS
Drive D: | 109,76 Gb Total Space | 101,78 Gb Free Space | 92,73% Space Free | Partition Type: NTFS

Computer Name: COMPUTER921 | User Name: Rendszergazda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010.10.18 09:09:47 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rendszergazda\Asztal\OTL.exe
PRC - [2010.09.07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2009.06.09 10:53:20 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAP7501\PACTray.exe
PRC - [2008.04.14 11:02:18 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.08.09 09:27:52 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe


========== Modules (SafeList) ==========

MOD - [2010.10.18 09:09:47 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rendszergazda\Asztal\OTL.exe
MOD - [2008.04.14 11:00:54 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\ersvc.dll -- (ERSvc)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2007.08.09 09:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2007.06.05 14:20:32 | 000,177,704 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)


========== Driver Services (SafeList) ==========

DRV - [2010.09.07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.09.07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.09.07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.09.07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.09.07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.09.07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.08.20 12:22:34 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.02.11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.11.06 13:13:44 | 000,543,616 | ---- | M] (PixArt Imaging Incorporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GUCI_AVS.sys -- (GUCI_AVS) Generic USB Controller Interface (AVS)
DRV - [2008.07.16 23:01:35 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2008.07.16 15:45:49 | 000,099,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2008.05.27 11:41:46 | 000,122,152 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdm.sys -- (s0017mdm)
DRV - [2008.05.27 11:41:46 | 000,117,672 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017unic.sys -- (s0017unic) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM)
DRV - [2008.05.27 11:41:46 | 000,111,912 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017obex.sys -- (s0017obex)
DRV - [2008.05.27 11:41:46 | 000,090,536 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017bus.sys -- (s0017bus) Sony Ericsson Device 0017 driver (WDM)
DRV - [2008.05.27 11:41:46 | 000,015,016 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdfl.sys -- (s0017mdfl)
DRV - [2008.05.27 11:41:44 | 000,115,496 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mgmt.sys -- (s0017mgmt) Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.27 11:41:44 | 000,025,768 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017nd5.sys -- (s0017nd5) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS)
DRV - [2008.01.24 23:36:16 | 004,127,488 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2007.11.03 01:12:32 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B})
DRV - [2007.07.12 17:49:16 | 000,096,384 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2007.06.25 15:29:50 | 000,500,736 | ---- | M] (Atheros Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZD1211BU.sys -- (ZD1211BU(TP-LINK)) TL-WN422G Wireless USB Adapter Driver(TP-LINK)
DRV - [2007.01.13 11:33:18 | 005,672,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2006.12.26 14:54:35 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2006.11.08 10:45:26 | 000,240,384 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2500usb.sys -- (RT2500USB)
DRV - [2004.12.15 16:18:34 | 000,207,232 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWICH.sys -- (HSFHWICH)
DRV - [2004.12.15 16:18:28 | 000,703,232 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004.12.15 16:18:26 | 001,038,208 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =


IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60076
IE - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1960408961-448539723-1417001333-500\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKU\S-1-5-21-1960408961-448539723-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "chrome://fastdial/content/fastdial.html"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: elemhidehelper@adblockplus.org:1.0.6
FF - prefs.js..extensions.enabledItems: fastdial@telega.phpnet.us:2.23b2
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.4
FF - prefs.js..extensions.enabledItems: quickdrag@mozilla.ktechcomputing.com:2.0.2.1
FF - prefs.js..extensions.enabledItems: resizeabletextarea@bristol.ac.uk:0.1d
FF - prefs.js..extensions.enabledItems: secureLogin@blueimp.net:0.9.3
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5pre.101013a
FF - prefs.js..extensions.enabledItems: {95f24680-9e31-11da-a746-0800200c9a66}:0.1.5.5
FF - prefs.js..extensions.enabledItems: {3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8}:0.9.6
FF - prefs.js..extensions.enabledItems: {44d0a1b4-9c90-4f86-ac92-8680b5d6549e}:0.6.4.2
FF - prefs.js..extensions.enabledItems: {B17C1C5A-04B1-11DB-9804-B622A1EF5492}:1.2.1
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.5
FF - prefs.js..extensions.enabledItems: {cf47767d-5f3a-4e32-9fce-5d79565c9702}:1.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.7.1.3
FF - prefs.js..keyword.URL: "http://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60446&qkw="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.10.08 23:25:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.09.20 15:39:29 | 000,000,000 | ---D | M]

[2010.03.18 12:28:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Extensions
[2010.10.18 09:02:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions
[2010.03.18 13:06:12 | 000,000,000 | ---D | M] (Forecastbar Enhanced) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8}
[2010.08.17 22:24:38 | 000,000,000 | ---D | M] (Gmail Notifier) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{44d0a1b4-9c90-4f86-ac92-8680b5d6549e}
[2010.10.12 14:09:27 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2010.03.18 12:31:02 | 000,000,000 | ---D | M] (Update Notifier) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2010.09.23 18:04:07 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2010.08.29 14:58:29 | 000,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}
[2010.10.15 11:22:12 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.04.16 18:55:06 | 000,000,000 | ---D | M] (LinkExtend) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{cf47767d-5f3a-4e32-9fce-5d79565c9702}
[2010.08.18 13:04:10 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.10.13 17:09:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{dc572301-7619-498c-a57d-39143191b318}
[2010.03.18 12:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\elemhidehelper@adblockplus.org
[2010.07.20 15:04:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\fastdial@telega.phpnet.us
[2010.05.06 21:05:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\firebug@software.joehewitt.com
[2010.03.18 12:38:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\quickdrag@mozilla.ktechcomputing.com
[2010.07.23 13:28:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\radiobar@toolbar
[2008.07.20 18:50:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\resizeabletextarea@bristol.ac.uk
[2010.03.18 12:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\secureLogin@blueimp.net
[2010.03.18 13:02:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\undoclosedtabsbutton@supernova00.biz
[2010.10.13 17:09:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{dc572301-7619-498c-a57d-39143191b318}\modules\extensions
[2008.06.28 22:07:05 | 000,001,899 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\searchplugins\flickr-tags.xml
[2008.06.28 22:07:09 | 000,001,504 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\searchplugins\imdb.xml
[2008.06.28 22:07:15 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\searchplugins\live-search.xml
[2008.06.28 22:12:17 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\searchplugins\torrentz-search.xml
[2010.10.18 09:02:21 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.11 21:56:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.05.11 21:56:42 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.09.16 15:10:25 | 000,000,760 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010.09.16 15:10:25 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\polymeta.xml
[2010.09.16 15:10:25 | 000,001,628 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\sztaki-en-hu.xml
[2010.09.16 15:10:25 | 000,000,974 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\vatera.xml
[2010.09.16 15:10:26 | 000,001,189 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-hu.xml

O1 HOSTS File: ([2010.10.16 12:13:17 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [PACTray] C:\WINDOWS\PixArt\PAP7501\PACTray.exe (PixArt Imaging Incorporation)
O4 - HKU\.DEFAULT..\RunOnce: [AfterPost] C:\WINDOWS\afterpost.cmd ()
O4 - HKU\S-1-5-18..\RunOnce: [AfterPost] C:\WINDOWS\afterpost.cmd ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1 [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Jigsaw%20Puzzle%20Platinum/Images/stg_drm.ocx (SpinTop DRM Control)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/So ... b56986.cab (Solitaire Showdown Class)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messenger ... E_UNO1.cab (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Jigsaw%20Puzzle%20Platinum/Images/armhelper.ocx (ArmHelper Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/Mi ... b56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.24.187.210 212.24.160.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Jelenlegi saját honlap) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.03.18 11:34:26 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.08.21 17:27:03 | 000,000,000 | R--D | M] - D:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} - Security Update for Microsoft .NET Framework 2.0 (KB922770)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vektorgrafikus leképezés (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {233C1507-6A77-46A4-9443-F871F945D258} - Macromedia Shockwave Director 10.1.1
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dinamikus HTML-adatkapcsolások a Javához
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java-osztályok
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player 11
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8FC113D5-64A6-40EE-9A39-DAB4650457A8} - .NET Framework
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {967B098A-042D-4367-BAC9-8BC11684174F} - Security Update for Microsoft .NET Framework 2.0 (KB917283)
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Feladatütemező
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {FE5CECF3-A8A6-4A31-A1EB-8C20409D5281} - .NET Framework
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - lameACM.acm File not found
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)

NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

========== Files/Folders - Created Within 30 Days ==========

[2010.10.18 09:10:17 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Rendszergazda\Asztal\OTL.exe
[2010.10.16 13:07:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.10.15 22:05:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010.10.15 21:57:57 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.10.15 21:54:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Rendszergazda\Recent
[2010.10.15 21:44:23 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.10.15 21:44:23 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.10.15 21:44:21 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.10.15 21:44:20 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.10.15 21:44:18 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.10.15 21:44:18 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.10.15 21:44:18 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.10.15 21:44:03 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.10.15 21:44:03 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010.10.14 14:20:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\FullTiltPoker
[2010.10.14 14:19:58 | 000,000,000 | ---D | C] -- C:\Program Files\Full Tilt Poker
[2010.10.14 13:49:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\cache
[2010.10.08 13:14:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Asztal\Zoli
[2010.10.07 16:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Asztal\Reni
[2010.10.06 09:40:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Asztal\Damaszkusz
[2010.10.05 19:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PhotoGenie
[2010.10.04 10:10:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Asztal\Fuji-kepek
[2010.10.04 10:04:00 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2010.10.04 10:04:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2010.10.04 10:03:59 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2010.10.01 16:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Asztal\1
[2010.10.01 10:24:20 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010.09.30 16:34:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Anvsoft
[2010.09.30 16:34:43 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll
[2010.09.24 15:52:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\PhotoGenie
[2010.09.20 20:40:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Application Data\mresreg
[2010.09.20 20:39:32 | 000,000,000 | ---D | C] -- C:\Program Files\mresreg
[2010.09.20 15:38:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2010.09.18 11:29:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rendszergazda\Dokumentumok\Downloads

========== Files - Modified Within 30 Days ==========

[2010.10.18 09:14:37 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{49EA0899-A39F-40B8-AC48-99304F9B5FCD}.job
[2010.10.18 09:09:47 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rendszergazda\Asztal\OTL.exe
[2010.10.18 09:01:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.10.18 09:00:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.10.18 09:00:30 | 000,235,168 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.17 22:28:04 | 000,001,160 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500UA.job
[2010.10.17 12:28:11 | 000,001,108 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500Core.job
[2010.10.16 12:13:17 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.10.15 21:58:01 | 000,000,336 | RHS- | M] () -- C:\boot.ini
[2010.10.15 21:44:19 | 000,002,904 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.10.15 21:40:53 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Asztal\jelszavak.rtf
[2010.10.15 11:43:05 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.10.13 18:21:28 | 000,002,301 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2010.10.13 16:15:04 | 000,000,948 | ---- | M] () -- C:\WINDOWS\0
[2010.10.13 16:15:04 | 000,000,134 | ---- | M] () -- C:\WINDOWS\False
[2010.10.13 16:15:04 | 000,000,059 | ---- | M] () -- C:\WINDOWS\Times New Roman
[2010.10.11 15:24:25 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.10.10 08:46:24 | 000,030,720 | -H-- | M] () -- C:\Documents and Settings\Rendszergazda\Asztal\photothumb.db
[2010.10.09 14:17:58 | 000,116,736 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.10.09 07:35:56 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.10.05 21:20:28 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\Rendszergazda\Asztal\különbség.rtf
[2010.10.03 18:52:22 | 000,073,043 | ---- | M] () -- C:\WINDOWS\tel055.jpg
[2010.09.30 16:34:43 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll

========== Files Created - No Company Name ==========

[2010.10.15 21:57:58 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010.10.15 21:31:57 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Asztal\jelszavak.rtf
[2010.10.15 11:43:05 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.10.05 21:20:28 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Asztal\különbség.rtf
[2010.10.03 18:53:50 | 000,073,043 | ---- | C] () -- C:\WINDOWS\tel055.jpg
[2010.08.18 17:19:33 | 000,000,258 | ---- | C] () -- C:\WINDOWS\Tri-Mine.Ini
[2010.08.02 20:12:59 | 000,000,138 | ---- | C] () -- C:\WINDOWS\tb50.ini
[2010.08.02 20:12:58 | 000,000,037 | ---- | C] () -- C:\WINDOWS\progman.ini
[2010.07.20 16:45:33 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\ArmAccess.dll
[2010.06.15 11:28:18 | 000,007,144 | ---- | C] () -- C:\WINDOWS\festo.ini
[2010.04.15 13:21:12 | 000,002,157 | ---- | C] () -- C:\WINDOWS\System32\GUCI_AVS.ini
[2010.04.02 11:20:18 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2010.03.29 11:29:02 | 000,002,050 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010.03.29 11:28:45 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2010.03.22 12:29:21 | 000,116,736 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.19 10:38:50 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.18 16:40:36 | 000,000,388 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.03.18 15:03:34 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Application Data\vso_ts_preview.xml
[2010.03.18 13:14:25 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.03.18 13:14:25 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.03.18 13:14:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.03.18 13:14:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.03.18 13:14:21 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.03.18 12:23:13 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010.03.18 12:19:50 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010.03.18 12:16:27 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4764.dll
[2010.03.18 12:03:42 | 000,000,040 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2010.03.18 11:44:27 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\fusioncache.dat
[2008.07.21 08:15:12 | 000,000,263 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2007.04.05 07:33:47 | 000,239,616 | ---- | C] () -- C:\WINDOWS\7-zip32.dll
[2007.03.28 12:48:36 | 000,000,047 | ---- | C] () -- C:\WINDOWS\TransBar.ini
[2006.11.14 14:00:00 | 000,005,581 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2006.04.24 22:43:12 | 000,037,888 | ---- | C] () -- C:\WINDOWS\HWPNPDLL.DLL
[2005.11.14 16:00:00 | 000,049,152 | ---- | C] () -- C:\WINDOWS\achook.dll

========== LOP Check ==========

[2010.07.20 15:37:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AlawarWrapper
[2010.10.15 21:43:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010.09.30 16:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Anvsoft
[2010.06.02 18:30:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Black Blob Studios
[2010.07.10 19:19:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BlitPop
[2010.08.20 12:21:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010.07.20 16:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy3_Madagascar
[2010.07.08 14:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FloodLightGames
[2010.07.07 20:56:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\freshgames
[2010.06.12 18:23:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fugazo
[2010.05.24 08:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kingdom
[2010.05.27 15:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kristanix Games
[2010.04.05 20:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Little Games Company
[2010.04.01 20:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
[2010.06.22 21:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NevoSoft Games
[2010.10.05 19:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PhotoGenie
[2010.07.15 21:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2010.07.03 18:52:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2010.03.18 12:03:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2010.03.30 16:16:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2010.07.15 21:35:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SulusGames
[2010.09.18 11:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010.07.15 21:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\A Gypsy's Tale - The Tower of Secrets
[2010.07.15 21:00:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\AMozilla
[2010.03.20 22:10:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Azuaz Games
[2010.07.17 11:34:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Big Fish Games
[2010.06.05 22:36:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Boomzap
[2010.08.20 12:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\DAEMON Tools Lite
[2010.08.17 17:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\dp3d
[2010.03.20 13:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Dragon Altar Games
[2010.06.14 10:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\ERS G-Studio
[2010.07.08 14:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\FloodLightGames
[2010.07.07 20:56:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\freshgames
[2010.06.14 13:04:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\funkitron
[2010.05.31 21:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\GameInvest
[2010.06.11 21:52:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\GamesCafe
[2010.08.19 18:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\GHISLER
[2010.03.29 12:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Image Zone Express
[2010.03.18 15:30:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\ImgBurn
[2010.07.10 17:08:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\IObit
[2010.04.22 15:48:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\JAlbum
[2010.04.05 20:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Little Games Company
[2010.07.10 15:11:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mariaglorum
[2010.09.20 20:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\mresreg
[2010.07.15 19:58:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Mutant Arcade
[2010.07.15 21:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\PlayFirst
[2010.08.09 22:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\pokerth
[2010.07.17 11:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Silverback Productions
[2010.07.06 22:39:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Skunk Studios
[2010.10.03 20:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\SolSuite
[2010.03.30 16:16:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Sony
[2010.08.18 22:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\SpinTop
[2010.07.07 14:41:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Stardock
[2010.10.06 11:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Steady Recorder
[2010.07.15 21:35:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\SulusGames
[2010.03.20 11:05:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Thinstall
[2010.09.11 21:55:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Vso
[2010.08.17 16:20:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rendszergazda\Application Data\Western Software Technologies
[2010.07.20 11:40:23 | 000,000,372 | ---- | M] () -- C:\WINDOWS\Tasks\MyDefrag v4.3.1 Daily.job
[2010.10.18 09:14:42 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{49EA0899-A39F-40B8-AC48-99304F9B5FCD}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: ATAPI.SYS >
[2008.04.13 11:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 11:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008.04.14 11:01:52 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4BFA2DC223A814CCD1D07C6A0E26C72B -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 11:01:52 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4BFA2DC223A814CCD1D07C6A0E26C72B -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2008.04.14 11:01:58 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=A792F49B07A36D7F64D236C45BAC4A50 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 11:01:58 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=A792F49B07A36D7F64D236C45BAC4A50 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 11:02:00 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=4F6A0B812BD286E97E26DF3E225ABCFB -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 11:02:00 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=4F6A0B812BD286E97E26DF3E225ABCFB -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2010.03.18 12:12:32 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.03.18 12:12:32 | 001,089,536 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.03.18 12:12:32 | 000,434,176 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
[2010.09.07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aavmker4.sys
[2010.09.07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys
[2010.09.07 16:47:16 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon.sys
[2010.09.07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon2.sys
[2010.09.07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswRdr.sys
[2010.09.07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSP.sys
[2010.09.07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswTdi.sys
[2010.08.20 12:22:34 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\system32\drivers\sptd.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6

< End of report >

Bocsi a késésért, de itt van mind a 2 txt

OTL Extras logfile created on: 2010.10.18. 9:12:12 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\Rendszergazda\Asztal
Windows XP Professional Edition Szervizcsomag 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 71,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 94,00% Paging File free
Paging file location(s): C:\pagefile.sys 1908 3816 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,29 Gb Total Space | 21,45 Gb Free Space | 54,60% Space Free | Partition Type: NTFS
Drive D: | 109,76 Gb Total Space | 101,78 Gb Free Space | 92,73% Space Free | Partition Type: NTFS

Computer Name: COMPUTER921 | User Name: Rendszergazda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-1960408961-448539723-1417001333-500\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /k cd (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1 -- [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
"AntiVirusOverride" = 1 -- [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
"FirewallOverride" = 1 -- [2010.10.03 10:24:48 | 000,000,000 | ---D | M]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1 -- [2010.10.03 10:24:48 | 000,000,000 | ---D | M]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe" = D:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.2 -- (Sony Creative Software Inc.)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"D:\Program Files\totalcmd\TOTALCMD.EXE" = D:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"D:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe" = D:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe:*:Enabled:Media Player Classic -- (Gabest)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"D:\Game\PokerTH\pokerth.exe" = D:\Game\PokerTH\pokerth.exe:*:Enabled:pokerth -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live feltöltőeszköz
"{20749F76-4228-43AD-8AB5-E7B20D8040C4}" = hph_readme
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v. 1.3.1249.0
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{34A350D1-64FB-36D8-9D0C-1CD8E392DBA5}" = Google Talk Plugin
"{350C940e-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36DC3E2F-CD8C-4953-9E8F-9A1916D10AA1}" = hph_software
"{3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1" = VSO Image Resizer 3.0.1.76
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C335AD4-6821-4028-9A6C-13943762DB55}" = Convert X to DVD 3.4.7.121
"{5D63D27F-09D7-4420-9479-DD247CC31496}" = Windows Live Essentials
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{6D431157-ED9D-4AB1-A2C9-1FAA0A04419F}" = Windows Live Messenger
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{733EB793-0840-4D69-97AA-6934FC79DB16}" = Windows Live bejelentkezési segéd
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{8FC113D5-64A6-40EE-9A39-DAB4650457A8}" = Microsoft .NET Framework 1.1 Hungarian Language Pack
"{9011040E-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9EB1504E-FD95-4BCD-8E93-B4039F59C469}" = Sony Ericsson Media Manager 1.2
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1038-7B44-A81000000003}" = Adobe Reader 8.1.0 - Hungarian
"{ACCCEE83-B49B-4964-8A4F-378B8FBC9F75}" = hph_ProductContext
"{B19F9155-9337-4807-B5EF-ED471DDB2CCE}" = hph_software_req
"{BE365801-FB4B-49D7-87D2-9477EE371F1C}" = D1300_Help
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C13F11D1-00BA-44DF-B626-35E1C03F85E5}" = D1300
"{C1FD146D-230B-421B-B747-E00B6AC83465}" = Macromedia Shockwave Player
"{C6A0FD8A-F107-44CA-AA1B-49341936F76A}" = Canyon USB2.0 PC Camera(0050.2009.1224.3006)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D2A3C9D5-0B56-4656-8277-7EDC65D62B6E}" = HP Photosmart and Deskjet 7.0 Software (hun)
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{E0561737-873D-43D1-A6FE-7B23B8EA4449}" = Jalbum
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F3CA9611-CD42-4562-ADAB-A554CF8E17F1}" = Microsoft Web Services Enhancements 2.0 SP3
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FE5CECF3-A8A6-4A31-A1EB-8C20409D5281}" = Microsoft .NET Framework 2.0 Language Pack - HUN
"7-Zip" = 7-Zip 4.42
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agytorna_is1" = Agytorna
"AnyDVD" = AnyDVD
"Atlantis Quest" = Atlantis Quest
"AutoItv3" = AutoIt v3.2.10.0
"avast5" = avast! Free Antivirus
"Big money deluxe1.22" = Big money deluxe
"BoXiKoN" = BoXiKoN (remove only)
"CloneCD" = CloneCD
"CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_006A1025" = SoftV90 Data Fax Modem with SmartCP
"CornerChaos" = CornerChaos (remove only)
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.20
"Farm Frenzy 3: Madagascar" = Farm Frenzy 3: Madagascar
"FinePix Genie_is1" = FUJIFILM MyFinePix Studio 1.0
"FotoMix" = Digital Photo Software FotoMix 7.4
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"ie8" = Windows Internet Explorer 8
"ImgBurn" = ImgBurn
"InstallShield_{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD Ultra
"IrfanView" = IrfanView (remove only)
"Joemino 2.0_is1" = Joemino 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.8.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Maxi Dice" = Maxi Dice
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - HUN" = Microsoft .NET Framework 2.0 Language Pack - HUN
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"MyDefrag v4.3.1_is1" = MyDefrag v4.3.1
"Nero8Lite_is1" = Nero 8 Lite 8.3.6.0
"Picasa 3" = Picasa 3
"PokerTH 0.7.1" = PokerTH
"Ranch Rush 2 Collectors Edition 1.00" = Ranch Rush 2 Collectors Edition 1.00
"RealAlt_is1" = Real Alternative 2.0.2
"SolSuite" = SolSuite
"Steady Recorder_is1" = Steady Recorder 2.6.1
"Super SpongeBob Collapse!" = Super SpongeBob Collapse!
"Texas Holdem Poker 3D Deluxe Edition DeLEGiON_is1" = Texas Holdem Poker 3D Deluxe Edition v1 0 DeLEGiON
"The Fifth Gate ." = The Fifth Gate .
"The KMPlayer" = The KMPlayer (remove only)
"TinyPDF_is1" = TinyPDF
"Totalcmd" = Total Commander (Remove or Repair)
"Unlocker" = Unlocker 1.8.8
"Winamp" = Winamp
"WinAVI Video Converter 9.09.0" = WinAVI Video Converter 9.0
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"ZOODomino_is1" = ZOODomino

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2010.09.17. 2:39:19 | Computer Name = COMPUTER921 | Source = crypt32 | ID = 131080
Description = Nem sikerült lekérni az automatikus frissítés segítségével a külső
féltől származó legfelső szintű listát a következőtől: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>.
Hiba: A művelet a határidő túllépése miatt nem lett befejezve.

Error - 2010.09.24. 10:00:16 | Computer Name = COMPUTER921 | Source = MsiInstaller | ID = 1013
Description = Termék: Microsoft .NET Framework 2.0 -- Setup cannot continue because
this version of the .NET Framework is incompatible with a previously installed
one. For more information, see http://support.microsoft.com/support/kb ... 2/5/00.asp

Error - 2010.09.24. 10:09:28 | Computer Name = COMPUTER921 | Source = MsiInstaller | ID = 1013
Description = Termék: Microsoft .NET Framework 2.0 -- Setup cannot continue because
this version of the .NET Framework is incompatible with a previously installed
one. For more information, see http://support.microsoft.com/support/kb ... 2/5/00.asp

Error - 2010.09.29. 15:19:09 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.09.30. 9:22:27 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.09.30. 15:22:20 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.10.02. 12:22:28 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.10.02. 13:22:14 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.10.02. 14:22:14 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

Error - 2010.10.04. 4:19:09 | Computer Name = COMPUTER921 | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 2010.10.08. 14:44:45 | Computer Name = COMPUTER921 | Source = W32Time | ID = 39452689
Description = Időszolgáltató NTP-ügyfél: A manuálisan beállított partner ("time.kfki.hu,0x1")
DNS-címének keresésekor hiba történt. Az NTP-ügyfél 15 percen belül ismét megkísérli
a DNS-címkeresést. A hiba: Szoftvercsatorna-művelet végrehajtására történt kísérlet
egy nem elérhető állomáson. (0x80072751)

Error - 2010.10.08. 14:44:45 | Computer Name = COMPUTER921 | Source = W32Time | ID = 39452701
Description = Az időszolgáltatás NTP-ügyfele úgy van konfigurálva, hogy egy vagy
több forrásból kérdezze le az időt, de egyik forrás sem használható. 14 percig nem
történik kísérlet egyik forrás elérésére sem. Az NTP-ügyfélhez nincsen pontos időforrás.


Error - 2010.10.08. 14:44:48 | Computer Name = COMPUTER921 | Source = W32Time | ID = 39452689
Description = Időszolgáltató NTP-ügyfél: A manuálisan beállított partner ("time.kfki.hu,0x1")
DNS-címének keresésekor hiba történt. Az NTP-ügyfél 15 percen belül ismét megkísérli
a DNS-címkeresést. A hiba: Szoftvercsatorna-művelet végrehajtására történt kísérlet
egy nem elérhető állomáson. (0x80072751)

Error - 2010.10.08. 14:44:48 | Computer Name = COMPUTER921 | Source = W32Time | ID = 39452701
Description = Az időszolgáltatás NTP-ügyfele úgy van konfigurálva, hogy egy vagy
több forrásból kérdezze le az időt, de egyik forrás sem használható. 14 percig nem
történik kísérlet egyik forrás elérésére sem. Az NTP-ügyfélhez nincsen pontos időforrás.


Error - 2010.10.15. 16:02:52 | Computer Name = COMPUTER921 | Source = PlugPlayManager | ID = 11
Description = A(z) Root\LEGACY_UNLOCKERDRIVER5\0000 eszköz eltűnt a rendszerből
az eltávolításra való előzetes felkészítés nélkül.

Error - 2010.10.16. 6:07:34 | Computer Name = COMPUTER921 | Source = Service Control Manager | ID = 7034
Description = A(z) Pml Driver HPZ12 szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal
fordult elő.

Error - 2010.10.16. 6:07:34 | Computer Name = COMPUTER921 | Source = Service Control Manager | ID = 7034
Description = A(z) Alkalmazási réteg átjárószolgáltatása szolgáltatás váratlanul
leállt. Ez a(z) 1. alkalommal fordult elő.

Error - 2010.10.16. 6:07:34 | Computer Name = COMPUTER921 | Source = Service Control Manager | ID = 7034
Description = A(z) Machine Debug Manager szolgáltatás váratlanul leállt. Ez a(z)
1. alkalommal fordult elő.

Error - 2010.10.16. 6:07:34 | Computer Name = COMPUTER921 | Source = Service Control Manager | ID = 7034
Description = A(z) Nyomtatásisor-kezelő szolgáltatás váratlanul leállt. Ez a(z)
1. alkalommal fordult elő.

Error - 2010.10.16. 7:07:23 | Computer Name = COMPUTER921 | Source = Service Control Manager | ID = 7034
Description = A(z) Pml Driver HPZ12 szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal
fordult elő.


< End of report >

Olyan nincs, figyelj oda mit kell csinálni, le van írva. A Rapidshare angol vagy német. A Sentinel program tud magyarul is.

Próbáld meg evvel a linkkel (bár nem ezt adta meg nekem elsőre):

http://rapidshare.com/files/425583310/HDS3.30.rar

Nem sikerül leszedni Magyar?

Hard Disk Sentinel Pro 3.30 B3855

https://rapidshare.com/files/425583310/HDS3.30.rar

Felraktam neked, innen szedd le. Telepíted, a tesztet lefuttatod. Megadja hány órát futott eddig a HD, és azt is, mennyi a várható élettartam. Ha már nem kell, kilépni és Uninstall. Felesleges a gépen hagyni.
Az okosítás benne van, az is hogy kell telepíteni. A keygent nehogy futtasd.

tolds le az asztalra
OTListIt2>> OTL
futtasdt
-bepipazni
-Scan all users.
-Lop check.
-Purity check.
-v sekciobaExtra Registry>potyozd be>Use SafeList
-az ablakba Custom Scans/Fixes>tedd be a zold textet-klik-Run SCAN
-a skan vegen-tedd be a naplokat
-OTL.txt (az asztalon lesz).
-Extras.txt [a talcan lesz.]

Honnan lehet ezt biztosra megállapítani, mármint hogy vigyem-e szervizbe vagy ráérek ha jobban kerreg ill. bedöglik.... Mentéseket csinálok folyamatosan! Melyik részével lehet gond? a winchester 2 éve cseréltem...

Amúgy köszi a vígaszt

Csak,hogy elszomorítsalak.. az hardver gond lesz!

Jól viselkedik, csak kerreg olyan mintha valami enné ill. dolgoztatja.. a CPU érték szinte mindig csak pár %. Fagyás most nem volt reggel óta, de nem is állandóan szokott... a héten 2 alkalommal fagyott le. Az okát láttad? Ha megvolt a baj, akkor remélem nincs több baj.
Köszi a gyors segítséget!

ird le hogy viselkedik a gep.

All processes killed
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\msnmsgr deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Device Detection deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Rendszergazda
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 5275893 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 50860041 bytes
->Flash cache emptied: 2265 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 519680 bytes

Total Files Cleaned = 54,00 mb


OTM by OldTimer - Version 3.1.16.1 log created on 10162010_130723

Files moved on Reboot...
File C:\WINDOWS\temp\_avast5_\unp51464774.tmp not found!
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

http://oldtimer.geekstogo.com/OTM.exe
tolds le-futtasd-masold be a baloldalra a scriptet-es klik-MOVEIT-a logot majd tedd ide:

Nem szedte le rendesen a Comodot? (Comodot már a fagyások közben tettem fel, hátha az talál valamit)

ComboFix 10-10-15.03 - Rendszergazda 010.10.16. 12:07:38.8.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.1270.932 [GMT 2:00]
Running from: c:\documents and settings\Rendszergazda\Asztal\ComboFix.exe
Command switches used :: c:\documents and settings\Rendszergazda\Asztal\CFScript.txt
AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: COMODO Antivirus *On-access scanning enabled* (Updated) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}

FILE ::
"c:\windows\system32\drivers\sfi.dat"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\sfi.dat

.
((((((((((((((((((((((((( Files Created from 2010-09-16 to 2010-10-16 )))))))))))))))))))))))))))))))
.

2010-10-15 19:44 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-10-15 19:44 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-10-15 19:44 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-10-15 19:44 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-10-15 19:44 . 2010-09-07 14:47 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-10-15 19:44 . 2010-09-07 14:47 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-10-15 19:44 . 2010-09-07 14:46 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-10-15 19:44 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr
2010-10-15 19:44 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-10-14 12:20 . 2010-10-14 15:33 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\FullTiltPoker
2010-10-14 12:19 . 2010-10-15 14:16 -------- d-----w- c:\program files\Full Tilt Poker
2010-10-14 11:49 . 2010-10-14 12:24 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\cache
2010-10-05 17:03 . 2010-10-05 17:03 -------- d-----w- c:\documents and settings\All Users\Application Data\PhotoGenie
2010-10-04 08:04 . 2008-04-13 07:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-10-04 08:04 . 2008-04-13 07:45 15104 ----a-w- c:\windows\system32\dllcache\usbscan.sys
2010-10-04 08:04 . 2001-10-26 17:25 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-10-04 08:03 . 2008-04-14 05:02 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-10-01 08:24 . 2010-10-15 19:43 -------- d-----w- c:\program files\Alwil Software
2010-09-30 14:34 . 2010-09-30 14:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Anvsoft
2010-09-30 14:34 . 2010-09-30 14:34 24064 ----a-w- c:\windows\system32\msxml3a.dll
2010-09-24 13:52 . 2010-10-04 08:59 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\PhotoGenie
2010-09-20 18:40 . 2010-09-20 18:40 -------- d-----w- c:\documents and settings\Rendszergazda\Application Data\mresreg
2010-09-20 18:39 . 2010-09-20 18:39 -------- d-----w- c:\program files\mresreg
2010-09-20 13:38 . 2010-09-20 13:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-09-16 17:27 . 2010-09-16 19:52 -------- d-----w- c:\windows\system32\NtmsData

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

------- Sigcheck -------

[-] 2008-05-07 . 2993C2DF98A2D6D9896E0AB24946F972 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2008-05-07 01:37 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll

[-] 2001-05-04 09:05 . 238C0CA54696851045AFB54C8B73DC55 . 164112 . . [5.0.4517] . . c:\windows\system32\olepro32.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883840]
"Device Detection"="d:\program files\FUJIFILM\MyFinePix Studio\dd.exe" [2009-12-21 351912]
"Google Update"="c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-07-04 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PACTray"="c:\windows\PixArt\PAP7501\PACTray.exe" [2009-06-09 319488]
"QuickTime Task"="d:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2009-03-08 128512]
"AfterPost"="c:\windows\afterpost.cmd" [2008-07-22 2553]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
"ForceCopyAclwithFile"= 0 (0x0)
"HonorAutoRunSetting"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
"ForceCopyAclwithFile"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"d:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager\\MediaManager.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\Rendszergazda\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"d:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"d:\\Program Files\\Real Alternative\\Media Player Classic\\mplayerc.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\Game\\PokerTH\\pokerth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010.10.15. 21:44 165584]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010.10.15. 21:44 17744]
S3 GUCI_AVS;Generic USB Controller Interface (AVS);c:\windows\system32\drivers\GUCI_AVS.sys [2010.04.15. 13:21 543616]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [2010.03.30. 16:19 90536]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [2010.03.30. 16:19 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [2010.03.30. 16:19 122152]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [2010.03.30. 16:20 115496]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [2010.03.30. 16:22 25768]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [2010.03.30. 16:20 111912]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [2010.03.30. 16:21 117672]
S3 ZD1211BU(TP-LINK);TL-WN422G Wireless USB Adapter Driver(TP-LINK);c:\windows\system32\drivers\ZD1211BU.sys [2009.07.31. 16:15 500736]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010.08.20. 12:22 691696]
.
Contents of the 'Scheduled Tasks' folder

2010-10-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2010-10-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500Core.job
- c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-07-04 14:14]

2010-10-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500UA.job
- c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-07-04 14:14]

2010-07-20 c:\windows\Tasks\MyDefrag v4.3.1 Daily.job
- d:\program files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-07-20 10:03]

2010-10-16 c:\windows\Tasks\User_Feed_Synchronization-{49EA0899-A39F-40B8-AC48-99304F9B5FCD}.job
- c:\windows\system32\msfeedssync.exe [2008-05-07 03:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60076
mStart Page =
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - chrome://fastdial/content/fastdial.html
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatche ... 60446&qkw=
FF - component: c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\RadioWMPCore.dll
FF - plugin: c:\documents and settings\Rendszergazda\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Rendszergazda\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: d:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin7.dll
FF - plugin: d:\program files\Real Alternative\browser\plugins\nppl3260.dll
FF - plugin: d:\program files\Real Alternative\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(3528)
c:\windows\system32\WININET.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\HPZipm12.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2010-10-16 12:17:19 - machine was rebooted
ComboFix-quarantined-files.txt 2010-10-16 10:17
ComboFix2.txt 2010-10-15 20:05

Pre-Run: 23 129 665 536 bájt szabad
Post-Run: 23 151 591 424 bájt szabad

- - End Of File - - 32CE3A9F785BC6A304FF0A6DA6650DFF

Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:

A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad tedd ide.

Szia!
Ez most a saját laptopom. (talán emlékszel, hogy a család több gépét is nézted/javítottad)
Lehet, hogy megbolondítottam amikor kipróbáltam a Comodot?
A gépnél már több hónapja ki van kapcsolva a win. frissítés, nem lehet, hogy ez is baj?
Bár láttam egy pár érdekes dolgot a combfixnél, íme:

ComboFix 10-10-14.04 - Rendszergazda 010.10.15. 21:58:39.7.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.1270.740 [GMT 2:00]
Running from: c:\documents and settings\Rendszergazda\Asztal\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: COMODO Antivirus *On-access scanning enabled* (Updated) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Common Files\ComObject
c:\program files\Common Files\ComObject\AccessibleMarshal.dll
c:\program files\Common Files\ComObject\application.ini
c:\program files\Common Files\ComObject\blocklist.xml
c:\program files\Common Files\ComObject\browserconfig.properties
c:\program files\Common Files\ComObject\components\browser.xpt
c:\program files\Common Files\ComObject\components\browserdirprovider.dll
c:\program files\Common Files\ComObject\components\brwsrcmp.dll
c:\program files\Common Files\ComObject\components\components.list
c:\program files\Common Files\ComObject\components\compreg.dat
c:\program files\Common Files\ComObject\components\FeedConverter.js
c:\program files\Common Files\ComObject\components\FeedProcessor.js
c:\program files\Common Files\ComObject\components\FeedWriter.js
c:\program files\Common Files\ComObject\components\fuelApplication.js
c:\program files\Common Files\ComObject\components\GPSDGeolocationProvider.js
c:\program files\Common Files\ComObject\components\jsconsole-clhandler.js
c:\program files\Common Files\ComObject\components\NetworkGeolocationProvider.js
c:\program files\Common Files\ComObject\components\nsAddonRepository.js
c:\program files\Common Files\ComObject\components\nsBadCertHandler.js
c:\program files\Common Files\ComObject\components\nsBlocklistService.js
c:\program files\Common Files\ComObject\components\nsBrowserContentHandler.js
c:\program files\Common Files\ComObject\components\nsBrowserGlue.js
c:\program files\Common Files\ComObject\components\nsContentDispatchChooser.js
c:\program files\Common Files\ComObject\components\nsContentPrefService.js
c:\program files\Common Files\ComObject\components\nsDefaultCLH.js
c:\program files\Common Files\ComObject\components\nsDownloadManagerUI.js
c:\program files\Common Files\ComObject\components\nsExtensionManager.js
c:\program files\Common Files\ComObject\components\nsFormAutoComplete.js
c:\program files\Common Files\ComObject\components\nsHandlerService.js
c:\program files\Common Files\ComObject\components\nsHelperAppDlg.js
c:\program files\Common Files\ComObject\components\nsLivemarkService.js
c:\program files\Common Files\ComObject\components\nsLoginInfo.js
c:\program files\Common Files\ComObject\components\nsLoginManager.js
c:\program files\Common Files\ComObject\components\nsLoginManagerPrompter.js
c:\program files\Common Files\ComObject\components\nsMicrosummaryService.js
c:\program files\Common Files\ComObject\components\nsPlacesAutoComplete.js
c:\program files\Common Files\ComObject\components\nsPlacesDBFlush.js
c:\program files\Common Files\ComObject\components\nsPlacesTransactionsService.js
c:\program files\Common Files\ComObject\components\nsPrivateBrowsingService.js
c:\program files\Common Files\ComObject\components\nsProxyAutoConfig.js
c:\program files\Common Files\ComObject\components\nsSafebrowsingApplication.js
c:\program files\Common Files\ComObject\components\nsSearchService.js
c:\program files\Common Files\ComObject\components\nsSearchSuggestions.js
c:\program files\Common Files\ComObject\components\nsSessionStartup.js
c:\program files\Common Files\ComObject\components\nsSessionStore.js
c:\program files\Common Files\ComObject\components\nsSetDefaultBrowser.js
c:\program files\Common Files\ComObject\components\nsSidebar.js
c:\program files\Common Files\ComObject\components\nsTaggingService.js
c:\program files\Common Files\ComObject\components\nsTryToClose.js
c:\program files\Common Files\ComObject\components\nsUpdateService.js
c:\program files\Common Files\ComObject\components\nsUpdateServiceStub.js
c:\program files\Common Files\ComObject\components\nsUpdateTimerManager.js
c:\program files\Common Files\ComObject\components\nsUrlClassifierLib.js
c:\program files\Common Files\ComObject\components\nsUrlClassifierListManager.js
c:\program files\Common Files\ComObject\components\nsURLFormatter.js
c:\program files\Common Files\ComObject\components\nsWebHandlerApp.js
c:\program files\Common Files\ComObject\components\pluginGlue.js
c:\program files\Common Files\ComObject\components\storage-Legacy.js
c:\program files\Common Files\ComObject\components\storage-mozStorage.js
c:\program files\Common Files\ComObject\components\txEXSLTRegExFunctions.js
c:\program files\Common Files\ComObject\components\WebContentConverter.js
c:\program files\Common Files\ComObject\components\xpti.dat
c:\program files\Common Files\ComObject\crashreporter-override.ini
c:\program files\Common Files\ComObject\crashreporter.exe
c:\program files\Common Files\ComObject\crashreporter.ini
c:\program files\Common Files\ComObject\defaults\autoconfig\platform.js
c:\program files\Common Files\ComObject\defaults\autoconfig\prefcalls.js
c:\program files\Common Files\ComObject\defaults\pref\channel-prefs.js
c:\program files\Common Files\ComObject\defaults\pref\firefox-branding.js
c:\program files\Common Files\ComObject\defaults\pref\firefox-l10n.js
c:\program files\Common Files\ComObject\defaults\pref\firefox.js
c:\program files\Common Files\ComObject\defaults\pref\reporter.js
c:\program files\Common Files\ComObject\defaults\profile\bookmarks.html
c:\program files\Common Files\ComObject\defaults\profile\chrome\userChrome-example.css
c:\program files\Common Files\ComObject\defaults\profile\chrome\userContent-example.css
c:\program files\Common Files\ComObject\defaults\profile\localstore.rdf
c:\program files\Common Files\ComObject\defaults\profile\mimeTypes.rdf
c:\program files\Common Files\ComObject\defaults\profile\prefs.js
c:\program files\Common Files\ComObject\dictionaries\en-US.aff
c:\program files\Common Files\ComObject\dictionaries\en-US.dic
c:\program files\Common Files\ComObject\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\icon.png
c:\program files\Common Files\ComObject\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\install.rdf
c:\program files\Common Files\ComObject\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\preview.png
c:\program files\Common Files\ComObject\freebl3.chk
c:\program files\Common Files\ComObject\freebl3.dll
c:\program files\Common Files\ComObject\greprefs\all.js
c:\program files\Common Files\ComObject\greprefs\security-prefs.js
c:\program files\Common Files\ComObject\greprefs\xpinstall.js
c:\program files\Common Files\ComObject\js3250.dll
c:\program files\Common Files\ComObject\LICENSE
c:\program files\Common Files\ComObject\modules\CertUtils.jsm
c:\program files\Common Files\ComObject\modules\ctypes.jsm
c:\program files\Common Files\ComObject\modules\debug.js
c:\program files\Common Files\ComObject\modules\distribution.js
c:\program files\Common Files\ComObject\modules\DownloadLastDir.jsm
c:\program files\Common Files\ComObject\modules\DownloadUtils.jsm
c:\program files\Common Files\ComObject\modules\FileUtils.jsm
c:\program files\Common Files\ComObject\modules\ISO8601DateUtils.jsm
c:\program files\Common Files\ComObject\modules\LightweightThemeConsumer.jsm
c:\program files\Common Files\ComObject\modules\LightweightThemeManager.jsm
c:\program files\Common Files\ComObject\modules\Microformats.js
c:\program files\Common Files\ComObject\modules\NetUtil.jsm
c:\program files\Common Files\ComObject\modules\NetworkPrioritizer.jsm
c:\program files\Common Files\ComObject\modules\openLocationLastURL.jsm
c:\program files\Common Files\ComObject\modules\PlacesDBUtils.jsm
c:\program files\Common Files\ComObject\modules\PluralForm.jsm
c:\program files\Common Files\ComObject\modules\SpatialNavigation.js
c:\program files\Common Files\ComObject\modules\utils.js
c:\program files\Common Files\ComObject\modules\WindowDraggingUtils.jsm
c:\program files\Common Files\ComObject\modules\WindowsPreviewPerTab.jsm
c:\program files\Common Files\ComObject\modules\XPCOMUtils.jsm
c:\program files\Common Files\ComObject\mozcrt19.dll
c:\program files\Common Files\ComObject\nspr4.dll
c:\program files\Common Files\ComObject\nss3.dll
c:\program files\Common Files\ComObject\nssckbi.dll
c:\program files\Common Files\ComObject\nssdbm3.chk
c:\program files\Common Files\ComObject\nssdbm3.dll
c:\program files\Common Files\ComObject\nssutil3.dll
c:\program files\Common Files\ComObject\platform.ini
c:\program files\Common Files\ComObject\plc4.dll
c:\program files\Common Files\ComObject\plds4.dll
c:\program files\Common Files\ComObject\plugins\npbasic.dll
c:\program files\Common Files\ComObject\plugins\npnul32.dll
c:\program files\Common Files\ComObject\README.txt
c:\program files\Common Files\ComObject\res\arrow.gif
c:\program files\Common Files\ComObject\res\arrowd.gif
c:\program files\Common Files\ComObject\res\broken-image.png
c:\program files\Common Files\ComObject\res\charsetalias.properties
c:\program files\Common Files\ComObject\res\charsetData.properties
c:\program files\Common Files\ComObject\res\contenteditable.css
c:\program files\Common Files\ComObject\res\designmode.css
c:\program files\Common Files\ComObject\res\dtd\mathml.dtd
c:\program files\Common Files\ComObject\res\dtd\xhtml11.dtd
c:\program files\Common Files\ComObject\res\EditorOverride.css
c:\program files\Common Files\ComObject\res\entityTables\html40Latin1.properties
c:\program files\Common Files\ComObject\res\entityTables\html40Special.properties
c:\program files\Common Files\ComObject\res\entityTables\html40Symbols.properties
c:\program files\Common Files\ComObject\res\entityTables\htmlEntityVersions.properties
c:\program files\Common Files\ComObject\res\entityTables\mathml20.properties
c:\program files\Common Files\ComObject\res\entityTables\transliterate.properties
c:\program files\Common Files\ComObject\res\fonts\mathfont.properties
c:\program files\Common Files\ComObject\res\fonts\mathfontStandardSymbolsL.properties
c:\program files\Common Files\ComObject\res\fonts\mathfontSTIXNonUnicode.properties
c:\program files\Common Files\ComObject\res\fonts\mathfontSTIXSize1.properties
c:\program files\Common Files\ComObject\res\fonts\mathfontSymbol.properties
c:\program files\Common Files\ComObject\res\fonts\mathfontUnicode.properties
c:\program files\Common Files\ComObject\res\forms.css
c:\program files\Common Files\ComObject\res\grabber.gif
c:\program files\Common Files\ComObject\res\hiddenWindow.html
c:\program files\Common Files\ComObject\res\html.css
c:\program files\Common Files\ComObject\res\html\folder.png
c:\program files\Common Files\ComObject\res\langGroups.properties
c:\program files\Common Files\ComObject\res\language.properties
c:\program files\Common Files\ComObject\res\loading-image.png
c:\program files\Common Files\ComObject\res\mathml.css
c:\program files\Common Files\ComObject\res\quirk.css
c:\program files\Common Files\ComObject\res\svg.css
c:\program files\Common Files\ComObject\res\table-add-column-after-active.gif
c:\program files\Common Files\ComObject\res\table-add-column-after-hover.gif
c:\program files\Common Files\ComObject\res\table-add-column-after.gif
c:\program files\Common Files\ComObject\res\table-add-column-before-active.gif
c:\program files\Common Files\ComObject\res\table-add-column-before-hover.gif
c:\program files\Common Files\ComObject\res\table-add-column-before.gif
c:\program files\Common Files\ComObject\res\table-add-row-after-active.gif
c:\program files\Common Files\ComObject\res\table-add-row-after-hover.gif
c:\program files\Common Files\ComObject\res\table-add-row-after.gif
c:\program files\Common Files\ComObject\res\table-add-row-before-active.gif
c:\program files\Common Files\ComObject\res\table-add-row-before-hover.gif
c:\program files\Common Files\ComObject\res\table-add-row-before.gif
c:\program files\Common Files\ComObject\res\table-remove-column-active.gif
c:\program files\Common Files\ComObject\res\table-remove-column-hover.gif
c:\program files\Common Files\ComObject\res\table-remove-column.gif
c:\program files\Common Files\ComObject\res\table-remove-row-active.gif
c:\program files\Common Files\ComObject\res\table-remove-row-hover.gif
c:\program files\Common Files\ComObject\res\table-remove-row.gif
c:\program files\Common Files\ComObject\res\ua.css
c:\program files\Common Files\ComObject\res\viewsource.css
c:\program files\Common Files\ComObject\res\wincharset.properties
c:\program files\Common Files\ComObject\searchplugins\amazondotcom.xml
c:\program files\Common Files\ComObject\searchplugins\answers.xml
c:\program files\Common Files\ComObject\searchplugins\creativecommons.xml
c:\program files\Common Files\ComObject\searchplugins\eBay.xml
c:\program files\Common Files\ComObject\searchplugins\google.xml
c:\program files\Common Files\ComObject\searchplugins\wikipedia.xml
c:\program files\Common Files\ComObject\searchplugins\yahoo.xml
c:\program files\Common Files\ComObject\smime3.dll
c:\program files\Common Files\ComObject\softokn3.chk
c:\program files\Common Files\ComObject\softokn3.dll
c:\program files\Common Files\ComObject\sqlite3.dll
c:\program files\Common Files\ComObject\ssl3.dll
c:\program files\Common Files\ComObject\uninstall\helper.exe
c:\program files\Common Files\ComObject\update.locale
c:\program files\Common Files\ComObject\updater.exe
c:\program files\Common Files\ComObject\updater.ini
c:\program files\Common Files\ComObject\xpcom.dll
c:\program files\Common Files\ComObject\xul.dll

.
((((((((((((((((((((((((( Files Created from 2010-09-15 to 2010-10-15 )))))))))))))))))))))))))))))))
.

2010-10-15 19:44 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-10-15 19:44 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-10-15 19:44 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-10-15 19:44 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-10-15 19:44 . 2010-09-07 14:47 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-10-15 19:44 . 2010-09-07 14:47 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-10-15 19:44 . 2010-09-07 14:46 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-10-15 19:44 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr
2010-10-15 19:44 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-10-14 12:20 . 2010-10-14 15:33 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\FullTiltPoker
2010-10-14 12:19 . 2010-10-15 14:16 -------- d-----w- c:\program files\Full Tilt Poker
2010-10-14 11:49 . 2010-10-14 12:24 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\cache
2010-10-05 17:03 . 2010-10-05 17:03 -------- d-----w- c:\documents and settings\All Users\Application Data\PhotoGenie
2010-10-04 08:04 . 2008-04-13 07:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-10-04 08:04 . 2008-04-13 07:45 15104 ----a-w- c:\windows\system32\dllcache\usbscan.sys
2010-10-04 08:04 . 2001-10-26 17:25 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-10-04 08:03 . 2008-04-14 05:02 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-10-01 08:24 . 2010-10-15 19:43 -------- d-----w- c:\program files\Alwil Software
2010-09-30 14:34 . 2010-09-30 14:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Anvsoft
2010-09-30 14:34 . 2010-09-30 14:34 24064 ----a-w- c:\windows\system32\msxml3a.dll
2010-09-24 13:52 . 2010-10-04 08:59 -------- d-----w- c:\documents and settings\Rendszergazda\Local Settings\Application Data\PhotoGenie
2010-09-20 18:40 . 2010-09-20 18:40 -------- d-----w- c:\documents and settings\Rendszergazda\Application Data\mresreg
2010-09-20 18:39 . 2010-09-20 18:39 -------- d-----w- c:\program files\mresreg
2010-09-20 13:38 . 2010-09-20 13:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-09-18 10:33 . 2010-10-15 19:06 497217 ----a-w- c:\windows\system32\drivers\sfi.dat
2010-09-16 17:27 . 2010-09-16 19:52 -------- d-----w- c:\windows\system32\NtmsData

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

------- Sigcheck -------

[-] 2008-05-07 . 2993C2DF98A2D6D9896E0AB24946F972 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2008-05-07 01:37 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll

[-] 2001-05-04 09:05 . 238C0CA54696851045AFB54C8B73DC55 . 164112 . . [5.0.4517] . . c:\windows\system32\olepro32.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883840]
"Device Detection"="d:\program files\FUJIFILM\MyFinePix Studio\dd.exe" [2009-12-21 351912]
"Google Update"="c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-07-04 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PACTray"="c:\windows\PixArt\PAP7501\PACTray.exe" [2009-06-09 319488]
"QuickTime Task"="d:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2009-03-08 128512]
"AfterPost"="c:\windows\afterpost.cmd" [2008-07-22 2553]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
"ForceCopyAclwithFile"= 0 (0x0)
"HonorAutoRunSetting"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
"ForceCopyAclwithFile"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"d:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager\\MediaManager.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\Rendszergazda\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"d:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"d:\\Program Files\\Real Alternative\\Media Player Classic\\mplayerc.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\Game\\PokerTH\\pokerth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010.10.15. 21:44 165584]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010.10.15. 21:44 17744]
S3 GUCI_AVS;Generic USB Controller Interface (AVS);c:\windows\system32\drivers\GUCI_AVS.sys [2010.04.15. 13:21 543616]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [2010.03.30. 16:19 90536]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [2010.03.30. 16:19 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [2010.03.30. 16:19 122152]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [2010.03.30. 16:20 115496]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [2010.03.30. 16:22 25768]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [2010.03.30. 16:20 111912]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [2010.03.30. 16:21 117672]
S3 ZD1211BU(TP-LINK);TL-WN422G Wireless USB Adapter Driver(TP-LINK);c:\windows\system32\drivers\ZD1211BU.sys [2009.07.31. 16:15 500736]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010.08.20. 12:22 691696]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - AVAST!_MAIL_SCANNER
*NewlyCreated* - AVAST!_WEB_SCANNER
.
Contents of the 'Scheduled Tasks' folder

2010-10-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2010-10-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500Core.job
- c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-07-04 14:14]

2010-10-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-448539723-1417001333-500UA.job
- c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-07-04 14:14]

2010-07-20 c:\windows\Tasks\MyDefrag v4.3.1 Daily.job
- d:\program files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-07-20 10:03]

2010-10-15 c:\windows\Tasks\User_Feed_Synchronization-{49EA0899-A39F-40B8-AC48-99304F9B5FCD}.job
- c:\windows\system32\msfeedssync.exe [2008-05-07 03:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60076
mStart Page =
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - chrome://fastdial/content/fastdial.html
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatche ... 60446&qkw=
FF - component: c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\Rendszergazda\Application Data\Mozilla\Firefox\Profiles\rendszergazda.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components\RadioWMPCore.dll
FF - plugin: c:\documents and settings\Rendszergazda\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Rendszergazda\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\Rendszergazda\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: d:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: d:\program files\QuickTime\Plugins\npqtplugin7.dll
FF - plugin: d:\program files\Real Alternative\browser\plugins\nppl3260.dll
FF - plugin: d:\program files\Real Alternative\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1960408961-448539723-1417001333-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e0,c7,a8,d6,13,d3,5b,42,8c,c5,b4,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e0,c7,a8,d6,13,d3,5b,42,8c,c5,b4,\
"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,55,71,49,bc,76,ff,15,4e,9e,5a,12,\
.
Completion time: 2010-10-15 22:05:01
ComboFix-quarantined-files.txt 2010-10-15 20:05

Pre-Run: 23 218 900 992 bájt szabad
Post-Run: 23 194 009 600 bájt szabad

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect

- - End Of File - - 2DD1B2FE38AA7F56A132A5E7270D3A98

Szia!
Ne haragudj, hogy már megint itt vagyok. Indításkor most fagyott le másodszor a gépem, vírust nem találok, de úgy gondolom ez nagyon nem normális dolog. Segítenél....újból?
üdv.

nincsen mit.
udv.

Szia!
Akkor most tisztáztuk
Köszi mindent és további szép napot, hetet, évet........

Andi

tuzfal, ha te csinalsz valamit, telepitel, nyitol valamit ki, es a tuzfal, keri hogy enged , akkor engedet, ha valami frissiteni akar, akkor oda figyelsz, es megnezed mi akkar frissiteni, es ha akarod engeded, de nem muszaj, .
A boot,ini az ugy jo ahogy van, 2-masodpercig megjelenik a windows, bootloader, hagyad ugy.
Ez az egesz.
udv

Oké, most már nincs ott, de ez a "timeout=2" kell bele?

A tűzfalról csak annyit szeretnék még kérdezni, hogy ha telepítek vagy valami fenn lévő programot frissít akkor a tűzfal engedélyt kér, ha valami idegen nevű dolgot ír ki akkor kezdjek gyanakodni majd vírusra? Tehát minden idegen cuccost tiltsak le. Mert gondolom azt nem fogja kiírni, hogy tróját be akarok e engedni

Kb ennyi. remélem mostanában nem zaklatlak... a többi gépek amiket helyreraktunk, mind rendben jól mennek és az én kis gépecském is. Már csak erre a PC-re kellene egy monitort szerezni ill. az elromlottat dokihoz vinni. Ez a monitor még a 486 géphez kaptuk...még jó, hogy eltettük aranytartaléknak

UnsupportedDebug="do not select this" /debug
torold le ezt is a boot.ini -ben,

Elakartam távolítani a "javító konzolt". Le is töröltem a C: \ cmdcons \ bootsect.dat = "Microsoft Windows Recovery Console" / cmdcons , de újaindításkor ugyanúgy benn maradt a fekete képernyő szöveggel de most valami olyasmi is volt, hogy indítás hibakereséssel vagy hasonló.

Ez van a boot -ban:

[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect

Nagyon nem stimmel valami, mert nem ez szokott benne lenni. Mi a fene van. .
Amúgy a géppel minden oké.

üdv.:
Andi

ok
nincsen mit, hogy mukszik a gep??

Köszi szépen a türelmedet és mindent!!
üdv.
Andi

nincsen utkozes a laptopal,, felkel majd hivni a kiszolgalot,,az IP-utkozes miat.

Port Override a Advanced Rules-Nem babralni,,,En ma mar vegzek itt.
udv.

Public,
Ezt valahol mashol kerdezd, mert en nemigen ertek a Router dolgoghoz , nekem switch van, es ezen keresztul van ossze kotve -szamitogep.
Most csinald neg a laptopn azt a parancsot, az ipconfical-es tedd be a logot a privatba.

Hupsz akkor most mi legyen, már nem tudom mi volt eredetileg...

------

OK, küldöm a PM-et

"Eredeti Windows, valódi előny értesítés"-ezt letilthatod, termeszetesen az internete enged meg,

meg futtasd le a laptopon is a parancsot hogy lassam , nem e a te laptopod halozati kartyajaval utkozot a szamitogep,, nem kell turkalni a Firewall bealitasaban, o tudja mi a rendszere,

Oké, rendben, holnap felhívom őket.

Lenne azért két kérdésem Pctools-sal kapcsolatban.

A Pc-hez kapcsolódok ruterrel, hogy a laptopon legyen Internet. A kérdésem arra vonatkozik, hogy a Profiles-Port Override-nél mit állítsak be. PC-n az SMPT - servert (TCP/UDP) a laptopon a Route Acces Protocol (TCP/UDP) állítottam be, Így jó?

Applications a listában benne van az "Eredeti Windows, valódi előny értesítés" Ezt nem kellene letiltani? Amikor az unokahugom gépét csináltuk akkor emiatt voltak problémáim. (In sárga Out zöld ugyanúgy mint a többi)

Betolakodókat - netlopókat - nem kellene érzékelnie a tűzfalnak? Most bekapcsoltam a laptopot is és arra vártam, hogy engedélyt kér, hogy használjam a Netet.. Ne haragudj, ha hülyeséget kérdezek...

Amúgy minden oké szerintem is a géppel. Illetve még annyit, ha nem gond. A solo vírusos volt akkor a laptopomat is megfertőzhette? Nem érzékelek semmit rajta, de hát néha jobb az óvatosság... gondolom. Bocsi a sok kérdésért. Csak gondoltam összeszedem az összes maradék kérdésemet.... vehetsz egy nagy levegőt, mert ha ezeket tisztáztuk nincs több kérdés (egyenlőre)

meg valami, neked a laptopod , osze van kotve halozatba??

A halozat renben van, fel kell hivnod az internet kiszolgaltatotad hogy IP-utkozest jelent a halozatban a windows.
Ha minden renben enyi az egesz.
udv

Parancssorba bemasolod
ipconfig /all >> c:\myfile.txt
arp -a >> c:\myfile.txt
[enter]
Utana a start-futtatsba masold be:
c:\myfile.txt
kinyilik a notepad,, masold a privatba, majd este megnezem.

Nem találom ezt a c:\myfile.txt.. Bocsi
--
A PCtools oké, köszi
(Laptoponra tettem fel, de most teszem a Pc-re (amit vizsgáltunk tegnap)

oké, kiülök és csinálom

:Nem jol van bealitva az internet, a parancssorba add be ezt a parancsot, es a logjat megtalalod a C:\-meghajton mint:
c:\myfile.txt
Tedd be a privat uzenetbe.
ipconfig /all >> c:\myfile.txt
arp -a >> c:\myfile.txt

: A tuzfalan mit nem ertel, ha letoltoted es ugy csinaltad ahogy le van irva, akkor mar vedi a szamitogepet, a kimeno, es a bejovo komunikaciotol, most csak , ha futtatol valami uj programot, akkor kiugrik az ablak, es figyelmeztet, program xyz hozza akkar kapcsolodni, bla,bla,bla.Mivel tudod hogy te futtatad, termeszetesen megengeded, ALLOW-bepipazod a kis ablakot remember my preferred applications.- es mar erre a programra nem fog figyelmeztetni, es igy bealnak a szabajok.Forditva ha valami troja kiakar, vagy beakar maszni a gepedre, akkor kiugrik az ablak es figyelmeztet, figyelmesen elolvasod mi van oda irva, es rajtad fugg ha megengeded ALLOW, vagy Disabled-letiltod.

Értem.
Ez a tűzfal kicsit magas, hiába magyarul van. Gépen van az avira és ez a PCtools. Telepítés sima ügy, de a beállítás.. igazából ahogy végignéztem/olvastam nem is változtattam semmit, de így mit véd Azt láttam pl. hogy a CCleanert hozzáadta, de aztán ennnyi.... ehhez béna vagyok Netlopás ellen véd? Sokszor kiírja hogy IPcím ütközés stb..

Avira-talan a legjobb valasztas-csak az a egy hibaja van, hogy a free valtozatban, nem vizsgalja a postat, ezert ovatosan a MSN, -ha valamit kuldenek kepet, linket, Jobb klik-es kivalsztani atvizsgalni az Aviraval, vagy kuka.
Koszi a sort,

Ja azt csak azért írtam, mert feljebb írtad, hogy telepítsd fel és teszteld le....csak egy megállapítás volt, hogy nem telepítős
Most a laptopomra teszem fel elöbb a tűzfalat és az Avírát. (akkor kevesebbet kell majd kinn ülnöm a kocsikámba) Ugyanaz az Avast volt itt is mint az asztali PC-n amit tegnap vizsgáltunk. Mivel ott leszedetted gondoltam akkor itt is leszedem és a PCtools mellé az Avirát rakom ide is. (Remélem jól döntöttem/gondoltam.)
Következő jelentkezésemkor már remélem teljesen fenn lesz a tűzfalam is

(fincsi volt a sör? Személyesen nem tudlak meghívni, meghálálni amit teszel gondoltam akkor majd itt virtuálisan )

eztet nem ertem,
Itt a link a PCTOOLS-ra
http://translate.google.com/translate?j ... l=cs&tl=hu