Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

runing combofix


  • This topic is locked This topic is locked
6 replies to this topic

#1 captain_turkiye

captain_turkiye

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:25 PM

Posted 08 May 2013 - 09:28 AM

Yesterday i try runing combofix program, it started normally but while deleting files it stuck. then i restart computer. thank god, pc start normally. Before i run second time, i want to ask help.

 



BC AdBot (Login to Remove)

 


#2 captain_turkiye

captain_turkiye
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:25 PM

Posted 09 May 2013 - 02:59 PM

If nobody says anything, then i directly run combofix. 



#3 nasdaq

nasdaq

  • Malware Response Team
  • 17,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:25 AM

Posted 11 May 2013 - 08:35 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

If you still need help, please run the following tools. I will review your logs.

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

Download DDS by sUBs from one of the following links, if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

dds_scr.gif

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#4 captain_turkiye

captain_turkiye
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:25 PM

Posted 11 May 2013 - 12:57 PM

here dds.txt:
 
DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 10.0.9200.16537  BrowserJavaVersion: 10.5.1
Run by win7 at 19:05:41 on 2013-05-11
Microsoft Windows 7 Ultimate   6.1.7601.1.1254.90.1055.18.3582.658 [GMT 3:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\Browser Manager\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
C:\Program Files\BlueStacks\HD-LogRotatorService.exe
C:\ProgramData\Browser Manager\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Windows\system32\dgdersvc.exe
f:\Program Files\DU Meter\DUMeterSvc.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe
C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
f:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
F:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
F:\Program Files\DU Meter\DUMeter.exe
C:\Program Files\BlueStacks\HD-Agent.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\system32\DllHost.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Users\win7\AppData\Roaming\TorrentStream\engine\tsengine.exe
C:\Program Files\Ashampoo\Ashampoo MouseTracer\MouseTracer.exe
C:\Program Files\FILSHtray\FILSHtray.exe
C:\Program Files\AveaConnectionManager\Avea_Launcher.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Users\win7\AppData\Roaming\Dropbox\bin\Dropbox.exe
f:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe
C:\Windows\system32\NLSSRV32.EXE
C:\Windows\system32\PnkBstrA.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
f:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\AveaConnectionManager\wtgservice.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskhost.exe
F:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\win7\AppData\Roaming\TorrentStream\updater\tsupdate.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\NetBeans 7.3\bin\netbeans.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\win7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Adobe\Acrobat 11.0\Acrobat\AcroDist.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mixidj.claro-search.com/?affID=120165&tt=4912_6&babsrc=HP_ss&mntrId=4e6f06fe00000000000000ff4baa7137
uProxyServer = localhost:8080
uProxyOverride = local
uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>
mURLSearchHooks: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files\dvdvideosoft\tbDVDV.dll
mURLSearchHooks: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVDV.dll
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - f:\program files\internet download manager\IDMIECC.dll
BHO: MediaBar: {0974BA1E-64EC-11DE-B2A5-E43756D89593} - c:\program files\bearshare applications\mediabar\toolbar\BearshareMediabarDx.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Babylon toolbar helper: {2EECD738-5844-4a99-B4B6-146BF802613B} - c:\program files\babylontoolbar\babylontoolbar\1.8.4.9\bh\BabylonToolbar.dll
BHO: Smiley Bar for Facebook: {4723AAA8-B2F9-4CC1-9E60-190976DB1FA4} - c:\program files\smiley bar for facebook\ScriptHost.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office14\GROOVEEX.DLL
BHO: UrlHelper Class: {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - c:\program files\bearshare applications\mediabar\datamngr\IEBHO.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVDV.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\alwil software\avast5\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Sobee.ICFLauncherIE.Launcher: {95a0101d-f8f8-4063-9545-0edd223b7819} - 
BHO: Babylon IE plugin: {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - c:\program files\windows live\companion\companioncore.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Adobe Acrobat Create PDF Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\common files\adobe\acrobat\wcieactivex\AcroIEFavClient.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - c:\program files\logitech\setpointp\SetPointSmooth.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
BHO: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files\dvdvideosoft\tbDVDV.dll
BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - c:\program files\common files\adobe\acrobat\wcieactivex\AcroIEFavClient.dll
BHO: SMTTB2009 Class: {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - c:\program files\somud db toolbar\tbcore3.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: DVDVideoSoft Toolbar: {E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} - c:\program files\dvdvideosoft\tbDVDV.dll
TB: DVDVideoSoftTB Toolbar: {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - c:\program files\dvdvideosofttb\tbDVDV.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files\dvdvideosoft\tbDVDV.dll
TB: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVDV.dll
TB: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: MediaBar: {0974BA1E-64EC-11DE-B2A5-E43756D89593} - c:\program files\bearshare applications\mediabar\toolbar\BearshareMediabarDx.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\alwil software\avast5\aswWebRepIE.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\wcieactivex\AcroIEFavClient.dll
uRun: [Google Update] "c:\users\win7\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [KiesPDLR] c:\program files\samsung\kies\external\firmwareupdate\KiesPDLR.exe
uRun: [IDMan] f:\program files\internet download manager\IDMan.exe /onboot
uRun: [DU Meter] f:\program files\du meter\DUMeter.exe
uRun: [BlueStacks Agent] c:\program files\bluestacks\HD-Agent.exe
uRun: [Steam] "c:\program files\steam\Steam.exe" -silent
uRun: [GoogleDriveSync] "c:\program files\google\drive\googledrivesync.exe" /autostart
uRun: [TorrentStream] c:\users\win7\appdata\roaming\torrentstream\engine\tsengine.exe
uRun: [Boxoft Tools] "c:\programdata\boxtools\Boxofttoolbox.exe" -autorun
mRun: [WinampAgent] c:\program files\winamp\winampa.exe
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [VMonitorVMUVC] "c:\program files\vimicro corporation\vmuvc\VMonitor.exe" VMUVC
mRun: [DATAMNGR] c:\progra~1\bearsh~1\mediabar\datamngr\DATAMN~1.EXE
mRun: [UVS11 Preload] c:\program files\ulead systems\ulead videostudio 11\uvPL.exe
mRun: [BCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices
mRun: [Babylon Client] c:\program files\babylon\babylon-pro\Babylon.exe -AutoStart
mRun: [KiesHelper] c:\program files\samsung\kies\KiesHelper.exe /s
mRun: [KiesTrayAgent] c:\program files\samsung\kies\KiesTrayAgent.exe
mRun: [avast] "c:\program files\alwil software\avast5\avastUI.exe" /nogui
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [AttendeeCommunicator] "c:\program files\microsoft lync attendee\AttendeeCommunicator.exe" /fromrunkey
mRun: [VideoCaptureMaster] "g:\program files\video capture master\VideoCaptureMaster.exe" Hide
mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe
mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 11.0\acrobat\Acrotray.exe"
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: c:\users\win7\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\win7\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\ashamp~1.lnk - c:\program files\ashampoo\ashampoo mousetracer\MouseTracer.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\filsht~1.lnk - c:\program files\filshtray\FILSHtray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\launcher.lnk - c:\program files\aveaconnectionmanager\Avea_Launcher.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:95
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: Bütün linkleri IDM ile indir - f:\program files\internet download manager\IEGetAll.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: Free YouTube to Mp3 Converter - c:\users\win7\appdata\roaming\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
IE: IDM ile indir - f:\program files\internet download manager\IEExt.htm
IE: Microsoft Excel'e Gö&nder - <no file>
IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
IE: Translate this web page with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/Action.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {520BD054-EEEE-487c-84E8-D5B2DFFE5C18} - {DB536AF2-E422-402d-B7FD-887297F1A198} - <orphaned>
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
LSP: %SystemRoot%\system32\PrxerDrv.dll
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/Default/uno1/GAME_UNO1.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: Interfaces\{EA8432BD-B34E-4FDB-86F8-2D8E1033BCDE} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{EA8432BD-B34E-4FDB-86F8-2D8E1033BCDE} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
AppInit_DLLs= c:\progra~2\browse~1\261125~1.80\{c16c1~1\mngr.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\win7\appdata\roaming\mozilla\firefox\profiles\dgu0i44e.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=15781
FF - prefs.js: browser.search.selectedEngine - Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.tr/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\bearshare applications\mediabar\datamngr\firefoxextension\components\DataMngrHlp.dll
FF - component: c:\program files\mozilla firefox\extensions\afurladvisor@anch[email protected]\components\afurladvisor.dll
FF - component: c:\users\win7\appdata\roaming\idm\idmmzcc5\components\idmmzcc.dll
FF - component: c:\users\win7\appdata\roaming\mozilla\firefox\profiles\dgu0i44e.default\extensions\[email protected]\components\FFHst.dll
FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\acrobat 11.0\acrobat\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect32.dll
FF - plugin: c:\program files\common files\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect64.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.145\npGoogleUpdate3.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMeetingJoinPluginAOC.dll
FF - plugin: c:\program files\nitro\pro 8\npdf.dll
FF - plugin: c:\program files\nitro\pro 8\npnitroie.dll
FF - plugin: c:\program files\nitro\pro 8\npnitromozilla.dll
FF - plugin: c:\program files\nitro\pro 8\NPShellExtension.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\tvuplayer\npTVUAx.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\win7\appdata\local\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\users\win7\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\users\win7\appdata\roaming\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\users\win7\appdata\roaming\mozilla\firefox\profiles\dgu0i44e.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\plugins\np-mswmp.dll
FF - plugin: c:\users\win7\appdata\roaming\mozilla\plugins\np-mswmp.dll
FF - plugin: c:\users\win7\appdata\roaming\torrentstream\player\npts_plugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=4e6f06fe00000000000000ff4baa7137&q=
FF - user.js: extensions.BabylonToolbar.id - 4e6f06fe00000000000000ff4baa7137
FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
FF - user.js: extensions.BabylonToolbar.instlDay - 15682
FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.4.9
FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.4.9
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.8.4.922:40:31
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar_i.excTlbr - false
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=116987&tt=4912_6
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.autoRvrt - false
FF - user.js: extensions.BabylonToolbar.rvrt - false
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.mixidj.tlbrSrchUrl - 
FF - user.js: extensions.mixidj.id - 4e6f06fe00000000000000ff4baa7137
FF - user.js: extensions.mixidj.appId - {A2773ED4-83BD-488A-A186-73590706C916}
FF - user.js: extensions.mixidj.instlDay - 15805
FF - user.js: extensions.mixidj.vrsn - 1.8.4.1
FF - user.js: extensions.mixidj.vrsni - 1.8.4.1
FF - user.js: extensions.mixidj_i.vrsnTs - 1.8.4.10:40:17
FF - user.js: extensions.mixidj.prtnrId - mixidj
FF - user.js: extensions.mixidj.prdct - mixidj
FF - user.js: extensions.mixidj.aflt - babsst
FF - user.js: extensions.mixidj_i.smplGrp - none
FF - user.js: extensions.mixidj.tlbrId - base
FF - user.js: extensions.mixidj.instlRef - sst
FF - user.js: extensions.mixidj.dfltLng - en
FF - user.js: extensions.mixidj_i.excTlbr - false
FF - user.js: extensions.mixidj.excTlbr - false
FF - user.js: extensions.mixidj.admin - false
.
============= SERVICES / DRIVERS ===============
.
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-11-8 20624]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-11-12 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-1-11 361032]
R1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\drivers\hssdrv6.sys [2013-4-3 40136]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-1-11 21256]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-1-11 58680]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2012-11-8 44808]
R2 Browser Manager;Browser Manager;c:\programdata\browser manager\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe [2013-3-8 2569168]
R2 BstHdDrv;BlueStacks Hypervisor;c:\program files\bluestacks\HD-Hypervisor-x86.sys [2012-5-31 66952]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files\bluestacks\HD-LogRotatorService.exe [2012-5-31 385416]
R2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-5-1 95568]
R2 DUMeterSvc;DU Meter Service;f:\program files\du meter\DUMeterSvc.exe [2011-12-26 503808]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-6-21 217088]
R2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2011-11-14 89376]
R2 MBAMScheduler;MBAMScheduler;f:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-5-8 418376]
R2 MBAMService;MBAMService;f:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-5-8 701512]
R2 NAUpdate;Nero Güncelleme;c:\program files\nero\update\NASvc.exe [2010-5-4 503080]
R2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\nitro\pro 8\NitroPDFDriverService8.exe [2013-3-25 196616]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NLSSRV32.EXE [2013-3-25 70152]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2013-4-15 3289208]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-1-18 383264]
R2 WTGService;WTGService;c:\program files\aveaconnectionmanager\WTGService.exe [2012-10-24 343024]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-5-1 18136]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-6-21 36640]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\drivers\LEqdUsb.sys [2012-9-18 43704]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\drivers\LHidEqd.sys [2012-9-18 12216]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-5-8 22856]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2011-6-10 394856]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\drivers\taphss6.sys [2013-1-5 37208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2012-4-30 104872]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-3-1 161384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 BstHdAndroidSvc;BlueStacks Android Service;c:\program files\bluestacks\HD-Service.exe [2012-5-31 397704]
S3 btmhsf;btmhsf;c:\windows\system32\drivers\btmhsf.sys [2011-7-19 225280]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2011-10-13 77624]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\drivers\iBtFltCoex.sys [2011-7-20 47104]
S3 KiesAllShare;SAMSUNG KiesAllShare Service;c:\program files\samsung\kies\wiselinkpro\WiselinkPro.exe [2010-5-4 9241088]
S3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2006-11-1 3328]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-3-13 15872]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2011-10-13 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2011-10-13 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2011-10-13 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [2011-10-13 100224]
S3 sscebus;SAMSUNG USB Composite Device V2 driver (WDM);c:\windows\system32\drivers\sscebus.sys [2011-10-13 98560]
S3 sscemdfl;SAMSUNG Mobile Modem V2 Filter;c:\windows\system32\drivers\sscemdfl.sys [2011-10-13 14848]
S3 sscemdm;SAMSUNG Mobile Modem V2 Drivers;c:\windows\system32\drivers\sscemdm.sys [2011-10-13 123648]
S3 ssceserd;SAMSUNG Mobile Modem Diagnostic Serial Port V2 (WDM);c:\windows\system32\drivers\ssceserd.sys [2011-10-13 100352]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2011-10-13 181432]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-10-15 52224]
S3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\drivers\VMUVC.sys [2010-1-25 252416]
S3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys [2010-1-25 398720]
S3 WatAdminSvc;Windows Etkinleştirme Teknolojileri Hizmeti;c:\windows\system32\wat\WatAdminSvc.exe [2010-11-21 1343400]
S3 WPFFontCache_v0400;WPFFontCache_v0400;c:\windows\microsoft.net\framework\v4.0.30128\wpf\wpffontcache_v0400.exe --> c:\windows\microsoft.net\framework\v4.0.30128\wpf\WPFFontCache_v0400.exe [?]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-23 47128]
S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [2009-3-30 239336]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2009-3-30 366936]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]
.
=============== Created Last 30 ================
.
2013-05-11 00:08:43 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-10 19:04:11 6906960 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{5a911db7-2dc7-41ec-89fe-0406d245fbb7}\mpengine.dll
2013-05-08 15:08:41 -------- d-----w- c:\users\win7\appdata\roaming\Malwarebytes
2013-05-08 15:08:28 -------- d-----w- c:\programdata\Malwarebytes
2013-05-08 15:08:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-07 23:36:57 -------- d-sh--w- C:\$RECYCLE.BIN
2013-05-07 23:33:33 98816 ----a-w- c:\windows\sed.exe
2013-05-07 23:33:33 256000 ----a-w- c:\windows\PEV.exe
2013-05-07 23:33:33 208896 ----a-w- c:\windows\MBR.exe
2013-05-07 23:33:24 -------- d-s---w- C:\ComboFix
2013-05-07 23:23:13 -------- d-----w- c:\program files\Loaris
2013-05-01 15:11:45 -------- d-----w- c:\users\win7\appdata\roaming\Wireshark
2013-05-01 14:45:33 -------- d-----w- c:\program files\Wireshark
2013-04-30 22:16:01 -------- d-----r- c:\program files\Skype
2013-04-30 21:15:12 -------- d-----w- c:\users\win7\appdata\local\{5CB44CAC-EF65-41C6-8994-AA91C118D741}
2013-04-29 16:15:20 -------- d-----w- C:\matlab
2013-04-29 12:57:36 -------- d-----w- c:\users\win7\appdata\local\{B411B351-72D9-49F1-BFA2-5287EABDCFFB}
2013-04-28 15:57:53 -------- d-----w- c:\users\win7\appdata\roaming\PerformerSoft
2013-04-28 15:57:39 -------- d-----w- c:\users\win7\appdata\roaming\PlusWinks
2013-04-28 15:57:39 -------- d-----w- c:\program files\PC Performer
2013-04-28 15:57:34 -------- d-----w- c:\users\win7\appdata\roaming\SpeedAnalysis2
2013-04-28 15:57:34 -------- d-----w- c:\program files\Smiley Bar for Facebook
2013-04-28 15:57:28 -------- d-----w- c:\program files\Speed Analysis 2
2013-04-28 15:57:20 -------- d-----w- c:\users\win7\appdata\roaming\File Scout
2013-04-28 14:59:50 -------- d-----w- c:\users\win7\appdata\local\{65728A64-5E62-45F1-94FF-49B46EA524AA}
2013-04-27 13:12:22 -------- d-----w- c:\users\win7\appdata\local\{1CF06D14-EFDA-43E2-B26A-E9BB56924024}
2013-04-26 21:44:56 -------- d-----w- c:\users\win7\appdata\roaming\Yandex
2013-04-26 21:44:49 -------- d-----w- c:\users\win7\appdata\local\Yandex
2013-04-26 14:51:58 -------- d-----w- c:\users\win7\appdata\local\{A94BD780-06BE-45CE-8400-842EBDF92D21}
2013-04-25 17:40:21 -------- d-----w- c:\users\win7\appdata\local\{A5ECCCB6-A432-4376-84C3-93546EE64DF9}
2013-04-24 14:01:31 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-24 13:49:57 -------- d-----w- c:\users\win7\appdata\local\{4AB7ABB1-06D7-4584-B367-DBB750C50DD5}
2013-04-23 12:32:25 -------- d-----w- c:\users\win7\appdata\local\{35493946-2C13-499A-A1D8-7D8441682B7C}
2013-04-22 13:34:16 -------- d-----w- c:\users\win7\appdata\local\{5B579C64-2D64-44C4-B994-756D50855CB5}
2013-04-21 10:40:15 -------- d-----w- c:\users\win7\appdata\local\{5C3DD645-2E91-4A34-93DC-83E455173116}
2013-04-20 15:51:06 -------- d-----w- c:\users\win7\appdata\local\{DC573427-E9BE-4CBA-8095-C6323E0905C3}
2013-04-19 17:34:56 -------- d-----w- c:\users\win7\appdata\local\{67B144EB-6FDF-4D13-A820-1C6340A373D5}
2013-04-18 19:45:29 -------- d-----w- c:\users\win7\appdata\roaming\NetBeans
2013-04-18 19:45:29 -------- d-----w- c:\users\win7\appdata\local\NetBeans
2013-04-18 19:39:10 -------- d-----w- c:\program files\glassfish-3.1.2.2
2013-04-18 19:33:06 -------- d-----w- c:\program files\NetBeans 7.3
2013-04-18 19:32:18 -------- d-----w- c:\users\win7\.nbi
2013-04-18 18:19:50 -------- d-----w- c:\users\win7\appdata\local\{B2A20F00-1AC5-48A7-B448-CCFC2F833C67}
2013-04-17 19:30:30 74136 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2013-04-17 19:30:28 770384 ----a-w- c:\program files\mozilla firefox\msvcr100.dll
2013-04-17 19:30:28 421200 ----a-w- c:\program files\mozilla firefox\msvcp100.dll
2013-04-17 19:30:26 26520 ----a-w- c:\program files\mozilla firefox\plugin-hang-ui.exe
2013-04-17 19:30:25 96664 ----a-w- c:\program files\mozilla firefox\webapprt-stub.exe
2013-04-17 19:30:25 170232 ----a-w- c:\program files\mozilla firefox\webapp-uninstaller.exe
2013-04-17 13:52:27 -------- d-----w- c:\users\win7\appdata\local\{DE463781-AE3D-4646-9A20-352E602D447F}
2013-04-16 13:26:10 -------- d-----w- c:\users\win7\appdata\local\{9ED67F57-838C-4E9E-AB3C-FAD9DEC5E69D}
2013-04-15 13:59:16 -------- d-----w- c:\users\win7\appdata\local\{50C2905E-45C6-483B-981A-14DF65B3B01D}
2013-04-15 12:32:30 6128760 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-04-15 12:32:30 6128760 ----a-w- c:\program files\mozilla firefox\browser\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2013-04-14 15:32:31 -------- d-----w- c:\users\win7\appdata\local\{6E3E341D-14A4-4755-9720-A540F890D820}
2013-04-14 00:46:02 -------- d-----w- c:\users\win7\appdata\roaming\Hotspot Shield
2013-04-13 20:03:33 -------- d-----w- c:\users\win7\appdata\local\{87F1E795-6AEA-44FE-A6AD-515308FDE9F1}
2013-04-12 17:03:51 -------- d-----w- c:\users\win7\appdata\local\{A97FBE84-45F7-4BD0-A1FF-EC4D8B053C61}
.
==================== Find3M  ====================
.
2013-05-11 00:08:43 906240 ----a-w- c:\windows\system32\FntCache.dll
2013-05-01 23:06:08 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-04-03 00:48:22 40136 ----a-w- c:\windows\system32\drivers\hssdrv6.sys
2013-03-25 16:08:38 70152 ----a-w- c:\windows\system32\NLSSRV32.EXE
2013-03-25 16:07:48 27144 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2013-03-25 16:07:48 18440 ----a-w- c:\windows\system32\nitrolocalui2.dll
2013-03-20 14:57:52 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-03-19 05:04:13 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 04:48:45 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 02:49:16 69632 ----a-w- c:\windows\system32\smss.exe
2013-03-12 23:59:22 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-12 23:59:22 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-01 03:09:59 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-02-25 21:22:36 1985824 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-02-25 21:22:36 1017120 ----a-w- c:\windows\system32\nvdispco32.dll
2013-02-25 21:22:34 6262608 ----a-w- c:\windows\system32\nvopencl.dll
2013-02-25 21:22:32 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll
2013-02-25 21:22:32 2505144 ----a-w- c:\windows\system32\nvapi.dll
2013-02-25 21:22:32 12641992 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-02-25 21:22:30 15129960 ----a-w- c:\windows\system32\nvd3dum.dll
2013-02-25 21:22:26 7932256 ----a-w- c:\windows\system32\nvcuda.dll
2013-02-25 21:22:22 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-02-25 21:22:08 20449056 ----a-w- c:\windows\system32\nvoglv32.dll
2013-02-25 21:22:06 8939296 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-02-25 21:22:06 2720544 ----a-w- c:\windows\system32\nvcuvid.dll
2013-02-15 04:37:10 3217408 ----a-w- c:\windows\system32\mstscax.dll
2013-02-15 04:34:10 131584 ----a-w- c:\windows\system32\aaclient.dll
2013-02-15 03:25:51 36864 ----a-w- c:\windows\system32\tsgqec.dll
2013-02-12 04:48:31 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 03:32:45 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
.
============= FINISH: 19:09:56,64 ===============
 
here checkup.txt:
 
 Results of screen317's Security Check version 0.99.63  
 Windows 7 Service Pack 1 x86 (UAC is enabled)  
 Internet Explorer 9  
``````````````Antivirus/Firewall Check:`````````````` 
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Loaris Trojan Remover 1.2  
 Malwarebytes Anti-Malware 1.75.0.1300 sürümü  
 CCleaner     
 Microsoft VM for Java  
 JavaFX 2.1.1    
 JavaFX 2.1.1 SDK   
 Java™ 6 Update 18  
 Java™ 6 Update 32  
 Java™ 7 Update 5  
 Java™ 6 Update 7  
 Java™ SE Development Kit 7 
 Java SE Development Kit 7 Update 5 
 Java version out of Date! 
 Adobe Flash Player  11.6.602.180  
 Adobe Reader XI  
 Mozilla Firefox (20.0.1) 
 Google Chrome 26.0.1410.43  
 Google Chrome 26.0.1410.64  
 Google Chrome plugins...  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 Alwil Software Avast5 AvastSvc.exe  
 Alwil Software Avast5 AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log`````````````````````` 
 
here AdwCleaner[S1].txt:
 
# AdwCleaner v2.300 - Bu rapor 11/05/2013 tarihinde 20:28:55'te olusturuldu
# Son güncelleme 28/04/2013 tarihinde, Xplode tarafindan
# Isletim sistemi : Windows 7 Ultimate Service Pack 1 (32 bits)
# Kullanici : win7 - WIN7-BILGISAYAR
# Mod : Normal
# Dosya konumu : F:\programlar\adwcleaner_2.exe
# Seçenek [Sil]
 
 
***** [Servisler] *****
 
Durduruldu & Silindi : Browser Manager
 
***** [Dosyalar / Klasörler] *****
 
Dosya Silindi : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
Dosya Silindi : C:\Users\win7\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\bProtector_extensions.rdf
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\bprotector_extensions.sqlite
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\searchplugins\Babylon.xml
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\searchplugins\babylon1.xml
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\searchplugins\search.xml
Dosya Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\searchplugins\yahoo-zugo.xml
Dosya Silindi : C:\Windows\Tasks\PC Performer_DEFAULT.job
Klasör Silindi : C:\Program Files\Babylon
Klasör Silindi : C:\Program Files\BabylonToolbar
Klasör Silindi : C:\Program Files\Common Files\DVDVideoSoft
Klasör Silindi : C:\Program Files\Conduit
Klasör Silindi : C:\Program Files\DAEMON Tools Toolbar
Klasör Silindi : C:\Program Files\DVDVideoSoft
Klasör Silindi : C:\Program Files\DVDVideoSoftTB
Klasör Silindi : C:\Program Files\Mozilla Firefox\Extensions\[email protected]
Klasör Silindi : C:\Program Files\Mozilla Firefox\Extensions\[email protected]
Klasör Silindi : C:\Program Files\Smart Suggestor
Klasör Silindi : C:\Program Files\Smiley Bar for Facebook
Klasör Silindi : C:\Program Files\Speed Analysis 2
Klasör Silindi : C:\ProgramData\Babylon
Klasör Silindi : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
Klasör Silindi : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
Klasör Silindi : C:\Users\win7\AppData\Local\Babylon
Klasör Silindi : C:\Users\win7\AppData\Local\Conduit
Klasör Silindi : C:\Users\win7\AppData\Local\DVDVideoSoft
Klasör Silindi : C:\Users\win7\AppData\Local\DVDVideoSoftTB
Klasör Silindi : C:\Users\win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Klasör Silindi : C:\Users\win7\AppData\Local\OpenCandy
Klasör Silindi : C:\Users\win7\AppData\Local\PackageAware
Klasör Silindi : C:\Users\win7\AppData\LocalLow\BabylonToolbar
Klasör Silindi : C:\Users\win7\AppData\LocalLow\Conduit
Klasör Silindi : C:\Users\win7\AppData\LocalLow\DVDVideoSoft
Klasör Silindi : C:\Users\win7\AppData\LocalLow\DVDVideoSoftTB
Klasör Silindi : C:\Users\win7\AppData\LocalLow\PriceGong
Klasör Silindi : C:\Users\win7\AppData\LocalLow\Toolbar4
Klasör Silindi : C:\Users\win7\AppData\Roaming\Babylon
Klasör Silindi : C:\Users\win7\AppData\Roaming\BabylonToolbar
Klasör Silindi : C:\Users\win7\AppData\Roaming\DVDVideoSoft
Klasör Silindi : C:\Users\win7\AppData\Roaming\dvdvideosoftiehelpers
Klasör Silindi : C:\Users\win7\AppData\Roaming\file scout
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\ConduitCommon
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\CT3072253
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\[email protected]
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\[email protected]
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\pluswinks@PlusWinks
Klasör Silindi : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\extensions\[email protected]
Klasör Silindi : C:\Users\win7\AppData\Roaming\PerformerSoft
Klasör Silindi : C:\Users\win7\AppData\Roaming\SpeedAnalysis2
Klasör Silindi : C:\Users\win7\Documents\DVDVideoSoft
Klasör Silindi : C:\Windows\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Silindi restarttan sonra : C:\ProgramData\Browser Manager
 
***** [Registry] *****
 
De?er Silindi : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
De?er Silindi : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
De?er Silindi : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
De?er Silindi : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Babylon Client]
De?er Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Registry Key'i Silindi : HKCU\Software\5f53d88fb43aba14
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\Conduit
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\DVDVideoSoft
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\PriceGong
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\Smart Suggestor
Registry Key'i Silindi : HKCU\Software\AppDataLow\Software\SmartBar
Registry Key'i Silindi : HKCU\Software\AppDataLow\Toolbar
Registry Key'i Silindi : HKCU\Software\Babylon
Registry Key'i Silindi : HKCU\Software\BabylonToolbar
Registry Key'i Silindi : HKCU\Software\Conduit
Registry Key'i Silindi : HKCU\Software\DataMngr
Registry Key'i Silindi : HKCU\Software\DataMngr_Toolbar
Registry Key'i Silindi : HKCU\Software\DVDVideoSoft
Registry Key'i Silindi : HKCU\Software\DVDVideoSoftTB
Registry Key'i Silindi : HKCU\Software\Microsoft\Babylon
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Registry Key'i Silindi : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D0F4A166-B8D4-48B8-9D63-80849FE137CB}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB536AF2-E422-402D-B7FD-887297F1A198}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{520BD054-EEEE-487C-84E8-D5B2DFFE5C18}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Registry Key'i Silindi : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Registry Key'i Silindi : HKCU\Software\PerformerSoft
Registry Key'i Silindi : HKCU\Software\SMTTB2009
Registry Key'i Silindi : HKCU\Software\Softonic
Registry Key'i Silindi : HKCU\Software\Somoto Toolbar
Registry Key'i Silindi : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Registry Key'i Silindi : HKLM\SOFTWARE\5f53d88fb43aba14
Registry Key'i Silindi : HKLM\Software\Babylon
Registry Key'i Silindi : HKLM\Software\BabylonToolbar
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\BabylonTC.EXE
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\PropertySync.EXE
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\b
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabyDict
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabyGloss
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\BabyOptFile
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{2656B92B-0207-4AFB-BEBF-F5FD231ECD39}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{3CBAD7D9-A3B1-490A-87E1-5ADA5F1332C1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{59570C1F-B692-48C9-91B4-7809E6945287}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{63A0F7FA-2C95-4D7E-AF25-EFCC303D20A1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{6559E502-6EE1-46B8-A83C-F3A45BDA23EE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{957A00C5-4F4C-4F44-89A0-251E2C86693B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{C63CA8A4-AB4E-49E5-A6C0-33FC86D80205}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{C6A7847E-8931-4A9A-B4EF-72A91E3CCF4D}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{DD0F1D24-E250-4E93-966C-65615720AEFB}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{DF390AA1-1E65-4825-B8E7-BE6B47BD56B8}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{EC1277BB-1C71-4C0D-BA6D-BFEA16E773A6}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\imweb.imwebcontrol
Registry Key'i Silindi : HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B
Registry Key'i Silindi : HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{0194532A-A99C-4337-937E-2A452C8957BE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{95734BDE-B702-45B9-86E5-27676729F904}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{D0482C8E-BAEA-4943-911A-B661060F56A7}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Prod.cap
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar.CT3072253
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{0C2E529C-A82C-4AC6-8807-0B51F7AD7BB2}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{252C2315-CCE0-4446-8DA7-C00292A690BA}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Registry Key'i Silindi : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Registry Key'i Silindi : HKLM\Software\Conduit
Registry Key'i Silindi : HKLM\Software\DVDVideoSoft
Registry Key'i Silindi : HKLM\Software\DVDVideoSoftTB
Registry Key'i Silindi : HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Registry Key'i Silindi : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Registry Key'i Silindi : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{520BD054-EEEE-487C-84E8-D5B2DFFE5C18}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASAPI32
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASMANCS
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3CBAD7D9-A3B1-490A-87E1-5ADA5F1332C1}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{957A00C5-4F4C-4F44-89A0-251E2C86693B}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD}
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DA5BD2D3CA2D6943A1A233CD3F88CE7
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC9EFC5C3366B4DB850DAB49330C52
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7E98451C7CA808F47AFE467BDABD02FA
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD11FD45FC7B9E46A8F4B69F3A66E35
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5979AD63CA2D6943A1A233CD3F88CE7
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF9BD2952384A9C49B4A5D3D95329890
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FABA2A33488410A4AA40489BD2224282
Registry Key'i Silindi : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoft Toolbar
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PC Performer_is1
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SmartSuggestor
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smiley Bar for Facebook
Registry Key'i Silindi : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 2
Registry Key'i Silindi : HKLM\Software\PerformerSoft
 
***** [Browser'lar] *****
 
-\\ Internet Explorer v10.0.9200.16537
 
De?i?tirildi : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://mixidj.claro-search.com/?affID=120165&tt=4912_6&babsrc=HP_ss&mntrId=4e6f06fe00000000000000ff4baa7137 --> hxxp://www.google.com
 
-\\ Mozilla Firefox v20.0.1 (tr)
 
Dosya : C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\prefs.js
 
C:\Users\win7\AppData\Roaming\Mozilla\Firefox\Profiles\dgu0i44e.default\user.js ... Silindi !
 
Silindi : user_pref("CT3072253..clientLogIsEnabled", false);
Silindi : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Silindi : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Silindi : user_pref("CT3072253.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Silindi : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Silindi : user_pref("CT3072253.AppTrackingLastCheckTime", "Sat Aug 18 2012 20:46:33 GMT+0300 (GTB Yaz Saati)")[...]
Silindi : user_pref("CT3072253.BrowserCompStateIsOpen_129573915102477663", true);
Silindi : user_pref("CT3072253.BrowserCompStateIsOpen_129749445881800338", true);
Silindi : user_pref("CT3072253.BrowserCompStateIsOpen_129805375651312503", true);
Silindi : user_pref("CT3072253.BrowserCompStateIsOpen_130067979083742856", true);
Silindi : user_pref("CT3072253.BrowserCompStateIsOpen_1359634299000", true);
Silindi : user_pref("CT3072253.CTID", "CT3072253");
Silindi : user_pref("CT3072253.CurrentServerDate", "6-5-2013");
Silindi : user_pref("CT3072253.DSInstall", false);
Silindi : user_pref("CT3072253.DialogsAlignMode", "LTR");
Silindi : user_pref("CT3072253.DialogsGetterLastCheckTime", "Mon May 06 2013 17:01:59 GMT+0300 (GTB Yaz Saati)[...]
Silindi : user_pref("CT3072253.DownloadReferralCookieData", "");
Silindi : user_pref("CT3072253.FirstServerDate", "18-8-2012");
Silindi : user_pref("CT3072253.FirstTime", true);
Silindi : user_pref("CT3072253.FirstTimeFF3", true);
Silindi : user_pref("CT3072253.FixPageNotFoundErrors", true);
Silindi : user_pref("CT3072253.GroupingServerCheckInterval", 1440);
Silindi : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Silindi : user_pref("CT3072253.HPInstall", false);
Silindi : user_pref("CT3072253.HasUserGlobalKeys", true);
Silindi : user_pref("CT3072253.Initialize", true);
Silindi : user_pref("CT3072253.InitializeCommonPrefs", true);
Silindi : user_pref("CT3072253.InstallationAndCookieDataSentCount", 3);
Silindi : user_pref("CT3072253.InstallationId", "fftA75C.tmp.exe");
Silindi : user_pref("CT3072253.InstallationType", "XPE");
Silindi : user_pref("CT3072253.InstalledDate", "Sat Aug 18 2012 20:46:22 GMT+0300 (GTB Yaz Saati)");
Silindi : user_pref("CT3072253.IsGrouping", false);
Silindi : user_pref("CT3072253.IsInitSetupIni", true);
Silindi : user_pref("CT3072253.IsMulticommunity", false);
Silindi : user_pref("CT3072253.IsOpenThankYouPage", true);
Silindi : user_pref("CT3072253.IsOpenUninstallPage", false);
Silindi : user_pref("CT3072253.LanguagePackLastCheckTime", "Mon May 06 2013 17:01:47 GMT+0300 (GTB Yaz Saati)"[...]
Silindi : user_pref("CT3072253.LanguagePackReloadIntervalMM", 1440);
Silindi : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Silindi : user_pref("CT3072253.LastLogin_3.12.0.8", "Sat Aug 18 2012 20:47:11 GMT+0300 (GTB Yaz Saati)");
Silindi : user_pref("CT3072253.LastLogin_3.14.1.0", "Tue Mar 19 2013 00:11:59 GMT+0200 (GTB Standart Saati)");
Silindi : user_pref("CT3072253.LastLogin_3.18.0.7", "Mon May 06 2013 17:01:46 GMT+0300 (GTB Yaz Saati)");
Silindi : user_pref("CT3072253.LatestVersion", "3.18.0.7");
Silindi : user_pref("CT3072253.Locale", "en");
Silindi : user_pref("CT3072253.MCDetectTooltipHeight", "83");
Silindi : user_pref("CT3072253.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Silindi : user_pref("CT3072253.MCDetectTooltipWidth", "295");
Silindi : user_pref("CT3072253.MyStuffEnabledAtInstallation", false);
Silindi : user_pref("CT3072253.OriginalFirstVersion", "3.12.0.8");
Silindi : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search");
Silindi : user_pref("CT3072253.SearchFromAddressBarIsInit", true);
Silindi : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Silindi : user_pref("CT3072253.SearchInNewTabEnabled", true);
Silindi : user_pref("CT3072253.SearchInNewTabIntervalMM", 1440);
Silindi : user_pref("CT3072253.SearchInNewTabLastCheckTime", "Mon May 06 2013 17:01:44 GMT+0300 (GTB Yaz Saati[...]
Silindi : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Silindi : user_pref("CT3072253.SendProtectorDataViaLogin", true);
Silindi : user_pref("CT3072253.ServiceMapLastCheckTime", "Mon May 06 2013 17:01:46 GMT+0300 (GTB Yaz Saati)");
Silindi : user_pref("CT3072253.SettingsLastCheckTime", "Mon May 06 2013 17:01:43 GMT+0300 (GTB Yaz Saati)");
Silindi : user_pref("CT3072253.SettingsLastUpdate", "1367848224");
Silindi : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13");
Silindi : user_pref("CT3072253.ThirdPartyComponentsInterval", 504);
Silindi : user_pref("CT3072253.ThirdPartyComponentsLastCheck", "Sat Aug 18 2012 20:46:20 GMT+0300 (GTB Yaz Saa[...]
Silindi : user_pref("CT3072253.ThirdPartyComponentsLastUpdate", "1331805997");
Silindi : user_pref("CT3072253.ToolbarShrinkedFromSetup", false);
Silindi : user_pref("CT3072253.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072253");
Silindi : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Silindi : user_pref("CT3072253.UserID", "UN10624072899412096");
Silindi : user_pref("CT3072253.alertChannelId", "1463702");
Silindi : user_pref("CT3072253.autoDisableScopes", -1);
Silindi : user_pref("CT3072253.backendstorage.cbcountry_001", "5452");
Silindi : user_pref("CT3072253.backendstorage.cbfirsttime", "5361742041756720313820323031322032303A34363A32372[...]
Silindi : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Silindi : user_pref("CT3072253.globalFirstTimeInfoLastCheckTime", "Sat Aug 18 2012 20:46:22 GMT+0300 (GTB Yaz [...]
Silindi : user_pref("CT3072253.homepageProtectorEnableByLogin", true);
Silindi : user_pref("CT3072253.initDone", true);
Silindi : user_pref("CT3072253.isAppTrackingManagerOn", true);
Silindi : user_pref("CT3072253.myStuffEnabled", true);
Silindi : user_pref("CT3072253.myStuffPublihserMinWidth", 400);
Silindi : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Silindi : user_pref("CT3072253.myStuffServiceIntervalMM", 1440);
Silindi : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Silindi : user_pref("CT3072253.navigateToUrlOnSearch", false);
Silindi : user_pref("CT3072253.revertSettingsEnabled", true);
Silindi : user_pref("CT3072253.searchProtectorDialogDelayInSec", 10);
Silindi : user_pref("CT3072253.searchProtectorEnableByLogin", true);
Silindi : user_pref("CT3072253.testingCtid", "");
Silindi : user_pref("CT3072253.toolbarAppMetaDataLastCheckTime", "Mon May 06 2013 17:01:46 GMT+0300 (GTB Yaz S[...]
Silindi : user_pref("CT3072253.toolbarContextMenuLastCheckTime", "Sat Aug 18 2012 20:46:23 GMT+0300 (GTB Yaz S[...]
Silindi : user_pref("CT3072253.usagesFlag", 1);
Silindi : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", [...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253",[...]
Silindi : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"c01[...]
Silindi : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\win7\\AppData\\Roaming\\Mozilla\\Fi[...]
Silindi : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.12.0.8");
Silindi : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.bearshare.com/web?src=ffb&[...]
Silindi : user_pref("CommunityToolbar.ToolbarsList", "CT3072253");
Silindi : user_pref("CommunityToolbar.ToolbarsList2", "CT3072253");
Silindi : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253");
Silindi : user_pref("CommunityToolbar.globalUserId", "e7de1046-0426-4423-9dbc-e8dac3f60fcb");
Silindi : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Silindi : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Silindi : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3072253");
Silindi : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Silindi : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Silindi : user_pref("CommunityToolbar.notifications.locale", "en");
Silindi : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Silindi : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sat Aug 18 2012 20:46:22 GMT+0300 (G[...]
Silindi : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Silindi : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Silindi : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Silindi : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Silindi : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Silindi : user_pref("CommunityToolbar.notifications.userId", "fb353117-84a4-4638-b94b-a60fa514ac29");
Silindi : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.bearshare.com/");
Silindi : user_pref("CommunityToolbar.originalSearchEngine", "Search");
Silindi : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Silindi : user_pref("browser.search.defaulturl", "hxxp://search.babylon.com/web/{searchTerms}?babsrc=browserse[...]
Silindi : user_pref("extensions.BabylonToolbar.admin", false);
Silindi : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Silindi : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
Silindi : user_pref("extensions.BabylonToolbar.autoRvrt", "false");
Silindi : user_pref("extensions.BabylonToolbar.bbDpng", 1);
Silindi : user_pref("extensions.BabylonToolbar.cntry", "TR");
Silindi : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Silindi : user_pref("extensions.BabylonToolbar.dpkLst", "");
Silindi : user_pref("extensions.BabylonToolbar.excTlbr", false);
Silindi : user_pref("extensions.BabylonToolbar.hdrMd5", "68E103FF411E62EA1AA2746429AC2206");
Silindi : user_pref("extensions.BabylonToolbar.id", "4e6f06fe00000000000000ff4baa7137");
Silindi : user_pref("extensions.BabylonToolbar.instlDay", "15682");
Silindi : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Silindi : user_pref("extensions.BabylonToolbar.lastActv", "1");
Silindi : user_pref("extensions.BabylonToolbar.lastDP", 1);
Silindi : user_pref("extensions.BabylonToolbar.pnu_base", "{\"newVrsn\":\"69\",\"lastVrsn\":\"69\",\"vrsnLoad\[...]
Silindi : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Silindi : user_pref("extensions.BabylonToolbar.rvrt", "false");
Silindi : user_pref("extensions.BabylonToolbar.sg", "azb");
Silindi : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Silindi : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Silindi : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=[...]
Silindi : user_pref("extensions.BabylonToolbar.vrsn", "1.8.4.9");
Silindi : user_pref("extensions.BabylonToolbar.vrsni", "1.8.4.9");
Silindi : user_pref("extensions.BabylonToolbar_i.babExt", "");
Silindi : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=116987&tt=4912_6");
Silindi : user_pref("extensions.BabylonToolbar_i.excTlbr", false);
Silindi : user_pref("extensions.BabylonToolbar_i.newTab", false);
Silindi : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Silindi : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Silindi : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.4.922:40:31");
Silindi : user_pref("extensions.SmartSuggestor.aid", "10013");
Silindi : user_pref("extensions.enabledAddons", "ffxtlbr%40babylon.com:1.5.0,%7B687578b9-7132-4a7a-80e4-30ee31[...]
Silindi : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=[...]
Silindi : user_pref("somoto.dnscatch", "hxxp://www.bigseekpro.com/search/toolbar/somud/{E8F2D957-79CB-44AF-AB8[...]
 
-\\ Google Chrome v26.0.1410.64
 
Dosya : C:\Users\win7\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Silindi [l.3251] : homepage = "hxxp://mixidj.claro-search.com/?affID=120165&tt=4912_6&babsrc=HP_ss&mntrId=4e6f06fe0[...]
Silindi [l.5928] : urls_to_restore_on_startup = [ "hxxp://mixidj.claro-search.com/?affID=120165&tt=4912_6&babsrc[...]
 
*************************
 
AdwCleaner[S1].txt - [47374 octets] - [11/05/2013 20:28:55]
 
########## EOF - C:\AdwCleaner[S1].txt - [47435 octets] ##########


#5 nasdaq

nasdaq

  • Malware Response Team
  • 17,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:25 AM

Posted 11 May 2013 - 01:27 PM


That was a good cleanup.

Secure your system by updating 3rd party programs.

Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.

Be careful not to install malware posing as Java update!
Important read this blog.
http://blog.trendmicro.com/trendlabs-security-intelligence/malware-poses-as-an-update-for-java-0-day-fix/

Quoted from the page.
"In light of the recent events surrounding Java, users must seriously consider their use of Java. Do they really need it? If yes, make sure that users follow the steps we recommended and get the security update directly from the official oracle website." at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

How to disable Java in your browsers
http://www.infoworld.com/t/web-browsers/how-disable-java-in-your-browsers-210882

You can manually check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

If present remove the old version(s) of Java using the Add/Remove Programs applet.

Java™ 6 Update 32
Java™ 7 Update 5
Java™ 6 Update 7

Decide you you want to keep the last two.
Java™ SE Development Kit 7
Java SE Development Kit 7 Update 5


Note
Java security update installs Ask Toolbar by default -- a single click in a multi-step installer.
http://www.benedelman.org/images/iac-jan13/ask-iac-011613-small.png
I suggest that your un-check the box "Install the Ask Toolbar" before proceeding.
===

Please submit a fresh DDS log and let me know what problem persists.

#6 nasdaq

nasdaq

  • Malware Response Team
  • 17,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:25 AM

Posted 17 May 2013 - 10:40 AM

If all is well:

Time for some housekeeping
  • The following will implement some cleanup procedures as well as reset System Restore points:
  • Click Start > Run and copy/paste the following bold text into the Run box and click OK:
  • ComboFix /Uninstall
===

To remove AdwCleaner.

Please double click on AdwCleaner.exe to run the tool.
Click on Uninstall.
Confirm with Yes.

If you decide to keep the AdwCleaner tool make sure to delete your version and download the latest before running it.

Delete the other tools we used.
You can Keep the DDS tool as most forum will ask to see a log before suggesting a fix.

Surf Safely, and Think Prevention!
===

#7 nasdaq

nasdaq

  • Malware Response Team
  • 17,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:25 AM

Posted 23 May 2013 - 07:29 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users