Megválaszolatlan hozzászólások | Aktív témák Pontos idő: hétf. nov. 18, 2024 5:12



Hozzászólás a témához  [ 1923 hozzászólás ]  Oldal 1, 2, 3, 4, 5 ... 39  Következő
stell, help me 
Szerző Üzenet
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
1:Pucold ki a rendszert tisztara az CCleaneral.
2:Tolds le az asztalra az DelFix programot/
https://toolslib.net/downloads/finish/2/
3:Itt legyen cakk bepipazva. >>Remove disinfection tools
Klik RUN
Majd probald ki a geppet, es ird meg mi van.
Udv


vas. dec. 21, 2014 8:08
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Szia!
Már csak holnap 3 után leszek!
Jó éjt!


szomb. dec. 20, 2014 22:23
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
3:


Zoek.exe v5.0.0.0 Updated 20-December-2014
Tool run by user_11 on 2014.12.20. at 20:07:13,86.
Microsoft® Windows Vista™ Business 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user_11\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2014.12.20. 20:14:21 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\Aurora3D deleted successfully
C:\Program Files\Mirillis deleted successfully
C:\Program Files\Common Files\Solveig Multimedia deleted successfully
C:\Program Files\Common Files\SWF Studio deleted successfully
C:\PROGRA~2\HitmanPro deleted successfully
C:\Users\user_11\AppData\Roaming\Audacity deleted successfully
C:\Users\user_11\AppData\Roaming\Construct2 deleted successfully
C:\Users\user_11\AppData\Roaming\dlg deleted successfully
C:\Users\user_11\AppData\Roaming\DVDVideoSoft deleted successfully
C:\Users\user_11\AppData\Roaming\Hot Farm Africa deleted successfully
C:\Users\user_11\AppData\Roaming\JoyBits deleted successfully
C:\Users\user_11\AppData\Roaming\Little Inferno deleted successfully
C:\Users\user_11\AppData\Roaming\LucasArts deleted successfully
C:\Users\user_11\AppData\Roaming\Mount&Blade With Fire and Sword deleted successfully
C:\Users\user_11\AppData\Roaming\PeerNetworking deleted successfully
C:\Users\user_11\AppData\Roaming\rmi deleted successfully
C:\Users\user_11\AppData\Roaming\Skype deleted successfully
C:\Users\user_11\AppData\Roaming\Solveig Multimedia deleted successfully
C:\Users\user_11\AppData\Roaming\TeamViewer deleted successfully
C:\Users\user_11\AppData\Roaming\Warner Bros. Interactive Entertainment deleted successfully
C:\Users\user_11\AppData\Roaming\WB Games deleted successfully
C:\Users\user_11\AppData\Local\Bus Simulator 2012 deleted successfully
C:\Users\user_11\AppData\Local\Game Dev Tycoon deleted successfully
C:\Users\user_11\AppData\Local\GHISLER deleted successfully
C:\Users\user_11\AppData\Local\Skype deleted successfully
C:\Users\user_11\AppData\Local\theHunter deleted successfully
C:\Users\user_11\AppData\Local\WarThunder deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c127883-f34d-40e6-a1ac-056c875b78fc} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1191DE4B-803-4ED5-9DBB-D44A1B1F21F} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1b7a936c-ebd6-4d4c-8352-f88a07794e0b} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1FCC5CCD-E41B-45F5-9983-492A9E9D5D39} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{286686E9-3E34-4270-AAA0-B3B8FD326D8D} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28CF662F-AD8C-4841-92FE-81B92C7115A6} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F7AE37-2F00-463C-83A5-8E3E134CBCE8} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{305F0476-1E64-485C-B924-2A11DA382A1E} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{399EEC77-3114-40B7-80AC-8284E35B0FC} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3EB7A0F5-62CB-4D82-95C1-3F0389190A8} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45c9daff-7154-4325-9cea-21feddbcbf6d} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{493A1731-A5FC-41F6-8151-D2F7CF73EEF} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{497922CB-198F-4A08-83FA-C4BCF37EB6D} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4EAD6EBB-7DE1-46DC-A78C-E86DE755742C} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{504b5d03-4deb-41eb-9a74-98a684068942} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5119d461-fd5b-48d2-a2fb-1533ae335a77} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51EFDBC6-405F-4483-A876-8F70796816AC} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DEF2584-DB64-43B8-B255-E5283F76179} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{67B8D571-53D-46A7-A366-22B28ED3D9A9} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6AE67ED6-E851-470C-B25E-F6FB90D1D244} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{835565BC-4677-412B-891E-9466BCDE2123} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{852ED42B-BCD-49C4-BB30-1091B55B9BCC} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{88BDF6CD-8343-4B76-96BD-67BD274E248E} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8b0188d6-26ff-4b78-ad63-a378f7d37198} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E16A3F6-DBA1-44B6-89D5-20575F539CD} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A52E4075-16B4-4019-A7D5-164FD6DFD387} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A57C52ED-44E8-42C8-A124-4535E9C463E5} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B9E96866-46B6-48A7-90D4-E96F8D76743C} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7FACC0D-A37-40CD-A6A5-C953F1BA161A} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE10A58-2C3F-4214-B690-474414335D2F} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFF8FE79-6860-4CBD-99F7-6AD9F50CD40} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6F61813-8B2F-40A5-B648-575193963948} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED6DE3C5-61D6-4CEC-A71E-A489572363B7} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF64EB2-A1CD-4024-AB10-AA5BE20FD3C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c127883-f34d-40e6-a1ac-056c875b78fc} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1b7a936c-ebd6-4d4c-8352-f88a07794e0b} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45c9daff-7154-4325-9cea-21feddbcbf6d} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{504b5d03-4deb-41eb-9a74-98a684068942} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5119d461-fd5b-48d2-a2fb-1533ae335a77} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8b0188d6-26ff-4b78-ad63-a378f7d37198} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\found.000 deleted
C:\found.001 deleted
C:\found.002 deleted
C:\found.003 deleted
C:\found.004 deleted
C:\PROGRA~2\Package Cache deleted
C:\Windows\System32\drivers\SPPD.sys deleted
C:\Windows\system32\GroupPolicy\User deleted
C:\Windows\System32\AI_RecycleBin deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [2014.11.26. 09:30]

==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Rendszergazda\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Rendszergazda\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Rendszergazda\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\user_11\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\user_11\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\VENDG~1\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\VENDG~1\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\VENDG~1\AppData\Local\Comodo\Dragon deleted

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Could not determine latest Stable Version)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[2014.05.08. 14:49]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[2014.11.26. 09:29]

Avast Online Security - user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================


szomb. dec. 20, 2014 20:55
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
2:

# AdwCleaner v4.105 - Report created 20/12/2014 at 19:57:48
# Updated 08/12/2014 by Xplode
# Database : 2014-12-16.1 [Live]
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : user_11 - INTENSA-11
# Running from : C:\Users\user_11\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Users\user_11\AppData\Local\globalUpdate
Folder Deleted : C:\Users\user_11\AppData\Local\CrashRpt
Folder Deleted : C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bbglkiiiofelplniblholffbhhjmdhhi
File Deleted : C:\END

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Speed Checker

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16599


-\\ Google Chrome v39.0.2171.95


-\\ Comodo Dragon v


*************************

AdwCleaner[R0].txt - [4647 octets] - [20/12/2014 19:55:27]
AdwCleaner[S0].txt - [4668 octets] - [20/12/2014 19:57:48]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4728 octets] ##########


szomb. dec. 20, 2014 20:03
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
1:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 20-12-2014
Ran by user_11 at 2014-12-20 19:40:38 Run:3
Running from C:\Users\user_11\Desktop
Loaded Profile: user_11 (Available profiles: user_11)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
CloseProcesses:
Task: {1C99B696-96BC-40CE-BF60-82928A490EC7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-23] (Google Inc.)
Task: {231B2755-C138-42EA-A57C-305BF2642B4F} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 No Task File <==== ATTENTION
Task: {2B205850-F456-4BC1-8C95-044428DF52DF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14] (Adobe Systems Incorporated)
Task: {34022EFB-27BB-4BD5-B746-56FD683D1577} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 No Task File <==== ATTENTION
Task: {3FEF58D2-77E7-4108-8D46-A5F7D54D8D8D} - System32\Tasks\{E523ACDF-AA36-4F4E-A602-E7894637DBFF} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {4DE4E34F-B084-4AE4-A44D-B6F92A04A5AF} - System32\Tasks\{A7BA4FD4-F421-49E3-A35E-45F31705D253} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {8012EF10-2882-4435-B9A0-5849ABCC625A} - System32\Tasks\AVG\PC Tuneup\Integrator\Start On user_11 Logon => C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
Task: {78B7F28F-01A7-41E7-9D2C-42634C0336E4} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 No Task File <==== ATTENTION
Task: {7903154D-55D3-4E70-A330-104211F116ED} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 No Task File <==== ATTENTION
Task: {8602EE65-E788-4C7B-84AB-EA48E438A348} - \54041154-bea7-402b-8bf0-8c7df484b2c4 No Task File <==== ATTENTION
Task: {86361952-2474-43FE-838A-26F00C5CA593} - System32\Tasks\{83E5B4A5-3B20-45AE-AAA0-6F3F65FCDE04} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {86E8E598-4C08-43A8-A244-A26107FBD80F} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 No Task File <==== ATTENTION
Task: {A2668955-75E0-422C-9E15-1D524F4B8C07} - System32\Tasks\{AC121666-77A8-4EC6-9134-D54736FF61B9} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/en/g ... Error=1603
Task: {B8A69A42-E374-4149-923B-655D91EF2B77} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 No Task File <==== ATTENTION
Task: {C15795D7-F0B8-481B-85DC-A286CB316BE4} - System32\Tasks\{FB9CD1BD-0071-432C-B4A0-1317E555CA15} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {C8271BFD-DF6F-46BC-81ED-05C21B294051} - \bbdba034-3069-4359-916e-ea3b2591353e No Task File <==== ATTENTION
Task: {D4BD0C21-28A0-4950-8BDD-933D241E8CE4} - System32\Tasks\{3371FDE8-E3D7-438D-9BA4-3BD49CEA1CE7} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {EC1DCD67-5EF1-44F0-B899-5FEFBBE946D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-23] (Google Inc.)
Task: {F39D5C67-E5E4-44AD-9AFD-22325959582E} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 No Task File <==== ATTENTION
Task: {F3B46D43-0610-40A8-929B-29E97D377091} - System32\Tasks\{01AE1BB4-F62E-4C02-BD59-5B35222878E8} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {FDAA1F10-7E4D-4068-B246-43EFF33B95E4} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user No Task File <==== ATTENTION
AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\Users\user_11\Application Data:NT
AlternateDataStreams: C:\Users\user_11\Application Data:NT2
AlternateDataStreams: C:\Users\user_11\AppData\Roaming:NT
AlternateDataStreams: C:\Users\user_11\AppData\Roaming:NT2
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR DefaultSuggestURL: Default -> http://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2013-10-17] (TeamViewer GmbH)
S3 catchme; \??\C:\Users\user_11\AppData\Local\Temp\catchme.sys [X]
S3 cnnctfy2MP; system32\DRIVERS\cnnctfy2.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [X]
S3 USBModem; system32\DRIVERS\lgusbmodem.sys [X]
S3 XDva410; \??\C:\Windows\system32\XDva410.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
C:\ProgramData\hash.dat
EmptyTemp:
Hosts:
end

*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1C99B696-96BC-40CE-BF60-82928A490EC7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C99B696-96BC-40CE-BF60-82928A490EC7}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{231B2755-C138-42EA-A57C-305BF2642B4F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{231B2755-C138-42EA-A57C-305BF2642B4F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2B205850-F456-4BC1-8C95-044428DF52DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B205850-F456-4BC1-8C95-044428DF52DF}" => Key deleted successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{34022EFB-27BB-4BD5-B746-56FD683D1577}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34022EFB-27BB-4BD5-B746-56FD683D1577}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FEF58D2-77E7-4108-8D46-A5F7D54D8D8D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FEF58D2-77E7-4108-8D46-A5F7D54D8D8D}" => Key deleted successfully.
C:\Windows\System32\Tasks\{E523ACDF-AA36-4F4E-A602-E7894637DBFF} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E523ACDF-AA36-4F4E-A602-E7894637DBFF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4DE4E34F-B084-4AE4-A44D-B6F92A04A5AF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DE4E34F-B084-4AE4-A44D-B6F92A04A5AF}" => Key deleted successfully.
C:\Windows\System32\Tasks\{A7BA4FD4-F421-49E3-A35E-45F31705D253} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A7BA4FD4-F421-49E3-A35E-45F31705D253}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8012EF10-2882-4435-B9A0-5849ABCC625A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8012EF10-2882-4435-B9A0-5849ABCC625A}" => Key deleted successfully.
C:\Windows\System32\Tasks\AVG\PC Tuneup\Integrator\Start On user_11 Logon => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\PC Tuneup\Integrator\Start On user_11 Logon" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{78B7F28F-01A7-41E7-9D2C-42634C0336E4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78B7F28F-01A7-41E7-9D2C-42634C0336E4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7903154D-55D3-4E70-A330-104211F116ED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7903154D-55D3-4E70-A330-104211F116ED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8602EE65-E788-4C7B-84AB-EA48E438A348}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8602EE65-E788-4C7B-84AB-EA48E438A348}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\54041154-bea7-402b-8bf0-8c7df484b2c4" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{86361952-2474-43FE-838A-26F00C5CA593}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86361952-2474-43FE-838A-26F00C5CA593}" => Key deleted successfully.
C:\Windows\System32\Tasks\{83E5B4A5-3B20-45AE-AAA0-6F3F65FCDE04} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{83E5B4A5-3B20-45AE-AAA0-6F3F65FCDE04}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{86E8E598-4C08-43A8-A244-A26107FBD80F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86E8E598-4C08-43A8-A244-A26107FBD80F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2668955-75E0-422C-9E15-1D524F4B8C07}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2668955-75E0-422C-9E15-1D524F4B8C07}" => Key deleted successfully.
C:\Windows\System32\Tasks\{AC121666-77A8-4EC6-9134-D54736FF61B9} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AC121666-77A8-4EC6-9134-D54736FF61B9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B8A69A42-E374-4149-923B-655D91EF2B77}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8A69A42-E374-4149-923B-655D91EF2B77}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C15795D7-F0B8-481B-85DC-A286CB316BE4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C15795D7-F0B8-481B-85DC-A286CB316BE4}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FB9CD1BD-0071-432C-B4A0-1317E555CA15} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FB9CD1BD-0071-432C-B4A0-1317E555CA15}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C8271BFD-DF6F-46BC-81ED-05C21B294051}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C8271BFD-DF6F-46BC-81ED-05C21B294051}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bbdba034-3069-4359-916e-ea3b2591353e" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D4BD0C21-28A0-4950-8BDD-933D241E8CE4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D4BD0C21-28A0-4950-8BDD-933D241E8CE4}" => Key deleted successfully.
C:\Windows\System32\Tasks\{3371FDE8-E3D7-438D-9BA4-3BD49CEA1CE7} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3371FDE8-E3D7-438D-9BA4-3BD49CEA1CE7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC1DCD67-5EF1-44F0-B899-5FEFBBE946D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC1DCD67-5EF1-44F0-B899-5FEFBBE946D1}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F39D5C67-E5E4-44AD-9AFD-22325959582E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F39D5C67-E5E4-44AD-9AFD-22325959582E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3B46D43-0610-40A8-929B-29E97D377091}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3B46D43-0610-40A8-929B-29E97D377091}" => Key deleted successfully.
C:\Windows\System32\Tasks\{01AE1BB4-F62E-4C02-BD59-5B35222878E8} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{01AE1BB4-F62E-4C02-BD59-5B35222878E8}" => Key deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FDAA1F10-7E4D-4068-B246-43EFF33B95E4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FDAA1F10-7E4D-4068-B246-43EFF33B95E4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user" => Key deleted successfully.
C:\ProgramData => ":NT" ADS removed successfully.
C:\ProgramData => ":NT2" ADS removed successfully.
"C:\Users\All Users" => ":NT" ADS not found.
"C:\Users\All Users" => ":NT2" ADS not found.
"C:\ProgramData\Application Data" => ":NT" ADS not found.
"C:\ProgramData\Application Data" => ":NT2" ADS not found.
C:\ProgramData\TEMP => ":C31F31E6" ADS removed successfully.
"C:\Users\user_11\Application Data" => ":NT" ADS not found.
"C:\Users\user_11\Application Data" => ":NT2" ADS not found.
C:\Users\user_11\AppData\Roaming => ":NT" ADS removed successfully.
C:\Users\user_11\AppData\Roaming => ":NT2" ADS removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Search Page => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
"HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => Key deleted successfully.
Chrome DefaultSuggestURL not detected.
teamviewervpn => Service deleted successfully.
catchme => Service deleted successfully.
cnnctfy2MP => Service deleted successfully.
IpInIp => Service deleted successfully.
NwlnkFlt => Service deleted successfully.
NwlnkFwd => Service deleted successfully.
usbbus => Service deleted successfully.
UsbDiag => Service deleted successfully.
USBModem => Service deleted successfully.
XDva410 => Service deleted successfully.
xhunter1 => Service deleted successfully.
C:\ProgramData\hash.dat => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 197.2 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====


szomb. dec. 20, 2014 19:49
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Szia.
1:Tolds le az asztalra az Fixlist.txt es
Hagyd ott.
http://leteckaposta.co/file/556889882.1 ... 45b80ae/cs
2:Futtasd az FRST .exe programot, es klik a Fix, Gombra.
3:Mikkor befejezi a javitast, kerheti a restartot is, beleegyezel, a restart utan ott lesz a asztalon a naploje, a neve FIXLOG.txt.
Majd a tartalmat tedd ide.

5:Letoltod az adwcleanert>>futtatod mint rendszergazda.
http://www.viruskasino.com/2012/09/adwcleaner.html
Klik scan, mikkor befejezi klik CLEAN.
Majd kerri a restaartot, beleegyezes, majd a naplojat tedd ide.

Most lefuttasz egy igem lusta programot, de igen, jo,ezert legy turelmes.
Tolds le az asztalra.>>futtatod mint rendszergazda.>>nyugodtan varjal, meg megjelenik az ablakja
http://hijackthis.nl/smeenk/
Az ablakjaba masold be ezt a textet.
Kód:
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Klikelj az Gombra:
Run Script
Es nyugi.

Mikkor befejezi, majd keri a restartot>>majd a naplojat tedd ide.

Es majd meglatom, a naplokbol hogy mi a hejzet.


szomb. dec. 20, 2014 18:11
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-12-2014
Ran by user_11 at 2014-12-20 08:45:03
Running from C:\Users\user_11\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: PC Tools Firewall Plus (Enabled) {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\uTorrent) (Version: 3.4.2.34944 - BitTorrent Inc.)
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
abgx360 v1.0.6 (HKLM\...\abgx360) (Version: - )
Adobe Acrobat XI Pro (HKLM\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.08 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader X (10.1.13) - Hungarian (HKLM\...\{AC76BA86-7AD7-1038-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.)
Amazing World (HKLM\...\Steam App 293500) (Version: - Ganz)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
AVS Update Manager 1.0 (HKLM\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM\...\AVS4YOU Video Converter 7_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
Bandicam (HKLM\...\Bandicam) (Version: 2.1.1.731 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
Bing Bar (HKLM\...\{449CE12D-E2C7-4B97-B19E-55D163EA9435}) (Version: 7.0.619.0 - Microsoft Corporation)
BLOCKADE 3D (HKLM\...\Steam App 302830) (Version: - Shumkov Dmitriy)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Cubic Castles (HKLM\...\Steam App 317470) (Version: - Cosmic Cow LLC)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Fraps (remove only) (HKLM\...\Fraps) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Guns and Robots (HKLM\...\Steam App 293540) (Version: - Masthead Studios Ltd)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005F0}) (Version: 7.0.50 - Oracle)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Magic ISO Maker v5.5 (build 0281) (HKLM\...\Magic ISO Maker v5.5 (build 0281)) (Version: - )
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger kísérő (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.5.1 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Excel 2007 Help-frissítés (KB963678) (HKLM\...\{90120000-0016-040E-0000-0000000FF1CE}_PROHYBRIDR_{76BD9044-91EB-46FC-8CA6-0AA239BB8A93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (HKLM\...\{90120000-0018-040E-0000-0000000FF1CE}_PROHYBRIDR_{6863CE52-1321-482E-B930-B325EE09AEFF}) (Version: - Microsoft)
Microsoft Office Word 2007 Help-frissítés (KB963665) (HKLM\...\{90120000-001B-040E-0000-0000000FF1CE}_PROHYBRIDR_{0E56E23A-EDB8-42C7-A285-7258C5944EB4}) (Version: - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero BurnLite 10 (HKLM\...\{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}) (Version: 10.0.10600 - Nero AG)
Nero BurnLite 10 (HKLM\...\{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}) (Version: 10.0.10500.5.100 - Nero AG)
Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
No More Room in Hell (HKLM\...\Steam App 224260) (Version: - No More Room in Hell Team)
NVIDIA 3D Vision vezérlő illesztőprogram 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Nyelvi csomag a Microsoft .NET-keretrendszer 3.5 1. szervizcsomagjához – HUN (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - hun) (Version: - Microsoft Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
PC Tools Firewall Plus 7.0 (HKLM\...\PC Tools Firewall Plus) (Version: 7.0 - PC Tools)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAF (HKLM\...\{E6B43401-E818-4961-AFED-118DD8E87642}) (Version: 1.00.0001 - FUJIFILM Corporation)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.21 - Piriform)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Switch Off (HKLM\...\SwitchOff) (Version: 2.3 - YaSoft)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
The Expendabros (HKLM\...\Steam App 312990) (Version: - Free Lives)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Vista Codec Package (HKLM\...\{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}) (Version: 5.9.8 - Shark007)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.10 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3660284441-3406738706-2838319646-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)

==================== Restore Points =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 11:23 - 2014-07-09 15:09 - 00000781 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {01326342-74E5-474D-82DE-8B8AF2182888} - System32\Tasks\{B3788410-A365-49C2-9A91-B0C47568C39A} => pcalua.exe -a D:\autorun.exe -d D:\
Task: {1C99B696-96BC-40CE-BF60-82928A490EC7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-23] (Google Inc.)
Task: {231B2755-C138-42EA-A57C-305BF2642B4F} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 No Task File <==== ATTENTION
Task: {2B205850-F456-4BC1-8C95-044428DF52DF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14] (Adobe Systems Incorporated)
Task: {34022EFB-27BB-4BD5-B746-56FD683D1577} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 No Task File <==== ATTENTION
Task: {3FEF58D2-77E7-4108-8D46-A5F7D54D8D8D} - System32\Tasks\{E523ACDF-AA36-4F4E-A602-E7894637DBFF} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {45E5F383-CEAD-4875-A552-18369757C21B} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {4BFA60B9-2DAD-469D-A2B2-58F434E2356E} - System32\Tasks\{4A812234-47AF-4F2C-847E-698F4F600A6A} => pcalua.exe -a "C:\Users\user_11\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PFZP6CSM\avira_antivirus_premium.exe" -d C:\Users\user_11\Desktop
Task: {4DE4E34F-B084-4AE4-A44D-B6F92A04A5AF} - System32\Tasks\{A7BA4FD4-F421-49E3-A35E-45F31705D253} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {59F73530-49ED-4A99-9B15-C86E3C396980} - System32\Tasks\{35B7FC09-D693-4EE3-8951-CD72B51AF8FC} => pcalua.exe -a C:\Users\user_11\Downloads\PC_Bass.Pro.Shops-The.Strike.Full-Rip.-TPTB\BassProShops-TheStrike\BassProShops-TheStrike\SetupBASSPROSHOP.exe -d C:\Users\user_11\Downloads\PC_Bass.Pro.Shops-The.Strike.Full-Rip.-TPTB\BassProShops-TheStrike\BassProShops-TheStrike
Task: {6AF0F1F0-82F4-4995-97A2-B443FF52A92A} - System32\Tasks\{B1995DA9-D3AC-4BBF-94A7-61880CF3FE6A} => pcalua.exe -a C:\Windows\system32\PhysX.cpl
Task: {6EF725B6-7D48-4767-9866-4271C46DB363} - System32\Tasks\{26AAACA1-55E3-46F3-97F0-C64A1A3F46CF} => pcalua.exe -a C:\Users\user_11\Desktop\mb_wfas_setup_1141.exe -d C:\Users\user_11\Desktop
Task: {78B7F28F-01A7-41E7-9D2C-42634C0336E4} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 No Task File <==== ATTENTION
Task: {7903154D-55D3-4E70-A330-104211F116ED} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 No Task File <==== ATTENTION
Task: {7EE13AF7-711E-4A8E-9620-C4395831C63A} - System32\Tasks\{AFA35301-CEAD-4411-A455-4B6B3ABCBBF4} => pcalua.exe -a D:\SETUP.EXE -d D:\
Task: {8012EF10-2882-4435-B9A0-5849ABCC625A} - System32\Tasks\AVG\PC Tuneup\Integrator\Start On user_11 Logon => C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
Task: {80F3FF38-5446-4335-9778-B1378DDE964C} - System32\Tasks\{1FF8EDCE-EB93-4466-BF32-31B415F8428F} => pcalua.exe -a C:\Users\user_11\Downloads\GTA_SA\Install.exe -d C:\Users\user_11\Downloads\GTA_SA
Task: {8602EE65-E788-4C7B-84AB-EA48E438A348} - \54041154-bea7-402b-8bf0-8c7df484b2c4 No Task File <==== ATTENTION
Task: {86361952-2474-43FE-838A-26F00C5CA593} - System32\Tasks\{83E5B4A5-3B20-45AE-AAA0-6F3F65FCDE04} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {86E8E598-4C08-43A8-A244-A26107FBD80F} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 No Task File <==== ATTENTION
Task: {A2668955-75E0-422C-9E15-1D524F4B8C07} - System32\Tasks\{AC121666-77A8-4EC6-9134-D54736FF61B9} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/en/g ... Error=1603
Task: {B70A919D-3C47-458E-B869-08E866C6E060} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {B8A69A42-E374-4149-923B-655D91EF2B77} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 No Task File <==== ATTENTION
Task: {BA2B1FDC-704F-4092-8D22-7C3C60FD634B} - System32\Tasks\{B6D6134F-3207-4655-B3FF-C1EC52E361F5} => pcalua.exe -a D:\setup.exe -d D:\
Task: {C15795D7-F0B8-481B-85DC-A286CB316BE4} - System32\Tasks\{FB9CD1BD-0071-432C-B4A0-1317E555CA15} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {C8271BFD-DF6F-46BC-81ED-05C21B294051} - \bbdba034-3069-4359-916e-ea3b2591353e No Task File <==== ATTENTION
Task: {D4BD0C21-28A0-4950-8BDD-933D241E8CE4} - System32\Tasks\{3371FDE8-E3D7-438D-9BA4-3BD49CEA1CE7} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {DFFA069A-2839-4588-9E10-927BDCAE0896} - System32\Tasks\{65D19A92-2F9D-4D1B-9BB8-94873B727335} => pcalua.exe -a C:\Users\user_11\Desktop\dxwebsetup0411.exe -d C:\Users\user_11\Desktop
Task: {E0DC511D-49C3-469D-A268-1627E4B11708} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-26] (AVAST Software)
Task: {EC1DCD67-5EF1-44F0-B899-5FEFBBE946D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-23] (Google Inc.)
Task: {EDB0F2C0-C5C5-4211-A3CD-41FFD2B114C6} - System32\Tasks\{36190E1B-D42B-4DE8-8C23-4A31ABB4C444} => pcalua.exe -a C:\Users\user_11\Desktop\mb_wfas_upgrade_1138_to_1143.exe -d C:\Users\user_11\Desktop
Task: {EFD0256C-91A9-409A-B1EF-8F7FA32A407F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F39D5C67-E5E4-44AD-9AFD-22325959582E} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 No Task File <==== ATTENTION
Task: {F3B46D43-0610-40A8-929B-29E97D377091} - System32\Tasks\{01AE1BB4-F62E-4C02-BD59-5B35222878E8} => Chrome.exe http://ui.skype.com/ui/0/7.0.0.100/hu/g ... Error=1603
Task: {F7EEDA63-B606-4D6C-A199-F29BD4405F12} - System32\Tasks\{90A077CD-31CD-406D-B0AA-F9F755E73847} => pcalua.exe -a D:\setup\A_tanya.exe -d D:\setup
Task: {FDAA1F10-7E4D-4068-B246-43EFF33B95E4} - \07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user No Task File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-12-19 14:53 - 2014-12-19 14:53 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14121900\algo.dll
2014-12-20 07:28 - 2014-12-20 07:28 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14121901\algo.dll
2012-02-02 16:38 - 2012-01-09 19:44 - 00166912 _____ () C:\Program Files\WinRAR\rarext.dll
2014-06-25 21:34 - 2014-11-26 09:30 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-12 23:25 - 2014-12-12 23:25 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1038.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\Users\user_11\Application Data:NT
AlternateDataStreams: C:\Users\user_11\Application Data:NT2
AlternateDataStreams: C:\Users\user_11\AppData\Roaming:NT
AlternateDataStreams: C:\Users\user_11\AppData\Roaming:NT2

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VPN Client.lnk => C:\Windows\pss\VPN Client.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: Nvtmru => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\user_11\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe

========================= Accounts: ==========================

Rendszergazda (S-1-5-21-3660284441-3406738706-2838319646-500 - Administrator - Disabled)
user_11 (S-1-5-21-3660284441-3406738706-2838319646-1000 - Administrator - Enabled) => C:\Users\user_11
Vendég (S-1-5-21-3660284441-3406738706-2838319646-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: isatap.{6A49D185-201E-4691-879E-01878F697AC6}
Description: Microsoft ISATAP adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft PS/2 egér
Description: Microsoft PS/2 egér
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/20/2014 08:26:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás: rundll32.exe, verzió: 6.0.6000.16386, időbélyeg: 0x4549b0e1, a hibát okozó modul: wscui.cpl, verziószám: 6.0.6002.18005, időbélyeg: 0x49e03846, kivételkód: 0xc0000005, hiba pozíciója: 0x0000b961,
folyamatazonosító: 0x1748, az alkalmazás indításának időpontja: 0xrundll32.exe0.

Error: (12/20/2014 08:23:52 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\APPDATA\LOCAL\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012014122020141221> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (12/20/2014 07:30:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2014 08:41:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás: main.exe, verzió: 4.3.3.30826, időbélyeg: 0x52cd4305, a hibát okozó modul: ntdll.dll, verziószám: 6.0.6002.23154, időbélyeg: 0x51da29f7, kivételkód: 0xc0000005, hiba pozíciója: 0x00048752,
folyamatazonosító: 0x1214, az alkalmazás indításának időpontja: 0xmain.exe0.

Error: (12/19/2014 06:06:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás: AmazingWorld.exe, verzió: 3.5.7.45015, időbélyeg: 0x50c7795d, a hibát okozó modul: mono.dll, verziószám: 0.0.0.0, időbélyeg: 0x5077372b, kivételkód: 0xc0000005, hiba pozíciója: 0x0010cc4a,
folyamatazonosító: 0x12dc, az alkalmazás indításának időpontja: 0xAmazingWorld.exe0.

Error: (12/19/2014 05:32:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2014 03:19:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2014 02:55:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/18/2014 08:41:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/18/2014 07:40:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (12/19/2014 05:30:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.19. - 17:29:24) váratlan volt.

Error: (12/19/2014 03:17:20 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.19. - 15:15:17) váratlan volt.

Error: (12/18/2014 08:39:40 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.18. - 20:37:39) váratlan volt.

Error: (12/18/2014 07:38:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.18. - 19:37:31) váratlan volt.

Error: (12/16/2014 08:01:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.16. - 20:00:45) váratlan volt.

Error: (12/12/2014 07:40:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.12.12. - 19:38:27) váratlan volt.

Error: (12/12/2014 05:34:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: 0x80070643Definition Update for Windows Defender - KB915597 (Definition 1.189.1916.0){302FE74A-21D0-4B1D-A696-2722B8A5BD5E}200

Error: (12/10/2014 06:27:49 PM) (Source: bowser) (EventID: 8003) (User: )
Description: A főtallózó az egyik gépről (ANDRÁS-PC) olyan kiszolgálói bejelentést kapott,
hogy ő a főtallózó a következő tartományra vagy átvitelre nézve: NetBT_Tcpip_{6A49D185-201E-4691-879E-01878F69.
A főtallózó leáll, vagy választást kezdeményez.

Error: (12/10/2014 05:18:09 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (12/10/2014 05:18:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Windows Search%%1053


Microsoft Office Sessions:
=========================
Error: (01/02/2013 04:48:37 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 4719 seconds with 4080 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2014-12-17 16:53:19.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:53:19.145
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:53:18.879
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:53:18.551
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:47:53.656
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:47:53.390
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:47:53.124
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:47:52.827
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:45:41.406
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-12-17 16:45:41.140
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E4600 @ 2.40GHz
Percentage of memory in use: 54%
Total physical RAM: 1022.58 MB
Available physical RAM: 466.85 MB
Total Pagefile: 2303.47 MB
Available Pagefile: 1448.82 MB
Total Virtual: 2047.88 MB
Available Virtual: 1913.29 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:142.7 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (EVW3226) (CDROM) (Total:0.08 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: E913E925)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================


szomb. dec. 20, 2014 8:56
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Szia Stell!
Megint egy kis segítségre szorulok.
A gyerekem át vette a hatalmat a gép fölött,és most elég érdekes dolgokat csinál.
Lassú,lefagy, ma reggel nem volt háttérkép,Stb.

Meg tudnád nézni?
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2014
Ran by user_11 (administrator) on INTENSA-11 on 20-12-2014 08:43:17
Running from C:\Users\user_11\Desktop
Loaded Profile: user_11 (Available profiles: user_11)
Platform: Microsoft® Windows Vista™ Business Service Pack 2 (X86) OS Language: magyar (Magyarország)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FWService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(YaSoft) C:\Program Files\Switch Off\swoff.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM\...\Run: [00PCTFW] => C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2672600 2011-04-07] (PC Tools)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2014-12-12] (AVAST Software)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Run: [Switch Off] => C:\Program Files\Switch Off\swoff.exe [19456 2014-09-30] (YaSoft)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\RunOnce: [Adobe Speed Launcher] => 1419058023
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xFF000000
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-3660284441-3406738706-2838319646-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-12-06]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-11-26]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-25]

Chrome:
=======
CHR HomePage: Default -> https://www.google.com/
CHR StartupUrls: Default -> "https://www.google.com/"
CHR DefaultSuggestURL: Default -> http://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Dokumentumok) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-23]
CHR Extension: (Google Drive) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-23]
CHR Extension: (YouTube) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-23]
CHR Extension: (Adblock Plus) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-23]
CHR Extension: (Google-keresés) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-23]
CHR Extension: (Adobe Acrobat - PDF létrehozása) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-07-23]
CHR Extension: (Avast Online Security) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-23]
CHR Extension: (Google Pénztárca) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-23]
CHR Extension: (Gmail) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-23]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-26]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-26] (AVAST Software)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [182304 2014-11-07] (EasyAntiCheat Ltd)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 PCToolsFirewallPlus; C:\Program Files\PC Tools Firewall Plus\FWService.exe [286000 2011-01-24] (PC Tools)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-11-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2014-11-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55240 2014-11-26] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-11-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2014-11-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423784 2014-11-26] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57928 2014-11-26] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2014-11-26] ()
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [160576 2011-03-02] (PC Tools)
R3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [89472 2011-01-12] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [251560 2011-01-17] (PC Tools)
S3 pctNdis; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctNdisMP; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [125248 2011-01-17] (PC Tools)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
S3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2013-10-17] (TeamViewer GmbH)
S3 catchme; \??\C:\Users\user_11\AppData\Local\Temp\catchme.sys [X]
S3 cnnctfy2MP; system32\DRIVERS\cnnctfy2.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [X]
S3 USBModem; system32\DRIVERS\lgusbmodem.sys [X]
S3 XDva410; \??\C:\Windows\system32\XDva410.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-20 08:43 - 2014-12-20 08:44 - 00013683 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-12-20 08:41 - 2014-12-20 08:41 - 01113600 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-12-19 15:14 - 2014-12-19 15:15 - 00000000 ____D () C:\0aae2926cbf2733a14b269
2014-12-13 16:44 - 2014-12-13 16:44 - 30993712 _____ (Riot Games) C:\Users\user_11\Desktop\LeagueofLegends_EUNE_Installer_9_15_2014.exe
2014-12-11 20:23 - 2014-12-11 20:23 - 00000717 _____ () C:\Users\user_11\Desktop\World of Tanks.lnk
2014-12-11 20:23 - 2014-12-11 20:23 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
2014-12-11 20:23 - 2014-12-11 20:23 - 00000000 ____D () C:\Games
2014-12-11 20:22 - 2014-12-11 20:22 - 05994752 _____ (Wargaming.net ) C:\Users\user_11\Desktop\WoT_internet_install_eu.exe
2014-12-11 20:06 - 2014-12-11 20:06 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\RotMG.Production
2014-12-11 17:21 - 2014-12-11 17:23 - 00000000 ____D () C:\Users\user_11\Documents\Bandicut
2014-12-11 17:20 - 2014-12-12 17:19 - 00000000 ____D () C:\Program Files\Bandicut
2014-12-11 17:13 - 2014-12-11 17:13 - 00000000 ____D () C:\Users\user_11\Documents\Action!
2014-12-11 17:13 - 2014-12-11 17:13 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Mirillis
2014-12-11 17:13 - 2014-12-11 17:13 - 00000000 ____D () C:\Users\user_11\AppData\Local\Mirillis
2014-12-11 17:13 - 2014-12-11 17:13 - 00000000 ____D () C:\ProgramData\Mirillis
2014-12-11 17:10 - 2014-12-12 16:26 - 00000000 ____D () C:\Program Files\Mirillis
2014-12-11 17:10 - 2014-12-11 17:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2014-12-11 12:46 - 2014-12-11 12:46 - 00000000 ____D () C:\Users\user_11\AppData\Local\{CE9D35AA-662F-47D9-9F26-B9D799C0D5C2}
2014-12-11 10:07 - 2014-11-04 01:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-11 10:06 - 2014-11-07 02:33 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:54 - 2014-12-03 03:06 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-12-11 09:15 - 2014-11-24 21:44 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-12-11 09:15 - 2014-11-24 21:41 - 12369920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 09:15 - 2014-11-24 21:40 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 09:15 - 2014-11-24 21:37 - 09740800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 09:15 - 2014-11-24 21:35 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 09:15 - 2014-11-24 21:35 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 09:15 - 2014-11-24 21:34 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 09:15 - 2014-11-24 21:34 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-11 09:15 - 2014-11-24 21:33 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 09:15 - 2014-11-24 21:33 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-12-11 09:15 - 2014-11-24 21:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 09:15 - 2014-11-24 21:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 09:15 - 2014-11-24 21:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 09:15 - 2014-11-24 21:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-11 09:15 - 2014-11-24 21:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 09:15 - 2014-11-24 21:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-12-11 09:15 - 2014-11-24 21:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-12-10 21:16 - 2014-12-10 21:16 - 00000000 ____D () C:\Users\user_11\AppData\Local\{2D064694-7FA3-47EB-9D74-5006AF1AC720}
2014-12-07 10:47 - 2014-12-07 10:47 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\StunlockStudios
2014-12-06 19:44 - 2014-10-07 19:44 - 00000032 ____R () C:\ProgramData\hash.dat
2014-12-06 11:59 - 2014-12-17 17:19 - 00000000 ____D () C:\Program Files\Aurora3D
2014-12-06 08:29 - 2014-12-06 08:32 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Sony
2014-12-02 20:16 - 2014-12-02 20:16 - 00000552 _____ () C:\Users\user_11\AppData\Local\d3d8caps.dat
2014-12-02 20:15 - 2014-12-02 20:15 - 00000745 _____ () C:\Users\user_11\Desktop\Bandicam.lnk
2014-12-02 20:15 - 2014-12-02 20:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2014-12-02 20:15 - 2014-12-02 20:15 - 00000000 ____D () C:\Program Files\Bandicam
2014-12-02 14:53 - 2014-12-02 16:27 - 00000654 _____ () C:\Windows\system32\.crusader
2014-12-02 14:42 - 2014-12-17 17:20 - 00000000 ____D () C:\Program Files\HitmanPro
2014-11-29 19:08 - 2014-11-29 19:08 - 00000000 ____D () C:\Users\user_11\AppData\Local\{4B70BD85-42B6-42F2-ADE2-7D222EC80D8D}
2014-11-29 18:54 - 2014-12-11 17:21 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\BANDISOFT
2014-11-29 18:54 - 2014-11-29 18:54 - 00000000 ____D () C:\Users\user_11\Documents\Bandicam
2014-11-29 18:53 - 2014-12-02 15:31 - 00000000 ____D () C:\Program Files\globalUpdate
2014-11-29 18:53 - 2014-11-29 18:53 - 00000000 ____D () C:\Users\user_11\AppData\Local\globalUpdate
2014-11-29 18:51 - 2014-12-02 20:15 - 00000000 ____D () C:\Program Files\BandiMPEG1
2014-11-29 18:49 - 2014-11-29 18:50 - 00000000 _____ () C:\END
2014-11-29 17:31 - 2014-11-29 17:31 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Construct2
2014-11-26 09:30 - 2014-11-26 09:30 - 00291352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-26 09:30 - 2014-11-26 09:30 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-22 16:35 - 2014-11-22 16:35 - 00000213 _____ () C:\Users\user_11\Desktop\Team Fortress 2.url
2014-11-22 13:19 - 2014-12-19 20:38 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-22 13:06 - 2014-12-20 08:22 - 00000000 ____D () C:\Program Files\Steam
2014-11-22 13:06 - 2014-11-22 13:06 - 00000720 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-11-22 13:06 - 2014-11-22 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-20 08:43 - 2013-09-24 08:12 - 00000000 ____D () C:\FRST
2014-12-20 08:32 - 2014-07-23 14:09 - 00001016 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-20 08:21 - 2011-07-13 12:09 - 00000000 ____D () C:\Users\user_11\Desktop\vírus vizsgálók
2014-12-20 08:20 - 2014-04-28 14:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-20 08:18 - 2011-11-11 12:28 - 00000000 ____D () C:\Windows\Minidump
2014-12-20 08:10 - 2013-10-08 19:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-20 07:47 - 2012-02-02 08:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-12-20 07:46 - 2014-07-23 14:09 - 00001012 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-20 07:33 - 2014-10-16 12:25 - 01905664 ____N () C:\Windows\WindowsUpdate.log
2014-12-20 07:28 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-20 07:28 - 2006-11-02 13:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-20 07:28 - 2006-11-02 13:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-19 21:01 - 2006-11-02 14:01 - 00032580 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-12-17 19:29 - 2014-11-17 14:06 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Cubic
2014-12-17 17:20 - 2014-10-16 09:39 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-12-16 15:09 - 2013-07-04 12:33 - 00000000 ____D () C:\Users\user_11\Desktop\Beosztás
2014-12-16 11:17 - 2014-08-24 12:55 - 00000000 ____D () C:\ProgramData\Skype
2014-12-14 17:14 - 2012-09-10 09:28 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-12-14 17:14 - 2011-11-10 08:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-12-14 07:37 - 2013-01-16 22:06 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\PhotoScape
2014-12-13 14:54 - 2011-04-01 09:47 - 00038400 _____ () C:\Users\user_11\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-13 14:53 - 2014-09-19 16:54 - 00000000 ____D () C:\Users\user_11\Desktop\Videó
2014-12-12 18:16 - 2014-07-23 14:10 - 00001979 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-11 19:43 - 2014-10-29 13:05 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-11 12:53 - 2012-11-26 17:34 - 00000000 ____D () C:\Users\user_11\Desktop\minta
2014-12-11 12:51 - 2013-04-21 18:16 - 00018432 ____H () C:\Users\user_11\Desktop\photothumb.db
2014-12-11 10:34 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\rescache
2014-12-11 10:14 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-12-11 10:08 - 2010-12-06 13:27 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-11 10:01 - 2013-10-10 07:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-11 09:56 - 2006-11-02 11:24 - 109818608 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-12-10 21:06 - 2010-12-03 15:27 - 00001356 _____ () C:\Users\user_11\AppData\Local\d3d9caps.dat
2014-12-10 17:41 - 2014-06-18 17:07 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-12-10 17:22 - 2011-07-07 11:23 - 00002425 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-12-06 13:06 - 2010-12-03 15:27 - 00000000 ____D () C:\Users\user_11
2014-12-02 15:31 - 2011-07-07 11:23 - 00000000 ____D () C:\Program Files\Adobe
2014-11-29 18:49 - 2014-10-12 06:56 - 00018872 _____ () C:\Windows\system32\Drivers\SPPD.sys
2014-11-27 12:11 - 2014-02-05 15:52 - 00000000 ____D () C:\Users\user_11\AppData\Local\Adobe
2014-11-26 09:30 - 2014-06-25 21:34 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00423784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00206248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00057928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00055240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-26 09:30 - 2014-06-25 21:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-24 14:04 - 2010-12-06 13:38 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-22 16:39 - 2014-09-09 16:55 - 00000000 ____D () C:\Users\user_11\Desktop\Steam
2014-11-22 13:17 - 2012-12-25 15:46 - 00000000 ____D () C:\Program Files\Common Files\Steam

Files to move or delete:
====================
C:\ProgramData\hash.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-20 07:43

==================== End Of Log ============================


szomb. dec. 20, 2014 8:55
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Nincsen mit.
Szia.


csüt. júl. 10, 2014 6:59
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Köszönöm a segítséget!
További szép estét!


szer. júl. 09, 2014 19:22
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Ok, kipucolni a CCleaneral, es keszek vagyunk.
udv


szer. júl. 09, 2014 16:58
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Zoek.exe v5.0.0.0 Updated 05-July-2014
Tool run by user_11 on 2014.07.09. at 16:02:52,30.
Microsoft® Windows Vista™ Business 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user_11\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2014.07.09. 16:07:58 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{1E73965B-8B48-48be-9C8D-68B920ABC1C4} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) deleted
C:\Program Files\SW_Booster deleted
C:\Program Files\Common Files\DVDVideoSoft\bin deleted
C:\Users\user_11\AppData\Roaming\launcher_settings.ini deleted
C:\Users\user_11\AppData\Roaming\Alawar deleted
C:\Users\user_11\AppData\Roaming\Alawar Entertainment deleted
C:\Users\user_11\AppData\Roaming\AlawarEntertainment deleted
C:\PROGRA~2\InstallMate deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\user_11\Searches deleted
C:\Windows\wininit.ini deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\System32\AI_RecycleBin deleted
C:\Users\Public\Documents\AlawarWrapper deleted
"C:\Windows\Installer\104a1b.msi" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}.20140705204300" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}.20140706205332" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.20140701115212" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140701115113" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140701115157" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140705204300" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{CA41BB14-E67B-1653-C57B-5CA99418A866}" deleted
"C:\PROGRA~2\fe8b1d982b63fb26\{E32743D3-5789-6E4F-3998-06FB87C9214B}" deleted
"C:\PROGRA~2\fe8b1d982b63fb26" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [2014.05.13. 18:12]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[2014.05.08. 15:49]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[2014.06.25. 22:33]

NextCioup - Rendszergazda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
savE on - Rendszergazda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
NextCioup - Rendszergazda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
NextCioup - Rendszergazda\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
savE on - Rendszergazda\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
NextCioup - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
gureatsaver - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bhhdmfjcebbaajmliaedbmihoabfffom
Chrome Web Store Launcher - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
YoutubeAdblocker - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jcpdpfikhodiomccgmlfpnilgmgfebnm
YTBookMMark - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb
savE on - user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
avast Online Security - user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
NextCioup - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
gureatsaver - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bhhdmfjcebbaajmliaedbmihoabfffom
Chrome Web Store Launcher - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej
YoutubeAdblocker - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jcpdpfikhodiomccgmlfpnilgmgfebnm
YTBookMMark - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb
savE on - user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
NextCioup - VENDG~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
savE on - VENDG~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
NextCioup - VENDG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
NextCioup - VENDG~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje
savE on - VENDG~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn

==== Chrome Fix ======================

C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jcpdpfikhodiomccgmlfpnilgmgfebnm deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jcpdpfikhodiomccgmlfpnilgmgfebnm deleted successfully
C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bhhdmfjcebbaajmliaedbmihoabfffom deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bhhdmfjcebbaajmliaedbmihoabfffom deleted successfully
C:\Users\Rendszergazda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\Rendszergazda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\Rendszergazda\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\VENDG~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\VENDG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\VENDG~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje deleted successfully
C:\Users\Rendszergazda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\Rendszergazda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\Rendszergazda\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\VENDG~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\VENDG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\VENDG~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn deleted successfully
C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej deleted successfully
C:\Users\user_11\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb deleted successfully
C:\Users\user_11\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{534AD3E6-994A-5C56-B478-48297F2ED331} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{967C576A-B465-3637-C4B7-C86F79B1B229} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\user_11\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=310 folders=100 25118574 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\hedev\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Rendszergazda\AppData\Local\temp emptied successfully
C:\Users\user_11\AppData\Local\temp will be emptied at reboot
C:\Users\VENDG~1\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\user_11\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\user_11\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on 2014.07.09. at 16:25:24,15 ======================


szer. júl. 09, 2014 15:28
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
# AdwCleaner v3.215 - Report created 09/07/2014 at 15:56:40
# Updated 09/07/2014 by Xplode
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : user_11 - INTENSA-11
# Running from : C:\Users\user_11\Desktop\adwcleaner_3.215.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Adblocker
Folder Deleted : C:\ProgramData\SafetyNut
Folder Deleted : C:\Program Files\Adblocker
Folder Deleted : C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Rendszergazda\AppData\Local\torch
Folder Deleted : C:\Users\user_11\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\user_11\AppData\Local\torch
Folder Deleted : C:\Users\Vendég\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Vendég\AppData\Local\torch
Folder Deleted : C:\Users\Rendszergazda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
Folder Deleted : C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn
Folder Deleted : C:\Users\Vendég\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4820778D-AB0D-6D18-C316-52A6A0E1D507}

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16555


-\\ Google Chrome v

[ File : C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : nnfnihjmhifgpnjaihifcocfbkpffldn

*************************

AdwCleaner[R0].txt - [2318 octets] - [09/07/2014 15:54:53]
AdwCleaner[S0].txt - [2202 octets] - [09/07/2014 15:56:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2262 octets] ##########


szer. júl. 09, 2014 15:00
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Remélem jól csináltam!

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:05-07-2014 01
Ran by user_11 at 2014-07-09 15:43:01 Run:2
Running from C:\Users\user_11\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll
AlternateDataStreams: C:\ProgramData\TEMP:2DAD076E
AlternateDataStreams: C:\ProgramData\TEMP:4CD3F344
AlternateDataStreams: C:\ProgramData\TEMP:587F3582
AlternateDataStreams: C:\ProgramData\TEMP:795F6DEC
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2
Hosts:
End
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
'HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin' => Key deleted successfully.
C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll not found.
'HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3' => Key deleted successfully.
C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll not found.
'HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9' => Key deleted successfully.
C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll not found.
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe => Moved successfully.
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll => Moved successfully.
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll => Moved successfully.
C:\ProgramData\TEMP => ":2DAD076E" ADS removed successfully.
C:\ProgramData\TEMP => ":4CD3F344" ADS removed successfully.
C:\ProgramData\TEMP => ":587F3582" ADS removed successfully.
C:\ProgramData\TEMP => ":795F6DEC" ADS removed successfully.
C:\ProgramData\TEMP => ":C31F31E6" ADS removed successfully.
C:\ProgramData\TEMP => ":DFC5A2B2" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====


szer. júl. 09, 2014 14:51
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Most melóban vagyok,de délután kb 16-órától otthon leszek és csinálom.
Köszönöm!


szer. júl. 09, 2014 6:38
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Nysisd ki a notepad programot. jedzettombbot.
Masold bele az alabi textet.
Kód:
Start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll
AlternateDataStreams: C:\ProgramData\TEMP:2DAD076E
AlternateDataStreams: C:\ProgramData\TEMP:4CD3F344
AlternateDataStreams: C:\ProgramData\TEMP:587F3582
AlternateDataStreams: C:\ProgramData\TEMP:795F6DEC
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2
Hosts:
End


Tedd le az asztalra>.mint Fixlist.txt
Futtasd az FRST.exe programot, de most klikelj a Gombra FIX
vard ki a javitas veget, aztan az asztalon ott lesz az Fixlog.txt az tartalmat tedd ide.

2:Tolds le az ADWcleanert az asztalra.
http://www.viruskasino.com/2012/09/adwcleaner.html
Futtasd , aztan klik SCAN Mikkor befejezi,klik CLEAN
Kovesd az utasitasokkat, es mindig OK, a gepp restartol, ha a naploja nem nyilna ki, akkor itt megtalalod.
C:\ AdwCleanerxxxx
a Tartalmat tedd ide.

Kapcsold ki az Antivirus vedo pajzat,,
Tolds le az Asztalra az Zoek ,exe programot
http://hijackthis.nl/smeenk/
Minden bealitasd hagy ugy ahohy van, az ablakjaba masold be ezt a textet.
Kód:
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;


Klik az RUN SCRIPT Gombra
Es most mar nebabraljal semmit se, a program igen lusta, TEHAT VARD KI Turelemel a javitas veget,
aztan majd kinuyilik naploja ,tedd ide


szer. júl. 09, 2014 6:36
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-07-2014 01
Ran by user_11 (administrator) on INTENSA-11 on 08-07-2014 20:35:40
Running from C:\Users\user_11\Desktop
Platform: Microsoft® Windows Vista™ Business Service Pack 2 (X86) OS Language: magyar (Magyarország)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FWService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [00PCTFW] => C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2672600 2011-04-07] (PC Tools)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-07-04] (AVAST Software)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xFF000000
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-12-06]
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG10\Firefox4
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-11-26]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "https://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Google Update) - C:\Users\user_11\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR Extension: (Google Dokumentumok) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-11]
CHR Extension: (Google Drive) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-11]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje [2014-07-05]
CHR Extension: (YouTube) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-11]
CHR Extension: (Adblock Plus) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-02-11]
CHR Extension: (Google-keresés) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-11]
CHR Extension: (avast! Online Security) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-25]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb [2014-01-15]
CHR Extension: (Google Pénztárca) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-31]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn [2014-07-01]
CHR Extension: (Gmail) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-11]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-06-25]
CHR StartMenuInternet: Google Chrome - C:\Users\user_11\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-25] (AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 PCToolsFirewallPlus; C:\Program Files\PC Tools Firewall Plus\FWService.exe [286000 2011-01-24] (PC Tools)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-06-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-06-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2014-06-25] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-06-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-06-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-06-25] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2014-06-25] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-06-25] ()
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.)
S3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [160576 2011-03-02] (PC Tools)
R3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [89472 2011-01-12] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [251560 2011-01-17] (PC Tools)
S3 pctNdis; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctNdisMP; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [125248 2011-01-17] (PC Tools)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
S3 catchme; \??\C:\Users\user_11\AppData\Local\Temp\catchme.sys [X]
S3 cnnctfy2MP; system32\DRIVERS\cnnctfy2.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [X]
S3 USBModem; system32\DRIVERS\lgusbmodem.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-08 20:00 - 2014-07-08 20:36 - 00014419 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 19:55 - 2014-07-08 19:57 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:28 - 2014-07-07 14:29 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:28 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 13:16 - 2014-07-07 21:18 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-07 11:42 - 2014-07-07 20:40 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:06 - 2014-07-06 23:08 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:15 - 2014-07-06 22:30 - 00000000 ____D () C:\ComboFix
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-05 22:39 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-05 20:43 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-07-08 20:10 - 00380869 _____ () C:\Windows\WindowsUpdate.log
2014-06-25 22:28 - 2014-06-25 22:29 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-21 08:58 - 2009-03-18 18:35 - 00026176 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-18 18:07 - 2014-07-07 21:21 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-06-17 09:09 - 2014-06-17 09:15 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-12 13:31 - 2014-05-28 18:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 13:31 - 2014-05-28 18:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 13:31 - 2014-05-28 18:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 13:31 - 2014-05-28 18:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 13:31 - 2014-05-28 18:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 13:31 - 2014-05-28 18:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 13:31 - 2014-05-28 18:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 13:31 - 2014-05-28 18:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-12 13:31 - 2014-05-28 18:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-12 13:31 - 2014-05-28 18:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 13:31 - 2014-04-26 18:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 13:31 - 2014-04-05 05:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 13:31 - 2014-04-05 03:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-12 13:31 - 2014-03-10 03:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 13:31 - 2014-03-10 03:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

==================== One Month Modified Files and Folders =======

2014-07-08 20:36 - 2014-07-08 20:00 - 00014419 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 20:35 - 2013-09-24 09:12 - 00000000 ____D () C:\FRST
2014-07-08 20:11 - 2013-10-08 20:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-08 20:11 - 2012-09-10 10:28 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-08 20:11 - 2011-11-10 09:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-07-08 20:10 - 2014-06-25 22:29 - 00380869 _____ () C:\Windows\WindowsUpdate.log
2014-07-08 19:57 - 2014-07-08 19:55 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-08 19:57 - 2012-02-02 09:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-08 19:47 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-07 21:21 - 2014-06-18 18:07 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-07-07 21:18 - 2014-07-07 13:16 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 20:40 - 2014-07-07 11:42 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:29 - 2014-07-07 14:28 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:29 - 2014-07-07 14:28 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 14:27 - 2010-12-03 16:27 - 00000000 ____D () C:\Users\user_11
2014-07-07 13:49 - 2006-11-02 15:01 - 00032510 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:08 - 2014-07-06 23:06 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 23:08 - 2012-02-04 21:13 - 00000000 ____D () C:\Windows\ERDNT
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:30 - 2014-07-06 22:15 - 00000000 ____D () C:\ComboFix
2014-07-06 22:28 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-07-06 22:27 - 2014-02-05 16:52 - 00000000 ____D () C:\Users\user_11\AppData\Local\Adobe
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-06 22:05 - 2011-07-13 13:09 - 00000000 ____D () C:\Users\user_11\Desktop\vírus vizsgálók
2014-07-06 22:01 - 2012-11-26 18:34 - 00000000 ____D () C:\Users\user_11\Desktop\minta
2014-07-06 21:18 - 2013-03-02 22:11 - 00000000 ____D () C:\Users\user_11\Doctor Web
2014-07-06 20:53 - 2014-01-15 19:55 - 00000000 ____D () C:\ProgramData\fe8b1d982b63fb26
2014-07-06 09:00 - 2013-11-26 18:21 - 00000000 ____D () C:\Users\user_11\Desktop\Adobe
2014-07-05 22:39 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-05 20:43 - 2014-07-01 11:51 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-07-01 11:51 - 2010-12-07 13:36 - 00000000 ____D () C:\Users\user_11\AppData\Local\Google
2014-07-01 11:51 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-01 11:49 - 2013-04-05 18:30 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-30 17:03 - 2012-12-25 16:46 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 19:17 - 2013-02-03 17:50 - 00000000 ____D () C:\Users\user_11\AppData\Local\theHunter
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 23:06 - 2012-02-18 21:59 - 00000000 ____D () C:\Program Files\Java
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-25 22:46 - 2014-04-18 23:00 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-25 22:43 - 2013-05-13 19:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-06-25 22:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-25 22:21 - 2012-05-14 12:48 - 00000000 ____D () C:\ProgramData\Avira
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-17 09:15 - 2014-06-17 09:09 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-16 09:26 - 2012-03-20 12:11 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\DVDVideoSoft
2014-06-12 13:53 - 2010-12-06 14:27 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 13:51 - 2013-10-10 08:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 13:46 - 2006-11-02 12:24 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-06-12 13:01 - 2011-05-09 12:10 - 00002042 _____ () C:\Users\user_11\Desktop\Google Chrome.lnk

Some content of TEMP:
====================
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-08 20:12

==================== End Of Log ============================


kedd júl. 08, 2014 19:41
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Megcsináltam még egyszer pipálva most már jó! :)
Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-07-2014 01
Ran by user_11 at 2014-07-08 20:36:37
Running from C:\Users\user_11\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: PC Tools Firewall Plus (Enabled) {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30768 - BitTorrent Inc.)
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
abgx360 v1.0.6 (HKLM\...\abgx360) (Version: - )
Adblocker (HKLM\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: 4.3.0.1718 - Adblocker)
Adobe Acrobat XI Pro (HKLM\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.07 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) - Hungarian (HKLM\...\{AC76BA86-7AD7-1038-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2018 - Avast Software)
AVS Update Manager 1.0 (HKLM\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM\...\AVS4YOU Video Converter 7_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
Bing Bar (HKLM\...\{449CE12D-E2C7-4B97-B19E-55D163EA9435}) (Version: 7.0.619.0 - Microsoft Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Java 7 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (Version: 2.1.60.19 - Oracle, Inc.) Hidden
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005F0}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Magic ISO Maker v5.4 (build 0239) (HKLM\...\Magic ISO Maker v5.4 (build 0239)) (Version: - )
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger kísérő (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - hun (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HUN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET-keretrendszer 4.5.1 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel 2007 Help-frissítés (KB963678) (HKLM\...\{90120000-0016-040E-0000-0000000FF1CE}_PROHYBRIDR_{76BD9044-91EB-46FC-8CA6-0AA239BB8A93}) (Version: - Microsoft)
Microsoft Office Excel MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (HKLM\...\{90120000-0018-040E-0000-0000000FF1CE}_PROHYBRIDR_{6863CE52-1321-482E-B930-B325EE09AEFF}) (Version: - Microsoft)
Microsoft Office PowerPoint MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Hungarian) 2007 (Version: 12.0.4518.1029 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word 2007 Help-frissítés (KB963665) (HKLM\...\{90120000-001B-040E-0000-0000000FF1CE}_PROHYBRIDR_{0E56E23A-EDB8-42C7-A285-7258C5944EB4}) (Version: - Microsoft)
Microsoft Office Word MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.7.9 (HKLM\...\Minecraft1.7.9) (Version: - )
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NBA 2K12 (HKLM\...\{04E9B02B-4F85-4B73-B865-27B9B8B35877}) (Version: 1.0.0 - 2K Sports)
Nero BurnLite 10 (HKLM\...\{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}) (Version: 10.0.10600 - Nero AG)
Nero BurnLite 10 (HKLM\...\{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}) (Version: 10.0.10500.5.100 - Nero AG)
Nero Control Center 10 (Version: 10.0.13100.3.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10700 - Nero AG) Hidden
Nero Core Components 10 (Version: 2.0.15100.0.1 - Nero AG) Hidden
Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
NVIDIA 3D Vision vezérlő illesztőprogram 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA frissítések 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX rendszerszoftver 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Vezérlőpult 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
Nyelvi csomag a Microsoft .NET-keretrendszer 3.5 1. szervizcsomagjához – HUN (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - hun) (Version: - Microsoft Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
PC Tools Firewall Plus 7.0 (HKLM\...\PC Tools Firewall Plus) (Version: 7.0 - PC Tools)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAF (HKLM\...\{E6B43401-E818-4961-AFED-118DD8E87642}) (Version: 1.00.0001 - FUJIFILM Corporation)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.21 - Piriform)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-040E-0000-0000000FF1CE}_PROHYBRIDR_{8367442C-1D3B-4C59-825D-B0FAEB1BC38B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{B7EF38F7-1D58-4085-A9A4-0F6C69A5AA1E}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Vista Codec Package (HKLM\...\{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}) (Version: 5.9.8 - Shark007)
Viva Pinata (HKLM\...\InstallShield_{343EFA17-5BC5-44DA-924F-539ECBEFF68C}) (Version: 1.00.0000 - Microsoft Game Studios:)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotótár (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.10 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)

==================== Restore Points =========================


==================== Hosts content: ==========================

2006-11-02 12:23 - 2014-07-06 22:27 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {155723BA-60E2-4354-93AF-84EAC8D3C2D8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {22E1772E-7DFE-4C5F-841F-1C93FD5D82A4} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {2B205850-F456-4BC1-8C95-044428DF52DF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-06] (Adobe Systems Incorporated)
Task: {2DE18FE4-6467-484F-8431-206702EC5546} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {2E5B7D97-F14C-4CFF-864E-620AABA892D1} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {493EBF54-E5A4-412D-BD63-68F5C3D3C259} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {4D72741E-769C-45DB-8604-CB8EBDADAA29} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {5C15FE0C-F090-4ED8-BBB8-03E2CFCC8485} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-25] (AVAST Software)
Task: {8012EF10-2882-4435-B9A0-5849ABCC625A} - System32\Tasks\AVG\PC Tuneup\Integrator\Start On user_11 Logon => C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
Task: {AF9B09BD-0F56-41F6-A854-F390D051D5B8} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B1325AC5-626A-4F5E-95AA-5960825F28F8} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {B70A919D-3C47-458E-B869-08E866C6E060} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)
Task: {EFD0256C-91A9-409A-B1EF-8F7FA32A407F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-07-07 17:52 - 2014-07-07 17:52 - 02789888 _____ () C:\Program Files\AVAST Software\Avast\defs\14070700\algo.dll
2014-07-08 19:47 - 2014-07-08 19:47 - 02789888 _____ () C:\Program Files\AVAST Software\Avast\defs\14070801\algo.dll
2012-02-02 17:38 - 2012-01-09 20:44 - 00166912 _____ () C:\Program Files\WinRAR\rarext.dll
2014-06-25 22:34 - 2014-06-25 22:34 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-08-11 21:18 - 2009-08-11 21:18 - 00497664 _____ () C:\Windows\system32\ac3filter.acm

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:2DAD076E
AlternateDataStreams: C:\ProgramData\TEMP:4CD3F344
AlternateDataStreams: C:\ProgramData\TEMP:587F3582
AlternateDataStreams: C:\ProgramData\TEMP:795F6DEC
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VPN Client.lnk => C:\Windows\pss\VPN Client.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Nvtmru => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\user_11\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft PS/2 egér
Description: Microsoft PS/2 egér
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/08/2014 07:48:52 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_NETHER\DIM-1\REGION> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:52 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_NETHER\DIM-1\REGION> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\DIM1> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\DIM1> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\PLAYERS> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\PLAYERS> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\DATA> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_THE_END\DATA> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_NETHER\DIM-1> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)

Error: (07/08/2014 07:48:51 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: A szórótábla <C:\USERS\USER_11\DESKTOP\SERVER\WORLD_NETHER\DIM-1> bejegyzését nem sikerült frissíteni.

Környezet: alkalmazás, SystemIndex katalógus

Részletek:
Egy rendszerhez csatlakoztatott eszköz nem működik. (0x8007001f)


System errors:
=============
Error: (07/08/2014 07:46:55 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Az előző rendszerleállítás (2014.07.07. - 21:30:18) váratlan volt.

Error: (07/06/2014 10:27:59 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: PEVSystemStart

Error: (07/06/2014 10:23:49 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: PEVSystemStart

Error: (07/06/2014 10:17:46 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: PEVSystemStart

Error: (07/06/2014 08:47:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Search1300001A szolgáltatás újraindítása

Error: (07/06/2014 08:46:10 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Windows Search2147749155 (0x80040D23)

Error: (07/06/2014 03:03:14 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}

Error: (07/06/2014 02:32:21 AM) (Source: disk) (EventID: 7) (User: )
Description: Hibás blokk az eszközön (\Device\Harddisk0\DR0).

Error: (07/06/2014 02:32:20 AM) (Source: disk) (EventID: 7) (User: )
Description: Hibás blokk az eszközön (\Device\Harddisk0\DR0).

Error: (07/06/2014 02:32:18 AM) (Source: disk) (EventID: 7) (User: )
Description: Hibás blokk az eszközön (\Device\Harddisk0\DR0).


Microsoft Office Sessions:
=========================
Error: (01/02/2013 05:48:37 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 4719 seconds with 4080 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2014-07-06 22:21:31.196
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-06 22:21:30.962
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-06 22:21:30.712
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-06 22:21:30.446
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-06-17 21:09:22.391
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-06-17 21:09:22.157
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-06-17 21:09:21.938
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-06-17 21:09:21.673
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-31 08:46:28.955
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-31 08:46:28.775
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 55%
Total physical RAM: 1022.58 MB
Available physical RAM: 450.21 MB
Total Pagefile: 2303.48 MB
Available Pagefile: 1440.27 MB
Total Virtual: 2047.88 MB
Available Virtual: 1923.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:183.07 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 233 GB) (Disk ID: E913E925)
Partition 1: (Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================


kedd júl. 08, 2014 19:40
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Bocsi de azt hiszem 2x küldtem el ugyanazt,de az Addition.txt nincs meg.
Nem kellett volna azt a futtatás előtt bepipálni?


kedd júl. 08, 2014 19:34
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-07-2014 01
Ran by user_11 (administrator) on INTENSA-11 on 08-07-2014 20:00:54
Running from C:\Users\user_11\Desktop
Platform: Microsoft® Windows Vista™ Business Service Pack 2 (X86) OS Language: magyar (Magyarország)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FWService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [00PCTFW] => C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2672600 2011-04-07] (PC Tools)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-07-04] (AVAST Software)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xFF000000
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-12-06]
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG10\Firefox4
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-11-26]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "https://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Google Update) - C:\Users\user_11\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR Extension: (Google Dokumentumok) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-11]
CHR Extension: (Google Drive) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-11]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje [2014-07-05]
CHR Extension: (YouTube) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-11]
CHR Extension: (Adblock Plus) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-02-11]
CHR Extension: (Google-keresés) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-11]
CHR Extension: (avast! Online Security) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-25]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb [2014-01-15]
CHR Extension: (Google Pénztárca) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-31]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn [2014-07-01]
CHR Extension: (Gmail) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-11]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-06-25]
CHR StartMenuInternet: Google Chrome - C:\Users\user_11\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-25] (AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 PCToolsFirewallPlus; C:\Program Files\PC Tools Firewall Plus\FWService.exe [286000 2011-01-24] (PC Tools)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-06-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-06-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2014-06-25] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-06-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-06-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-06-25] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2014-06-25] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-06-25] ()
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.)
S3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [160576 2011-03-02] (PC Tools)
R3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [89472 2011-01-12] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [251560 2011-01-17] (PC Tools)
S3 pctNdis; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctNdisMP; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [125248 2011-01-17] (PC Tools)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
S3 catchme; \??\C:\Users\user_11\AppData\Local\Temp\catchme.sys [X]
S3 cnnctfy2MP; system32\DRIVERS\cnnctfy2.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [X]
S3 USBModem; system32\DRIVERS\lgusbmodem.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-08 20:00 - 2014-07-08 20:00 - 00014437 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 19:55 - 2014-07-08 19:57 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:28 - 2014-07-07 14:29 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:28 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 13:16 - 2014-07-07 21:18 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-07 11:42 - 2014-07-07 20:40 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:06 - 2014-07-06 23:08 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:15 - 2014-07-06 22:30 - 00000000 ____D () C:\ComboFix
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-05 22:39 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-05 20:43 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-07-07 20:45 - 00331133 _____ () C:\Windows\WindowsUpdate.log
2014-06-25 22:28 - 2014-06-25 22:29 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-21 08:58 - 2009-03-18 18:35 - 00026176 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-18 18:07 - 2014-07-07 21:21 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-06-17 09:09 - 2014-06-17 09:15 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-12 13:31 - 2014-05-28 18:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 13:31 - 2014-05-28 18:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 13:31 - 2014-05-28 18:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 13:31 - 2014-05-28 18:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 13:31 - 2014-05-28 18:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 13:31 - 2014-05-28 18:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 13:31 - 2014-05-28 18:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 13:31 - 2014-05-28 18:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-12 13:31 - 2014-05-28 18:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-12 13:31 - 2014-05-28 18:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 13:31 - 2014-04-26 18:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 13:31 - 2014-04-05 05:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 13:31 - 2014-04-05 03:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-12 13:31 - 2014-03-10 03:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 13:31 - 2014-03-10 03:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

==================== One Month Modified Files and Folders =======

2014-07-08 20:05 - 2014-07-08 20:00 - 00014437 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 20:01 - 2013-09-24 09:12 - 00000000 ____D () C:\FRST
2014-07-08 19:57 - 2014-07-08 19:55 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-08 19:57 - 2012-02-02 09:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-08 19:52 - 2014-06-25 22:29 - 00331133 _____ () C:\Windows\WindowsUpdate.log
2014-07-08 19:47 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-07 21:21 - 2014-06-18 18:07 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-07-07 21:18 - 2014-07-07 13:16 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 21:10 - 2013-10-08 20:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-07 20:40 - 2014-07-07 11:42 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:29 - 2014-07-07 14:28 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:29 - 2014-07-07 14:28 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 14:27 - 2010-12-03 16:27 - 00000000 ____D () C:\Users\user_11
2014-07-07 13:49 - 2006-11-02 15:01 - 00032510 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:08 - 2014-07-06 23:06 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 23:08 - 2012-02-04 21:13 - 00000000 ____D () C:\Windows\ERDNT
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:30 - 2014-07-06 22:15 - 00000000 ____D () C:\ComboFix
2014-07-06 22:28 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-07-06 22:27 - 2014-02-05 16:52 - 00000000 ____D () C:\Users\user_11\AppData\Local\Adobe
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-06 22:05 - 2011-07-13 13:09 - 00000000 ____D () C:\Users\user_11\Desktop\vírus vizsgálók
2014-07-06 22:01 - 2012-11-26 18:34 - 00000000 ____D () C:\Users\user_11\Desktop\minta
2014-07-06 21:18 - 2013-03-02 22:11 - 00000000 ____D () C:\Users\user_11\Doctor Web
2014-07-06 20:53 - 2014-01-15 19:55 - 00000000 ____D () C:\ProgramData\fe8b1d982b63fb26
2014-07-06 09:00 - 2013-11-26 18:21 - 00000000 ____D () C:\Users\user_11\Desktop\Adobe
2014-07-06 08:59 - 2012-09-10 10:28 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-06 08:59 - 2011-11-10 09:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-07-05 22:39 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-05 20:43 - 2014-07-01 11:51 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-07-01 11:51 - 2010-12-07 13:36 - 00000000 ____D () C:\Users\user_11\AppData\Local\Google
2014-07-01 11:51 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-01 11:49 - 2013-04-05 18:30 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-30 17:03 - 2012-12-25 16:46 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 19:17 - 2013-02-03 17:50 - 00000000 ____D () C:\Users\user_11\AppData\Local\theHunter
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 23:06 - 2012-02-18 21:59 - 00000000 ____D () C:\Program Files\Java
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-25 22:46 - 2014-04-18 23:00 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-25 22:43 - 2013-05-13 19:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-06-25 22:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-25 22:21 - 2012-05-14 12:48 - 00000000 ____D () C:\ProgramData\Avira
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-17 09:15 - 2014-06-17 09:09 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-16 09:26 - 2012-03-20 12:11 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\DVDVideoSoft
2014-06-12 13:53 - 2010-12-06 14:27 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 13:51 - 2013-10-10 08:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 13:46 - 2006-11-02 12:24 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-06-12 13:01 - 2011-05-09 12:10 - 00002042 _____ () C:\Users\user_11\Desktop\Google Chrome.lnk

Some content of TEMP:
====================
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-08 19:56

==================== End Of Log ============================


kedd júl. 08, 2014 19:17
Profil Privát üzenet küldése
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Szia! Bocsánat,de csak most tudtam megcsinálni
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-07-2014 01
Ran by user_11 (administrator) on INTENSA-11 on 08-07-2014 20:00:54
Running from C:\Users\user_11\Desktop
Platform: Microsoft® Windows Vista™ Business Service Pack 2 (X86) OS Language: magyar (Magyarország)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(PC Tools) C:\Program Files\PC Tools Firewall Plus\FWService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [00PCTFW] => C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2672600 2011-04-07] (PC Tools)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-07-04] (AVAST Software)
HKU\S-1-5-21-3660284441-3406738706-2838319646-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xFF000000
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\user_11\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-12-06]
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG10\Firefox4
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-11-26]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "https://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\user_11\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\user_11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Google Update) - C:\Users\user_11\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR Extension: (Google Dokumentumok) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-11]
CHR Extension: (Google Drive) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-11]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\bflbkmdpfmbjckigdhbnkcimakeiodje [2014-07-05]
CHR Extension: (YouTube) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-11]
CHR Extension: (Adblock Plus) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-02-11]
CHR Extension: (Google-keresés) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-11]
CHR Extension: (avast! Online Security) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-25]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdmbbhlpmgomalblcpfcmmbhhacmbhb [2014-01-15]
CHR Extension: (Google Pénztárca) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-31]
CHR Extension: (No Name) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfnihjmhifgpnjaihifcocfbkpffldn [2014-07-01]
CHR Extension: (Gmail) - C:\Users\user_11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-11]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-06-25]
CHR StartMenuInternet: Google Chrome - C:\Users\user_11\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-25] (AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 PCToolsFirewallPlus; C:\Program Files\PC Tools Firewall Plus\FWService.exe [286000 2011-01-24] (PC Tools)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-06-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-06-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2014-06-25] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-06-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-06-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-06-25] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2014-06-25] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-06-25] ()
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.)
S3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [160576 2011-03-02] (PC Tools)
R3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [89472 2011-01-12] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [251560 2011-01-17] (PC Tools)
S3 pctNdis; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctNdisMP; C:\Windows\System32\DRIVERS\pctNdis.sys [57536 2010-07-08] (PC Tools)
R3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [125248 2011-01-17] (PC Tools)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
S3 catchme; \??\C:\Users\user_11\AppData\Local\Temp\catchme.sys [X]
S3 cnnctfy2MP; system32\DRIVERS\cnnctfy2.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [X]
S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [X]
S3 USBModem; system32\DRIVERS\lgusbmodem.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-08 20:00 - 2014-07-08 20:00 - 00014437 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 19:55 - 2014-07-08 19:57 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:28 - 2014-07-07 14:29 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:28 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 13:16 - 2014-07-07 21:18 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-07 11:42 - 2014-07-07 20:40 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:06 - 2014-07-06 23:08 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:15 - 2014-07-06 22:30 - 00000000 ____D () C:\ComboFix
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-05 22:39 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-05 20:43 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-07-07 20:45 - 00331133 _____ () C:\Windows\WindowsUpdate.log
2014-06-25 22:28 - 2014-06-25 22:29 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-21 08:58 - 2009-03-18 18:35 - 00026176 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-18 18:07 - 2014-07-07 21:21 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-06-17 09:09 - 2014-06-17 09:15 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-12 13:31 - 2014-05-28 18:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 13:31 - 2014-05-28 18:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 13:31 - 2014-05-28 18:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 13:31 - 2014-05-28 18:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 13:31 - 2014-05-28 18:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 13:31 - 2014-05-28 18:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-12 13:31 - 2014-05-28 18:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 13:31 - 2014-05-28 18:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 13:31 - 2014-05-28 18:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 13:31 - 2014-05-28 18:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 13:31 - 2014-05-28 18:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-12 13:31 - 2014-05-28 18:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-12 13:31 - 2014-05-28 18:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 13:31 - 2014-04-26 18:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 13:31 - 2014-04-05 05:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 13:31 - 2014-04-05 03:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-12 13:31 - 2014-03-10 03:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 13:31 - 2014-03-10 03:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

==================== One Month Modified Files and Folders =======

2014-07-08 20:05 - 2014-07-08 20:00 - 00014437 _____ () C:\Users\user_11\Desktop\FRST.txt
2014-07-08 20:01 - 2013-09-24 09:12 - 00000000 ____D () C:\FRST
2014-07-08 19:57 - 2014-07-08 19:55 - 01074688 _____ (Farbar) C:\Users\user_11\Desktop\FRST.exe
2014-07-08 19:57 - 2012-02-02 09:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-08 19:52 - 2014-06-25 22:29 - 00331133 _____ () C:\Windows\WindowsUpdate.log
2014-07-08 19:47 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-08 19:46 - 2006-11-02 14:47 - 00003712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-07 21:21 - 2014-06-18 18:07 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\uTorrent
2014-07-07 21:18 - 2014-07-07 13:16 - 00000000 ____D () C:\Users\user_11\Desktop\Server
2014-07-07 21:10 - 2013-10-08 20:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-07 20:40 - 2014-07-07 11:42 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\.minecraft
2014-07-07 14:29 - 2014-07-07 14:29 - 00000000 ____D () C:\Users\user_11\Documents\libraries
2014-07-07 14:29 - 2014-07-07 14:28 - 00000416 _____ () C:\Users\user_11\Documents\launcher_profiles.json
2014-07-07 14:29 - 2014-07-07 14:28 - 00000000 ____D () C:\Users\user_11\Documents\versions
2014-07-07 14:27 - 2014-07-07 14:27 - 00000000 ____D () C:\Users\user_11\minecraft
2014-07-07 14:27 - 2010-12-03 16:27 - 00000000 ____D () C:\Users\user_11
2014-07-07 13:49 - 2006-11-02 15:01 - 00032510 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-07 11:43 - 2014-07-07 11:43 - 00002048 _____ () C:\Users\user_11\Desktop\Minecraft.lnk
2014-07-07 11:43 - 2014-07-07 11:43 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-06 23:08 - 2014-07-06 23:08 - 00000000 ___SD () C:\uninstall8937u
2014-07-06 23:08 - 2014-07-06 23:06 - 00000000 ___SD () C:\32788R22FWJFW
2014-07-06 23:08 - 2012-02-04 21:13 - 00000000 ____D () C:\Windows\ERDNT
2014-07-06 22:30 - 2014-07-06 22:30 - 00010499 _____ () C:\ComboFix.txt
2014-07-06 22:30 - 2014-07-06 22:15 - 00000000 ____D () C:\ComboFix
2014-07-06 22:28 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-07-06 22:27 - 2014-02-05 16:52 - 00000000 ____D () C:\Users\user_11\AppData\Local\Adobe
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-06 22:05 - 2014-04-28 15:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-06 22:05 - 2011-07-13 13:09 - 00000000 ____D () C:\Users\user_11\Desktop\vírus vizsgálók
2014-07-06 22:01 - 2012-11-26 18:34 - 00000000 ____D () C:\Users\user_11\Desktop\minta
2014-07-06 21:18 - 2013-03-02 22:11 - 00000000 ____D () C:\Users\user_11\Doctor Web
2014-07-06 20:53 - 2014-01-15 19:55 - 00000000 ____D () C:\ProgramData\fe8b1d982b63fb26
2014-07-06 09:00 - 2013-11-26 18:21 - 00000000 ____D () C:\Users\user_11\Desktop\Adobe
2014-07-06 08:59 - 2012-09-10 10:28 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-06 08:59 - 2011-11-10 09:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-07-05 22:39 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\SW_Booster
2014-07-05 20:43 - 2014-07-01 11:51 - 00000406 __RSH () C:\ProgramData\ntuser.pol
2014-07-05 15:31 - 2014-07-05 15:31 - 00000000 ____D () C:\Users\user_11\AppData\Local\GHISLER
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\ProgramData\Adblocker
2014-07-01 11:52 - 2014-07-01 11:52 - 00000000 ____D () C:\Program Files\Adblocker
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\user_11\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Torch
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Google
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Comodo
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 11:51 - 2014-07-01 11:51 - 00000000 ____D () C:\Program Files\save on
2014-07-01 11:51 - 2010-12-07 13:36 - 00000000 ____D () C:\Users\user_11\AppData\Local\Google
2014-07-01 11:51 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-01 11:49 - 2013-04-05 18:30 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-30 17:03 - 2012-12-25 16:46 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-06-29 14:45 - 2014-06-29 14:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\Firefly Studios
2014-06-29 09:35 - 2014-06-29 09:35 - 00000000 ____D () C:\Users\user_11\AppData\Local\Geckofx
2014-06-29 09:34 - 2014-06-29 09:34 - 00000000 ____D () C:\Users\user_11\Documents\Stronghold Kingdoms
2014-06-28 19:17 - 2013-02-03 17:50 - 00000000 ____D () C:\Users\user_11\AppData\Local\theHunter
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\Users\user_11\Documents\theHunter
2014-06-28 18:26 - 2014-06-28 18:26 - 00000000 ____D () C:\ProgramData\Hunter
2014-06-25 23:06 - 2012-02-18 21:59 - 00000000 ____D () C:\Program Files\Java
2014-06-25 22:46 - 2014-06-25 22:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-25 22:46 - 2014-04-18 23:01 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-25 22:46 - 2014-04-18 23:00 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-25 22:43 - 2013-05-13 19:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-06-25 22:36 - 2014-06-25 22:36 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\AVAST Software
2014-06-25 22:35 - 2014-06-25 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-25 22:34 - 2014-06-25 22:34 - 00777488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00411680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-25 22:34 - 2014-06-25 22:34 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys.1403728485078
2014-06-25 22:34 - 2014-06-25 22:34 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswrdr.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-25 22:34 - 2014-06-25 22:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-25 22:34 - 2014-06-25 22:34 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-25 22:30 - 2014-06-25 22:30 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-25 22:29 - 2014-06-25 22:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-25 22:21 - 2012-05-14 12:48 - 00000000 ____D () C:\ProgramData\Avira
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\Users\user_11\AppData\Local\LogMeIn
2014-06-21 08:58 - 2014-06-21 08:58 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-06-18 18:42 - 2014-06-18 18:42 - 00000739 _____ () C:\Users\user_11\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-18 18:42 - 2014-06-18 18:42 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-06-17 09:15 - 2014-06-17 09:09 - 00000000 ____D () C:\1c531e38a4682024d478aa1cca
2014-06-16 09:26 - 2012-03-20 12:11 - 00000000 ____D () C:\Users\user_11\AppData\Roaming\DVDVideoSoft
2014-06-12 13:53 - 2010-12-06 14:27 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 13:51 - 2013-10-10 08:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 13:46 - 2006-11-02 12:24 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-06-12 13:01 - 2011-05-09 12:10 - 00002042 _____ () C:\Users\user_11\Desktop\Google Chrome.lnk

Some content of TEMP:
====================
C:\Users\user_11\AppData\Local\temp\i4jdel0.exe
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.6.4-R2.0-b2918jnks.dll
C:\Users\user_11\AppData\Local\temp\jansi-32-git-Bukkit-1.7.2-R0.3-14-g8f8716c-b3042jnks.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-08 19:56

==================== End Of Log ============================


kedd júl. 08, 2014 19:16
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Szia eva.
Letolteni az asztalra a RST.exe programot
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Futtatni mint rendszergazda, aztan klik SCAN,
Mikkor bevegzi add 2-darab naplot, az Addition.txt es az FRST.txt, mind ket naplo tartalmat teddd ide, csak majd este megnezem.


hétf. júl. 07, 2014 11:24
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: pén. feb. 26, 2010 8:35
Hozzászólások: 264
Hozzászólás Re: stell, help me
Szia Stell!
Újra a segítségedre szorulok a fiam letöltött valami programot,és azóta a gép furcsa dolgokat csinál.
Pl. a chrome valami fejlesztői bővítményeket telepít amit hiába távolítok el mindig meg nyitja.
Le futtattam a combo fix-et az is talált valamit szerintem.
Ide teszem a logot nézd át léci. Holnap csak délelőtt érek rá. Előre is köszönöm!

ComboFix 14-07-03.01 - user_11 014.07.06. 22:18:31.16.2 - x86
Microsoft® Windows Vista™ Business 6.0.6002.2.1250.36.1038.18.1023.426 [GMT 2:00]
Running from: c:\users\user_11\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\user_11\AppData\Local\Adobe\gccheck.exe
c:\users\user_11\AppData\Local\Adobe\gtbcheck.exe
c:\users\user_11\AppData\Local\Adobe\SecurityScan_Release.exe
.
.
((((((((((((((((((((((((( Files Created from 2014-06-06 to 2014-07-06 )))))))))))))))))))))))))))))))
.
.
2014-07-06 20:27 . 2014-07-06 20:28 -------- d-----w- c:\users\user_11\AppData\Local\temp
2014-07-06 20:27 . 2014-07-06 20:27 -------- d-----w- c:\users\Vendég\AppData\Local\temp
2014-07-06 20:27 . 2014-07-06 20:27 -------- d-----w- c:\users\Rendszergazda\AppData\Local\temp
2014-07-06 20:27 . 2014-07-06 20:27 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-07-06 20:27 . 2014-07-06 20:27 -------- d-----w- c:\users\hedev\AppData\Local\temp
2014-07-06 20:27 . 2014-07-06 20:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-07-05 13:31 . 2014-07-05 13:31 -------- d-----w- c:\users\user_11\AppData\Local\GHISLER
2014-07-04 06:14 . 2014-06-05 10:54 8140904 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5A2DA7EA-6CAA-43C8-B188-AB3D711A5720}\mpengine.dll
2014-07-01 09:52 . 2014-07-05 20:39 -------- d-----w- c:\program files\SW_Booster
2014-07-01 09:52 . 2014-07-01 09:52 -------- d-----w- c:\programdata\Adblocker
2014-07-01 09:52 . 2014-07-01 09:52 -------- d-----w- c:\program files\Adblocker
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\program files\save on
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Vendég\AppData\Local\Chromatic Browser
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\user_11\AppData\Local\Chromatic Browser
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Rendszergazda\AppData\Local\Chromatic Browser
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Vendég\AppData\Local\Torch
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\user_11\AppData\Local\Torch
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Rendszergazda\AppData\Local\Torch
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Vendég\AppData\Local\Comodo
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Rendszergazda\AppData\Local\Comodo
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Vendég\AppData\Local\Google
2014-07-01 09:51 . 2014-07-01 09:51 -------- d-----w- c:\users\Rendszergazda\AppData\Local\Google
2014-06-29 12:45 . 2014-06-29 12:45 -------- d-----w- c:\programdata\Package Cache
2014-06-29 07:35 . 2014-06-29 07:35 -------- d-----w- c:\users\user_11\AppData\Local\Geckofx
2014-06-29 07:35 . 2014-06-29 07:35 -------- d-----w- c:\users\user_11\AppData\Roaming\Firefly Studios
2014-06-28 16:26 . 2014-06-28 16:26 -------- d-----w- c:\programdata\Hunter
2014-06-25 20:46 . 2014-06-25 20:46 -------- d-----w- c:\program files\Common Files\Java
2014-06-25 20:36 . 2014-06-25 20:36 -------- d-----w- c:\users\user_11\AppData\Roaming\AVAST Software
2014-06-25 20:34 . 2014-06-25 20:34 57672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-06-25 20:34 . 2014-06-25 20:34 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-06-25 20:34 . 2014-06-25 20:34 411680 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-06-25 20:34 . 2014-06-25 20:34 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-06-25 20:34 . 2014-06-25 20:34 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-06-25 20:34 . 2014-06-25 20:34 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys
2014-06-25 20:34 . 2014-06-25 20:34 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-06-25 20:34 . 2014-06-25 20:34 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-06-25 20:34 . 2014-06-25 20:34 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-06-25 20:34 . 2014-06-25 20:34 43152 ----a-w- c:\windows\avastSS.scr
2014-06-25 20:30 . 2014-06-25 20:30 -------- d-----w- c:\program files\AVAST Software
2014-06-25 20:28 . 2014-06-25 20:29 -------- d-----w- c:\programdata\AVAST Software
2014-06-22 07:28 . 2014-06-22 07:28 -------- d-----w- c:\programdata\4shared Desktop
2014-06-21 06:58 . 2014-06-21 06:58 -------- d-----w- c:\users\user_11\AppData\Local\LogMeIn
2014-06-21 06:58 . 2014-06-21 06:58 -------- d-----w- c:\programdata\LogMeIn
2014-06-21 06:58 . 2009-03-18 16:35 26176 ---ha-w- c:\windows\system32\hamachi.sys
2014-06-18 16:42 . 2014-06-18 16:42 -------- d-----w- c:\programdata\SafetyNut
2014-06-18 16:07 . 2014-07-06 19:13 -------- d-----w- c:\users\user_11\AppData\Roaming\uTorrent
2014-06-17 07:09 . 2014-06-17 07:15 -------- d-----w- C:\1c531e38a4682024d478aa1cca
2014-06-16 17:11 . 2014-06-16 17:11 -------- d-----w- c:\programdata\Media Center Programs
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-06 06:59 . 2012-09-10 08:28 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-06 06:59 . 2011-11-10 07:03 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-25 20:46 . 2014-04-18 21:00 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-06-25 20:34 . 2014-06-25 20:34 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1403728485078
2014-06-25 20:34 . 2014-06-25 20:34 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1403728485078
2014-05-27 15:38 . 2014-05-27 15:38 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-06-25 20:33 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"00PCTFW"="c:\program files\PC Tools Firewall Plus\FirewallGUI.exe" [2011-04-07 2672600]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-04 3890208]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VPN Client.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\VPN Client.lnk
backup=c:\windows\pss\VPN Client.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-09-13 18:51 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
2013-07-27 08:41 1028896 ----a-w- c:\program files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2014-06-18 16:42 1671248 ----a-w- c:\users\user_11\AppData\Roaming\uTorrent\uTorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2014-07-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-10 06:59]
.
.
------- Supplementary Scan -------
.
IE: E&xportálás a Microsoft Excel programba - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-06 22:28
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
.
C:\avast! sandbox
.
scan completed successfully
hidden files: 1
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:8a,9e,03,1d,03,eb,57,07,a3,e7,40,ce,bd,31,67,45,87,ac,c3,2a,94,01,e7,
b5,1c,d7,e5,15,7c,83,4a,13,fd,ab,98,c1,24,d8,07,b2,70,ed,aa,58,e0,0b,14,f8,\
"??"=hex:04,f0,c3,b2,1f,d9,9b,b5,b8,6e,ff,61,6b,67,19,47
.
[HKEY_USERS\S-1-5-21-3660284441-3406738706-2838319646-1000\Software\SecuROM\License information*]
"datasecu"=hex:7f,1a,3c,53,41,e1,26,db,92,51,f0,de,7a,1e,21,7e,89,9f,5b,d5,1e,
f2,b1,1a,12,9d,74,78,20,b8,bd,a7,3a,1d,5b,71,dd,59,98,8a,a1,08,9e,a3,c7,fe,\
"rkeysecu"=hex:27,70,89,90,f2,19,b1,f4,77,b9,82,a7,27,8c,9d,dd
.
Completion time: 2014-07-06 22:30:12
ComboFix-quarantined-files.txt 2014-07-06 20:30
ComboFix2.txt 2014-06-17 19:16
.
Pre-Run: 195 146 977 280 bájt szabad
Post-Run: 195 117 821 952 bájt szabad
.
- - End Of File - - F2A7CB827F784E96240E9D175C06EBB3
5C616939100B85E558DA92B899A0FC36


vas. júl. 06, 2014 21:41
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Nem sokkat segitettem, probald ezt a frisstesi problemat, valami windows7 forumom,
Ha virus lenne egy ketore elbannank vele, sajnos igy csak tippelni tudok, es ezt nem igen szetem a szamitogepre.
udv.
Nincsen mitt koszonod.


szer. máj. 14, 2014 17:22
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
értem.
köszönöm szépen azért a segítséget ismét:)


szer. máj. 14, 2014 17:14
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
ahogy irtam,ez nem virus,
1:Vagy a renfszered nem eredeti, es a frisites, kilote a gepet.
Megprobalni viszaalitast csinalni egy regebi idopontra.
Vagy uj telepites, es nem Frissiteni, ha a rendszer torot.


szer. máj. 14, 2014 17:13
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
hát ugyanaz a helyzet 6-szor indult újra mire rendesen bekapcsolt:(


szer. máj. 14, 2014 17:10
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Nem talaltam megoldast, mindenut masat irnak.
De csinalunk egy Vak lovest, :D
Tolds le az asztalra, jobb klik, futtasd mint rendszergazda,
http://kb.eset.com/library/ESET/KB%20Te ... Repair.exe

Majd keri a restartot>>Restart, es ird meg mi van.


szer. máj. 14, 2014 16:57
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
megcsináltam rendbe lezajlott.
viszont most új hibakód van:( 80070BC9


szer. máj. 14, 2014 16:40
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Ez nem virus...
Tolds le az ASZTALRA
http://leteckaposta.co/file/495415158.1 ... e066ba2/cs

Most vigyaz pontosan csinald ahogy irom.
Jobb klik>>a menuben >>klik Egyesítés
Valahogy igy van neked ott magyarul, vagy ird meg mi van a menuben, ha ez igy nem lesz, es megmondom mejik a hejes.

Ha renben lefutt az Egyesites, akkor restart, es ied meg mi van.


szer. máj. 14, 2014 16:28
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
oké töröltem.


szer. máj. 14, 2014 16:02
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
nem torolted. menj ide kezileg es torold ki ezt az .exe fajlot.
C:\Users\User\Downloads\blue.is.the.warmest.color.2013.bdrip.x264-psychd.mkv_downloader.exe

hibakód: 800700C1
minjart megnezem ,miez a hibakod....ccc15 perc


szer. máj. 14, 2014 16:00
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
újra megpróbáltam frissíteni és még mindig nem engedi.
ez a hibakód: 800700C1


szer. máj. 14, 2014 15:58
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
Malwarebytes Anti-Malware
www.malwarebytes.org

Vizsgálat dátuma: 2014.05.14.
Vizsgálat ideje: 16:46:02
Naplófájl: ....txt
Rendszergazda: Igen

Verzió: 2.00.1.1004
Malware adatbázis: v2014.05.14.06
Rootkit adatbázis: v2014.03.27.01
Licenc: Trial
Malware védelem: Engedélyezve
Rosszindulatú webhelyek elleni védelem: Engedélyezve
Chameleon: Letiltva

OS: Windows 7 Service Pack 1
CPU: x64
Fájlrendszer: NTFS
Felhasználó: User

Vizsgálati típus: Mélyvizsgálat
Eredmény: Kész
Átvizsgált objektum: 307995
Eltelt idő: 16 p., 39 mp

Memória: Engedélyezve
Indítópult: Engedélyezve
Fájlrendszer: Engedélyezve
Archívumok: Engedélyezve
Rootkitek: Letiltva
Shuriken: Engedélyezve
PUP: Figyelmeztetés
PUM: Engedélyezve

Folyamat: 0
(No malicious items detected)

Modulok: 0
(No malicious items detected)

Beállításkulcs: 0
(No malicious items detected)

Beállításazonosító: 0
(No malicious items detected)

Beállításjegyzék adatok: 0
(No malicious items detected)

Mappa: 0
(No malicious items detected)

Fájl: 1
PUP.Optional.YourFileDownloader, C:\Users\User\Downloads\blue.is.the.warmest.color.2013.bdrip.x264-psychd.mkv_downloader.exe, Nincs felhasználói művelet, [2628de7379026fc77c8e4ad45ca4c43c],

Fizikai szektorok: 0
(No malicious items detected)


(end)


szer. máj. 14, 2014 15:53
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
1:Nezd meg menyi hely van a merevlemezen.
2:Letolteni ezt a programot.
http://downloads.malwarebytes.org/file/mbam
Feltelepiteni
Frissites, klik SCAN
Mikkor befejezi>>klik a jobb also sarokban Apply Actions
Varsz, aztan kiirja hogy keri a restartot , akkor klik igen,yes.
a restart utan, ujbol nyisd ki ezt a programot>>klik>>History > Application Logs.
2x klik a logra>>es masold be ide ab tartalmat.


szer. máj. 14, 2014 15:05
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
sajnos ugyanaz a helyzet. próbálja konfigurálni a frissítéseket de nem engedi a gép így hatszor újra indul.


szer. máj. 14, 2014 14:56
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
na mi van?/nem irod ha van e javulas, vagy mi a helyzet.


szer. máj. 14, 2014 14:45
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-05-2014 01
Ran by User at 2014-05-14 14:56:15 Run:1
Running from C:\Users\User\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
Task: {00AC49E2-D66A-420D-9CD9-7D615F18A487} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {07B5214E-1772-4207-9888-268C67E14D1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {2BE4379F-67CC-4305-9107-313D688051C7} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {7DDA98EB-6745-473D-AD85-0F61AA1B0552} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-29] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
U3 aliucjzr; C:\Windows\System32\Drivers\aliucjzr.sys [0 ] (Microsoft Corporation)
Hosts:
End
*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{00AC49E2-D66A-420D-9CD9-7D615F18A487} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00AC49E2-D66A-420D-9CD9-7D615F18A487} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{07B5214E-1772-4207-9888-268C67E14D1C} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{07B5214E-1772-4207-9888-268C67E14D1C} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2BE4379F-67CC-4305-9107-313D688051C7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BE4379F-67CC-4305-9107-313D688051C7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DDA98EB-6745-473D-AD85-0F61AA1B0552} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DDA98EB-6745-473D-AD85-0F61AA1B0552} => Key deleted successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater => Key deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKCR\PROTOCOLS\Handler\skype-ie-addon-data => Key deleted successfully.
HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key not found.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
aliucjzr => Service deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====


szer. máj. 14, 2014 13:57
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
nyisd ki a notepad-jedzettombbot es masold bele ezt a kodot a kod szo nelkul.
Es tedd ide>
Running from C:\Users\User\Downloads
neve:Fixlist.txt
mint minden fajlo.
Futtasd a frst.exe programot>>DE MOST KLIK AZ FIX
Gombra.
A fixlog.tx naplot tedd ide.


Kód:
Start
Task: {00AC49E2-D66A-420D-9CD9-7D615F18A487} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {07B5214E-1772-4207-9888-268C67E14D1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {2BE4379F-67CC-4305-9107-313D688051C7} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {7DDA98EB-6745-473D-AD85-0F61AA1B0552} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-29] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
U3 aliucjzr; C:\Windows\System32\Drivers\aliucjzr.sys [0 ] (Microsoft Corporation)
Hosts:
End


szer. máj. 14, 2014 12:47
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05-2014 01
Ran by User at 2014-05-14 11:42:36
Running from C:\Users\User\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
µTorrent (HKCU\...\uTorrent) (Version: 3.3.0.28918 - BitTorrent Inc.)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD DnD V1.0.20 (x32 Version: 1.0.20 - AMD) Hidden
ATI AVIVO64 Codecs (Version: 10.12.0.00302 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{0D90AEC3-477D-6845-FD8E-8E75BEADB0F6}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Bing Bar (HKLM-x32\...\{16D0F2D2-242C-4885-BEF1-4B1655C141AE}) (Version: 7.0.822.0 - Microsoft Corporation)
Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0302.2233.40412 - ATI Technologies, Inc.) Hidden
CCleaner (HKLM-x32\...\CCleaner) (Version: 2.36 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver San Francisco (HKLM-x32\...\Driver San Francisco) (Version: 1.1.0.0 - Ubisoft)
Elcomsoft Wireless Security Auditor (HKLM-x32\...\{DEC2B521-2C0C-4DEA-A938-248B2BD6B09A}) (Version: 3.0.3.401 - Elcomsoft Co. Ltd.)
EPSON nyomtatószoftver (HKLM-x32\...\EPSON Printer and Utilities) (Version: - )
F1 Race Stars (HKLM-x32\...\F1 Race Stars_is1) (Version: - )
Facebook Video Calling 1.2.0.287 (HKLM-x32\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.11.0 - Androxyde)
FM Screen Capture Codec (Remove Only) (HKLM-x32\...\FMCODEC) (Version: - )
Free Studio version 5.3.1 (HKLM-x32\...\Free Studio_is1) (Version: - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.11.35.1031 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.35.1031 - DVDVideoSoft Ltd.)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.5.3 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Grand Theft Auto: San Andreas hun [Honosítás] (HKLM-x32\...\Grand Theft Auto: San Andreas hun) (Version: 1.04F - Gamehunter Team)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 6.5.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.5.0 - )
Kozaka 2013.11.07.204521 (HKLM\...\Kozaka) (Version: 2013.11.07.204521 - Kozaka) <==== ATTENTION
Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.)
Macromedia Flash 8 Video Encoder (HKLM-x32\...\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}) (Version: 1.00.0000 - Macromedia)
Macromedia Flash Player 8 (HKLM-x32\...\{885A63EA-382B-4DD4-A755-14809B8557D6}) (Version: 8.0.22.0 - Macromedia)
Malwarebytes Anti-Malware 1.75.0.1300 verzió (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger kísérő (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Plus! Live (HKLM-x32\...\Messenger Plus! Live) (Version: 4.85.0.386 - Yuna Software)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HUN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET-keretrendszer 4.5.1 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Antimalware Service HU-HU Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel 2007 Help-frissítés (KB963678) (HKLM-x32\...\{90120000-0016-040E-0000-0000000FF1CE}_ENTERPRISE_{76BD9044-91EB-46FC-8CA6-0AA239BB8A93}) (Version: - Microsoft)
Microsoft Office Excel MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Powerpoint 2007 Help-frissítés (KB963669) (HKLM-x32\...\{90120000-0018-040E-0000-0000000FF1CE}_ENTERPRISE_{6863CE52-1321-482E-B930-B325EE09AEFF}) (Version: - Microsoft)
Microsoft Office PowerPoint MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Hungarian) 2007 (x32 Version: 12.0.4518.1029 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Hungarian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word 2007 Help-frissítés (KB963665) (HKLM-x32\...\{90120000-001B-040E-0000-0000000FF1CE}_ENTERPRISE_{0E56E23A-EDB8-42C7-A285-7258C5944EB4}) (Version: - Microsoft)
Microsoft Office Word MUI (Hungarian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (x32 Version: 1.2.123.0 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client HU-HU Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mobipocket Reader 6.2 (HKLM-x32\...\{342126E1-173C-4585-BFBE-3EBDD20E3E9E}) (Version: 6.2.608 - Mobipocket.com)
Mozilla Firefox 28.0 (x86 hu) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 hu)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Nero 7 Essentials (HKLM-x32\...\{37BA50EE-C851-4394-93DD-A0A611891038}) (Version: 7.02.3246 - Nero AG)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
PIF DESIGNER (HKLM-x32\...\{B90450DF-E781-46FD-B1F1-0C86DA40E443}) (Version: - )
Rapture3D 2.5.1 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00.04 - Samsung Electronics Co., Ltd.)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Sony Mobile Update Service (HKLM-x32\...\Update Service) (Version: 2.12.12.41 - Sony Mobile Communications AB)
Sony PC Companion 2.10.136 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.136 - Sony)
The Sims™ Hajótörött Krónikák (HKLM-x32\...\{64EEA791-0271-4B53-00AC-2BF05F5FBEF6}) (Version: - Electronic Arts)
The Sims™ Kertvárosi Krónikák (HKLM-x32\...\{DA932D71-E52A-43D5-009E-395A1AEC1474}) (Version: - )
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.55 release candidate 3 - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-040E-0000-0000000FF1CE}_ENTERPRISE_{8367442C-1D3B-4C59-825D-B0FAEB1BC38B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{128A5449-CF71-4DA4-A746-F49E3B5DB584}) (Version: - Microsoft)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live OneCare safety scanner (HKLM-x32\...\Windows Live OneCare safety scanner) (Version: - Microsoft Corporation)
Windows Live OneCare safety scanner (x32 Version: 1.0.0.0 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{F1566481-372B-422E-8181-ABAA88A80FC1}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Phone app for desktop (HKLM-x32\...\{5F136805-6FB6-40C7-86DA-53BBB85F2443}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR archiváló (HKLM\...\WinRAR archiver) (Version: - )

==================== Restore Points =========================

06-05-2014 17:54:54 Windows Update
08-05-2014 19:14:44 Windows Update
10-05-2014 18:06:23 Windows Update
12-05-2014 09:42:02 Windows Update
13-05-2014 18:54:15 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-09-03 17:33 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {00AC49E2-D66A-420D-9CD9-7D615F18A487} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {07B5214E-1772-4207-9888-268C67E14D1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {2BE4379F-67CC-4305-9107-313D688051C7} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {7DDA98EB-6745-473D-AD85-0F61AA1B0552} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-29] (Adobe Systems Incorporated)
Task: {8D60059B-04FE-4165-B9CB-5145FF6C3655} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-01-27 09:32 - 2011-01-27 09:32 - 00027648 _____ () C:\Windows\System32\ssb7mlm.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libglesv2.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libegl.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll
2014-04-25 20:39 - 2014-04-24 02:33 - 13692232 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/14/2014 11:42:34 AM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0xbdc
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/14/2014 11:39:34 AM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0xcdc
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/14/2014 11:38:45 AM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x8b4
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/14/2014 11:38:08 AM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0xac4
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:53:48 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x434
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:53:37 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x260
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:50:29 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x674
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:46:37 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x47c
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:28:21 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0x2c4
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3

Error: (05/13/2014 08:20:34 PM) (Source: Application Error) (User: ) (EventID: 1000)
Description: A hibát okozó alkalmazás neve: SearchIndexer.exe, verzió: 7.0.7601.17610, időbélyeg: 0x4dc0d019
A hibát okozó modul neve: NLSData000c.dll, verzió: 6.1.7600.16385, időbélyeg: 0x4a5bdfd8
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0000000000016bae
A hibát okozó folyamat azonosítója: 0xc74
A hibát okozó alkalmazás indításának időpontja: 0xSearchIndexer.exe0
A hibát okozó alkalmazás elérési útja: SearchIndexer.exe1
A hibát okozó modul elérési útja: SearchIndexer.exe2
Jelentés azonosítója: SearchIndexer.exe3


System errors:
=============
Error: (05/14/2014 11:42:34 AM) (Source: Service Control Manager) (User: ) (EventID: 7034)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 4. alkalommal fordult elő.

Error: (05/14/2014 11:39:34 AM) (Source: Service Control Manager) (User: ) (EventID: 7034)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 3. alkalommal fordult elő.

Error: (05/14/2014 11:39:15 AM) (Source: Service Control Manager) (User: ) (EventID: 7032)
Description: A szolgáltatásvezérlő kezelője megpróbált ellenintézkedést tenni (A szolgáltatás újraindítása)
a(z) Windows Search szolgáltatás váratlan leállása után, de a művelet a következő
hiba miatt sikertelen volt:
%%1056

Error: (05/14/2014 11:38:45 AM) (Source: Service Control Manager) (User: ) (EventID: 7031)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 2. alkalommal fordult elő. 30000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (05/14/2014 11:38:10 AM) (Source: Service Control Manager) (User: ) (EventID: 7031)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 30000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (05/14/2014 11:33:50 AM) (Source: Service Control Manager) (User: ) (EventID: 7023)
Description: A szolgáltatás (BBUpdate) leállt a következő hibával:
%%-2147467243

Error: (05/13/2014 08:54:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) (EventID: 20)
Description: Telepítési hiba: A Windows 0x800700c1 hiba miatt nem tudta telepíteni a következő frissítést: Frissítés Windows 7 for x64-based Systems rendszerhez (KB2952664).

Error: (05/13/2014 08:53:49 PM) (Source: Service Control Manager) (User: ) (EventID: 7034)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 85. alkalommal fordult elő.

Error: (05/13/2014 08:53:37 PM) (Source: Service Control Manager) (User: ) (EventID: 7034)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 84. alkalommal fordult elő.

Error: (05/13/2014 08:50:29 PM) (Source: Service Control Manager) (User: ) (EventID: 7034)
Description: A(z) Windows Search szolgáltatás váratlanul leállt. Ez a(z) 83. alkalommal fordult elő.


Microsoft Office Sessions:
=========================
Error: (01/09/2012 10:03:20 PM) (Source: Microsoft Office 12 Sessions) (User: ) (EventID: 7001)
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 349 seconds with 120 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2014-05-12 12:33:02.950
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1_winbiosensoradapter.dll_27e23485 because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:33:02.747
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1_winbiosensoradapter.dll_27e23485 because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:33:02.560
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1_winbiosensoradapter.dll_27e23485 because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:33:02.138
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_329b3f476f0cd674_winbiostorageadapter.dll_5fb8b23e because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:33:01.936
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_329b3f476f0cd674_winbiostorageadapter.dll_5fb8b23e because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:33:01.748
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_329b3f476f0cd674_winbiostorageadapter.dll_5fb8b23e because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:29:04.331
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:29:04.144
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:29:03.957
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_6fa6b9c88f2a3ba1\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-05-12 12:29:02.101
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_329b3f476f0cd674\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 54%
Total physical RAM: 2046.18 MB
Available physical RAM: 926.21 MB
Total Pagefile: 4092.36 MB
Available Pagefile: 2851.36 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:78.03 GB) (Free:13.72 GB) NTFS
Drive d: (ADAT) (Fixed) (Total:387.64 GB) (Free:14.3 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D3319402)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=78 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=388 GB) - (Type=07 NTFS)

==================== End Of Log ============================


szer. máj. 14, 2014 10:45
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2014 01
Ran by User (administrator) on USER-PC on 14-05-2014 11:39:49
Running from C:\Users\User\Downloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: 040E
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ()
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.246.54 213.46.246.53

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\User\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\sztaki-en-hu.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\vatera.xml
FF Extension: FlyOrDie Gyors Java Telepítő - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\java@flyordie.com.xpi [2012-04-22]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8zne0h2j.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]

Chrome:
=======
CHR Extension: (Google Pénztárca) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM-x32\...\Chrome\Extension: [mciekghplkkgcmofonmkmlomhkamochd] - C:\Program Files (x86)\Kozaka\mciekghplkkgcmofonmkmlomhkamochd.crx [2013-08-23]

==================== Services (Whitelisted) =================

R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [100864 2012-09-07] (Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-07-31] (Ellora Assets Corp.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [410496 2011-03-11] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 ql40xx; C:\Windows\system32\drivers\ql40xx.sys [128592 2009-07-14] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2011-01-22] ()
U3 aliucjzr; C:\Windows\System32\Drivers\aliucjzr.sys [0 ] (Microsoft Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-14 11:39 - 2014-05-14 11:41 - 00010178 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-14 11:39 - 2014-05-14 11:39 - 00000000 ____D () C:\FRST
2014-05-14 11:37 - 2014-05-14 11:37 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-13 20:54 - 2014-05-13 20:54 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-13 15:33 - 2014-05-13 15:33 - 00019830 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.13..torrent
2014-05-12 16:37 - 2014-05-12 16:37 - 00052474 _____ () C:\Users\User\Downloads\The.Vampire.Diaries.S05E19.HDTV.x264-LOL.srt
2014-05-12 16:36 - 2014-05-12 16:36 - 00013865 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E19.HDTV.XviD-AFG.torrent
2014-05-12 14:30 - 2014-05-12 14:31 - 00020710 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.12..torrent
2014-05-11 16:58 - 2014-05-11 16:58 - 00334925 _____ () C:\Users\User\Downloads\JulieKenner-ForroRabsag.epub
2014-05-11 16:54 - 2014-05-11 16:54 - 00001832 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Julie_Kenner_-_Forro_rabsag.torrent
2014-05-11 15:30 - 2014-05-11 15:30 - 00000923 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Redmerski_J._A._-_Az_orokke_hatara.torrent
2014-05-11 15:01 - 2014-05-11 15:01 - 00012867 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E6.DVBrip.XviD.Hun-ufo.torrent
2014-05-09 14:58 - 2014-05-09 14:58 - 00019570 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.09..torrent
2014-05-08 18:12 - 2014-05-08 18:12 - 00043922 _____ () C:\Users\User\Downloads\arrow.222.hdtv-lol.srt
2014-05-08 18:11 - 2014-05-08 18:11 - 00014462 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E22.HDTV.XviD-FUM.torrent
2014-05-07 14:37 - 2014-05-07 14:37 - 00019710 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.07..torrent
2014-05-07 11:19 - 2014-05-07 11:19 - 00353384 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]24_S01-S08.torrent
2014-05-06 15:27 - 2014-05-06 15:27 - 00020510 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.06..torrent
2014-05-06 12:59 - 2014-05-06 12:59 - 00019630 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.05..torrent
2014-05-06 12:01 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-06 12:01 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-04 10:22 - 2014-05-04 10:22 - 00014787 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E5.DVBrip.XviD.Hun-ufo.torrent
2014-05-02 20:02 - 2014-04-29 13:39 - 17849344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-02 20:02 - 2014-04-29 13:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-02 20:02 - 2014-04-29 12:28 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-02 20:02 - 2014-04-29 12:07 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-01 19:30 - 2014-05-01 19:30 - 00039559 _____ () C:\Users\User\Downloads\the.following.215.hdtv-lol.srt
2014-05-01 19:30 - 2014-05-01 19:30 - 00014487 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E15.HDTV.XviD-FUM.torrent
2014-05-01 15:26 - 2014-05-01 15:26 - 00011990 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.30..torrent
2014-05-01 13:25 - 2014-05-01 13:25 - 00048530 _____ () C:\Users\User\Downloads\Arrow.S02E21.HDTV.x264-LOL.hun.srt
2014-05-01 13:25 - 2014-05-01 13:25 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E21.HDTV.XviD-AFG.torrent
2014-05-01 12:32 - 2014-05-01 12:32 - 00017631 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]The_Balkan_Fanatik_-_Olelj_magadhoz.torrent
2014-04-29 15:18 - 2014-04-29 15:18 - 00001222 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Muller_Peter_-_Ferfielet_noi_sors.torrent
2014-04-29 14:58 - 2014-04-29 14:59 - 00012622 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]Kowalsky_meg_a_Vega_-_Az_evtized_lemeze.torrent
2014-04-29 11:09 - 2014-04-29 11:09 - 00011990 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.29..torrent
2014-04-28 14:31 - 2014-04-28 14:31 - 00011210 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.28..torrent
2014-04-27 12:09 - 2014-04-27 12:09 - 00013667 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E4.DVBrip.XviD.Hun-ufo.torrent
2014-04-26 13:14 - 2014-04-26 13:14 - 00011005 _____ () C:\Users\User\Downloads\[nCore][xvid_hun]The.Wolf.of.Wall.Street.2013.BDRip.x264.HUN-ZHR.torrent
2014-04-25 20:01 - 2014-04-25 20:01 - 00042461 _____ () C:\Users\User\Downloads\the.following.214.hdtv-lol.srt
2014-04-25 11:30 - 2014-04-25 11:30 - 00011410 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.25..torrent
2014-04-25 11:29 - 2014-04-25 11:29 - 00014787 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E14.HDTV.XviD-AFG.torrent
2014-04-24 16:25 - 2014-04-24 16:25 - 00049622 _____ () C:\Users\User\Downloads\Arrow.S02E20.HDTV.x264-LOL.hun.srt
2014-04-24 16:24 - 2014-04-24 16:24 - 00014219 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E20.HDTV.XviD-AFG.torrent
2014-04-24 14:13 - 2014-04-24 14:13 - 00668560 _____ () C:\Users\User\Downloads\J (1).mobi
2014-04-24 13:42 - 2014-04-24 13:42 - 00000848 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]J._A._Redmerski_-_A_soha_hatara.torrent
2014-04-24 11:26 - 2014-04-24 11:26 - 00011370 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.24..torrent
2014-04-23 16:55 - 2014-04-23 16:55 - 00011530 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.23..torrent
2014-04-22 21:02 - 2014-04-22 21:02 - 00018983 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]Kowalsky_meg_a_Vega_-_Meg_nem_Eden.torrent
2014-04-22 12:13 - 2014-04-22 12:13 - 00014394 _____ () C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E24.HDTV.XviD-FUM.torrent
2014-04-22 12:13 - 2014-04-22 12:13 - 00014394 _____ () C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E23.HDTV.XviD-FUM.torrent
2014-04-22 10:50 - 2014-04-22 10:50 - 00018079 _____ () C:\Users\User\Downloads\475b9da713f0a0cb2ad4bb39f4b5033db22e8a02.zip
2014-04-22 10:49 - 2014-04-22 10:49 - 00019919 _____ () C:\Users\User\Downloads\f3cc629594fb15be86c557ee23b6a9ca49bf6383.zip
2014-04-22 10:45 - 2014-04-22 10:45 - 00014464 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E18.HDTV.XviD-FUM.torrent
2014-04-22 10:44 - 2014-04-22 10:44 - 00007359 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E17.HDTV.XviD-AFG.torrent
2014-04-22 10:32 - 2014-04-22 10:32 - 00011510 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.22..torrent
2014-04-18 10:29 - 2014-04-18 10:29 - 00019490 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.18..torrent
2014-04-17 18:44 - 2014-04-17 18:44 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E19.HDTV.XviD-AFG (1).torrent
2014-04-17 16:00 - 2014-04-17 16:00 - 00019509 _____ () C:\Users\User\Downloads\b5e344ddd2f8f08eb0101f64f7ca30423c843409.zip
2014-04-17 13:18 - 2014-04-17 13:18 - 00020350 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.17..torrent
2014-04-17 13:17 - 2014-04-17 13:17 - 00046957 _____ () C:\Users\User\Downloads\the.following.213.hdtv-lol.srt
2014-04-17 13:17 - 2014-04-17 13:17 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E19.HDTV.XviD-AFG.torrent
2014-04-17 13:12 - 2014-04-17 13:13 - 00014466 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E13.HDTV.XviD-FUM.torrent
2014-04-15 12:12 - 2014-04-15 12:12 - 00020590 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.15..torrent
2014-04-15 11:12 - 2014-04-15 11:12 - 00000642 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Blaine_Harden_-_Menekules_a_14-es_taborbol.torrent
2014-04-14 16:53 - 2014-04-14 16:53 - 00020406 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E1.DVBrip.XviD.Hun-ufo.torrent
2014-04-14 15:40 - 2014-04-14 15:40 - 00020270 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.14..torrent

==================== One Month Modified Files and Folders =======

2014-05-14 11:41 - 2014-05-14 11:39 - 00010178 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-14 11:41 - 2013-10-13 08:10 - 00001028 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-14 11:41 - 2011-01-22 03:29 - 02021856 _____ () C:\Windows\WindowsUpdate.log
2014-05-14 11:41 - 2009-07-14 06:45 - 00014416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-14 11:41 - 2009-07-14 06:45 - 00014416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-14 11:39 - 2014-05-14 11:39 - 00000000 ____D () C:\FRST
2014-05-14 11:37 - 2014-05-14 11:37 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-14 11:33 - 2014-02-10 17:45 - 00011082 _____ () C:\Windows\setupact.log
2014-05-14 11:33 - 2013-10-13 08:10 - 00001024 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-14 11:33 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-13 20:54 - 2014-05-13 20:54 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-13 20:54 - 2011-01-22 17:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\uTorrent
2014-05-13 20:14 - 2013-10-08 08:35 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-13 17:00 - 2011-09-06 20:18 - 00003936 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5959117D-D5CD-4937-8EC9-FA01A7862BD3}
2014-05-13 15:33 - 2014-05-13 15:33 - 00019830 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.13..torrent
2014-05-12 16:37 - 2014-05-12 16:37 - 00052474 _____ () C:\Users\User\Downloads\The.Vampire.Diaries.S05E19.HDTV.x264-LOL.srt
2014-05-12 16:36 - 2014-05-12 16:36 - 00013865 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E19.HDTV.XviD-AFG.torrent
2014-05-12 15:49 - 2009-07-14 14:46 - 00683864 _____ () C:\Windows\system32\perfh00E.dat
2014-05-12 15:49 - 2009-07-14 14:46 - 00171422 _____ () C:\Windows\system32\perfc00E.dat
2014-05-12 15:49 - 2009-07-14 07:13 - 01629388 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-12 14:31 - 2014-05-12 14:30 - 00020710 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.12..torrent
2014-05-11 16:58 - 2014-05-11 16:58 - 00334925 _____ () C:\Users\User\Downloads\JulieKenner-ForroRabsag.epub
2014-05-11 16:54 - 2014-05-11 16:54 - 00001832 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Julie_Kenner_-_Forro_rabsag.torrent
2014-05-11 15:30 - 2014-05-11 15:30 - 00000923 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Redmerski_J._A._-_Az_orokke_hatara.torrent
2014-05-11 15:01 - 2014-05-11 15:01 - 00012867 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E6.DVBrip.XviD.Hun-ufo.torrent
2014-05-09 17:36 - 2013-10-13 08:10 - 00004024 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 17:36 - 2013-10-13 08:10 - 00003772 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-09 14:58 - 2014-05-09 14:58 - 00019570 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.09..torrent
2014-05-08 18:12 - 2014-05-08 18:12 - 00043922 _____ () C:\Users\User\Downloads\arrow.222.hdtv-lol.srt
2014-05-08 18:11 - 2014-05-08 18:11 - 00014462 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E22.HDTV.XviD-FUM.torrent
2014-05-07 14:37 - 2014-05-07 14:37 - 00019710 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.07..torrent
2014-05-07 11:19 - 2014-05-07 11:19 - 00353384 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]24_S01-S08.torrent
2014-05-06 15:27 - 2014-05-06 15:27 - 00020510 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.06..torrent
2014-05-06 12:59 - 2014-05-06 12:59 - 00019630 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.05.05..torrent
2014-05-04 10:22 - 2014-05-04 10:22 - 00014787 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E5.DVBrip.XviD.Hun-ufo.torrent
2014-05-01 19:30 - 2014-05-01 19:30 - 00039559 _____ () C:\Users\User\Downloads\the.following.215.hdtv-lol.srt
2014-05-01 19:30 - 2014-05-01 19:30 - 00014487 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E15.HDTV.XviD-FUM.torrent
2014-05-01 18:16 - 2012-03-09 20:20 - 00000072 _____ () C:\Users\Public\LMDebug.log
2014-05-01 15:26 - 2014-05-01 15:26 - 00011990 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.30..torrent
2014-05-01 13:25 - 2014-05-01 13:25 - 00048530 _____ () C:\Users\User\Downloads\Arrow.S02E21.HDTV.x264-LOL.hun.srt
2014-05-01 13:25 - 2014-05-01 13:25 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E21.HDTV.XviD-AFG.torrent
2014-05-01 12:32 - 2014-05-01 12:32 - 00017631 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]The_Balkan_Fanatik_-_Olelj_magadhoz.torrent
2014-04-30 20:42 - 2011-01-24 19:49 - 00000000 ____D () C:\Users\User\AppData\Roaming\PhotoScape
2014-04-29 15:18 - 2014-04-29 15:18 - 00001222 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Muller_Peter_-_Ferfielet_noi_sors.torrent
2014-04-29 14:59 - 2014-04-29 14:58 - 00012622 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]Kowalsky_meg_a_Vega_-_Az_evtized_lemeze.torrent
2014-04-29 13:39 - 2014-05-02 20:02 - 17849344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 13:15 - 2014-05-02 20:02 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-29 12:28 - 2014-05-02 20:02 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-29 12:14 - 2013-10-08 08:35 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-29 12:14 - 2013-03-13 16:46 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 12:14 - 2011-10-01 11:37 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 12:07 - 2014-05-02 20:02 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-29 11:09 - 2014-04-29 11:09 - 00011990 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.29..torrent
2014-04-28 14:31 - 2014-04-28 14:31 - 00011210 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.28..torrent
2014-04-27 12:09 - 2014-04-27 12:09 - 00013667 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E4.DVBrip.XviD.Hun-ufo.torrent
2014-04-26 13:14 - 2014-04-26 13:14 - 00011005 _____ () C:\Users\User\Downloads\[nCore][xvid_hun]The.Wolf.of.Wall.Street.2013.BDRip.x264.HUN-ZHR.torrent
2014-04-25 20:40 - 2013-07-30 17:20 - 00002173 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-25 20:01 - 2014-04-25 20:01 - 00042461 _____ () C:\Users\User\Downloads\the.following.214.hdtv-lol.srt
2014-04-25 11:30 - 2014-04-25 11:30 - 00011410 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.25..torrent
2014-04-25 11:29 - 2014-04-25 11:29 - 00014787 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E14.HDTV.XviD-AFG.torrent
2014-04-24 16:25 - 2014-04-24 16:25 - 00049622 _____ () C:\Users\User\Downloads\Arrow.S02E20.HDTV.x264-LOL.hun.srt
2014-04-24 16:24 - 2014-04-24 16:24 - 00014219 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E20.HDTV.XviD-AFG.torrent
2014-04-24 14:13 - 2014-04-24 14:13 - 00668560 _____ () C:\Users\User\Downloads\J (1).mobi
2014-04-24 14:13 - 2013-01-27 17:56 - 00000000 ____D () C:\Users\User\Documents\My eBooks
2014-04-24 13:42 - 2014-04-24 13:42 - 00000848 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]J._A._Redmerski_-_A_soha_hatara.torrent
2014-04-24 11:26 - 2014-04-24 11:26 - 00011370 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.24..torrent
2014-04-23 16:55 - 2014-04-23 16:55 - 00011530 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.23..torrent
2014-04-23 08:42 - 2011-10-01 11:37 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-22 21:02 - 2014-04-22 21:02 - 00018983 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]Kowalsky_meg_a_Vega_-_Meg_nem_Eden.torrent
2014-04-22 12:13 - 2014-04-22 12:13 - 00014394 _____ () C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E24.HDTV.XviD-FUM.torrent
2014-04-22 12:13 - 2014-04-22 12:13 - 00014394 _____ () C:\Users\User\Downloads\[nCore][xvidser]Teen.Wolf.S03E23.HDTV.XviD-FUM.torrent
2014-04-22 10:50 - 2014-04-22 10:50 - 00018079 _____ () C:\Users\User\Downloads\475b9da713f0a0cb2ad4bb39f4b5033db22e8a02.zip
2014-04-22 10:49 - 2014-04-22 10:49 - 00019919 _____ () C:\Users\User\Downloads\f3cc629594fb15be86c557ee23b6a9ca49bf6383.zip
2014-04-22 10:45 - 2014-04-22 10:45 - 00014464 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E18.HDTV.XviD-FUM.torrent
2014-04-22 10:44 - 2014-04-22 10:44 - 00007359 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Vampire.Diaries.S05E17.HDTV.XviD-AFG.torrent
2014-04-22 10:32 - 2014-04-22 10:32 - 00011510 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.22..torrent
2014-04-18 10:29 - 2014-04-18 10:29 - 00019490 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.18..torrent
2014-04-17 18:44 - 2014-04-17 18:44 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E19.HDTV.XviD-AFG (1).torrent
2014-04-17 16:00 - 2014-04-17 16:00 - 00019509 _____ () C:\Users\User\Downloads\b5e344ddd2f8f08eb0101f64f7ca30423c843409.zip
2014-04-17 13:18 - 2014-04-17 13:18 - 00020350 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.17..torrent
2014-04-17 13:17 - 2014-04-17 13:17 - 00046957 _____ () C:\Users\User\Downloads\the.following.213.hdtv-lol.srt
2014-04-17 13:17 - 2014-04-17 13:17 - 00007317 _____ () C:\Users\User\Downloads\[nCore][xvidser]Arrow.S02E19.HDTV.XviD-AFG.torrent
2014-04-17 13:13 - 2014-04-17 13:12 - 00014466 _____ () C:\Users\User\Downloads\[nCore][xvidser]The.Following.S02E13.HDTV.XviD-FUM.torrent
2014-04-15 12:12 - 2014-04-15 12:12 - 00020590 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.15..torrent
2014-04-15 11:12 - 2014-04-15 11:12 - 00000642 _____ () C:\Users\User\Downloads\[nCore][ebook_hun]Blaine_Harden_-_Menekules_a_14-es_taborbol.torrent
2014-04-14 16:53 - 2014-04-14 16:53 - 00020406 _____ () C:\Users\User\Downloads\[nCore][xvidser_hun]Szombat.Esti.Laz.2014.E1.DVBrip.XviD.Hun-ufo.torrent
2014-04-14 15:40 - 2014-04-14 15:40 - 00020270 _____ () C:\Users\User\Downloads\[nCore][mp3_hun]ClassFM_-_Morning_Show_2014.04.14..torrent
2014-04-14 04:24 - 2014-05-06 12:01 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:19 - 2014-05-06 12:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\AutoRun.exe
C:\Users\User\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\User\AppData\Local\Temp\EAInstall.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-09 13:24

==================== End Of Log ============================


szer. máj. 14, 2014 10:44
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Szia
Tolds le az asztalra 32-vagy 64 bites FRST programot, tehat ojat, amilyen a rendszered
http://www.bleepingcomputer.com/downloa ... scan-tool/
bealitodd igy
http://vyosek.tym.cz/pro_usery/FRST/nastaveni.jpg

Aztan klik SCAN, a vegen az FRST.txt es az ADDition .txt tedd ide


kedd máj. 13, 2014 19:29
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: kedd máj. 13, 2014 9:46
Hozzászólások: 11
Hozzászólás Re: stell, help me
Szia Stell!
Kérlek segíts teljesen tönkre van a gép:(
Lassú nem engedi telepíteni a frissítéseket arra hivatkozva hogy nem eredeti a windows, eddig nem csinált ilyet. Van olyan hogy megszakad a net de ha újra indítom a gépet egyből megjavul.


kedd máj. 13, 2014 9:49
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Futtasd es klik CLEANUP, aztan ha az ikonja megmarad, akkor csak siman torold.
Nincsen mitt,
szia.


szomb. jan. 18, 2014 12:13
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: stell, help me
Az OTM programot hogyan töröljem?


szomb. jan. 18, 2014 11:59
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: stell, help me
Köszönöm, hogy így hétvégén is segítettél nekem. Megnyugtattál, hogy a gépem nem vírusos. Köszönöm mégegyszer a segítségedet. További szép hétvégét!


szomb. jan. 18, 2014 11:58
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
Nem, az renben van az MAR.tem fajlokat is az HP-generalta valami fristes, minden renben.


szomb. jan. 18, 2014 11:55
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: stell, help me
~DF4378.tmp fájl jelent meg a temp könyvtárban. Akkor ezt nem valami rágcsáló generálja?


szomb. jan. 18, 2014 11:51
Profil Privát üzenet küldése Honlap
arany tag
Avatar

Csatlakozott: pén. ápr. 18, 2008 21:47
Hozzászólások: 274
Tartózkodási hely: Padlásszoba kicsi számítógépasztala
Hozzászólás Re: stell, help me
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File move failed. C:\Documents and Settings\Tóth Család\Local Settings\Temp\~DFD1B5.tmp scheduled to be moved on reboot.
File move failed. C:\DOCUME~1\TTHCSA~1\LOCALS~1\Temp\~DFD1B5.tmp scheduled to be moved on reboot.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Tóth Család
->Temp folder emptied: 360448 bytes
->Temporary Internet Files folder emptied: 5416950 bytes
->FireFox cache emptied: 21974531 bytes
->Flash cache emptied: 677 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 78264 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 27,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 01182014_112502

Files moved on Reboot...
File C:\Documents and Settings\Tóth Család\Local Settings\Temp\~DFD1B5.tmp not found!
File C:\DOCUME~1\TTHCSA~1\LOCALS~1\Temp\~DFD1B5.tmp not found!

Registry entries deleted on Reboot...


szomb. jan. 18, 2014 11:50
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: stell, help me
az mind rendben van, amitt irtal, na csinald azt amit utoljara irtam, uj script az OTM programba, utana majd restart, es keszek leszunk, ha arendszernek kell az fajl, akkor vissza allitja es kesz,
Ez minden


szomb. jan. 18, 2014 11:26
Profil Privát üzenet küldése Honlap
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 1923 hozzászólás ]  Oldal 1, 2, 3, 4, 5 ... 39  Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 5 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség