Terminál Fórum https://forum.technokrata.hu/forum/ |
|
nem reagál ... https://forum.technokrata.hu/forum/viewtopic.php?f=15&t=39930 |
Oldal: 2 / 2 |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 18:31 ] |
Hozzászólás témája: | Re: nem reagál ... |
maga a fekete ablak tetején ez áll: c:\windows\system32/cmd.exe c:/ Semmi... a kellékeknél található billentyűzettel pötyögöm be egérrel |
Szerző: | stell [ szer. júl. 03, 2013 18:18 ] |
Hozzászólás témája: | Re: nem reagál ... |
Akkor csak 2x klikelj a cmd-re es ezt kene kapnod c:\windows\system32> ird meg mit kapsz, es mi van mar mukoddik a bilentyuzet?? |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 18:12 ] |
Hozzászólás témája: | Re: nem reagál ... |
Start>.kereses>>beirni cmd Enter EDDIG MEG VAN. Jobb klik az fekete cmd re es futtatni mint rendszergazda, EZ NEM SIKERÜL... JOBB KLIKKRE NEM JÖN ELŐ SEMMI Ne haragudj a bénázásaimért... |
Szerző: | stell [ szer. júl. 03, 2013 17:09 ] |
Hozzászólás témája: | Re: nem reagál ... |
Idézet: inyitottam a TC_t és ott kiválasztottam a parancssor ablak megnyitását Ezt igy nem lehet csinalni. Start>.kereses>>beirni cmd Enter Jobb klik az fekete cmd re es futtatni mint rendszergazda, es ide beirni a parancsot, |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 14:38 ] |
Hozzászólás témája: | Re: nem reagál ... |
kinyitottam a TC_t és ott kiválasztottam a parancssor ablak megnyitását.. ki is nyílt rendszergazdaként, de amikor beírtam ezt dobta ki rögtön: A windows erőforrás-védelem nem tudja elindítani a javítási szolgáltatást. Rosszul csináltam? Lehet tudni mi történt? Valamit elcsesztem vizsgálat készítésekor? Most el kell mennem, de 17h-kor itt vagyok. |
Szerző: | stell [ szer. júl. 03, 2013 12:40 ] |
Hozzászólás témája: | Re: nem reagál ... |
Restartolni a geppet>> Futtasd a parncssort mint rendszergazda,,,aztan a parncssorba ird be sfc /scannow Enter Megvarni a vizsgalatot>.aztan ujbol restart es ird meg mi van.. |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 12:15 ] |
Hozzászólás témája: | Re: nem reagál ... |
jaj de jóóó.... van billentyűzet a kellékekben, így ha írni akarok nem kell másik gépre menni...(apró örömök teszik boldoggá az embert hihi ) |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 10:14 ] |
Hozzászólás témája: | Re: nem reagál ... |
Azt hiszem "idegbajt kapok" ...bocsi A probléma ott kezdődött, hogy újra akartam indítani a gépet, ami - vedd szó szerint - negyed órába került, majd azóta sem működnek a billentyűzeten egy funkció sem. Az egérrel tudtam másolni és beilleszteni.... most az asztali gépen vagyok.... Most mi van??? Így még sosem jártam |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 9:58 ] |
Hozzászólás témája: | Re: nem reagál ... |
ComboFix 13-07-02.03 - Andi 013.07.03. 9:41.12.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1250.36.1038.18.2534.1282 [GMT 2:00] Running from: c:\users\Andi\Desktop\ComboFix.exe Command switches used :: c:\users\Andi\Desktop\CFScript.txt SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_WINRING0_1_2_0 -------\Service_aswKbd -------\Service_WinRing0_1_2_0 . . ((((((((((((((((((((((((( Files Created from 2013-06-03 to 2013-07-03 ))))))))))))))))))))))))))))))) . . 2013-07-03 08:11 . 2013-07-03 08:11 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-07-03 08:11 . 2013-07-03 08:11 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-07-03 04:36 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CF2B16C9-CBF8-49C6-9208-9104A824D1C3}\mpengine.dll 2013-07-02 20:05 . 2013-07-02 20:05 -------- d-----w- C:\_OTL 2013-07-01 08:42 . 2013-07-01 08:42 -------- d-s---w- c:\windows\SysWow64\Microsoft 2013-07-01 07:07 . 2013-07-01 07:07 -------- d-----w- C:\FRST 2013-06-30 12:43 . 2013-06-30 13:26 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-06-30 10:47 . 2013-06-30 10:47 -------- d-----w- C:\rsit 2013-06-25 18:30 . 2013-06-25 18:30 -------- d-----w- c:\users\Andi\AppData\Roaming\HBM-Games 2013-06-25 06:48 . 2013-06-25 06:48 -------- d-----w- c:\users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 06:48 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-06-22 19:36 . 2013-06-22 19:36 -------- d-----w- c:\program files (x86)\FireArc Arcade 2013-06-18 14:15 . 2013-06-18 14:15 -------- d-----w- c:\program files (x86)\Safari 2013-06-15 06:14 . 2013-06-08 12:28 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-06-15 06:14 . 2013-06-08 11:41 218112 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll 2013-06-15 06:14 . 2013-06-08 11:13 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-06-15 06:13 . 2013-06-08 14:08 279040 ----a-w- c:\program files\Internet Explorer\sqmapi.dll 2013-06-15 06:13 . 2013-06-08 14:08 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-06-15 06:13 . 2013-06-08 14:06 2648064 ----a-w- c:\windows\system32\iertutil.dll 2013-06-15 06:13 . 2013-06-08 14:06 526336 ----a-w- c:\windows\system32\ieui.dll 2013-06-15 06:13 . 2013-06-08 14:06 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-06-15 06:13 . 2013-06-08 14:07 19233792 ----a-w- c:\windows\system32\mshtml.dll 2013-06-12 20:17 . 2013-05-17 02:32 770648 ----a-w- c:\program files (x86)\Internet Explorer\iexplore.exe 2013-06-12 16:33 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-12 20:18 . 2011-12-01 16:49 75825640 ----a-w- c:\windows\system32\MRT.exe 2013-06-12 11:15 . 2012-07-14 16:29 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-06-12 11:15 . 2011-12-03 14:07 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-05-02 00:06 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe 2013-05-01 16:31 . 2012-07-17 13:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-30 06:54 . 2013-04-30 06:54 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-04-30 06:54 . 2013-04-30 06:54 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-04-30 06:54 . 2013-04-30 06:54 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-04-30 06:54 . 2013-04-30 06:54 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-04-30 06:54 . 2013-04-30 06:54 81408 ----a-w- c:\windows\system32\icardie.dll 2013-04-30 06:54 . 2013-04-30 06:54 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-04-30 06:54 . 2013-04-30 06:54 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-04-30 06:54 . 2013-04-30 06:54 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-04-30 06:54 . 2013-04-30 06:54 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-04-30 06:54 . 2013-04-30 06:54 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-04-30 06:54 . 2013-04-30 06:54 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-04-30 06:54 . 2013-04-30 06:54 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-04-30 06:54 . 2013-04-30 06:54 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-04-30 06:54 . 2013-04-30 06:54 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-04-30 06:54 . 2013-04-30 06:54 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-04-30 06:54 . 2013-04-30 06:54 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-04-30 06:54 . 2013-04-30 06:54 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-04-30 06:54 . 2013-04-30 06:54 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-04-30 06:54 . 2013-04-30 06:54 441856 ----a-w- c:\windows\system32\html.iec 2013-04-30 06:54 . 2013-04-30 06:54 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-04-30 06:54 . 2013-04-30 06:54 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-04-30 06:54 . 2013-04-30 06:54 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-04-30 06:54 . 2013-04-30 06:54 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-04-30 06:54 . 2013-04-30 06:54 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-04-30 06:54 . 2013-04-30 06:54 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-04-30 06:54 . 2013-04-30 06:54 235008 ----a-w- c:\windows\system32\url.dll 2013-04-30 06:54 . 2013-04-30 06:54 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-04-30 06:54 . 2013-04-30 06:54 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-04-30 06:54 . 2013-04-30 06:54 216064 ----a-w- c:\windows\system32\msls31.dll 2013-04-30 06:54 . 2013-04-30 06:54 197120 ----a-w- c:\windows\system32\msrating.dll 2013-04-30 06:54 . 2013-04-30 06:54 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-04-30 06:54 . 2013-04-30 06:54 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-04-30 06:54 . 2013-04-30 06:54 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-04-30 06:54 . 2013-04-30 06:54 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-04-30 06:54 . 2013-04-30 06:54 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-04-30 06:54 . 2013-04-30 06:54 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-04-30 06:54 . 2013-04-30 06:54 149504 ----a-w- c:\windows\system32\occache.dll 2013-04-30 06:54 . 2013-04-30 06:54 144896 ----a-w- c:\windows\system32\wextract.exe 2013-04-30 06:54 . 2013-04-30 06:54 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-04-30 06:54 . 2013-04-30 06:54 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-04-30 06:54 . 2013-04-30 06:54 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-04-30 06:54 . 2013-04-30 06:54 13824 ----a-w- c:\windows\system32\mshta.exe 2013-04-30 06:54 . 2013-04-30 06:54 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-04-30 06:54 . 2013-04-30 06:54 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-04-30 06:54 . 2013-04-30 06:54 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-04-30 06:54 . 2013-04-30 06:54 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-04-30 06:54 . 2013-04-30 06:54 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-04-30 06:54 . 2013-04-30 06:54 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-04-30 06:54 . 2013-04-30 06:54 102912 ----a-w- c:\windows\system32\inseng.dll 2013-04-13 05:49 . 2013-05-15 05:43 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2013-04-13 05:49 . 2013-05-15 05:43 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll 2013-04-13 05:49 . 2013-05-15 05:43 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2013-04-13 05:49 . 2013-05-15 05:43 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll 2013-04-13 04:45 . 2013-05-15 05:43 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-04-13 04:45 . 2013-05-15 05:43 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-04-12 14:45 . 2013-04-24 06:37 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-10 06:01 . 2013-05-15 05:43 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-04-10 06:01 . 2013-05-15 05:43 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-04-10 03:30 . 2013-05-15 05:41 3153920 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-05-08 18680424] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-25 343168] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys;c:\windows\SYSNATIVE\DRIVERS\ASPI32.sys [x] R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\DRIVERS\s0017bus.sys;c:\windows\SYSNATIVE\DRIVERS\s0017bus.sys [x] R3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0017mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mdfl.sys [x] R3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0017mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mdm.sys [x] R3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0017mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mgmt.sys [x] R3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\DRIVERS\s0017nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s0017nd5.sys [x] R3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0017obex.sys;c:\windows\SYSNATIVE\DRIVERS\s0017obex.sys [x] R3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\DRIVERS\s0017unic.sys;c:\windows\SYSNATIVE\DRIVERS\s0017unic.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x] S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x] S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x] S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x] S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x] S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [x] S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x] S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x] S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x] S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x] S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x] . . Contents of the 'Scheduled Tasks' folder . 2013-07-03 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-14 11:15] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41] . 2013-07-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job - c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job - c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.myfreezoo.hu/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xportálás a Microsoft Excel programba - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.1.254 FF - ProfilePath - c:\users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default-1368542265039\ FF - prefs.js: browser.startup.homepage - hxxps://mail.google.com/mail/u/0/?shva= ... ebook.com/ FF - ExtSQL: 2013-07-01 09:38; jid1-JrxwyxPdCKWWcw@jetpack; c:\users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default-1368542265039\extensions\jid1-JrxwyxPdCKWWcw@jetpack . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus\1] @="131473" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Other Running Processes ------------------------ . c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe . ************************************************************************** . Completion time: 2013-07-03 10:26:25 - machine was rebooted ComboFix-quarantined-files.txt 2013-07-03 08:26 ComboFix2.txt 2013-07-03 07:14 . Pre-Run: 2 039 259 136 bájt szabad Post-Run: 1 858 572 288 bájt szabad . - - End Of File - - FD962E311E004CFFAB4A74CCF5FB049A A36C5E4F47E84449FF07ED3517B43A31 |
Szerző: | stell [ szer. júl. 03, 2013 8:33 ] |
Hozzászólás témája: | Re: nem reagál ... |
Script készítés: Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett: A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad ted ide. Kód: KILLALL:: Driver:: WinRing0_1_2_0 aswKbd RegLock:: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] ClearJavaCache:: |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 8:17 ] |
Hozzászólás témája: | Re: nem reagál ... |
Azon kezdek már filózni, hogy nem e a firefox zavar be, mert így visszagondolva mindig akkor fagy le egy kis állás után , amikor az nyitva van. ComboFix 13-07-02.03 - Andi 013.07.03. 8:53.11.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1250.36.1038.18.2534.1582 [GMT 2:00] Running from: c:\users\Andi\Desktop\ComboFix.exe SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Files Created from 2013-06-03 to 2013-07-03 ))))))))))))))))))))))))))))))) . . 2013-07-03 07:02 . 2013-07-03 07:02 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-07-03 07:02 . 2013-07-03 07:02 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-07-03 04:36 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CF2B16C9-CBF8-49C6-9208-9104A824D1C3}\mpengine.dll 2013-07-02 20:05 . 2013-07-02 20:05 -------- d-----w- C:\_OTL 2013-07-01 08:42 . 2013-07-01 08:42 -------- d-s---w- c:\windows\SysWow64\Microsoft 2013-07-01 07:07 . 2013-07-01 07:07 -------- d-----w- C:\FRST 2013-06-30 12:43 . 2013-06-30 13:26 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-06-30 10:47 . 2013-06-30 10:47 -------- d-----w- C:\rsit 2013-06-25 18:30 . 2013-06-25 18:30 -------- d-----w- c:\users\Andi\AppData\Roaming\HBM-Games 2013-06-25 06:48 . 2013-06-25 06:48 -------- d-----w- c:\users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 06:48 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-06-22 19:36 . 2013-06-22 19:36 -------- d-----w- c:\program files (x86)\FireArc Arcade 2013-06-18 14:15 . 2013-06-18 14:15 -------- d-----w- c:\program files (x86)\Safari 2013-06-15 06:14 . 2013-06-08 12:28 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-06-15 06:14 . 2013-06-08 11:41 218112 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll 2013-06-15 06:14 . 2013-06-08 11:13 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-06-15 06:13 . 2013-06-08 14:08 279040 ----a-w- c:\program files\Internet Explorer\sqmapi.dll 2013-06-15 06:13 . 2013-06-08 14:08 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-06-15 06:13 . 2013-06-08 14:06 2648064 ----a-w- c:\windows\system32\iertutil.dll 2013-06-15 06:13 . 2013-06-08 14:06 526336 ----a-w- c:\windows\system32\ieui.dll 2013-06-15 06:13 . 2013-06-08 14:06 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-06-15 06:13 . 2013-06-08 14:07 19233792 ----a-w- c:\windows\system32\mshtml.dll 2013-06-12 20:17 . 2013-05-17 02:32 770648 ----a-w- c:\program files (x86)\Internet Explorer\iexplore.exe 2013-06-12 16:33 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-12 20:18 . 2011-12-01 16:49 75825640 ----a-w- c:\windows\system32\MRT.exe 2013-06-12 11:15 . 2012-07-14 16:29 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-06-12 11:15 . 2011-12-03 14:07 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-05-02 00:06 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe 2013-05-01 16:31 . 2012-07-17 13:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-30 06:54 . 2013-04-30 06:54 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-04-30 06:54 . 2013-04-30 06:54 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-04-30 06:54 . 2013-04-30 06:54 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-04-30 06:54 . 2013-04-30 06:54 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-04-30 06:54 . 2013-04-30 06:54 81408 ----a-w- c:\windows\system32\icardie.dll 2013-04-30 06:54 . 2013-04-30 06:54 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-04-30 06:54 . 2013-04-30 06:54 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-04-30 06:54 . 2013-04-30 06:54 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-04-30 06:54 . 2013-04-30 06:54 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-04-30 06:54 . 2013-04-30 06:54 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-04-30 06:54 . 2013-04-30 06:54 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-04-30 06:54 . 2013-04-30 06:54 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-04-30 06:54 . 2013-04-30 06:54 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-04-30 06:54 . 2013-04-30 06:54 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-04-30 06:54 . 2013-04-30 06:54 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-04-30 06:54 . 2013-04-30 06:54 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-04-30 06:54 . 2013-04-30 06:54 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-04-30 06:54 . 2013-04-30 06:54 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-04-30 06:54 . 2013-04-30 06:54 441856 ----a-w- c:\windows\system32\html.iec 2013-04-30 06:54 . 2013-04-30 06:54 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-04-30 06:54 . 2013-04-30 06:54 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-04-30 06:54 . 2013-04-30 06:54 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-04-30 06:54 . 2013-04-30 06:54 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-04-30 06:54 . 2013-04-30 06:54 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-04-30 06:54 . 2013-04-30 06:54 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-04-30 06:54 . 2013-04-30 06:54 235008 ----a-w- c:\windows\system32\url.dll 2013-04-30 06:54 . 2013-04-30 06:54 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-04-30 06:54 . 2013-04-30 06:54 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-04-30 06:54 . 2013-04-30 06:54 216064 ----a-w- c:\windows\system32\msls31.dll 2013-04-30 06:54 . 2013-04-30 06:54 197120 ----a-w- c:\windows\system32\msrating.dll 2013-04-30 06:54 . 2013-04-30 06:54 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-04-30 06:54 . 2013-04-30 06:54 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-04-30 06:54 . 2013-04-30 06:54 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-04-30 06:54 . 2013-04-30 06:54 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-04-30 06:54 . 2013-04-30 06:54 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-04-30 06:54 . 2013-04-30 06:54 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-04-30 06:54 . 2013-04-30 06:54 149504 ----a-w- c:\windows\system32\occache.dll 2013-04-30 06:54 . 2013-04-30 06:54 144896 ----a-w- c:\windows\system32\wextract.exe 2013-04-30 06:54 . 2013-04-30 06:54 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-04-30 06:54 . 2013-04-30 06:54 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-04-30 06:54 . 2013-04-30 06:54 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-04-30 06:54 . 2013-04-30 06:54 13824 ----a-w- c:\windows\system32\mshta.exe 2013-04-30 06:54 . 2013-04-30 06:54 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-04-30 06:54 . 2013-04-30 06:54 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-04-30 06:54 . 2013-04-30 06:54 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-04-30 06:54 . 2013-04-30 06:54 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-04-30 06:54 . 2013-04-30 06:54 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-04-30 06:54 . 2013-04-30 06:54 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-04-30 06:54 . 2013-04-30 06:54 102912 ----a-w- c:\windows\system32\inseng.dll 2013-04-13 05:49 . 2013-05-15 05:43 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2013-04-13 05:49 . 2013-05-15 05:43 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll 2013-04-13 05:49 . 2013-05-15 05:43 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2013-04-13 05:49 . 2013-05-15 05:43 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll 2013-04-13 04:45 . 2013-05-15 05:43 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-04-13 04:45 . 2013-05-15 05:43 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-04-12 14:45 . 2013-04-24 06:37 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-10 06:01 . 2013-05-15 05:43 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-04-10 06:01 . 2013-05-15 05:43 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-04-10 03:30 . 2013-05-15 05:41 3153920 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 130736 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-05-08 18680424] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-25 343168] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys;c:\windows\SYSNATIVE\DRIVERS\ASPI32.sys [x] R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\DRIVERS\s0017bus.sys;c:\windows\SYSNATIVE\DRIVERS\s0017bus.sys [x] R3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0017mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mdfl.sys [x] R3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0017mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mdm.sys [x] R3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0017mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s0017mgmt.sys [x] R3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\DRIVERS\s0017nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s0017nd5.sys [x] R3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0017obex.sys;c:\windows\SYSNATIVE\DRIVERS\s0017obex.sys [x] R3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\DRIVERS\s0017unic.sys;c:\windows\SYSNATIVE\DRIVERS\s0017unic.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 WinRing0_1_2_0;WinRing0_1_2_0; [x] S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x] S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x] S0 aswKbd;aswKbd; [x] S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x] S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x] S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [x] S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x] S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x] S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x] S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x] S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x] . . Contents of the 'Scheduled Tasks' folder . 2013-07-03 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-14 11:15] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41] . 2013-07-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job - c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54] . 2013-07-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job - c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2013-05-25 00:36 164016 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.myfreezoo.hu/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xportálás a Microsoft Excel programba - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.1.254 FF - ProfilePath - c:\users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default-1368542265039\ FF - prefs.js: browser.startup.homepage - hxxps://mail.google.com/mail/u/0/?shva= ... ebook.com/ FF - ExtSQL: 2013-07-01 09:38; jid1-JrxwyxPdCKWWcw@jetpack; c:\users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default-1368542265039\extensions\jid1-JrxwyxPdCKWWcw@jetpack . - - - - ORPHANS REMOVED - - - - . Wow6432Node-HKCU-Run-RESTART_STICKY_NOTES - c:\windows\System32\StikyNot.exe HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-07-03 09:14:26 ComboFix-quarantined-files.txt 2013-07-03 07:14 . Pre-Run: 2 046 976 000 bájt szabad Post-Run: 1 990 082 560 bájt szabad . - - End Of File - - 14275B2D6FF51C797064F7E7FD0BE49E A36C5E4F47E84449FF07ED3517B43A31 |
Szerző: | stell [ szer. júl. 03, 2013 7:44 ] |
Hozzászólás témája: | Re: nem reagál ... |
Itt nincsen problema, meg fuutasd le az Combofixet. http://www.bleepingcomputer.com/combofi ... t-combofix |
Szerző: | -kataiandi- [ szer. júl. 03, 2013 7:42 ] |
Hozzászólás témája: | Re: nem reagál ... |
Farbar Service Scanner Version: 27-06-2013 Ran by Andi (administrator) on 03-07-2013 at 08:40:11 Running from "C:\Users\Andi\Desktop" Microsoft Windows 7 Home Premium Service Pack 1 (X64) Boot Mode: Normal **************************************************************** Internet Services: ============ Connection Status: ============== Localhost is accessible. LAN connected. Google IP is accessible. Google.com is accessible. Yahoo.com is accessible. Windows Firewall: ============= Firewall Disabled Policy: ================== System Restore: ============ System Restore Disabled Policy: ======================== Action Center: ============ Windows Update: ============ Windows Autoupdate Disabled Policy: ============================ Windows Defender: ============== Other Services: ============== File Check: ======== C:\Windows\System32\nsisvc.dll => MD5 is legit C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit C:\Windows\System32\dhcpcore.dll => MD5 is legit C:\Windows\System32\drivers\afd.sys => MD5 is legit C:\Windows\System32\drivers\tdx.sys => MD5 is legit C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit C:\Windows\System32\dnsrslvr.dll => MD5 is legit C:\Windows\System32\mpssvc.dll => MD5 is legit C:\Windows\System32\bfe.dll => MD5 is legit C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit C:\Windows\System32\SDRSVC.dll => MD5 is legit C:\Windows\System32\vssvc.exe => MD5 is legit C:\Windows\System32\wscsvc.dll => MD5 is legit C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit C:\Windows\System32\wuaueng.dll => MD5 is legit C:\Windows\System32\qmgr.dll => MD5 is legit C:\Windows\System32\es.dll => MD5 is legit C:\Windows\System32\cryptsvc.dll => MD5 is legit C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit C:\Windows\System32\ipnathlp.dll => MD5 is legit C:\Windows\System32\iphlpsvc.dll => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit **** End of log **** |
Szerző: | stell [ szer. júl. 03, 2013 6:30 ] |
Hozzászólás témája: | Re: nem reagál ... |
Ujbol futtasd az Farbar Service Scanner De most pipaz be mindent klik SCAn, a naplojat tedd ide. |
Szerző: | -kataiandi- [ kedd júl. 02, 2013 21:24 ] |
Hozzászólás témája: | Re: nem reagál ... |
Mielőtt írtál, pont jelezni akartam, hogy totál lefagytam Most megcsináltam amiket írtál, remélem jól.. Ma már enyhén fáradt vagyok, de holnap igyekszem minél többet a gépnél lenni, hogy "leteszteljem" Nagyon kedves vagy, hogy ilyen segítőkész vagy! Tudom már ma nem jössz, de azért szép álmokat |
Szerző: | -kataiandi- [ kedd júl. 02, 2013 21:17 ] |
Hozzászólás témája: | Re: nem reagál ... |
Farbar Service Scanner Version: 27-06-2013 Ran by Andi (administrator) on 02-07-2013 at 22:15:18 Running from "C:\Users\Andi\Desktop" Microsoft Windows 7 Home Premium Service Pack 1 (X64) Boot Mode: Normal **************************************************************** Internet Services: ============ Connection Status: ============== Localhost is accessible. LAN connected. Google IP is accessible. Google.com is accessible. Yahoo.com is accessible. Windows Firewall: ============= Firewall Disabled Policy: ================== System Restore: ============ System Restore Disabled Policy: ======================== Other Services: ============== File Check: ======== C:\Windows\System32\nsisvc.dll => MD5 is legit C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit C:\Windows\System32\dhcpcore.dll => MD5 is legit C:\Windows\System32\drivers\afd.sys => MD5 is legit C:\Windows\System32\drivers\tdx.sys => MD5 is legit C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit C:\Windows\System32\dnsrslvr.dll => MD5 is legit C:\Windows\System32\mpssvc.dll => MD5 is legit C:\Windows\System32\bfe.dll => MD5 is legit C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit C:\Windows\System32\SDRSVC.dll => MD5 is legit C:\Windows\System32\vssvc.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit **** End of log **** |
Szerző: | -kataiandi- [ kedd júl. 02, 2013 21:10 ] |
Hozzászólás témája: | Re: nem reagál ... |
All processes killed ========== FILES ========== File/Folder C:\Windows\system32\*.tmp.dll not found. File/Folder C:\Windows\system32\SET*.tmp not found. File/Folder C:\Windows\*.tmp not found. ========== COMMANDS ========== C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: Andi ->Temp folder emptied: 32775630 bytes ->Temporary Internet Files folder emptied: 72577402 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 289468658 bytes ->Apple Safari cache emptied: 70249472 bytes ->Flash cache emptied: 60341 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 57472 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public ->Temp folder emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 141836068 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42259076 bytes RecycleBin emptied: 7969410 bytes Total Files Cleaned = 627,00 mb [EMPTYFLASH] User: All Users User: Andi ->Flash cache emptied: 0 bytes User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb [EMPTYJAVA] User: All Users User: Andi ->Java cache emptied: 0 bytes User: Default User: Default User User: Public Total Java Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 07022013_220530 Files\Folders moved on Reboot... C:\Users\Andi\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot... |
Szerző: | stell [ kedd júl. 02, 2013 18:57 ] |
Hozzászólás témája: | Re: nem reagál ... |
1:Tolds le az asztalra ezr a Fixit programot, jobb klik es futtasd le mint rendszergazda. http://go.microsoft.com/?linkid=9775756 Restart. 2:Tolds leaz asztalra az OTL.exe programot, . Futtasd mint Rendszergazda. bepipazni az Allusers, 64 bitové OS http://oldtimer.geekstogo.com/OTL.exe Az ablakjaba masold be ezt a textet, es klik>>a RUNFIX gombra, a naplojat tedd ide. Kód: :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [EMPTYJAVA] meg az Avastot ne telepisd, Torold ki az oszes FRST program naplojat az aasztalrol. 3:Tolds le az asztalra az Farbar servicesScannert http://download.bleepingcomputer.com/farbar/FSS.exe Futtasd mint rendszergazda, Bepipazni. Internet Services Windows Firewall System Restore Klik>>"Scan". az (FSS.txt)>.tedd ide. aztan holnap megirom hogyan tovabb, de ird ide van e valtozas... |
Szerző: | -kataiandi- [ kedd júl. 02, 2013 12:11 ] |
Hozzászólás témája: | Re: nem reagál ... |
Szia! Most nem fagy le, bár nem is nagyon vagyok jelenleg gépnél... Viszont végigfuttattam megint az FRST, és ha ha nem gond szeretnék rákérdezni, hogy miért van még ennyi error? Másik kérdés... Avast helyett mit ajánlasz? Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2013 03 Ran by Andi at 2013-07-02 13:02:41 Running from C:\Users\Andi\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) (x32) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) A Microsoft .NET-keretrendszer 4-es verziójához tartozó ügyfélprofil HUN nyelvi csomagja (Version: 4.0.30320) Adobe AIR (x32 Version: 3.7.0.2090) Adobe Community Help (x32 Version: 3.4.980) Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638) Adobe Widget Browser (x32 Version: 2.0 Build 230) Adobe Widget Browser (x32 Version: 2.0.230) AIDA64 Extreme Edition v2.00 (x32 Version: 2.00) Alt CDA to MP3 Converter 7.3 (x32 Version: 7.3) AMD APP SDK Runtime (Version: 2.5.793.1) AMD Catalyst Install Manager (Version: 3.0.851.0) AMD Fuel (Version: 2011.1025.2231.38573) AMD Media Foundation Decoders (Version: 1.0.61025.2207) AMD VISION Engine Control Center (x32 Version: 2011.1025.2231.38573) Apple Application Support (x32 Version: 2.1.5) Apple Software Update (x32 Version: 2.1.3.127) Application Profiles (x32 Version: 2.0.4331.36041) Audacity 1.3.13 (Unicode) (x32) Broadcom 802.11 Network Adapter (Version: 5.100.235.19) Broadcom Card Reader Driver Installer (Version: 14.6.1.3) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2011.1025.2231.38573) Catalyst Control Center InstallProxy (x32 Version: 2011.1025.2231.38573) Catalyst Control Center Localization All (x32 Version: 2011.1025.2231.38573) CCC Help English (x32 Version: 2011.1025.2230.38573) ccc-utility64 (Version: 2011.1025.2231.38573) CCleaner (Version: 3.27) Cisco EAP-FAST Module (x32 Version: 2.2.14) Cisco LEAP Module (x32 Version: 1.0.19) Cisco PEAP Module (x32 Version: 1.1.6) D3DX10 (x32 Version: 15.4.2368.0902) DAEMON Tools Lite (x32 Version: 4.45.1.0236) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) Dropbox (HKCU Version: 2.0.22) FireArc Arcade (x32 Version: 0.6.0) Fotótár (x32 Version: 16.4.3505.0912) Freemake Audio Converter 1.1.0 verzió (x32 Version: 1.1.0) FUJIFILM MyFinePix Studio 1.0 (x32) Gépírás 2000 Internetes Verzió (x32) GIMP 2.6.11 (x32 Version: 2.6.11) Google Talk Plugin (x32 Version: 4.1.3.13728) Google Update Helper (x32 Version: 1.3.21.145) High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0) IrfanView (remove only) (x32 Version: 4.30) Java 7 Update 17 (64-bit) (Version: 7.0.170) Java Auto Updater (x32 Version: 2.0.7.2) Java(TM) 6 Update 39 (x32 Version: 6.0.390) Junk Mail filter update (x32 Version: 16.4.3505.0912) Malwarebytes Anti-Malware 1.75.0.1300 verzió (x32 Version: 1.75.0.1300) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320) Microsoft .NET Framework 4 Client Profile HUN Language Pack (Version: 4.0.30320) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Excel 2007 Help-frissítés (KB963678) (x32) Microsoft Office Excel MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Groove MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000) Microsoft Office Outlook MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (x32) Microsoft Office PowerPoint MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (Hungarian) 2007 (x32 Version: 12.0.4518.1029) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Publisher MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (Hungarian) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word 2007 Help-frissítés (KB963665) (x32) Microsoft Office Word MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Movie Maker (x32 Version: 16.4.3505.0912) Mozilla Firefox 21.0 (x86 hu) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1109.0912) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Natalie Brooks A Hillcrest Gimi Rejtélye (x32) Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0) Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0) Nero 7 Premium (x32 Version: 7.02.9752) Nero BackItUp 10 (x32 Version: 5.4.11600.19.100) Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700) Nero Burning ROM 10 (x32 Version: 10.0.11100.10.100) Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700) Nero BurnRights 10 (x32 Version: 4.0.11000.12.100) Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600) Nero Control Center 10 (x32 Version: 10.0.12000.1.4) Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700) Nero Core Components 10 (x32 Version: 2.0.13700.0.1) Nero CoverDesigner 10 (x32 Version: 5.0.10900.11.100) Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600) Nero DiscSpeed 10 (x32 Version: 6.0.10800.7.100) Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600) Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10) Nero Express 10 (x32 Version: 10.0.11000.10.100) Nero Express 10 Help (CHM) (x32 Version: 1.0.10700) Nero InfoTool 10 (x32 Version: 7.0.10800.8.100) Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600) Nero MediaHub 10 (x32 Version: 1.0.13400.11.100) Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700) Nero Multimedia Suite 10 (x32 Version: 10.0.13100) Nero Recode 10 (x32 Version: 4.6.10900.4.100) Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600) Nero RescueAgent 10 (x32 Version: 3.0.10900.9.100) Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700) Nero SoundTrax 10 (x32 Version: 4.6.10600.2.100) Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600) Nero StartSmart 10 (x32 Version: 10.0.11200.12.100) Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700) Nero Update (x32 Version: 1.0.0017) Nero Vision 10 (x32 Version: 7.0.11100.8.100) Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600) Nero WaveEditor 10 (x32 Version: 5.6.10600.2.100) Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600) neroxml (x32 Version: 1.0.0) Nitro Reader 2 (Version: 2.4.1.15) Notepad++ (x32 Version: 5.9.6.2) OpenOffice.org 3.4.1 (x32 Version: 3.41.9593) PerfectDisk 11 Professional (Version: 11.00.185) Photo Common (x32 Version: 16.4.3505.0912) Photo Gallery (x32 Version: 16.4.3505.0912) PhotoScape (x32) QuickTime (x32 Version: 7.71.80.42) RarmaRadio 2.68.2 (x32) ReaGallery Pro (x32) Safari (x32 Version: 5.34.54.16) Skype™ 6.3 (x32 Version: 6.3.107) swMSM (x32 Version: 12.0.0.1) Synaptics Pointing Device Driver (Version: 15.2.2.0) The KMPlayer (remove only) (x32) Total Commander (Remove or Repair) (x32 Version: 7.55a) Unlocker 1.8.9 (x32 Version: 1.8.9) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) VLC media player 1.1.11 (x32 Version: 1.1.11) WAV MP3 Converter v4.4 build 1429 (x32) Winamp (x32 Version: 5.622 ) Windows 7 Codec Pack 3.4.0 (x32 Version: 3.4.0) Windows illesztőprogram-csomag - Sony Ericsson Mobile Communications (ggsemc) USB (02/22/2011 2.2.0.5) (Version: 02/22/2011 2.2.0.5) Windows Live Communications Platform (x32 Version: 16.4.3505.0912) Windows Live Essentials (x32 Version: 16.4.3505.0912) Windows Live Family Safety (Version: 16.4.3505.0912) Windows Live Family Safety (x32 Version: 16.4.3505.0912) Windows Live ID Sign-in Assistant (Version: 7.250.4311.0) Windows Live Installer (x32 Version: 16.4.3505.0912) Windows Live Mail (x32 Version: 16.4.3505.0912) Windows Live Messenger (x32 Version: 16.4.3505.0912) Windows Live MIME IFilter (Version: 16.4.3505.0912) Windows Live Photo Common (x32 Version: 16.4.3505.0912) Windows Live PIMT Platform (x32 Version: 16.4.3505.0912) Windows Live SOXE (x32 Version: 16.4.3505.0912) Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912) Windows Live Sync (x32 Version: 14.0.8117.416) Windows Live UX Platform (x32 Version: 16.4.3505.0912) Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912) Windows Live Writer (x32 Version: 16.4.3505.0912) Windows Live Writer Resources (x32 Version: 16.4.3505.0912) Windows Media Player Firefox Plugin (x32 Version: 1.0.0. ==================== Restore Points ========================= 01-07-2013 10:45:31 avast! Free Antivirus telepítés ==================== Scheduled Tasks (whitelisted) ============= Task: {16BEF3D7-27C9-4CF6-A9F9-FA57F980D060} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {2171CED2-4143-4A94-A4BB-CA4FF619B0A3} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {4A87ED42-898E-4419-8E26-48AFBCC04325} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {5B3CD9BF-F68C-4389-B7A8-C9552B5409BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {6B32D039-AF9D-4131-AFD4-6D7D62B47EC8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated) Task: {6FA81675-3025-4BDF-A745-0961C8331A63} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe No File Task: {724AF1AF-069D-46E9-8AD7-6AB3EA2A3492} - System32\Tasks\Game_Booster_AutoUpdate => C:\Install\Game Booster 3\AutoUpdate.exe No File Task: {D36416C2-9CBB-4071-AB8D-F1A768B9460A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: {D40486B2-E795-4957-A0EB-24A2D26F089F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {EC68D26C-503F-4BC4-B21C-C95983688510} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Event log errors: ========================= Application errors: ================== Error: (07/02/2013 00:57:23 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/02/2013 07:24:52 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 02:23:03 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 02:13:51 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 10:53:26 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 10:46:49 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 08:00:56 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 05:44:42 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/30/2013 00:47:05 PM) (Source: Application Error) (User: ) Description: A hibát okozó alkalmazás neve: firefox.exe, verzió: 21.0.0.4879, időbélyeg: 0x518ec3cc A hibát okozó modul neve: xul.dll, verzió: 21.0.0.4879, időbélyeg: 0x518ec306 Kivételkód: 0xc0000005 Hiba pozíciója: 0x001c9789 A hibát okozó folyamat azonosítója: 0xabc A hibát okozó alkalmazás indításának időpontja: 0xfirefox.exe0 A hibát okozó alkalmazás elérési útja: firefox.exe1 A hibát okozó modul elérési útja: firefox.exe2 Jelentés azonosítója: firefox.exe3 Error: (06/30/2013 00:33:31 PM) (Source: Application Hang) (User: ) Description: A(z) firefox.exe program (verzió: 21.0.0.4879) kommunikációja a Windows rendszerrel megszakadt, ezért a program leállt. A hibával kapcsolatos további információkért ellenőrizze a probléma előzményeit a Műveletközpont vezérlőpulton. Folyamatazonosító: 110c Kezdés: 01ce757ce07e3b35 Befejezés: 16 Alkalmazás elérési útja: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Jelentés azonosítója: 7da8604e-e170-11e2-bb58-206a8a4a3e4c System errors: ============= Error: (07/01/2013 02:18:23 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:18:23 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:18:23 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:27 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:27 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:27 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:25 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:25 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:25 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 02:17:25 PM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Microsoft Office Sessions: ========================= Error: (11/14/2012 00:43:35 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 14793 seconds with 1980 seconds of active time. This session ended with a crash. Error: (06/01/2012 11:33:36 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-05-14 21:14:05.758 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.680 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.555 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.461 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.691 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.504 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.410 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.755 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.654 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 38% Total physical RAM: 2534.11 MB Available physical RAM: 1558.22 MB Total Pagefile: 5066.4 MB Available Pagefile: 3710.13 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (HDD 1 Rendszer) (Fixed) (Total:39.98 GB) (Free:1.59 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)] Drive d: (HDD 2) (Fixed) (Total:258.11 GB) (Free:235.59 GB) NTFS (Disk=0 Partition=2) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or (Size: 298 GB) (Disk ID: 2D7140DA) Partition 1: (Active) - (Size=40 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=258 GB) - (Type=OF Extended) ==================== End Of Log ============================ |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 10:57 ] |
Hozzászólás témája: | Re: nem reagál ... |
stell írta: Letelepiteni az AVASTOT ugy ahogy azellott, es ugy kiprobalni az AVAST nelkul a szamitogepet, aztan ird meg hogy mi van, en csakk olyan 19 ora kozot be nezek, majd. oké. Nekem is dolgom van lassan.. csinálhat az Avast ilyen galibát (?) Este jövök, addig is köszi és szép délutánt! |
Szerző: | stell [ hétf. júl. 01, 2013 10:51 ] |
Hozzászólás témája: | Re: nem reagál ... |
Letelepiteni az AVASTOT ugy ahogy azellott, es ugy kiprobalni az AVAST nelkul a szamitogepet, aztan ird meg hogy mi van, en csakk olyan 19 ora kozot be nezek, majd. |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 10:41 ] |
Hozzászólás témája: | Re: nem reagál ... |
stell írta: Nem irodd,,, ha van e javulas?? Mert a FRST mindig az AVAST miniport driverel problemat jelez.. picit el kellett mennem... Pedig mindent úgy csináltam mindent ahogy leírtad.. az AVASTOT is újratettem... sajna úgy látom nincs változás. |
Szerző: | stell [ hétf. júl. 01, 2013 10:37 ] |
Hozzászólás témája: | Re: nem reagál ... |
Nem irodd,,, ha van e javulas?? Mert a FRST mindig az AVAST miniport driverel problemat jelez.. |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 10:15 ] |
Hozzászólás témája: | Re: nem reagál ... |
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-06-2013 03 Ran by Andi (administrator) on 01-07-2013 11:09:18 Running from C:\Users\Andi\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: 040E Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AMD) C:\Windows\system32\atieclxx.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Microsoft Corporation) C:\Windows\system32\msiexec.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\setup\avast.setup ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2478888 2010-11-18] (Synaptics Incorporated) HKCU\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18680424 2013-05-08] (Skype Technologies S.A.) HKCU\...\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation) HKCU\...\Policies\system: [disableregistrytools] 0 HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [343168 2011-10-25] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4767304 2013-03-07] (AVAST Software) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myfreezoo.hu/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU SearchScopes: DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - ${searchCLSID} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {99622E94-68F4-4F55-80AB-89B3BF3903DB} URL = http://search.yahoo.com/search?fr=chr-g ... =937811&p={searchTerms} BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-fiók bejelentkezési segédje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/ms ... b56986.cab DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab DPF: HKLM-x32 {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/So ... b56986.cab DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messenger ... E_UNO1.cab DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab DPF: HKLM-x32 {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/Mi ... b56986.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll ( ) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Andi\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Andi\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-10-25] (Advanced Micro Devices, Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248 2013-03-07] (AVAST Software) R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [100864 2012-06-06] (Freemake) R2 NitroReaderDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [216080 2012-06-25] (Nitro PDF Software) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG) ==================== Drivers (Whitelisted) ==================== S3 ASPI; C:\Windows\SysWow64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-03-07] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [70992 2013-03-07] (AVAST Software) S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-03-07] () S1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-03-07] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [377920 2013-03-07] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [68920 2013-03-07] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178624 2013-03-07] () S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [113704 2008-10-21] (MCCI Corporation) S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [19496 2008-10-21] (MCCI Corporation) S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [152616 2008-10-21] (MCCI Corporation) S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [133160 2008-10-21] (MCCI Corporation) S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [34856 2008-10-21] (MCCI Corporation) S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [128552 2008-10-21] (MCCI Corporation) S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [145960 2008-10-21] (MCCI Corporation) R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-03] () U3 a6gpffb8; C:\Windows\System32\Drivers\a6gpffb8.sys [0 ] (Broadcom Corporation) S3 ASPI; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [x] S3 catchme; \??\C:\ComboFix\catchme.sys [x] ========================== Drivers MD5 ======================= C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit C:\Windows\system32\drivers\afd.sys 1C7857B62DE5994A75B054A9FD4C3825 C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\amdiox64.sys 6A2EEB0C4133B20773BB3DD0B7B377B4 C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\atikmdag.sys 0415FFE1B6A6EA141FEAFCA57567F57F C:\Windows\System32\DRIVERS\atikmpag.sys DC24D6F38F17C0D643D9AA8A6852F8D0 C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49 C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048 C:\Windows\System32\DRIVERS\amd_sata.sys F9D46B6B322708BD5AFCC8767EBDC901 C:\Windows\System32\DRIVERS\amd_xata.sys 329CC9C7E20DEEBCD4CD10816193EF14 C:\Windows\system32\drivers\appid.sys ==> MD5 is legit C:\Windows\system32\drivers\arc.sys ==> MD5 is legit C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit C:\Windows\SysWow64\DRIVERS\ASPI32.sys E54E27976E2C5A6465D44C10B1D87AC0 C:\Windows\system32\drivers\aswMonFlt.sys E92635BB235B03ED03B17CBB59F77FA4 C:\Windows\System32\Drivers\aswrdr2.sys 8F90459AFB7FD4557D935CE639EF6110 C:\Windows\System32\Drivers\aswRvrt.sys DE6759B8D8E62BF0FFF2B05F05AFCEE6 C:\Windows\System32\Drivers\aswSnx.sys AB8B4D3136D18A20777036E0F0CFC5E1 C:\Windows\System32\Drivers\aswSP.sys 97D4D725BD32C965119E6C8E252F8C64 C:\Windows\System32\Drivers\aswTdi.sys D62C10D1829C65115111C160EA956260 C:\Windows\System32\Drivers\aswVmm.sys 7E44C2684A6CA779B9D07CB4BD3F649D C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit C:\Windows\System32\drivers\AtihdW76.sys CBD14F698DEF12EE3557604B726CB8EB C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57xdbd.sys A424CB46A145E5AABF15621550976DF2 C:\Windows\System32\DRIVERS\b57xdmp.sys BE4E6FD5A898812B85D5817AD9754A9F C:\Windows\System32\DRIVERS\bcmwl664.sys 85111026F1C5A1C4CCE3697F0DA7BC1A C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bScsiMSa.sys 413DD8AB0BB30B9C4F5E6A34977A1C34 C:\Windows\System32\DRIVERS\bScsiSDa.sys 9F880F03F4A72215C8B77FD51322C297 C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit C:\Windows\System32\CLFS.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit C:\Windows\System32\Drivers\cng.sys AAFCB52FE0037207FB6FBEA070D25EFE C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit C:\Windows\System32\Drivers\DefragFS.sys CEC7F24E28B40829C0FD2D523E72B5D3 C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit C:\Windows\System32\drivers\discache.sys ==> MD5 is legit C:\Windows\System32\drivers\disk.sys ==> MD5 is legit C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit C:\Windows\System32\drivers\dxgkrnl.sys AF2E16242AA723F68F461B6EAE2EAD3D C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\fssfltr.sys B16B626996C74B564005BA855C5DEE90 C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0 C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ggflt.sys A4198F2BD8AA592CB90476277A81B5E1 C:\Windows\System32\DRIVERS\ggsemc.sys D266350BDAAB9EB6C1AEC370EEAAFF3A C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366 C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit C:\Windows\system32\drivers\intelppm.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\k57nd60a.sys 1D7AAB58F4E21697AF8F46EAA81823DD C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit C:\Windows\System32\Drivers\ksecdd.sys 97A7070AEA4C058B6418519E869A63B4 C:\Windows\System32\Drivers\ksecpkg.sys 7EFB9333E4ECCE6AE4AE9D777D9E553E C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit C:\Windows\System32\drivers\modem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163 C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88 C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0 C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit C:\Windows\system32\drivers\parport.sys ==> MD5 is legit C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C C:\Windows\System32\drivers\pci.sys ==> MD5 is legit C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit C:\Windows\system32\drivers\processr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34 C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\s0017bus.sys 032F537623A7B2FB81AAA184C30B70C3 C:\Windows\System32\DRIVERS\s0017mdfl.sys 9964A28E569B4FF105B446EF8978FD5C C:\Windows\System32\DRIVERS\s0017mdm.sys 06347087D274C23DCFA8C4AB5C4314DB C:\Windows\System32\DRIVERS\s0017mgmt.sys F0F0747B3FA50272DE6B1BF575FA4700 C:\Windows\System32\DRIVERS\s0017nd5.sys 7224412CEA2FF2DF7D4842C1B0E71045 C:\Windows\System32\DRIVERS\s0017obex.sys 3FEADBC7F09B8B596CBFB82F12ABA87F C:\Windows\System32\DRIVERS\s0017unic.sys 2B63BEA31D939888B2A8F3F14D89B5C1 C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\sdbus.sys 111E0EBC0AD79CB0FA014B907B231CF0 C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\seehcri.sys EDE7A1D2715AAC2190D51DC07AFD44E3 C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit C:\Windows\system32\drivers\serial.sys ==> MD5 is legit C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit C:\Windows\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28 C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3 C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\SynTP.sys 547988596190BB44818B0653F8F7C0D3 C:\Windows\System32\drivers\tcpip.sys 9849EA3843A2ADBDD1497E97A85D8CAE C:\Windows\System32\DRIVERS\tcpip.sys 9849EA3843A2ADBDD1497E97A85D8CAE C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8 C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 is legit C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07 C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\usbccgp.sys 6F1A3157A1C89435352CEB543CDB359C C:\Windows\system32\drivers\usbcir.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\usbehci.sys C025055FE7B87701EB042095DF1A2D7B C:\Windows\System32\DRIVERS\usbfilter.sys 573D192E268F0C5B486B7E96F661E538 C:\Windows\System32\DRIVERS\usbhub.sys 287C6C9410B111B68B52CA298F7B8C24 C:\Windows\System32\DRIVERS\usbohci.sys 9840FC418B4CBD632D3D0A667A725C31 C:\Windows\system32\drivers\usbprint.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6 C:\Windows\system32\drivers\usbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CD C:\Windows\System32\Drivers\usbvideo.sys 454800C2BC7F3927CE030141EE4F4C50 C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit C:\Windows\System32\drivers\vga.sys ==> MD5 is legit C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\system32\drivers\wd.sys ==> MD5 is legit C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4 C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659 C:\Windows\System32\Drivers\a6gpffb8.sys ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-01 11:04 - 2013-07-01 11:04 - 00001896 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-07-01 11:04 - 2013-03-07 00:33 - 01025808 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00377920 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00178624 ____A C:\Windows\System32\Drivers\aswVmm.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00080816 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00070992 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00068920 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00065336 ____A C:\Windows\System32\Drivers\aswRvrt.sys 2013-07-01 11:04 - 2013-03-07 00:33 - 00033400 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys 2013-07-01 11:04 - 2013-03-07 00:32 - 00287840 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe 2013-07-01 11:04 - 2013-03-07 00:32 - 00041664 ____A (AVAST Software) C:\Windows\avastSS.scr 2013-07-01 11:03 - 2013-07-01 11:03 - 00000000 ____D C:\Program Files\AVAST Software 2013-07-01 10:56 - 2013-07-01 11:01 - 111691960 ____A C:\Users\Andi\Downloads\avast_free_antivirus_setup.exe 2013-07-01 10:50 - 2013-07-01 10:50 - 00000000 ____D C:\Users\Public\Desktop\CC Support 2013-07-01 10:38 - 2013-07-01 10:39 - 04009167 ____A C:\Users\Andi\Desktop\ServicesRepair.exe 2013-07-01 09:08 - 2013-07-01 09:08 - 00027845 ____A C:\Users\Andi\Desktop\Addition.txt 2013-07-01 09:07 - 2013-07-01 09:07 - 00000000 ____D C:\FRST 2013-07-01 09:02 - 2013-07-01 09:03 - 01933758 ____A (Farbar) C:\Users\Andi\Desktop\FRST64.exe 2013-07-01 05:51 - 2013-07-01 05:51 - 00874534 ____A C:\Users\Andi\Downloads\blog-06-30-2013.xml 2013-06-30 14:43 - 2013-06-30 15:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 14:41 - 2013-06-30 14:41 - 00000000 ____D C:\Users\Andi\Desktop\mbar-1.06.0.1004 2013-06-30 14:39 - 2013-06-30 14:40 - 13399154 ____A C:\Users\Andi\Desktop\mbar-1.06.0.1004.zip 2013-06-30 12:47 - 2013-06-30 12:47 - 00000000 ____D C:\rsit 2013-06-30 12:37 - 2013-06-30 12:37 - 00935175 ____A C:\Users\Andi\Desktop\RSITx64.exe 2013-06-27 22:18 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-26 19:20 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-26 19:20 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-25 20:30 - 2013-06-25 20:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\HBM-Games 2013-06-25 20:29 - 2013-06-25 20:29 - 00001110 ____A C:\Users\Andi\Desktop\Vida parancsikonja.lnk 2013-06-25 12:50 - 2013-07-01 10:51 - 00001456 ____A C:\Windows\setupact.log 2013-06-25 12:50 - 2013-07-01 10:49 - 00001630 ____A C:\Windows\PFRO.log 2013-06-25 12:50 - 2013-06-25 12:50 - 00000000 ____A C:\Windows\setuperr.log 2013-06-25 09:03 - 2013-06-25 09:04 - 14713592 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbsb-setup-1.0.0.0010.exe 2013-06-25 08:48 - 2013-06-25 08:48 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 08:48 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2013-06-25 08:46 - 2013-06-25 08:47 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbam-setup-1.75.0.1300.exe 2013-06-23 07:32 - 2013-06-23 07:32 - 00001312 ____A C:\Users\Andi\Desktop\internetbeallitas parancsikonja.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00002875 ____A C:\Users\Andi\Desktop\FireArc Arcade.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00000000 ____D C:\Program Files (x86)\FireArc Arcade 2013-06-22 21:33 - 2013-06-22 21:34 - 08101955 ____A (FireArc.com) C:\Users\Andi\Downloads\Install_FireArc_Arcade_0.6.0.exe 2013-06-21 15:10 - 2013-06-21 15:10 - 00320939 ____A C:\Users\Andi\Desktop\balatonn.xps 2013-06-20 20:46 - 2013-06-20 20:46 - 00000752 ____A C:\Users\Andi\Desktop\nb3 parancsikonja.lnk 2013-06-20 20:40 - 2013-06-20 22:51 - 396790730 ____A C:\Users\Andi\Downloads\ChroniclesofVida-TheStoryoftheMissingPrincess.rar 2013-06-20 20:11 - 2013-06-20 20:42 - 122669073 ____A C:\Users\Andi\Downloads\Natalie_Brooks_A_Hillcrest_Gimi_Rejtely_HUN.rar 2013-06-18 16:15 - 2013-06-18 16:15 - 00000000 ____D C:\Program Files (x86)\Safari 2013-06-18 13:47 - 2013-06-18 14:07 - 38501744 ____A (Apple Inc.) C:\Users\Andi\Downloads\SafariSetup.exe 2013-06-16 16:51 - 2011-10-06 15:00 - 02670592 ____A C:\Users\Andi\Documents\Majom Torony.wrp.exe 2013-06-15 08:14 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-15 08:14 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-06-15 08:13 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-15 08:13 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-15 08:13 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-13 19:15 - 2013-06-25 14:57 - 00000000 ____D C:\Users\Andi\Desktop\K. János kéziratai - visszavan 2013-06-13 19:11 - 2013-06-13 19:11 - 01992436 ____A C:\Users\Andi\Downloads\vkzi10_11_12_13_vasrnap.zip 2013-06-12 22:18 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-06-12 22:18 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-06-12 22:18 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-06-12 22:18 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-06-12 22:18 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-06-12 22:18 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-06-12 22:18 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-06-12 22:18 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-06-12 22:18 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-06-12 22:17 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-06-12 22:17 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-12 18:33 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-12 18:33 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-12 18:33 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-12 18:33 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-12 18:33 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-12 18:33 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-12 18:33 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-12 18:33 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-12 18:33 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-12 18:33 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-12 18:33 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-12 18:33 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-12 18:33 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll 2013-06-12 12:56 - 2013-06-12 12:56 - 00318904 ____A (Microsoft Corporation) C:\Users\Andi\Downloads\wmpfirefoxplugin.exe ==================== One Month Modified Files and Folders ======= 2013-07-01 11:04 - 2013-07-01 11:04 - 00001896 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-07-01 11:04 - 2012-01-28 18:10 - 00000000 ____A C:\Windows\SysWOW64\config.nt 2013-07-01 11:03 - 2013-07-01 11:03 - 00000000 ____D C:\Program Files\AVAST Software 2013-07-01 11:03 - 2013-02-06 17:41 - 00001024 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-01 11:03 - 2012-07-19 15:19 - 00000000 ____D C:\ProgramData\AVAST Software 2013-07-01 11:01 - 2013-07-01 10:56 - 111691960 ____A C:\Users\Andi\Downloads\avast_free_antivirus_setup.exe 2013-07-01 10:58 - 2009-07-14 06:45 - 00021472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-01 10:58 - 2009-07-14 06:45 - 00021472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-01 10:51 - 2013-06-25 12:50 - 00001456 ____A C:\Windows\setupact.log 2013-07-01 10:51 - 2013-02-06 17:41 - 00001020 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-01 10:51 - 2009-07-14 07:08 - 00032560 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-07-01 10:51 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-01 10:50 - 2013-07-01 10:50 - 00000000 ____D C:\Users\Public\Desktop\CC Support 2013-07-01 10:49 - 2013-06-25 12:50 - 00001630 ____A C:\Windows\PFRO.log 2013-07-01 10:43 - 2013-05-21 18:59 - 01423549 ____A C:\Windows\WindowsUpdate.log 2013-07-01 10:41 - 2011-12-22 15:58 - 00001034 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job 2013-07-01 10:39 - 2013-07-01 10:38 - 04009167 ____A C:\Users\Andi\Desktop\ServicesRepair.exe 2013-07-01 10:15 - 2012-07-14 18:29 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-01 09:08 - 2013-07-01 09:08 - 00027845 ____A C:\Users\Andi\Desktop\Addition.txt 2013-07-01 09:07 - 2013-07-01 09:07 - 00000000 ____D C:\FRST 2013-07-01 09:03 - 2013-07-01 09:02 - 01933758 ____A (Farbar) C:\Users\Andi\Desktop\FRST64.exe 2013-07-01 05:51 - 2013-07-01 05:51 - 00874534 ____A C:\Users\Andi\Downloads\blog-06-30-2013.xml 2013-07-01 05:44 - 2013-02-06 19:06 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Skype 2013-06-30 22:50 - 2011-12-22 15:58 - 00000982 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job 2013-06-30 20:49 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-06-30 17:04 - 2011-12-03 14:54 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Nitro PDF 2013-06-30 15:26 - 2013-06-30 14:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 14:41 - 2013-06-30 14:41 - 00000000 ____D C:\Users\Andi\Desktop\mbar-1.06.0.1004 2013-06-30 14:40 - 2013-06-30 14:39 - 13399154 ____A C:\Users\Andi\Desktop\mbar-1.06.0.1004.zip 2013-06-30 12:47 - 2013-06-30 12:47 - 00000000 ____D C:\rsit 2013-06-30 12:47 - 2012-07-13 20:30 - 00000000 ____D C:\Program Files\trend micro 2013-06-30 12:47 - 2012-05-02 15:17 - 00000000 ____D C:\Users\Andi\AppData\Local\CrashDumps 2013-06-30 12:37 - 2013-06-30 12:37 - 00935175 ____A C:\Users\Andi\Desktop\RSITx64.exe 2013-06-29 20:31 - 2012-07-14 09:30 - 00000000 ____D C:\Users\Andi\Desktop\Kirsh János kéziratai 2013-06-27 22:42 - 2011-12-01 19:54 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Mozilla 2013-06-27 22:18 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-27 22:18 - 2013-06-26 19:20 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-27 22:18 - 2013-06-26 19:20 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-25 20:30 - 2013-06-25 20:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\HBM-Games 2013-06-25 20:29 - 2013-06-25 20:29 - 00001110 ____A C:\Users\Andi\Desktop\Vida parancsikonja.lnk 2013-06-25 16:29 - 2011-01-22 15:38 - 00643912 ____A C:\Windows\System32\perfh00E.dat 2013-06-25 16:29 - 2011-01-22 15:38 - 00149910 ____A C:\Windows\System32\perfc00E.dat 2013-06-25 16:29 - 2009-07-14 07:13 - 01534630 ____A C:\Windows\System32\PerfStringBackup.INI 2013-06-25 14:57 - 2013-06-13 19:15 - 00000000 ____D C:\Users\Andi\Desktop\K. János kéziratai - visszavan 2013-06-25 12:50 - 2013-06-25 12:50 - 00000000 ____A C:\Windows\setuperr.log 2013-06-25 12:15 - 2013-05-14 10:34 - 00000000 ____D C:\Users\Andi\Desktop\egyebek -asztalról 2013-06-25 12:15 - 2011-12-06 18:24 - 00000000 ___RD C:\Users\Andi\Desktop\Programok 2013-06-25 12:04 - 2012-08-16 12:50 - 00000000 ____D C:\Windows\pss 2013-06-25 12:01 - 2012-11-10 22:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Dropbox 2013-06-25 09:59 - 2013-02-23 17:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-06-25 09:04 - 2013-06-25 09:03 - 14713592 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbsb-setup-1.0.0.0010.exe 2013-06-25 09:04 - 2011-12-01 23:35 - 00000000 ____D C:\Windows\Downloaded Installations 2013-06-25 08:48 - 2013-06-25 08:48 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 08:47 - 2013-06-25 08:46 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbam-setup-1.75.0.1300.exe 2013-06-25 08:20 - 2012-11-10 22:33 - 00000000 ___RD C:\Users\Andi\Dropbox 2013-06-23 17:02 - 2013-05-28 11:05 - 00000000 ____D C:\Users\Andi\Desktop\2 kötet -Tanulságtétel 2013-06-23 17:02 - 2011-12-06 10:38 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Audacity 2013-06-23 07:32 - 2013-06-23 07:32 - 00001312 ____A C:\Users\Andi\Desktop\internetbeallitas parancsikonja.lnk 2013-06-22 21:37 - 2013-05-27 18:24 - 00000000 ____D C:\Users\Andi\AppData\Roaming\FireArc Arcade 2013-06-22 21:36 - 2013-06-22 21:36 - 00002875 ____A C:\Users\Andi\Desktop\FireArc Arcade.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00000000 ____D C:\Program Files (x86)\FireArc Arcade 2013-06-22 21:34 - 2013-06-22 21:33 - 08101955 ____A (FireArc.com) C:\Users\Andi\Downloads\Install_FireArc_Arcade_0.6.0.exe 2013-06-21 15:10 - 2013-06-21 15:10 - 00320939 ____A C:\Users\Andi\Desktop\balatonn.xps 2013-06-21 09:56 - 2011-12-03 14:52 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Winamp 2013-06-21 09:56 - 2011-12-02 02:04 - 00000000 ____D C:\Windows\Panther 2013-06-20 22:51 - 2013-06-20 20:40 - 396790730 ____A C:\Users\Andi\Downloads\ChroniclesofVida-TheStoryoftheMissingPrincess.rar 2013-06-20 20:46 - 2013-06-20 20:46 - 00000752 ____A C:\Users\Andi\Desktop\nb3 parancsikonja.lnk 2013-06-20 20:46 - 2012-01-01 01:20 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Friday's games 2013-06-20 20:42 - 2013-06-20 20:11 - 122669073 ____A C:\Users\Andi\Downloads\Natalie_Brooks_A_Hillcrest_Gimi_Rejtely_HUN.rar 2013-06-18 16:15 - 2013-06-18 16:15 - 00000000 ____D C:\Program Files (x86)\Safari 2013-06-18 14:07 - 2013-06-18 13:47 - 38501744 ____A (Apple Inc.) C:\Users\Andi\Downloads\SafariSetup.exe 2013-06-16 16:52 - 2011-12-05 21:46 - 00000000 ____D C:\Users\Andi\Desktop\JÁTÉKOK 2013-06-16 14:23 - 2011-12-05 21:03 - 00017408 ___AH C:\Users\Andi\Desktop\photothumb.db 2013-06-16 10:25 - 2012-02-09 21:28 - 00014336 ____A C:\Users\Andi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-06-13 19:11 - 2013-06-13 19:11 - 01992436 ____A C:\Users\Andi\Downloads\vkzi10_11_12_13_vasrnap.zip 2013-06-13 16:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-06-12 22:21 - 2011-12-03 14:39 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-06-12 22:18 - 2011-12-01 18:49 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-12 13:15 - 2012-07-14 18:29 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-12 13:15 - 2011-12-03 16:07 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-06-12 12:56 - 2013-06-12 12:56 - 00318904 ____A (Microsoft Corporation) C:\Users\Andi\Downloads\wmpfirefoxplugin.exe 2013-06-08 16:08 - 2013-06-15 08:13 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-08 16:07 - 2013-06-15 08:13 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-08 14:28 - 2013-06-15 08:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-08 13:42 - 2013-06-15 08:13 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-08 13:13 - 2013-06-15 08:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== BCD ================================ Windows Rendszert”lt‚s-vez‚rl‹ ------------------------------ azonosˇt˘ {bootmgr} device partition=C: description Windows Boot Manager locale hu-HU inherit {globalsettings} default {current} resumeobject {3223c384-1c79-11e1-b10e-ff315178ecc9} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows rendszert”lt‹ --------------------- azonosˇt˘ {current} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale hu-HU inherit {bootloadersettings} osdevice partition=C: systemroot \Windows resumeobject {3223c384-1c79-11e1-b10e-ff315178ecc9} nx OptIn Folytat s hibern l s ut n ------------------------- azonosˇt˘ {3223c384-1c79-11e1-b10e-ff315178ecc9} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale hu-HU inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Windows mem˘riatesztel‹ ----------------------- azonosˇt˘ {memdiag} device partition=C: path \boot\memtest.exe description Windows mem˘riadiagnosztika locale hu-HU inherit {globalsettings} badmemoryaccess Yes EMS-be llˇt sok --------------- azonosˇt˘ {emssettings} bootems Yes Hibakeres‚si be llˇt sok ------------------------ azonosˇt˘ {dbgsettings} debugtype Serial debugport 1 baudrate 115200 RAM-hib k --------- azonosˇt˘ {badmemory} Glob lis be llˇt sok -------------------- azonosˇt˘ {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Rendszert”lt‹ be llˇt sai ------------------------- azonosˇt˘ {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hipervizor be llˇt sai ------------------- azonosˇt˘ {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Folytat si bet”lt‹ be llˇt sai ------------------------------ azonosˇt˘ {resumeloadersettings} inherit {globalsettings} LastRegBack: 2013-06-26 07:27 ==================== End Of Log ============================ |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 10:13 ] |
Hozzászólás témája: | Re: nem reagál ... |
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2013 03 Ran by Andi at 2013-07-01 11:10:07 Running from C:\Users\Andi\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) (x32) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) A Microsoft .NET-keretrendszer 4-es verziójához tartozó ügyfélprofil HUN nyelvi csomagja (Version: 4.0.30320) Adobe AIR (x32 Version: 3.7.0.2090) Adobe Community Help (x32 Version: 3.4.980) Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638) Adobe Widget Browser (x32 Version: 2.0 Build 230) Adobe Widget Browser (x32 Version: 2.0.230) AIDA64 Extreme Edition v2.00 (x32 Version: 2.00) Alt CDA to MP3 Converter 7.3 (x32 Version: 7.3) AMD APP SDK Runtime (Version: 2.5.793.1) AMD Catalyst Install Manager (Version: 3.0.851.0) AMD Fuel (Version: 2011.1025.2231.38573) AMD Media Foundation Decoders (Version: 1.0.61025.2207) AMD VISION Engine Control Center (x32 Version: 2011.1025.2231.38573) Apple Application Support (x32 Version: 2.1.5) Apple Software Update (x32 Version: 2.1.3.127) Application Profiles (x32 Version: 2.0.4331.36041) Audacity 1.3.13 (Unicode) (x32) avast! Free Antivirus (x32 Version: 8.0.1483.0) Broadcom 802.11 Network Adapter (Version: 5.100.235.19) Broadcom Card Reader Driver Installer (Version: 14.6.1.3) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2011.1025.2231.38573) Catalyst Control Center InstallProxy (x32 Version: 2011.1025.2231.38573) Catalyst Control Center Localization All (x32 Version: 2011.1025.2231.38573) CCC Help English (x32 Version: 2011.1025.2230.38573) ccc-utility64 (Version: 2011.1025.2231.38573) CCleaner (Version: 3.27) Cisco EAP-FAST Module (x32 Version: 2.2.14) Cisco LEAP Module (x32 Version: 1.0.19) Cisco PEAP Module (x32 Version: 1.1.6) D3DX10 (x32 Version: 15.4.2368.0902) DAEMON Tools Lite (x32 Version: 4.45.1.0236) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) Dropbox (HKCU Version: 2.0.22) FireArc Arcade (x32 Version: 0.6.0) Fotótár (x32 Version: 16.4.3505.0912) Freemake Audio Converter 1.1.0 verzió (x32 Version: 1.1.0) FUJIFILM MyFinePix Studio 1.0 (x32) Gépírás 2000 Internetes Verzió (x32) GIMP 2.6.11 (x32 Version: 2.6.11) Google Talk Plugin (x32 Version: 4.1.3.13728) Google Update Helper (x32 Version: 1.3.21.145) High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0) IrfanView (remove only) (x32 Version: 4.30) Java 7 Update 17 (64-bit) (Version: 7.0.170) Java Auto Updater (x32 Version: 2.0.7.2) Java(TM) 6 Update 39 (x32 Version: 6.0.390) Junk Mail filter update (x32 Version: 16.4.3505.0912) Malwarebytes Anti-Malware 1.75.0.1300 verzió (x32 Version: 1.75.0.1300) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320) Microsoft .NET Framework 4 Client Profile HUN Language Pack (Version: 4.0.30320) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Excel 2007 Help-frissítés (KB963678) (x32) Microsoft Office Excel MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Groove MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000) Microsoft Office Outlook MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (x32) Microsoft Office PowerPoint MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (Hungarian) 2007 (x32 Version: 12.0.4518.1029) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Publisher MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (Hungarian) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word 2007 Help-frissítés (KB963665) (x32) Microsoft Office Word MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Movie Maker (x32 Version: 16.4.3505.0912) Mozilla Firefox 21.0 (x86 hu) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1109.0912) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Natalie Brooks A Hillcrest Gimi Rejtélye (x32) Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0) Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0) Nero 7 Premium (x32 Version: 7.02.9752) Nero BackItUp 10 (x32 Version: 5.4.11600.19.100) Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700) Nero Burning ROM 10 (x32 Version: 10.0.11100.10.100) Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700) Nero BurnRights 10 (x32 Version: 4.0.11000.12.100) Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600) Nero Control Center 10 (x32 Version: 10.0.12000.1.4) Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700) Nero Core Components 10 (x32 Version: 2.0.13700.0.1) Nero CoverDesigner 10 (x32 Version: 5.0.10900.11.100) Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600) Nero DiscSpeed 10 (x32 Version: 6.0.10800.7.100) Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600) Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10) Nero Express 10 (x32 Version: 10.0.11000.10.100) Nero Express 10 Help (CHM) (x32 Version: 1.0.10700) Nero InfoTool 10 (x32 Version: 7.0.10800.8.100) Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600) Nero MediaHub 10 (x32 Version: 1.0.13400.11.100) Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700) Nero Multimedia Suite 10 (x32 Version: 10.0.13100) Nero Recode 10 (x32 Version: 4.6.10900.4.100) Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600) Nero RescueAgent 10 (x32 Version: 3.0.10900.9.100) Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700) Nero SoundTrax 10 (x32 Version: 4.6.10600.2.100) Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600) Nero StartSmart 10 (x32 Version: 10.0.11200.12.100) Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700) Nero Update (x32 Version: 1.0.0017) Nero Vision 10 (x32 Version: 7.0.11100.8.100) Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600) Nero WaveEditor 10 (x32 Version: 5.6.10600.2.100) Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600) neroxml (x32 Version: 1.0.0) Nitro Reader 2 (Version: 2.4.1.15) Notepad++ (x32 Version: 5.9.6.2) OpenOffice.org 3.4.1 (x32 Version: 3.41.9593) PerfectDisk 11 Professional (Version: 11.00.185) Photo Common (x32 Version: 16.4.3505.0912) Photo Gallery (x32 Version: 16.4.3505.0912) PhotoScape (x32) QuickTime (x32 Version: 7.71.80.42) RarmaRadio 2.68.2 (x32) ReaGallery Pro (x32) Safari (x32 Version: 5.34.54.16) Skype™ 6.3 (x32 Version: 6.3.107) swMSM (x32 Version: 12.0.0.1) Synaptics Pointing Device Driver (Version: 15.2.2.0) The KMPlayer (remove only) (x32) Total Commander (Remove or Repair) (x32 Version: 7.55a) Unlocker 1.8.9 (x32 Version: 1.8.9) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) VLC media player 1.1.11 (x32 Version: 1.1.11) WAV MP3 Converter v4.4 build 1429 (x32) Winamp (x32 Version: 5.622 ) Windows 7 Codec Pack 3.4.0 (x32 Version: 3.4.0) Windows illesztőprogram-csomag - Sony Ericsson Mobile Communications (ggsemc) USB (02/22/2011 2.2.0.5) (Version: 02/22/2011 2.2.0.5) Windows Live Communications Platform (x32 Version: 16.4.3505.0912) Windows Live Essentials (x32 Version: 16.4.3505.0912) Windows Live Family Safety (Version: 16.4.3505.0912) Windows Live Family Safety (x32 Version: 16.4.3505.0912) Windows Live ID Sign-in Assistant (Version: 7.250.4311.0) Windows Live Installer (x32 Version: 16.4.3505.0912) Windows Live Mail (x32 Version: 16.4.3505.0912) Windows Live Messenger (x32 Version: 16.4.3505.0912) Windows Live MIME IFilter (Version: 16.4.3505.0912) Windows Live Photo Common (x32 Version: 16.4.3505.0912) Windows Live PIMT Platform (x32 Version: 16.4.3505.0912) Windows Live SOXE (x32 Version: 16.4.3505.0912) Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912) Windows Live Sync (x32 Version: 14.0.8117.416) Windows Live UX Platform (x32 Version: 16.4.3505.0912) Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912) Windows Live Writer (x32 Version: 16.4.3505.0912) Windows Live Writer Resources (x32 Version: 16.4.3505.0912) Windows Media Player Firefox Plugin (x32 Version: 1.0.0. ==================== Restore Points ========================= 01-07-2013 09:03:28 avast! Free Antivirus telepítés ==================== Scheduled Tasks (whitelisted) ============= Task: {16BEF3D7-27C9-4CF6-A9F9-FA57F980D060} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {253E17A7-CE33-4D6C-8EB6-745A4A3B3BB1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-03-07] (AVAST Software) Task: {4A87ED42-898E-4419-8E26-48AFBCC04325} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {5B3CD9BF-F68C-4389-B7A8-C9552B5409BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {6B32D039-AF9D-4131-AFD4-6D7D62B47EC8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated) Task: {6FA81675-3025-4BDF-A745-0961C8331A63} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe No File Task: {724AF1AF-069D-46E9-8AD7-6AB3EA2A3492} - System32\Tasks\Game_Booster_AutoUpdate => C:\Install\Game Booster 3\AutoUpdate.exe No File Task: {C527EF0C-620E-4A7A-B09E-9C8329FFEAEC} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {D36416C2-9CBB-4071-AB8D-F1A768B9460A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: {D40486B2-E795-4957-A0EB-24A2D26F089F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {EC68D26C-503F-4BC4-B21C-C95983688510} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Event log errors: ========================= Application errors: ================== Error: (07/01/2013 10:53:26 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 10:46:49 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 08:00:56 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 05:44:42 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/30/2013 00:47:05 PM) (Source: Application Error) (User: ) Description: A hibát okozó alkalmazás neve: firefox.exe, verzió: 21.0.0.4879, időbélyeg: 0x518ec3cc A hibát okozó modul neve: xul.dll, verzió: 21.0.0.4879, időbélyeg: 0x518ec306 Kivételkód: 0xc0000005 Hiba pozíciója: 0x001c9789 A hibát okozó folyamat azonosítója: 0xabc A hibát okozó alkalmazás indításának időpontja: 0xfirefox.exe0 A hibát okozó alkalmazás elérési útja: firefox.exe1 A hibát okozó modul elérési útja: firefox.exe2 Jelentés azonosítója: firefox.exe3 Error: (06/30/2013 00:33:31 PM) (Source: Application Hang) (User: ) Description: A(z) firefox.exe program (verzió: 21.0.0.4879) kommunikációja a Windows rendszerrel megszakadt, ezért a program leállt. A hibával kapcsolatos további információkért ellenőrizze a probléma előzményeit a Műveletközpont vezérlőpulton. Folyamatazonosító: 110c Kezdés: 01ce757ce07e3b35 Befejezés: 16 Alkalmazás elérési útja: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Jelentés azonosítója: 7da8604e-e170-11e2-bb58-206a8a4a3e4c Error: (06/30/2013 00:31:01 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/30/2013 07:02:43 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/29/2013 10:28:50 PM) (Source: Application Error) (User: ) Description: A hibát okozó alkalmazás neve: firefox.exe, verzió: 21.0.0.4879, időbélyeg: 0x518ec3cc A hibát okozó modul neve: xul.dll, verzió: 21.0.0.4879, időbélyeg: 0x518ec306 Kivételkód: 0xc0000005 Hiba pozíciója: 0x001c9789 A hibát okozó folyamat azonosítója: 0x1138 A hibát okozó alkalmazás indításának időpontja: 0xfirefox.exe0 A hibát okozó alkalmazás elérési útja: firefox.exe1 A hibát okozó modul elérési útja: firefox.exe2 Jelentés azonosítója: firefox.exe3 Error: (06/29/2013 08:02:53 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/01/2013 10:47:50 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:47:50 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:47:50 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:31 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Error: (07/01/2013 10:46:30 AM) (Source: Service Control Manager) (User: ) Description: A(z) Számítógép-tallózó szolgáltatás függ a(z) Kiszolgáló szolgáltatástól, amely a következő hiba miatt nem tudott elindulni: %%1068 Microsoft Office Sessions: ========================= Error: (11/14/2012 00:43:35 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 14793 seconds with 1980 seconds of active time. This session ended with a crash. Error: (06/01/2012 11:33:36 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-05-14 21:14:05.758 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.680 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.555 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.461 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.691 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.504 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.410 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.755 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.654 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 38% Total physical RAM: 2534.11 MB Available physical RAM: 1547.91 MB Total Pagefile: 5066.4 MB Available Pagefile: 3600.26 MB Total Virtual: 8192 MB Available Virtual: 8191.84 MB ==================== Drives ================================ Drive c: (HDD 1 Rendszer) (Fixed) (Total:39.98 GB) (Free:1.32 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)] Drive d: (HDD 2) (Fixed) (Total:258.11 GB) (Free:235.59 GB) NTFS (Disk=0 Partition=2) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or (Size: 298 GB) (Disk ID: 2D7140DA) Partition 1: (Active) - (Size=40 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=258 GB) - (Type=OF Extended) ==================== End Of Log ============================ |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 9:55 ] |
Hozzászólás témája: | Re: nem reagál ... |
Log Opened: 2013-07-01 @ 10:50:43 10:50:43 - ----------------- 10:50:43 - | Begin Logging | 10:50:43 - ----------------- 10:50:43 - Fix started on a WIN_7 X64 computer 10:50:43 - Prep in progress. Please Wait. 10:50:44 - Prep complete 10:50:44 - Repairing Services Now. Please wait... INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\BFE.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\SubLayer> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Provider> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Filter> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime\Filter> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\BITS.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Security> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Performance> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\iphlpsvc.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Teredo> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo\{FA88062C-9A61-4C1E-AC45-7143F8F01AAD}> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap\{8AD2FB26-F91E-44F1-9B24-3C0AE56C9CE0}> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\IPHTTPS> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Interfaces> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\config> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\MpsSvc.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Security> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\Teredo> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSOut> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSIn> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\DHCP> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\SharedAccess.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static\System> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch2> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\FirewallRules> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile\Logging> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\WinDefend.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo\0> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Security> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\wscsvc.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Security> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc> SetACL finished successfully. INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore. INFORMATION: Input file for restore operation opened: '.\Win7\wuauserv.sddl' INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Security> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Parameters> INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv> SetACL finished successfully. 10:50:46 - Services Repair Complete. 10:51:00 - Reboot Initiated |
Szerző: | stell [ hétf. júl. 01, 2013 9:33 ] |
Hozzászólás témája: | Re: nem reagál ... |
Idézet: Név: avast! Tűzfal NDIS Filter Miniport Leírás: avast! Tűzfal NDIS Filter Miniport Osztály Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Gyártó: ALWIL Software Szolgáltatás: aswNdis Probléma :: A Windows nem tudja elindítani ezt az eszközt, mert a konfigurációs információi (a rendszerleíró adatbázisban) nem teljesek vagy sérültek. (Code 19) Felbontás: A rendszerleíró adatbázis hiba történt. Ez akkor fordulhat elő, ha több szolgáltatás is definiálva eszköz, ha sikerül megnyitni a szolgáltatás alkulcsát, illetve ha a vezető neve nem melyet a szolgáltatótól . 1:A vezerlo pulton altal Telepitsd le a geprol az AVAST-ot. utana hasznald az letelepito programot is. Letöltés aswclear.exe az asztalra http://files.avast.com/iavs5x/aswclear.exe Indítsa újra a Windows csökkentett módban Indítsa aswclear.exe Ha telepítette avast! egy nem alapértelmezett könyvtár, lapozzunk. (Megjegyzés: Legyen óvatos! Könyvtár tartalmát, hogy úgy dönt, törlésre kerül!) Nyomja meg a DELETE Indítsa újra a számítógépet. 2:Hasznald az ESET Service Repairt; Letöltés Service Repair az asztalra http://kb.eset.com/library/ESET/KB%20Te ... Repair.exe Indítsa el és erősítse meg""YES"" az Igen gombot újratelepítés szolgáltatásokat Ezt követően kattintson az Igen gombra újraindítás ""YES" Létrehozott mappat az asztalon Support CC, találsz ott SvcRepair.txt log - - tedd ide 3:Telepistd Vissza az Uj AVASTOT, 4:ADjal uj naplot az FRST64 programmal. Es ird ide van e javulas. |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 8:12 ] |
Hozzászólás témája: | Re: nem reagál ... |
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2013 03 Ran by Andi at 2013-07-01 09:08:24 Running from C:\Users\Andi\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) (x32) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) A Microsoft .NET-keretrendszer 4-es verziójához tartozó ügyfélprofil HUN nyelvi csomagja (Version: 4.0.30320) Adobe AIR (x32 Version: 3.7.0.2090) Adobe Community Help (x32 Version: 3.4.980) Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638) Adobe Widget Browser (x32 Version: 2.0 Build 230) Adobe Widget Browser (x32 Version: 2.0.230) AIDA64 Extreme Edition v2.00 (x32 Version: 2.00) Alt CDA to MP3 Converter 7.3 (x32 Version: 7.3) AMD APP SDK Runtime (Version: 2.5.793.1) AMD Catalyst Install Manager (Version: 3.0.851.0) AMD Fuel (Version: 2011.1025.2231.38573) AMD Media Foundation Decoders (Version: 1.0.61025.2207) AMD VISION Engine Control Center (x32 Version: 2011.1025.2231.38573) Apple Application Support (x32 Version: 2.1.5) Apple Software Update (x32 Version: 2.1.3.127) Application Profiles (x32 Version: 2.0.4331.36041) Audacity 1.3.13 (Unicode) (x32) avast! Free Antivirus (x32 Version: 8.0.1489.0) Broadcom 802.11 Network Adapter (Version: 5.100.235.19) Broadcom Card Reader Driver Installer (Version: 14.6.1.3) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2011.1025.2231.38573) Catalyst Control Center InstallProxy (x32 Version: 2011.1025.2231.38573) Catalyst Control Center Localization All (x32 Version: 2011.1025.2231.38573) CCC Help English (x32 Version: 2011.1025.2230.38573) ccc-utility64 (Version: 2011.1025.2231.38573) CCleaner (Version: 3.27) Cisco EAP-FAST Module (x32 Version: 2.2.14) Cisco LEAP Module (x32 Version: 1.0.19) Cisco PEAP Module (x32 Version: 1.1.6) D3DX10 (x32 Version: 15.4.2368.0902) DAEMON Tools Lite (x32 Version: 4.45.1.0236) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) Dropbox (HKCU Version: 2.0.22) FireArc Arcade (x32 Version: 0.6.0) Fotótár (x32 Version: 16.4.3505.0912) Freemake Audio Converter 1.1.0 verzió (x32 Version: 1.1.0) FUJIFILM MyFinePix Studio 1.0 (x32) Gépírás 2000 Internetes Verzió (x32) GIMP 2.6.11 (x32 Version: 2.6.11) Google Talk Plugin (x32 Version: 4.1.3.13728) Google Update Helper (x32 Version: 1.3.21.145) High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0) IrfanView (remove only) (x32 Version: 4.30) Java 7 Update 17 (64-bit) (Version: 7.0.170) Java Auto Updater (x32 Version: 2.0.7.2) Java(TM) 6 Update 39 (x32 Version: 6.0.390) Junk Mail filter update (x32 Version: 16.4.3505.0912) Malwarebytes Anti-Malware 1.75.0.1300 verzió (x32 Version: 1.75.0.1300) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320) Microsoft .NET Framework 4 Client Profile HUN Language Pack (Version: 4.0.30320) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Excel 2007 Help-frissítés (KB963678) (x32) Microsoft Office Excel MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Groove MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office OneNote MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000) Microsoft Office Outlook MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (x32) Microsoft Office PowerPoint MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (Hungarian) 2007 (x32 Version: 12.0.4518.1029) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Publisher MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (Hungarian) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word 2007 Help-frissítés (KB963665) (x32) Microsoft Office Word MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000) Microsoft OneNote 2010 (x32 Version: 14.0.6029.1000) Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Movie Maker (x32 Version: 16.4.3505.0912) Mozilla Firefox 21.0 (x86 hu) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1109.0912) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Natalie Brooks A Hillcrest Gimi Rejtélye (x32) Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0) Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0) Nero 7 Premium (x32 Version: 7.02.9752) Nero BackItUp 10 (x32 Version: 5.4.11600.19.100) Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700) Nero Burning ROM 10 (x32 Version: 10.0.11100.10.100) Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700) Nero BurnRights 10 (x32 Version: 4.0.11000.12.100) Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600) Nero Control Center 10 (x32 Version: 10.0.12000.1.4) Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700) Nero Core Components 10 (x32 Version: 2.0.13700.0.1) Nero CoverDesigner 10 (x32 Version: 5.0.10900.11.100) Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600) Nero DiscSpeed 10 (x32 Version: 6.0.10800.7.100) Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600) Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10) Nero Express 10 (x32 Version: 10.0.11000.10.100) Nero Express 10 Help (CHM) (x32 Version: 1.0.10700) Nero InfoTool 10 (x32 Version: 7.0.10800.8.100) Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600) Nero MediaHub 10 (x32 Version: 1.0.13400.11.100) Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700) Nero Multimedia Suite 10 (x32 Version: 10.0.13100) Nero Recode 10 (x32 Version: 4.6.10900.4.100) Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600) Nero RescueAgent 10 (x32 Version: 3.0.10900.9.100) Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700) Nero SoundTrax 10 (x32 Version: 4.6.10600.2.100) Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600) Nero StartSmart 10 (x32 Version: 10.0.11200.12.100) Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700) Nero Update (x32 Version: 1.0.0017) Nero Vision 10 (x32 Version: 7.0.11100.8.100) Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600) Nero WaveEditor 10 (x32 Version: 5.6.10600.2.100) Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600) neroxml (x32 Version: 1.0.0) Nitro Reader 2 (Version: 2.4.1.15) Notepad++ (x32 Version: 5.9.6.2) OpenOffice.org 3.4.1 (x32 Version: 3.41.9593) PerfectDisk 11 Professional (Version: 11.00.185) Photo Common (x32 Version: 16.4.3505.0912) Photo Gallery (x32 Version: 16.4.3505.0912) PhotoScape (x32) QuickTime (x32 Version: 7.71.80.42) RarmaRadio 2.68.2 (x32) ReaGallery Pro (x32) Safari (x32 Version: 5.34.54.16) Skype™ 6.3 (x32 Version: 6.3.107) swMSM (x32 Version: 12.0.0.1) Synaptics Pointing Device Driver (Version: 15.2.2.0) The KMPlayer (remove only) (x32) Total Commander (Remove or Repair) (x32 Version: 7.55a) Unlocker 1.8.9 (x32 Version: 1.8.9) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) VLC media player 1.1.11 (x32 Version: 1.1.11) WAV MP3 Converter v4.4 build 1429 (x32) Winamp (x32 Version: 5.622 ) Windows 7 Codec Pack 3.4.0 (x32 Version: 3.4.0) Windows illesztőprogram-csomag - Sony Ericsson Mobile Communications (ggsemc) USB (02/22/2011 2.2.0.5) (Version: 02/22/2011 2.2.0.5) Windows Live Communications Platform (x32 Version: 16.4.3505.0912) Windows Live Essentials (x32 Version: 16.4.3505.0912) Windows Live Family Safety (Version: 16.4.3505.0912) Windows Live Family Safety (x32 Version: 16.4.3505.0912) Windows Live ID Sign-in Assistant (Version: 7.250.4311.0) Windows Live Installer (x32 Version: 16.4.3505.0912) Windows Live Mail (x32 Version: 16.4.3505.0912) Windows Live Messenger (x32 Version: 16.4.3505.0912) Windows Live MIME IFilter (Version: 16.4.3505.0912) Windows Live Photo Common (x32 Version: 16.4.3505.0912) Windows Live PIMT Platform (x32 Version: 16.4.3505.0912) Windows Live SOXE (x32 Version: 16.4.3505.0912) Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912) Windows Live Sync (x32 Version: 14.0.8117.416) Windows Live UX Platform (x32 Version: 16.4.3505.0912) Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912) Windows Live Writer (x32 Version: 16.4.3505.0912) Windows Live Writer Resources (x32 Version: 16.4.3505.0912) Windows Media Player Firefox Plugin (x32 Version: 1.0.0. ==================== Restore Points ========================= ==================== Scheduled Tasks (whitelisted) ============= Task: {16BEF3D7-27C9-4CF6-A9F9-FA57F980D060} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {20B40AA6-9179-4B47-A5CC-EBB77F94B1A5} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {4A87ED42-898E-4419-8E26-48AFBCC04325} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {5B3CD9BF-F68C-4389-B7A8-C9552B5409BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.) Task: {6B32D039-AF9D-4131-AFD4-6D7D62B47EC8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated) Task: {6FA81675-3025-4BDF-A745-0961C8331A63} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe No File Task: {724AF1AF-069D-46E9-8AD7-6AB3EA2A3492} - System32\Tasks\Game_Booster_AutoUpdate => C:\Install\Game Booster 3\AutoUpdate.exe No File Task: {B428C369-84EA-45B0-9EE8-79B1E49B0C04} - System32\Tasks\avast! Emergency Update => C:\Install\Avast\AvastEmUpdate.exe No File Task: {D36416C2-9CBB-4071-AB8D-F1A768B9460A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: {D40486B2-E795-4957-A0EB-24A2D26F089F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {EC68D26C-503F-4BC4-B21C-C95983688510} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job => C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Event log errors: ========================= Application errors: ================== Error: (07/01/2013 08:00:56 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/01/2013 05:44:42 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/30/2013 00:47:05 PM) (Source: Application Error) (User: ) Description: A hibát okozó alkalmazás neve: firefox.exe, verzió: 21.0.0.4879, időbélyeg: 0x518ec3cc A hibát okozó modul neve: xul.dll, verzió: 21.0.0.4879, időbélyeg: 0x518ec306 Kivételkód: 0xc0000005 Hiba pozíciója: 0x001c9789 A hibát okozó folyamat azonosítója: 0xabc A hibát okozó alkalmazás indításának időpontja: 0xfirefox.exe0 A hibát okozó alkalmazás elérési útja: firefox.exe1 A hibát okozó modul elérési útja: firefox.exe2 Jelentés azonosítója: firefox.exe3 Error: (06/30/2013 00:33:31 PM) (Source: Application Hang) (User: ) Description: A(z) firefox.exe program (verzió: 21.0.0.4879) kommunikációja a Windows rendszerrel megszakadt, ezért a program leállt. A hibával kapcsolatos további információkért ellenőrizze a probléma előzményeit a Műveletközpont vezérlőpulton. Folyamatazonosító: 110c Kezdés: 01ce757ce07e3b35 Befejezés: 16 Alkalmazás elérési útja: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Jelentés azonosítója: 7da8604e-e170-11e2-bb58-206a8a4a3e4c Error: (06/30/2013 00:31:01 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/30/2013 07:02:43 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/29/2013 10:28:50 PM) (Source: Application Error) (User: ) Description: A hibát okozó alkalmazás neve: firefox.exe, verzió: 21.0.0.4879, időbélyeg: 0x518ec3cc A hibát okozó modul neve: xul.dll, verzió: 21.0.0.4879, időbélyeg: 0x518ec306 Kivételkód: 0xc0000005 Hiba pozíciója: 0x001c9789 A hibát okozó folyamat azonosítója: 0x1138 A hibát okozó alkalmazás indításának időpontja: 0xfirefox.exe0 A hibát okozó alkalmazás elérési útja: firefox.exe1 A hibát okozó modul elérési útja: firefox.exe2 Jelentés azonosítója: firefox.exe3 Error: (06/29/2013 08:02:53 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/29/2013 05:43:30 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/29/2013 03:48:58 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/01/2013 08:00:08 AM) (Source: Service Control Manager) (User: ) Description: A szolgáltatás (Freemake Improver) a következő hiba következtében leállt: %%1053 Error: (07/01/2013 08:00:08 AM) (Source: Service Control Manager) (User: ) Description: Letelt egy időkorlát (30000 ms) a(z) Freemake Improver szolgáltatás kapcsolódására való várakozás közben. Error: (07/01/2013 05:44:37 AM) (Source: Service Control Manager) (User: ) Description: A(z) avast! Antivirus szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 5000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása. Error: (06/30/2013 00:30:59 PM) (Source: Service Control Manager) (User: ) Description: A(z) avast! Antivirus szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 5000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása. Error: (06/30/2013 00:29:58 PM) (Source: Service Control Manager) (User: ) Description: A szolgáltatás (Freemake Improver) a következő hiba következtében leállt: %%1053 Error: (06/30/2013 00:29:58 PM) (Source: Service Control Manager) (User: ) Description: Letelt egy időkorlát (30000 ms) a(z) Freemake Improver szolgáltatás kapcsolódására való várakozás közben. Error: (06/29/2013 05:42:21 PM) (Source: Service Control Manager) (User: ) Description: A szolgáltatás (Freemake Improver) a következő hiba következtében leállt: %%1053 Error: (06/29/2013 05:42:21 PM) (Source: Service Control Manager) (User: ) Description: Letelt egy időkorlát (30000 ms) a(z) Freemake Improver szolgáltatás kapcsolódására való várakozás közben. Error: (06/29/2013 03:47:51 PM) (Source: Service Control Manager) (User: ) Description: A szolgáltatás (Freemake Improver) a következő hiba következtében leállt: %%1053 Error: (06/29/2013 03:47:51 PM) (Source: Service Control Manager) (User: ) Description: Letelt egy időkorlát (30000 ms) a(z) Freemake Improver szolgáltatás kapcsolódására való várakozás közben. Microsoft Office Sessions: ========================= Error: (11/14/2012 00:43:35 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 14793 seconds with 1980 seconds of active time. This session ended with a crash. Error: (06/01/2012 11:33:36 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-05-14 21:14:05.758 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.680 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.555 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 21:14:05.461 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.691 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.504 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 14:41:45.410 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.755 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-05-14 09:21:47.654 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 53% Total physical RAM: 2534.11 MB Available physical RAM: 1180.34 MB Total Pagefile: 5066.4 MB Available Pagefile: 3249.46 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (HDD 1 Rendszer) (Fixed) (Total:39.98 GB) (Free:2.19 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)] Drive d: (HDD 2) (Fixed) (Total:258.11 GB) (Free:235.12 GB) NTFS (Disk=0 Partition=2) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or (Size: 298 GB) (Disk ID: 2D7140DA) Partition 1: (Active) - (Size=40 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=258 GB) - (Type=OF Extended) ==================== End Of Log ============================ |
Szerző: | -kataiandi- [ hétf. júl. 01, 2013 8:11 ] |
Hozzászólás témája: | Re: nem reagál ... |
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-06-2013 03 Ran by Andi (administrator) on 01-07-2013 09:07:36 Running from C:\Users\Andi\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: 040E Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AMD) C:\Windows\system32\atieclxx.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (AVAST Software) D:\Install\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (AVAST Software) D:\Install\Avast\AvastUI.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Google) C:\Users\Andi\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2478888 2010-11-18] (Synaptics Incorporated) HKCU\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18680424 2013-05-08] (Skype Technologies S.A.) HKCU\...\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation) HKCU\...\Policies\system: [disableregistrytools] 0 HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [343168 2011-10-25] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [avast] "D:\Install\Avast\avastUI.exe" /nogui [x] ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myfreezoo.hu/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKCU SearchScopes: DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - ${searchCLSID} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {99622E94-68F4-4F55-80AB-89B3BF3903DB} URL = http://search.yahoo.com/search?fr=chr-g ... =937811&p={searchTerms} BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - D:\Install\Avast\aswWebRepIE64.dll No File BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll No File BHO-x32: Microsoft-fiók bejelentkezési segédje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - D:\Install\Avast\aswWebRepIE64.dll No File Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/ms ... b56986.cab DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab DPF: HKLM-x32 {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/So ... b56986.cab DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messenger ... E_UNO1.cab DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab DPF: HKLM-x32 {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/Mi ... b56986.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll ( ) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Andi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Andi\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Andi\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] D:\Install\Avast\WebRep\FF FF Extension: avast! Online Security - D:\Install\Avast\WebRep\FF ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-10-25] (Advanced Micro Devices, Inc.) R2 avast! Antivirus; D:\Install\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [100864 2012-06-06] (Freemake) R2 NitroReaderDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [216080 2012-06-25] (Nitro PDF Software) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG) ==================== Drivers (Whitelisted) ==================== S3 ASPI; C:\Windows\SysWow64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-27] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-27] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-27] () S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [113704 2008-10-21] (MCCI Corporation) S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [19496 2008-10-21] (MCCI Corporation) S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [152616 2008-10-21] (MCCI Corporation) S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [133160 2008-10-21] (MCCI Corporation) S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [34856 2008-10-21] (MCCI Corporation) S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [128552 2008-10-21] (MCCI Corporation) S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [145960 2008-10-21] (MCCI Corporation) R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-03] () U3 a50vwzmo; C:\Windows\System32\Drivers\a50vwzmo.sys [0 ] (Broadcom Corporation) S3 ASPI; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [x] S3 catchme; \??\C:\ComboFix\catchme.sys [x] ========================== Drivers MD5 ======================= C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit C:\Windows\system32\drivers\afd.sys 1C7857B62DE5994A75B054A9FD4C3825 C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\amdiox64.sys 6A2EEB0C4133B20773BB3DD0B7B377B4 C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\atikmdag.sys 0415FFE1B6A6EA141FEAFCA57567F57F C:\Windows\System32\DRIVERS\atikmpag.sys DC24D6F38F17C0D643D9AA8A6852F8D0 C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49 C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048 C:\Windows\System32\DRIVERS\amd_sata.sys F9D46B6B322708BD5AFCC8767EBDC901 C:\Windows\System32\DRIVERS\amd_xata.sys 329CC9C7E20DEEBCD4CD10816193EF14 C:\Windows\system32\drivers\appid.sys ==> MD5 is legit C:\Windows\system32\drivers\arc.sys ==> MD5 is legit C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit C:\Windows\SysWow64\DRIVERS\ASPI32.sys E54E27976E2C5A6465D44C10B1D87AC0 C:\Windows\system32\drivers\aswMonFlt.sys FA562F34ED6633C66170B09182B4C049 C:\Windows\System32\Drivers\aswrdr2.sys 64E2BAB4096C13D2342BC4661C967E07 C:\Windows\System32\Drivers\aswRvrt.sys 5573AA70993A2BB81525B1C704B88763 C:\Windows\System32\Drivers\aswSnx.sys 8C0800CDB501CFC1164B286A0478DC10 C:\Windows\System32\Drivers\aswSP.sys 3815DB16CDA62190F5C0A65118F3D714 C:\Windows\System32\Drivers\aswTdi.sys 29DD8E458A84171202AA4979364C30C0 C:\Windows\System32\Drivers\aswVmm.sys 22F521108881DC59837F6FC614E0568F C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit C:\Windows\System32\drivers\AtihdW76.sys CBD14F698DEF12EE3557604B726CB8EB C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57xdbd.sys A424CB46A145E5AABF15621550976DF2 C:\Windows\System32\DRIVERS\b57xdmp.sys BE4E6FD5A898812B85D5817AD9754A9F C:\Windows\System32\DRIVERS\bcmwl664.sys 85111026F1C5A1C4CCE3697F0DA7BC1A C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bScsiMSa.sys 413DD8AB0BB30B9C4F5E6A34977A1C34 C:\Windows\System32\DRIVERS\bScsiSDa.sys 9F880F03F4A72215C8B77FD51322C297 C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit C:\Windows\System32\CLFS.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit C:\Windows\System32\Drivers\cng.sys AAFCB52FE0037207FB6FBEA070D25EFE C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit C:\Windows\System32\Drivers\DefragFS.sys CEC7F24E28B40829C0FD2D523E72B5D3 C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit C:\Windows\System32\drivers\discache.sys ==> MD5 is legit C:\Windows\System32\drivers\disk.sys ==> MD5 is legit C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit C:\Windows\System32\drivers\dxgkrnl.sys AF2E16242AA723F68F461B6EAE2EAD3D C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\fssfltr.sys B16B626996C74B564005BA855C5DEE90 C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0 C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ggflt.sys A4198F2BD8AA592CB90476277A81B5E1 C:\Windows\System32\DRIVERS\ggsemc.sys D266350BDAAB9EB6C1AEC370EEAAFF3A C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366 C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit C:\Windows\system32\drivers\intelppm.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\k57nd60a.sys 1D7AAB58F4E21697AF8F46EAA81823DD C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit C:\Windows\System32\Drivers\ksecdd.sys 97A7070AEA4C058B6418519E869A63B4 C:\Windows\System32\Drivers\ksecpkg.sys 7EFB9333E4ECCE6AE4AE9D777D9E553E C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit C:\Windows\System32\drivers\modem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163 C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88 C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0 C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit C:\Windows\system32\drivers\parport.sys ==> MD5 is legit C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C C:\Windows\System32\drivers\pci.sys ==> MD5 is legit C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit C:\Windows\system32\drivers\processr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34 C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\s0017bus.sys 032F537623A7B2FB81AAA184C30B70C3 C:\Windows\System32\DRIVERS\s0017mdfl.sys 9964A28E569B4FF105B446EF8978FD5C C:\Windows\System32\DRIVERS\s0017mdm.sys 06347087D274C23DCFA8C4AB5C4314DB C:\Windows\System32\DRIVERS\s0017mgmt.sys F0F0747B3FA50272DE6B1BF575FA4700 C:\Windows\System32\DRIVERS\s0017nd5.sys 7224412CEA2FF2DF7D4842C1B0E71045 C:\Windows\System32\DRIVERS\s0017obex.sys 3FEADBC7F09B8B596CBFB82F12ABA87F C:\Windows\System32\DRIVERS\s0017unic.sys 2B63BEA31D939888B2A8F3F14D89B5C1 C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\sdbus.sys 111E0EBC0AD79CB0FA014B907B231CF0 C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\seehcri.sys EDE7A1D2715AAC2190D51DC07AFD44E3 C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit C:\Windows\system32\drivers\serial.sys ==> MD5 is legit C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit C:\Windows\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28 C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3 C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\SynTP.sys 547988596190BB44818B0653F8F7C0D3 C:\Windows\System32\drivers\tcpip.sys 9849EA3843A2ADBDD1497E97A85D8CAE C:\Windows\System32\DRIVERS\tcpip.sys 9849EA3843A2ADBDD1497E97A85D8CAE C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8 C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 is legit C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07 C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\usbccgp.sys 6F1A3157A1C89435352CEB543CDB359C C:\Windows\system32\drivers\usbcir.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\usbehci.sys C025055FE7B87701EB042095DF1A2D7B C:\Windows\System32\DRIVERS\usbfilter.sys 573D192E268F0C5B486B7E96F661E538 C:\Windows\System32\DRIVERS\usbhub.sys 287C6C9410B111B68B52CA298F7B8C24 C:\Windows\System32\DRIVERS\usbohci.sys 9840FC418B4CBD632D3D0A667A725C31 C:\Windows\system32\drivers\usbprint.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6 C:\Windows\system32\drivers\usbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CD C:\Windows\System32\Drivers\usbvideo.sys 454800C2BC7F3927CE030141EE4F4C50 C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit C:\Windows\System32\drivers\vga.sys ==> MD5 is legit C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\system32\drivers\wd.sys ==> MD5 is legit C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4 C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659 C:\Windows\System32\Drivers\a50vwzmo.sys ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-01 09:07 - 2013-07-01 09:07 - 00000000 ____D C:\FRST 2013-07-01 09:02 - 2013-07-01 09:03 - 01933758 ____A (Farbar) C:\Users\Andi\Desktop\FRST64.exe 2013-07-01 05:51 - 2013-07-01 05:51 - 00874534 ____A C:\Users\Andi\Downloads\blog-06-30-2013.xml 2013-06-30 14:43 - 2013-06-30 15:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 14:41 - 2013-06-30 14:41 - 00000000 ____D C:\Users\Andi\Desktop\mbar-1.06.0.1004 2013-06-30 14:39 - 2013-06-30 14:40 - 13399154 ____A C:\Users\Andi\Desktop\mbar-1.06.0.1004.zip 2013-06-30 12:47 - 2013-06-30 12:47 - 00000000 ____D C:\rsit 2013-06-30 12:37 - 2013-06-30 12:37 - 00935175 ____A C:\Users\Andi\Desktop\RSITx64.exe 2013-06-27 22:18 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-26 19:20 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-26 19:20 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-25 20:30 - 2013-06-25 20:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\HBM-Games 2013-06-25 20:29 - 2013-06-25 20:29 - 00001110 ____A C:\Users\Andi\Desktop\Vida parancsikonja.lnk 2013-06-25 12:50 - 2013-07-01 07:59 - 00001344 ____A C:\Windows\setupact.log 2013-06-25 12:50 - 2013-06-25 12:50 - 00000648 ____A C:\Windows\PFRO.log 2013-06-25 12:50 - 2013-06-25 12:50 - 00000000 ____A C:\Windows\setuperr.log 2013-06-25 09:03 - 2013-06-25 09:04 - 14713592 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbsb-setup-1.0.0.0010.exe 2013-06-25 08:48 - 2013-06-25 08:48 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 08:48 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2013-06-25 08:46 - 2013-06-25 08:47 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbam-setup-1.75.0.1300.exe 2013-06-23 07:32 - 2013-06-23 07:32 - 00001312 ____A C:\Users\Andi\Desktop\internetbeallitas parancsikonja.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00002875 ____A C:\Users\Andi\Desktop\FireArc Arcade.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00000000 ____D C:\Program Files (x86)\FireArc Arcade 2013-06-22 21:33 - 2013-06-22 21:34 - 08101955 ____A (FireArc.com) C:\Users\Andi\Downloads\Install_FireArc_Arcade_0.6.0.exe 2013-06-21 15:10 - 2013-06-21 15:10 - 00320939 ____A C:\Users\Andi\Desktop\balatonn.xps 2013-06-20 20:46 - 2013-06-20 20:46 - 00000752 ____A C:\Users\Andi\Desktop\nb3 parancsikonja.lnk 2013-06-20 20:40 - 2013-06-20 22:51 - 396790730 ____A C:\Users\Andi\Downloads\ChroniclesofVida-TheStoryoftheMissingPrincess.rar 2013-06-20 20:11 - 2013-06-20 20:42 - 122669073 ____A C:\Users\Andi\Downloads\Natalie_Brooks_A_Hillcrest_Gimi_Rejtely_HUN.rar 2013-06-18 16:15 - 2013-06-18 16:15 - 00000000 ____D C:\Program Files (x86)\Safari 2013-06-18 13:47 - 2013-06-18 14:07 - 38501744 ____A (Apple Inc.) C:\Users\Andi\Downloads\SafariSetup.exe 2013-06-16 16:51 - 2011-10-06 15:00 - 02670592 ____A C:\Users\Andi\Documents\Majom Torony.wrp.exe 2013-06-15 08:14 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-15 08:14 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-06-15 08:13 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-15 08:13 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-15 08:13 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-15 08:13 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-15 08:13 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-13 19:15 - 2013-06-25 14:57 - 00000000 ____D C:\Users\Andi\Desktop\K. János kéziratai - visszavan 2013-06-13 19:11 - 2013-06-13 19:11 - 01992436 ____A C:\Users\Andi\Downloads\vkzi10_11_12_13_vasrnap.zip 2013-06-12 22:18 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-06-12 22:18 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-06-12 22:18 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-06-12 22:18 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-06-12 22:18 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-06-12 22:18 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-06-12 22:18 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-06-12 22:18 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-06-12 22:18 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-06-12 22:17 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-06-12 22:17 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-06-12 22:17 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-06-12 22:17 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-12 18:33 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-12 18:33 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-12 18:33 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-12 18:33 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-12 18:33 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-12 18:33 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-12 18:33 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-12 18:33 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-12 18:33 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-12 18:33 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-12 18:33 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-12 18:33 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-12 18:33 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-12 18:33 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-12 18:33 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll 2013-06-12 12:56 - 2013-06-12 12:56 - 00318904 ____A (Microsoft Corporation) C:\Users\Andi\Downloads\wmpfirefoxplugin.exe ==================== One Month Modified Files and Folders ======= 2013-07-01 09:07 - 2013-07-01 09:07 - 00000000 ____D C:\FRST 2013-07-01 09:03 - 2013-07-01 09:02 - 01933758 ____A (Farbar) C:\Users\Andi\Desktop\FRST64.exe 2013-07-01 09:03 - 2013-02-06 17:41 - 00001024 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-01 08:41 - 2011-12-22 15:58 - 00001034 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job 2013-07-01 08:15 - 2012-07-14 18:29 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-01 08:07 - 2009-07-14 06:45 - 00021472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-01 08:07 - 2009-07-14 06:45 - 00021472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-01 08:03 - 2013-02-06 17:41 - 00001020 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-01 07:59 - 2013-06-25 12:50 - 00001344 ____A C:\Windows\setupact.log 2013-07-01 07:59 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-01 07:49 - 2013-05-21 18:59 - 01417080 ____A C:\Windows\WindowsUpdate.log 2013-07-01 05:51 - 2013-07-01 05:51 - 00874534 ____A C:\Users\Andi\Downloads\blog-06-30-2013.xml 2013-07-01 05:44 - 2013-02-06 19:06 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Skype 2013-06-30 22:50 - 2011-12-22 15:58 - 00000982 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job 2013-06-30 20:49 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-06-30 17:04 - 2011-12-03 14:54 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Nitro PDF 2013-06-30 15:26 - 2013-06-30 14:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 14:41 - 2013-06-30 14:41 - 00000000 ____D C:\Users\Andi\Desktop\mbar-1.06.0.1004 2013-06-30 14:40 - 2013-06-30 14:39 - 13399154 ____A C:\Users\Andi\Desktop\mbar-1.06.0.1004.zip 2013-06-30 12:47 - 2013-06-30 12:47 - 00000000 ____D C:\rsit 2013-06-30 12:47 - 2012-07-13 20:30 - 00000000 ____D C:\Program Files\trend micro 2013-06-30 12:47 - 2012-05-02 15:17 - 00000000 ____D C:\Users\Andi\AppData\Local\CrashDumps 2013-06-30 12:37 - 2013-06-30 12:37 - 00935175 ____A C:\Users\Andi\Desktop\RSITx64.exe 2013-06-29 20:31 - 2012-07-14 09:30 - 00000000 ____D C:\Users\Andi\Desktop\Kirsh János kéziratai 2013-06-27 22:42 - 2011-12-01 19:54 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Mozilla 2013-06-27 22:18 - 2013-06-27 22:18 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-27 22:18 - 2013-06-26 19:20 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-27 22:18 - 2013-06-26 19:20 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-27 22:18 - 2013-03-02 20:22 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys 2013-06-27 22:18 - 2012-12-16 20:35 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys 2013-06-27 22:18 - 2012-12-16 20:35 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys 2013-06-25 20:30 - 2013-06-25 20:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\HBM-Games 2013-06-25 20:29 - 2013-06-25 20:29 - 00001110 ____A C:\Users\Andi\Desktop\Vida parancsikonja.lnk 2013-06-25 16:29 - 2011-01-22 15:38 - 00643912 ____A C:\Windows\System32\perfh00E.dat 2013-06-25 16:29 - 2011-01-22 15:38 - 00149910 ____A C:\Windows\System32\perfc00E.dat 2013-06-25 16:29 - 2009-07-14 07:13 - 01534630 ____A C:\Windows\System32\PerfStringBackup.INI 2013-06-25 14:57 - 2013-06-13 19:15 - 00000000 ____D C:\Users\Andi\Desktop\K. János kéziratai - visszavan 2013-06-25 12:50 - 2013-06-25 12:50 - 00000648 ____A C:\Windows\PFRO.log 2013-06-25 12:50 - 2013-06-25 12:50 - 00000000 ____A C:\Windows\setuperr.log 2013-06-25 12:15 - 2013-05-14 10:34 - 00000000 ____D C:\Users\Andi\Desktop\egyebek -asztalról 2013-06-25 12:15 - 2011-12-06 18:24 - 00000000 ___RD C:\Users\Andi\Desktop\Programok 2013-06-25 12:04 - 2012-08-16 12:50 - 00000000 ____D C:\Windows\pss 2013-06-25 12:01 - 2012-11-10 22:30 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Dropbox 2013-06-25 09:59 - 2013-02-23 17:00 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-06-25 09:04 - 2013-06-25 09:03 - 14713592 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbsb-setup-1.0.0.0010.exe 2013-06-25 09:04 - 2011-12-01 23:35 - 00000000 ____D C:\Windows\Downloaded Installations 2013-06-25 08:48 - 2013-06-25 08:48 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 08:47 - 2013-06-25 08:46 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Andi\Downloads\mbam-setup-1.75.0.1300.exe 2013-06-25 08:20 - 2012-11-10 22:33 - 00000000 ___RD C:\Users\Andi\Dropbox 2013-06-23 17:02 - 2013-05-28 11:05 - 00000000 ____D C:\Users\Andi\Desktop\2 kötet -Tanulságtétel 2013-06-23 17:02 - 2011-12-06 10:38 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Audacity 2013-06-23 07:32 - 2013-06-23 07:32 - 00001312 ____A C:\Users\Andi\Desktop\internetbeallitas parancsikonja.lnk 2013-06-22 21:37 - 2013-05-27 18:24 - 00000000 ____D C:\Users\Andi\AppData\Roaming\FireArc Arcade 2013-06-22 21:36 - 2013-06-22 21:36 - 00002875 ____A C:\Users\Andi\Desktop\FireArc Arcade.lnk 2013-06-22 21:36 - 2013-06-22 21:36 - 00000000 ____D C:\Program Files (x86)\FireArc Arcade 2013-06-22 21:34 - 2013-06-22 21:33 - 08101955 ____A (FireArc.com) C:\Users\Andi\Downloads\Install_FireArc_Arcade_0.6.0.exe 2013-06-21 15:10 - 2013-06-21 15:10 - 00320939 ____A C:\Users\Andi\Desktop\balatonn.xps 2013-06-21 09:56 - 2011-12-03 14:52 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Winamp 2013-06-21 09:56 - 2011-12-02 02:04 - 00000000 ____D C:\Windows\Panther 2013-06-20 22:51 - 2013-06-20 20:40 - 396790730 ____A C:\Users\Andi\Downloads\ChroniclesofVida-TheStoryoftheMissingPrincess.rar 2013-06-20 20:46 - 2013-06-20 20:46 - 00000752 ____A C:\Users\Andi\Desktop\nb3 parancsikonja.lnk 2013-06-20 20:46 - 2012-01-01 01:20 - 00000000 ____D C:\Users\Andi\AppData\Roaming\Friday's games 2013-06-20 20:42 - 2013-06-20 20:11 - 122669073 ____A C:\Users\Andi\Downloads\Natalie_Brooks_A_Hillcrest_Gimi_Rejtely_HUN.rar 2013-06-18 16:15 - 2013-06-18 16:15 - 00000000 ____D C:\Program Files (x86)\Safari 2013-06-18 14:07 - 2013-06-18 13:47 - 38501744 ____A (Apple Inc.) C:\Users\Andi\Downloads\SafariSetup.exe 2013-06-16 16:52 - 2011-12-05 21:46 - 00000000 ____D C:\Users\Andi\Desktop\JÁTÉKOK 2013-06-16 14:23 - 2011-12-05 21:03 - 00017408 ___AH C:\Users\Andi\Desktop\photothumb.db 2013-06-16 10:25 - 2012-02-09 21:28 - 00014336 ____A C:\Users\Andi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-06-13 19:11 - 2013-06-13 19:11 - 01992436 ____A C:\Users\Andi\Downloads\vkzi10_11_12_13_vasrnap.zip 2013-06-13 16:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-06-12 22:21 - 2011-12-03 14:39 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-06-12 22:18 - 2011-12-01 18:49 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-12 13:15 - 2012-07-14 18:29 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-12 13:15 - 2011-12-03 16:07 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-06-12 12:56 - 2013-06-12 12:56 - 00318904 ____A (Microsoft Corporation) C:\Users\Andi\Downloads\wmpfirefoxplugin.exe 2013-06-08 16:08 - 2013-06-15 08:13 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-08 16:07 - 2013-06-15 08:13 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-08 16:06 - 2013-06-15 08:13 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-08 14:28 - 2013-06-15 08:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-08 13:42 - 2013-06-15 08:13 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-08 13:40 - 2013-06-15 08:13 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-08 13:13 - 2013-06-15 08:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== BCD ================================ Windows Rendszert”lt‚s-vez‚rl‹ ------------------------------ azonosˇt˘ {bootmgr} device partition=C: description Windows Boot Manager locale hu-HU inherit {globalsettings} default {current} resumeobject {3223c384-1c79-11e1-b10e-ff315178ecc9} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows rendszert”lt‹ --------------------- azonosˇt˘ {current} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale hu-HU inherit {bootloadersettings} osdevice partition=C: systemroot \Windows resumeobject {3223c384-1c79-11e1-b10e-ff315178ecc9} nx OptIn Folytat s hibern l s ut n ------------------------- azonosˇt˘ {3223c384-1c79-11e1-b10e-ff315178ecc9} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale hu-HU inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Windows mem˘riatesztel‹ ----------------------- azonosˇt˘ {memdiag} device partition=C: path \boot\memtest.exe description Windows mem˘riadiagnosztika locale hu-HU inherit {globalsettings} badmemoryaccess Yes EMS-be llˇt sok --------------- azonosˇt˘ {emssettings} bootems Yes Hibakeres‚si be llˇt sok ------------------------ azonosˇt˘ {dbgsettings} debugtype Serial debugport 1 baudrate 115200 RAM-hib k --------- azonosˇt˘ {badmemory} Glob lis be llˇt sok -------------------- azonosˇt˘ {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Rendszert”lt‹ be llˇt sai ------------------------- azonosˇt˘ {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hipervizor be llˇt sai ------------------- azonosˇt˘ {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Folytat si bet”lt‹ be llˇt sai ------------------------------ azonosˇt˘ {resumeloadersettings} inherit {globalsettings} LastRegBack: 2013-06-26 07:27 ==================== End Of Log ============================ |
Szerző: | stell [ hétf. júl. 01, 2013 5:47 ] |
Hozzászólás témája: | Re: nem reagál ... |
Adj meg egy logot. Tolds le az 64 bites Farbar Recovery Scan Tool http://www.bleepingcomputer.com/downloa ... scan-tool/ jobb klik Futtasd,mint rendszergazda, bepipazni mindent Klik na SCAN FRST.txt a Addition.txt, log tedd ide. |
Szerző: | -kataiandi- [ vas. jún. 30, 2013 14:44 ] |
Hozzászólás témája: | Re: nem reagál ... |
--------------------------------------- Malwarebytes Anti-Rootkit BETA 1.06.0.1004 (c) Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x64 Account is Administrative Internet Explorer version: 10.0.9200.16618 Java version: 1.6.0_39 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED CPU speed: 1.896000 GHz Memory total: 2657206272, free: 1425059840 Downloaded database version: v2013.06.30.02 Initializing... ------------ Kernel report ------------ 06/30/2013 14:43:18 ------------ Loaded modules ----------- \SystemRoot\system32\ntoskrnl.exe \SystemRoot\system32\hal.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_AuthenticAMD.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\System32\Drivers\sptd.sys \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\msahci.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\amd_sata.sys \SystemRoot\system32\DRIVERS\storport.sys \SystemRoot\system32\DRIVERS\amd_xata.sys \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\aswKbd.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\System32\Drivers\aswVmm.sys \SystemRoot\System32\Drivers\aswRvrt.sys \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\System32\Drivers\aswSnx.SYS \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\Drivers\aswTdi.SYS \SystemRoot\system32\drivers\afd.sys \SystemRoot\System32\Drivers\aswrdr2.sys \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\ws2ifsl.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\System32\Drivers\aswSP.SYS \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\amdppm.sys \SystemRoot\system32\DRIVERS\atikmpag.sys \SystemRoot\system32\DRIVERS\atikmdag.sys \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\dxgmms1.sys \SystemRoot\system32\DRIVERS\HDAudBus.sys \SystemRoot\system32\DRIVERS\k57nd60a.sys \SystemRoot\system32\DRIVERS\bScsiSDa.sys \SystemRoot\system32\DRIVERS\SCSIPORT.SYS \SystemRoot\system32\DRIVERS\bScsiMSa.sys \SystemRoot\system32\DRIVERS\b57xdbd.sys \SystemRoot\system32\DRIVERS\bcmwl664.sys \SystemRoot\system32\DRIVERS\vwifibus.sys \SystemRoot\system32\DRIVERS\usbohci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbfilter.sys \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\SynTP.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\System32\Drivers\ajo98ksu.SYS \SystemRoot\system32\DRIVERS\wmiacpi.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\seehcri.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\ks.sys \SystemRoot\system32\DRIVERS\amdiox64.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\AtihdW76.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ksthunk.sys \SystemRoot\system32\DRIVERS\b57xdmp.sys \SystemRoot\system32\drivers\HdAudio.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_diskdump.sys \SystemRoot\System32\Drivers\dump_amd_sata.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\mouhid.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\System32\Drivers\usbvideo.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\cdd.dll \SystemRoot\system32\drivers\luafv.sys \??\C:\Windows\system32\drivers\aswMonFlt.sys \SystemRoot\System32\Drivers\aswFsBlk.SYS \SystemRoot\System32\Drivers\DefragFS.SYS \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\imagehlp.dll \Windows\System32\Wldap32.dll \Windows\System32\normaliz.dll \Windows\System32\nsi.dll \Windows\System32\msvcrt.dll \Windows\System32\imm32.dll \Windows\System32\urlmon.dll \Windows\System32\lpk.dll \Windows\System32\ole32.dll \Windows\System32\gdi32.dll \Windows\System32\wininet.dll \Windows\System32\user32.dll \Windows\System32\shlwapi.dll \Windows\System32\sechost.dll \Windows\System32\shell32.dll \Windows\System32\iertutil.dll \Windows\System32\ws2_32.dll \Windows\System32\oleaut32.dll \Windows\System32\usp10.dll \Windows\System32\advapi32.dll \Windows\System32\clbcatq.dll \Windows\System32\psapi.dll \Windows\System32\comdlg32.dll \Windows\System32\setupapi.dll \Windows\System32\msctf.dll \Windows\System32\difxapi.dll \Windows\System32\kernel32.dll \Windows\System32\rpcrt4.dll \Windows\System32\wintrust.dll \Windows\System32\cfgmgr32.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\devobj.dll \Windows\System32\KernelBase.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\comctl32.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\crypt32.dll \Windows\System32\msasn1.dll \Windows\SysWOW64\normaliz.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xfffffa8002fda400 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\0000006a\ Lower Device Object: 0xfffffa8002ead060 Lower Device Driver Name: \Driver\amd_sata\ IRP handler 0 of \Driver\amd_sata points to an unknown module Unhooking enabled. <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xfffffa8002fda400 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\0000006a\ Lower Device Object: 0xfffffa8002ead060 Lower Device Driver Name: \Driver\amd_sata\ Driver name found: amd_sata Initialization returned 0x0 Port sub-driver loaded: \??\C:\Windows\System32\drivers\storport.sys (0x0) Load Function returned 0x0 <<<2>>> Device number: 0, partition: 1 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xfffffa8002fda400, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xfffffa8002fdb040, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xfffffa8002fda400, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xfffffa8002eba040, DeviceName: Unknown, DriverName: \Driver\amd_xata\ DevicePointer: 0xfffffa8002c4b350, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xfffffa8002ead060, DeviceName: \Device\0000006a\, DriverName: \Driver\amd_sata\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0xfffff8a00fa75630, 0xfffffa8002fda400, 0xfffffa8005fe9270 Lower DeviceData: 0xfffff8a00c9e3520, 0xfffffa8002ead060, 0xfffffa80037077f0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\Windows\system32\drivers... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes File user open failed: C:\Windows\system32\drivers\sptd.sys (0x00000020) Done! Drive 0 Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: 2D7140DA Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 63 Numsec = 83843172 Partition file system is NTFS Partition is bootable Partition 1 type is Extended with LBA (0xf) Partition is NOT ACTIVE. Partition starts at LBA: 83843235 Numsec = 541294110 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 320072933376 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-62-625122448-625142448)... Done! Scan finished ======================================= Removal queue found; removal started Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_0_63_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam... Removal finished |
Szerző: | stell [ vas. jún. 30, 2013 12:03 ] |
Hozzászólás témája: | Re: nem reagál ... |
Futtasd az Antirootkit programot, naplojat ide. http://www.viruskasino.com/2010/12/prog ... ti-Rootkit |
Szerző: | -kataiandi- [ vas. jún. 30, 2013 11:49 ] |
Hozzászólás témája: | Re: nem reagál ... |
Logfile of random's system information tool 1.09 (written by random/random) Run by Andi at 2013-06-30 12:47:46 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 3 GB (6%) free of 41 GB Total RAM: 2534 MB (67% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:47:51, on 2013.06.30. Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16611) Boot mode: Normal Running processes: D:\Install\Avast\AvastUI.exe C:\Program Files\trend micro\Andi.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myfreezoo.hu/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll O2 - BHO: Microsoft-fiók bejelentkezési segédje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [avast] "D:\Install\Avast\avastUI.exe" /nogui O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So ... b56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/Messenger ... E_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi ... b56986.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: avast! Antivirus - AVAST Software - D:\Install\Avast\AvastSvc.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 21800 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe winlogon.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService atieclxx C:\Windows\system32\WLANExt.exe 4871408 \??\C:\Windows\system32\conhost.exe "-1113192255-960038282-18275570902023473905-498039097-834708587335113067-110539815 "C:\Windows\system32\Dwm.exe" C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService "taskhost.exe" C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Windows\System32\StikyNot.exe" "D:\Install\Avast\AvastUI.exe" /nogui "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe" "C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe" "C:\Program Files\Raxco\PerfectDisk\PDAgent.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 3352 "C:\Program Files\Raxco\PerfectDisk\PDEngine.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "D:\Install\Avast\AvastSvc.exe" C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Program Files (x86)\Nero\Update\NASvc.exe" taskeng.exe {AA8D36BC-12CD-4AEB-96BE-4E9FBE48C960} C:\Windows\System32\svchost.exe -k WerSvcGroup "C:\Users\Andi\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job =========Mozilla firefox========= ProfilePath - C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\86cqhh3e.default-1368542265039 prefs.js - "browser.startup.homepage" - "https://mail.google.com/mail/u/0/?shva=1#inbox|http://www.myfreezoo.hu/|https://www.facebook.com/" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.7.700.224 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_39] "Description"= "Path"=C:\Windows\SysWOW64\npdeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nitropdf.com/NitroPDF] "Description"=NitroPDF Web Browser Plugin "Path"=C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.7.700.224 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL C:\Program Files (x86)\Mozilla Firefox\extensions\ {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} C:\Program Files (x86)\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ np-mswmp.dll NPOFF12.DLL npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll npqtplugin6.dll npqtplugin7.dll QuickTimePlugin.class WMP Firefox Plugin License.rtf WMP Firefox Plugin RelNotes.txt ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] avast! Online Security - D:\Install\Avast\aswWebRepIE64.dll [2013-05-09 242496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-06 551840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-06 209824] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2013-03-05 330160] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - D:\Install\Avast\aswWebRepIE.dll [2013-05-09 198688] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Microsoft-fiók bejelentkezési segédje - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2013-03-05 59824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - D:\Install\Avast\aswWebRepIE64.dll [2013-05-09 242496] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - D:\Install\Avast\aswWebRepIE.dll [2013-05-09 198688] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-11-18 2478888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-05-08 18680424] "RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] c:\program files (x86)\microsoft office\office14\bcssync.exe [2010-03-13 91520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] c:\program files (x86)\common files\ahead\lib\nmbgmonitor.exe [2007-06-27 152872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner] C:\Program Files\CCleaner\CCleaner64.exe [2013-01-23 5629720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Device Detection] D:\Install\MyFinePix Studio\dd.exe [2011-11-30 787640] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03 136176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware] D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2013-04-04 532040] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] c:\program files (x86)\windows live\messenger\msnmsgr.exe /background [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent] C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProgLauncher] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe [2009-07-14 427520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] c:\program files (x86)\skype\phone\skype.exe [2013-05-08 18680424] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM] d:\install\advanced systemcare 6\suo10_smartram.exe /m [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Andi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk] C:\Users\Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-05-25 27776968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Andi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk] C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2013-01-08 228448] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Andi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk] C:\PROGRA~2\OPENOF~1.OR~\program\QUICKS~1.EXE [2012-08-13 1199104] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-25 343168] "avast"=D:\Install\Avast\avastUI.exe [2013-05-09 4858968] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-04-30 247296] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLinkedConnections"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveAutoRun"=3 "NoDriveTypeAutoRun"=0 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveAutoRun"=3 "NoDriveTypeAutoRun"=0 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2013-06-30 12:47:46 ----D---- C:\rsit 2013-06-25 20:30:21 ----D---- C:\Users\Andi\AppData\Roaming\HBM-Games 2013-06-25 08:48:46 ----D---- C:\Users\Andi\AppData\Roaming\Malwarebytes 2013-06-25 08:48:34 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-06-22 21:36:26 ----D---- C:\Program Files (x86)\FireArc Arcade 2013-06-18 16:15:14 ----D---- C:\Program Files (x86)\Safari 2013-06-15 08:13:59 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-06-15 08:13:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-06-15 08:13:58 ----A---- C:\Windows\system32\urlmon.dll 2013-06-15 08:13:56 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-06-15 08:13:56 ----A---- C:\Windows\system32\iertutil.dll 2013-06-15 08:13:55 ----A---- C:\Windows\system32\ieui.dll 2013-06-15 08:13:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-06-15 08:13:53 ----A---- C:\Windows\system32\ieframe.dll 2013-06-15 08:13:50 ----A---- C:\Windows\system32\mshtml.dll 2013-06-15 08:13:45 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-06-12 22:18:01 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-06-12 22:18:01 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-06-12 22:18:01 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-06-12 22:18:01 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-06-12 22:18:01 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-06-12 22:18:01 ----A---- C:\Windows\system32\iesetup.dll 2013-06-12 22:18:01 ----A---- C:\Windows\system32\iernonce.dll 2013-06-12 22:18:01 ----A---- C:\Windows\system32\ie4uinit.exe 2013-06-12 22:18:00 ----A---- C:\Windows\system32\iesysprep.dll 2013-06-12 22:17:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-06-12 22:17:58 ----A---- C:\Windows\system32\msfeeds.dll 2013-06-12 22:17:57 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-06-12 22:17:57 ----A---- C:\Windows\system32\jscript.dll 2013-06-12 22:17:56 ----A---- C:\Windows\system32\jscript9.dll 2013-06-12 22:17:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-06-12 22:17:51 ----A---- C:\Windows\system32\jsproxy.dll 2013-06-12 22:17:50 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-06-12 22:17:50 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-06-12 22:17:49 ----A---- C:\Windows\system32\wininet.dll 2013-06-12 18:33:41 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-06-12 18:33:40 ----A---- C:\Windows\SYSWOW64\win32spl.dll 2013-06-12 18:33:40 ----A---- C:\Windows\system32\win32spl.dll 2013-06-12 18:33:37 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll 2013-06-12 18:33:37 ----A---- C:\Windows\system32\cryptdlg.dll 2013-06-12 18:33:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2013-06-12 18:33:34 ----A---- C:\Windows\system32\WindowsCodecs.dll 2013-06-12 18:33:31 ----A---- C:\Windows\SYSWOW64\certutil.exe 2013-06-12 18:33:31 ----A---- C:\Windows\system32\certutil.exe 2013-06-12 18:33:30 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-06-12 18:33:30 ----A---- C:\Windows\system32\cryptsvc.dll 2013-06-12 18:33:30 ----A---- C:\Windows\system32\cryptnet.dll 2013-06-12 18:33:30 ----A---- C:\Windows\system32\crypt32.dll 2013-06-12 18:33:29 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2013-06-12 18:33:29 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2013-06-12 18:33:29 ----A---- C:\Windows\SYSWOW64\certenc.dll 2013-06-12 18:33:29 ----A---- C:\Windows\system32\certenc.dll 2013-06-12 18:33:24 ----A---- C:\Windows\SYSWOW64\d3d11.dll 2013-06-12 18:33:24 ----A---- C:\Windows\system32\d3d11.dll ======List of files/folders modified in the last 1 month====== 2013-06-30 12:47:51 ----D---- C:\Windows\Prefetch 2013-06-30 12:47:50 ----D---- C:\Windows\temp 2013-06-30 12:47:48 ----D---- C:\Program Files\trend micro 2013-06-30 12:40:49 ----D---- C:\Windows\system32\config 2013-06-30 12:32:10 ----D---- C:\Users\Andi\AppData\Roaming\Skype 2013-06-29 22:25:00 ----D---- C:\Users\Andi\AppData\Roaming\Nitro PDF 2013-06-28 07:19:42 ----D---- C:\Config.Msi 2013-06-27 22:42:28 ----SHD---- C:\Windows\Installer 2013-06-27 22:42:26 ----D---- C:\Users\Andi\AppData\Roaming\Mozilla 2013-06-27 22:18:38 ----D---- C:\Windows\system32\drivers 2013-06-27 15:31:41 ----D---- C:\Windows\system32\NDF 2013-06-26 20:14:48 ----D---- C:\ProgramData 2013-06-25 19:42:02 ----SHD---- C:\System Volume Information 2013-06-25 19:25:28 ----D---- C:\Windows\Microsoft.NET 2013-06-25 19:24:52 ----RSD---- C:\Windows\assembly 2013-06-25 16:32:15 ----D---- C:\Windows\winsxs 2013-06-25 16:29:56 ----D---- C:\Windows\System32 2013-06-25 16:29:56 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-06-25 16:29:55 ----D---- C:\Windows\inf 2013-06-25 12:50:46 ----D---- C:\Windows 2013-06-25 12:04:20 ----D---- C:\Windows\pss 2013-06-25 12:01:12 ----D---- C:\Users\Andi\AppData\Roaming\Dropbox 2013-06-25 10:33:00 ----D---- C:\Windows\system32\catroot 2013-06-25 10:32:59 ----D---- C:\Windows\system32\catroot2 2013-06-25 09:59:51 ----D---- C:\Windows\system32\Tasks 2013-06-25 09:59:50 ----D---- C:\Windows\Tasks 2013-06-25 09:59:50 ----D---- C:\ProgramData\Malwarebytes 2013-06-25 09:59:05 ----D---- C:\Program Files (x86)\Common Files 2013-06-25 09:04:50 ----D---- C:\Windows\Downloaded Installations 2013-06-23 17:02:31 ----D---- C:\Users\Andi\AppData\Roaming\Audacity 2013-06-22 21:37:25 ----D---- C:\Users\Andi\AppData\Roaming\FireArc Arcade 2013-06-22 21:36:26 ----D---- C:\Program Files (x86) 2013-06-21 09:56:21 ----D---- C:\Users\Andi\AppData\Roaming\Winamp 2013-06-21 09:56:02 ----D---- C:\Windows\Panther 2013-06-21 09:56:02 ----D---- C:\Windows\debug 2013-06-20 20:46:23 ----D---- C:\Users\Andi\AppData\Roaming\Friday's games 2013-06-15 17:23:06 ----D---- C:\Windows\SysWOW64 2013-06-15 17:23:06 ----D---- C:\Program Files (x86)\Internet Explorer 2013-06-15 17:23:05 ----D---- C:\Program Files\Internet Explorer 2013-06-13 16:29:32 ----D---- C:\Windows\rescache 2013-06-13 07:27:33 ----D---- C:\Windows\SYSWOW64\hu-HU 2013-06-13 07:27:33 ----D---- C:\Windows\system32\hu-HU 2013-06-12 22:21:53 ----D---- C:\ProgramData\Microsoft Help 2013-06-12 22:18:51 ----A---- C:\Windows\system32\MRT.exe 2013-06-12 13:15:32 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2011-04-16 79488] R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2011-04-16 40064] R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-03-07 22600] R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336] R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-03 530488] R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944] R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816] R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2010-06-17 138256] R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-26 10496512] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-26 326656] R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-03-30 114704] R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624] R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496] R3 BCM43XX;Broadcom 802.11 hálózati adapter illesztőprogramja; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-12-01 4720704] R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-04-12 51240] R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-01-13 85544] R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-03-24 412712] R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2008-01-09 34032] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-11-18 1401392] R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-12-16 47232] S3 ajo98ksu;ajo98ksu; C:\Windows\system32\drivers\ajo98ksu.sys [] S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856] S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2009-04-06 13352] S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2009-04-06 27176] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-16 19456] S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-10-21 113704] S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 19496] S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 152616] S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 133160] S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 34856] S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-10-21 128552] S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-10-21 145960] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-12-16 57856] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-12-16 30208] S3 WinRing0_1_2_0;WinRing0_1_2_0; C:\Windows\system32\drivers\WinRing0_1_2_0.sys [] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-26 204288] R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984] R2 avast! Antivirus;avast! Antivirus; D:\Install\Avast\AvastSvc.exe [2013-05-09 46808] R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280] R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2012-06-25 216080] R2 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2011-03-15 2610952] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480] R3 PDEngine;PDEngine; C:\Program Files\Raxco\PerfectDisk\PDEngine.exe [2011-03-15 2266376] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-06 100864] S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-03-01 161384] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12 256904] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448] S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 136176] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-17 117144] S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-16 1255736] -----------------EOF----------------- |
Szerző: | -kataiandi- [ vas. jún. 30, 2013 11:46 ] |
Hozzászólás témája: | Re: nem reagál ... |
stell írta: Udv Att vizsgalni az eszkozkezelot ha nincsenek e sarga Kerdojelek, amugy miert nem teszed ide az RSIT naplojat?? Hááát a kérdés jó Tán sokfelé jár az agyacskám... viccet félretéve: sem kérdőjel, sem semmi hibajel nincs az eszközkezelőben, az RSIT-et meg azonnal futtatom. (köszi) |
Szerző: | stell [ vas. jún. 30, 2013 10:28 ] |
Hozzászólás témája: | Re: nem reagál ... |
Udv Att vizsgalni az eszkozkezelot ha nincsenek e sarga Kerdojelek, amugy miert nem teszed ide az RSIT naplojat?? |
Szerző: | -kataiandi- [ szomb. jún. 29, 2013 15:06 ] |
Hozzászólás témája: | Re: nem reagál ... |
Laci_L írta: Nem biztos, hogy szoftverhiba ez. Lehet hogy túlmelegszik, vagy egyéb hardver hiba van. Persze lehet, hogy igazad van, nem tudom - bár a melegedést nem érzem kívülről ... még nincs egy éves a gép. |
Szerző: | Laci_L [ szomb. jún. 29, 2013 14:27 ] |
Hozzászólás témája: | Re: nem reagál ... |
Nem biztos, hogy szoftverhiba ez. Lehet hogy túlmelegszik, vagy egyéb hardver hiba van. |
Szerző: | -kataiandi- [ szomb. jún. 29, 2013 11:08 ] |
Hozzászólás témája: | Re: nem reagál ... |
Szia! Tudom ezt a témát ezer éve nyitottam, de nem akartam új témát nyitni, az utolsó jelentkezésem ugye a kéretlen levelek témában volt, az tökéletesen helyre is állt, azonban tegnap óta ha pl fél órát áll a gép totálisan lefagy semmire sem reagál, még a ctrl+Alt+Del-re sem a Malwarebytes Anti-Malware nem talált semmit. Segíts kérlek! Köszi! üdv.: Andi |
Szerző: | stell [ hétf. szept. 26, 2011 8:08 ] |
Hozzászólás témája: | Re: nem reagál ... |
Szia Ok, majd ird meg talalt e valamit az AVPTOOL. Udv |
Szerző: | kataiandi [ kedd szept. 20, 2011 18:21 ] |
Hozzászólás témája: | Re: nem reagál ... |
======Scheduled tasks folder====== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2005221024-1775076577-116926438-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2005221024-1775076577-116926438-1000UA.job =========Mozilla firefox========= ProfilePath - C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\4io7ys54.default prefs.js - "browser.startup.homepage" - "http://farmerama.bigpoint.com/|http://forum.terminal.hu/index.php" prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {37fa1426-b82d-11db-8314-0800200c9a66}:2.7.7, {3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8}:0.9.6, fastdial@telega.phpnet.us:3.4, adblockpopups@jessehakanen.net:0.2.4, {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.91, {4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2, optimizegoogle@optimizegoogle.com:0.78.2, engine@conduit.com:3.2.5.2, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, wrc@avast.com:20110101, {b039441e-86eb-4460-8e3a-6dbd251b48c1}:3.4.1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17" prefs.js - "keyword.URL" - "chrome://browser-region/locale/region.properties" "m3ffxtbr@mywebsearch.com"=C:\Program Files\MyWebSearch\bar\1.bin "wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF "{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 10.1 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=D:\Program Files\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647] "Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In "Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647] "Description"=RealJukebox Netscape Plugin "Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.647] "Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In "Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.647] "Description"=RealPlayer(tm) HTML5VideoShim Plug-In "Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647] "Description"=12.0.1.647 "Path"=c:\program files\real\realplayer\Netscape6\nprpjplug.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=] "Description"= "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll C:\Program Files\Mozilla Firefox\extensions\ {972ce4c6-7e08-4474-a285-3208198ce6fd} {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} C:\Program Files\Mozilla Firefox\components\ binary.manifest browsercomps.dll nppl3260.xpt nsIQTScriptablePlugin.xpt nsjsrealplayerplugin.xpt C:\Program Files\Mozilla Firefox\plugins\ np-mswmp.dll npdeployJava1.dll NPOFFICE.DLL nppdf32.dll nppl3260.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll npqtplugin6.dll nprjplug.dll nprpjplug.dll QuickTimePlugin.class WMP Firefox Plugin License.rtf WMP Firefox Plugin RelNotes.txt C:\Program Files\Mozilla Firefox\searchplugins\ bluu.xml creativecommons.xml eBay-en-GB.xml eBay-hu.xml google.xml polymeta.xml sztaki-en-hu.xml vatera.xml wikipedia-hu.xml C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\4io7ys54.default\extensions\ en-GB@dictionaries.addons.mozilla.org engine@conduit.com fastdial@telega.phpnet.us optimizegoogle@optimizegoogle.com {37fa1426-b82d-11db-8314-0800200c9a66} {3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8} {4BBDD651-70CF-4821-84F8-2B918CF89CA3} {ACAA314B-EEBA-48e4-AD47-84E31C44796C} {b039441e-86eb-4460-8e3a-6dbd251b48c1} {e001c731-5e37-4538-a5cb-8168736a2360} C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\4io7ys54.default\searchplugins\ conduit.xml daemon-search.xml icqplugin.xml mywebsearch.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-05-26 386776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2011-05-13 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-13 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-01-13 131072] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-01-13 163840] "Persistence"=C:\Windows\system32\igfxpers.exe [2007-01-13 135168] "avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416] "TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-05-26 273544] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920] "Malwarebytes' Anti-Malware"=D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2011-05-13 4283256] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016] "ccleaner"=D:\Program Files\CCeaner v3.09\CCleaner.exe [2011-07-25 2585408] "Google Update"=C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-30 136176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] D:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe [2009-11-20 434176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-05-26 273544] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2007-01-13 204800] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLinkedConnections"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "vidc.divx"=divx.dll "vidc.yv12"=divx.dll "vidc.xvid"=xvidvfw.dll "vidc.ffds"=ff_vfw.dll "msacm.ac3filter"=ac3filter.acm "msacm.divxa32"=DivXa32.acm "msacm.lameacm"=LameACM.acm "MSVideo8"=VfWWDM32.dll "msacm.siren"=sirenacm.dll "vidc.iv50"=ir50_32.dll "vidc.iv41"=ir41_32.ax "vidc.iv32"=ir32_32.dll "vidc.iv31"=ir32_32.dll "msacm.iac2"=C:\Windows\system32\iac25_32.ax ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2011-09-20 19:01:42 ----D---- C:\Program Files\trend micro 2011-09-20 19:01:41 ----D---- C:\rsit 2011-09-14 13:22:18 ----A---- C:\Windows\system32\EasyRedirectOff.ini 2011-09-14 13:22:18 ----A---- C:\Windows\system32\EasyRedirect.ini 2011-09-14 13:12:44 ----A---- C:\Windows\system32\EasyRedirect.dll 2011-09-06 08:08:45 ----D---- C:\Users\Andi\AppData\Roaming\WinRAR 2011-08-27 13:00:13 ----A---- C:\Windows\system32\drivers\mbam.sys 2011-08-24 12:33:53 ----D---- C:\Users\Andi\AppData\Roaming\KC Softwares 2011-08-24 11:36:49 ----A---- C:\Windows\system32\tzres.dll 2011-08-22 16:04:53 ----D---- C:\Windows\hu 2011-08-21 19:52:13 ----D---- C:\Users\Andi\AppData\Roaming\Floodlight Games 2011-08-21 19:52:13 ----D---- C:\ProgramData\Floodlight Games ======List of files/folders modified in the last 1 month====== 2011-09-20 19:19:07 ----D---- C:\Windows\temp 2011-09-20 19:01:48 ----D---- C:\Windows\Prefetch 2011-09-20 19:01:42 ----RD---- C:\Program Files 2011-09-20 18:49:40 ----D---- C:\Windows\SoftwareDistribution 2011-09-20 18:48:53 ----D---- C:\Windows 2011-09-20 18:44:53 ----D---- C:\Windows\system32\config 2011-09-20 08:40:59 ----SHD---- C:\System Volume Information 2011-09-18 22:10:37 ----D---- C:\Windows\system32\drivers 2011-09-18 17:11:27 ----D---- C:\Windows\Minidump 2011-09-18 14:56:38 ----D---- C:\Users\Andi\AppData\Roaming\Farm Mania 2.1 2011-09-17 09:23:32 ----D---- C:\Users\Andi\AppData\Roaming\Winamp 2011-09-16 21:36:41 ----D---- C:\Users\Andi\AppData\Roaming\Skype 2011-09-16 21:34:17 ----D---- C:\ProgramData\Easybits GO 2011-09-16 18:43:40 ----D---- C:\Users\Andi\AppData\Roaming\go 2011-09-16 15:12:08 ----D---- C:\Windows\rescache 2011-09-16 13:37:25 ----D---- C:\Windows\debug 2011-09-16 11:11:33 ----SHD---- C:\Windows\Installer 2011-09-16 11:11:23 ----A---- C:\Windows\win.ini 2011-09-16 11:05:56 ----A---- C:\Windows\system32\MRT.exe 2011-09-16 11:05:44 ----D---- C:\Windows\winsxs 2011-09-16 11:05:35 ----D---- C:\Windows\system32\catroot 2011-09-16 11:05:34 ----D---- C:\Windows\system32\catroot2 2011-09-15 09:26:34 ----D---- C:\ProgramData\Skype Extras 2011-09-14 13:22:18 ----D---- C:\Windows\System32 2011-09-13 15:01:42 ----D---- C:\ProgramData\Alawar Stargaze 2011-09-13 14:20:56 ----D---- C:\ProgramData 2011-09-13 11:50:15 ----D---- C:\Windows\system32\NDF 2011-09-12 07:00:53 ----D---- C:\Users\Andi\AppData\Roaming\uTorrent 2011-09-09 10:55:10 ----SD---- C:\ProgramData\Microsoft 2011-09-07 08:33:09 ----D---- C:\Program Files\Mozilla Firefox 2011-09-06 22:45:29 ----A---- C:\Windows\system32\aswBoot.exe 2011-09-05 21:51:51 ----AD---- C:\ProgramData\TEMP 2011-09-02 10:44:39 ----SD---- C:\Users\Andi\AppData\Roaming\Microsoft 2011-08-31 20:37:21 ----D---- C:\Windows\inf 2011-08-31 20:37:21 ----A---- C:\Windows\system32\PerfStringBackup.INI 2011-08-27 11:48:17 ----D---- C:\Windows\Tasks 2011-08-27 11:48:17 ----D---- C:\Windows\system32\Tasks 2011-08-26 14:49:26 ----D---- C:\ProgramData\rionix 2011-08-24 23:37:30 ----D---- C:\Windows\system32\hu-HU 2011-08-24 12:41:46 ----D---- C:\Users\Andi\AppData\Roaming\DAEMON Tools Lite 2011-08-24 12:41:41 ----D---- C:\Windows\Logs 2011-08-24 09:55:29 ----D---- C:\Users\Andi\AppData\Roaming\DVDVideoSoft 2011-08-24 09:55:28 ----D---- C:\Program Files\Common Files\DVDVideoSoft 2011-08-24 09:21:11 ----D---- C:\Users\Andi\AppData\Roaming\Flood Light Games 2011-08-24 09:21:11 ----D---- C:\ProgramData\Flood Light Games 2011-08-22 16:02:06 ----D---- C:\Program Files\Windows Live 2011-08-22 16:00:49 ----D---- C:\Program Files\Common Files\microsoft shared 2011-08-21 11:02:29 ----SHD---- C:\$RECYCLE.BIN ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amdxata;amdxata; C:\Windows\system32\drivers\amdxata.sys [2010-11-20 22400] R0 CLFS;@%SystemRoot%\system32\clfs.sys,-100; C:\Windows\System32\CLFS.sys [2009-07-14 249408] R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2009-07-14 369568] R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\system32\drivers\fileinfo.sys [2009-07-14 58448] R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2010-11-20 194800] R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2010-11-20 14208] R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2009-07-14 133200] R0 msisadrv;msisadrv; C:\Windows\system32\drivers\msisadrv.sys [2009-07-14 13888] R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-14 43088] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-09-03 43872] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 spldr;Security Processor Loader Driver; C:\Windows\system32\drivers\spldr.sys [2009-07-14 17472] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-20 691696] R0 vdrvroot;Microsoft virtuálismeghajtó-számbavevő illesztőprogram; C:\Windows\system32\drivers\vdrvroot.sys [2009-07-14 32832] R0 volmgr;Hangerőszabályzó illesztőprogramja; C:\Windows\system32\drivers\volmgr.sys [2010-11-20 53120] R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2009-07-14 297040] R0 Wdf01000;Kernel Mode Driver Frameworks service; C:\Windows\system32\drivers\Wdf01000.sys [2009-07-14 445008] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-09-06 34392] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-09-06 442200] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-09-06 320856] R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-09-06 52568] R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 35328] R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys [2010-11-20 78336] R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 32256] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-05 218688] R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 16896] R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 6656] R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 7168] R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2010-11-20 74752] R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2010-11-20 63488] R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-14 9728] R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-09-06 20568] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616] R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2010-06-17 135184] R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 48128] R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2009-07-14 86528] R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2009-07-14 586752] R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 60928] R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2010-11-20 35328] R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-18 4172832] R3 athur;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1500160] R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2011-02-23 69632] R3 CompositeBus;Összetett busz-számbavételező illesztőprogramja; C:\Windows\system32\drivers\CompositeBus.sys [2010-11-20 31232] R3 HidUsb;Microsoft HID-osztályú illesztőprogram; C:\Windows\system32\DRIVERS\hidusb.sys [2010-11-20 24064] R3 ialm;ialm; C:\Windows\system32\DRIVERS\igxpmp32.sys [2007-01-13 5672032] R3 intelppm;Intel processzor illesztőprogramja; C:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 53760] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216] R3 monitor;Monitor osztályú funkciók Microsoft-illesztőszolgáltatása; C:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 23552] R3 mouhid;Egér HID-illesztőprogram; C:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 26112] R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 60416] R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2011-07-09 223744] R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2011-04-27 96768] R3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys [2009-07-14 267264] R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 49152] R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 75264] R3 RTL8023xp;Realtek 10/100 hálózatiadapter-család NDIS x86-illesztőprogramja; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-14 43008] R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2011-04-29 310272] R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2011-04-29 114688] R3 tunnel;Microsoft alagút-miniportadapter illesztőprogramja; C:\Windows\system32\DRIVERS\tunnel.sys [2010-11-20 108544] R3 umbus;UMBus enumerálási illesztőprogram; C:\Windows\system32\drivers\umbus.sys [2010-11-20 39936] R3 usbuhci;Microsoft USB univerzális állomásvezérlő miniport illesztőprogramja; C:\Windows\system32\DRIVERS\usbuhci.sys [2009-07-14 24064] R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2009-07-14 19968] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336] R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2009-07-14 11264] R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2010-11-20 92672] S3 1394ohci;1394 OHCI szabványnak megfelelő állomásvezérlő; C:\Windows\system32\drivers\1394ohci.sys [2010-11-20 164864] S3 AcpiPmi;Microsoft ACPI telepmérő illesztőprogramja; C:\Windows\system32\drivers\acpipmi.sys [2010-11-20 10240] S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976] S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552] S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 146512] S3 agp440;Intel AGP-busz szűrője; C:\Windows\system32\drivers\agp440.sys [2009-07-14 53312] S3 amdagp;AMD AGP-buszszűrő illesztőprogramja; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 amdide;amdide; C:\Windows\system32\drivers\amdide.sys [2009-07-14 14912] S3 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 55296] S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 52736] S3 amdsata;amdsata; C:\Windows\system32\drivers\amdsata.sys [2010-11-20 80256] S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312] S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2010-11-20 50176] S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys [2009-07-14 76368] S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608] S3 avt4a430;avt4a430; C:\Windows\system32\drivers\avt4a430.sys [] S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-14 430080] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-07-14 13568] S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-07-14 5248] S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\System32\Drivers\Brserid.sys [2009-07-14 272128] S3 BrSerWdm;Brother WDM Serial driver; C:\Windows\System32\Drivers\BrSerWdm.sys [2009-07-14 62336] S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys [2009-07-14 12160] S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\System32\Drivers\BrUsbSer.sys [2009-07-14 11904] S3 BTHMODEM;Bluetooth Serial Communications Driver; C:\Windows\system32\DRIVERS\bthmodem.sys [2009-07-14 56320] S3 catchme;catchme; \??\C:\Users\Andi\AppData\Local\Temp\catchme.sys [] S3 circlass;Consumer IR Devices; C:\Windows\system32\DRIVERS\circlass.sys [2009-07-14 37888] S3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2010-11-20 728448] S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys [2009-07-14 3100160] S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712] S3 ErrDev;Microsoft hardverhiba-észlelő eszköz illesztőprogramja; C:\Windows\system32\drivers\errdev.sys [2009-07-14 7168] S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2009-07-14 142336] S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2009-07-14 28160] S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 46160] S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 57936] S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-07-14 26624] S3 HDAudBus;Microsoft UAA buszillesztő High Definition Audio hanghoz; C:\Windows\system32\drivers\HDAudBus.sys [2010-11-20 108544] S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 21504] S3 HidBth;Microsoft Bluetooth HID Miniport; C:\Windows\system32\DRIVERS\hidbth.sys [2009-07-14 91136] S3 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\DRIVERS\hidir.sys [2009-07-14 37888] S3 HpSAMD;HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [2009-07-14 67152] S3 iaStorV;Intel RAID-vezérlő Windows 7; C:\Windows\system32\drivers\iaStorV.sys [2010-11-20 332160] S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 41040] S3 IPMIDRV;IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [2010-11-20 65536] S3 iScsiPrt;iScsiPort-illesztőprogram; C:\Windows\system32\drivers\msiscsi.sys [2010-11-20 233344] S3 kbdhid;Billentyűzet HID-illesztőprogram; C:\Windows\system32\drivers\kbdhid.sys [2010-11-20 28160] S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824] S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168] S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864] S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848] S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 30800] S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 235584] S3 mpio;Microsoft többutas busz illesztőprogramja; C:\Windows\system32\drivers\mpio.sys [2010-11-20 130432] S3 msahci;msahci; C:\Windows\system32\drivers\msahci.sys [2010-11-20 28032] S3 msdsm;Microsoft többutas eszköz specifikus modulja; C:\Windows\system32\drivers\msdsm.sys [2010-11-20 116096] S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 4096] S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2009-07-14 162896] S3 MSTEE;Microsoft Streaming cél/fogadók közötti konverter; C:\Windows\system32\drivers\MSTEE.sys [2009-07-14 6144] S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 12288] S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 27136] S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624] S3 nv_agp;NVIDIA nForce AGP-busz szűrője; C:\Windows\system32\drivers\nv_agp.sys [2009-07-14 105024] S3 nvraid;nvraid; C:\Windows\system32\drivers\nvraid.sys [2010-11-20 117120] S3 nvstor;nvstor; C:\Windows\system32\drivers\nvstor.sys [2010-11-20 143744] S3 ohci1394;1394 OHCI szabványnak megfelelő állomásvezérlő (örökölt); C:\Windows\system32\drivers\ohci1394.sys [2009-07-14 62464] S3 PortTalk;PortTalk; C:\Windows\System32\Drivers\PortTalk.sys [2009-01-18 3567] S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488] S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064] S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2009-07-14 31744] S3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944] S3 rt70x86;Conceptronic 54Mbps RT2500 USB adapter Driver for Vista; C:\Windows\system32\DRIVERS\netr70.sys [2010-04-27 306016] S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\Windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256] S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016] S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744] S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216] S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\Windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512] S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632] S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\Windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752] S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-10-21 86824] S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 15016] S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 114600] S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 108328] S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 26024] S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-10-21 104616] S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-10-21 109736] S3 sbp2port;SBP-2 átvitel/protokoll busz illesztőprogram; C:\Windows\system32\drivers\sbp2port.sys [2010-11-20 85376] S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2010-11-20 26624] S3 sermouse;Serial Mouse Driver; C:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 19968] S3 sffdisk;SFF tárolási osztály illesztőprogramja; C:\Windows\system32\drivers\sffdisk.sys [2009-07-14 11264] S3 sffp_mmc;SFF tárolási protokoll illesztőprogramja MMC-hez; C:\Windows\system32\drivers\sffp_mmc.sys [2009-07-14 12288] S3 sffp_sd;SFF tárolási protokoll illesztőprogramja SDBus-hoz; C:\Windows\system32\drivers\sffp_sd.sys [2010-11-20 12800] S3 sisagp;SIS AGP-buszszűrő; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 40016] S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888] S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys [2009-07-14 71168] S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072] S3 TCPIP6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2011-06-21 1290624] S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; C:\Windows\System32\DRIVERS\tssecsrv.sys [2010-11-20 31232] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224] S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\DRIVERS\uagp35.sys [2009-07-14 55888] S3 uliagpkx;Uli AGP-busz szűrője; C:\Windows\system32\drivers\uliagpkx.sys [2009-07-14 57424] S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 8192] S3 usbccgp;Microsoft USB általános szülő-illesztőprogram; C:\Windows\system32\drivers\usbccgp.sys [2010-11-20 75776] S3 usbcir;eHome infravörös vevő (USBCIR); C:\Windows\system32\drivers\usbcir.sys [2009-07-14 86016] S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\system32\DRIVERS\usbprint.sys [2009-07-14 19968] S3 USBSTOR;USB-háttértároló; C:\Windows\system32\DRIVERS\USBSTOR.SYS [2010-11-20 76288] S3 usbvideo;USB videóeszköz (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2010-11-20 146432] S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys [2009-07-14 26112] S3 vhdmp;vhdmp; C:\Windows\system32\drivers\vhdmp.sys [2010-11-20 160128] S3 viaagp;VIA AGP buszszűrő; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 vsmraid;vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904] S3 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\DRIVERS\wacompen.sys [2009-07-14 21632] S3 Wd;Wd; C:\Windows\system32\DRIVERS\wd.sys [2009-07-14 19024] S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2010-11-20 132224] S4 crcdisk;Crcdisk Filter Driver; C:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 22096] S4 ws2ifsl;Windows Socket 2.0 - nem IFS-t szolgáltató támogatási környezet; C:\Windows\system32\drivers\ws2ifsl.sys [2009-07-14 16384] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768] R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 MBAMService;MBAMService; D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2006-11-14 322120] R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-03-25 490280] R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 OMSI download service;Sony Ericsson OMSI download service; D:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112] R2 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2011-03-15 1570056] R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648] R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2010-11-20 1121792] R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2009-07-14 428032] R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2009-07-14 22528] R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 PDEngine;PDEngine; C:\Program Files\Raxco\PerfectDisk\PDEngine.exe [2011-03-15 1475848] R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google frissítési szolgáltatás (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-14 136176] S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2010-11-20 3179520] S3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560] S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2009-07-14 22528] S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2010-11-20 556544] S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2009-07-14 94720] S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2010-11-20 523264] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42856] S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-14 136176] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-01-06 182768] S3 idsvc;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2010-11-05 878416] S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-11-14 89136] S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 12800] S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2010-11-20 204800] S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2009-07-14 35840] S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2009-07-14 22528] S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2010-11-20 453632] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-14 1343400] S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2010-11-20 1203200] S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992] S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384] S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; C:\Windows\system32\svchost.exe [2009-07-14 20992] S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2010-11-05 128848] -----------------EOF----------------- |
Szerző: | kataiandi [ kedd szept. 20, 2011 18:20 ] |
Hozzászólás témája: | Re: nem reagál ... |
Logfile of random's system information tool 1.09 (written by random/random) Run by Andi at 2011-09-20 19:19:08 Microsoft Windows 7 Home Premium Service Pack 2 System drive C: has 20 GB (51%) free of 40 GB Total RAM: 1270 MB (40% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:19:13, on 2011.09.20. Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\SOUNDMAN.EXE C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Users\Andi\AppData\Local\Temp\RtkBtMnt.EXE C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\taskhost.exe C:\Users\Andi\AppData\Local\Google\Update\1.3.21.65\GoogleCrashHandler.exe C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Users\Andi\Desktop\RSIT.exe C:\Program Files\trend micro\Andi.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ccleaner] "D:\Program Files\CCeaner v3.09\CCleaner.exe" /AUTO O4 - HKCU\..\Run: [Google Update] "C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe" /c O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Andi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So ... b56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/Messenger ... E_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi ... b56986.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Easybits GO Services for Windows (ezGOSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Google frissítési szolgáltatás (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - D:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 21945 bytes |
Szerző: | kataiandi [ kedd szept. 20, 2011 18:17 ] |
Hozzászólás témája: | nem reagál ... |
Szia stell! Rég jártam erre... viszont túl hosszú volt a vakáció - csipet csapat stb -és a gépen annyi minden volt mint a búcsúba, viszont jó lenne pár dolgot lementeni. De addig nem merek míg azt érzem baj van. Pár napja időnként rájön és semmire nem reagál nem nyit ki semmit, aztán kb 5-10 perc várakozás után újraindítok, akkor egy darabig jó. Volt olyan hogy fél napig is minden rendben volt. Ma viszont betelt a pohár. Így rájöttem ezen már csak te segíthetsz - amit előre is köszönök -. Avast és a maldwarebytes nem talált semmit. Azt RSIT itt van: Kérlek nézd meg és ha időd engedi segíts helyrepofozni a gépet. |
Oldal: 2 / 2 | Időzóna: UTC + 1 óra |
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/ |