Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

explorer.exe high cpu usage


  • Please log in to reply
5 replies to this topic

#1 paulos123

paulos123

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:09 AM

Posted 02 January 2014 - 08:56 AM

i have problem with explorer.exe most of the times without reason uses half of my cpu usage.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 AM

Posted 02 January 2014 - 11:30 AM

Hi paulos

Lets see if we can find something.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:09 AM

Posted 02 January 2014 - 06:31 PM

# AdwCleaner v3.016 - Report created 03/01/2014 at 01:23:17
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : paulos - PAULOS-PC
# Running from : C:\Users\paulos\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
File Found : C:\Windows\System32\Tasks\NCH Software
Folder Found C:\Program Files\NCH Software
Folder Found C:\ProgramData\NCH Software
Folder Found C:\Users\paulos\AppData\Roaming\NCH Software
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\NCH Software
Key Found : HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6FDBBC21-E399-4542-B4CE-86326E1F0727}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7B878FD4-8F19-46DB-94B1-4CABFF80679C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8BA495EF-6CD5-413A-8AEF-483631B98C4F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8C71E394-2E6F-452A-AB7D-C17E78307083}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BADB1512-759C-4792-A18A-DD6BDC4E1991}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E54FBC83-9028-45AC-A5B9-D5DA828E59C2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{633AA60B-C339-46C3-951F-047F9822C473}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9156C8F9-B397-4DEF-8AC5-5966221A134A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A8E5842E-102B-4289-9D57-3B3F5B5E15D3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Driver-Soft
Key Found : HKLM\Software\NCH Software
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v0.0.0.0
 
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [3024 octets] - [03/01/2014 01:13:58]
AdwCleaner[R1].txt - [2376 octets] - [03/01/2014 01:23:17]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [2436 octets] ##########
 
 
 
 
MiniToolBox by Farbar  Version: 18-12-2013
Ran by paulos (administrator) on 03-01-2014 at 01:10:46
Running from "C:\Users\paulos\Downloads"
Microsoft Windows 7 Ultimate  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
η£ © §¨£β«¨ΰ¤ IP «ΰ¤ Windows
 
⫬® ΅΅α¨ © « £¤γ£ cache „§εΆ¬© DNS.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
127.0.0.1    localhost
 
========================= IP Configuration: ================================
 
Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller = Local Area Connection (Connected)
Qualcomm Atheros AR5B91 Wireless Network Adapter = Wireless Network Connection (Media disconnected)
 
 
# ----------------------------------
# η£ © §¨£β«¨ΰ¤ IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# ’βΆ¦ ¨η£ © §¨£β«¨ΰ¤ IPv4
 
 
 
η£ © §¨£β«¨ΰ¤ IP «ΰ¤ Windows
 
   ξ¤¦£ ΅¤«¨΅¦η ¬§¦Ά¦ ©«γ . . . . : paulos-PC
   „§ε£ ΅η¨ ¦¬ DNS  . . . . . . . : 
   ’秦 ΅ζ£™¦¬. . . . . . . . . . . : “™¨ › ΅ζ
   „¤¨¦§¦ε© ›¨¦£¦Άζ© IP. . . : ξ® 
   „¤¨¦§¦ε© £©¦Άα™© WINS . . : ξ® 
   ε©« ¤γ«© § £α«ΰ¤ DNS . : univ.gda.pl
 
¨¦©¨£¦β Ethernet Local Area Connection:
 
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: univ.gda.pl
   ¨ ¨­γ . . . . . . . . . . . . : Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller #2
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-1D-72-EB-C1-BE
   „¤¨¦§¦ε© DHCP. . . . . . . .  :  
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
   ƒ 笤© IPv6. . . . . . . . . . : 2002:9913:c810:a:7054:a9c9:776b:bb08
   ¨¦©ΰ¨ ¤γ › 笤© IPv6. . . . . : 2002:9913:c810:a:e9b7:b145:3b42:f3ae
   ƒ 笤© IPv6 «¦§ ΅γ ©η¤›© . : fe80::7054:a9c9:776b:bb08%19(¨¦« £ι£¤¦) 
   ƒ 笤© IPv6 «¦§ ΅γ «¦§¦©ε : fec0::a:7054:a9c9:776b:bb08%1
   ƒ 笤© IPv4. . . . . . . . . . : 153.19.200.40(¨¦« £ι£¤¦) 
   ‹α©΅ ¬§¦› ΅«η¦¬. . . . . . . . . : 255.255.255.0
   λ¤¨¥ ΅£ε©ΰ©. . . . . . . .  : ⣧«, 2 ¤¦¬¨ε¦¬ 2014 3:31:38 ££
   γ¥ ΅£ε©ΰ© . . . . . . . . . : ¨©΅¬γ, 3 ¤¦¬¨ε¦¬ 2014 3:31:37 ££
   ¨¦§ Ά£β¤ §ηΆ . . . . . . .  : fe80::142a:b6d6:8dc7:8b05%19
                                       153.19.200.1
   ƒ ΅¦£ ©«γ DHCP . . . . . . . .  : 153.19.200.253
   DHCPv6 IAID . . . . . . . . . . . : 503324018
   DUID ¬§¦Ά¦ ©«γ-§Άα« DHCPv6 . . : 00-01-00-01-19-D5-5A-EF-00-1D-72-EB-C1-BE
   ƒ ΅¦£ ©«β DNS . . . . . . . . . : 153.19.1.254
                                       153.19.250.100
   NetBIOS © Tcpip. . . . . . . . . : „¤¨¦§¦ £β¤¦
 
¨¦©¨£¦β ©η¨£«¦¬ › ΅«η¦¬ LAN Wireless Network Connection:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Qualcomm Atheros AR5B91 Wireless Network Adapter
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-24-2B-01-BA-B7
   „¤¨¦§¦ε© DHCP. . . . . . . .  :  
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
 
¨¦©¨£¦β › ¦®β«¬© isatap.univ.gda.pl:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: univ.gda.pl
   ¨ ¨­γ . . . . . . . . . . . . : Microsoft ISATAP Adapter
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
 
¨¦©¨£¦β › ¦®β«¬© Local Area Connection* 9:
 
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
   ƒ 笤© IPv6. . . . . . . . . . : 2001:0:9d38:90d7:10ac:1446:66ec:37d7(¨¦« £ι£¤¦) 
   ƒ 笤© IPv6 «¦§ ΅γ ©η¤›© . : fe80::10ac:1446:66ec:37d7%12(¨¦« £ι£¤¦) 
   ¨¦§ Ά£β¤ §ηΆ . . . . . . .  : 
   NetBIOS © Tcpip. . . . . . . . . : €§¤¨¦§¦ £β¤¦
 
¨¦©¨£¦β › ¦®β«¬© isatap.{292160A6-823D-43CB-99FF-7AAF9AE4770E}:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
Διακομιστής:  rabarbar.ug.edu.pl
Address:  153.19.1.254
 
Όνομα:   google.com
Addresses:  2a00:1450:4013:c00::8a
 173.194.65.139
 173.194.65.100
 173.194.65.101
 173.194.65.102
 173.194.65.113
 173.194.65.138
 
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ google.com [173.194.65.138] £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 173.194.65.138: bytes=32 ®¨ζ¤¦=30ms TTL=44
€§α¤«© §ζ: 173.194.65.138: bytes=32 ®¨ζ¤¦=30ms TTL=44
 
‘«« ©« ΅α ©«¦ ®ε Ping 173.194.65.138:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 30ms, ‹β ©«¦ = 30ms, ‹β©¦ 樦 = 30ms
Διακομιστής:  rabarbar.ug.edu.pl
Address:  153.19.1.254
 
Όνομα:   yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ yahoo.com [98.138.253.109] £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 98.138.253.109: bytes=32 ®¨ζ¤¦=181ms TTL=43
€§α¤«© §ζ: 98.138.253.109: bytes=32 ®¨ζ¤¦=155ms TTL=43
 
‘«« ©« ΅α ©«¦ ®ε Ping 98.138.253.109:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 155ms, ‹β ©«¦ = 181ms, ‹β©¦ 樦 = 168ms
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ 127.0.0.1 £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 127.0.0.1: bytes=32 ®¨ζ¤¦<1ms TTL=128
€§α¤«© §ζ: 127.0.0.1: bytes=32 ®¨ζ¤¦<1ms TTL=128
 
‘«« ©« ΅α ©«¦ ®ε Ping 127.0.0.1:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 0ms, ‹β ©«¦ = 0ms, ‹β©¦ 樦 = 0ms
===========================================================================
ε©« › ©¬¤›β©ΰ¤
 19...00 1d 72 eb c1 be ......Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller #2
 11...00 24 2b 01 ba b7 ......Qualcomm Atheros AR5B91 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 夡 › ›¨¦£ι¤
===========================================================================
„¤¨β › ›¨¦£β:
ƒ 笤© › ΅«η¦¬    ‹α©΅ › ΅«η¦¬             ηΆ      ƒ ©η¤›©   ‹β«¨¦
          0.0.0.0          0.0.0.0     153.19.200.1    153.19.200.40     20
        127.0.0.0        255.0.0.0      ‹ ©η¤›©         127.0.0.1    306
        127.0.0.1  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
  127.255.255.255  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
     153.19.200.0    255.255.255.0      ‹ ©η¤›©     153.19.200.40    276
    153.19.200.40  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
   153.19.200.255  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
        224.0.0.0        240.0.0.0      ‹ ©η¤›©         127.0.0.1    306
        224.0.0.0        240.0.0.0      ‹ ©η¤›©     153.19.200.40    276
  255.255.255.255  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
  255.255.255.255  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
===========================================================================
‘¬¤®ε › ›¨¦£β:
  ‰£ε
 
IPv6 夡 › ›¨¦£ι¤
===========================================================================
„¤¨β › ›¨¦£β:
 ƒ 笤© › ΅«η¦¬ £«¨ ΅γ If    ηΆ
 19    276 ::/0                     fe80::142a:b6d6:8dc7:8b05
  1    306 ::1/128                  ‹ ©η¤›©
 12     58 2001::/32                ‹ ©η¤›©
 12    306 2001:0:9d38:90d7:10ac:1446:66ec:37d7/128
                                    ‹ ©η¤›©
 19   4116 2002::/16                fe80::142a:b6d6:8dc7:8b05
 19     28 2002:9913:c810:a::/64    ‹ ©η¤›©
 19    276 2002:9913:c810:a:7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
 19    276 2002:9913:c810:a:e9b7:b145:3b42:f3ae/128
                                    ‹ ©η¤›©
 19    276 fe80::/64                ‹ ©η¤›©
 12    306 fe80::/64                ‹ ©η¤›©
 12    306 fe80::10ac:1446:66ec:37d7/128
                                    ‹ ©η¤›©
 19    276 fe80::7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
 19     28 fec0:0:0:a::/64          ‹ ©η¤›©
 19    276 fec0::a:7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
  1    306 ff00::/8                 ‹ ©η¤›©
 12    306 ff00::/8                 ‹ ©η¤›©
 19    276 ff00::/8                 ‹ ©η¤›©
===========================================================================
‘¬¤®ε › ›¨¦£β:
  ‰£ε
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (01/02/2014 04:00:40 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (01/02/2014 03:31:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/02/2014 05:27:33 AM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (01/01/2014 06:45:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/31/2013 08:45:30 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/31/2013 01:28:57 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/31/2013 01:05:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 09:29:58 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/30/2013 00:18:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 01:08:02 AM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
 
System errors:
=============
Error: (01/02/2014 03:30:25 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (01/01/2014 06:44:17 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/31/2013 01:03:44 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/30/2013 00:17:06 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/29/2013 04:19:49 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/29/2013 00:13:41 AM) (Source: volsnap) (User: )
Description: Τα σκιώδη αντίγραφα του τόμου C: ματαιώθηκαν επειδή ο χώρος αποθήκευσης σκιωδών αντιγράφων δεν ήταν δυνατό να αυξηθεί εξαιτίας ενός επιβεβλημένου ορίου από το χρήστη.
 
Error: (12/28/2013 10:44:15 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/28/2013 03:32:57 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/28/2013 03:32:08 PM) (Source: DCOM) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}
 
Error: (12/28/2013 02:48:55 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (01/02/2014 04:00:40 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (01/02/2014 03:31:53 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/02/2014 05:27:33 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (01/01/2014 06:45:41 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/31/2013 08:45:30 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/31/2013 01:28:57 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/31/2013 01:05:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 09:29:58 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/30/2013 00:18:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 01:08:02 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-12-24 17:55:26.443
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:26.423
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:13.335
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:13.335
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:10.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:10.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:09.895
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:09.895
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:54:58.559
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:54:58.559
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.2.30303)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Adobe Reader X (10.1.8) (Version: 10.1.8)
BS.Player PRO (Version: 2.57.1048)
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
CCleaner (Version: 3.03)
CloudReading (Version: 1.0.31.1111)
CyberGhost 5
Defraggler (Version: 2.02)
DFX (Version: 11.109.0.0)
DFX for Winamp (Version: 9.304.0.0)
Driver Genius Professional Edition (Version: 11.0)
DVDFab 8.0.0.5 (25/08/2010)
EVEREST Ultimate Edition v5.30 (Version: 5.30)
FLV to AVI MPEG WMV 3GP MP4 iPod Converter
Foxit Reader (Version: 6.1.1.1031)
Free Studio version 2013 (Version: 6.2.0.1029)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Hard Disk Sentinel PRO
Internet Download Manager
iolo Memory Mechanic (Version: 1.0)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Kaspersky Internet Security (Version: 14.0.0.4651)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyPhoneExplorer (Version: 1.8.5)
Nero 7 Ultra Edition (Version: 7.03.1151)
neroxml (Version: 1.0.0)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
PowerISO (Version: 4.7)
Realtek High Definition Audio Driver (Version: 6.0.1.6809)
Recover My Files (Version: 3.9.8.6081)
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.11 (Version: 6.11.102)
Switch Sound File Converter
Synaptics Pointing Device Driver (Version: 16.0.2.0)
TAP-Windows 9.9.2 (Version: 9.9.2)
TeraCopy 2.12
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.1.1 (Version: 2.1.1)
WavePad Sound Editor (Version: 5.55)
Winamp (Version: 5.581 )
WinPatrol (Version: 28.9.2013.0)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7)
Your Uninstaller! 2010 (Version: 7.3.2010.33)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 47%
Total physical RAM: 3000.86 MB
Available physical RAM: 1582.58 MB
Total Pagefile: 6000.02 MB
Available Pagefile: 4107.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.89 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:111.57 GB) (Free:16.81 GB) NTFS
2 Drive d: (ΜΟΥΣΙΚΗ) (Fixed) (Total:111.55 GB) (Free:3 GB) NTFS
 
========================= Users: ========================================
 
¦¨ ©£¦ε User \\PAULOS-PC
 
Administrator            Guest                    paulos                   
† ¤«¦Άγ ¦Ά¦΅Ά¨ι΅ £ § «¬®ε.
 
 
**** End of log ****
 
 
 
01:25:45.0321 0x14dc  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
01:25:48.0285 0x14dc  ============================================================
01:25:48.0285 0x14dc  Current date / time: 2014/01/03 01:25:48.0285
01:25:48.0285 0x14dc  SystemInfo:
01:25:48.0285 0x14dc  
01:25:48.0285 0x14dc  OS Version: 6.1.7601 ServicePack: 1.0
01:25:48.0285 0x14dc  Product type: Workstation
01:25:48.0285 0x14dc  ComputerName: PAULOS-PC
01:25:48.0285 0x14dc  UserName: paulos
01:25:48.0285 0x14dc  Windows directory: C:\Windows
01:25:48.0285 0x14dc  System windows directory: C:\Windows
01:25:48.0285 0x14dc  Processor architecture: Intel x86
01:25:48.0285 0x14dc  Number of processors: 2
01:25:48.0285 0x14dc  Page size: 0x1000
01:25:48.0285 0x14dc  Boot type: Normal boot
01:25:48.0285 0x14dc  ============================================================
01:25:50.0999 0x14dc  KLMD registered as C:\Windows\system32\drivers\35371521.sys
01:25:51.0342 0x14dc  System UUID: {1612DCB4-DE25-EA27-CA83-B7A334337DAB}
01:25:52.0356 0x14dc  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
01:25:52.0356 0x14dc  ============================================================
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0:
01:25:52.0356 0x14dc  MBR partitions:
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0xDF21800
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xF2AA000, BlocksNum 0xDF1B000
01:25:52.0356 0x14dc  ============================================================
01:25:52.0434 0x14dc  C: <-> \Device\Harddisk0\DR0\Partition1
01:25:52.0528 0x14dc  D: <-> \Device\Harddisk0\DR0\Partition2
01:25:52.0528 0x14dc  ============================================================
01:25:52.0528 0x14dc  Initialize success
01:25:52.0528 0x14dc  ============================================================
 
 


#4 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:09 AM

Posted 02 January 2014 - 06:34 PM

# AdwCleaner v3.016 - Report created 03/01/2014 at 01:23:17
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : paulos - PAULOS-PC
# Running from : C:\Users\paulos\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
File Found : C:\Windows\System32\Tasks\NCH Software
Folder Found C:\Program Files\NCH Software
Folder Found C:\ProgramData\NCH Software
Folder Found C:\Users\paulos\AppData\Roaming\NCH Software
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\NCH Software
Key Found : HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6FDBBC21-E399-4542-B4CE-86326E1F0727}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7B878FD4-8F19-46DB-94B1-4CABFF80679C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8BA495EF-6CD5-413A-8AEF-483631B98C4F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8C71E394-2E6F-452A-AB7D-C17E78307083}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BADB1512-759C-4792-A18A-DD6BDC4E1991}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E54FBC83-9028-45AC-A5B9-D5DA828E59C2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{633AA60B-C339-46C3-951F-047F9822C473}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9156C8F9-B397-4DEF-8AC5-5966221A134A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A8E5842E-102B-4289-9D57-3B3F5B5E15D3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Driver-Soft
Key Found : HKLM\Software\NCH Software
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v0.0.0.0
 
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [3024 octets] - [03/01/2014 01:13:58]
AdwCleaner[R1].txt - [2376 octets] - [03/01/2014 01:23:17]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [2436 octets] ##########
 
 
 
MiniToolBox by Farbar  Version: 18-12-2013
Ran by paulos (administrator) on 03-01-2014 at 01:10:46
Running from "C:\Users\paulos\Downloads"
Microsoft Windows 7 Ultimate  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
η£ © §¨£β«¨ΰ¤ IP «ΰ¤ Windows
 
⫬® ΅΅α¨ © « £¤γ£ cache „§εΆ¬© DNS.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
127.0.0.1    localhost
 
========================= IP Configuration: ================================
 
Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller = Local Area Connection (Connected)
Qualcomm Atheros AR5B91 Wireless Network Adapter = Wireless Network Connection (Media disconnected)
 
 
# ----------------------------------
# η£ © §¨£β«¨ΰ¤ IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# ’βΆ¦ ¨η£ © §¨£β«¨ΰ¤ IPv4
 
 
 
η£ © §¨£β«¨ΰ¤ IP «ΰ¤ Windows
 
   ξ¤¦£ ΅¤«¨΅¦η ¬§¦Ά¦ ©«γ . . . . : paulos-PC
   „§ε£ ΅η¨ ¦¬ DNS  . . . . . . . : 
   ’秦 ΅ζ£™¦¬. . . . . . . . . . . : “™¨ › ΅ζ
   „¤¨¦§¦ε© ›¨¦£¦Άζ© IP. . . : ξ® 
   „¤¨¦§¦ε© £©¦Άα™© WINS . . : ξ® 
   ε©« ¤γ«© § £α«ΰ¤ DNS . : univ.gda.pl
 
¨¦©¨£¦β Ethernet Local Area Connection:
 
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: univ.gda.pl
   ¨ ¨­γ . . . . . . . . . . . . : Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller #2
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-1D-72-EB-C1-BE
   „¤¨¦§¦ε© DHCP. . . . . . . .  :  
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
   ƒ 笤© IPv6. . . . . . . . . . : 2002:9913:c810:a:7054:a9c9:776b:bb08
   ¨¦©ΰ¨ ¤γ › 笤© IPv6. . . . . : 2002:9913:c810:a:e9b7:b145:3b42:f3ae
   ƒ 笤© IPv6 «¦§ ΅γ ©η¤›© . : fe80::7054:a9c9:776b:bb08%19(¨¦« £ι£¤¦) 
   ƒ 笤© IPv6 «¦§ ΅γ «¦§¦©ε : fec0::a:7054:a9c9:776b:bb08%1
   ƒ 笤© IPv4. . . . . . . . . . : 153.19.200.40(¨¦« £ι£¤¦) 
   ‹α©΅ ¬§¦› ΅«η¦¬. . . . . . . . . : 255.255.255.0
   λ¤¨¥ ΅£ε©ΰ©. . . . . . . .  : ⣧«, 2 ¤¦¬¨ε¦¬ 2014 3:31:38 ££
   γ¥ ΅£ε©ΰ© . . . . . . . . . : ¨©΅¬γ, 3 ¤¦¬¨ε¦¬ 2014 3:31:37 ££
   ¨¦§ Ά£β¤ §ηΆ . . . . . . .  : fe80::142a:b6d6:8dc7:8b05%19
                                       153.19.200.1
   ƒ ΅¦£ ©«γ DHCP . . . . . . . .  : 153.19.200.253
   DHCPv6 IAID . . . . . . . . . . . : 503324018
   DUID ¬§¦Ά¦ ©«γ-§Άα« DHCPv6 . . : 00-01-00-01-19-D5-5A-EF-00-1D-72-EB-C1-BE
   ƒ ΅¦£ ©«β DNS . . . . . . . . . : 153.19.1.254
                                       153.19.250.100
   NetBIOS © Tcpip. . . . . . . . . : „¤¨¦§¦ £β¤¦
 
¨¦©¨£¦β ©η¨£«¦¬ › ΅«η¦¬ LAN Wireless Network Connection:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Qualcomm Atheros AR5B91 Wireless Network Adapter
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-24-2B-01-BA-B7
   „¤¨¦§¦ε© DHCP. . . . . . . .  :  
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
 
¨¦©¨£¦β › ¦®β«¬© isatap.univ.gda.pl:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: univ.gda.pl
   ¨ ¨­γ . . . . . . . . . . . . : Microsoft ISATAP Adapter
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
 
¨¦©¨£¦β › ¦®β«¬© Local Area Connection* 9:
 
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
   ƒ 笤© IPv6. . . . . . . . . . : 2001:0:9d38:90d7:10ac:1446:66ec:37d7(¨¦« £ι£¤¦) 
   ƒ 笤© IPv6 «¦§ ΅γ ©η¤›© . : fe80::10ac:1446:66ec:37d7%12(¨¦« £ι£¤¦) 
   ¨¦§ Ά£β¤ §ηΆ . . . . . . .  : 
   NetBIOS © Tcpip. . . . . . . . . : €§¤¨¦§¦ £β¤¦
 
¨¦©¨£¦β › ¦®β«¬© isatap.{292160A6-823D-43CB-99FF-7AAF9AE4770E}:
 
   ‰«α©«© £β©¦¬ . . . . . . . . . : λ®  §¦©¬¤›ε
   „§ε£ DNS ©¬΅΅¨ £β¤ ©η¤›©: 
   ¨ ¨­γ . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   ”¬© ΅γ › 笤©. . . . . . . . . : 00-00-00-00-00-00-00-E0
   „¤¨¦§¦ε© DHCP. . . . . . .. . : ξ® 
   €¬«ζ£« ¨η£ © ¤¨γ . . . . . :  
Διακομιστής:  rabarbar.ug.edu.pl
Address:  153.19.1.254
 
Όνομα:   google.com
Addresses:  2a00:1450:4013:c00::8a
 173.194.65.139
 173.194.65.100
 173.194.65.101
 173.194.65.102
 173.194.65.113
 173.194.65.138
 
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ google.com [173.194.65.138] £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 173.194.65.138: bytes=32 ®¨ζ¤¦=30ms TTL=44
€§α¤«© §ζ: 173.194.65.138: bytes=32 ®¨ζ¤¦=30ms TTL=44
 
‘«« ©« ΅α ©«¦ ®ε Ping 173.194.65.138:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 30ms, ‹β ©«¦ = 30ms, ‹β©¦ 樦 = 30ms
Διακομιστής:  rabarbar.ug.edu.pl
Address:  153.19.1.254
 
Όνομα:   yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ yahoo.com [98.138.253.109] £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 98.138.253.109: bytes=32 ®¨ζ¤¦=181ms TTL=43
€§α¤«© §ζ: 98.138.253.109: bytes=32 ®¨ζ¤¦=155ms TTL=43
 
‘«« ©« ΅α ©«¦ ®ε Ping 98.138.253.109:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 155ms, ‹β ©«¦ = 181ms, ‹β©¦ 樦 = 168ms
 
„΅«Άε«   Ά «¦¬¨ε Ping ©«¦ 127.0.0.1 £ 32 byte ››¦£β¤ΰ¤:
€§α¤«© §ζ: 127.0.0.1: bytes=32 ®¨ζ¤¦<1ms TTL=128
€§α¤«© §ζ: 127.0.0.1: bytes=32 ®¨ζ¤¦<1ms TTL=128
 
‘«« ©« ΅α ©«¦ ®ε Ping 127.0.0.1:
    ΅β«: €§©«Ά£β¤ = 2, ­β¤« = 2,
            €§¦Ά©β¤« = 0 (§ιΆ 0%),
Άγ¦ › ›¨¦£ι¤ §¦©«¦Άγ ΅  § ©«¨¦­γ ΅«α §¨¦©β © © ® Ά ¦©«α «¦¬
›¬«¨¦Άβ§«¦¬:
    „Άα® ©«¦ = 0ms, ‹β ©«¦ = 0ms, ‹β©¦ 樦 = 0ms
===========================================================================
ε©« › ©¬¤›β©ΰ¤
 19...00 1d 72 eb c1 be ......Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller #2
 11...00 24 2b 01 ba b7 ......Qualcomm Atheros AR5B91 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 夡 › ›¨¦£ι¤
===========================================================================
„¤¨β › ›¨¦£β:
ƒ 笤© › ΅«η¦¬    ‹α©΅ › ΅«η¦¬             ηΆ      ƒ ©η¤›©   ‹β«¨¦
          0.0.0.0          0.0.0.0     153.19.200.1    153.19.200.40     20
        127.0.0.0        255.0.0.0      ‹ ©η¤›©         127.0.0.1    306
        127.0.0.1  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
  127.255.255.255  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
     153.19.200.0    255.255.255.0      ‹ ©η¤›©     153.19.200.40    276
    153.19.200.40  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
   153.19.200.255  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
        224.0.0.0        240.0.0.0      ‹ ©η¤›©         127.0.0.1    306
        224.0.0.0        240.0.0.0      ‹ ©η¤›©     153.19.200.40    276
  255.255.255.255  255.255.255.255      ‹ ©η¤›©         127.0.0.1    306
  255.255.255.255  255.255.255.255      ‹ ©η¤›©     153.19.200.40    276
===========================================================================
‘¬¤®ε › ›¨¦£β:
  ‰£ε
 
IPv6 夡 › ›¨¦£ι¤
===========================================================================
„¤¨β › ›¨¦£β:
 ƒ 笤© › ΅«η¦¬ £«¨ ΅γ If    ηΆ
 19    276 ::/0                     fe80::142a:b6d6:8dc7:8b05
  1    306 ::1/128                  ‹ ©η¤›©
 12     58 2001::/32                ‹ ©η¤›©
 12    306 2001:0:9d38:90d7:10ac:1446:66ec:37d7/128
                                    ‹ ©η¤›©
 19   4116 2002::/16                fe80::142a:b6d6:8dc7:8b05
 19     28 2002:9913:c810:a::/64    ‹ ©η¤›©
 19    276 2002:9913:c810:a:7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
 19    276 2002:9913:c810:a:e9b7:b145:3b42:f3ae/128
                                    ‹ ©η¤›©
 19    276 fe80::/64                ‹ ©η¤›©
 12    306 fe80::/64                ‹ ©η¤›©
 12    306 fe80::10ac:1446:66ec:37d7/128
                                    ‹ ©η¤›©
 19    276 fe80::7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
 19     28 fec0:0:0:a::/64          ‹ ©η¤›©
 19    276 fec0::a:7054:a9c9:776b:bb08/128
                                    ‹ ©η¤›©
  1    306 ff00::/8                 ‹ ©η¤›©
 12    306 ff00::/8                 ‹ ©η¤›©
 19    276 ff00::/8                 ‹ ©η¤›©
===========================================================================
‘¬¤®ε › ›¨¦£β:
  ‰£ε
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (01/02/2014 04:00:40 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (01/02/2014 03:31:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/02/2014 05:27:33 AM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (01/01/2014 06:45:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/31/2013 08:45:30 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/31/2013 01:28:57 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/31/2013 01:05:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 09:29:58 PM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
Error: (12/30/2013 00:18:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 01:08:02 AM) (Source: Windows Search Service) (User: )
Description: Δεν ήταν δυνατή η επεξεργασία της λίστας των συμπεριλαμβανομένων και εξαιρουμένων θέσεων από την υπηρεσία Αναζήτησης των Windows. Επιστράφηκε ο κωδικός σφάλματος <30, 0x80040d07, "iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/">.
 
 
System errors:
=============
Error: (01/02/2014 03:30:25 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (01/01/2014 06:44:17 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/31/2013 01:03:44 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/30/2013 00:17:06 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/29/2013 04:19:49 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/29/2013 00:13:41 AM) (Source: volsnap) (User: )
Description: Τα σκιώδη αντίγραφα του τόμου C: ματαιώθηκαν επειδή ο χώρος αποθήκευσης σκιωδών αντιγράφων δεν ήταν δυνατό να αυξηθεί εξαιτίας ενός επιβεβλημένου ορίου από το χρήστη.
 
Error: (12/28/2013 10:44:15 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/28/2013 03:32:57 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (12/28/2013 03:32:08 PM) (Source: DCOM) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}
 
Error: (12/28/2013 02:48:55 PM) (Source: Service Control Manager) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας PCAutoShutdown_Service εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (01/02/2014 04:00:40 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (01/02/2014 03:31:53 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/02/2014 05:27:33 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (01/01/2014 06:45:41 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/31/2013 08:45:30 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/31/2013 01:28:57 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/31/2013 01:05:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 09:29:58 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
Error: (12/30/2013 00:18:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/30/2013 01:08:02 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-1908429607-1759296579-3770965207-1000}/
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-12-24 17:55:26.443
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:26.423
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:13.335
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:13.335
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:10.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:10.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:09.895
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:55:09.895
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:54:58.559
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-24 17:54:58.559
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.2.30303)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Adobe Reader X (10.1.8) (Version: 10.1.8)
BS.Player PRO (Version: 2.57.1048)
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
CCleaner (Version: 3.03)
CloudReading (Version: 1.0.31.1111)
CyberGhost 5
Defraggler (Version: 2.02)
DFX (Version: 11.109.0.0)
DFX for Winamp (Version: 9.304.0.0)
Driver Genius Professional Edition (Version: 11.0)
DVDFab 8.0.0.5 (25/08/2010)
EVEREST Ultimate Edition v5.30 (Version: 5.30)
FLV to AVI MPEG WMV 3GP MP4 iPod Converter
Foxit Reader (Version: 6.1.1.1031)
Free Studio version 2013 (Version: 6.2.0.1029)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Hard Disk Sentinel PRO
Internet Download Manager
iolo Memory Mechanic (Version: 1.0)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Kaspersky Internet Security (Version: 14.0.0.4651)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyPhoneExplorer (Version: 1.8.5)
Nero 7 Ultra Edition (Version: 7.03.1151)
neroxml (Version: 1.0.0)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
PowerISO (Version: 4.7)
Realtek High Definition Audio Driver (Version: 6.0.1.6809)
Recover My Files (Version: 3.9.8.6081)
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.11 (Version: 6.11.102)
Switch Sound File Converter
Synaptics Pointing Device Driver (Version: 16.0.2.0)
TAP-Windows 9.9.2 (Version: 9.9.2)
TeraCopy 2.12
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.1.1 (Version: 2.1.1)
WavePad Sound Editor (Version: 5.55)
Winamp (Version: 5.581 )
WinPatrol (Version: 28.9.2013.0)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7)
Your Uninstaller! 2010 (Version: 7.3.2010.33)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 47%
Total physical RAM: 3000.86 MB
Available physical RAM: 1582.58 MB
Total Pagefile: 6000.02 MB
Available Pagefile: 4107.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.89 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:111.57 GB) (Free:16.81 GB) NTFS
2 Drive d: (ΜΟΥΣΙΚΗ) (Fixed) (Total:111.55 GB) (Free:3 GB) NTFS
 
========================= Users: ========================================
 
¦¨ ©£¦ε User \\PAULOS-PC
 
Administrator            Guest                    paulos                   
† ¤«¦Άγ ¦Ά¦΅Ά¨ι΅ £ § «¬®ε.
 
 
**** End of log ****
 
 
 
01:25:45.0321 0x14dc  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
01:25:48.0285 0x14dc  ============================================================
01:25:48.0285 0x14dc  Current date / time: 2014/01/03 01:25:48.0285
01:25:48.0285 0x14dc  SystemInfo:
01:25:48.0285 0x14dc  
01:25:48.0285 0x14dc  OS Version: 6.1.7601 ServicePack: 1.0
01:25:48.0285 0x14dc  Product type: Workstation
01:25:48.0285 0x14dc  ComputerName: PAULOS-PC
01:25:48.0285 0x14dc  UserName: paulos
01:25:48.0285 0x14dc  Windows directory: C:\Windows
01:25:48.0285 0x14dc  System windows directory: C:\Windows
01:25:48.0285 0x14dc  Processor architecture: Intel x86
01:25:48.0285 0x14dc  Number of processors: 2
01:25:48.0285 0x14dc  Page size: 0x1000
01:25:48.0285 0x14dc  Boot type: Normal boot
01:25:48.0285 0x14dc  ============================================================
01:25:50.0999 0x14dc  KLMD registered as C:\Windows\system32\drivers\35371521.sys
01:25:51.0342 0x14dc  System UUID: {1612DCB4-DE25-EA27-CA83-B7A334337DAB}
01:25:52.0356 0x14dc  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
01:25:52.0356 0x14dc  ============================================================
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0:
01:25:52.0356 0x14dc  MBR partitions:
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0xDF21800
01:25:52.0356 0x14dc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xF2AA000, BlocksNum 0xDF1B000
01:25:52.0356 0x14dc  ============================================================
01:25:52.0434 0x14dc  C: <-> \Device\Harddisk0\DR0\Partition1
01:25:52.0528 0x14dc  D: <-> \Device\Harddisk0\DR0\Partition2
01:25:52.0528 0x14dc  ============================================================
01:25:52.0528 0x14dc  Initialize success
01:25:52.0528 0x14dc  ============================================================
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Ultimate x86
Ran by paulos on ¨ 03/01/2014 at  1:20:38,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\ilivid
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\Users\paulos\appdata\local\google\chrome\user data\default\local storage\http_app.mam.conduit.com_0.localstorage"
Successfully deleted: [File] "C:\Users\paulos\appdata\local\google\chrome\user data\default\local storage\http_app.mam.conduit.com_0.localstorage-journal"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\paulos\AppData\Roaming\registry mechanic"
Successfully deleted: [Folder] "C:\Users\paulos\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\paulos\appdata\local\ilivid"
Successfully deleted: [Folder] "C:\Users\paulos\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Program Files\driver-soft"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ¨ 03/01/2014 at  1:33:43,73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 


#5 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:06:09 AM

Posted 02 January 2014 - 06:35 PM

about eset scanner it takes a lot of time and i think my pc is clear...



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 AM

Posted 02 January 2014 - 09:56 PM

OK .. up to you,,,Thanks for visiting.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users